From owner-freebsd-hackers@FreeBSD.ORG Fri May 11 02:41:58 2012 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DEAA21065670 for ; Fri, 11 May 2012 02:41:57 +0000 (UTC) (envelope-from rsimmons0@gmail.com) Received: from mail-vb0-f54.google.com (mail-vb0-f54.google.com [209.85.212.54]) by mx1.freebsd.org (Postfix) with ESMTP id 93E4E8FC08 for ; Fri, 11 May 2012 02:41:57 +0000 (UTC) Received: by vbmv11 with SMTP id v11so3079988vbm.13 for ; Thu, 10 May 2012 19:41:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=T291DhfyO3oGn2oEYaXn2VqH/P1LwopFa9GU+YRFBTU=; b=TMBuuJV2QqkXRbph8ueASCz20xPPnJs0ViB1u3OKXmshc8aT6N8XrADHYuEFtd+5y4 0LTSACnTgkpmkPtdxTjURKtMdyVz7isq4e4fYIOT2lHLhLm3cEQNZdj/5W4Y1sHE06lF CtljeeHazy2kxa4bRWx+gMpNqNwN19O+JqXKen608VH/wVETvSlHTEUNFUG7QWusHZJA hqDXyyfoMA16+nVueVd2k8MfQlboJfwraJ1Y2/DLHXTYmC7T/DEUxayW/YUvnQZt9RzB 6jMT+Z9NgLikKzl4ywB4WJD6PiLnJaLGWVgZnn2dyuGAX63/xQm9p1sXn4sovA3T8okK lBeQ== MIME-Version: 1.0 Received: by 10.52.34.200 with SMTP id b8mr3189973vdj.115.1336704116877; Thu, 10 May 2012 19:41:56 -0700 (PDT) Received: by 10.52.112.167 with HTTP; Thu, 10 May 2012 19:41:56 -0700 (PDT) Date: Thu, 10 May 2012 22:41:56 -0400 Message-ID: From: Robert Simmons To: freebsd-hackers@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Subject: Heimdal 1.5.2 problem X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 May 2012 02:41:58 -0000 I've just installed the new version of Heimdal, 1.5.2 from ports, and I'm having a problem. As in the past, BerkeleyDB needs to be enabled with make config so that there is a backend. However, I'm still getting the error as if BerkeleyDB was not enabled, and there is no backend support. I've followed this process to get to this point: # cd /usr/ports/security/heimdal # make config *at this point, I've just made sure that BDB and cracklib support are compiled. # make install # mkdir /var/db/heimdal # chmod 600 /var/db/heimdal Then the following is added to /etc/rc.conf kerberos5_server_enable="YES" kerberos5_server="/use/local/libexec/kdc" kadmind5_server_enable="YES" kadmind5_server="/usr/local/libexec/kadmind" kpasswdd_server_enable="YES" kpasswdd_server="/usr/local/libexec/kpasswdd" This is my /etc/krb5.conf [libdefaults] default_realm = HOME default_etypes = aes256-cts-hmac-sha1-96 [realms] EXAMPLE.ORG = { kdc = kerberos.home admin_server = kerberos.home kpasswd_server = kerberos.home } [password_quality] policies = builtin:minimum-length builtin:character-class min_length = 20 min_classes = 4 [kdc] enable-kerberos4 = false enable-524 = false require-preauth = true allow-anonymous = false [kadmin] require-preauth = true default_keys = aes256-cts-hmac-sha1-96:pw-salt [domain_realm] .home = HOME I then created a key # kstash --enctype=aes256-cts-hmac-sha1-96 --random-key Then tried to initialize the realm: # /usr/local/sbin/kadmin -l kadmin> init HOME kadmin: hdb_open: hdb_open: failed initialize database /var/db/heimdal/heimdal kadmin> This is the error I get. Also, after performing this failed init, the database is actually created in /var/db/heimdal # ll /var/db/heimdal total 24 -rw------- 1 root wheel 16384 May 10 19:56 heimdal.db -rw------- 1 root wheel 0 May 10 19:18 heimdal.lock -rw------- 1 root wheel 264 May 10 19:17 kdc.log -rw------- 1 root wheel 73 May 10 19:18 m-key According to PR 154711, I've done everything correct, but I'm still getting the error. http://www.freebsd.org/cgi/query-pr.cgi?pr=154711 All of the regular dependencies are satisfied: autoconf-2.68, autoconf-wrapper-20101119, gettext-0.18.1.1, libiconv-1.14, libtool-2.4.2, m4-1.4.16,1, perl-5.12.4_4, pkg-config-0.25_1 And, this is the version of BerkeleyDB that it compiles and installs to satisfy the BDB backend that I enabled during config: db41-4.1.25_4 Has anyone else successfully installed Heimdal 1.5.2 from ports on FreeBSD 9.0? What did you do differently than me?