Bug 10088 - Authentication failing due to case sensitive comparison of service ticket entry
Authentication failing due to case sensitive comparison of service ticket entry
Status: NEW
Product: Samba 3.6
Classification: Unclassified
Component: User & Group Accounts
unspecified
All All
: P5 normal
: ---
Assigned To: Samba Bugzilla Account
Samba QA Contact
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2013-08-15 20:00 UTC by bpillai
Modified: 2013-08-15 20:00 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description bpillai 2013-08-15 20:00:11 UTC
While performing Kerberos authentication, Samba does a case sensitive comparison between the service ticket entry with krb5.keytab file. This caues the authetication to fail in certain cases. It should be changed into case insensitive comparison.
For example:
Principal in GET request: http/foo@ADTEST.COM
Principal in krb5.keytab: HTTP/FOO@ADTEST.COM
are considered as differner entries while they are same. The code change in library should be made in file principal.c in line 924 and 990 to change strcmp to strcasecmp.
source4/heimdal/lib/krb5/principal.c Line:924 and Line 990.