Debian Bug report logs - #1098338
heimdal-kcm does not renew TGTs

version graph

Package: heimdal-kcm; Maintainer for heimdal-kcm is Brian May <[email protected]>; Source for heimdal-kcm is src:heimdal (PTS, buildd, popcon).

Reported by: Sergio Gelato <[email protected]>

Date: Wed, 19 Feb 2025 10:48:01 UTC

Severity: normal

Found in version heimdal/7.8.git20221117.28daf24+dfsg-2

Forwarded to https://github.com/heimdal/heimdal/issues/1272

Reply or subscribe to this bug.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to [email protected], Brian May <[email protected]>:
Bug#1098338; Package heimdal-kcm. (Wed, 19 Feb 2025 10:48:02 GMT) (full text, mbox, link).

Acknowledgement sent to Sergio Gelato <[email protected]>:
New Bug report received and forwarded. Copy sent to Brian May <[email protected]>. (Wed, 19 Feb 2025 10:48:02 GMT) (full text, mbox, link).

Message #5 received at [email protected] (full text, mbox, reply):

From: Sergio Gelato <[email protected]>
To: "[email protected]" <[email protected]>
Subject: heimdal-kcm does not renew TGTs
Date: Wed, 19 Feb 2025 10:44:42 +0000
Package: heimdal-kcm
Version: 7.8.git20221117.28daf24+dfsg-2

According to the kcm(8) man page:

"The tickets are renewed as long as is permitted by the KDC's policy."

This may be true on macOS, but it is plainly not so on Debian. In fact, from looking at the source git repository I get the impression that it hasn't been so for many years. The event loop is simply not there. It's amazing that no one seems to have reported this before.

To reproduce:
1. sudo apt install heimdal-kcm
2. in /etc/krb5.conf, set [libdefaults]default_ccache_name=KCM: (and/or default_cc_name=KCM: if using heimdal-clients; I tested with krb5-user)
3. kinit -l 6m -r 30m
4. klist -f; sleep 600; klist -f

Information forwarded to [email protected]:
Bug#1098338; Package heimdal-kcm. (Wed, 19 Feb 2025 20:39:02 GMT) (full text, mbox, link).

Acknowledgement sent to Brian May <[email protected]>:
Extra info received and forwarded to list. (Wed, 19 Feb 2025 20:39:03 GMT) (full text, mbox, link).

Message #10 received at [email protected] (full text, mbox, reply):

From: Brian May <[email protected]>
To: Sergio Gelato <[email protected]>, [email protected]
Subject: Re: Bug#1098338: heimdal-kcm does not renew TGTs
Date: Thu, 20 Feb 2025 07:38:00 +1100
Sergio Gelato <[email protected]> writes:

> Package: heimdal-kcm
> Version: 7.8.git20221117.28daf24+dfsg-2
>
> According to the kcm(8) man page:
>
> "The tickets are renewed as long as is permitted by the KDC's policy."
>
> This may be true on macOS, but it is plainly not so on Debian. In fact, from looking at the source git repository I get the impression that it hasn't been so for many years. The event loop is simply not there. It's amazing that no one seems to have reported this before.
>
> To reproduce:
> 1. sudo apt install heimdal-kcm
> 2. in /etc/krb5.conf, set [libdefaults]default_ccache_name=KCM: (and/or default_cc_name=KCM: if using heimdal-clients; I tested with krb5-user)
> 3. kinit -l 6m -r 30m
> 4. klist -f; sleep 600; klist -f

Can you please send a bug to the upstream bug tracker? It is probably
better if you do it.

https://github.com/heimdal/heimdal/issues/

(unless you thnk this has alreaady been fixed upstream but I am somewhat
doubtful)
-- 
Brian May @ Debian

Set Bug forwarded-to-address to 'https://github.com/heimdal/heimdal/issues/1272'. Request was from Brian May <[email protected]> to [email protected]. (Fri, 21 Feb 2025 04:03:01 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <[email protected]>. Last modified: Thu May 15 19:43:29 2025; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU General Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.