[Date Prev][Date Next] [Chronological] [Thread] [Top]

SASL_SUCCESS_DATA should be set (ITS#2202)

To: openldap-its@OpenLDAP.org
Subject: SASL_SUCCESS_DATA should be set (ITS#2202)
From: lukeh@padl.com
Date: Tue, 26 Nov 2002 10:39:01 GMT

Full_Name: Luke Howard
Version: HEAD
OS: Linux
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (165.228.130.11)


In servers/slapd/sasl.c, when calling sasl_server_new(), you should pass
SASL_SUCCESS_DATA as the second-last argument.

Why? Some SASL mechanisms appear to send a final response with the last token.
For example, Microsoft's GSS-SPNEGO mechanism appears not to do the SASL SSF
negotiation, and so the final SPNEGO "accept completed" token is returned in a
successful LDAP BindResponse PDU.

Prev by Date: SASL EXTERNAL fails with current slapd (ITS#2200)
Next by Date: ucgendat fails because -lber not linked in (ITS#2203)
Index(es):
- Chronological
- Thread