bclzvs / serf

Automatically exported from code.google.com/p/serf
0 stars 0 forks source link

Remove ISC_REQ_CONFIDENTIALITY auth_spnego_sspi.c #147

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago
That flag is not necessary and not used with the GSS-API implementation. SSPI 
impl should match. It has no use with HTTP because the messages are not wrapped 
through SSPI but sent directly.

Original issue reported on code.google.com by 1983-01...@gmx.net on 28 Jun 2014 at 10:09

GoogleCodeExporter commented 9 years ago
Anyone?

Original comment by 1983-01...@gmx.net on 10 Jul 2014 at 9:33

GoogleCodeExporter commented 9 years ago
Does this flag cause any problems or this is just correctness fix?

Original comment by chemodax@gmail.com on 10 Jul 2014 at 9:54

GoogleCodeExporter commented 9 years ago
Correctness and alignment with the GSS-API code. ISC_REQ_CONFIDENTIALITY is 
advisable if you use SASL or encrypt the data directly with GSS-API. It has no 
function in HTTP.

Original comment by 1983-01...@gmx.net on 10 Jul 2014 at 10:53

GoogleCodeExporter commented 9 years ago
Ivan, any news on fixing this?

Original comment by 1983-01...@gmx.net on 20 Aug 2014 at 5:14

GoogleCodeExporter commented 9 years ago
Fixed in r2422.

Original comment by chemodax@gmail.com on 1 Sep 2014 at 1:27