krb5_get_init_creds*() should not krb5_cc_close() the FAST ccache!

2011-11-22 17:04:35 -06:00
parent ad60b236a0
commit 81293d9334
1 changed files with 3 additions and 3 deletions
--- a/lib/krb5/init_creds_pw.c
+++ b/lib/krb5/init_creds_pw.c
@@ -154,10 +154,10 @@ free_init_creds_ctx(krb5_context context, krb5_init_creds_context ctx)
 	free(ctx->password);
    }
    /*
-     * FAST state 
+     * FAST state (we don't close the armor_ccache because we might have
+     * to destroy it, and how would we know? also, the caller should
+     * take care of cleaning up the armor_ccache).
     */
-    if (ctx->fast_state.armor_ccache)
-	krb5_cc_close(context, ctx->fast_state.armor_ccache);
    if (ctx->fast_state.armor_crypto)
 	krb5_crypto_destroy(context, ctx->fast_state.armor_crypto);
    krb5_free_keyblock_contents(context, &ctx->fast_state.armor_key);