]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 090f561) | patch
Allow principals to refer to nonexistent policies
authorGreg Hudson <ghudson@mit.edu>
Tue, 8 Jan 2013 20:20:45 +0000 (15:20 -0500)
committerGreg Hudson <ghudson@mit.edu>
Wed, 9 Jan 2013 20:35:43 +0000 (15:35 -0500)
commit0780e46fc13dbafa177525164997cd204cc50b51
treeeacb2400a78bfab43bbc95cb8ab3055498da881btree
parent090f561c631db7e4970b71cbe1426d636c39c77acommit | diff
Allow principals to refer to nonexistent policies

Stop using and maintaining the policy_refcnt field, and do not try to
prevent deletion of a policy which is still referenced by principals.
Instead, allow principals to refer to policy names which do not exist
as policy objects; treat those principals as having no associated
policy.

In the kadmin client, warn if addprinc or modprinc tries to reference
a policy which doesn't exist, since the server will no longer error
out in this case.

ticket: 7385
13 files changed:
src/include/kdb.h diff | blob | blame | history
src/kadmin/cli/kadmin.c diff | blob | blame | history
src/kadmin/dbutil/dump.c diff | blob | blame | history
src/lib/kadm5/admin.h diff | blob | blame | history
src/lib/kadm5/srv/svr_policy.c diff | blob | blame | history
src/lib/kadm5/srv/svr_principal.c diff | blob | blame | history
src/lib/kadm5/unit-test/api.current/crte-principal.exp diff | blob | blame | history
src/lib/kadm5/unit-test/api.current/dlte-policy.exp diff | blob | blame | history
src/lib/kadm5/unit-test/api.current/dlte-principal.exp diff | blob | blame | history
src/lib/kadm5/unit-test/api.current/mod-principal.exp diff | blob | blame | history
src/plugins/kdb/ldap/libkdb_ldap/ldap_pwd_policy.c diff | blob | blame | history
src/tests/dejagnu/krb-standalone/kadmin.exp diff | blob | blame | history
src/tests/kdbtest.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git