]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 11b9a82) | patch
Allow only one salt type per enctype in key data 1409/head
authorGreg Hudson <ghudson@mit.edu>
Wed, 29 Jan 2025 05:22:57 +0000 (00:22 -0500)
committerGreg Hudson <ghudson@mit.edu>
Thu, 6 Feb 2025 22:25:09 +0000 (17:25 -0500)
commit367ccd2fcf8b4adb82bfc7ef9b5f04ff94f80326
tree977326764be6a81587a161f63a694ad38fc6b4b6tree | snapshot
parent11b9a8244f1b3f5226f315e998f4e892b262e46ecommit | diff
Allow only one salt type per enctype in key data

In the default libkdb5 password change method, omit requested key/salt
combinations that duplicate an earlier encryption type, even if they
have a different salt type.  Any use cases for multiple salts for the
same enctype disappeared with single-DES support.  (We already have
this behavior for chrand requests.)

ticket: 9160 (new)
src/lib/kdb/kdb_cpw.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git