issue with preauth processing
Will Fiveash
William.Fiveash at sun.com
Fri Oct 23 19:24:45 EDT 2009
On Fri, Oct 23, 2009 at 06:34:54PM -0400, Luke Howard wrote:
>
> > I also notice this in src/lib/krb5/krb/s4u_creds.c:
> >
> > krb5_get_init_creds_opt_set_preauth_list(opts, ptypes, 1);
> >
> > where ptypes is:
> >
> > krb5_preauthtype ptypes[1] = { KRB5_PADATA_S4U_X509_USER };
> >
> > Isn't the point to restrict the preauth to just
> > KRB5_PADATA_S4U_X509_USER?
>
> Yep and from memory this works.
>
> > (Luke, I also think that code is buggy, shouldn't that be ptypes[0]?)
>
>
> No, we want enough space to hold one krb5_preauthtype.
Yep, my mistake on that.
--
Will Fiveash
Sun Microsystems Inc.
http://opensolaris.org/os/project/kerberos/
Sent from mutt, a sweet ASCII MUA
More information about the krbdev
mailing list