* [9fans] fossil and auth
@ 2003-07-20 5:02 Christopher Nielsen
2003-07-20 13:28 ` David Presotto
0 siblings, 1 reply; 5+ messages in thread
From: Christopher Nielsen @ 2003-07-20 5:02 UTC (permalink / raw)
To: 9fans
I have setup a standalone fossil/venti fileserver. I also
have a standalone auth server.
When I try to attach to main on the fileserver, I am getting
authentication failures. There are no errors in the logs on
the auth server. The output on fscons is:
attach main as madhatter: phase error protocol phase error: read in state SNeedTicket
Any clues as to what I might have done wrong?
--
Christopher Nielsen
"They who can give up essential liberty for temporary
safety, deserve neither liberty nor safety." --Benjamin Franklin
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [9fans] fossil and auth
2003-07-20 5:02 [9fans] fossil and auth Christopher Nielsen
@ 2003-07-20 13:28 ` David Presotto
2003-07-21 14:13 ` Christopher Nielsen
0 siblings, 1 reply; 5+ messages in thread
From: David Presotto @ 2003-07-20 13:28 UTC (permalink / raw)
To: 9fans
[-- Attachment #1: Type: text/plain, Size: 305 bytes --]
what authentication errors are you getting on the calling system? In
a window, 'echo -n debug > /mnt/factotum/ctl' then 'cat /dev/kprint'.
In another window, try the attach.
Most likely, the caller doesn't know which auth server to use for
the auth domain of the file server and is just hanging up.
[-- Attachment #2: Type: message/rfc822, Size: 2334 bytes --]
From: Christopher Nielsen <cnielsen@pobox.com>
To: 9fans@cse.psu.edu
Subject: [9fans] fossil and auth
Date: Sat, 19 Jul 2003 22:02:44 -0700
Message-ID: <20030720050244.GG63873@cassie.foobarbaz.net>
I have setup a standalone fossil/venti fileserver. I also
have a standalone auth server.
When I try to attach to main on the fileserver, I am getting
authentication failures. There are no errors in the logs on
the auth server. The output on fscons is:
attach main as madhatter: phase error protocol phase error: read in state SNeedTicket
Any clues as to what I might have done wrong?
--
Christopher Nielsen
"They who can give up essential liberty for temporary
safety, deserve neither liberty nor safety." --Benjamin Franklin
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [9fans] fossil and auth
2003-07-20 13:28 ` David Presotto
@ 2003-07-21 14:13 ` Christopher Nielsen
2003-07-21 19:46 ` Christopher Nielsen
0 siblings, 1 reply; 5+ messages in thread
From: Christopher Nielsen @ 2003-07-21 14:13 UTC (permalink / raw)
To: 9fans
Here is the output. From the logs on the auth server, it looks
like authentication is successful and a ticket is granted, but
I must admit I am not certain.
12: start proto=p9any role=client yields phase CNeedProtos: ok
12: read 4093 in phase CNeedProtos yields phase CNeedProtos: phase: protocol phase error: read in state CNeedProtos
12: write 0 in phase CNeedProtos yields phase CNeedProtos: toosmall 2048
12: no key matches proto=p9sk1 dom=foobarbaz.net role=speakfor user? !password?
12: no key matches proto=p9sk1 dom=foobarbaz.net role=client user? !password?
12: write 20 in phase CNeedProtos yields phase CNeedProtos: needkey !password? dom=foobarbaz.net proto=p9sk1 user?
0: no key matches
0: failure no key matches
12: start proto=p9sk1 role=client dom=foobarbaz.net yields phase CHaveChal: ok
12: write 20 in phase CNeedProtos yields phase CHaveProto: ok
12: read 20 in phase CHaveProto yields phase CRelay: ok
12: read 8 in phase CHaveChal yields phase CNeedTreq: ok
12: read 8 in phase CRelay yields phase CRelay: ok
12: read 4093 in phase CNeedTreq yields phase CNeedTreq: phase: protocol phase error: read in state CNeedTreq
12: read 4093 in phase CRelay yields phase CRelay: phase: protocol phase error: read in state CNeedTreq
12: write 0 in phase CNeedTreq yields phase CNeedTreq: toosmall 141
12: write 0 in phase CRelay yields phase CRelay: toosmall 141
12: write 141 in phase CNeedTreq yields phase CHaveTicket: ok
12: write 141 in phase CRelay yields phase CRelay: ok
12: read 85 in phase CHaveTicket yields phase CNeedAuth: ok
12: read 85 in phase CRelay yields phase CRelay: ok
Here is the corresponding entry from the auth server:
enki Jul 21 10:05:12 tr-ok madhatter@madhatter(192.168.0.10) -> madhatter@bootes
Thanks for the help.
