netlogon_creds_cli: Do not corrupt authenticator state on application level errors

author Garming Sam <garming@catalyst.net.nz>

Thu, 20 Apr 2017 04:55:58 +0000 (16:55 +1200)

committer Andrew Bartlett <abartlet@samba.org>

Tue, 30 May 2017 06:06:07 +0000 (08:06 +0200)
author Garming Sam <garming@catalyst.net.nz>
Thu, 20 Apr 2017 04:55:58 +0000 (16:55 +1200)
committer Andrew Bartlett <abartlet@samba.org>
Tue, 30 May 2017 06:06:07 +0000 (08:06 +0200)
diff --git a/libcli/auth/netlogon_creds_cli.c b/libcli/auth/netlogon_creds_cli.c

index d55142e3ee2322e7de6e63d3229696c977131acd..ff30354d60e32149ca399500f7a6e6f6bcbe4bfa 100644 (file)
--- a/libcli/auth/netlogon_creds_cli.c
+++ b/libcli/auth/netlogon_creds_cli.c
@@ -2800,19 +2800,20 @@ static void netlogon_creds_cli_DsrUpdateReadOnlyServerDnsRecords_done(struct tev
                 return;
         }
  
-       if (tevent_req_nterror(req, result)) {
-               netlogon_creds_cli_DsrUpdateReadOnlyServerDnsRecords_cleanup(req, result);
-               return;
-       }
-
         *state->creds = state->tmp_creds;
         status = netlogon_creds_cli_store(state->context,
                                           &state->creds);
+
         if (tevent_req_nterror(req, status)) {
                 netlogon_creds_cli_DsrUpdateReadOnlyServerDnsRecords_cleanup(req, status);
                 return;
         }
  
+       if (tevent_req_nterror(req, result)) {
+               netlogon_creds_cli_DsrUpdateReadOnlyServerDnsRecords_cleanup(req, result);
+               return;
+       }
+
         tevent_req_done(req);
  }
  
@@ -3052,11 +3053,6 @@ static void netlogon_creds_cli_ServerGetTrustInfo_done(struct tevent_req *subreq
                 return;
         }
  
-       if (tevent_req_nterror(req, result)) {
-               netlogon_creds_cli_ServerGetTrustInfo_cleanup(req, result);
-               return;
-       }
-
         cmp = memcmp(state->new_owf_password.hash,
                      zero.hash, sizeof(zero.hash));
         if (cmp != 0) {
@@ -3078,6 +3074,11 @@ static void netlogon_creds_cli_ServerGetTrustInfo_done(struct tevent_req *subreq
                 return;
         }
  
+       if (tevent_req_nterror(req, result)) {
+               netlogon_creds_cli_ServerGetTrustInfo_cleanup(req, result);
+               return;
+       }
+
         tevent_req_done(req);
  }
  
@@ -3347,19 +3348,20 @@ static void netlogon_creds_cli_GetForestTrustInformation_done(struct tevent_req
                 return;
         }
  
-       if (tevent_req_nterror(req, result)) {
-               netlogon_creds_cli_GetForestTrustInformation_cleanup(req, result);
-               return;
-       }
-
         *state->creds = state->tmp_creds;
         status = netlogon_creds_cli_store(state->context,
                                           &state->creds);
+
         if (tevent_req_nterror(req, status)) {
                 netlogon_creds_cli_GetForestTrustInformation_cleanup(req, status);
                 return;
         }
  
+       if (tevent_req_nterror(req, result)) {
+               netlogon_creds_cli_GetForestTrustInformation_cleanup(req, result);
+               return;
+       }
+
         tevent_req_done(req);
  }
author	Garming Sam <garming@catalyst.net.nz>
	Thu, 20 Apr 2017 04:55:58 +0000 (16:55 +1200)
committer	Andrew Bartlett <abartlet@samba.org>
	Tue, 30 May 2017 06:06:07 +0000 (08:06 +0200)