[krbdev.mit.edu #5924] Non-unique microseconds in TGS_REQ authenticator causing KRB5KRB_AP_ERR_REPEAT Request is a replay
Nik Conwell via RT
rt-comment at krbdev.mit.edu
Fri Mar 21 15:55:51 EDT 2008
--- krb5-1.3.4-orig/src/lib/krb5/krb/send_tgs.c 2008-03-17 09:16:42.000000000 -0400
+++ krb5-1.3.4/src/lib/krb5/krb/send_tgs.c 2008-03-20 11:37:05.000000000 -0400
@@ -77,6 +77,11 @@
free(checksum.contents);
return(retval);
}
+ if (getenv("KRB5PRINTAUTHENTICATOR")) {
+ printf("send_tgs.c:krb5_send_tgs_basic() authenticator generated:\n");
+ printf(" authent.ctime = %ld\n",authent.ctime);
+ printf(" authent.cusec = %ld\n",authent.cusec);
+ }
/* encode the authenticator */
if ((retval = encode_krb5_authenticator(&authent, &scratch))) {
More information about the krb5-bugs
mailing list