IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

ipatests: extend AES keyset to SHA2-based ones

Browse Source 
Fixes: https://pagure.io/freeipa/issue/9119

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
Reviewed-By: Julien Rische <jrische@redhat.com>
Reviewed-By: Francisco Trivino <ftrivino@redhat.com>
This commit is contained in:
Alexander Bokovoy 2022-03-03 14:38:57 +02:00 committed by Florence Blanc-Renaud
parent 2eee5931d7
commit 985dffe147
2 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
ipaserver/install/plugins/adtrust.py
View File

@ -754,7 +754,8 @@ class update_host_cifs_keytabs(Updater):
""" """
host_princ_template = "host/{master}@{realm}" host_princ_template = "host/{master}@{realm}"
valid_etypes = ['aes256-cts-hmac-sha1-96', 'aes128-cts-hmac-sha1-96'] valid_etypes = ['aes256-cts-hmac-sha384-192', 'aes128-cts-hmac-sha256-128',
'aes256-cts-hmac-sha1-96', 'aes128-cts-hmac-sha1-96']
def extract_key_refs(self, keytab): def extract_key_refs(self, keytab):
host_princ = self.host_princ_template.format( host_princ = self.host_princ_template.format(

3
ipatests/pytest_ipa/integration/tasks.py
View File

@ -2261,7 +2261,8 @@ class KerberosKeyCopier:
copier.copy_keys('/etc/krb5.keytab', tmpname, replacement=replacement) copier.copy_keys('/etc/krb5.keytab', tmpname, replacement=replacement)
""" """
host_princ_template = "host/{master}@{realm}" host_princ_template = "host/{master}@{realm}"
valid_etypes = ['aes256-cts-hmac-sha1-96', 'aes128-cts-hmac-sha1-96'] valid_etypes = ['aes256-cts-hmac-sha384-192', 'aes128-cts-hmac-sha256-128',
'aes256-cts-hmac-sha1-96', 'aes128-cts-hmac-sha1-96']
def __init__(self, host): def __init__(self, host):
self.host = host self.host = host