From 680dcc934182544aa49a4a426f2263c1aaedd4aa Mon Sep 17 00:00:00 2001
From: Luke Leighton <lkcl@samba.org>
Date: Sun, 21 Nov 1999 17:27:20 +0000
Subject: hmmm... have to add client-side support in domain_client_validate()
 to _use_ user session key. (This used to be commit
 be6a6b13939798a9c7242b38864f0ce842391a74)

---
 source3/smbd/password.c |  5 +++--
 source3/smbd/reply.c    | 10 ++++++----
 2 files changed, 9 insertions(+), 6 deletions(-)

(limited to 'source3/smbd')

diff --git a/source3/smbd/password.c b/source3/smbd/password.c
index 690e2e5f5c..3d7a35fac8 100644
--- a/source3/smbd/password.c
+++ b/source3/smbd/password.c
@@ -1097,8 +1097,9 @@ use this machine as the password server.\n"));
 
 BOOL domain_client_validate( char *user, char *domain, char *server_list,
 				char *acct_name, uint16 acct_type,
-                             char *smb_apasswd, int smb_apasslen, 
-                             char *smb_ntpasswd, int smb_ntpasslen)
+				char *smb_apasswd, int smb_apasslen, 
+				char *smb_ntpasswd, int smb_ntpasslen,
+				uchar user_sess_key[16])
 {
 	uint16 nt_pipe_fnum;
 	unsigned char local_challenge[8];
diff --git a/source3/smbd/reply.c b/source3/smbd/reply.c
index 79b24a986c..da72c9f3b5 100644
--- a/source3/smbd/reply.c
+++ b/source3/smbd/reply.c
@@ -499,8 +499,9 @@ static BOOL check_server_security(char *orig_user, char *domain,
 ****************************************************************************/
 
 static BOOL check_domain_security(char *orig_user, char *domain, 
-                                  char *smb_apasswd, int smb_apasslen,
-                                  char *smb_ntpasswd, int smb_ntpasslen)
+				char *smb_apasswd, int smb_apasslen,
+				char *smb_ntpasswd, int smb_ntpasslen,
+				uchar user_sess_key[16])
 {
 	fstring acct_name;
 	uint16 acct_type = 0;
@@ -557,7 +558,8 @@ static BOOL check_domain_security(char *orig_user, char *domain,
 	return domain_client_validate(orig_user, domain, server_list,
 	                        acct_name, acct_type,
 	                        smb_apasswd, smb_apasslen,
-	                        smb_ntpasswd, smb_ntpasslen);
+	                        smb_ntpasswd, smb_ntpasslen,
+	                        user_sess_key);
 }
 
 /****************************************************************************
@@ -768,7 +770,7 @@ user %s attempted down-level SMB connection\n", user));
                              smb_ntpasswd, smb_ntpasslen) &&
       !check_domain_security(orig_user, domain,
                              smb_apasswd, smb_apasslen,
-                             smb_ntpasswd, smb_ntpasslen) &&
+                             smb_ntpasswd, smb_ntpasslen, user_sess_key) &&
       !check_hosts_equiv(user)
      )
   {
-- 
cgit