smb2_sesssetup: a session bind with a different user results in ACCESS_DENIED

author Stefan Metzmacher <metze@samba.org>

Wed, 10 Mar 2021 09:58:10 +0000 (10:58 +0100)

committer Jeremy Allison <jra@samba.org>

Wed, 17 Mar 2021 00:49:32 +0000 (00:49 +0000)
author Stefan Metzmacher <metze@samba.org>
Wed, 10 Mar 2021 09:58:10 +0000 (10:58 +0100)
committer Jeremy Allison <jra@samba.org>
Wed, 17 Mar 2021 00:49:32 +0000 (00:49 +0000)
diff --git a/selftest/knownfail.d/smb2.session b/selftest/knownfail.d/smb2.session

index 02ce9c07ba57c6fdc26ea17ede4632245a75850f..35ef1d743ee7fff0f6c6778e3b4f86bd12d699a1 100644 (file)
--- a/selftest/knownfail.d/smb2.session
+++ b/selftest/knownfail.d/smb2.session
@@ -1,3 +1 @@
  ^samba3.smb2.session.*.bind_negative_smb3encGtoC
-^samba3.smb2.session.*.bind_different_user.ad_dc
-^samba3.smb2.session.*.bind_invalid_auth.ad_member_idmap_rid
diff --git a/source3/smbd/smb2_sesssetup.c b/source3/smbd/smb2_sesssetup.c

index c431c534b601af07640eee39ffdbd91eb9bc07b1..38b0ccd4a72ffe427f990fbe82078453f65b147e 100644 (file)
--- a/source3/smbd/smb2_sesssetup.c
+++ b/source3/smbd/smb2_sesssetup.c
@@ -605,7 +605,7 @@ static NTSTATUS smbd_smb2_bind_auth_return(struct smbXsrv_session *session,
         ok = security_token_is_sid(session_info->security_token,
                         &x->global->auth_session_info->security_token->sids[0]);
         if (!ok) {
-               return NT_STATUS_NOT_SUPPORTED;
+               return NT_STATUS_ACCESS_DENIED;
         }
  
         if (session_info->session_key.length == 0) {
author	Stefan Metzmacher <metze@samba.org>
	Wed, 10 Mar 2021 09:58:10 +0000 (10:58 +0100)
committer	Jeremy Allison <jra@samba.org>
	Wed, 17 Mar 2021 00:49:32 +0000 (00:49 +0000)
selftest/knownfail.d/smb2.session		patch \| blob \| history
source3/smbd/smb2_sesssetup.c		patch \| blob \| history