IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

ipa-kdb: Fix ACL evaluator

Browse Source 
Fixes: https://fedorahosted.org/freeipa/ticket/2343
This commit is contained in:
Simo Sorce
2012-02-17 18:19:01 -05:00
committed by Martin Kosek
parent dc5592af1d
commit 8ec98dfcae
1 changed files with 4 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
daemons/ipa-kdb/ipa_kdb_delegation.c
View File

@@ -95,7 +95,7 @@ static krb5_error_code ipadb_match_acl(krb5_context kcontext,
krb5_const_principal target)
{
struct ipadb_context *ipactx;
krb5_error_code kerr = ENOENT;
krb5_error_code kerr;
LDAPMessage *lentry;
LDAPDerefRes *deref_results;
LDAPDerefRes *dres;
@@ -126,6 +126,9 @@ static krb5_error_code ipadb_match_acl(krb5_context kcontext,
goto done;
}
/* the default is that we fail */
kerr = ENOENT;
while (lentry) {
/* both client and target must be found in the same ACI */
client_missing = true;