| commit | d6a7d14fc59d5867fedab67a75afd79bdb14cc26 | |
| author | Nicolas Williams <nico@cryptonector.com> | |
| Thu, 16 Apr 2015 23:42:51 +0000 (16 18:42 -0500) | ||
| committer | Nicolas Williams <nico@cryptonector.com> | |
| Thu, 16 Apr 2015 23:42:51 +0000 (16 18:42 -0500) | ||
| tree | dc9a21f01f6eb8d311243d601e7826580ef9f90f | treesnapshot (tar.gz zip) |
| parent | fb177480bd5a1f1752560676f40aa406c7a69941 | commitdiff |
Workaround bugs exposed by test_context changes
Bugs exposed by 61720a0:
- test_context --client-name=... --mech-type=ntlm ... fails;
- gss_acquire_cred() with desired_mech=NTLM and
desired_name==GSS_C_NO_NAME fails;
- gss_init_sec_context() with non-default cred handle calls the
mechanism even when the given cred handle has no element for the
requencet mechanism.
tests/gss/check-ntlm works by accident: gss_acquire_cred() with
desired_mechs==GSS_C_NO_OID_SET succeeds mostly because there are
Kerberos credentials available, and then the subsequent
gss_init_sec_context() call works because of the third bug described
above.
Bugs exposed by 61720a0:
- test_context --client-name=... --mech-type=ntlm ... fails;
- gss_acquire_cred() with desired_mech=NTLM and
desired_name==GSS_C_NO_NAME fails;
- gss_init_sec_context() with non-default cred handle calls the
mechanism even when the given cred handle has no element for the
requencet mechanism.
tests/gss/check-ntlm works by accident: gss_acquire_cred() with
desired_mechs==GSS_C_NO_OID_SET succeeds mostly because there are
Kerberos credentials available, and then the subsequent
gss_init_sec_context() call works because of the third bug described
above.
| lib/gssapi/test_context.c | diffblobblamehistory | |
| tests/gss/check-ntlm.in | diffblobblamehistory | |
| tests/gss/check-spnego.in | diffblobblamehistory |