projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d44144b) | patch
Unfortunately, pre-1.7 krshd fails to support keyed checksums because
authorSam Hartman <hartmans@mit.edu>
Fri, 3 Apr 2009 03:33:01 +0000 (03:33 +0000)
committerSam Hartman <hartmans@mit.edu>
Fri, 3 Apr 2009 03:33:01 +0000 (03:33 +0000)
commit6d48a7deaeed3dcb5dce55d8e9730c47512a904e
tree5bcc45ebabcfab7ec0993fb33f79f9093a983061tree | snapshot
parentd44144bc3c86cd2e0b9dbe74f0241905201ddd23commit | diff
Unfortunately, pre-1.7 krshd fails to support keyed checksums because
it uses the wrong API and wrong key usage.  So, if the auth_context
has an explicit checksum type set, then respect that.  kcmd sets such
a checksum type.  Also, because other applications may have the same
problem, allow the config file variable if set to override the default
checksum.

* kcmd.c: Force use of rsa_md5
* init_ctx.c: do not default  to md5
* mk_req_ext.c: allow auth_context to override

ticket: 1624

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22160 dc483132-0cff-0310-8789-dd5450dbe970
doc/admin.texinfo diff | blob | history
src/appl/bsd/kcmd.c diff | blob | history
src/config-files/krb5.conf.M diff | blob | history
src/lib/krb5/krb/init_ctx.c diff | blob | history
src/lib/krb5/krb/mk_req_ext.c diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.