| commit | 2052395dd89b56b3c99d2b270a9eade67d042c7f | |
| author | Joseph Sutton <josephsutton@catalyst.net.nz> | |
| Tue, 28 Sep 2021 22:59:42 +0000 (29 11:59 +1300) | ||
| committer | Stefan Metzmacher <metze@samba.org> | |
| Wed, 27 Oct 2021 22:37:09 +0000 (27 22:37 +0000) | ||
| tree | a520eaefe605dff954741554601e5135bb2463d6 | treesnapshot (tar.gz zip) |
| parent | d310714c22114c9dbf83ef57c7fdf0f94bb5c9a3 | commitdiff |
tests/krb5: Fix checksum generation and verification
The KDC and server checksums may be generated using the same key, but
only the KDC checksum should have an RODCIdentifier. To fix this,
instead of overriding the existing methods, add additional ones for
RODC-specific signatures, so that both types of signatures can be
generated or verified.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14642
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14881
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
(cherry picked from commit a927cecafdd5ad6dc5189fa98cb42684c9c3b033)
The KDC and server checksums may be generated using the same key, but
only the KDC checksum should have an RODCIdentifier. To fix this,
instead of overriding the existing methods, add additional ones for
RODC-specific signatures, so that both types of signatures can be
generated or verified.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14642
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14881
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
(cherry picked from commit a927cecafdd5ad6dc5189fa98cb42684c9c3b033)
| python/samba/tests/krb5/raw_testcase.py | diffblobblamehistory |