[11896] in Kerberos-V5-bugs
[krbdev.mit.edu #6869] SVN Commit
daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Wed Feb 16 17:52:46 2011
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Greg Hudson via RT" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6869@krbdev.mit.edu>
Message-ID: <rt-6869-33794.10.8921635996764@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6869'":;"'AdminCc of krbdev.mit.edu Ticket #6869'":;@MIT.EDU
Date: Wed, 16 Feb 2011 17:52:42 -0500 (EST)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
krb5int_hmacmd5_checksum calculates an intermediate key using an HMAC.
The container for this key should be allocated using the HMAC output
size (which is the hash blocksize), not the original key size. This
bug was causing the function to fail with DES keys, which can be used
with hmac-md5 in PAC signatures.
http://src.mit.edu/fisheye/changelog/krb5/?cs=24639
Commit By: ghudson
Revision: 24639
Changed Files:
U trunk/src/lib/crypto/krb/checksum/hmac_md5.c
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
