From: Nalin Dahyabhai Date: Thu, 18 Sep 2014 12:37:29 +0000 (-0400) Subject: Restore providing password TGTs for the ksu target X-Git-Tag: krb5-1.14-alpha1~235 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=005f4eb3ccc1092f4a43afc4d6a4fabfa20b2b41;p=thirdparty%2Fkrb5.git Restore providing password TGTs for the ksu target The use of "stored" was originally for marking whether or not creds had been found in the source cache and copied to the target. If it was false, the obtain-a-TGT-using-a-password path would be triggered and it would populate the target ccache directly. When the intermediate cache was introduced (in commit dccc80a), the variable started marking whether or not creds had been copied to the intermediate cache, and this was then used to decide whether or not to copy creds to the target cache. The obtain-a-TGT-using-a-password path began storing its creds in the temporary cache as well, but neglected to set the flag so that the creds would be copied to the target cache later, so the target ccache would never be created and populated with the newly-obtained TGT. ticket: 8016 (new) target_version: 1.13 tags: pullup --- diff --git a/src/clients/ksu/main.c b/src/clients/ksu/main.c index 0492e38af8..e1a9352200 100644 --- a/src/clients/ksu/main.c +++ b/src/clients/ksu/main.c @@ -485,6 +485,7 @@ main (argc, argv) fprintf(stderr, "\n"); } + stored = TRUE; } #endif /* GET_TGT_VIA_PASSWD */ } @@ -506,6 +507,7 @@ main (argc, argv) prog_name,target_user,source_user,ontty()); exit(1); } + stored = TRUE; if ((retval = krb5_unparse_name(ksu_context, client, &client_name))) { com_err(prog_name, retval, _("When unparsing name"));