[5320] in Kerberos
Re: forwarding tickets problem
daemon@ATHENA.MIT.EDU (Danny Braniss)
Sun Jun 4 08:58:55 1995
To: kerberos@MIT.EDU
Date: 4 Jun 1995 09:49:44 GMT
From: Danny Braniss <danny@cam.ov.com>
This is a multi-part message in MIME format.
---------------------------------1787108578575035507584639280
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=us-ascii
--
Daniel Braniss e-mail: danny@cs.huji.ac.il
Institute of Computer Science phone: +972 2 658 4385
The Hebrew University Fax: +972 2 658 5439
Jerusalem, Israel
---------------------------------1787108578575035507584639280
Content-Transfer-Encoding: 7bit
Content-Type: text/plain
From: wolfgang@wsrcc.com (Wolfgang Rupprecht)
Newsgroups: comp.protocols.kerberos
Subject: Re: forwarding tickets problem
Date: 25 May 1995 09:35:52 -0700
Organization: W S Rupprecht Computer Consulting, Fremont CA
Message-ID: <3q2bl8$8ii@wsrcc.com>
References: <3q1bcr$77p@overload.lbl.gov>
mike@ux5.lbl.gov (Mike Helm) writes:
>Kerberos 5 Beta 5, SunOS 413u1b, gcc 263.
>After what appears to be a successful build & re-install on the
>kdc, & re-install of client codes on a few machines, I try to make
>a forwardable ticket & use it:
[...]
>[ Kerberos V5 refuses forwarded credentials because Read forwarded creds failed: Clock skew too great ]
I got the forwardable tickets to work after installing a jumbo patch
and ripping all but the last hunk out again. (The whole patch broke my
installation of krb5 completely.) The last hunk is reproduced below:
*** ./lib/krb5/os/,mk_faddr.c Mon May 1 16:09:36 1995
--- ./lib/krb5/os/mk_faddr.c Tue May 9 12:41:53 1995
***************
*** 49,55 ****
return EINVAL;
raddr->length = kaddr->length + kport->length + (4 * sizeof(krb5_int32));
! if (!(raddr->contents = (krb5_octet *)malloc(kaddr->length)))
return ENOMEM;
raddr->addrtype = ADDRTYPE_ADDRPORT;
--- 49,55 ----
return EINVAL;
raddr->length = kaddr->length + kport->length + (4 * sizeof(krb5_int32));
! if (!(raddr->contents = (krb5_octet *)malloc(raddr->length)))
return ENOMEM;
raddr->addrtype = ADDRTYPE_ADDRPORT;
(Before applying this I could only forward krb5 tickets from a SunOS
4.1.3 system to a BSDI 2.0 system. Forwards from a SunOS -> SunOS
failed as did forwards from BSDI to SunOS.)
-wolfgang
--
Wolfgang Rupprecht <wolfgang@wsrcc.com> <http://www.wsrcc.com/>
---------------------------------1787108578575035507584639280--
