diff options
author | Simo Sorce <ssorce@redhat.com> | 2010-05-27 20:40:22 -0400 |
---|---|---|
committer | Simo Sorce <ssorce@redhat.com> | 2010-05-27 20:40:22 -0400 |
commit | f888c82fe08f7bf624aad53c20aaa634662b36dd (patch) | |
tree | fde0f1ec4fa63ff8e0cbd3833aea9372cddebfd7 | |
parent | 20fb37320224e8ed97473e60c1b70369d8069cb5 (diff) | |
download | samba-f888c82fe08f7bf624aad53c20aaa634662b36dd.tar.gz samba-f888c82fe08f7bf624aad53c20aaa634662b36dd.tar.bz2 samba-f888c82fe08f7bf624aad53c20aaa634662b36dd.zip |
s3:auth Add comment to clarify usage of session keys.
Explain why we have what looks like a duplicate of session keys.
It is in fact not a duplicate.
-rw-r--r-- | source3/include/auth.h | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/source3/include/auth.h b/source3/include/auth.h index ba8b23b645..fbd73ae48d 100644 --- a/source3/include/auth.h +++ b/source3/include/auth.h @@ -53,6 +53,16 @@ struct auth_serversupplied_info { NT_USER_TOKEN *ptok; + /* This is the final session key, as used by SMB signing, and + * (truncated to 16 bytes) encryption on the SAMR and LSA pipes + * when over ncacn_np. + * It is calculated by NTLMSSP from the session key in the info3, + * and is set from the Kerberos session key using + * krb5_auth_con_getremotesubkey(). + * + * Bootom line, it is not the same as the session keys in info3. + */ + DATA_BLOB user_session_key; DATA_BLOB lm_session_key; |