Your message dated Tue, 17 Aug 2010 14:55:38 +0200
with message-id <[email protected]>
and subject line Re: Bug#584211: Not being able to reproduce
has caused the Debian Bug report #584211,
regarding sssd: Using wrong KRB5 credentials cache file
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
584211: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584211
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: sssd
Version: 1.2.0-1
Severity: normal

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

After the upgrade of sssd to 1.2.0 I can no longer log into my dovecot
IMAP server.
Running `sssd -d 10` during a login attempt I get this:

(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [sbus_message_handler]
(9): Received SBUS method [pamHandler]
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [be_pam_handler] (4):
Got request with the following data
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
command: PAM_AUTHENTICATE
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
domain: FLADI.AT
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
user: FladischerMichael
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
service: dovecot
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
tty: dovecot
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
ruser: FladischerMichael
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
rhost: ::1
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
authtok type: 1
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
authtok size: 6
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
newauthtok type: 0
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
newauthtok size: 0
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
priv: 0
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]] [pam_print_data] (4):
cli_pid: 18207
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]]
[krb5_get_user_attr_done] (9): Using simple UPN
[[email protected]].
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]]
[check_if_ccache_file_is_used] (1): Cache file [/tmp/krb5cc_1014_dpYK7G]
exists, but is owned by [1014] instead of [1006].
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]]
[krb5_get_user_attr_done] (1): check_if_ccache_file_is_used failed.
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]]
[be_pam_handler_callback] (4): Backend returned: (0, 4, <NULL>)
[Success]
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]]
[be_pam_handler_callback] (4): Sending result [4][FLADI.AT]
(Wed Jun  2 11:45:04 2010) [sssd[be[FLADI.AT]]]
[be_pam_handler_callback] (4): Sent result [4][FLADI.AT]

It seems as sssd is trying to use the wrong krb5cc-file for my UID:
1006 is the UIDnumber that attempts the login which fails (me).
1014 belongs to another user who is logged in through SSH and IMAP at
the same time.


- -- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_AT.UTF-8, LC_CTYPE=de_AT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages sssd depends on:
ii  libc-ares2        1.7.1-0                library for asyncronous name resol
ii  libc6             2.11.1-2               Embedded GNU C Library: Shared lib
ii  libcomerr2        1.41.12-1              common error description library
ii  libdbus-1-3       1.2.24-1               simple interprocess messaging syst
ii  libk5crypto3      1.8.1+dfsg-5           MIT Kerberos runtime libraries - C
ii  libkrb5-3         1.8.1+dfsg-5           MIT Kerberos runtime libraries
ii  libldap-2.4-2     2.4.21-1               OpenLDAP libraries
ii  libldb0           1:0.9.10~git20100203-1 LDAP-like embedded database - shar
ii  libnspr4-0d       4.8.4-1                NetScape Portable Runtime Library
ii  libnss3-1d        3.12.6-2               Network Security Service libraries
ii  libpam0g          1.1.1-3                Pluggable Authentication Modules l
ii  libpcre3          8.02-1                 Perl 5 Compatible Regular Expressi
ii  libpopt0          1.16-1                 lib for parsing cmdline parameters
ii  libselinux1       2.0.94-1               SELinux runtime shared libraries
ii  libsemanage1      2.0.45-1               SELinux policy management library.
ii  libtalloc2        2.0.1-1                hierarchical pool based memory all
ii  libtdb1           1.2.1-2                Trivial Database - shared library
ii  libtevent0        0.9.8-1                talloc-based event loop library - 
ii  python            2.5.4-9                An interactive high-level object-o
ii  python-sss        1.2.0-1                Pam module for the System Security

sssd recommends no packages.

sssd suggests no packages.

- -- no debconf information

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAkwGKYEACgkQeJ3z1zFMUGah/wCaAzNdJgncOhHx5l0rnQ363kSL
iywAoIT8oNZYylCsGWoCc+6kQekDXYIo
=EdrF
-----END PGP SIGNATURE-----



--- End Message ---
--- Begin Message ---
Version: 1.2.1-3

[Michael Fladischer]
> I would consider this bug to be closed as the latest upgrades to sssd
> have all worked fine.

OK.  I am assuming it was fixed in the mean time, and close the bug.

Happy hacking,
-- 
Petter Reinholdtsen


--- End Message ---

Reply via email to