s3-lib: fix segf while reading incomplete session info (bug #10003)

author Björn Baumbach <bb@sernet.de>

Fri, 5 Jul 2013 11:19:59 +0000 (13:19 +0200)

committer Jeremy Allison <jra@samba.org>

Tue, 9 Jul 2013 21:19:51 +0000 (14:19 -0700)
author Björn Baumbach <bb@sernet.de>
Fri, 5 Jul 2013 11:19:59 +0000 (13:19 +0200)
committer Jeremy Allison <jra@samba.org>
Tue, 9 Jul 2013 21:19:51 +0000 (14:19 -0700)
diff --git a/source3/lib/conn_tdb.c b/source3/lib/conn_tdb.c

index a7e7cf02eb714024e340b6c1957711a57a1bc682..bb7618f0d48d0c1e7c03d5072ab12f519be588e5 100644 (file)
--- a/source3/lib/conn_tdb.c
+++ b/source3/lib/conn_tdb.c
@@ -53,8 +53,13 @@ static int collect_sessions_fn(struct smbXsrv_session_global0 *global,
         uint32_t id = global->session_global_id;
         struct connections_forall_session sess;
  
-       sess.uid = global->auth_session_info->unix_token->uid;
-       sess.gid = global->auth_session_info->unix_token->gid;
+       if (global->auth_session_info == NULL) {
+               sess.uid = -1;
+               sess.gid = -1;
+       } else {
+               sess.uid = global->auth_session_info->unix_token->uid;
+               sess.gid = global->auth_session_info->unix_token->gid;
+       }
         strncpy(sess.machine, global->channels[0].remote_name, sizeof(sess.machine));
         strncpy(sess.addr, global->channels[0].remote_address, sizeof(sess.addr));
  
diff --git a/source3/lib/sessionid_tdb.c b/source3/lib/sessionid_tdb.c

index 045b3d2f2debd71e964bd993670b23907f0cbbec..7a1961194194934ea03cb3d63f2b3aad82683351 100644 (file)
--- a/source3/lib/sessionid_tdb.c
+++ b/source3/lib/sessionid_tdb.c
@@ -38,16 +38,21 @@ static int sessionid_traverse_read_fn(struct smbXsrv_session_global0 *global,
                 (struct sessionid_traverse_read_state *)private_data;
         struct auth_session_info *session_info = global->auth_session_info;
         struct sessionid session = {
-               .uid = session_info->unix_token->uid,
-               .gid = session_info->unix_token->gid,
+               .uid = -1,
+               .gid = -1,
                 .id_num = global->session_global_id,
                 .connect_start = nt_time_to_unix(global->creation_time),
                 .pid = global->channels[0].server_id,
         };
  
-       strncpy(session.username,
-               session_info->unix_info->unix_name,
-               sizeof(fstring)-1);
+       if (session_info != NULL) {
+               session.uid = session_info->unix_token->uid;
+               session.gid = session_info->unix_token->gid;
+               strncpy(session.username,
+                       session_info->unix_info->unix_name,
+                       sizeof(fstring)-1);
+       }
+
         strncpy(session.remote_machine,
                 global->channels[0].remote_name,
                 sizeof(fstring)-1);
author	Björn Baumbach <bb@sernet.de>
	Fri, 5 Jul 2013 11:19:59 +0000 (13:19 +0200)
committer	Jeremy Allison <jra@samba.org>
	Tue, 9 Jul 2013 21:19:51 +0000 (14:19 -0700)
source3/lib/conn_tdb.c		patch \| blob \| history
source3/lib/sessionid_tdb.c		patch \| blob \| history