libcli/smb2: the session key for SMB2 signing is truncated to 16 bytes

To make that work (as a client) with aes128 and aes256 krb5 keys we need to use gsskrb5_get_subkey(). metze (This used to be commit 0c6d988f2083067e1ac7b07a492f88cefd3ba906)
author: Stefan Metzmacher <metze@samba.org> 2008-07-28 15:49:46 +0200
committer: Stefan Metzmacher <metze@samba.org> 2008-07-28 16:15:23 +0200
commit: 2d2911c7885dc832700185e62160bc18f8abfa04 (patch)
tree: 5e731d3ecd33b9e28dedcdeb6cd5526d7c672719 /source4/libcli/smb2/session.c
parent: 0251096a89d9740f6bf2dfcf41594957424f887d (diff)
download: samba-2d2911c7885dc832700185e62160bc18f8abfa04.tar.gz
samba-2d2911c7885dc832700185e62160bc18f8abfa04.tar.bz2
samba-2d2911c7885dc832700185e62160bc18f8abfa04.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/source4/libcli/smb2/session.c b/source4/libcli/smb2/session.c
index 6c573bf6d5..31b3e942e9 100644
--- a/source4/libcli/smb2/session.c
+++ b/source4/libcli/smb2/session.c
@@ -188,8 +188,8 @@ static void session_request_handler(struct smb2_request *req)
 	}
 
 	if (session->transport->signing_required) {
-		if (session->session_key.length != 16) {
-			DEBUG(2,("Wrong session key length %u for SMB2 signing\n",
+		if (session->session_key.length == 0) {
+			DEBUG(0,("Wrong session key length %u for SMB2 signing\n",
 				 (unsigned)session->session_key.length));
 			composite_error(c, NT_STATUS_ACCESS_DENIED);
 			return;
author	Stefan Metzmacher <metze@samba.org>	2008-07-28 15:49:46 +0200
committer	Stefan Metzmacher <metze@samba.org>	2008-07-28 16:15:23 +0200
commit	2d2911c7885dc832700185e62160bc18f8abfa04 (patch)
tree	5e731d3ecd33b9e28dedcdeb6cd5526d7c672719 /source4/libcli/smb2/session.c
parent	0251096a89d9740f6bf2dfcf41594957424f887d (diff)
download	samba-2d2911c7885dc832700185e62160bc18f8abfa04.tar.gz samba-2d2911c7885dc832700185e62160bc18f8abfa04.tar.bz2 samba-2d2911c7885dc832700185e62160bc18f8abfa04.zip