svn rev #21667: branches/mskrb-integ/src/kdc/
hartmans@MIT.EDU
hartmans at MIT.EDU
Fri Jan 2 15:14:50 EST 2009
http://src.mit.edu/fisheye/changelog/krb5/?cs=21667
Commit By: hartmans
Log Message:
Use kdb keytab
to look up service principal
Changed Files:
U branches/mskrb-integ/src/kdc/kdc_util.c
Modified: branches/mskrb-integ/src/kdc/kdc_util.c
===================================================================
--- branches/mskrb-integ/src/kdc/kdc_util.c 2009-01-02 20:14:40 UTC (rev 21666)
+++ branches/mskrb-integ/src/kdc/kdc_util.c 2009-01-02 20:14:49 UTC (rev 21667)
@@ -247,8 +247,6 @@
krb5_auth_context auth_context = NULL;
krb5_authenticator * authenticator = NULL;
krb5_checksum * his_cksum = NULL;
- krb5_keyblock * key = NULL;
- krb5_kvno kvno = 0;
*nprincs = 0;
@@ -292,18 +290,7 @@
goto cleanup_auth_context;
#endif
- if ((retval = kdc_get_server_key(apreq->ticket, 0, krbtgt, nprincs, &key, &kvno)))
- goto cleanup_auth_context;
- /*
- * XXX This is currently wrong but to fix it will require making a
- * new keytab for groveling over the kdb.
- */
- retval = krb5_auth_con_setuseruserkey(kdc_context, auth_context, key);
- krb5_free_keyblock(kdc_context, key);
- if (retval)
- goto cleanup_auth_context;
-
if ((retval = krb5_rd_req_decoded_anyflag(kdc_context, &auth_context, apreq,
apreq->ticket->server,
kdc_active_realm->realm_keytab,
More information about the cvs-krb5
mailing list