[1309] in Kerberos-V5-bugs
Kerberos 5-B4-pl3 bug report (libtelnet/forward.c)
daemon@ATHENA.MIT.EDU (Craig Leres)
Mon Mar 27 16:42:38 1995
To: krb5-bugs@MIT.EDU, dab@cray.com
Cc: hobbit@asylum.sf.ca.us, mike@fionn.lbl.gov (Michael Helm)
Date: Mon, 27 Mar 95 13:38:08 PST
From: Craig Leres <leres@ee.lbl.gov>
We noticed that forwarded tickets did not inherit the expiration time
from the tgt they were being forwarded from. This is because the
credential "endtime" was being explicitly set to 8 hours. Removing this
initialization defaults the forwarded tgt to the same lifetime as the
parent tgt ticket.
Context diffs appended. Note that this bug also exists in the copy of
forward.c that's in the appl/bsd directory.
Craig
------
*** kerberosV.virgin/src/appl/telnet/libtelnet/forward.c Thu Aug 18 14:06:52 1994
--- kerberosV/src/appl/telnet/libtelnet/forward.c Mon Mar 27 13:36:09 1995
***************
*** 34,40 ****
--- 34,42 ----
#include <krb5/los-proto.h>
#include <krb5/ext-proto.h>
+ #ifdef notdef
#define KRB5_DEFAULT_LIFE 60*60*8 /* 8 hours */
+ #endif
/* helper function: convert flags to necessary KDC options */
#define flags2options(flags) (flags & KDC_TKT_COMMON_MASK)
***************
*** 60,66 ****
--- 62,70 ----
krb5_creds creds, tgt;
krb5_ccache cc;
krb5_flags kdcoptions;
+ #ifdef notdef
krb5_timestamp now;
+ #endif
char *remote_host;
char **hrealms;
int i;
***************
*** 125,134 ****
--- 129,142 ----
return retval;
creds.times.starttime = 0;
+ #ifdef notdef
if (retval = krb5_timeofday(&now)) {
return retval;
}
creds.times.endtime = now + KRB5_DEFAULT_LIFE;
+ #else
+ creds.times.endtime = 0;
+ #endif
creds.times.renew_till = 0;
if (retval = krb5_cc_default(&cc)) {
