1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00

r6705: let the gensec module decide if messages can be signed and sealed in a different

order than a strict request - reply sequence

Note: we should also fix the client code...

metze
(This used to be commit 0a61d1f651)
This commit is contained in:
Stefan Metzmacher 2005-05-10 11:04:04 +00:00 committed by Gerald (Jerry) Carter
parent 0b3e651e05
commit fa24196d0d
3 changed files with 10 additions and 0 deletions

View File

@ -39,6 +39,7 @@ struct gensec_target {
#define GENSEC_FEATURE_SIGN 0x00000002
#define GENSEC_FEATURE_SEAL 0x00000004
#define GENSEC_FEATURE_DCE_STYLE 0x00000008
#define GENSEC_FEATURE_ASYNC_REPLIES 0x00000010
/* GENSEC mode */
enum gensec_role

View File

@ -183,6 +183,11 @@ static NTSTATUS gensec_ntlmssp_update(struct gensec_security *gensec_security,
gensec_ntlmssp_state->have_features |= GENSEC_FEATURE_SESSION_KEY;
}
/* only NTLMv2 can handle async replies */
if (gensec_ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_NTLM2) {
gensec_ntlmssp_state->have_features |= GENSEC_FEATURE_ASYNC_REPLIES;
}
return status;
}

View File

@ -742,6 +742,10 @@ static NTSTATUS dcesrv_request(struct dcesrv_call_state *call)
call->state_flags = call->conn->dce_ctx->state_flags;
call->time = timeval_current();
if (!gensec_have_feature(call->conn->auth_state.gensec_security, GENSEC_FEATURE_ASYNC_REPLIES)) {
call->state_flags &= ~DCESRV_CALL_STATE_FLAG_MAY_ASYNC;
}
context = dcesrv_find_context(call->conn, call->pkt.u.request.context_id);
if (context == NULL) {
return dcesrv_fault(call, DCERPC_FAULT_UNK_IF);