[11413] in Kerberos-V5-bugs
[krbdev.mit.edu #6603] SVN Commit
daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Sun Feb 21 23:52:33 2010
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Greg Hudson via RT" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6603@krbdev.mit.edu>
Message-ID: <rt-6603-32506.4.57313734649027@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6603'":;"'AdminCc of krbdev.mit.edu Ticket #6603'":;@MIT.EDU
Date: Sun, 21 Feb 2010 23:52:31 -0500 (EST)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
Fix two unrelated problems in SPNEGO which don't crop up with the krb5
mechanism.
1. The third call to spnego_init_accept_context uses faulty logic to
determine if the exchange is complete, preventing a third mech token
from being sent to the acceptor if no MIC exchange is required.
Follow the logic used in the second call (in init_ctx_nego), which is
correct.
2. If the acceptor selects a mech other than the optimistic mech, it
sets sc->mic_reqd to 1 whether or not the selected mech supports MICs
(which isn't known until the mech completes). Most code outside of
handle_mic checks sc->mic_reqd along with (sc->ctx_flags &
GSS_C_INTEG_FLAG), but the code in acc_ctx_call_acc neglected to do
so, so it could improperly delegate responsibility for deciding when
the negotiation was finished to handle_mic--which never gets called if
(sc->ctx_flags & GSS_C_INTEG_FLAG) is false. Fix acc_ctx_call_acc to
check sc->ctx_flags so that mechs which don't support integrity
protection can complete if they are selected non-optimistically.
http://src.mit.edu/fisheye/changelog/krb5/?cs=23742
Commit By: ghudson
Revision: 23742
Changed Files:
U trunk/src/lib/gssapi/spnego/spnego_mech.c
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
