STEP07? SECURITY_USER >= ...

author Stefan Metzmacher <metze@samba.org>

Fri, 12 Dec 2014 09:22:23 +0000 (10:22 +0100)

committer Michael Adam <obnox@samba.org>

Fri, 15 May 2015 09:46:54 +0000 (11:46 +0200)
author Stefan Metzmacher <metze@samba.org>
Fri, 12 Dec 2014 09:22:23 +0000 (10:22 +0100)
committer Michael Adam <obnox@samba.org>
Fri, 15 May 2015 09:46:54 +0000 (11:46 +0200)
diff --git a/source3/smbd/smb2_sesssetup.c b/source3/smbd/smb2_sesssetup.c

index 0a48b7446e1f9a5f378bc8aa465d6d5d767ae71e..012bacf501537b10acca5ea7fc77f8785501d4d3 100644 (file)
--- a/source3/smbd/smb2_sesssetup.c
+++ b/source3/smbd/smb2_sesssetup.c
@@ -716,6 +716,12 @@ static struct tevent_req *smbd_smb2_session_setup_send(TALLOC_CTX *mem_ctx,
                         return tevent_req_post(req, ev);
                 }
  
+               if (security_session_user_level(smb2req->session->global->auth_session_infos, NULL) < SECURITY_USER) {
+               DEBUG(0,("%s:%s: session binding requested\n", __location__, __func__));
+                       tevent_req_nterror(req, NT_STATUS_REQUEST_NOT_ACCEPTED); //???
+                       return tevent_req_post(req, ev);
+               }
+
                 //TODO check in_previous_session_id == 0 ???
  
                 status = smbXsrv_session_add_channel(smb2req->session,
author	Stefan Metzmacher <metze@samba.org>
	Fri, 12 Dec 2014 09:22:23 +0000 (10:22 +0100)
committer	Michael Adam <obnox@samba.org>
	Fri, 15 May 2015 09:46:54 +0000 (11:46 +0200)