Ticket History #1356: Bug in accept_sec_context.c ?

Mustn't the below call to krb5_gss_validate_cred use cred_handle and not
verifier_cred_handle ??

Markus


/* handle default cred handle */
if (verifier_cred_handle == GSS_C_NO_CREDENTIAL) {
major_status = krb5_gss_acquire_cred(&code, GSS_C_NO_NAME,
GSS_C_INDEFINITE,
GSS_C_NO_OID_SET,
GSS_C_ACCEPT, &cred_handle,
NULL, NULL);
if (major_status != GSS_S_COMPLETE)
goto fail;
} else {
cred_handle = verifier_cred_handle;
}

/* Bug ? major_status = krb5_gss_validate_cred(&code, verifier_cred_handle);
*/
major_status = krb5_gss_validate_cred(&code, cred_handle);
if (GSS_ERROR(major_status))
goto fail;

cred = (krb5_gss_cred_id_t) cred_handle;

Hm. acquire_cred() seems like it always gives you a valid cred handle
if it succeeds. Probably the thing to do is to validate
verifier_cred_handle in the case where it isn't GSS_C_NO_CREDENTIAL.

There isn't really a point to validating cred_handle if it was just
acquired by acquire_cred(), so instead of the suggested patch,
validate verifier_cred_handle only if we didn't acquire_cred().

* accept_sec_context.c (krb5_gss_accept_sec_context): Don't
validate verifier_cred_handle if GSS_C_NO_CREDENTIAL is passed in.


To generate a diff of this commit:



cvs diff -r1.213 -r1.214 krb5/src/lib/gssapi/krb5/ChangeLog
cvs diff -r1.74 -r1.75
krb5/src/lib/gssapi/krb5/accept_sec_context.c