Re: 1.5: kimpersonate or afslog broken

I did try master with the usual automake-yak-shaving (*) procedure.

Answer: 

# /usr/heimdal-20110901/libexec/kimpersonate -s afs/pdc.kth.se <at> NADA.KTH.SE -c haba/admin -k
AFSKEYFILE:/etc/afs/server/KeyFile -t des-cbc-crc
# /usr/heimdal-20110901/bin/afslog -v -P haba/admin <at> NADA.KTH.SE -c pdc.kth.se --realm=NADA.KTH.SE
afslog: Getting tokens for cell "pdc.kth.se"
krb5 tried afs/pdc.kth.se <at> NADA.KTH.SE -> Success (0)
# /usr/openafs/bin/tokens 

Tokens held by the Cache Manager:

Tokens for afs <at> pdc.kth.se [Expires Sep  1 18:52]
   --End of list--

The resulting token works. Thanks.

Btw, when allow_weak_crypto = no, then error messages like this
are produced:

 krb5_crypto_init: encryption type 1 not supported

From the user perspective, the error string "type 1" is bad. So is
there a function that can translate the type number to user readable
strings so that it would print

 krb5_crypto_init: encryption des-cbc-crc not supported

instead?

Especially if you compare the following error messages:

# kimpersonate ... -t 1
kimpersonate: krb5_string_to_enctype: encryption type 1 not supported

# kimpersonate  ... -t des-cbc-crc
kimpersonate: krb5_crypto_init: encryption type 1 not supported

We all remember the days of "An unkonwn error of type X has occured" don't we?

Harald.

(*) autoreconfig on other distro than configure; make because of
version troubles. And I did "cheat" and change the automake requirement
from 1.10.3 to 1.10.2, but probably my 1.10.2-2ubuntu-whatever does
incorporate additional bug fixes.