git.samba.org / samba.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
CVE-2016-2115: s3:libsmb: add signing constant SMB_SIGNING_IPC_DEFAULT
[samba.git] / source3 / libsmb / clientgen.c
diff --git a/source3/libsmb/clientgen.c b/source3/libsmb/clientgen.c
index 6f28dfa40163f2b9c5911c2b75e64f9cd3e4e8fe..cfb3b162358ef3da6d82ebf7c0eeb1f3f1b71bb7 100644 (file)
--- a/source3/libsmb/clientgen.c
+++ b/source3/libsmb/clientgen.c
@@ -170,6 +170,15 @@ struct cli_state *cli_state_create(TALLOC_CTX *mem_ctx,
                use_level_II_oplocks = true;
        }
 
+       if (signing_state == SMB_SIGNING_IPC_DEFAULT) {
+               /*
+                * Ensure for IPC/RPC the default is to require
+                * signing unless explicitly turned off by the
+                * administrator.
+                */
+               signing_state = lp_client_ipc_signing();
+       }
+
        if (signing_state == SMB_SIGNING_DEFAULT) {
                signing_state = lp_client_signing();
        }
Samba Shared Repository