hdb_entry_ex *krbtgt,
const EncryptionKey *server_check_key,
const EncryptionKey *server_sign_key,
- const EncryptionKey *krbtgt_check_key,
const EncryptionKey *krbtgt_sign_key,
EncTicketPart *tkt,
krb5_data *rspac,
ret = krb5_pac_verify(context, pac, tkt->authtime,
client_principal,
- server_check_key,
- krbtgt_check_key);
+ server_check_key, NULL);
if (ret) {
krb5_pac_free(context, pac);
return ret;
ret = check_PAC(context, config, cp, NULL,
client, server, krbtgt,
&tkey_check->key,
- ekey,
- &tkey_check->key,
- &tkey_sign->key,
+ ekey, &tkey_sign->key,
tgt, &rspac, &signedpath);
if (ret) {
const char *msg = krb5_get_error_message(context, ret);
ret = check_PAC(context, config, tp, dp,
client, server, krbtgt,
&clientkey->key,
- ekey,
- &tkey_check->key,
- &tkey_sign->key,
+ ekey, &tkey_sign->key,
&adtkt, &rspac, &ad_signedpath);
if (ret) {
const char *msg = krb5_get_error_message(context, ret);