]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2a34b89) | patch
Limit use of IAKERB 303/head
authorGreg Hudson <ghudson@mit.edu>
Fri, 31 Jul 2015 16:31:25 +0000 (12:31 -0400)
committerGreg Hudson <ghudson@mit.edu>
Mon, 10 Aug 2015 17:24:19 +0000 (13:24 -0400)
commit608a65570aa868d6e03423b5de3b8f82c0bff60b
tree3a9617d2a1f62a27ed260c8cb9f460c087d65a51tree
parent2a34b898b4810e88c9137818b6cd0e762e480196commit | diff
Limit use of IAKERB

Add the GSS_C_MA_NOT_DFLT_MECH attribute to IAKERB, and filter out
mechs with that attribute from the SPNEGO and gss_acquire_cred()
default mechanisms.

Add a -iakerb option to gss-server and pass it when performing IAKERB
tests.  Also add tests using the wrong password, to verify that
gss_acquire_cred_with_password() fails with the wrong password when
using SPNEGO.

ticket: 8021
src/appl/gss-sample/gss-server.c diff | blob | blame | history
src/appl/gss-sample/t_gss_sample.py diff | blob | blame | history
src/lib/gssapi/krb5/gssapi_krb5.c diff | blob | blame | history
src/lib/gssapi/mechglue/g_acquire_cred.c diff | blob | blame | history
src/lib/gssapi/spnego/spnego_mech.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git