[Freeipa-devel] [PATCH] handle kdb stash being a keytab
Simo Sorce
ssorce at redhat.com
Tue Nov 24 17:08:45 UTC 2009
On Tue, 2009-07-21 at 15:08 -0400, Simo Sorce wrote:
> On Mon, 2009-07-20 at 17:53 -0400, Nalin Dahyabhai wrote:
> > In krb5 1.7 and later, the stash file
> > (/var/kerberos/krb5kdc/.k5.$REALM
> > on Fedora) is created in the regular keytab format instead of the
> > older
> > less-portable one. Based from comments and code in kt_file.c,
> here's
> > a
> > change to try to recognize that case (the file starts with a magic
> > number) and read the master key from Python.
> >
> > The KDC will still read either format, so I left the bits that set
> > things up on replicas alone (advice appreciated). The patch works
> as
> > expected on my 64-bit box, both on RHEL5 (krb5 1.6.1 with a
> > traditional
> > stash file) and on Raw Hide (krb5 1.7 with a keytab).
>
> Ack
This patch had been basically forgotten and never pushed.
I have applied it and pushed to master.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-devel
mailing list