git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 14f6c41) | patch
s4:gensec_gssapi: make sure gensec_gssapi_[un]seal_packet() rejects header signing
authorStefan Metzmacher <metze@samba.org>
Fri, 3 Jan 2014 14:30:46 +0000 (15:30 +0100)
committerStefan Metzmacher <metze@samba.org>
Mon, 6 Jan 2014 23:27:11 +0000 (00:27 +0100)
commit54b5b3067f5b7a0eb6dd9f1326c903f9fe4a5592
treef1f6237920014940dedb03a6bfd40e0199f44a8atree
parent14f6c41754960d73f46aca1bade2266b7e934d03commit | diff
s4:gensec_gssapi: make sure gensec_gssapi_[un]seal_packet() rejects header signing

If header signing is requested we should error out instead of
silently ignoring it, our peer would hopefully reject it,
but we should also do that.

TODO: we should implement header signing using gss_wrap_iov().

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
source4/auth/gensec/gensec_gssapi.c diff | blob | history
Samba Shared Repository