CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC generation...
authorStefan Metzmacher <metze@samba.org>
Thu, 19 Nov 2015 15:26:49 +0000 (16:26 +0100)
committerStefan Metzmacher <metze@samba.org>
Tue, 12 Apr 2016 17:25:23 +0000 (19:25 +0200)
commit0d641ee36ae2c2e47708587c5fc20eb1dc5d92d0
tree007bd2cbd042e8371724e17c364e37f00d899469
parentc0fc6a6d7f7a9d709f35c1a7e4812c0a89285977
CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC generation (as client)

We now detect a MsvAvTimestamp in target info as indication
of the server to support NTLMSSP_MIC in the AUTH_MESSAGE.

If the client uses NTLMv2 we provide
NTLMSSP_AVFLAG_MIC_IN_AUTHENTICATE_MESSAGE and valid MIC.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11644

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: G√ľnther Deschner <gd@samba.org>
auth/ntlmssp/ntlmssp.h
auth/ntlmssp/ntlmssp_client.c