modified smbd/msrpc credential transfer system. user session key

is *missing* from samba cvs main, therefore it is set to all zeros.
this will cause, amongst other things, administrator-changing-user-passwords,
and setting up new accounts, to fail, as the user's password can only be
decoded with the session key (in this case, the administrator's usr sess key).

it's never a perfect world, is it?
(This used to be commit 3362fcdfa492cfd1d9d4ec35ef2108192302b984)

1 files changed, 10 insertions, 0 deletions

diff --git a/source3/rpc_server/srv_pipe_hnd.c b/source3/rpc_server/srv_pipe_hnd.c
index 46beba6316..736d1435d1 100644
--- a/source3/rpc_server/srv_pipe_hnd.c
+++ b/source3/rpc_server/srv_pipe_hnd.c
@@ -136,6 +136,16 @@ pipes_struct *open_rpc_pipe_p(char *pipe_name,
 	                              vuser->n_groups, vuser->groups);
 	usr.ptr_uxs = 1;
 
+	usr.ptr_ssk = 1;
+	DEBUG(0,("user session key not available (yet).\n"));
+	DEBUG(0,("password-change operations may fail.\n"));
+
+#if USER_SESSION_KEY_DEFINED_IN_VUSER_STRUCT
+	memcpy(usr.usr_sess_key, vuser->usr_sess_key, sizeof(usr.usr_sess_key));
+#else
+	memset(usr.usr_sess_key, 0, sizeof(usr.usr_sess_key));
+#endif
+
 	/* set up nt credentials from the smb side, to feed over the pipe */
 	/* lkclXXXX todo!
 	make_creds_nt(&usr.ntc);