Revert "gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes keys...

This reverts commit 73964f069056f46f2f27fc690e42e5c91ae1fe19.

This breaks more than it gains:-( It seems to break the ncacn_np session key

metze

diff --git a/source/auth/gensec/gensec_gssapi.c b/source/auth/gensec/gensec_gssapi.c
index c20cf4f5bd92921238a90ea1c5c6dcd6c75df1ba..205d8a0f9b9ea2dac70c8c1098af4d40d5086e64 100644 (file)
--- a/source/auth/gensec/gensec_gssapi.c
+++ b/source/auth/gensec/gensec_gssapi.c
@@ -1152,9 +1152,9 @@ static NTSTATUS gensec_gssapi_session_key(struct gensec_security *gensec_securit
                return NT_STATUS_OK;
        }
 
-       maj_stat = gsskrb5_get_subkey(&min_stat,
-                                     gensec_gssapi_state->gssapi_context,
-                                     &subkey);
+       maj_stat = gsskrb5_get_initiator_subkey(&min_stat, 
+                                               gensec_gssapi_state->gssapi_context,
+                                               &subkey);
        if (maj_stat != 0) {
                DEBUG(1, ("NO session key for this mech\n"));
                return NT_STATUS_NO_USER_SESSION_KEY;