diff options
author | Volker Lendecke <vl@samba.org> | 2018-02-28 15:09:28 +0000 |
---|---|---|
committer | Karolin Seeger <kseeger@samba.org> | 2018-04-20 11:56:21 +0200 |
commit | 1e60ca513b5c46ba2cd28a70237719eb0b32c6fe (patch) | |
tree | 9c9cb6efcc7545125e8839a4e6c5dc7edf383030 /source3 | |
parent | ad0b42ae90e8409133227666bb6cb0972cf96d44 (diff) | |
download | samba-1e60ca513b5c46ba2cd28a70237719eb0b32c6fe.tar.gz |
winbind: Keep "force_reauth" in invalidate_cm_connection
Right now I don't see a way to actually force a re-serverauth
from the client side as long as an entry in netlogon_creds_cli.tdb
exists. cm_connect_netlogon goes through invalidate_cm_connection, and
this wipes our wish to force a reauthenticatoin. Keep this intact until
we actually did reauthenticate.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=13332
Signed-off-by: Volker Lendecke <vl@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
(cherry picked from commit 4b7a9d560a51b51ac88f30276c87edc097b00d0b)
Diffstat (limited to 'source3')
-rw-r--r-- | source3/winbindd/winbindd_cm.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/source3/winbindd/winbindd_cm.c b/source3/winbindd/winbindd_cm.c index 2d3f79d0155..055360c1e06 100644 --- a/source3/winbindd/winbindd_cm.c +++ b/source3/winbindd/winbindd_cm.c @@ -2078,7 +2078,6 @@ void invalidate_cm_connection(struct winbindd_domain *domain) } conn->auth_level = DCERPC_AUTH_LEVEL_PRIVACY; - conn->netlogon_force_reauth = false; TALLOC_FREE(conn->netlogon_creds_ctx); if (conn->cli) { @@ -3365,6 +3364,7 @@ static NTSTATUS cm_connect_netlogon_transport(struct winbindd_domain *domain, conn->cli, transport, conn->netlogon_creds_ctx, conn->netlogon_force_reauth, creds, &conn->netlogon_pipe); + conn->netlogon_force_reauth = false; if (!NT_STATUS_IS_OK(result)) { DBG_DEBUG("rpccli_connect_netlogon failed: %s\n", nt_errstr(result)); |