return NT_STATUS_LOGON_FAILURE;
DEBUG(3, ("check_ntlm_password: Checking password for unmapped user [%s]\\[%s]@[%s] with the new password interface\n",
- user_info->client_domain, user_info->smb_name, user_info->workstation_name));
+ user_info->client_domain, user_info->client.account_name, user_info->workstation_name));
DEBUG(3, ("check_ntlm_password: mapped user is: [%s]\\[%s]@[%s]\n",
user_info->domain, user_info->internal_username, user_info->workstation_name));
#endif
/* This needs to be sorted: If it doesn't match, what should we do? */
- if (!check_domain_match(user_info->smb_name, user_info->domain))
+ if (!check_domain_match(user_info->client.account_name, user_info->domain))
return NT_STATUS_LOGON_FAILURE;
for (auth_method = auth_context->auth_method_list;auth_method; auth_method = auth_method->next) {
NTSTATUS result;
mem_ctx = talloc_init("%s authentication for user %s\\%s", auth_method->name,
- user_info->domain, user_info->smb_name);
+ user_info->domain, user_info->client.account_name);
result = auth_method->auth(auth_context, auth_method->private_data, mem_ctx, user_info, server_info);
if (NT_STATUS_IS_OK(nt_status)) {
DEBUG(3, ("check_ntlm_password: %s authentication for user [%s] succeeded\n",
- auth_method->name, user_info->smb_name));
+ auth_method->name, user_info->client.account_name));
} else {
DEBUG(5, ("check_ntlm_password: %s authentication for user [%s] FAILED with error %s\n",
- auth_method->name, user_info->smb_name, nt_errstr(nt_status)));
+ auth_method->name, user_info->client.account_name, nt_errstr(nt_status)));
}
talloc_destroy(mem_ctx);
DEBUG((*server_info)->guest ? 5 : 2,
("check_ntlm_password: %sauthentication for user [%s] -> [%s] -> [%s] succeeded\n",
(*server_info)->guest ? "guest " : "",
- user_info->smb_name,
+ user_info->client.account_name,
user_info->internal_username,
unix_username));
}
/* failed authentication; check for guest lapping */
DEBUG(2, ("check_ntlm_password: Authentication for user [%s] -> [%s] FAILED with error %s\n",
- user_info->smb_name, user_info->internal_username,
+ user_info->client.account_name, user_info->internal_username,
nt_errstr(nt_status)));
ZERO_STRUCTP(server_info);
DEBUG(10, ("Check auth for: [%s]\n", user_info->internal_username));
- fstrcpy(user, user_info->smb_name);
+ fstrcpy(user, user_info->client.account_name);
if (strnequal("NT_STATUS", user, strlen("NT_STATUS"))) {
strupper_m(user);
mem_ctx,
user_info->logon_parameters,/* flags such as 'allow workstation logon' */
dc_name, /* server name */
- user_info->smb_name, /* user name logging on. */
+ user_info->client.account_name, /* user name logging on. */
user_info->client_domain, /* domain name */
user_info->workstation_name,/* workstation name */
chal, /* 8 byte challenge. */
if (!NT_STATUS_IS_OK(nt_status)) {
DEBUG(0,("domain_client_validate: unable to validate password "
"for user %s in domain %s to Domain controller %s. "
- "Error was %s.\n", user_info->smb_name,
+ "Error was %s.\n", user_info->client.account_name,
user_info->client_domain, dc_name,
nt_errstr(nt_status)));
}
} else {
nt_status = make_server_info_info3(mem_ctx,
- user_info->smb_name,
+ user_info->client.account_name,
domain,
server_info,
info3);
}
}
- netsamlogon_cache_store(user_info->smb_name, info3);
+ netsamlogon_cache_store(user_info->client.account_name, info3);
TALLOC_FREE(info3);
}
user_info->logon_parameters, /* flags such as 'allow
* workstation logon' */
global_myname(), /* server name */
- user_info->smb_name, /* user name logging on. */
+ user_info->client.account_name, /* user name logging on. */
user_info->client_domain, /* domain name */
user_info->workstation_name, /* workstation name */
(uchar *)auth_context->challenge.data, /* 8 byte challenge. */
okay:
- status = make_server_info_info3(mem_ctx, user_info->smb_name,
