Skip Menu |
 

Subject: krb5_get_init_creds_password bogus empty pw arg behavior
krb5_get_init_creds_password() appears to treat an empty password
argument differently from krb5_get_in_tkt_with_password(). The former
prompts for a password, but appears to run the string-to-key on an empty
string regardless of what is input. The latter prompts for a password
in the expected way. This was discovered while investigating some test
suite oddities in the fix for #2913.
From: tlyu@mit.edu
Subject: CVS Commit
* gic_pwd.c (krb5_get_init_creds_password): Fix so empty password
string causes prompting and doesn't cause truncation of password
to zero characters.


To generate a diff of this commit:



cvs diff -r5.462 -r5.463 krb5/src/lib/krb5/krb/ChangeLog
cvs diff -r5.29 -r5.30 krb5/src/lib/krb5/krb/gic_pwd.c
From: tlyu@mit.edu
Subject: CVS Commit
pullup from trunk


To generate a diff of this commit:



cvs diff -r5.455.2.3 -r5.455.2.4 krb5/src/lib/krb5/krb/ChangeLog
cvs diff -r5.29 -r5.29.4.1 krb5/src/lib/krb5/krb/gic_pwd.c