git.ipfire.org Git - thirdparty/krb5.git/commit

author	Ben Kaduk <kaduk@mit.edu>
	Tue, 10 Jul 2012 14:14:52 +0000 (10:14 -0400)
committer	Ben Kaduk <kaduk@mit.edu>
	Mon, 4 Nov 2013 18:51:14 +0000 (13:51 -0500)
commit	29dee7d2cece615bec4616fa9b727e77210051db
tree	ff7e66cc2638a317144e75d99ec7006dd50d7df1	tree
parent	0415740bb569bad53b18f4483837e7e037f88544	commit \| diff

Avoid deprecated krb5_get_in_tkt_with_keytab

The kprop code has been pretty unloved, and uses some routines that
are marked as deprecated (which show up as warnings in the build log).
Use the documented replacement for krb5_get_in_tkt_with_keytab,
krb5_get_init_creds_keytab, instead. As a bonus, there is no longer
a side effect of a credentials cache that needs to be destroyed.

The also-deprecated function krb5_get_in_tkt_with_skey was backending
to it when no keyblock was passed in; we can unroll the call to
krb5_get_init_creds_keytab ourselves as the documented workaround.
While here, improve style compliance with regards to cleanup.

The setkey test just wants to know whether it can use the key it
just put into a keytab to get credentials; as such the recommended
krb5_get_init_creds_keytab is quite sufficient.
While here, use that interface to request the particular enctype
as well, reducing the scope of an XXX comment.

ticket: 6366

src/lib/kadm5/unit-test/setkey-test.c		diff \| blob \| blame \| history
src/lib/krb5/krb/in_tkt_sky.c		diff \| blob \| blame \| history
src/slave/kprop.c		diff \| blob \| blame \| history