Skip Menu |
 

From: ghudson@mit.edu
Subject: git commit

Don't tag S4U2Proxy result creds as user-to-user

S4U2Proxy and user-to-user tickets are both obtained using a
second-ticket input, but only user-to-user tickets are encrypted in
the session key of the second ticket. In gc_via_tkt.c, stop deducing
the is_skey flag from the presence of a second ticket and instead set
it based on the request KDC options.

https://github.com/krb5/krb5/commit/6d8c598d7c226b0fb594892b261386c37b47da1e
Author: Greg Hudson <ghudson@mit.edu>
Commit: 6d8c598d7c226b0fb594892b261386c37b47da1e
Branch: master
src/lib/krb5/krb/gc_via_tkt.c | 10 ++++++----
1 files changed, 6 insertions(+), 4 deletions(-)