[krbdev.mit.edu #7740] git commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Wed Oct 30 17:29:22 EDT 2013
Accept anonymous GSS names in kadmind
The krb5 implementation of gss_display_name() reports the name type as
GSS_C_NT_ANONYMOUS if the client uses an anonymous principal. Accept
this name type in gss_name_to_string and gss_to_krb5_name so that
anonymous kadmin can work.
Also improve code hygiene: call gss_name_to_string from
gss_to_krb5_name to reduce code repetition; use gss_oid_equal instead
of pointer comparison for name types; and don't assume that the
gss_display_name result buffer is zero-terminated.
(cherry picked from commit 664f0d779ddc0aaf54a118a98a21ce7d53d81e08)
https://github.com/krb5/krb5/commit/b127d93c2bd276e1b1c8506c1ab5cf8a0d735fbe
Author: Greg Hudson <ghudson at mit.edu>
Committer: Tom Yu <tlyu at mit.edu>
Commit: b127d93c2bd276e1b1c8506c1ab5cf8a0d735fbe
Branch: krb5-1.12
src/kadmin/server/server_stubs.c | 25 +++++++++++++++++++------
1 files changed, 19 insertions(+), 6 deletions(-)
More information about the krb5-bugs
mailing list