heimdal Add support for extracting a particular KVNO from the database

This should allow master key rollover. (but the real reason is to allow multiple krbtgt accounts, as used by Active Directory to implement RODC support) Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-02 10:29:24 +10:00
parent e189d712ce
commit f469fc6d49
10 changed files with 112 additions and 36 deletions
--- a/kdc/digest-service.c
+++ b/kdc/digest-service.c
@@ -111,7 +111,7 @@ ntlm_service(void *ctx, const heim_idata *req,
 	krb5_principal_set_type(context, client, KRB5_NT_NTLM);

 	ret = _kdc_db_fetch(context, config, client,
-			    HDB_F_GET_CLIENT, NULL, &user);
+			    HDB_F_GET_CLIENT, NULL, NULL, &user);
 	krb5_free_principal(context, client);
 	if (ret)
 	    goto failed;