[2208] in Kerberos-V5-bugs
Re: krb5_fcc_retrieve() question
daemon@ATHENA.MIT.EDU (Tom Yu)
Fri Sep 6 11:40:47 1996
Date: Fri, 6 Sep 1996 11:39:58 -0400
To: "Kenneth D. Renard" (ASHPC) <kdrenard@ARL.MIL>
Cc: krb5-bugs@MIT.EDU
From: Tom Yu <tlyu@MIT.EDU>
In-Reply-To: <9609061124.aa18408@SMOKEY.ARL.MIL>
>>>>> "kdrenard" == "Kenneth D Renard" (ASHPC) <kdrenard@ARL.MIL> writes:
kdrenard> Kerberos V5 Beta 6 lib/krb5/ccache/file/fcc_retrv.c,
kdrenard> function srvname_match(), line #195
kdrenard> Shouldn't this match the server principals not the
kdrenard> client principals?
kdrenard> [i.e. krb5_principal_compare(context,
kdrenard> mcreds->server,creds->server);]
Yes, but there the intent *is* to compare the client principals, not
the server principals.
You will notice that later in the same function, the server principals
are compared without the realm:
/*
* Hack to ignore the server realm for the purposes of the compare.
*/
p1 = *mcreds->server;
p2 = *creds->server;
p1.realm = p2.realm;
return krb5_principal_compare(context, &p1, &p2);
---Tom
