[krbdev.mit.edu #8721] git commit
Greg Hudson via RT
rt-comment at KRBDEV-PROD-APP-1.mit.edu
Mon Aug 27 18:19:31 EDT 2018
Don't tag S4U2Proxy result creds as user-to-user
S4U2Proxy and user-to-user tickets are both obtained using a
second-ticket input, but only user-to-user tickets are encrypted in
the session key of the second ticket. In gc_via_tkt.c, stop deducing
the is_skey flag from the presence of a second ticket and instead set
it based on the request KDC options.
https://github.com/krb5/krb5/commit/6d8c598d7c226b0fb594892b261386c37b47da1e
Author: Greg Hudson <ghudson at mit.edu>
Commit: 6d8c598d7c226b0fb594892b261386c37b47da1e
Branch: master
src/lib/krb5/krb/gc_via_tkt.c | 10 ++++++----
1 files changed, 6 insertions(+), 4 deletions(-)
More information about the krb5-bugs
mailing list