diff options
| author | Jeremy Allison <jra@samba.org> | 2003-07-25 23:15:30 +0000 |
|---|---|---|
| committer | Jeremy Allison <jra@samba.org> | 2003-07-25 23:15:30 +0000 |
| commit | 4632786cfb193dd80ce04206912297186e871814 (patch) | |
| tree | b38cc3953923988443fd2ea76664677c24033366 /source3/libads/sasl.c | |
| parent | 37d77e3d6cf85eae9f45d18b756101fc1f50460b (diff) | |
| download | samba-4632786cfb193dd80ce04206912297186e871814.tar.gz samba-4632786cfb193dd80ce04206912297186e871814.tar.bz2 samba-4632786cfb193dd80ce04206912297186e871814.zip | |
W00t! Client smb signing is now working correctly with krb5 and w2k server.
Server code *should* also work (I'll check shortly). May be the odd memory
leak. Problem was we (a) weren't setting signing on in the client krb5 sessionsetup
code (b) we need to ask for a subkey... (c). The client and server need to
ask for local and remote subkeys respectively.
Thanks to Paul Nelson @ Thursby for some sage advice on this :-).
Jeremy.
(This used to be commit 3f9e3b60709df5ab755045a093e642510d4cde00)
Diffstat (limited to 'source3/libads/sasl.c')
| -rw-r--r-- | source3/libads/sasl.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/source3/libads/sasl.c b/source3/libads/sasl.c index 598208b17f..910ff3f4dc 100644 --- a/source3/libads/sasl.c +++ b/source3/libads/sasl.c @@ -124,9 +124,10 @@ static ADS_STATUS ads_sasl_spnego_krb5_bind(ADS_STRUCT *ads, const char *princip { DATA_BLOB blob; struct berval cred, *scred; + unsigned char sk[16]; int rc; - blob = spnego_gen_negTokenTarg(principal, ads->auth.time_offset); + blob = spnego_gen_negTokenTarg(principal, ads->auth.time_offset, sk); if (!blob.data) { return ADS_ERROR(LDAP_OPERATIONS_ERROR); |