[1910] in Kerberos-V5-bugs
auth_gssapi rpc bug
daemon@ATHENA.MIT.EDU (Barry Jaspan)
Mon May 6 17:37:08 1996
Date: Mon, 6 May 1996 17:33:52 -0400
From: "Barry Jaspan" <bjaspan@MIT.EDU>
To: krb5-bugs@MIT.EDU
When the AUTH_GSSAPI client receives an error during context
establishment, it tears down the connection. This typically includes
making a GSSAPI_DESTROY call to inform the server it is going away.
This call must be authenticated, but if context establishment failed,
it can't right. Right now, the client sends the call with a null
verifier (unauthenticated). It shouldn't bother, since that call will
be rejected. This is not a critical error, as both the client and
server ignore the fact that the call fails.
Barry
