KRB5: Return error when principal selection fails

The ldap_child would return a NULL ccache but the error code would still indicate success. https://fedorahosted.org/sssd/ticket/1594
author: Jakub Hrozek <jhrozek@redhat.com> 2012-10-23 15:12:45 +0200
committer: Jakub Hrozek <jhrozek@redhat.com> 2012-10-24 17:54:12 +0200
commit: 804b26a0d91d0b551f2f0df11507ef065f8a1f67 (patch)
tree: 92af817bfe046844a616ba8a42b91f0778543358 /src/providers/ldap/ldap_child.c
parent: 208bf72198fb3580bc67993b6de373bea0f06836 (diff)
download: sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.tar.gz
sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.tar.bz2
sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/src/providers/ldap/ldap_child.c b/src/providers/ldap/ldap_child.c
index e0529dbc..f35d9467 100644
--- a/src/providers/ldap/ldap_child.c
+++ b/src/providers/ldap/ldap_child.c
@@ -242,7 +242,10 @@ static krb5_error_code ldap_child_get_tgt_sync(TALLOC_CTX *memctx,
 
         ret = select_principal_from_keytab(memctx, hostname, realm_name,
                 keytab_name, &full_princ, NULL, NULL);
-        if (ret) goto done;
+        if (ret) {
+            krberr = KRB5_KT_IOERR;
+            goto done;
+        }
     }
     if (!full_princ) {
         krberr = KRB5KRB_ERR_GENERIC;
author	Jakub Hrozek <jhrozek@redhat.com>	2012-10-23 15:12:45 +0200
committer	Jakub Hrozek <jhrozek@redhat.com>	2012-10-24 17:54:12 +0200
commit	804b26a0d91d0b551f2f0df11507ef065f8a1f67 (patch)
tree	92af817bfe046844a616ba8a42b91f0778543358 /src/providers/ldap/ldap_child.c
parent	208bf72198fb3580bc67993b6de373bea0f06836 (diff)
download	sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.tar.gz sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.tar.bz2 sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.zip