Skip Menu |
 

To: krb5-bugs@mit.edu
Subject: kadmind fails to return wrong version errors for change password
Date: Fri, 25 Apr 2003 15:01:55 -0400 (EDT)
From: hartmans@MIT.EDU (Sam Hartman)


Apparently we share a bug with Microsoft in that our kadmind fails to
return a wrong version error if it cannot understand the version of
the change password protocol sent to it. This is bad for backward
compatability of new clients.
[hartmans - Fri Apr 25 15:03:25 2003]:

Show quoted text
>
>
> Apparently we share a bug with Microsoft in that our kadmind fails to
> return a wrong version error if it cannot understand the version of
> the change password protocol sent to it. This is bad for backward
> compatability of new clients.
>


As a gross hack - I notice that there is a formated string that is
returned to the client... We could match on that string to ascertain
that if we send a different protocol number, we get back a version 1
and that message....
The implemented protocol doesn't define a bad-version error code.
Perhaps a client could check for the MALFORMED error code?

If we want a new error code specifically for bad-version, we should
probably set it to 6 to align with RFC 3244 and set-passwd-06....
From: raeburn@mit.edu
Subject: CVS Commit
Define the new error codes.

* krb5.hin (KRB5_KPASSWD_ACCESSDENIED): New macro.
(KRB5_KPASSWD_BAD_VERSION, KRB5_KPASSWD_INITIAL_FLAG_NEEDED): New macros.


To generate a diff of this commit:



cvs diff -r1.360 -r1.361 krb5/src/include/ChangeLog
cvs diff -r1.157 -r1.158 krb5/src/include/krb5.hin
From: raeburn@mit.edu
Subject: CVS Commit
* chpw.c (krb5int_rd_chpw_rep): Allow new kpasswd error codes up through
_INITIAL_FLAG_NEEDED.


To generate a diff of this commit:



cvs diff -r5.395 -r5.396 krb5/src/lib/krb5/krb/ChangeLog
cvs diff -r5.9 -r5.10 krb5/src/lib/krb5/krb/chpw.c
From: raeburn@mit.edu
Subject: CVS Commit
* schpw.c (process_chpw_request): Return KRB5_KPASSWD_BAD_VERSION if the
version number isn't 1.


To generate a diff of this commit:



cvs diff -r5.91 -r5.92 krb5/src/kadmin/server/ChangeLog
cvs diff -r1.8 -r1.9 krb5/src/kadmin/server/schpw.c
From: tlyu@mit.edu
Subject: CVS Commit
pullup from trunk


To generate a diff of this commit:



cvs diff -r1.348.2.11 -r1.348.2.12 krb5/src/include/ChangeLog
cvs diff -r1.154.2.4 -r1.154.2.5 krb5/src/include/krb5.hin
cvs diff -r5.91 -r5.91.2.1 krb5/src/kadmin/server/ChangeLog
cvs diff -r1.8 -r1.8.2.1 krb5/src/kadmin/server/schpw.c
cvs diff -r5.378.2.10 -r5.378.2.11 krb5/src/lib/krb5/krb/ChangeLog
cvs diff -r5.6.2.2 -r5.6.2.3 krb5/src/lib/krb5/krb/chpw.c