[PATCH] winbind interface to extract SIDs from PAC
Christof Schmitt
christof.schmitt at us.ibm.com
Fri Aug 10 12:12:39 MDT 2012
christof.schmitt at us.ibm.com wrote on 08/01/2012 10:30:32 AM:
> christof.schmitt at us.ibm.com wrote on 07/30/2012 11:22:42 AM:
> >
> > I cleaned up the error handling a bit. The second patch changes the
> > level of a debug message to avoid this output with log level 1:
> >
> > [2012/07/30 19:56:27.389822, 1] ../auth/kerberos/kerberos_pac.c:326
> > (kerberos_decode_pac)
> > PAC Decode: Failed to verify the service signature: Decrypt
integrity
> check failed
>
> Sorry for the noise. This update patch fixes a small issue with memory
> handling in wbc_pam.c: The provided PAC needs to be copied to new
> memory so that the free() call does the same for
> WBC_AUTH_USER_LEVEL_PAC and WBC_AUTH_USER_LEVEL_RESPONSE.
Ping!
Is this patch now acceptable? We have tested it internally and have
not found problems. Who would push the patch to master?
Regards,
Christof Schmitt || IBM || SONAS System Development || Tucson, AZ
christof.schmitt at us.ibm.com || +1-520-799-2469 (T/L: 321-2469)
More information about the samba-technical
mailing list