rpms / sssd

Clone
Source Code
GIT

Blame SOURCES/0111-IPA-KRB5-handle-KRB5_PROG_ETYPE_NOSUPP-during-IPA-pa.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8 c8-beta c8s c9 c9-beta
  1.   2fc102e8cac6f5a4ebee5f83596b154528f23d78
  2.   SOURCES
  3.   0111-IPA-KRB5-handle-KRB5_PROG_ETYPE_NOSUPP-during-IPA-pa.patch
Blob History Raw
2fc102 
From f8a49b3bff8d3969824fc7ba4e90d229f0c4edea Mon Sep 17 00:00:00 2001
2fc102 
From: Sumit Bose <sbose@redhat.com>
2fc102 
Date: Tue, 11 Mar 2014 13:16:14 +0100
2fc102 
Subject: [PATCH 111/111] IPA/KRB5: handle KRB5_PROG_ETYPE_NOSUPP during IPA
2fc102 
 password migration
2fc102
2fc102 
Fixes https://fedorahosted.org/sssd/ticket/2279
2fc102
2fc102 
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
2fc102 
(cherry picked from commit 63bf0b7697d5a51b5338070d0e2652d49a4728ce)
2fc102 
---
2fc102 
 src/providers/krb5/krb5_child.c | 4 ++++
2fc102 
 1 file changed, 4 insertions(+)
2fc102
2fc102 
diff --git a/src/providers/krb5/krb5_child.c b/src/providers/krb5/krb5_child.c
2fc102 
index 461a27464f4fea09d4ca430b53aff072b29de141..af303e6c8c507c7cef108027c49cc4adb74162e7 100644
2fc102 
--- a/src/providers/krb5/krb5_child.c
2fc102 
+++ b/src/providers/krb5/krb5_child.c
2fc102 
@@ -986,6 +986,10 @@ static errno_t map_krb5_error(krb5_error_code kerr)
2fc102 
     case KRB5KRB_AP_ERR_BAD_INTEGRITY:
2fc102 
         return ERR_AUTH_FAILED;
2fc102
2fc102 
+    /* ERR_CREDS_INVALID is used to indicate to the IPA provider that trying
2fc102 
+     * password migration would make sense. All Kerberos error codes which can
2fc102 
+     * be seen while migrating LDAP users to IPA should be added here. */
2fc102 
+    case KRB5_PROG_ETYPE_NOSUPP:
2fc102 
     case KRB5_PREAUTH_FAILED:
2fc102 
     case KRB5KDC_ERR_PREAUTH_FAILED:
2fc102 
         return ERR_CREDS_INVALID;
2fc102 
--
2fc102 
1.8.5.3
2fc102

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation