s3:auth: add the "Unix Groups" sid for the primary gid

The primary gid might not be in the gid array.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13328

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>

diff --git a/source3/auth/auth_util.c b/source3/auth/auth_util.c
index adc3bc29edaed5b66105ca991e6e1f913259ee60..24d2e7d8f5851e404e718b877392b0487ad60855 100644 (file)
--- a/source3/auth/auth_util.c
+++ b/source3/auth/auth_util.c
@@ -633,7 +633,11 @@ NTSTATUS create_local_token(TALLOC_CTX *mem_ctx,
         */
 
        uid_to_unix_users_sid(session_info->unix_token->uid, &tmp_sid);
+       add_sid_to_array_unique(session_info->security_token, &tmp_sid,
+                               &session_info->security_token->sids,
+                               &session_info->security_token->num_sids);
 
+       gid_to_unix_groups_sid(session_info->unix_token->gid, &tmp_sid);
        add_sid_to_array_unique(session_info->security_token, &tmp_sid,
                                &session_info->security_token->sids,
                                &session_info->security_token->num_sids);