search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: 9055634) | patch
kdc:db-glue: ignore KRB5_PROG_ETYPE_NOSUPP also for Primary:Kerberos
commit4f6356a5bf8e966506f8fa98754bd89c45113c25
authorStefan Metzmacher <metze@samba.org>
Thu, 23 Apr 2020 09:56:54 +0000 (23 11:56 +0200)
committerKarolin Seeger <kseeger@samba.org>
Thu, 6 Aug 2020 11:00:25 +0000 (6 11:00 +0000)
tree5bbf99aa87205852fa39504cb2ef3f63df601bd7tree | snapshot (tar.gz zip)
parent9055634ddff26cde878982fdb18a3604a9180fd6commit | diff
kdc:db-glue: ignore KRB5_PROG_ETYPE_NOSUPP also for Primary:Kerberos

Currently we only ignore KRB5_PROG_ETYPE_NOSUPP for
Primary:Kerberos-Newer-Keys, but not for Primary:Kerberos.

If a service account has msDS-SupportedEncryptionTypes: 31
and DES keys stored in Primary:Kerberos, we'll pass the
DES key to smb_krb5_keyblock_init_contents(), but may get
KRB5_PROG_ETYPE_NOSUPP.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14354

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Isaac Boukris <iboukris@samba.org>
Autobuild-User(master): Stefan Metzmacher <metze@samba.org>
Autobuild-Date(master): Tue Jul 28 14:04:26 UTC 2020 on sn-devel-184

(cherry picked from commit 4baa7cc8e473f6b63316b4ae5db34796c0f864c3)

Autobuild-User(v4-12-test): Karolin Seeger <kseeger@samba.org>
Autobuild-Date(v4-12-test): Thu Aug  6 11:00:25 UTC 2020 on sn-devel-184
selftest/knownfail.d/old_enctypes [deleted file] blob | blame | history
source4/kdc/db-glue.c diff | blob | blame | history
Samba GIT mirror