From a99e810bda20b2a95ae5d5204a6d36d6d22309d6 Mon Sep 17 00:00:00 2001
From: Andrew Tridgell <tridge@samba.org>
Date: Sun, 14 Apr 2002 09:00:05 +0000
Subject: it looks like it is possible for a w2k client to send a spnego auth
 without sending the negotiate - try to cope (This used to be commit
 95278aa41f654108d9d20cd0096a34caf175d32b)

---
 source3/smbd/sesssetup.c | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/source3/smbd/sesssetup.c b/source3/smbd/sesssetup.c
index 899c9174b2..270a69d96a 100644
--- a/source3/smbd/sesssetup.c
+++ b/source3/smbd/sesssetup.c
@@ -346,10 +346,15 @@ static int reply_spnego_auth(connection_struct *conn, char *inbuf, char *outbuf,
 	int sess_vuid;
 	BOOL as_guest;
 	uint32 auth_flags = AUTH_FLAG_NONE;
-
 	auth_usersupplied_info *user_info = NULL;
 	auth_serversupplied_info *server_info = NULL;
 
+	/* we must have setup the auth context by now */
+	if (!ntlmssp_auth_context) {
+		DEBUG(2,("ntlmssp_auth_context is NULL in reply_spnego_auth\n"));
+		return ERROR_NT(NT_STATUS_LOGON_FAILURE);
+	}
+
 	if (!spnego_parse_auth(blob1, &auth)) {
 #if 0
 		file_save("auth.dat", blob1.data, blob1.length);
-- 
cgit