krb5.git/src/lib/kadm5/srv, branch kinit-c MIT Kerberos patches Return only new keys in randkey [CVE-2014-5351] 2014-09-22T18:20:49+00:00 Greg Hudson ghudson@mit.edu 2014-08-21T17:52:07+00:00 af0ed4df4dfae762ab5fb605f5a0c8f59cb4f6ca In kadmind's randkey operation, if a client specifies the keepold flag, do not include the preserved old keys in the response. CVE-2014-5351: An authenticated remote attacker can retrieve the current keys for a service principal when generating a new set of keys for that principal. The attacker needs to be authenticated as a user who has the elevated privilege for randomizing the keys of other principals. Normally, when a Kerberos administrator randomizes the keys of a service principal, kadmind returns only the new keys. This prevents an administrator who lacks legitimate privileged access to a service from forging tickets to authenticate to that service. If the "keepold" flag to the kadmin randkey RPC operation is true, kadmind retains the old keys in the KDC database as intended, but also unexpectedly returns the old keys to the client, which exposes the service to ticket forgery attacks from the administrator. A mitigating factor is that legitimate clients of the affected service will start failing to authenticate to the service once they begin to receive service tickets encrypted in the new keys. The affected service will be unable to decrypt the newly issued tickets, possibly alerting the legitimate administrator of the affected service. CVSSv2: AV:N/AC:H/Au:S/C:P/I:N/A:N/E:POC/RL:OF/RC:C [tlyu@mit.edu: CVE description and CVSS score] ticket: 8018 (new) target_version: 1.13 tags: pullup 
In kadmind's randkey operation, if a client specifies the keepold
flag, do not include the preserved old keys in the response.

CVE-2014-5351:

An authenticated remote attacker can retrieve the current keys for a
service principal when generating a new set of keys for that
principal.  The attacker needs to be authenticated as a user who has
the elevated privilege for randomizing the keys of other principals.

Normally, when a Kerberos administrator randomizes the keys of a
service principal, kadmind returns only the new keys.  This prevents
an administrator who lacks legitimate privileged access to a service
from forging tickets to authenticate to that service.  If the
"keepold" flag to the kadmin randkey RPC operation is true, kadmind
retains the old keys in the KDC database as intended, but also
unexpectedly returns the old keys to the client, which exposes the
service to ticket forgery attacks from the administrator.

A mitigating factor is that legitimate clients of the affected service
will start failing to authenticate to the service once they begin to
receive service tickets encrypted in the new keys.  The affected
service will be unable to decrypt the newly issued tickets, possibly
alerting the legitimate administrator of the affected service.

CVSSv2: AV:N/AC:H/Au:S/C:P/I:N/A:N/E:POC/RL:OF/RC:C

[tlyu@mit.edu: CVE description and CVSS score]

ticket: 8018 (new)
target_version: 1.13
tags: pullup
Make randkey update principal mkvno 2014-08-21T17:52:34+00:00 Greg Hudson ghudson@mit.edu 2014-08-18T19:09:41+00:00 05a3b205c5d7ee491a64e24581cb4def3814c05b In kadm5_randkey_principal_3, after updating the principal's keys, update its mkvno tl-data to indicate the master key version we encrypted the new keys with. ticket: 7994 target_version: 1.13 tags: pullup 
In kadm5_randkey_principal_3, after updating the principal's keys,
update its mkvno tl-data to indicate the master key version we
encrypted the new keys with.

ticket: 7994
target_version: 1.13
tags: pullup
Add flag word to KDB iteration APIs 2014-08-02T18:20:33+00:00 Tom Yu tlyu@mit.edu 2014-08-02T18:20:33+00:00 ab009b8568d9b64b7e992ecdb98114e895b4a7ff ticket: 7977 (new) subject: Enable unlocked KDB iteration 
ticket: 7977 (new)
subject: Enable unlocked KDB iteration
Remove unused variables 2014-07-12T17:35:45+00:00 Lukas Slebodnik lslebodn@redhat.com 2014-06-21T20:41:08+00:00 43a26c6d8ea9e2a82f780171cd34365911d71228 [ghudson@mit.edu: squashed with similar commits] 
[ghudson@mit.edu: squashed with similar commits]
make depend 2014-07-08T23:36:32+00:00 Greg Hudson ghudson@mit.edu 2014-07-08T23:36:32+00:00 aea099ab5544eefb4d27d8cd963b1247c10dc559 






