diff options
| author | Russ Allbery <rra@stanford.edu> | 2010-07-29 19:25:17 -0700 |
|---|---|---|
| committer | Russ Allbery <rra@stanford.edu> | 2010-07-29 19:25:17 -0700 |
| commit | dacc1c6b8e8d4bdd1daffb84efd58f16e45e3cba (patch) | |
| tree | c7f5973a9926ca49a7eda32ddbe6ccc564c5b1e7 /client/keytab.c | |
| parent | 81b7ba2a6503b4bc7199d78adf97d956b1e932a5 (diff) | |
Abort rekeying if we fail on the first principal
If we get a failure to rekey a principal before we've succeeded with
any principal, abort rather than continuing.
Diffstat (limited to 'client/keytab.c')
| -rw-r--r-- | client/keytab.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/client/keytab.c b/client/keytab.c index e00c2dd..16a94f3 100644 --- a/client/keytab.c +++ b/client/keytab.c @@ -227,6 +227,8 @@ rekey_keytab(struct remctl *r, krb5_context ctx, const char *type, status = download_keytab(r, type, current->princ, &data, &length); if (status != 0) { warn("error rekeying for principal %s", current->princ); + if (!rekeyed) + die("aborting, keytab unchanged"); error = true; } else if (data != NULL) { if (access(tempfile, F_OK) == 0) |