Correction to AD handling of long service keytab IDs

The account name for a service keytab cannot exceed 20 characters.
The routine that was generating a unique id incorrectly attempted to
perform an LDAP query.  This change fixes that problem.

diff --git a/perl/lib/Wallet/Kadmin/AD.pm b/perl/lib/Wallet/Kadmin/AD.pm
index 83912dd458643f85b84e53654ecfc19f1da18f14..2d93b32cb13c0efe59c749838b146b58ffd4cff2 100644 (file)
--- a/perl/lib/Wallet/Kadmin/AD.pm
+++ b/perl/lib/Wallet/Kadmin/AD.pm
@@ -280,8 +280,8 @@ sub get_service_id {
             my $this_prefix = substr($this_cn, 0, 20-$suffix_size);
             my $this_format = "%0${suffix_size}i";
             while ($cnt<$loop_limit) {
-                my $this_cn = $this_prefix . sprintf($this_format, $cnt);
-                $this_dn = ldap_get_dn($this_base, "cn=$this_cn");
+                $this_cn = $this_prefix . sprintf($this_format, $cnt);
+                $this_dn = $self->ldap_get_dn($this_base, "cn=$this_cn");
                 if (!$this_dn) {
                     $this_id = $this_cn;
                     last;