Kai Blin : secur32: ntlm_auth returns BH if the connection to winbindd fails.
Alexandre Julliard
julliard at winehq.org
Tue Oct 9 13:37:37 CDT 2007
Module: wine
Branch: master
Commit: fdfa760c8575c0813d137f8122d0c358e44a8b8d
URL: http://source.winehq.org/git/wine.git/?a=commit;h=fdfa760c8575c0813d137f8122d0c358e44a8b8d
Author: Kai Blin <kai.blin at gmail.com>
Date: Sun Oct 7 00:57:12 2007 +0200
secur32: ntlm_auth returns BH if the connection to winbindd fails.
---
dlls/secur32/ntlm.c | 17 ++++++++++++++++-
1 files changed, 16 insertions(+), 1 deletions(-)
diff --git a/dlls/secur32/ntlm.c b/dlls/secur32/ntlm.c
index 4ae00a4..e700373 100644
--- a/dlls/secur32/ntlm.c
+++ b/dlls/secur32/ntlm.c
@@ -1138,6 +1138,10 @@ static SECURITY_STATUS SEC_ENTRY ntlm_AcceptSecurityContext(
TRACE("Reply from ntlm_auth: %s\n", debugstr_a(buffer));
+ /* At this point, we get a NA if the user didn't authenticate, but a BH
+ * if ntlm_auth could not connect to winbindd. Apart from running Wine
+ * as root, there is no way to fix this for now, so just handle this as
+ * a failed login. */
if(strncmp(buffer, "AF ", 3) != 0)
{
if(strncmp(buffer, "NA ", 3) == 0)
@@ -1147,7 +1151,18 @@ static SECURITY_STATUS SEC_ENTRY ntlm_AcceptSecurityContext(
}
else
{
- ret = SEC_E_INTERNAL_ERROR;
+ size_t ntlm_pipe_err_len = strlen("BH NT_STATUS_ACCESS_DENIED");
+
+ if( (buffer_len >= ntlm_pipe_err_len) &&
+ (strncmp(buffer, "BH NT_STATUS_ACCESS_DENIED",
+ ntlm_pipe_err_len) == 0))
+ {
+ TRACE("Connection to winbindd failed\n");
+ ret = SEC_E_LOGON_DENIED;
+ }
+ else
+ ret = SEC_E_INTERNAL_ERROR;
+
goto asc_end;
}
}
More information about the wine-cvs
mailing list