DISALLOW_ALL_TIX and DISALLOW_SVR when looking up keys.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14727
dc483132-0cff-0310-8789-
dd5450dbe970
+2002-08-15 Tom Yu <tlyu@mit.edu>
+
+ * keytab.c (krb5_ktkdb_get_entry): For consistency, check for
+ DISALLOW_ALL_TIX and DISALLOW_SVR when looking up keys.
+
2002-08-09 Sam Hartman <hartmans@mit.edu>
* kdb_xdr.c (krb5_dbe_search_enctype): Initialize ret to 0; thanks
return KRB5_KT_NOTFOUND;
}
+ if (db_entry.attributes & KRB5_KDB_DISALLOW_SVR
+ || db_entry.attributes & KRB5_KDB_DISALLOW_ALL_TIX) {
+ kerror = KRB5_KT_NOTFOUND;
+ goto error;
+ }
+
/* match key */
kerror = krb5_db_get_mkey(context, &master_key);
if (kerror)