for now, fake that we provide mutual auth

author Luke Howard <lukeh@padl.com>

Sat, 25 Sep 2010 23:10:33 +0000 (01:10 +0200)

committer Luke Howard <lukeh@padl.com>

Sat, 25 Sep 2010 23:10:33 +0000 (01:10 +0200)
author Luke Howard <lukeh@padl.com>
Sat, 25 Sep 2010 23:10:33 +0000 (01:10 +0200)
committer Luke Howard <lukeh@padl.com>
Sat, 25 Sep 2010 23:10:33 +0000 (01:10 +0200)
diff --git a/mech_eap/init_sec_context.c b/mech_eap/init_sec_context.c

index a8561dd..375b3ef 100644 (file)
--- a/mech_eap/init_sec_context.c
+++ b/mech_eap/init_sec_context.c
@@ -261,7 +261,7 @@ initReady(OM_uint32 *minor, gss_ctx_id_t ctx, OM_uint32 reqFlags)
      krb5_enctype encryptionType;
      int gotKey = 0;
  
-#if 0
+#if 1
      /* XXX actually check for mutual auth */
      if (reqFlags & GSS_C_MUTUAL_FLAG)
          ctx->gssFlags |= GSS_C_MUTUAL_FLAG;
diff --git a/mech_eap/inquire_attrs_for_mech.c b/mech_eap/inquire_attrs_for_mech.c

index e487a05..ffd33bd 100644 (file)
--- a/mech_eap/inquire_attrs_for_mech.c
+++ b/mech_eap/inquire_attrs_for_mech.c
@@ -65,7 +65,7 @@ gss_inquire_attrs_for_mech(OM_uint32 *minor,
              MA_SUPPORTED(GSS_C_MA_MECH_CONCRETE);
          MA_SUPPORTED(GSS_C_MA_ITOK_FRAMED);
          MA_SUPPORTED(GSS_C_MA_AUTH_INIT);
-//        MA_SUPPORTED(GSS_C_MA_AUTH_TARG);
+        MA_SUPPORTED(GSS_C_MA_AUTH_TARG);
          MA_SUPPORTED(GSS_C_MA_AUTH_INIT_INIT);
          MA_SUPPORTED(GSS_C_MA_DELEG_CRED);
          MA_SUPPORTED(GSS_C_MA_INTEG_PROT);
author	Luke Howard <lukeh@padl.com>
	Sat, 25 Sep 2010 23:10:33 +0000 (01:10 +0200)
committer	Luke Howard <lukeh@padl.com>
	Sat, 25 Sep 2010 23:10:33 +0000 (01:10 +0200)
mech_eap/init_sec_context.c		patch \| blob \| history
mech_eap/inquire_attrs_for_mech.c		patch \| blob \| history