netbsd-bugs: xsrc/32603: xdm w/ pam_krb5 fails to store tickets

Subject: xsrc/32603: xdm w/ pam_krb5 fails to store tickets
To: None <xsrc-manager@netbsd.org, gnats-admin@netbsd.org,>
From: None <tsarna@sarna.org>
List: netbsd-bugs
Date: 01/23/2006 18:20:01

>Number:         32603
>Category:       xsrc
>Synopsis:       xdm w/ pam_krb5 fails to store tickets
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    xsrc-manager
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Mon Jan 23 18:20:00 +0000 2006
>Originator:     Ty Sarna
>Release:        NetBSD 3.99.15 source date 1/21/06
>Organization:
>Environment:
	
	
System: NetBSD kohaku.sarna.org 3.99.15 NetBSD 3.99.15 (KOHAKU) #7: Sun Jan 22 19:44:31 EST 2006 tsarna@talyn.frontco.com:/usr/build/KOHAKU i386
Architecture: i386
Machine: i386
>Description:
	xdm in prior versions (last I tried was 3.99.7) with pam and
	kerberos used to obtain tickets, though tehre was a bug with
	setting the environment variable pointing to them (see
	PR#31376).

	Now xdm doesn't seem to obtain credentials at all! I can log in
	with my kerberos password, but I get no tickets. For users with
	home on AFS, this meens they can't log in properly (no tickets
	-> no tokens -> no permissions on their homedir)

	I believe this is an xdm problem and not in the pam module as
	xscreensaver is still able to obtain tickets and tokens on
	unlock.	Wether this is related to 31376 or perhaps 30326 I don't
	know. 
>How-To-Repeat:
	Log in using kerberos password. Use klist to verify you have no
	tickets. ls /tmp and notice there there are no ticket files
	(it's not simply that the environment isn't pointing to them).
>Fix:
	unknown.