[krbdev.mit.edu #8573] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Mon Jul 17 22:41:25 EDT 2017
Check for FAST in encrypted challenge client
If we reach the encrypted challenge clpreauth process method without
an armor key, error out instead of crashing. This can happen if (a)
the KDC offers encrypted challenge even though the request doesn't use
FAST (the Heimdal KDC apparently does this), and (b) we fall back to
that preauth method before generating a preauthenticated request,
typically because of a prompter failure in encrypted timestamp.
Reported by Nico Williams.
(cherry picked from commit ff6aac3e018e80fa32df2e14446c6ed9595dfc3c)
https://github.com/krb5/krb5/commit/39a8a84b9bc880ef2879667f93c18b4d1b989eff
Author: Greg Hudson <ghudson at mit.edu>
Commit: 39a8a84b9bc880ef2879667f93c18b4d1b989eff
Branch: krb5-1.14
src/lib/krb5/krb/preauth_ec.c | 2 ++
1 files changed, 2 insertions(+), 0 deletions(-)
More information about the krb5-bugs
mailing list