#include "librpc/gen_ndr/ndr_krb5pac.h"
#include "libcli/auth/krb5_wrap.h"
-krb5_error_code check_pac_checksum(TALLOC_CTX *mem_ctx,
- DATA_BLOB pac_data,
+krb5_error_code check_pac_checksum(DATA_BLOB pac_data,
struct PAC_SIGNATURE_DATA *sig,
krb5_context context,
const krb5_keyblock *keyblock)
if (service_keyblock) {
/* verify by service_key */
- ret = check_pac_checksum(tmp_ctx,
- modified_pac_blob, srv_sig_ptr,
+ ret = check_pac_checksum(modified_pac_blob, srv_sig_ptr,
context,
service_keyblock);
if (ret) {
if (krbtgt_keyblock) {
/* verify the service key checksum by krbtgt_key */
- ret = check_pac_checksum(tmp_ctx,
- srv_sig_ptr->signature, kdc_sig_ptr,
+ ret = check_pac_checksum(srv_sig_ptr->signature, kdc_sig_ptr,
context, krbtgt_keyblock);
if (ret) {
DEBUG(1, ("PAC Decode: Failed to verify the KDC signature: %s\n",
const gss_OID mech);
char *smb_get_krb5_error_message(krb5_context context, krb5_error_code code, TALLOC_CTX *mem_ctx);
-krb5_error_code check_pac_checksum(TALLOC_CTX *mem_ctx,
- DATA_BLOB pac_data,
+krb5_error_code check_pac_checksum(DATA_BLOB pac_data,
struct PAC_SIGNATURE_DATA *sig,
krb5_context context,
const krb5_keyblock *keyblock);
keyblock = key->key;
- return check_pac_checksum(NULL, srv_sig, kdc_sig,
+ return check_pac_checksum(srv_sig, kdc_sig,
context, &keyblock);
}