kinit fail on AIX - Kerberos

This is a discussion on kinit fail on AIX - Kerberos ; Hi, I compiled and installed kerberos 1.4.3, 1.4.1, 1.3.6 on AIX (5.2). Kinit works fine for version 1.3.6. But when I run kinit under v1.4.3 or 1.4.1, it gave me error: kinit(v5): Cannot resolve network address for KDC in requested ...

+ Reply to Thread
Results 1 to 2 of 2

Thread: kinit fail on AIX

  1. kinit fail on AIX

    Hi,

    I compiled and installed kerberos 1.4.3, 1.4.1, 1.3.6 on AIX (5.2). Kinit
    works fine for version 1.3.6. But when I run kinit under v1.4.3 or 1.4.1,
    it gave me error: kinit(v5): Cannot resolve network address for KDC in
    requested realm while getting initial credentials

    Here are the commands I used:
    ../configure --prefix=/users/mmm/krb5_1.4.3 --with-krb4 --enable-static
    --disable-shared
    make
    make install

    I think kerberos 1.3.6 uses the save configuration file(/etc/krb.conf,
    krb5.conf) as 1.4.3 and the DNS host name to IP address lookup works
    fine. So what's the problem? any suggestion?

    Thanks,

    Hong


    ________________________________________________
    Kerberos mailing list Kerberos@mit.edu
    https://mailman.mit.edu/mailman/listinfo/kerberos


  2. Re: kinit fail on AIX

    I ran into the same problem some month ago. The following patch works
    for me.

    Donn Cave, donn@u.washington.edu
    -----------------------------------
    *** include/fake-addrinfo.h.dist Wed Jun 1 12:24:32 2005
    --- include/fake-addrinfo.h Fri Aug 12 09:10:48 2005
    ***************
    *** 1193,1199 ****
    a known service name for tcp or udp (as appropriate), an error
    code (for "host not found") is returned. If the port maps to a
    known service for both udp and tcp, all is well. */
    ! if (serv && serv[0] && isdigit(serv[0])) {
    unsigned long lport;
    char *end;
    lport = strtoul(serv, &end, 10);
    --- 1193,1208 ----
    a known service name for tcp or udp (as appropriate), an error
    code (for "host not found") is returned. If the port maps to a
    known service for both udp and tcp, all is well. */
    ! /*
    ! **
    ! ** However, where AI_NUNERICSERV is defined (AIX 5) and was
    specified,
    ! ** this is unneeded and and broken - "discard" is not numeric.
    ! */
    ! if (serv && serv[0]
    ! #ifdef AI_NUMERICSERV
    ! && !(hint->ai_flags & AI_NUMERICSERV)
    ! #endif
    ! && isdigit(serv[0])) {
    unsigned long lport;
    char *end;
    lport = strtoul(serv, &end, 10);

    Christian

    Hong Ye wrote:
    > I compiled and installed kerberos 1.4.3, 1.4.1, 1.3.6 on AIX (5.2). Kinit
    > works fine for version 1.3.6. But when I run kinit under v1.4.3 or 1.4.1,
    > it gave me error: kinit(v5): Cannot resolve network address for KDC in
    > requested realm while getting initial credentials


+ Reply to Thread