Date: Fri, 17 Nov 2023 17:13:06 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 272835] kinit(8) segmentation fault with openssl-3.0 in CURRENT Message-ID: <bug-272835-227-ioohndfire@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-272835-227@https.bugs.freebsd.org/bugzilla/> References: <bug-272835-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D272835 --- Comment #1 from Joerg Pulz <Joerg.Pulz@frm2.tum.de> --- Created attachment 246375 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D246375&action= =3Dedit patch to fix base heimdal with openssl-3.x Found some time to do further research. rc4 and other weak crypto is covered by the OpenSSL legacy provider which is not loaded by default. Adding the missing parts to explicitly load the legacy provider at the right places fixes this PR. Changes in crypto/heimdal/lib/krb5/salt.c make kinit(8) work. Changes in crypto/heimdal/lib/krb5/crypto.c make using the TGT and obtaining service tickets work. Would be nice to see this in the tree and MFC'd to 14. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-272835-227-ioohndfire>