[PATCH] Use canonicalised principal name
Andrew Bartlett
abartlet at samba.org
Thu Feb 12 15:42:16 MST 2015
On Tue, 2015-02-03 at 13:45 +0100, Andreas Schneider wrote:
> We have found the issue. It is in the client code and not in the KDC.
>
> See the attached patch.
Andreas,
Following on from our discussion. If you can show that the MIT libs set
canonicalisation by default (Heimdal does not), then this patch would be
OK if you also force it on (with the _set_canonicalise() call) in every
case (therefore changing things for Heimdal). That way we get the
behaviour of both libs to match, and fix this issue for you.
Andrew Bartlett
--
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the samba-technical
mailing list