rpms / krb5

Clone
Source Code
GIT

Blame krb5-trunk-kpasswd_tcp.patch

embargo f10 f11 f12 f13 f14 f15 f16 f16-s4u f17 f18 f19 f20 f21 f22 f23 f24 f25 f26 f27 f28 f29 f30 f31 f32 f33 f34 f35 f36 f37 f38 f39 f40 f7 f8 f9 main master-f15-1.9 master-f15-nss rawhide
  1.   0a3f27d7a4fa8f0f4b2d8108e90704664772da90
  2.   krb5-trunk-kpasswd_tcp.patch
Blob History Raw
2347432 
Fall back to TCP on kdc-unresolvable/unreachable errors.  We still have
2347432 
to wait for UDP to fail, so this might not be ideal.  RT #5868.
6c3e6bd
6c3e6bd 
Index: src/lib/krb5/os/changepw.c
6c3e6bd 
===================================================================
6c3e6bd 
--- src/lib/krb5/os/changepw.c	(revision 20199)
6c3e6bd 
+++ src/lib/krb5/os/changepw.c	(working copy)
6c3e6bd 
@@ -251,11 +251,22 @@
6c3e6bd 
 				   NULL,
6c3e6bd 
 				   NULL
6c3e6bd 
 		 ))) {
6c3e6bd 
-
6c3e6bd 
-	    /*
6c3e6bd 
-	     * Here we may want to switch to TCP on some errors.
6c3e6bd 
-	     * right?
6c3e6bd 
-	     */
6c3e6bd 
+	    /* if we're not using a stream socket, and it's an error which
6c3e6bd 
+	     * might reasonably be specific to a datagram "connection", try
6c3e6bd 
+	     * again with a stream socket */
6c3e6bd 
+	    if (!useTcp) {
6c3e6bd 
+		switch (code) {
6c3e6bd 
+		case KRB5_KDC_UNREACH:
6c3e6bd 
+		case KRB5_REALM_CANT_RESOLVE:
6c3e6bd 
+		case KRB5KRB_ERR_RESPONSE_TOO_BIG:
6c3e6bd 
+		/* should we do this for more result codes than these? */
6c3e6bd 
+		    krb5int_free_addrlist (&al);
6c3e6bd 
+		    useTcp = 1;
6c3e6bd 
+		    continue;
6c3e6bd 
+		default:
6c3e6bd 
+		    break;
6c3e6bd 
+		}
6c3e6bd 
+	    }
6c3e6bd 
 	    break;
6c3e6bd 
 	}
6c3e6bd
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.