Kadmind dies after startup on FC14 x64 arch

Maple Thorpe maplethorpe at cox.net
Sun Mar 13 13:15:41 EDT 2011 

I have been struggling with above prob for past two days.  To solve prob
after its appearance I have used kdb5_util destroy to remove databases,
uninstalled rpms, removed remaining KDC files
under /var/kerberos/krb5kdc/ folder and keytab file in /etc for clean
start.  

After each attempt to effect a clean start, i.e. installing rpms,
kdb5_util create -s, creating adm keytab, then starting krb5kdc and
kadmin services, kadmind dies.

Service kadmin is started as root user but kadmind dies
and /var/log/kadmin.log contains message "Permission denied while
mapping update log ('var/kerberos/krb5kdc/principal.ulog'). kdb5_util
creates principal.ulog and other db files in /var/kerberos/krb5kdc
folder with 600 permission with owner/group root.root.

Using strace against against rawhide kadmind is the only way it remains
alive.  Tail of strace contains:

stat("/var/kerberos/krb5kdc/principal.ulog", {st_mode=S_IFREG|0600,
st_size=4096040, ...}) = 0
open("/var/kerberos/krb5kdc/principal.ulog", O_RDWR) = 15
mmap(NULL, 268435456, PROT_READ|PROT_WRITE, MAP_SHARED, 15, 0) =
0x7f9cd8641000
fcntl(15, F_SETLKW, {type=F_WRLCK, whence=SEEK_SET, start=0, len=0}) = 0
msync(0x7f9cd8641000, 4096, MS_SYNC)    = 0
fcntl(15, F_SETLKW, {type=F_UNLCK, whence=SEEK_SET, start=0, len=0}) = 0
fcntl(15, F_SETLKW, {type=F_WRLCK, whence=SEEK_SET, start=0, len=0}) = 0
lseek(15, 0, SEEK_END)                  = 4096040
fcntl(15, F_SETLKW, {type=F_UNLCK, whence=SEEK_SET, start=0, len=0}) = 0
rt_sigaction(SIGINT, {0x7f9ceb28c210, [], SA_RESTORER, 0x7f9ce9468eb0},
NULL, 8) = 0
rt_sigaction(SIGTERM, {0x7f9ceb28c210, [], SA_RESTORER, 0x7f9ce9468eb0},
NULL, 8) = 0
rt_sigaction(SIGQUIT, {0x7f9ceb28c210, [], SA_RESTORER, 0x7f9ce9468eb0},
NULL, 8) = 0
rt_sigaction(SIGHUP, {0x7f9ceb28c160, [], SA_RESTORER, 0x7f9ce9468eb0},
NULL, 8) = 0
rt_sigaction(SIGPIPE, {0x7f9ceb28c1d0, [], SA_RESTORER, 0x7f9ce9468eb0},
NULL, 8) = 0
rt_sigaction(SIGCHLD, {SIG_IGN, [], SA_RESTORER, 0x7f9ce9468eb0}, NULL,
8) = 0
stat("/etc/localtime", {st_mode=S_IFREG|0644, st_size=3543, ...}) = 0
write(3, "Mar 13 09:22:15 minniemouse.local"..., 73) = 73
sendto(4, "<30>Mar 13 09:22:15 kadmind[5813"..., 43, MSG_NOSIGNAL, NULL,
0) = 43

Nothing here tells me there is a permission error.  Is this a known
problem and where do I look to solve it?

Thanks

More information about the Kerberos mailing list