From fb298a023b7a0245ec39c6cf259386f1b99823fd Mon Sep 17 00:00:00 2001 From: Nicolas Williams Date: Fri, 8 Oct 2021 02:00:53 -0500 Subject: [PATCH] kadm5: Teach perform_tl_data() about aliases Sort of. It already knew. We have a mess where new things get sent to the server as KRB5_TL_EXTENSION, but old things get sent to the client as whatever appropriate KRB5_TL we have, and... we call perform_tl_data() on all TL, but we don't remove unmodified TL on the client side, and... Anyways. This commit is a band-aid, but it works. --- lib/kadm5/ent_setup.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/lib/kadm5/ent_setup.c b/lib/kadm5/ent_setup.c index cd9ddfb41..5e1d168a5 100644 --- a/lib/kadm5/ent_setup.c +++ b/lib/kadm5/ent_setup.c @@ -155,6 +155,8 @@ perform_tl_data(krb5_context context, ent->entry.etypes, NULL); if (ret) return KADM5_BAD_TL_TYPE; + } else if (tl_data->tl_data_type == KRB5_TL_ALIASES) { + return 0; } else { return KADM5_BAD_TL_TYPE; }