[krbdev.mit.edu #8784] git commit
Greg Hudson via RT
rt-comment at KRBDEV-PROD-APP-1.mit.edu
Mon Feb 25 12:08:13 EST 2019
Use better name type for PKINIT KDC certs
RFC 4120 recommends NT-SRV-INST for krbtgt principals; use it in
PKINIT KDC certificates rather than NT-PRINCIPAL. Regenerate test
certificates. Reported by Rick van Rein.
https://github.com/krb5/krb5/commit/3a67736bb9b7873d26a44a7d32b98a2da98d2db6
Author: Greg Hudson <ghudson at mit.edu>
Commit: 3a67736bb9b7873d26a44a7d32b98a2da98d2db6
Branch: master
doc/admin/pkinit.rst | 2 +-
src/tests/dejagnu/pkinit-certs/ca.pem | 32 +++++++-------
src/tests/dejagnu/pkinit-certs/generic.p12 | Bin 2477 -> 2477 bytes
src/tests/dejagnu/pkinit-certs/generic.pem | 26 ++++++------
src/tests/dejagnu/pkinit-certs/kdc.pem | 34 ++++++++--------
src/tests/dejagnu/pkinit-certs/make-certs.sh | 3 +-
src/tests/dejagnu/pkinit-certs/privkey-enc.pem | 52 ++++++++++++------------
src/tests/dejagnu/pkinit-certs/privkey.pem | 50 +++++++++++-----------
src/tests/dejagnu/pkinit-certs/user-enc.p12 | Bin 2837 -> 2837 bytes
src/tests/dejagnu/pkinit-certs/user-upn.p12 | Bin 2829 -> 2829 bytes
src/tests/dejagnu/pkinit-certs/user-upn.pem | 30 +++++++-------
src/tests/dejagnu/pkinit-certs/user-upn2.p12 | Bin 2813 -> 2813 bytes
src/tests/dejagnu/pkinit-certs/user-upn2.pem | 32 +++++++-------
src/tests/dejagnu/pkinit-certs/user-upn3.p12 | Bin 2829 -> 2829 bytes
src/tests/dejagnu/pkinit-certs/user-upn3.pem | 30 +++++++-------
src/tests/dejagnu/pkinit-certs/user.p12 | Bin 2837 -> 2837 bytes
src/tests/dejagnu/pkinit-certs/user.pem | 30 +++++++-------
17 files changed, 161 insertions(+), 160 deletions(-)
More information about the krb5-bugs
mailing list