(krb5_mk_req_internal): when using arcfour-hmac-md5, use an unkeyed

checksum (rsa-md5), since Microsoft calculates the keyed checksum with the subkey of the authenticator. git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12409 ec53bebd-3082-4978-b11e-865c3cabbd6b
2003-06-28 21:05:12 +00:00
parent 71635344e5
commit 310984c158
1 changed files with 9 additions and 0 deletions
--- a/lib/krb5/mk_req_ext.c
+++ b/lib/krb5/mk_req_ext.c
@@ -110,6 +110,15 @@ krb5_mk_req_internal(krb5_context context,
 				     in_data->data,
 				     in_data->length,
 				     &c);
+      } else if(ac->keyblock->keytype == ETYPE_ARCFOUR_HMAC_MD5) {
+	  /* this is to make MS kdc happy */ 
+	  ret = krb5_create_checksum(context, 
+				     NULL,
+				     0,
+				     CKSUMTYPE_RSA_MD5,
+				     in_data->data,
+				     in_data->length,
+				     &c);
      } else {
 	  krb5_crypto crypto;