mit-kdb: Return 0 in kdb_samba_db_put_principal()

This allows the kadmin server to assume an update of a db_entry has
succeeded (while in fact the update_pwd call did the update already).

Guenther

Signed-off-by: Guenther Deschner <gd@samba.org>
Signed-off-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Pair-Programmed-With: Andreas Schneider <asn@samba.org>
Reviewed-by: Sumit Bose <sbose@redhat.com>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

diff --git a/source4/kdc/mit-kdb/kdb_samba_principals.c b/source4/kdc/mit-kdb/kdb_samba_principals.c
index 6e1fffbc5b43f283b02455d1bf68b3a6147fd384..1c374975d30ed65524e33ca936ae83aaba876a14 100644 (file)
--- a/source4/kdc/mit-kdb/kdb_samba_principals.c
+++ b/source4/kdc/mit-kdb/kdb_samba_principals.c
@@ -299,8 +299,9 @@ krb5_error_code kdb_samba_db_put_principal(krb5_context context,
 {
 
        /* NOTE: deferred, samba does not allow the KDC to store
-        * principals for now */
-       return KRB5_KDB_DB_INUSE;
+        * principals for now. We should not return KRB5_KDB_DB_INUSE as this
+        * would result in confusing error messages after password changes. */
+       return 0;
 }
 
 krb5_error_code kdb_samba_db_delete_principal(krb5_context context,