Get the sense of the integer wrap test the right way around. Sorry.

Jeremy. (cherry picked from commit b4d9e92dfaa84b1361cdd6e49ad88e252c8fed4d)
author: Jeremy Allison <jra@samba.org> 2009-03-05 21:46:38 -0800
committer: Karolin Seeger <kseeger@samba.org> 2009-03-27 13:06:52 +0100
commit: 2938663a47eeb65309600435ad93935fc8bb8c89 (patch)
tree: 383aa01395ed21049fb1abdf12b93a4a9381da50
parent: b1579a3b6247b933ed9263ef15a76e4dc1ce9f1f (diff)
download: samba-2938663a47eeb65309600435ad93935fc8bb8c89.tar.gz
samba-2938663a47eeb65309600435ad93935fc8bb8c89.tar.xz
samba-2938663a47eeb65309600435ad93935fc8bb8c89.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/source/rpc_server/srv_pipe.c b/source/rpc_server/srv_pipe.c
index 39868c543f2..c8aa304c046 100644
--- a/source/rpc_server/srv_pipe.c
+++ b/source/rpc_server/srv_pipe.c
@@ -2102,7 +2102,7 @@ bool api_pipe_schannel_process(pipes_struct *p, prs_struct *rpc_in, uint32 *p_ss
 	auth_len = p->hdr.auth_len;
 
 	if (auth_len < RPC_AUTH_SCHANNEL_SIGN_OR_SEAL_CHK_LEN ||
-			auth_len < RPC_HEADER_LEN +
+			auth_len > RPC_HEADER_LEN +
 					RPC_HDR_REQ_LEN +
 					RPC_HDR_AUTH_LEN +
 					auth_len) {
author	Jeremy Allison <jra@samba.org>	2009-03-05 21:46:38 -0800
committer	Karolin Seeger <kseeger@samba.org>	2009-03-27 13:06:52 +0100
commit	2938663a47eeb65309600435ad93935fc8bb8c89 (patch)
tree	383aa01395ed21049fb1abdf12b93a4a9381da50
parent	b1579a3b6247b933ed9263ef15a76e4dc1ce9f1f (diff)
download	samba-2938663a47eeb65309600435ad93935fc8bb8c89.tar.gz samba-2938663a47eeb65309600435ad93935fc8bb8c89.tar.xz samba-2938663a47eeb65309600435ad93935fc8bb8c89.zip