krb5: More correct approach to public dir expansionccname

Commit 29752834fbf3a19e4e117668abfce4e4c7c48ee4 (Add expandable sequences to krb5_ccachedir) introduce a new behavior that tried to take in account the fact that parent directories may need to be created as accessible to anyone by setting them to 01777 permissions. However the test that determines whether the path shuld be public or not is flawed and bleeds into pure file templates with undeiserable consequences. Theis patch corrects thi behavior by clearly returning a specific path if it need to be made public and preserves any subdir in the template with user private ownership. Resolves: https://fedorahosted.org/sssd/ticket/2071
author: Simo Sorce <simo@redhat.com> 2013-08-31 22:44:06 -0400
committer: Simo Sorce <simo@redhat.com> 2013-09-19 23:01:22 -0400
commit: f43d0bbb4bd51271b3c1b1c56c4eb680d6e00438 (patch)
tree: e8d571ea65a1284e4b4bcd50378f5be66922fa19 /src/providers/krb5/krb5_auth.h
parent: 85822e46c1d26204b022a8c6cdbbb0b478235754 (diff)
download: sssd-ccname.tar.gz
sssd-ccname.tar.xz
sssd-ccname.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/src/providers/krb5/krb5_auth.h b/src/providers/krb5/krb5_auth.h
index 022dc9b7..b2ad0946 100644
--- a/src/providers/krb5/krb5_auth.h
+++ b/src/providers/krb5/krb5_auth.h
@@ -41,8 +41,8 @@ struct krb5child_req {
     struct pam_data *pd;
     struct krb5_ctx *krb5_ctx;
 
-    const char *ccname;
-    const char *old_ccname;
+    char *ccname;
+    char *old_ccname;
     const char *homedir;
     char *upn;
     uid_t uid;
author	Simo Sorce <simo@redhat.com>	2013-08-31 22:44:06 -0400
committer	Simo Sorce <simo@redhat.com>	2013-09-19 23:01:22 -0400
commit	f43d0bbb4bd51271b3c1b1c56c4eb680d6e00438 (patch)
tree	e8d571ea65a1284e4b4bcd50378f5be66922fa19 /src/providers/krb5/krb5_auth.h
parent	85822e46c1d26204b022a8c6cdbbb0b478235754 (diff)
download	sssd-ccname.tar.gz sssd-ccname.tar.xz sssd-ccname.zip