[krbdev.mit.edu #8421] git commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Wed Jul 6 16:32:58 EDT 2016
Avoid setting AS key when OTP preauth fails
In otp_client_process(), call cb->set_as_key() later in the function
after the OTP request has been created. The previous position of this
call caused the AS key to be replaced even when later code in the
function failed, preventing other preauth mechanisms from retrieving
the correct AS key.
(cherry picked from commit 0712d0059d72ddeaf1764f8fa173a321e3bc072d)
https://github.com/krb5/krb5/commit/c82185d4b62cb943d47f90d93f4e51d0dd184d18
Author: Nathaniel McCallum <npmccallum at redhat.com>
Committer: Tom Yu <tlyu at mit.edu>
Commit: c82185d4b62cb943d47f90d93f4e51d0dd184d18
Branch: krb5-1.13
src/lib/krb5/krb/preauth_otp.c | 10 +++++-----
1 files changed, 5 insertions(+), 5 deletions(-)
More information about the krb5-bugs
mailing list