oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

bx509: Do not clobber library error info

Browse Source
This commit is contained in:
Nicolas Williams
2020-01-10 11:34:33 -06:00
parent 62c0261cff
commit e7ad9da3cc
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
kdc/bx509d.c
View File

@@ -499,7 +499,7 @@ bad_401(struct bx509_request_desc *r, char *reason)
static krb5_error_code static krb5_error_code
bad_403(struct bx509_request_desc *r, krb5_error_code ret, char *reason) bad_403(struct bx509_request_desc *r, krb5_error_code ret, char *reason)
{ {
return bad_req(r, EACCES, MHD_HTTP_FORBIDDEN, "%s", reason); return bad_req(r, ret, MHD_HTTP_FORBIDDEN, "%s", reason);
} }
static krb5_error_code static krb5_error_code
@@ -1215,9 +1215,9 @@ bnegotiate_do_CA(struct bx509_request_desc *r)
hx509_request_free(&req); hx509_request_free(&req);
p = NULL; p = NULL;
if (ret == KRB5KDC_ERR_POLICY) { if (ret == KRB5KDC_ERR_POLICY || ret == EACCES) {
hx509_private_key_free(&key); hx509_private_key_free(&key);
return bad_500(r, ret, return bad_403(r, ret,
"Certificate request denied for policy reasons"); "Certificate request denied for policy reasons");
} }
if (ret == ENOMEM) { if (ret == ENOMEM) {