[krbdev.mit.edu #7642] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Mon May 27 13:05:22 EDT 2013
Make empty passwords work via init_creds APIs
In the gak_data value used by krb5_get_as_key_password, separate the
already-known password from the storage we might have allocated to put
it in, so that we no longer use an empty data buffer to determine
whether we know the password. This allows empty passwords to work via
the API.
Remove the kadm5 test which explicitly uses an empty password.
Based on a patch from Stef Walter.
https://github.com/krb5/krb5/commit/f3458ed803ae97b6c6c7c63baeb82b26c4943d4c
Author: Greg Hudson <ghudson at mit.edu>
Commit: f3458ed803ae97b6c6c7c63baeb82b26c4943d4c
Branch: master
src/lib/kadm5/unit-test/api.current/init.exp | 27 -------
src/lib/krb5/krb/get_in_tkt.c | 5 +-
src/lib/krb5/krb/gic_pwd.c | 107 +++++++++++++-------------
src/lib/krb5/krb/init_creds_ctx.h | 7 ++-
src/tests/Makefile.in | 11 ++-
src/tests/deps | 2 +
src/tests/t_general.py | 9 ++
src/tests/t_init_creds.c | 88 +++++++++++++++++++++
8 files changed, 166 insertions(+), 90 deletions(-)
More information about the krb5-bugs
mailing list