]> git.ipfire.org Git - thirdparty/krb5.git/commit
Avoid setting AS key when OTP preauth fails
authorNathaniel McCallum <npmccallum@redhat.com>
Thu, 26 May 2016 20:54:29 +0000 (16:54 -0400)
committerGreg Hudson <ghudson@mit.edu>
Thu, 26 May 2016 22:24:30 +0000 (18:24 -0400)
commit0712d0059d72ddeaf1764f8fa173a321e3bc072d
tree83d48dab90116c367e411945b47e90578bf764cf
parentf22510adfba274c7302799965453e5d4aae3823a
Avoid setting AS key when OTP preauth fails

In otp_client_process(), call cb->set_as_key() later in the function
after the OTP request has been created.  The previous position of this
call caused the AS key to be replaced even when later code in the
function failed, preventing other preauth mechanisms from retrieving
the correct AS key.

ticket: 8421 (new)
target_version: 1.14-new
target_version: 1.13-new
tags: pullup
src/lib/krb5/krb/preauth_otp.c