[krbdev.mit.edu #6851] pkinit can't parse some valid cms messages

Greg Hudson via RT rt-comment at krbdev.mit.edu
Wed Jun 20 00:35:48 EDT 2012

Previous message: [krbdev.mit.edu #7160] gss_acquire_cred for krb5 initiator creds should fail if no tickets exist
Next message: [krbdev.mit.edu #7179] krb5_cc_get_full_name() does not document how to free fullname_out
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

We have a report that this change breaks interoperability between the MIT 
PKINIT client and a Heimdal 1.2.1 KDC; the proximal cause of the breakage 
is that CMS_SignerInfo_get0_algs() returns no certs for the signature of 
the PKINIT reply.

https://list.sics.se/sympa/arc/heimdal-discuss/2012-06/msg00023.html

Previous message: [krbdev.mit.edu #7160] gss_acquire_cred for krb5 initiator creds should fail if no tickets exist
Next message: [krbdev.mit.edu #7179] krb5_cc_get_full_name() does not document how to free fullname_out
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the krb5-bugs mailing list