Allow null server key to krb5_pac_verify
authorGreg Hudson <ghudson@mit.edu>
Wed, 7 Dec 2011 19:38:32 +0000 (19:38 +0000)
committerGreg Hudson <ghudson@mit.edu>
Wed, 7 Dec 2011 19:38:32 +0000 (19:38 +0000)
commit1e34efd28bd6c7eae84b19f71c87b2ea58939c1a
tree9a73adadebbb95841d3c72e76f4934ce1b0f6a4a
parentad1c58d1e5a2fc7382a9c641468c46d3c9d12996
Allow null server key to krb5_pac_verify

When the KDC verifies a PAC, it doesn't really need to check the
server signature, since it can't trust that anyway.  Allow the caller
to pass only a TGT key.

ticket: 7048

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25532 dc483132-0cff-0310-8789-dd5450dbe970
src/include/krb5/krb5.hin
src/lib/krb5/krb/pac.c