kadm5_decrypt_key(). This patch prevents the returned keyblock's

author Jeffrey Altman <jaltman@secure-endpoints.com>

Mon, 21 Jul 2008 20:33:53 +0000 (20:33 +0000)

committer Jeffrey Altman <jaltman@secure-endpoints.com>

Mon, 21 Jul 2008 20:33:53 +0000 (20:33 +0000)
author Jeffrey Altman <jaltman@secure-endpoints.com>
Mon, 21 Jul 2008 20:33:53 +0000 (20:33 +0000)
committer Jeffrey Altman <jaltman@secure-endpoints.com>
Mon, 21 Jul 2008 20:33:53 +0000 (20:33 +0000)
diff --git a/src/lib/kadm5/srv/svr_principal.c b/src/lib/kadm5/srv/svr_principal.c

index 4fb114f3570a0a26e60a80b5b96051fd1442cf05..1b761413c7cc80ac261ea826794ac549e8ff5273 100644 (file)
--- a/src/lib/kadm5/srv/svr_principal.c
+++ b/src/lib/kadm5/srv/svr_principal.c
@@ -2160,7 +2160,8 @@ kadm5_ret_t kadm5_decrypt_key(void *server_handle,
       * inexact match on the enctype; this behavior will go away when
       * the key storage architecture gets redesigned for 1.3.
       */
-    keyblock->enctype = ktype;
+    if (ktype != -1)
+        keyblock->enctype = ktype;
  
      if (kvnop)
          *kvnop = key_data->key_data_kvno;
author	Jeffrey Altman <jaltman@secure-endpoints.com>
	Mon, 21 Jul 2008 20:33:53 +0000 (20:33 +0000)
committer	Jeffrey Altman <jaltman@secure-endpoints.com>
	Mon, 21 Jul 2008 20:33:53 +0000 (20:33 +0000)