If the auth context does not have the DO_TIME flag set and no replay

author Sam Hartman <hartmans@mit.edu>

Tue, 1 Apr 2003 20:27:00 +0000 (20:27 +0000)

committer Sam Hartman <hartmans@mit.edu>

Tue, 1 Apr 2003 20:27:00 +0000 (20:27 +0000)
author Sam Hartman <hartmans@mit.edu>
Tue, 1 Apr 2003 20:27:00 +0000 (20:27 +0000)
committer Sam Hartman <hartmans@mit.edu>
Tue, 1 Apr 2003 20:27:00 +0000 (20:27 +0000)
diff --git a/src/lib/krb5/krb/ChangeLog b/src/lib/krb5/krb/ChangeLog

index c936ca4fd6504acdec007584f52a704e6282c0fe..f72e6caebb51ce60f5d1df954149a699486472b2 100644 (file)
--- a/src/lib/krb5/krb/ChangeLog
+++ b/src/lib/krb5/krb/ChangeLog
@@ -1,3 +1,8 @@
+2003-04-01  Sam Hartman  <hartmans@mit.edu>
+
+       * rd_req.c (krb5_rd_req): If AUTH_CONTEXT_DO_TIME is cleared,
+       don't set up a replay cache. 
+
  2003-03-08  Ezra Peisach  <epeisach@mit.edu>
  
         * t_kerb.c: Only include krb.h if krb4 support compiled in,
diff --git a/src/lib/krb5/krb/rd_req.c b/src/lib/krb5/krb/rd_req.c

index f844e3cd64a037a8ab215f69b83f72c611dfb891..9a2f4589d7f12b779f04f5fb2313fef06fc8fc2b 100644 (file)
--- a/src/lib/krb5/krb/rd_req.c
+++ b/src/lib/krb5/krb/rd_req.c
@@ -83,7 +83,9 @@ krb5_rd_req(krb5_context context, krb5_auth_context *auth_context, const krb5_da
         server = request->ticket->server;
      }
      /* Get an rcache if necessary. */
-    if (((*auth_context)->rcache == NULL) && server) {
+    if (((*auth_context)->rcache == NULL)
+       && ((*auth_context)->auth_context_flags & KRB5_AUTH_CONTEXT_DO_TIME)
+&& server) {
         if ((retval = krb5_get_server_rcache(context,
       krb5_princ_component(context,server,0), &(*auth_context)->rcache)))
             goto cleanup_auth_context;
author	Sam Hartman <hartmans@mit.edu>
	Tue, 1 Apr 2003 20:27:00 +0000 (20:27 +0000)
committer	Sam Hartman <hartmans@mit.edu>
	Tue, 1 Apr 2003 20:27:00 +0000 (20:27 +0000)
src/lib/krb5/krb/ChangeLog		patch \| blob \| history
src/lib/krb5/krb/rd_req.c		patch \| blob \| history