From 9f0886f9c786a5dbc1642ec470a527be66548149 Mon Sep 17 00:00:00 2001 From: Theodore Tso Date: Wed, 29 Mar 1995 22:06:26 +0000 Subject: [PATCH] No need to have the session_key established for mutual authentication to work. (That's only done if ENCRYPTION is defined.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@5313 dc483132-0cff-0310-8789-dd5450dbe970 --- src/appl/telnet/libtelnet/ChangeLog | 4 ++++ src/appl/telnet/libtelnet/kerberos5.c | 8 ++------ 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/src/appl/telnet/libtelnet/ChangeLog b/src/appl/telnet/libtelnet/ChangeLog index 00ac6b339..135af39fd 100644 --- a/src/appl/telnet/libtelnet/ChangeLog +++ b/src/appl/telnet/libtelnet/ChangeLog @@ -1,5 +1,9 @@ Wed Mar 29 15:08:43 1995 Theodore Y. Ts'o (tytso@dcl) + * kerberos5.c: No need to have the session_key established for + mutual authentication to work. (That's only done if + ENCRYPTION is defined.) + * auth.c (authenticators): Allow mutual authentication even if the ENCRYPTION option is not turned on. diff --git a/src/appl/telnet/libtelnet/kerberos5.c b/src/appl/telnet/libtelnet/kerberos5.c index 51e12ad0e..6b822b427 100644 --- a/src/appl/telnet/libtelnet/kerberos5.c +++ b/src/appl/telnet/libtelnet/kerberos5.c @@ -455,12 +455,6 @@ kerberos5_reply(ap, data, cnt) inbuf.length = cnt; inbuf.data = (char *)data; - if (!session_key.contents) { - printf("[ Mutual authentication failed: no session key ]\n"); - auth_send_retry(); - return; - } - if (r = krb5_rd_rep(telnet_context, auth_context, &inbuf, &reply)) { printf("[ Mutual authentication failed: %s ]\n", @@ -470,10 +464,12 @@ kerberos5_reply(ap, data, cnt) } krb5_free_ap_rep_enc_part(telnet_context, reply); #ifdef ENCRYPTION + if (!session_key.contents) { skey.type = SK_DES; skey.length = 8; skey.data = session_key.contents; encrypt_session_key(&skey, 0); + } #endif /* ENCRYPTION */ mutual_complete = 1; } -- 2.26.2