[krbdev.mit.edu #7987] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Sat Aug 9 12:35:48 EDT 2014
Fix GSS krb5 GSS_C_DELEG_FLAG ret_flags result
The krb5 gss_accept_sec_context could erroneously return
GSS_C_DELEG_FLAG in ret_flags if either:
* The token included the GSS_C_DELEG_FLAG but did not include at least
28 bytes in the authenticator checksum.
* The initial token included the GSS_C_DELEG_FLAG but a DCE-style
exchange was performed.
Fix both of these cases.
https://github.com/krb5/krb5/commit/d899084e24555dc8fd091eb08187ca2a45a08324
Author: Greg Hudson <ghudson at mit.edu>
Commit: d899084e24555dc8fd091eb08187ca2a45a08324
Branch: master
src/lib/gssapi/krb5/accept_sec_context.c | 19 ++++++++++---------
1 files changed, 10 insertions(+), 9 deletions(-)
More information about the krb5-bugs
mailing list