Skip Menu |
 

Subject: no kdb5_util stash equivalent with LDAP database
This is Debian bug http://bugs.debian.org/484808

There appears to be no equivalent to the kdb5_util stash command for an
LDAP-only database. kdb5_util stash doesn't work without access to a
traditional KDC database, and kdb5_ldap_util stashsrvpw does something
different. This means that if one doesn't create a stash file during
the LDAP database creation with the -sf option, there isn't a good way
to create one later.
From: ghudson@mit.edu
Subject: SVN Commit

kdb5_stash() contains its own kdb5_db_open() call (because it doesn't
use util_context for some reason), which didn't work with the LDAP
back end because LDAP doesn't recognize KRB5_KDB_SRV_TYPE_OTHER. As a
minimal fix, change that to KRB5_KDB_SRV_TYPE_ADMIN to be consistent
with open_db_and_mkey()--see also r18736.


https://github.com/krb5/krb5/commit/458cd45984e33ee19ce045d13c2a250ec55c87d7
Commit By: ghudson
Revision: 24141
Changed Files:
U trunk/src/kadmin/dbutil/kdb5_stash.c
From: tlyu@mit.edu
Subject: SVN Commit

pull up r24141 from trunk

------------------------------------------------------------------------
r24141 | ghudson | 2010-06-21 15:56:29 -0400 (Mon, 21 Jun 2010) | 10 lines

ticket: 6345
target_version: 1.8.3
tags: pullup

kdb5_stash() contains its own kdb5_db_open() call (because it doesn't
use util_context for some reason), which didn't work with the LDAP
back end because LDAP doesn't recognize KRB5_KDB_SRV_TYPE_OTHER. As a
minimal fix, change that to KRB5_KDB_SRV_TYPE_ADMIN to be consistent
with open_db_and_mkey()--see also r18736.

https://github.com/krb5/krb5/commit/eff72ca9cdf2a334c956e05b57b510363830e79a
Commit By: tlyu
Revision: 24199
Changed Files:
U branches/krb5-1-8/src/kadmin/dbutil/kdb5_stash.c