s4-ldap_server: Set remote and local address values into GENSEC

This will allow channel bindings and logging of the address values used during authentication Signed-off-by: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-by: Gary Lockyer <gary@catalyst.net.nz> Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
author: Andrew Bartlett <abartlet@samba.org> 2017-02-21 14:15:05 +1300
committer: Andrew Bartlett <abartlet@samba.org> 2017-03-29 02:37:26 +0200
commit: 1cca9d6dce94f35e8efc17426ea0bf5f77a3ec3d (patch)
tree: 8807ee96c989871a870cf2703c11eebd190e0360 /source4/ldap_server
parent: 28e0c8d135acaaedaf74126a2c572a3744d84336 (diff)
download: samba-1cca9d6dce94f35e8efc17426ea0bf5f77a3ec3d.tar.gz
1 files changed, 12 insertions, 0 deletions
diff --git a/source4/ldap_server/ldap_bind.c b/source4/ldap_server/ldap_bind.c
index 83623155a4e..332bad3224e 100644
--- a/source4/ldap_server/ldap_bind.c
+++ b/source4/ldap_server/ldap_bind.c
@@ -199,6 +199,18 @@ static NTSTATUS ldapsrv_setup_gensec(struct ldapsrv_connection *conn,
 		return status;
 	}
 
+	status = gensec_set_remote_address(gensec_security,
+					   conn->connection->remote_address);
+	if (!NT_STATUS_IS_OK(status)) {
+		return status;
+	}
+
+	status = gensec_set_local_address(gensec_security,
+					  conn->connection->local_address);
+	if (!NT_STATUS_IS_OK(status)) {
+		return status;
+	}
+
 	gensec_want_feature(gensec_security, GENSEC_FEATURE_ASYNC_REPLIES);
 	gensec_want_feature(gensec_security, GENSEC_FEATURE_LDAP_STYLE);
author	Andrew Bartlett <abartlet@samba.org>	2017-02-21 14:15:05 +1300
committer	Andrew Bartlett <abartlet@samba.org>	2017-03-29 02:37:26 +0200
commit	1cca9d6dce94f35e8efc17426ea0bf5f77a3ec3d (patch)
tree	8807ee96c989871a870cf2703c11eebd190e0360 /source4/ldap_server
parent	28e0c8d135acaaedaf74126a2c572a3744d84336 (diff)
download	samba-1cca9d6dce94f35e8efc17426ea0bf5f77a3ec3d.tar.gz