[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: GSSAPI & non-default keytab file

To: Johan Danielsson <joda@pdc.kth.se>
Subject: Re: GSSAPI & non-default keytab file
From: GOMBAS Gabor <gombasg@inf.elte.hu>
Date: Thu, 23 Nov 2000 01:03:30 +0100
Cc: heimdal-discuss@sics.se
In-Reply-To: <xof1yw3618s.fsf@blubb.pdc.kth.se>; from joda@pdc.kth.se on Thu, Nov 23, 2000 at 12:22:27AM +0100
Mail-Followup-To: Johan Danielsson <joda@pdc.kth.se>,heimdal-discuss@sics.se
References: <20001122231748.J24096@valerie.inf.elte.hu> <xof1yw3618s.fsf@blubb.pdc.kth.se>
Sender: owner-heimdal-discuss@sics.se

> This isn't right. GSS_C_NO_CREDENTIAL is NULL, so dereferencing it
> will cause problems.

Oh, I missed it. This one should be better:

Index: lib/gssapi/accept_sec_context.c
===================================================================
RCS file: /pkg/maint/cvs/heimdal/lib/gssapi/accept_sec_context.c,v
retrieving revision 1.1.1.2
diff -u -r1.1.1.2 accept_sec_context.c
--- lib/gssapi/accept_sec_context.c	2000/10/08 19:09:36	1.1.1.2
+++ lib/gssapi/accept_sec_context.c	2000/11/22 23:56:29
@@ -41,6 +41,9 @@
 gsskrb5_register_acceptor_identity (char *identity)
 {
     char *p;
+
+    gssapi_krb5_init ();
+
     if(gss_keytab != NULL) {
 	krb5_kt_close(gssapi_krb5_context, gss_keytab);
 	gss_keytab = NULL;
@@ -189,12 +192,12 @@
       goto failure;
   }
 
-  if (acceptor_cred_handle == GSS_C_NO_CREDENTIAL) {
-      if (gss_keytab != NULL) {
-	  keytab = gss_keytab;
-     }
-  } else if (acceptor_cred_handle->keytab != NULL) {
-     keytab = acceptor_cred_handle->keytab;
+  if (acceptor_cred_handle != GSS_C_NO_CREDENTIAL) {
+    keytab = acceptor_cred_handle->keytab;
+  }
+
+  if (keytab == NULL) {
+    keytab = gss_keytab;
   }
 
   kret = krb5_rd_req (gssapi_krb5_context,

-- 
Gabor Gombas                                       Eotvos Lorand University
E-mail: gombasg@inf.elte.hu                        Hungary

References:
- GSSAPI & non-default keytab file
  - From: GOMBAS Gabor <gombasg@inf.elte.hu>
- Re: GSSAPI & non-default keytab file
  - From: joda@pdc.kth.se (Johan Danielsson)

Prev by Date: Re: GSSAPI & non-default keytab file
Next by Date: Problems with afs-salts on Dunix
Prev by thread: Re: GSSAPI & non-default keytab file
Next by thread: Problems with afs-salts on Dunix
Index(es):
- Date
- Thread