Commit - rpms/krb5 - 04513849e37aaad2eb9cacc9fad4e3abcdb724fc

rpms / krb5

Overview Files Commits Branches Forks Releases

Monitoring status:

Bugzilla Assignee:

Fedora:: jrische
EPEL:: abbra

`0451384` Try harder to avoid password change replay errors

Authored and Committed by jrische 2 years ago

raw patch tree parent

2 files changed. 97 lines added. 1 lines removed.

Try-harder-to-avoid-password-change-replay-errors.patch

    Try harder to avoid password change replay errors
    
    change_set_password() was changed to prefer TCP.  However, because
    UDP_LAST falls back to UDP after one second, we can still get a replay
    error due to a dropped packet, before the TCP layer has a chance to
    retry.
    
    Instead, try k5_sendto() with NO_UDP, and only fall back to UDP after
    TCP fails completely without reaching a server.  In sendto_kdc.c,
    implement an ONLY_UDP transport strategy to allow the UDP fallback.
    
    Resolves: rhbz#2076965
    
    Signed-off-by: Julien Rische <jrische@redhat.com>

Fedora CI - scratch build
success

Package tests for 04513849: passed
2 years ago
Fedora CI - dist-git test
success

Package tests for 04513849: passed
2 years ago

Try-harder-to-avoid-password-change-replay-errors.patch

file added

+91

krb5.spec

file modified

+6 -1

rpms / krb5

Source Code

0451384 Try harder to avoid password change replay errors

Authored and Committed by jrische 2 years ago

`0451384` Try harder to avoid password change replay errors