git.samba.org - metze/samba/wip.git/commit

author	Andrew Bartlett <abartlet@samba.org>
	Tue, 30 Jun 2009 02:11:14 +0000 (12:11 +1000)
committer	Andrew Bartlett <abartlet@samba.org>
	Tue, 30 Jun 2009 02:11:14 +0000 (12:11 +1000)
commit	89a074b784295204aa8d7dd585bf3533ac7971a7
tree	830e6fd5cf0e3924e8735abd4530f6eba3bf4b86	tree
parent	6ba0e7f7b21b7b7e57d92c1aa90331cb93964217	commit \| diff

s4:heimdal Allow KRB5_NT_ENTERPRISE names in all DB lookups

The previous code only allowed an KRB5_NT_ENTERPRISE name (an e-mail
list user principal name) in an AS-REQ. Evidence from the wild
(Win2k8 reportadely) indicates that this is instead valid for all
types of requests.

While this is now handled in heimdal/kdc/misc.c, a flag is now defined
in Heimdal's hdb so that we can take over this handling in future (once we start
using a system Heimdal, and if we find out there is more to be done
here).

Andrew Bartlett

source4/heimdal/kdc/kerberos5.c		diff \| blob \| history
source4/heimdal/kdc/misc.c		diff \| blob \| history
source4/heimdal/lib/hdb/hdb.h		diff \| blob \| history
source4/kdc/hdb-samba4.c		diff \| blob \| history
testprogs/blackbox/test_kinit.sh		diff \| blob \| history