Issues bringing 'new SPENGO' to MIT Kerberos 1.8 builds
abartlet at samba.org
Tue Feb 14 14:33:16 MST 2012
On Tue, 2012-02-14 at 12:00 -0500, simo wrote:
> On Tue, 2012-02-14 at 21:53 +1100, Andrew Bartlett wrote:
> > On Tue, 2012-02-14 at 16:00 +1100, Luke Howard wrote:
> > > You could use GSS_C_INQ_SSPI_SESSION_KEY to get the enctype of the session key and figure out if CFX was used based on that.
> > Thanks Luke!
> > That seems to be working well, so I have updated my s3-rpc-gensec branch
> > with a patch that uses this.
> Does this work with MIT ?
> I see the OID definition there, but no code using it.
See gse_get_session_key(). We can probably stop defining the OID inline
and just skip the whole call if the headers do not include it.
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
More information about the samba-technical