[krbdev.mit.edu #7976] git commit
Greg Hudson via RT
rt at KRBDEV-PROD-APP-1.mit.edu
Mon Mar 2 22:28:33 EST 2020
<URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=7976 >
Refresh manually acquired creds from client keytab
If a client keytab is present but credentials are acquired manually,
the credentials would not be refreshed because no refresh_time config
var is set in the cache. Change kg_cred_time_to_refresh() to attempt
a refresh from the client keytab on any credentials which will expire
in the next 30 seconds.
[ghudson at mit.edu: adjused code and added test case]
https://github.com/krb5/krb5/commit/729896467e3c77904666019d6cbbda583ae49b95
Author: Robbie Harwood <rharwood at redhat.com>
Committer: Greg Hudson <ghudson at mit.edu>
Commit: 729896467e3c77904666019d6cbbda583ae49b95
Branch: master
src/lib/gssapi/krb5/acquire_cred.c | 14 +++++++++++---
src/tests/gssapi/t_client_keytab.py | 18 ++++++++++++++++++
2 files changed, 29 insertions(+), 3 deletions(-)
More information about the krb5-bugs
mailing list