[krbdev.mit.edu #1624] SVN Commit
Sam Hartman via RT
rt-comment at krbdev.mit.edu
Thu Apr 2 23:33:03 EDT 2009
Unfortunately, pre-1.7 krshd fails to support keyed checksums because
it uses the wrong API and wrong key usage. So, if the auth_context
has an explicit checksum type set, then respect that. kcmd sets such
a checksum type. Also, because other applications may have the same
problem, allow the config file variable if set to override the default
checksum.
* kcmd.c: Force use of rsa_md5
* init_ctx.c: do not default to md5
* mk_req_ext.c: allow auth_context to override
http://src.mit.edu/fisheye/changelog/krb5/?cs=22160
Commit By: hartmans
Revision: 22160
Changed Files:
U trunk/doc/admin.texinfo
U trunk/src/appl/bsd/kcmd.c
U trunk/src/config-files/krb5.conf.M
U trunk/src/lib/krb5/krb/init_ctx.c
U trunk/src/lib/krb5/krb/mk_req_ext.c
More information about the krb5-bugs
mailing list