From a2ce53c1f5301ffcf990dbab837c328ea22739b6 Mon Sep 17 00:00:00 2001
From: Andrew Bartlett <abartlet@samba.org>
Date: Tue, 8 Feb 2011 16:53:13 +1100
Subject: s4-auth Rework auth subsystem to remove struct
 auth_serversupplied_info

This changes auth_serversupplied_info into the IDL-defined struct
auth_user_info_dc.  This then in turn contains a struct
auth_user_info, which is the only part of the structure that is
mainted into the struct session_info.

The idea here is to avoid keeping the incomplete results of the
authentication (such as session keys, lists of SID memberships etc) in
a namespace where it may be confused for the finalised results.

Andrew Barltett
---
 source4/auth/ntlmssp/ntlmssp.h        |  2 +-
 source4/auth/ntlmssp/ntlmssp_server.c | 20 ++++++++++----------
 2 files changed, 11 insertions(+), 11 deletions(-)

(limited to 'source4/auth/ntlmssp')

diff --git a/source4/auth/ntlmssp/ntlmssp.h b/source4/auth/ntlmssp/ntlmssp.h
index 0adf75f812..ff30317f55 100644
--- a/source4/auth/ntlmssp/ntlmssp.h
+++ b/source4/auth/ntlmssp/ntlmssp.h
@@ -27,7 +27,7 @@ struct gensec_ntlmssp_context {
 	struct gensec_security *gensec_security;
 	struct ntlmssp_state *ntlmssp_state;
 	struct auth_context *auth_context;
-	struct auth_serversupplied_info *server_info;
+	struct auth_user_info_dc *user_info_dc;
 };
 
 struct loadparm_context;
diff --git a/source4/auth/ntlmssp/ntlmssp_server.c b/source4/auth/ntlmssp/ntlmssp_server.c
index a5ff13eaa4..9db3b560c1 100644
--- a/source4/auth/ntlmssp/ntlmssp_server.c
+++ b/source4/auth/ntlmssp/ntlmssp_server.c
@@ -181,23 +181,23 @@ static NTSTATUS auth_ntlmssp_check_password(struct ntlmssp_state *ntlmssp_state,
 	nt_status = auth_context->check_password(auth_context,
 						 gensec_ntlmssp,
 						 user_info,
-						 &gensec_ntlmssp->server_info);
+						 &gensec_ntlmssp->user_info_dc);
 	talloc_free(user_info);
 	NT_STATUS_NOT_OK_RETURN(nt_status);
 
-	if (gensec_ntlmssp->server_info->user_session_key.length) {
+	if (gensec_ntlmssp->user_info_dc->user_session_key.length) {
 		DEBUG(10, ("Got NT session key of length %u\n",
-			   (unsigned)gensec_ntlmssp->server_info->user_session_key.length));
-		*user_session_key = gensec_ntlmssp->server_info->user_session_key;
+			   (unsigned)gensec_ntlmssp->user_info_dc->user_session_key.length));
+		*user_session_key = gensec_ntlmssp->user_info_dc->user_session_key;
 		talloc_steal(mem_ctx, user_session_key->data);
-		gensec_ntlmssp->server_info->user_session_key = data_blob_null;
+		gensec_ntlmssp->user_info_dc->user_session_key = data_blob_null;
 	}
-	if (gensec_ntlmssp->server_info->lm_session_key.length) {
+	if (gensec_ntlmssp->user_info_dc->lm_session_key.length) {
 		DEBUG(10, ("Got LM session key of length %u\n",
-			   (unsigned)gensec_ntlmssp->server_info->lm_session_key.length));
-		*lm_session_key = gensec_ntlmssp->server_info->lm_session_key;
+			   (unsigned)gensec_ntlmssp->user_info_dc->lm_session_key.length));
+		*lm_session_key = gensec_ntlmssp->user_info_dc->lm_session_key;
 		talloc_steal(mem_ctx, lm_session_key->data);
-		gensec_ntlmssp->server_info->lm_session_key = data_blob_null;
+		gensec_ntlmssp->user_info_dc->lm_session_key = data_blob_null;
 	}
 	return nt_status;
 }
@@ -223,7 +223,7 @@ NTSTATUS gensec_ntlmssp_session_info(struct gensec_security *gensec_security,
 
 	nt_status = gensec_generate_session_info(ntlmssp_state,
 						 gensec_security,
-						 gensec_ntlmssp->server_info,
+						 gensec_ntlmssp->user_info_dc,
 						 session_info);
 	NT_STATUS_NOT_OK_RETURN(nt_status);
 
-- 
cgit