mirror of
https://github.com/samba-team/samba.git
synced 2025-01-03 01:18:10 +03:00
s4:torture/rpc: without weak crypto we should require AES
We should check that we can actually negotiated the strong AES
crypto instead of just checking that NETLOGON_NEG_ARCFOUR is not
there...
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15425
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
(cherry picked from commit 3dcbc8eea5)
This commit is contained in:
Stefan Metzmacher
Jule Anger
parent
e463774b7c
commit
f467f83fbd
@ -169,8 +169,8 @@ static bool test_ServerAuth3Crypto(struct dcerpc_pipe *p,
|
||||
|
||||
if (!weak_crypto_allowed) {
|
||||
torture_assert(tctx,
|
||||
(negotiate_flags & NETLOGON_NEG_ARCFOUR) == 0,
|
||||
"Server should not announce RC4 support");
|
||||
(negotiate_flags & NETLOGON_NEG_SUPPORTS_AES),
|
||||
"Server negotiate AES support");
|
||||
}
|
||||
|
||||
/* Prove that requesting a challenge again won't break it */
|
||||
|
||||
Loading…
Reference in New Issue
Block a user