[Heimdal-source-changes] [heimdal/heimdal] a449b7: Store default NTLM domain cc config
GitHub
noreply at github.com
Fre Apr 17 18:35:12 CEST 2015
Branch: refs/heads/master
Home: https://github.com/heimdal/heimdal
Commit: a449b7ef5eecf727ec329d4f056865a3ee3339a2
https://github.com/heimdal/heimdal/commit/a449b7ef5eecf727ec329d4f056865a3ee3339a2
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-17 (Fri, 17 Apr 2015)
Changed paths:
M kuser/kinit.c
Log Message:
-----------
Store default NTLM domain cc config
This is needed so that the NTLM GSS mechanism can have a meaningful
concept of default credential (the NTLM key for the default domain found
in the ccache).
Commit: 08724496ffa4ab9c593a90efc7f39c76ca95dedd
https://github.com/heimdal/heimdal/commit/08724496ffa4ab9c593a90efc7f39c76ca95dedd
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-17 (Fri, 17 Apr 2015)
Changed paths:
M lib/gssapi/ntlm/acquire_cred.c
M lib/gssapi/ntlm/init_sec_context.c
Log Message:
-----------
Use default NTLM domain cc config
The NTLM GSS mechanism now supports default credential handles (and
acquiring handles for default credentials with desired_name ==
GSS_C_NO_NAME).
Commit: 420c080a8f2d4c5692ff5a8d9f8cb4bc2d4cd2cd
https://github.com/heimdal/heimdal/commit/420c080a8f2d4c5692ff5a8d9f8cb4bc2d4cd2cd
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-17 (Fri, 17 Apr 2015)
Changed paths:
M lib/gssapi/test_context.c
Log Message:
-----------
Can't use deleg creds with SPNEGO (test_context)
It isn't possible to use non-default credentials to init a context with
a mechanism for which the credential doesn't have an element. That's
exactly what was happening here. The code was left commented out to
describe how one might use SPNEGO with delegated credentials:
store them with gss_store_cred(), then acquire them back.
Commit: 290e2430c4e170e317eb013191f8ad36f3939a87
https://github.com/heimdal/heimdal/commit/290e2430c4e170e317eb013191f8ad36f3939a87
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-17 (Fri, 17 Apr 2015)
Changed paths:
M lib/gssapi/mech/gss_init_sec_context.c
Log Message:
-----------
Don't use mech default cred when input cred isn't
gss_init_sec_context() with input_cred_handle != GSS_C_NO_CREDENTIAL
should NOT proceed if there is no element in the given credential for
the requested mechanism.
Commit: feb245f7413f68dc064aa3b68da29088addb0549
https://github.com/heimdal/heimdal/commit/feb245f7413f68dc064aa3b68da29088addb0549
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-17 (Fri, 17 Apr 2015)
Changed paths:
M tests/gss/check-ntlm.in
M tests/gss/check-spnego.in
Log Message:
-----------
Undo workaround for NTLM and mechglue bugs
Compare: https://github.com/heimdal/heimdal/compare/5d50d0684549...feb245f7413f
More information about the Heimdal-source-changes
mailing list