+ status = make_server_info_info3(mem_ctx, user_info->client.account_name,
user_info->domain, server_info,
info3);
if (!NT_STATUS_IS_OK(status)) {
}
secret_str_len = strlen(user_info->domain) + 1 +
- strlen(user_info->smb_name) + 1 +
+ strlen(user_info->client.account_name) + 1 +
16 + 1 + /* 8 bytes of challenge going to 16 */
48 + 1 + /* 24 bytes of challenge going to 48 */
48 + 1;
safe_strcpy( secret_str, user_info->domain, secret_str_len - 1);
safe_strcat( secret_str, "\n", secret_str_len - 1);
- safe_strcat( secret_str, user_info->smb_name, secret_str_len - 1);
+ safe_strcat( secret_str, user_info->client.account_name, secret_str_len - 1);
safe_strcat( secret_str, "\n", secret_str_len - 1);
for (i = 0; i < 8; i++) {
if (ret) {
DEBUG(1,("script_check_user_credentials: failed to authenticate %s\\%s\n",
- user_info->domain, user_info->smb_name ));
+ user_info->domain, user_info->client.account_name ));
/* auth failed. */
return NT_STATUS_NO_SUCH_USER;
}
if (!user_info->encrypted) {
/* Plaintext available */
nt_status = cli_session_setup(
- cli, user_info->smb_name,
+ cli, user_info->client.account_name,
(char *)user_info->plaintext_password.data,
user_info->plaintext_password.length,
NULL, 0, user_info->domain);
} else {
nt_status = cli_session_setup(
- cli, user_info->smb_name,
+ cli, user_info->client.account_name,
(char *)user_info->lm_resp.data,
user_info->lm_resp.length,
(char *)user_info->nt_resp.data,
DEBUG(10, ("Check auth for: [%s]", user_info->internal_username));
- params.account_name = user_info->smb_name;
+ params.account_name = user_info->client.account_name;
params.domain_name = user_info->domain;
params.workstation_name = user_info->workstation_name;
DEBUG(10,("wbcAuthenticateUserEx succeeded\n"));
nt_status = make_server_info_wbcAuthUserInfo(mem_ctx,
- user_info->smb_name,
+ user_info->client.account_name,
user_info->domain,
info, server_info);
wbcFreeMemory(info);
/* Send off request */
- params.account_name = user_info->smb_name;
+ params.account_name = user_info->client.account_name;
params.domain_name = user_info->domain;
params.workstation_name = user_info->workstation_name;
}
nt_status = make_server_info_wbcAuthUserInfo(mem_ctx,
- user_info->smb_name,
+ user_info->client.account_name,
user_info->domain,
info, server_info);
wbcFreeMemory(info);
challenge,
&user_info->lm_resp, &user_info->nt_resp,
username,
- user_info->smb_name,
+ user_info->client.account_name,
user_info->client_domain,
lm_hash,
nt_hash,
DEBUG(5,("making strings for %s's user_info struct\n", internal_username));
- (*user_info)->smb_name = SMB_STRDUP(smb_name);
- if ((*user_info)->smb_name == NULL) {
+ (*user_info)->client.account_name = SMB_STRDUP(smb_name);
+ if ((*user_info)->client.account_name == NULL) {
free_user_info(user_info);
return NT_STATUS_NO_MEMORY;
}
{
DEBUG(5,("attempting to free (and zero) a user_info structure\n"));
if (*user_info != NULL) {
- if ((*user_info)->smb_name) {
+ if ((*user_info)->client.account_name) {
DEBUG(10,("structure was created for %s\n",
- (*user_info)->smb_name));
+ (*user_info)->client.account_name));
}
- SAFE_FREE((*user_info)->smb_name);
+ SAFE_FREE((*user_info)->client.account_name);
SAFE_FREE((*user_info)->internal_username);
SAFE_FREE((*user_info)->client_domain);
SAFE_FREE((*user_info)->domain);
DATA_BLOB plaintext_password;
bool encrypted;
+ struct {
+ char *account_name; /* username before mapping */
+ } client;
bool was_mapped; /* Did the username map actually match? */
char *client_domain; /* domain name string */
char *domain; /* domain name after mapping */
char *internal_username; /* username after mapping */
- char *smb_name; /* username before mapping */
const char *workstation_name; /* workstation name (netbios calling
* name) unicode string */
git.samba.org / samba.git / commitdiff