Mercurial Mercurial > upstream > oracle > userland-gate / file revision
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
components/krb5/patches/014-init_ccache.patch
author Shawn Emery <shawn.emery@oracle.com>
Fri, 27 May 2016 14:04:06 -0600
changeset 6085 eb3c11e27709
parent 5490 9bf0bc57423a
child 6599 1d033832c5e7
permissions -rw-r--r--
PSARC/2016/244 Sync MIT Kerberos to 1.14.2 22954706 Should synchronize with MIT Kerberos 1.14 23116276 Userland krb pkgs must have mediation removed

#
# copy_initiator_creds fails, if ccache file is not present.
# This patch in that case initializes the ccache to create the missing file
# and retries credentials copy.
# This was required for SunSSH credential delegation code.
# We will try to push the patch upstream.
# Patch source: in-house
#
diff -ur old/src/lib/gssapi/krb5/store_cred.c new/src/lib/gssapi/krb5/store_cred.c
--- old/src/lib/gssapi/krb5/store_cred.c	2014-01-21 01:38:26.331798328 -0800
+++ new/src/lib/gssapi/krb5/store_cred.c	2014-01-21 02:31:35.858882999 -0800
@@ -145,6 +145,16 @@
     }
 
     code = krb5_cc_copy_creds(context, kcred->ccache, ccache);
+    if (code == KRB5_FCC_NOFILE) {
+        /* default ccache file does not exists => initialize ccache */
+        code = krb5_cc_initialize(context, ccache, kcred->name->princ);
+        if (code != 0) {
+            *minor_status = code;
+            major_status = GSS_S_CRED_UNAVAIL;
+            goto cleanup;
+        }
+        code = krb5_cc_copy_creds(context, kcred->ccache, ccache);
+    }
     if (code != 0) {
         *minor_status = code;
         major_status = GSS_S_FAILURE;
upstream/oracle/userland-gate