Bryan Kadzban wrote: > The gss_krb5_copy_ccache function only needs to set "mcred" to one or > the other of the Kerberos mechanism credential handles; if the top level > gss_union_cred_t uses SPNEGO, then it should contain a sub-credential > that uses one of the Kerberos mechanisms. So one fix would be to make > gssint_get_mechanism_cred recurse when it receives an SPNEGO-mechanism > union_cred, and SPNEGO is not what was asked for.
This has been reported upstream already; it's their bug number 5807: http://krbdev.mit.edu/rt/Ticket/Display.html?id=5807 The patch proposed there does the same thing as the proposed patch here, but slightly differently: it copies the SPNEGO OID and its length into the g_glue.c file instead of calling an SPNEGO-specific function to find that info. Either method should work. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
