]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 276b44d) | patch
Use correct name-type in TGS-REQs for 2008R2 RODCs
authorTom Yu <tlyu@mit.edu>
Fri, 27 Apr 2012 22:40:21 +0000 (22:40 +0000)
committerTom Yu <tlyu@mit.edu>
Tue, 15 May 2012 22:26:24 +0000 (18:26 -0400)
commit7a9927270463a213f4af84462743315dcffd71d1
treeeb0ff9ed5fe8fc1b284a2407f95b6d035c0f854dtree
parent276b44d7bd9ed05d5618b287b4e601d1a872a067commit | diff
Use correct name-type in TGS-REQs for 2008R2 RODCs

Correctly set the name-type for the TGS principals to KRB5_NT_SRV_INST
in TGS-REQs.  (Previously, only AS-REQs had the name-type set in this
way.)  Windows Server 2008 R2 read-only domain controllers (RODCs)
insist on having the correct name-type for the TGS principal in
TGS-REQs as well as AS-REQs, at least for the TGT-forwarding case.

Thanks to Sebastian Galiano for reporting this bug and helping with
testing.

(cherry picked from commit 5994d8928b8ff88751b14bc60c7d7bfce8b30e57)

ticket: 7120
version_fixed: 1.10.2
status: resolved
src/lib/krb5/krb/fwd_tgt.c diff | blob | blame | history
src/lib/krb5/krb/tgtname.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git