From 3b9f34f653a610f63e88ee0f174a5c47e0d8fe0d Mon Sep 17 00:00:00 2001
From: Jakub Hrozek <jhrozek@redhat.com>
Date: Tue, 26 May 2015 14:53:57 +0200
Subject: LDAP: Do not set keytab through environment variable

Otherwise each connection would clobber the environment variable with
its own.

This is a temporary workaround until SSSD's ldap_child is able to store
ccaches in a collection.

Reviewed-by: Sumit Bose <sbose@redhat.com>
---
 src/providers/ldap/sdap_async_connection.c | 10 ----------
 1 file changed, 10 deletions(-)

diff --git a/src/providers/ldap/sdap_async_connection.c b/src/providers/ldap/sdap_async_connection.c
index 15232efa6..431845d3f 100644
--- a/src/providers/ldap/sdap_async_connection.c
+++ b/src/providers/ldap/sdap_async_connection.c
@@ -1092,16 +1092,6 @@ struct tevent_req *sdap_kinit_send(TALLOC_CTX *memctx,
     state->lifetime = lifetime;
     state->krb_service_name = krb_service_name;
 
-    if (keytab) {
-        ret = setenv("KRB5_KTNAME", keytab, 1);
-        if (ret == -1) {
-            DEBUG(SSSDBG_OP_FAILURE,
-                  "Failed to set KRB5_KTNAME to %s\n", keytab);
-            talloc_free(req);
-            return NULL;
-        }
-    }
-
     if (canonicalize) {
         ret = setenv("KRB5_CANONICALIZE", "true", 1);
     } else {
-- 
cgit