diff options
author | Jakub Hrozek <jhrozek@redhat.com> | 2012-10-23 15:12:45 +0200 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2012-10-24 17:54:12 +0200 |
commit | 804b26a0d91d0b551f2f0df11507ef065f8a1f67 (patch) | |
tree | 92af817bfe046844a616ba8a42b91f0778543358 /src/providers/ldap | |
parent | 208bf72198fb3580bc67993b6de373bea0f06836 (diff) | |
download | sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.tar.gz sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.tar.bz2 sssd-804b26a0d91d0b551f2f0df11507ef065f8a1f67.zip |
KRB5: Return error when principal selection fails
The ldap_child would return a NULL ccache but the error code would still
indicate success.
https://fedorahosted.org/sssd/ticket/1594
Diffstat (limited to 'src/providers/ldap')
-rw-r--r-- | src/providers/ldap/ldap_child.c | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/src/providers/ldap/ldap_child.c b/src/providers/ldap/ldap_child.c index e0529dbc..f35d9467 100644 --- a/src/providers/ldap/ldap_child.c +++ b/src/providers/ldap/ldap_child.c @@ -242,7 +242,10 @@ static krb5_error_code ldap_child_get_tgt_sync(TALLOC_CTX *memctx, ret = select_principal_from_keytab(memctx, hostname, realm_name, keytab_name, &full_princ, NULL, NULL); - if (ret) goto done; + if (ret) { + krberr = KRB5_KT_IOERR; + goto done; + } } if (!full_princ) { krberr = KRB5KRB_ERR_GENERIC; |