The wrong encryption system was being initialized. The response to the mk_req

should be done using the session key and its encryption system, not the
ticket's encryption system.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7161 dc483132-0cff-0310-8789-dd5450dbe970

diff --git a/src/lib/krb5/krb/mk_req_ext.c b/src/lib/krb5/krb/mk_req_ext.c
index dfd147357778e192468942669c3be38da33559db..451bbe680ff657ab218d432de1005e7b62e0e167 100644 (file)
--- a/src/lib/krb5/krb/mk_req_ext.c
+++ b/src/lib/krb5/krb/mk_req_ext.c
@@ -185,8 +185,8 @@ krb5_mk_req_extended(context, auth_context, ap_req_options, in_data, in_creds,
 
     /* put together an eblock for this encryption */
 
-    krb5_use_enctype(context, &eblock, request.ticket->enc_part.enctype);
-    request.authenticator.enctype = request.ticket->enc_part.enctype;
+    krb5_use_enctype(context, &eblock, in_creds->keyblock.enctype);
+    request.authenticator.enctype = in_creds->keyblock.enctype;
     request.authenticator.kvno = 0;
     request.authenticator.ciphertext.length =
        krb5_encrypt_size(scratch->length, eblock.crypto_entry);