[krbdev.mit.edu #7190] SVN Commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Mon Jul 2 12:47:16 EDT 2012
Include all default etypes in gic_keytab requests
Revert 18b02f3e839c007fff54fc9b693f479b7563ec73 in the KDC. Instead,
when making an initial request with a keytab, transmit the whole
default_tkt_enctypes list, but sorted with the enctypes we have in the
keytab first. That way the KDC should prefer enctypes which we have
keys for (for both reply key and session key), but the other enctypes
are still available for use as ticket session keys.
https://github.com/krb5/krb5/commit/61659df1036d1ad6d6891293f5949e720a2028f7
Author: Greg Hudson <ghudson at mit.edu>
Commit: 61659df1036d1ad6d6891293f5949e720a2028f7
Branch: master
src/kdc/kdc_util.c | 14 ----------
src/lib/krb5/krb/gic_keytab.c | 56 ++++++++++++++++++++++-------------------
2 files changed, 30 insertions(+), 40 deletions(-)
More information about the krb5-bugs
mailing list