svn rev #22093: trunk/src/kdc/
hartmans@MIT.EDU
hartmans at MIT.EDU
Mon Mar 16 12:50:04 EDT 2009
http://src.mit.edu/fisheye/changelog/krb5/?cs=22093
Commit By: hartmans
Log Message:
ticket: 6424
Subject: Call kdb_set_mkey_list from the KDC
Target_version: 1.7
tags: pullup
In order for the kdb keytab to be used from within the KDC, the KDC
needs to set the master key list in the context.
Changed Files:
U trunk/src/kdc/kdc_util.c
U trunk/src/kdc/main.c
Modified: trunk/src/kdc/kdc_util.c
===================================================================
--- trunk/src/kdc/kdc_util.c 2009-03-16 16:49:59 UTC (rev 22092)
+++ trunk/src/kdc/kdc_util.c 2009-03-16 16:50:04 UTC (rev 22093)
@@ -454,6 +454,7 @@
&master_keyblock, 0, &tmp_mkey_list) == 0) {
krb5_dbe_free_key_list(kdc_context, master_keylist);
master_keylist = tmp_mkey_list;
+ krb5_db_set_mkey_list(kdc_context, master_keylist);
if ((retval = krb5_dbe_find_mkey(kdc_context, master_keylist,
server, &mkey_ptr))) {
goto errout;
Modified: trunk/src/kdc/main.c
===================================================================
--- trunk/src/kdc/main.c 2009-03-16 16:49:59 UTC (rev 22092)
+++ trunk/src/kdc/main.c 2009-03-16 16:50:04 UTC (rev 22093)
@@ -414,7 +414,6 @@
rdp->realm_mpname, realm);
goto whoops;
}
-
#if 0 /************** Begin IFDEF'ed OUT *******************************/
/*
* Commenting krb5_db_verify_master_key out because it requires the most
@@ -445,6 +444,7 @@
"while setting master key for realm %s", realm);
goto whoops;
}
+ krb5_db_set_mkey_list(rdp->realm_context, rdp->mkey_list);
/* Set up the keytab */
if ((kret = krb5_ktkdb_resolve(rdp->realm_context, NULL,
More information about the cvs-krb5
mailing list