Include autoconf.h before system headers
2014-07-08T23:19:24+00:00

Greg Hudson
ghudson@mit.edu

2014-07-05T15:50:58+00:00

02a1123cf44381690c28f18ab2c4ba8036200539

Include autoconf.h (either directly or via proxy) before system
headers, so that feature test macros defined there can affect the
system namespace.  Where include order was changed, eliminate some
redundant or unnecessary includes.

ticket: 7961





Include autoconf.h (either directly or via proxy) before system
headers, so that feature test macros defined there can affect the
system namespace.  Where include order was changed, eliminate some
redundant or unnecessary includes.

ticket: 7961







Use k5_setmsg
2014-06-05T15:22:50+00:00

Greg Hudson
ghudson@mit.edu

2014-05-24T16:15:32+00:00

a7b5808b5df9e54ef8a8a7ac24e5faad458ddbce

Replace most calls to krb5_set_error_message with k5_setmsg for
brevity.  Leave alone plugin sources where we don't include k5-int.h
(mostly PKINIT).





Replace most calls to krb5_set_error_message with k5_setmsg for
brevity.  Leave alone plugin sources where we don't include k5-int.h
(mostly PKINIT).







Remove adb_policy_init and adb_policy_close
2014-04-04T18:02:47+00:00

Tomas Kuthan
tkuthan@gmail.com

2014-04-03T15:58:43+00:00

8d735931e2a93fab31d68772e8881faa6b030a10

Since f72c3ffa the policy is initialized as part of database.
adb_policy_close is now a no-op, and adb_policy_init just makes sure
the database is initialized.  adb_policy_init is only called from
kadm5_flush, and only if database initialization was successful
beforehand, rendering this call redundant.

Remove adb_policy_init and adb_policy_close and all their references
in the code and documentation.





Since f72c3ffa the policy is initialized as part of database.
adb_policy_close is now a no-op, and adb_policy_init just makes sure
the database is initialized.  adb_policy_init is only called from
kadm5_flush, and only if database initialization was successful
beforehand, rendering this call redundant.

Remove adb_policy_init and adb_policy_close and all their references
in the code and documentation.







Fix leak in kadm5_flush with LDAP KDB
2014-04-04T17:59:36+00:00

Tomas Kuthan
tkuthan@gmail.com

2014-04-02T15:48:04+00:00

372e4cb6f5d4a603e6e3157c7b5d354953836136

Due to an inverted test in adb_policy_init, kadm5_flush calls
krb5_db_open twice.  With the DB2 KDB module, the second open is a
no-op, but with the LDAP module, a new DB handle is allocated and the
old one is leaked.

[ghudson@mit.edu: rewrote commit message]

ticket: 7897 (new)
target_version: 1.12.2
tags: pullup





Due to an inverted test in adb_policy_init, kadm5_flush calls
krb5_db_open twice.  With the DB2 KDB module, the second open is a
no-op, but with the LDAP module, a new DB handle is allocated and the
old one is leaked.

[ghudson@mit.edu: rewrote commit message]

ticket: 7897 (new)
target_version: 1.12.2
tags: pullup







Stop generating gssapi_krb5.h
2014-02-26T21:15:20+00:00

Greg Hudson
ghudson@mit.edu

2014-02-01T20:59:21+00:00

a7a2c02b618aea40ebd4f597ec956eaf0fe210f5

We started generating gssapi_krb5.h from gssapi_krb5.hin when we
needed to use a 64-bit type for lucid contexts.  Since we can now
assume a standard name for 64-bit types, we can stop generating the
header.





We started generating gssapi_krb5.h from gssapi_krb5.hin when we
needed to use a 64-bit type for lucid contexts.  Since we can now
assume a standard name for 64-bit types, we can stop generating the
header.