diff options
| author | Greg Hudson <ghudson@mit.edu> | 2012-07-24 16:26:28 -0400 |
|---|---|---|
| committer | Greg Hudson <ghudson@mit.edu> | 2012-07-24 16:26:28 -0400 |
| commit | 4a788fb072b06ab25fb39c7720e2fe7bb79fd7f4 (patch) | |
| tree | 6518c12735e9b4eb1d96b9af7b58ab2b50aa6b21 /src | |
| parent | 18884ca01e1a64fcefafc0fdad0d360651c81f13 (diff) | |
| download | krb5-4a788fb072b06ab25fb39c7720e2fe7bb79fd7f4.tar.gz krb5-4a788fb072b06ab25fb39c7720e2fe7bb79fd7f4.tar.xz krb5-4a788fb072b06ab25fb39c7720e2fe7bb79fd7f4.zip | |
Add default_ccache_name profile variable
Like default_keytab_name and default_client_keytab_name,
default_ccache_name is subject to parameter expansion.
ticket: 7220 (new)
Diffstat (limited to 'src')
| -rw-r--r-- | src/include/k5-int.h | 1 | ||||
| -rw-r--r-- | src/lib/krb5/os/ccdefname.c | 11 | ||||
| -rw-r--r-- | src/tests/t_ccache.py | 11 |
3 files changed, 22 insertions, 1 deletions
diff --git a/src/include/k5-int.h b/src/include/k5-int.h index 6c539e8f45..86fe65055d 100644 --- a/src/include/k5-int.h +++ b/src/include/k5-int.h @@ -198,6 +198,7 @@ typedef INT64_TYPE krb5_int64; #define KRB5_CONF_DB_MODULE_DIR "db_module_dir" #define KRB5_CONF_DEFAULT "default" #define KRB5_CONF_DEFAULT_REALM "default_realm" +#define KRB5_CONF_DEFAULT_CCACHE_NAME "default_ccache_name" #define KRB5_CONF_DEFAULT_CLIENT_KEYTAB_NAME "default_client_keytab_name" #define KRB5_CONF_DEFAULT_DOMAIN "default_domain" #define KRB5_CONF_DEFAULT_TKT_ENCTYPES "default_tkt_enctypes" diff --git a/src/lib/krb5/os/ccdefname.c b/src/lib/krb5/os/ccdefname.c index 56e7af8639..cb9bb7c938 100644 --- a/src/lib/krb5/os/ccdefname.c +++ b/src/lib/krb5/os/ccdefname.c @@ -26,6 +26,7 @@ #define NEED_WINDOWS #include "k5-int.h" +#include "os-proto.h" #include <stdio.h> #if defined(_WIN32) @@ -290,7 +291,7 @@ const char * KRB5_CALLCONV krb5_cc_default_name(krb5_context context) { krb5_os_context os_ctx; - char *envstr; + char *profstr, *envstr; if (!context || context->magic != KV5M_CONTEXT) return NULL; @@ -306,6 +307,14 @@ krb5_cc_default_name(krb5_context context) return os_ctx->default_ccname; } + if (profile_get_string(context->profile, KRB5_CONF_LIBDEFAULTS, + KRB5_CONF_DEFAULT_CCACHE_NAME, NULL, NULL, + &profstr) == 0 && profstr != NULL) { + (void)k5_expand_path_tokens(context, profstr, &os_ctx->default_ccname); + profile_release_string(profstr); + return os_ctx->default_ccname; + } + /* Fall back on the default ccache name for the OS. */ get_from_os(context); return os_ctx->default_ccname; diff --git a/src/tests/t_ccache.py b/src/tests/t_ccache.py index 8dac0ecad2..e85d009dde 100644 --- a/src/tests/t_ccache.py +++ b/src/tests/t_ccache.py @@ -78,4 +78,15 @@ output = realm.run_as_client([klist, '-l'], expected_code=1) if not output.endswith('---\n') or output.count('\n') != 2: fail('kdestroy -a failed to empty cache collection.') +# Test parameter expansion in default_ccache_name +realm.stop() +conf = {'client': {'libdefaults': { + 'default_ccache_name': 'testdir/%{null}abc%{uid}'}}} +realm = K5Realm(krb5_conf=conf, create_kdb=False) +del realm.env_client['KRB5CCNAME'] +uidstr = str(os.getuid()) +out = realm.run_as_client([klist], expected_code=1) +if 'FILE:testdir/abc%s' % uidstr not in out: + fail('Wrong ccache in klist') + success('Credential cache tests') |