On Sun, Jul 20, 2003 at 09:28:35AM -0400, David Presotto wrote:
> what authentication errors are you getting on the calling system? In
> a window, 'echo -n debug > /mnt/factotum/ctl' then 'cat /dev/kprint'.
> In another window, try the attach.
>
> Most likely, the caller doesn't know which auth server to use for
> the auth domain of the file server and is just hanging up.
> From: Christopher Nielsen <cnielsen@pobox.com>
> To: 9fans@cse.psu.edu
> Date: Sat, 19 Jul 2003 22:02:44 -0700
> Subject: [9fans] fossil and auth
>
> I have setup a standalone fossil/venti fileserver. I also
> have a standalone auth server.
>
> When I try to attach to main on the fileserver, I am getting
> authentication failures. There are no errors in the logs on
> the auth server. The output on fscons is:
>
> attach main as madhatter: phase error protocol phase error: read in state SNeedTicket
>
> Any clues as to what I might have done wrong?
>
> --
> Christopher Nielsen
> "They who can give up essential liberty for temporary
> safety, deserve neither liberty nor safety." --Benjamin Franklin
--
Christopher Nielsen
"They who can give up essential liberty for temporary
safety, deserve neither liberty nor safety." --Benjamin Franklin
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [9fans] fossil and auth
2003-07-21 14:13 ` Christopher Nielsen
@ 2003-07-21 19:46 ` Christopher Nielsen
2003-07-21 21:40 ` Christopher Nielsen
0 siblings, 1 reply; 5+ messages in thread
From: Christopher Nielsen @ 2003-07-21 19:46 UTC (permalink / raw)
To: 9fans
I am completely stumped on this one. I have no clue what's
happening. I've checked everything I can think of and nothing
is working. Here's snoopy output from the conversation between
the client, the auth server and the fileserver. The fileserver
is 192.168.0.129 and the auth server is 192.168.0.130. I have
no idea if it will be of any use. Any suggestions woud be
greatly appreciated.
Thanks.
008949 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=78)
ip(s=192.168.0.10 d=192.168.0.129 id=0ce6 frag=0000 ttl=255 pr=6 ln=64)
tcp(s=9047 d=564 seq=119742927 ack=3080132018 fl=AP win=65535 ck=eea2)
ninep(Tauth tag 12 afid 320 uname madhatter aname )
008969 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=74)
ip(s=192.168.0.129 d=192.168.0.10 id=1ccf frag=0000 ttl=255 pr=6 ln=60)
tcp(s=564 d=9047 seq=3080132018 ack=119742951 fl=AP win=65535 ck=56e8)
ninep(Rauth tag 12 qid (0000000000000140 0 A))
008982 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=60)
ip(s=192.168.0.10 d=192.168.0.129 id=0ce7 frag=0000 ttl=255 pr=6 ln=40)
tcp(s=9047 d=564 seq=119742951 ack=3080132038 fl=AP win=65535 ck=11fe)
017923 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=77)
ip(s=192.168.0.10 d=192.168.0.129 id=0ce8 frag=0000 ttl=255 pr=6 ln=63)
tcp(s=9047 d=564 seq=119742951 ack=3080132038 fl=AP win=65535 ck=7d9a)
ninep(Tread tag 12 fid 320 offset 0 count 2048)
020863 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=85)
ip(s=192.168.0.129 d=192.168.0.10 id=1cd0 frag=0000 ttl=255 pr=6 ln=71)
tcp(s=564 d=9047 seq=3080132038 ack=119742974 fl=AP win=65535 ck=5e9c)
ninep(Rread tag 12 count 20 '7039736b 3140666f 6f626172 62617a2e 6e657400')
020874 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=97)
