Description of problem:
In F18 (I think) the default cred. cache location changed, but this new location was put into KRB5CCNAME so that programs not updated to the new location would still function.
The setting of KRB5CCNAME was removed as per:
However, java programs now use the wrong location (/tmp/krb5cc_uid).
Version-Release number of selected component (if applicable):
java version "1.7.0_25"
OpenJDK Runtime Environment (fedora-18.104.22.168.fc19-x86_64)
OpenJDK 64-Bit Server VM (build 23.7-b01, mixed mode)
depending on your perspective.
Steps to Reproduce:
1.Use,e.g. SampleClient and SampleServer from JAAS
Credential cache is not found at correct location. Using "-Dsun.security.krb5.debug=true" one can see:
>>>KinitOptions cache name is /tmp/krb5cc_42001
Uses cache in the new "standard" location.
Sample programs available at:
My JAAS config for client:
My JAAS config for server;
I have posted a fix to handle arbitrary credential cache locations:
(In reply to Elliott Baron from comment #1)
> I have posted a fix to handle arbitrary credential cache locations:
Could you submit a fix to upstream jdk8 as well? It will be nice to have this fix in java-1.8.0-openjdk too.
Any chance to get a test build of this to verify?
I'll include it in the 2.4.2 update which should appear in Fedora soon (next week or so I hope).
java-1.7.0-openjdk-22.214.171.124-126.96.36.199.fc19.x86_64 (currently updates-testing) confirmed to fix the bug.