git.samba.org / metze / samba / wip.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0bced73) | patch
krb5_wrap: smb_krb5_kinit_password_ccache() should always use the canonicalized principal
authorStefan Metzmacher <metze@samba.org>
Fri, 13 Sep 2019 14:04:30 +0000 (16:04 +0200)
committerGünther Deschner <gd@samba.org>
Tue, 24 Sep 2019 18:30:37 +0000 (18:30 +0000)
commit5d0bf32ec0ad21d49587e3a1520ffdc8b5ae7614
tree618fe57fab5ee94cb4672c04238db89bde403eddtree
parent0bced73bed481a8846a6b3e68be85941914390bacommit | diff
krb5_wrap: smb_krb5_kinit_password_ccache() should always use the canonicalized principal

We should always use krb5_get_init_creds_opt_set_canonicalize()
and krb5_get_init_creds_opt_set_win2k() for heimdal
and expect the client principal to be changed.

There's no reason to have a different logic between MIT and Heimdal.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14124

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Guenther Deschner <gd@samba.org>
lib/krb5_wrap/krb5_samba.c diff | blob | history
Work in progress branches