projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a329ba8) | patch
NIM Kerberos 5 Provider corrections
authorJeffrey Altman <jaltman@secure-endpoints.com>
Thu, 18 Jan 2007 12:43:58 +0000 (12:43 +0000)
committerJeffrey Altman <jaltman@secure-endpoints.com>
Thu, 18 Jan 2007 12:43:58 +0000 (12:43 +0000)
commit4b7a75238735d5202760d188926d54b2add5241e
treea9513b0970a8d5a0bc516353a3313ca82706b3d1tree | snapshot
parenta329ba8882b7abec1b144db28a2eb1ceef17b2b2commit | diff
NIM Kerberos 5 Provider corrections

When validating a Kerberos 5 principal name, the request
to the KDC should not request forwardable, renewable, or
proxiable options as these may be blocked by policy and
will result in the return of an error.

Always treat the Kerberos 5 principal name as valid
unless the KDC returns an error that clearly indicates that
the principal name does not exist.

Use a MEMORY: ccache for temporary storage instead of an
API: ccache.

Initialize pointer values with NULL instead of 0.

ticket: new
tags: pullup
component: windows

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19069 dc483132-0cff-0310-8789-dd5450dbe970
src/windows/identity/plugins/krb5/krb5funcs.c diff | blob | history
src/windows/identity/plugins/krb5/krb5identpro.c diff | blob | history
src/windows/identity/plugins/krb5/krb5newcreds.c diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.