[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

krb5_set_password_using_ccache returning KRB5_KPASSWD_* resultcodes

To: heimdal-discuss@sics.se
Subject: krb5_set_password_using_ccache returning KRB5_KPASSWD_* resultcodes
From: Michael B Allen <mba2000@ioplex.com>
Date: Thu, 25 Jan 2007 23:47:49 -0500
Sender: owner-heimdal-discuss@sics.se

Hey,

I have managed to get krb5_set_password_using_ccache to return
1 which would not be odd if it meant EPERM but it doesn't. The
result_code is 0. I have traced the source to the top of
lib/krb5/changepw.c:chgpw_send_request:

    if (targprinc &&
        krb5_principal_compare(context, creds->client, targprinc) != TRUE)
        return KRB5_KPASSWD_MALFORMED;

Apparently chgpw_send_request returns KRB5_KPASSWD_* result codes whereas
setpw_send_request returns regular KRB5_* codes.

The result is that krb5_set_password_using_ccache is returning
KRB5_KPASSWD_* result codes.

Perhaps it would be better if chgpw_send_request returned KRB5_*
errors (preferably with a little bit of meaningful text) instead of the
KRB5_KPASSWD_* ones?

Mike

-- 
Michael B Allen
PHP Active Directory SSO
http://www.ioplex.com/

Prev by Date: For more information on DB2 Express-C visit www.
Next by Date: election ostrich
Prev by thread: For more information on DB2 Express-C visit www.
Next by thread: election ostrich
Index(es):
- Date
- Thread