[krbdev.mit.edu #8537] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Thu Feb 23 12:53:32 EST 2017
Continue preauth after client-side failures
If the module for the selected preauth mechanism fails when processing
a KDC_ERR_MORE_PREAUTH_DATA_REQUIRED error, or fails a tryagain
operation, try again with a different preauth mech using the cached
method data.
If optimistic preauth fails on the client side, send an
unauthenticated request, allowing the mechanisms we tried
optimistically to be tried again.
https://github.com/krb5/krb5/commit/644840a207917661a6ccf706e7830bec273e23b3
Author: Greg Hudson <ghudson at mit.edu>
Commit: 644840a207917661a6ccf706e7830bec273e23b3
Branch: master
src/lib/krb5/krb/get_in_tkt.c | 49 ++++++++++++++++++++++++++--------------
1 files changed, 32 insertions(+), 17 deletions(-)
More information about the krb5-bugs
mailing list