From: Luke Howard <lukeh@padl.com>
Date: Mon, 4 Apr 2011 15:50:12 +0000 (+1000)
Subject: don't return GSS_S_CREDENTIALS_EXPIRED if no expiry time
X-Git-Url: http://www.project-moonshot.org/gitweb/?a=commitdiff_plain;h=a7e740ff986e55bef4c4a4b5bc29170cda4428bb;p=mech_eap.git

don't return GSS_S_CREDENTIALS_EXPIRED if no expiry time
---

diff --git a/accept_sec_context.c b/accept_sec_context.c
index 16e60fb..e73958e 100644
--- a/accept_sec_context.c
+++ b/accept_sec_context.c
@@ -121,7 +121,7 @@ acceptReadyEap(OM_uint32 *minor, gss_ctx_id_t ctx, gss_cred_id_t cred)
     if (GSS_ERROR(major))
         return major;
 
-    if (ctx->expiryTime < time(NULL)) {
+    if (ctx->expiryTime != 0 && ctx->expiryTime < time(NULL)) {
         *minor = GSSEAP_CRED_EXPIRED;
         return GSS_S_CREDENTIALS_EXPIRED;
     }