9273 – LSARPC conections using forked lsasd daemon fail to poerate properly with MS testsuite

Bug 9273 - LSARPC conections using forked lsasd daemon fail to poerate properly with MS testsuite

Summary: LSARPC conections using forked lsasd daemon fail to poerate properly with MS ...

Status:	NEW

Alias:	None

Product:	Samba 4.0
Classification:	Unclassified
Component:	DCE-RPCs and pipes (show other bugs)
Version:	unspecified
Hardware:	All All

Importance:	P5 normal (vote)
Target Milestone:	---
Assignee:	Alexander Bokovoy
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2012-10-09 13:42 UTC by Simo Sorce
Modified:	2012-10-09 13:42 UTC (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Simo Sorce 2012-10-09 13:42:40 UTC

Not clear why this happens but if we use the forked lsasd daemon the MS-LSAT testsuite from Microsoft fails to run against samba/freeipa The symptom according to the logs I reviewed in the labs were that for each new LSA request smbd would try to open a new pipe to the lsasd daemon instead of resuing the existing pipe where the RPC BIND was previously performing, causing the new request to run unauthenticated (and then failing with ACCESS DENIED of course).

An additional issue seem to be that we force context_id to 1 in source3, we don't do that in source4 dcerpc code and the MS testsuite had issues with that.

Also tracked here: https://fedorahosted.org/freeipa/ticket/3135