[16384] in Kerberos-V5-bugs

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[krbdev.mit.edu #8844] git commit

daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Fri Nov 8 18:31:54 2019

From: "Greg Hudson via RT" <rt@KRBDEV-PROD-APP-1.mit.edu>
In-Reply-To: 
Message-ID: <rt-4.4.4-90286-1573255906-277.8844-5-0@mit.edu>
To: "AdminCc of krbdev.mit.edu Ticket #8844":;
Date: Fri, 08 Nov 2019 18:31:46 -0500
MIME-Version: 1.0
Reply-To: rt@KRBDEV-PROD-APP-1.mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu


<URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=8844 >


Restrict SPNEGO acceptor mechs by cred acquisition

When the default cred is used, the SPNEGO initiator restricts the list
of negotiable mechanisms to those we can acquire a cred for, so that
we don't propose a mech we know can't work.  The acceptor should do
the same.

https://github.com/krb5/krb5/commit/c088f56a62702a2cc99c26185681efee1555b7fa
Author: Greg Hudson <ghudson@mit.edu>
Commit: c088f56a62702a2cc99c26185681efee1555b7fa
Branch: master
 src/lib/gssapi/spnego/spnego_mech.c |   12 ++++--------
 1 files changed, 4 insertions(+), 8 deletions(-)

_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs

home	help	back	first	fref	pref	prev	next	nref	lref	last	post