goto out;
}
- if(!get_krbtgt_realm(&ap_req.ticket.sname)){
+ if(!krb5_principalname_is_krbtgt(r->context, &ap_req.ticket.sname)){
/* XXX check for ticket.sname == req.sname */
kdc_log(r->context, config, 4, "PA-DATA is not a ticket-granting ticket");
ret = KRB5KDC_ERR_POLICY; /* ? */
goto out;
}
t = &b->additional_tickets->val[0];
- if(!get_krbtgt_realm(&t->sname)){
+ if(!krb5_principalname_is_krbtgt(context, &t->sname)){
kdc_log(context, config, 4,
"Additional ticket is not a ticket-granting ticket");
kdc_audit_addreason((kdc_request_t)priv,