|
|
Author: metze
Date: 2007-02-16 15:56:24 +0000 (Fri, 16 Feb 2007)
New Revision: 21390
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=21390
Log:
move fetching the key version number into the function
which contrusts the keys...
later we need to get the key version number from the
"replPropertyMetaData" attribute entry to the (I assume)
the "unicodePwd" attribute.
msDs-KeyVersionNumber is a constructed attribute,
and is "1" when no "supplementalCredentials" is present.
we need to make some tests with a password change function
which don't give a cleartext to the server...
metze
Modified:
branches/SAMBA_4_0/source/kdc/hdb-ldb.c
Changeset:
Modified: branches/SAMBA_4_0/source/kdc/hdb-ldb.c
===================================================================
--- branches/SAMBA_4_0/source/kdc/hdb-ldb.c 2007-02-16 15:42:22 UTC (rev
21389)
+++ branches/SAMBA_4_0/source/kdc/hdb-ldb.c 2007-02-16 15:56:24 UTC (rev
21390)
@@ -214,6 +214,8 @@
entry_ex->entry.keys.val = NULL;
entry_ex->entry.keys.len = 0;
+ entry_ex->entry.kvno = ldb_msg_find_attr_as_int(msg,
"msDS-KeyVersionNumber", 0);
+
/* Get krb5Key from the db */
krb5keys = ldb_msg_find_element(msg, "krb5Key");
@@ -399,8 +401,6 @@
krb5_princ_set_realm(context, entry_ex->entry.principal,
&strdup_realm);
}
- entry_ex->entry.kvno = ldb_msg_find_attr_as_int(msg,
"msDS-KeyVersionNumber", 0);
-
entry_ex->entry.flags = uf2HDBFlags(context, userAccountControl,
ent_type);
if (ent_type == HDB_LDB_ENT_TYPE_KRBTGT) {
|
|