r9608: don't validate the hard-coded sid for an external pac file
authorAndrew Tridgell <tridge@samba.org>
Thu, 25 Aug 2005 05:00:52 +0000 (05:00 +0000)
committerGerald (Jerry) Carter <jerry@samba.org>
Wed, 10 Oct 2007 18:34:34 +0000 (13:34 -0500)
(This used to be commit 7e6957b906be760e7eb7e6ab6dbc86efeb0c42d2)

source4/torture/auth/pac.c

index 38415ea3a3b9774fb741fe0c676aed8175e990d8..d5d5d0abc713aa7ff94fb1a48cd54174372db4d7 100644 (file)
@@ -390,7 +390,8 @@ static BOOL torture_pac_saved_check(void)
                return False;
        }
 
-       if (!dom_sid_equal(dom_sid_parse_talloc(mem_ctx, "S-1-5-21-3048156945-3961193616-3706469200-1005"), 
+       if (!pac_file &&
+           !dom_sid_equal(dom_sid_parse_talloc(mem_ctx, "S-1-5-21-3048156945-3961193616-3706469200-1005"), 
                           server_info_out->account_sid)) {
                krb5_free_keyblock_contents(smb_krb5_context->krb5_context, 
                                            &krbtgt_keyblock);