ip(s=192.168.0.10 d=192.168.0.129 id=0ce9 frag=0000 ttl=255 pr=6 ln=83)
tcp(s=9047 d=564 seq=119742974 ack=3080132069 fl=AP win=65535 ck=701d)
ninep(Twrite tag 12 fid 320 offset 20 count 20 '7039736b 3120666f 6f626172 62617a2e 6e657400')
033202 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=65)
ip(s=192.168.0.129 d=192.168.0.10 id=1cd1 frag=0000 ttl=255 pr=6 ln=51)
tcp(s=564 d=9047 seq=3080132069 ack=119743017 fl=AP win=65535 ck=8f71)
ninep(Rwrite tag 12 count 20)
037461 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=85)
ip(s=192.168.0.10 d=192.168.0.129 id=0cea frag=0000 ttl=255 pr=6 ln=71)
tcp(s=9047 d=564 seq=119743017 ack=3080132080 fl=AP win=65535 ck=3dcd)
ninep(Twrite tag 12 fid 320 offset 40 count 8 'ff79ffff 0b0f7eff')
037475 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=65)
ip(s=192.168.0.129 d=192.168.0.10 id=1cd2 frag=0000 ttl=255 pr=6 ln=51)
tcp(s=564 d=9047 seq=3080132080 ack=119743048 fl=AP win=65535 ck=8f53)
ninep(Rwrite tag 12 count 8)
042946 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=77)
ip(s=192.168.0.10 d=192.168.0.129 id=0ceb frag=0000 ttl=255 pr=6 ln=63)
tcp(s=9047 d=564 seq=119743048 ack=3080132091 fl=AP win=65535 ck=8447)
ninep(Tread tag 12 fid 320 offset 48 count 141)
042970 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=206)
ip(s=192.168.0.129 d=192.168.0.10 id=1cd3 frag=0000 ttl=255 pr=6 ln=192)
tcp(s=564 d=9047 seq=3080132091 ack=119743071 fl=AP win=65535 ck=76f3)
ninep(Rread tag 12 count 141 '01626f6f 74657300 00000000 00000000 00000000 00000000 00000000 00666f6f 62617262 617a2e6e 65740000 00000000 00000000 00000000 00000000 00000000')
042986 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=60)
ip(s=192.168.0.10 d=192.168.0.129 id=0cec frag=0000 ttl=255 pr=6 ln=40)
tcp(s=9047 d=564 seq=119743071 ack=3080132243 fl=AP win=65535 ck=10b9)
050549 ms
ether(s=000c29fd4408 d=00095b06f4d5 pr=0800 ln=62)
ip(s=192.168.0.10 d=192.168.0.130 id=0ced frag=0000 ttl=255 pr=6 ln=48)
tcp(s=9058 d=567 seq=1782916576 ack=0 fl=S win=65535 ck=4d83 opt4=(mss 1460) opt3=(wscale 0) opt=NOOP)
053705 ms
ether(s=00095b06f4d5 d=000c29fd4408 pr=0800 ln=62)
ip(s=192.168.0.130 d=192.168.0.10 id=315a frag=0000 ttl=255 pr=6 ln=48)
tcp(s=567 d=9058 seq=2661334796 ack=1782916577 fl=AS win=65535 ck=efc4 opt4=(mss 1460) opt3=(wscale 0) opt=NOOP)
053721 ms
ether(s=000c29fd4408 d=00095b06f4d5 pr=0800 ln=60)
ip(s=192.168.0.10 d=192.168.0.130 id=0cee frag=0000 ttl=255 pr=6 ln=40)
tcp(s=9058 d=567 seq=1782916577 ack=2661334797 fl=AP win=65535 ck=1a82)
053732 ms
ether(s=000c29fd4408 d=00095b06f4d5 pr=0800 ln=195)
ip(s=192.168.0.10 d=192.168.0.130 id=0cef frag=0000 ttl=255 pr=6 ln=181)
tcp(s=9058 d=567 seq=1782916577 ack=2661334797 fl=AP win=65535 ck=a635)
dump(01626f6f74657300000000000000000000000000000000000000000000666f6f)
053749 ms
ether(s=00095b06f4d5 d=000c29fd4408 pr=0800 ln=60)
ip(s=192.168.0.130 d=192.168.0.10 id=315b frag=0000 ttl=255 pr=6 ln=40)
tcp(s=567 d=9058 seq=2661334797 ack=1782916718 fl=AP win=65394 ck=1a82)
053763 ms
ether(s=00095b06f4d5 d=000c29fd4408 pr=0800 ln=199)
ip(s=192.168.0.130 d=192.168.0.10 id=315c frag=0000 ttl=255 pr=6 ln=185)
tcp(s=567 d=9058 seq=2661334797 ack=1782916718 fl=AP win=65535 ck=9677)
dump(047477fe6187d06ad76b57152d73e1ac03c700b9bad30ece6765de40cbcc1d26)
053773 ms
ether(s=000c29fd4408 d=00095b06f4d5 pr=0800 ln=60)
