Skip Menu |

Subject: git commit

Don't tag S4U2Proxy result creds as user-to-user

S4U2Proxy and user-to-user tickets are both obtained using a
second-ticket input, but only user-to-user tickets are encrypted in
the session key of the second ticket. In gc_via_tkt.c, stop deducing
the is_skey flag from the presence of a second ticket and instead set
it based on the request KDC options.
Author: Greg Hudson <>
Commit: 6d8c598d7c226b0fb594892b261386c37b47da1e
Branch: master
src/lib/krb5/krb/gc_via_tkt.c | 10 ++++++----
1 files changed, 6 insertions(+), 4 deletions(-)