Ticket History #7663: FAST options bit ordering is backwards

# Fri Jun 14 18:57:10 2013 tlyu (Taylor Yu) - Ticket created

To:	krb5-bugs@MIT.EDU
Subject:	FAST options bit ordering is backwards
From:	Tom Yu <tlyu@MIT.EDU>
Date:	Fri, 14 Jun 2013 18:57:00 -0400

Download (untitled) / with headers
text/plain 293B

FAST option bits in k5-int.h are backwards from the specification in
RFC 6113. As a result, we treat the wrong 16 bits as critical FAST
options. This would be relatively easy to fix except that Heimdal
apparently sends the hide-client-names (1) option (and also gets the
bit order correct).

# Fri Jun 14 21:58:08 2013 ghudson@mit.edu (Greg Hudson) - Comments added

Download (untitled) / with headers
text/plain 288B

We need to:

1. Fix the flag and mask values in k5-int.h.

2. Implement the hide-client-names option bit in the KDC, so we don't
break interoperability with Heimdal clients.

3. Inform the kitten working group that krb5 1.7-1.11 will erroneously
consider flag bits 25-32 to be critical.

# Tue Sep 03 19:45:31 2013 ghudson@mit.edu (Greg Hudson) - Status changed from 'new' to 'resolved'

# Tue Sep 03 19:45:31 2013 ghudson@mit.edu (Greg Hudson) - Ticket 7663 RefersTo ticket 7700.

# Tue Sep 03 19:45:31 2013 ghudson@mit.edu (Greg Hudson) - Ticket 7663 RefersTo ticket 7701.

# Tue Sep 03 19:45:31 2013 ghudson@mit.edu (Greg Hudson) - Comments added

Download (untitled) / with headers
text/plain 77B

#7700 implements hide-client names and #7701 fixes the FAST option
handling.

# Fri Oct 11 13:37:53 2013 tlyu (Taylor Yu) - Version_Fixed 1.12 added