ip(s=192.168.0.10 d=192.168.0.130 id=0cf0 frag=0000 ttl=255 pr=6 ln=40)
tcp(s=9058 d=567 seq=1782916718 ack=2661334942 fl=AF win=65535 ck=196b)
054334 ms
ether(s=00095b06f4d5 d=000c29fd4408 pr=0800 ln=60)
ip(s=192.168.0.130 d=192.168.0.10 id=315d frag=0000 ttl=255 pr=6 ln=40)
tcp(s=567 d=9058 seq=2661334942 ack=1782916719 fl=AP win=65535 ck=1963)
054347 ms
ether(s=00095b06f4d5 d=000c29fd4408 pr=0800 ln=60)
ip(s=192.168.0.130 d=192.168.0.10 id=315e frag=0000 ttl=255 pr=6 ln=40)
tcp(s=567 d=9058 seq=2661334942 ack=1782916719 fl=AF win=65535 ck=196a)
054359 ms
ether(s=000c29fd4408 d=00095b06f4d5 pr=0800 ln=60)
ip(s=192.168.0.10 d=192.168.0.130 id=0cf1 frag=0000 ttl=255 pr=6 ln=40)
tcp(s=9058 d=567 seq=1782916719 ack=2661334943 fl=AP win=65535 ck=1962)
054370 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=162)
ip(s=192.168.0.10 d=192.168.0.129 id=0cf2 frag=0000 ttl=255 pr=6 ln=148)
tcp(s=9047 d=564 seq=119743071 ack=3080132243 fl=AP win=65535 ck=f564)
ninep(Twrite tag 12 fid 320 offset 189 count 85 '70ffff1e 6bffffff 750b1504 74ffff5c ffff4dff ff1258ff 567074ff ffffff42 5d23ff33 ffff3dff ffff643f ff2306ff ff4bff3e 05ffff18 73ffff56 147e17ff')
054385 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=82)
ip(s=192.168.0.129 d=192.168.0.10 id=1cd4 frag=0000 ttl=255 pr=6 ln=68)
tcp(s=564 d=9047 seq=3080132243 ack=119743179 fl=AP win=65535 ck=5416)
ninep(Rerror tag 12 ename file does not exist)
054395 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=82)
ip(s=192.168.0.10 d=192.168.0.129 id=0cf3 frag=0000 ttl=255 pr=6 ln=68)
tcp(s=9047 d=564 seq=119743179 ack=3080132271 fl=AP win=65535 ck=e564)
ninep(Tattach tag 12 fid 321 afid 320 uname madhatter aname )
055411 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=84)
ip(s=192.168.0.129 d=192.168.0.10 id=1cd5 frag=0000 ttl=255 pr=6 ln=70)
tcp(s=564 d=9047 seq=3080132271 ack=119743207 fl=AP win=65535 ck=628c)
ninep(Rerror tag 12 ename authentication failed)
055431 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=65)
ip(s=192.168.0.10 d=192.168.0.129 id=0cf4 frag=0000 ttl=255 pr=6 ln=51)
tcp(s=9047 d=564 seq=119743207 ack=3080132301 fl=AP win=65535 ck=8b9f)
ninep(Tclunk tag 12 fid 320)
055452 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=61)
ip(s=192.168.0.129 d=192.168.0.10 id=1cd6 frag=0000 ttl=255 pr=6 ln=47)
tcp(s=564 d=9047 seq=3080132301 ack=119743218 fl=AP win=65535 ck=8fd8)
ninep(Rclunk tag 12)
055470 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=60)
ip(s=192.168.0.10 d=192.168.0.129 id=0cf5 frag=0000 ttl=255 pr=6 ln=40)
tcp(s=9047 d=564 seq=119743218 ack=3080132308 fl=AP win=65535 ck=0fe5)
055493 ms
ether(s=00c04f6ef3b5 d=000c29fd4408 pr=0800 ln=60)
ip(s=192.168.0.129 d=192.168.0.10 id=1cee frag=0000 ttl=255 pr=6 ln=41)
tcp(s=564 d=9047 seq=3080132307 ack=119743218 fl=AP win=65535 ck=08e5)
ninep(07)
055503 ms
ether(s=000c29fd4408 d=00c04f6ef3b5 pr=0800 ln=60)
ip(s=192.168.0.10 d=192.168.0.129 id=0d08 frag=0000 ttl=255 pr=6 ln=40)
tcp(s=9047 d=564 seq=119743218 ack=3080132308 fl=AP win=65535 ck=0fe5)
On Mon, Jul 21, 2003 at 07:13:42AM -0700, Christopher Nielsen wrote:
> Here is the output. From the logs on the auth server, it looks
> like authentication is successful and a ticket is granted, but
> I must admit I am not certain.
