Ticket History #6853: Make gss_krb5_set_allowable_enctypes work for the acceptor (1.8 pullup)

# Mon Jan 24 19:27:12 2011 ghudson@mit.edu (Greg Hudson) - Ticket created

Subject:

Make gss_krb5_set_allowable_enctypes work for the acceptor (1.8 pullup)

Download (untitled) / with headers
text/plain 65B

r24603 (issue #6852) should also be pulled up to the 1.8 branch.

# Wed Feb 09 16:56:27 2011 tlyu (Taylor Yu) - Ticket 6853 RefersTo ticket 6852.

# Wed Feb 09 17:19:03 2011 tlyu (Taylor Yu) - Given to tlyu (Taylor Yu)

# Wed Feb 09 17:19:03 2011 tlyu (Taylor Yu) - Status changed from 'new' to 'resolved'

# Wed Feb 09 17:19:03 2011 tlyu (Taylor Yu) - Version_Fixed 1.8.4 added

# Wed Feb 09 17:19:03 2011 tlyu (Taylor Yu) - Correspondence added

From:	tlyu@mit.edu
Subject:	SVN Commit

Download (untitled) / with headers
text/plain 1KiB

pull up r24603 from trunk

------------------------------------------------------------------------
r24603 | ghudson | 2011-01-24 19:23:48 -0500 (Mon, 24 Jan 2011) | 15 lines

ticket: 6852
subject: Make gss_krb5_set_allowable_enctypes work for the acceptor
target_version: 1.9.1
tags: pullup

With the addition of enctype negotiation in 1.7, a gss-krb5 acceptor
can choose an enctype for the acceptor subkey other than the one in
the keytab. If the resulting security context will be exported and
re-imported by another gss-krb5 implementation (such as one in the
kernel), the acceptor needs a way to restrict the set of negotiated
enctypes to those supported by the other implementation. We had that
functionality for the initiator already in the form of
gss_krb5_set_allowable_enctypes; this change makes it work for the
acceptor as well.

https://github.com/krb5/krb5/commit/e3bf239e6ca7884aa84eb70262ded6bcc106c153
Commit By: tlyu
Revision: 24630
Changed Files:
U branches/krb5-1-8/src/lib/gssapi/krb5/accept_sec_context.c

# Wed Dec 16 18:02:56 2015 tlyu (Taylor Yu) - CustomField pullup deleted