From c79dff2e9b7c0c07ae5845ddc3b2c06f7996dfd1 Mon Sep 17 00:00:00 2001
From: Andrew Bartlett <abartlet@samba.org>
Date: Thu, 28 Aug 2008 16:28:47 +1000
Subject: Heimdal provides Kerberos PAC parsing routines.  Use them.

This uses Heimdal's PAC parsing code in the:
 - LOCAL-PAC test
 - gensec_gssapi server
 - KDC (where is was already used, the support code refactored from here)

In addition, the service and KDC checksums are recorded in the struct
auth_serversupplied_info, allowing them to be extracted for validation
across NETLOGON.

Andrew Bartlett
(This used to be commit 418b440a7b8cdb53035045f3981d47b078be6c1e)
---
 source4/auth/session.c | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'source4/auth/session.c')

diff --git a/source4/auth/session.c b/source4/auth/session.c
index b254ee5da6..d75f1793e1 100644
--- a/source4/auth/session.c
+++ b/source4/auth/session.c
@@ -333,6 +333,9 @@ _PUBLIC_ NTSTATUS make_server_info_netlogon_validation(TALLOC_CTX *mem_ctx,
 		NT_STATUS_HAVE_NO_MEMORY(server_info->lm_session_key.data);
 	}
 
+	ZERO_STRUCT(server_info->pac_srv_sig);
+	ZERO_STRUCT(server_info->pac_kdc_sig);
+
 	*_server_info = server_info;
 	return NT_STATUS_OK;
 }
-- 
cgit