The Samba-Bugzilla – Attachment 12074 Details for
Bug 11900
machine account Kerberos authentication fails against an RODC
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
POC to demonstrate that a 4-byte KVNO fixes the issue.
kvno.patch (text/plain), 843 bytes, created by
Uri Simchoni
on 2016-05-05 22:49:18 UTC
(
hide
)
Description:
POC to demonstrate that a 4-byte KVNO fixes the issue.
Filename:
MIME Type:
Creator:
Uri Simchoni
Created:
2016-05-05 22:49:18 UTC
Size:
843 bytes
patch
obsolete
>From 2655bbcba6982bd87dc4a36abb85a7a5a7b217fe Mon Sep 17 00:00:00 2001 >From: Uri Simchoni <uri@samba.org> >Date: Thu, 5 May 2016 23:40:22 +0300 >Subject: [PATCH] heimdal: POC for bug 11900 > >Make sure a KVNO that fits within 32 bit ends up encoded >in 4 bytes. > >Signed-off-by: Uri Simchoni <uri@samba.org> >--- > source4/heimdal/lib/asn1/krb5.asn1 | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > >diff --git a/source4/heimdal/lib/asn1/krb5.asn1 b/source4/heimdal/lib/asn1/krb5.asn1 >index f3ae6bba..c2f40c0 100644 >--- a/source4/heimdal/lib/asn1/krb5.asn1 >+++ b/source4/heimdal/lib/asn1/krb5.asn1 >@@ -360,7 +360,7 @@ LastReq ::= SEQUENCE OF SEQUENCE { > > EncryptedData ::= SEQUENCE { > etype[0] ENCTYPE, -- EncryptionType >- kvno[1] krb5uint32 OPTIONAL, >+ kvno[1] krb5int32 OPTIONAL, > cipher[2] OCTET STRING -- ciphertext > } > >-- >2.5.5 >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=12074">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 11900
:
12065
|
12066
|
12067
|
12068
|
12074
|
12086