[759] in Kerberos-V5-bugs
Re: beta 4 kdc BACKWARD_COMPAT bug
daemon@ATHENA.MIT.EDU (Theodore Ts'o)
Fri Sep 16 11:27:36 1994
Date: Fri, 16 Sep 1994 11:27:29 +0500
From: Theodore Ts'o <tytso@MIT.EDU>
To: John Gardiner Myers <jgm+@CMU.EDU>
Cc: krb5-bugs@MIT.EDU
In-Reply-To: [758]
Date: Fri, 16 Sep 1994 00:56:58 -0400 (EDT)
From: John Gardiner Myers <jgm+@CMU.EDU>
In src/kdc/kerberos_v4.c:check_princ(), there is a check for
master_key_version != p->kdc_key_ver
If the file is compiled with BACKWARD_COMPAT defined, the variable
master_key_version is never initialized, so the check always fails.
I would appreciate knowing what the correct fix for this is. I just
threw an #ifndef BACKWARD_COMPAT around this check.
Thanks, this is a known bug, and a correct fix will be forthcoming in
the next patch release, which I'm currently hoping will be out by the
end of this month.
(Basically, master_key_version needs to be set at program initialization
from kvno of the master key's entry in the Kerberos database.)
- Ted
