From: Luke Howard <lukeh@padl.com>
Date: Mon, 4 Apr 2011 15:50:12 +0000 (+1000)
Subject: don't return GSS_S_CREDENTIALS_EXPIRED if no expiry time
X-Git-Tag: dvd/201105~12^2~8
X-Git-Url: http://www.project-moonshot.org/gitweb/?a=commitdiff_plain;ds=sidebyside;h=2a39e2eedeb037f37aa5295c87bad04d8446564f;p=mech_eap.orig

don't return GSS_S_CREDENTIALS_EXPIRED if no expiry time
---

diff --git a/accept_sec_context.c b/accept_sec_context.c
index d54ea48..ca95f5c 100644
--- a/accept_sec_context.c
+++ b/accept_sec_context.c
@@ -121,7 +121,7 @@ acceptReadyEap(OM_uint32 *minor, gss_ctx_id_t ctx, gss_cred_id_t cred)
     if (GSS_ERROR(major))
         return major;
 
-    if (ctx->expiryTime < time(NULL)) {
+    if (ctx->expiryTime != 0 && ctx->expiryTime < time(NULL)) {
         *minor = GSSEAP_CRED_EXPIRED;
         return GSS_S_CREDENTIALS_EXPIRED;
     }