| commit | d19a69fe6afacf7b9fc756e077c70cb3092d1df3 | |
| author | Stefan Becker <chemobejk@gmail.com> | |
| Tue, 4 Jun 2013 08:02:07 +0000 (4 11:02 +0300) | ||
| committer | Stefan Becker <chemobejk@gmail.com> | |
| Tue, 4 Jun 2013 08:02:07 +0000 (4 11:02 +0300) | ||
| tree | 6a0cff8ab72d72fc260a446e2e90049ee8a4fd71 | treesnapshot (tar.gz zip) |
| parent | 66c385611737fe9e606f80b7949985fd4962a302 | commitdiff |
security: drop useless gss_acquire_cred()
As it turned out there is no regression in krb5 1.11.x, but our call to
gss_acquire_cred() is pointless. You can call gss_init_sec_context()
with GSS_C_NO_CREDENTIALS and it will automatically pick up the default
credentials. Therefore all code for credential handling can be removed
from sip-sec-krb5.c.
Verified kinit & kinit-less use cases on Fedora 19 Beta (krb5 1.11.x),
Fedora 18 (krb5 1.10.x) and Ubuntu 10.04 (krb5 1.8.x).
As it turned out there is no regression in krb5 1.11.x, but our call to
gss_acquire_cred() is pointless. You can call gss_init_sec_context()
with GSS_C_NO_CREDENTIALS and it will automatically pick up the default
credentials. Therefore all code for credential handling can be removed
from sip-sec-krb5.c.
Verified kinit & kinit-less use cases on Fedora 19 Beta (krb5 1.11.x),
Fedora 18 (krb5 1.10.x) and Ubuntu 10.04 (krb5 1.8.x).
| ChangeLog | diffblobblamehistory | |
| src/core/sip-sec-krb5.c | diffblobblamehistory |