X-Git-Url: https://git.decadent.org.uk/gitweb/?p=nfs-utils.git;a=blobdiff_plain;f=utils%2Fgssd%2Fcontext_mit.c;h=868eaa9f796c61da1db7cb023ba3fc19d1b2d8c8;hp=ba94fd86a628caf69fd1d9403e90338fb17c5c46;hb=aaf1ebff9c894f341dfb7db5ced2c47a5d50e750;hpb=2ca793c93c09d0bc180b8eed9819206fd42aff21

diff --git a/utils/gssd/context_mit.c b/utils/gssd/context_mit.c
index ba94fd8..868eaa9 100644
--- a/utils/gssd/context_mit.c
+++ b/utils/gssd/context_mit.c
@@ -185,6 +185,11 @@ prepare_krb5_rfc1964_buffer(gss_krb5_lucid_context_v1_t *lctx,
 	if (WRITE_BYTES(&p, end, word_send_seq)) goto out_err;
 	if (write_buffer(&p, end, (gss_buffer_desc*)&krb5oid)) goto out_err;
 
+	printerr(2, "prepare_krb5_rfc1964_buffer: serializing keys with "
+		 "enctype %d and length %d\n",
+		 lctx->rfc1964_kd.ctx_key.type,
+		 lctx->rfc1964_kd.ctx_key.length);
+
 	/* derive the encryption key and copy it into buffer */
 	enc_key.type = lctx->rfc1964_kd.ctx_key.type;
 	enc_key.length = lctx->rfc1964_kd.ctx_key.length;
@@ -294,10 +299,21 @@ write_keyblock(char **p, char *end, struct _krb5_keyblock *arg)
 	return 0;
 }
 
+/*
+ * We really shouldn't know about glue-layer context structure, but
+ * we need to get at the real krb5 context pointer.  This should be
+ * removed as soon as we say there is no support for MIT Kerberos
+ * prior to 1.4 -- which gives us "legal" access to the context info.
+ */
+typedef struct gss_union_ctx_id_t {
+	gss_OID         mech_type;
+	gss_ctx_id_t    internal_ctx_id;
+} gss_union_ctx_id_desc, *gss_union_ctx_id_t;
+
 int
 serialize_krb5_ctx(gss_ctx_id_t ctx, gss_buffer_desc *buf)
 {
-	krb5_gss_ctx_id_t       kctx = (krb5_gss_ctx_id_t)ctx;
+	krb5_gss_ctx_id_t kctx = ((gss_union_ctx_id_t)ctx)->internal_ctx_id;
 	char *p, *end;
 	static int constant_one = 1;
 	static int constant_zero = 0;
@@ -328,6 +344,11 @@ serialize_krb5_ctx(gss_ctx_id_t ctx, gss_buffer_desc *buf)
 	word_seq_send = kctx->seq_send;
 	if (WRITE_BYTES(&p, end, word_seq_send)) goto out_err;
 	if (write_buffer(&p, end, kctx->mech_used)) goto out_err;
+
+	printerr(2, "serialize_krb5_ctx: serializing keys with "
+		 "enctype %d and length %d\n",
+		 kctx->enc->enctype, kctx->enc->length);
+
 	if (write_keyblock(&p, end, kctx->enc)) goto out_err;
 	if (write_keyblock(&p, end, kctx->seq)) goto out_err;