>
> 12: start proto=p9any role=client yields phase CNeedProtos: ok
> 12: read 4093 in phase CNeedProtos yields phase CNeedProtos: phase: protocol phase error: read in state CNeedProtos
> 12: write 0 in phase CNeedProtos yields phase CNeedProtos: toosmall 2048
> 12: no key matches proto=p9sk1 dom=foobarbaz.net role=speakfor user? !password?
> 12: no key matches proto=p9sk1 dom=foobarbaz.net role=client user? !password?
> 12: write 20 in phase CNeedProtos yields phase CNeedProtos: needkey !password? dom=foobarbaz.net proto=p9sk1 user?
> 0: no key matches
> 0: failure no key matches
> 12: start proto=p9sk1 role=client dom=foobarbaz.net yields phase CHaveChal: ok
> 12: write 20 in phase CNeedProtos yields phase CHaveProto: ok
> 12: read 20 in phase CHaveProto yields phase CRelay: ok
> 12: read 8 in phase CHaveChal yields phase CNeedTreq: ok
> 12: read 8 in phase CRelay yields phase CRelay: ok
> 12: read 4093 in phase CNeedTreq yields phase CNeedTreq: phase: protocol phase error: read in state CNeedTreq
> 12: read 4093 in phase CRelay yields phase CRelay: phase: protocol phase error: read in state CNeedTreq
> 12: write 0 in phase CNeedTreq yields phase CNeedTreq: toosmall 141
> 12: write 0 in phase CRelay yields phase CRelay: toosmall 141
> 12: write 141 in phase CNeedTreq yields phase CHaveTicket: ok
> 12: write 141 in phase CRelay yields phase CRelay: ok
> 12: read 85 in phase CHaveTicket yields phase CNeedAuth: ok
> 12: read 85 in phase CRelay yields phase CRelay: ok
>
> Here is the corresponding entry from the auth server:
>
> enki Jul 21 10:05:12 tr-ok madhatter@madhatter(192.168.0.10) -> madhatter@bootes
>
> Thanks for the help.
>
> On Sun, Jul 20, 2003 at 09:28:35AM -0400, David Presotto wrote:
> > what authentication errors are you getting on the calling system? In
> > a window, 'echo -n debug > /mnt/factotum/ctl' then 'cat /dev/kprint'.
> > In another window, try the attach.
> >
> > Most likely, the caller doesn't know which auth server to use for
> > the auth domain of the file server and is just hanging up.
>
> > From: Christopher Nielsen <cnielsen@pobox.com>
> > To: 9fans@cse.psu.edu
> > Date: Sat, 19 Jul 2003 22:02:44 -0700
> > Subject: [9fans] fossil and auth
> >
> > I have setup a standalone fossil/venti fileserver. I also
> > have a standalone auth server.
> >
> > When I try to attach to main on the fileserver, I am getting
> > authentication failures. There are no errors in the logs on
> > the auth server. The output on fscons is:
> >
> > attach main as madhatter: phase error protocol phase error: read in state SNeedTicket
> >
> > Any clues as to what I might have done wrong?
> >
> > --
> > Christopher Nielsen
> > "They who can give up essential liberty for temporary
> > safety, deserve neither liberty nor safety." --Benjamin Franklin
>
>
> --
> Christopher Nielsen
> "They who can give up essential liberty for temporary
> safety, deserve neither liberty nor safety." --Benjamin Franklin
--
Christopher Nielsen
"They who can give up essential liberty for temporary
safety, deserve neither liberty nor safety." --Benjamin Franklin
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [9fans] fossil and auth
2003-07-21 19:46 ` Christopher Nielsen
@ 2003-07-21 21:40 ` Christopher Nielsen
0 siblings, 0 replies; 5+ messages in thread
From: Christopher Nielsen @ 2003-07-21 21:40 UTC (permalink / raw)
To: 9fans
Problem solved. The contents of nvram were hosed. Rewriting
them fixed everything.
--
Christopher Nielsen
"They who can give up essential liberty for temporary
safety, deserve neither liberty nor safety." --Benjamin Franklin
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2003-07-21 21:40 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2003-07-20 5:02 [9fans] fossil and auth Christopher Nielsen
2003-07-20 13:28 ` David Presotto
2003-07-21 14:13 ` Christopher Nielsen
2003-07-21 19:46 ` Christopher Nielsen
2003-07-21 21:40 ` Christopher Nielsen
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).