}
ret.length = length;
memset(ret.data, 0, ret.length);
+ ret.free = NULL;
return ret;
}
*******************************************************************/
void data_blob_free(DATA_BLOB *d)
{
- return;
-
if (d) {
if (d->free) {
(d->free)(d);
/*******************************************************************
check if two data blobs are equal
*******************************************************************/
-BOOL data_blob_equal(DATA_BLOB *d1, DATA_BLOB *d2)
+BOOL data_blob_equal(const DATA_BLOB *d1, const DATA_BLOB *d2)
{
if (d1->length != d2->length) {
return False;
DEBUG(0, ("NTLMSSP packet check failed with %s\n", nt_errstr(nt_status)));
return nt_status;
}
-
- if (memcmp(sig->data+sig->length - 8, local_sig.data+local_sig.length - 8, 8) != 0) {
+
+ if (local_sig.length != sig->length ||
+ memcmp(local_sig.data + local_sig.length - 8,
+ sig->data + sig->length - 8, 8) != 0) {
DEBUG(5, ("BAD SIG: wanted signature of\n"));
dump_data(5, (const char *)local_sig.data, local_sig.length);
return NT_STATUS_ACCESS_DENIED;
}
+ data_blob_free(&local_sig);
+
/* increment counter on recieive */
ntlmssp_state->ntlmssp_seq_num++;
if (!p) return;
p->reference_count--;
if (p->reference_count <= 0) {
+ if (p->ntlmssp_state) {
+ ntlmssp_end(&p->ntlmssp_state);
+ }
p->transport.shutdown_pipe(p);
talloc_destroy(p->mem_ctx);
}
SSVAL(blob->data, 8, blob->length);
SSVAL(blob->data, 10, p->auth_info->credentials.length);
+ data_blob_free(&p->auth_info->credentials);
+
return NT_STATUS_OK;
}
NTSTATUS status;
struct ntlmssp_state *state;
TALLOC_CTX *mem_ctx;
+ DATA_BLOB credentials;
mem_ctx = talloc_init("dcerpc_bind_auth_ntlm");
if (!mem_ctx) {
status = ntlmssp_update(state,
p->auth_info->credentials,
- &p->auth_info->credentials);
+ &credentials);
if (!NT_STATUS_EQUAL(status, NT_STATUS_MORE_PROCESSING_REQUIRED)) {
goto done;
}
+
+ p->auth_info->credentials = data_blob_talloc(mem_ctx,
+ credentials.data,
+ credentials.length);
+ data_blob_free(&credentials);
+
status = dcerpc_bind_byuuid(p, mem_ctx, uuid, version);
if (!NT_STATUS_IS_OK(status)) {
goto done;
}
+
status = ntlmssp_update(state,
p->auth_info->credentials,
- &p->auth_info->credentials);
+ &credentials);
if (!NT_STATUS_EQUAL(status, NT_STATUS_MORE_PROCESSING_REQUIRED)) {
goto done;
}
+ p->auth_info->credentials = data_blob_talloc(mem_ctx,
+ credentials.data,
+ credentials.length);
+ data_blob_free(&credentials);
+
status = dcerpc_auth3(p, mem_ctx);
+
+ if (!NT_STATUS_IS_OK(status)) {
+ goto done;
+ }
+
p->ntlmssp_state = state;
- p->auth_info->credentials = data_blob(NULL, 0);
- ntlmssp_sign_init(state);
+ /* setup for signing */
+ status = ntlmssp_sign_init(state);
done:
talloc_destroy(mem_ctx);
bRetval = False;
- DEBUG(0, ("lp_load: refreshing parameters from %s\n", pszFname));
+ DEBUG(2, ("lp_load: refreshing parameters from %s\n", pszFname));
bInGlobalSection = True;
bGlobalOnly = global_only;