summaryrefslogtreecommitdiff
path: root/source3/include
diff options
context:
space:
mode:
authorSimo Sorce <ssorce@redhat.com>2010-05-27 20:40:22 -0400
committerSimo Sorce <ssorce@redhat.com>2010-05-27 20:40:22 -0400
commitf888c82fe08f7bf624aad53c20aaa634662b36dd (patch)
treefde0f1ec4fa63ff8e0cbd3833aea9372cddebfd7 /source3/include
parent20fb37320224e8ed97473e60c1b70369d8069cb5 (diff)
downloadsamba-f888c82fe08f7bf624aad53c20aaa634662b36dd.tar.gz
samba-f888c82fe08f7bf624aad53c20aaa634662b36dd.tar.bz2
samba-f888c82fe08f7bf624aad53c20aaa634662b36dd.zip
s3:auth Add comment to clarify usage of session keys.
Explain why we have what looks like a duplicate of session keys. It is in fact not a duplicate.
Diffstat (limited to 'source3/include')
-rw-r--r--source3/include/auth.h10
1 files changed, 10 insertions, 0 deletions
diff --git a/source3/include/auth.h b/source3/include/auth.h
index ba8b23b645..fbd73ae48d 100644
--- a/source3/include/auth.h
+++ b/source3/include/auth.h
@@ -53,6 +53,16 @@ struct auth_serversupplied_info {
NT_USER_TOKEN *ptok;
+ /* This is the final session key, as used by SMB signing, and
+ * (truncated to 16 bytes) encryption on the SAMR and LSA pipes
+ * when over ncacn_np.
+ * It is calculated by NTLMSSP from the session key in the info3,
+ * and is set from the Kerberos session key using
+ * krb5_auth_con_getremotesubkey().
+ *
+ * Bootom line, it is not the same as the session keys in info3.
+ */
+
DATA_BLOB user_session_key;
DATA_BLOB lm_session_key;