summaryrefslogtreecommitdiff
path: root/source4/auth
diff options
context:
space:
mode:
authorAndrew Bartlett <abartlet@samba.org>2005-10-06 11:15:20 +0000
committerGerald (Jerry) Carter <jerry@samba.org>2007-10-10 13:39:28 -0500
commit39daa629ff74b1a16a2c53ba82628fdabd4d1a93 (patch)
treecde0b24de062748a2c57311a0f8a836c1d9228f8 /source4/auth
parent8af30ce3130888a22a99bbb1c9b65d7b699b0614 (diff)
downloadsamba-39daa629ff74b1a16a2c53ba82628fdabd4d1a93.tar.gz
samba-39daa629ff74b1a16a2c53ba82628fdabd4d1a93.tar.bz2
samba-39daa629ff74b1a16a2c53ba82628fdabd4d1a93.zip
r10764: To match Win2k3 SP1, we need to set an anonymous user token for
schannel connections. Test for Win2k3 SP1 behaviour in RPC-SCHANNEL. Andrew Bartlett (This used to be commit 1c3911374ec65e4770c2fe9109d7b7d3ecd99f6a)
Diffstat (limited to 'source4/auth')
-rw-r--r--source4/auth/gensec/schannel.c31
1 files changed, 21 insertions, 10 deletions
diff --git a/source4/auth/gensec/schannel.c b/source4/auth/gensec/schannel.c
index a4561ee996..8d5c7554f5 100644
--- a/source4/auth/gensec/schannel.c
+++ b/source4/auth/gensec/schannel.c
@@ -160,22 +160,33 @@ NTSTATUS dcerpc_schannel_creds(struct gensec_security *gensec_security,
/**
- * Return the credentials of a logged on user, including session keys
- * etc.
- *
- * Only valid after a successful authentication
- *
- * May only be called once per authentication.
+ * Returns anonymous credentials for schannel, matching Win2k3.
*
*/
static NTSTATUS schannel_session_info(struct gensec_security *gensec_security,
- struct auth_session_info **session_info)
+ struct auth_session_info **_session_info)
{
- (*session_info) = talloc(gensec_security, struct auth_session_info);
- NT_STATUS_HAVE_NO_MEMORY(*session_info);
+ NTSTATUS nt_status;
+ struct schannel_state *state = gensec_security->private_data;
+ struct auth_serversupplied_info *server_info = NULL;
+ struct auth_session_info *session_info = NULL;
+ TALLOC_CTX *mem_ctx = talloc_new(state);
+
+ nt_status = auth_anonymous_server_info(mem_ctx,
+ &server_info);
+ if (!NT_STATUS_IS_OK(nt_status)) {
+ talloc_free(mem_ctx);
+ return nt_status;
+ }
+
+ /* references the server_info into the session_info */
+ nt_status = auth_generate_session_info(state, server_info, &session_info);
+ talloc_free(mem_ctx);
+
+ NT_STATUS_NOT_OK_RETURN(nt_status);
- ZERO_STRUCTP(*session_info);
+ *_session_info = session_info;
return NT_STATUS_OK;
}