[PATCH 2/4] s4:schannel Open the schannel_store.tdb at startup

Andrew Bartlett abartlet at samba.org
Tue Jun 22 18:33:15 MDT 2010


This will allow TDB_CLEAR_IF_FIRST behaviour in future
---
 source4/smbd/server.c |    8 ++++++++
 1 files changed, 8 insertions(+), 0 deletions(-)

diff --git a/source4/smbd/server.c b/source4/smbd/server.c
index 88917c4..11415a1 100644
--- a/source4/smbd/server.c
+++ b/source4/smbd/server.c
@@ -31,6 +31,7 @@
 #include "ntvfs/ntvfs.h"
 #include "ntptr/ntptr.h"
 #include "auth/gensec/gensec.h"
+#include "libcli/auth/schannel.h"
 #include "smbd/process_model.h"
 #include "param/secrets.h"
 #include "smbd/pidfile.h"
@@ -400,6 +401,13 @@ static int binary_smbd_main(const char *binary_name, int argc, const char *argv[
 		return 1;
 	}
 
+	if (lp_server_role(cmdline_lp_ctx) == ROLE_DOMAIN_CONTROLLER) {
+		if (!open_schannel_session_store(talloc_autofree_context(), lp_private_dir(cmdline_lp_ctx))) {
+			DEBUG(0,("ERROR: Samba cannot open schannel store for secured NETLOGON operations.\n"));
+			exit(1);
+		}
+	}
+
 	gensec_init(cmdline_lp_ctx); /* FIXME: */
 
 	ntptr_init(cmdline_lp_ctx);	/* FIXME: maybe run this in the initialization function 
-- 
1.7.0.1


--=-2A0ML4+U++I4Wmz4q2Yf
Content-Disposition: attachment; filename="0003-s3-schannel-Open-the-schannel_state.tdb-at-startup.patch"
Content-Type: text/x-patch; name="0003-s3-schannel-Open-the-schannel_state.tdb-at-startup.patch"; charset="UTF-8"
Content-Transfer-Encoding: 7bit



More information about the samba-technical mailing list