[krbdev.mit.edu #1356] Bug in accept_sec_context.c ?
mm@mail.DeuBa.COM via RT
rt-comment at krbdev.mit.edu
Wed Feb 19 13:53:07 EST 2003
Mustn't the below call to krb5_gss_validate_cred use cred_handle and not
verifier_cred_handle ??
Markus
/* handle default cred handle */
if (verifier_cred_handle == GSS_C_NO_CREDENTIAL) {
major_status = krb5_gss_acquire_cred(&code, GSS_C_NO_NAME,
GSS_C_INDEFINITE,
GSS_C_NO_OID_SET,
GSS_C_ACCEPT, &cred_handle,
NULL, NULL);
if (major_status != GSS_S_COMPLETE)
goto fail;
} else {
cred_handle = verifier_cred_handle;
}
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>><<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
/* Bug ? major_status = krb5_gss_validate_cred(&code, verifier_cred_handle);
*/
major_status = krb5_gss_validate_cred(&code, cred_handle);
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>><<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
if (GSS_ERROR(major_status))
goto fail;
cred = (krb5_gss_cred_id_t) cred_handle;
More information about the krb5-bugs
mailing list