Don't call DH_check_pubkey, it doesn't exists in older OpenSSL.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17489 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
@@ -266,7 +266,6 @@ get_dh_param(krb5_context context,
|
||||
DomainParameters dhparam;
|
||||
DH *dh = NULL;
|
||||
krb5_error_code ret;
|
||||
int dhret;
|
||||
|
||||
memset(&dhparam, 0, sizeof(dhparam));
|
||||
|
||||
@@ -344,14 +343,6 @@ get_dh_param(krb5_context context,
|
||||
goto out;
|
||||
}
|
||||
|
||||
|
||||
if (DH_check_pubkey(dh, client_params->dh_public_key, &dhret) != 1 ||
|
||||
dhret != 0) {
|
||||
krb5_set_error_string(context, "PKINIT DH data not ok");
|
||||
ret = KRB5_KDC_ERR_DH_KEY_PARAMETERS_NOT_ACCEPTED;
|
||||
goto out;
|
||||
}
|
||||
|
||||
client_params->dh = dh;
|
||||
dh = NULL;
|
||||
ret = 0;
|
||||
|
Reference in New Issue
Block a user