kadm5: Do not apply new service key delay in get

Using HDB_F_DELAY_NEW_KEYS in kadm5_s_get_principal() breaks OSKT's expectations.
2020-09-19 21:48:49 -05:00
parent 95de81c9a7
commit 7845bda1e0
1 changed files with 1 additions and 2 deletions
--- a/lib/kadm5/get_s.c
+++ b/lib/kadm5/get_s.c
@@ -123,8 +123,7 @@ kadm5_s_get_principal(void *server_handle,
    kadm5_server_context *context = server_handle;
    kadm5_ret_t ret;
    hdb_entry_ex ent;
-    unsigned int flags = HDB_F_GET_ANY | HDB_F_ADMIN_DATA |
+    unsigned int flags = HDB_F_GET_ANY | HDB_F_ADMIN_DATA;
        HDB_F_DELAY_NEW_KEYS;
    if ((mask & KADM5_KEY_DATA) || (mask & KADM5_KVNO))
        flags |= HDB_F_ALL_KVNOS | HDB_F_DECRYPT;