[krbdev.mit.edu #1415] subkeys fubar
Public Submitter via RT
rt-comment at krbdev.mit.edu
Fri Apr 18 00:14:01 EDT 2003
[tlyu - Thu Apr 17 19:51:38 2003]:
> Changing the default subkey negotiation doesn't break the
> AP-REQ/AP-REP exchange, since those messages only contain ciphertext
> encrypted using the ticket session key. They may break the state of
> what applications are expecting in terms of local and remote subkeys,
> though.
Right. I think the existing behaviour has to remain the default.
> To achieve "server subkey wins", we sould have to stomp on
> local_subkey in the client and on remote_subkey in the server. This
> might cause pointer aliasing nastiness, but is very probably
> manageable, given that the structure involved is supposed to be
> opaque.
Er, why can't server subkey wins (or any other variation) be a
per-auth-context
option that can be set by the application, with the current
ignore-the-server's-
offered-subkey behaviour as the default?
Nico
More information about the krb5-bugs
mailing list