[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Heimdal built with AES enabled fails to work

To: heimdal-discuss@sics.se, lha@stacken.kth.se
Subject: Heimdal built with AES enabled fails to work
From: hartmans@MIT.EDU (Sam Hartman)
Date: Thu, 1 May 2003 16:09:00 -0400 (EDT)
Sender: owner-heimdal-discuss@sics.se



Hi.  I'm trying to test the AES support in Heimdal and make sure it
works with MIT Kerberos.  

I'm using the 20030428 snapshot.  I was able to build with ENABLE_AES
defined once I applied a patch to include/make_crypto.c that Assar
sent me.

I then configured default_etypes and default_keys to include aes.  I
deleted my database and  ran init in kadmin -l.
That worked; default@REALM had an AES key.

However, when I ran add hartmans, I got:
kadmin: adding hartmans@REALM: not owner

This appeared just after I was prompted for attributes and instead of
prompting for the password.  I looked at truss output and found that
no syscalls were made between read returning from reading attributes
and writing out the error message.

If I build the same snapshot without ENABLE_AES, it works fine, but
does not support AES.

Any help debugging this would be appreciated.

Next by Date: Re: SGI afskauthlib.so Question
Next by thread: Re: SGI afskauthlib.so Question
Index(es):
- Date
- Thread