[krbdev.mit.edu #1201] SVN Commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Mon Jan 12 13:29:50 EST 2009
Add message hash support to the replay interface, using extension
records (with an empty client string) to retain compatibility with old
code. For rd_req, the ciphertext of the authenticator (with no ASN.1
wrapping) is hashed; for other uses of the replay cache, no message
hash is used at this time.
This commit adds a command-line tool for testing the replay cache but
does not add any automated tests.
http://src.mit.edu/fisheye/changelog/krb5/?cs=21723
Commit By: ghudson
Revision: 21723
Changed Files:
U trunk/src/include/k5-int.h
U trunk/src/kdc/kdc_preauth.c
U trunk/src/lib/krb5/krb/mk_cred.c
U trunk/src/lib/krb5/krb/mk_priv.c
U trunk/src/lib/krb5/krb/mk_safe.c
U trunk/src/lib/krb5/krb/rd_cred.c
U trunk/src/lib/krb5/krb/rd_priv.c
U trunk/src/lib/krb5/krb/rd_req_dec.c
U trunk/src/lib/krb5/krb/rd_safe.c
U trunk/src/lib/krb5/libkrb5.exports
U trunk/src/lib/krb5/rcache/Makefile.in
U trunk/src/lib/krb5/rcache/rc_conv.c
U trunk/src/lib/krb5/rcache/rc_dfl.c
A trunk/src/lib/krb5/rcache/t_replay.c
U trunk/src/tests/threads/t_rcache.c
More information about the krb5-bugs
mailing list