[JDK-8223172] Incomplete/Unusable Kerberos Cross-Realm Referrals Support
Martin Balao
mbalao at redhat.com
Mon Oct 21 20:07:39 UTC 2019
Hi Michael,
Thanks for providing your feedback and apologies for the delay to answer.
As you well noticed (and @Max already said), the kinit/login/jgss parts
of NT-ENTERPRISE were not implemented in the first stage; only the
internal machinery. It should be pretty straight forward to implement
the missing bits now that we have the basis.
My plan is the following:
1) Have S4U2Self and S4U2Proxy referrals approved (webrev already
proposed, under review)
2) Backport all the referrals-related work so far to 11u and 8u
* 11u is almost done
Only after that I can try to make time for your request. However, feel
free to propose a patch before and I'll certainly have a look :-)
Thanks,
Martin.-
More information about the security-dev
mailing list