[16488] in Kerberos-V5-bugs

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[krbdev.mit.edu #7976] git commit

daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Mon Mar 2 22:28:40 2020

From: Greg Hudson via RT <rt@KRBDEV-PROD-APP-1.mit.edu>
In-Reply-To: 
Message-ID: <rt-4.4.4-58976-1583206113-136.7976-5-0@mit.edu>
To: "AdminCc of krbdev.mit.edu Ticket #7976":;
Date: Mon, 2 Mar 2020 22:28:33 -0500
MIME-Version: 1.0
Reply-To: rt@KRBDEV-PROD-APP-1.mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu


<URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=7976 >


Refresh manually acquired creds from client keytab

If a client keytab is present but credentials are acquired manually,
the credentials would not be refreshed because no refresh_time config
var is set in the cache.  Change kg_cred_time_to_refresh() to attempt
a refresh from the client keytab on any credentials which will expire
in the next 30 seconds.

[ghudson@mit.edu: adjused code and added test case]

https://github.com/krb5/krb5/commit/729896467e3c77904666019d6cbbda583ae49b95
Author: Robbie Harwood <rharwood@redhat.com>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: 729896467e3c77904666019d6cbbda583ae49b95
Branch: master
 src/lib/gssapi/krb5/acquire_cred.c  |   14 +++++++++++---
 src/tests/gssapi/t_client_keytab.py |   18 ++++++++++++++++++
 2 files changed, 29 insertions(+), 3 deletions(-)

_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs

home	help	back	first	fref	pref	prev	next	nref	lref	last	post