From 9f219c721d15b82433afffb4ac1386a95cfee79e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Love=20H=C3=B6rnquist=20=C3=85strand?= Date: Mon, 2 May 2005 14:52:57 +0000 Subject: [PATCH] Now that we fixed the signed-ness of nonce for windows, remove the code that removed the signed bit. Instead add comment that they still need to be the same (Kerberos protocol nonce and pk-init nonce) for Windows. git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15055 ec53bebd-3082-4978-b11e-865c3cabbd6b --- lib/krb5/init_creds_pw.c | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) diff --git a/lib/krb5/init_creds_pw.c b/lib/krb5/init_creds_pw.c index 86c630f41..92e7025da 100644 --- a/lib/krb5/init_creds_pw.c +++ b/lib/krb5/init_creds_pw.c @@ -1209,11 +1209,7 @@ init_cred_loop(krb5_context context, /* Set a new nonce. */ krb5_generate_random_block (&ctx->nonce, sizeof(ctx->nonce)); ctx->nonce &= 0xffffffff; -#ifdef PKINIT - /* XXX check if it isn't the that nonce is an unsigned - * variable so its just a asn1 mismatch */ - ctx->nonce &= 0x7fffffff; -#endif + /* XXX these just needs to be the same when using Windows PK-INIT */ ctx->pk_nonce = ctx->nonce; #define MAX_PA_COUNTER 3