forked from cyrusimap/cyrus-sasl
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix GSS-SPNEGO mechanism incompatible behavior
The GSS-SPNEGO mechanism has been designed and introduced by Microsoft for use by Active Directory clients. It allows to negotiate an underlying Security Mechanism like Krb5 or NTLMSSP. However the implementaion in cyrus-sasl is broken and never correctly interoperated with Microsoft servers or client. This patch fixes the compatibility issue which is caused by incorrectly trying to negotiate SSF layers explicitly instead of using the flags negotiated by GSSAPI as required by the Microsoft implementation. Signed-off-by: Simo Sorce <simo@redhat.com>
- Loading branch information
Showing
1 changed file
with
64 additions
and
6 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters