You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2016/11/20 21:32:27 UTC
[Bug 60395] New: Log if passed GSSContext to
RealmBase#authenticate(GSSContext, boolean) is not fully established
https://bz.apache.org/bugzilla/show_bug.cgi?id=60395
Bug ID: 60395
Summary: Log if passed GSSContext to
RealmBase#authenticate(GSSContext, boolean) is not
fully established
Product: Tomcat 8
Version: 8.5.x-trunk
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P2
Component: Catalina
Assignee: dev@tomcat.apache.org
Reporter: 1983-01-06@gmx.net
Target Milestone: ----
org.apache.catalina.realm.RealmBase.authenticate(GSSContext, boolean) does not
log when an incomplete GSS context is passed, it simply returns null. Given
that an authenticator is incorrectly implemented, this would be unnnoticed.
Many resources on the net never care about context completion and think pass
token and this is it.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
[Bug 60395] Log if GSSContext passed to
RealmBase#authenticate(GSSContext, boolean) is not fully established
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=60395
Mark Thomas <ma...@apache.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution|--- |FIXED
--- Comment #2 from Mark Thomas <ma...@apache.org> ---
Thanks for the report and the patch.
Fixed in:
- trunk for 9.0.0.M14 onwards
- 8.5.x for 8.5.9 onwards
- 8.0.x for 8.0.40 onwards
- 7.0.x for 7.0.74 onwards
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
[Bug 60395] Log if GSSContext passed to
RealmBase#authenticate(GSSContext, boolean) is not fully established
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=60395
Michael Osipov <19...@gmx.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
Summary|Log if passed GSSContext to |Log if GSSContext passed to
|RealmBase#authenticate(GSSC |RealmBase#authenticate(GSSC
|ontext, boolean) is not |ontext, boolean) is not
|fully established |fully established
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
[Bug 60395] Log if passed GSSContext to
RealmBase#authenticate(GSSContext, boolean) is not fully established
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=60395
--- Comment #1 from Michael Osipov <19...@gmx.net> ---
Created attachment 34465
--> https://bz.apache.org/bugzilla/attachment.cgi?id=34465&action=edit
Log incomplete context
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org