Setup: - Two samba3-style domains DOM1 and DOM2 with mutual trust. - user2 in DOM2 - Windows member server FS1 in DOM1. with a share "SHARE1" - reauth capable member workstation WKS2 in DOM2. Problem: Trying to access //FS1/SHARE1 with DOM2\user2 from WKS2 fails with error STATUS_SESSION_EXPIRED (NT code 0xc000035c). Analysis: The reason is that the time stamp acct_expiry timestamp is not converted correctly in the wbcAuthUserInfo_to_netr_SamInfo3() function. It is left as unix time stamp instead of nttime. Hence, the timestamp, when interpreted as nttime, is very far in the past and the session is treated as expired. Note: - smbclient does not set the CAP_DYNAMIC_REAUTH flag in session setup, hence the server does not send session expired. - samba does not correctly inspect the expiry fileds and hence does not expire the session for a reauth-capable client (which is a different bug to be filed).
Patch for master is in autobuild.
Created attachment 8524 [details] patch for v3-6-test Patch for v3-6-test.
Patch for v4-0-test will follow as cherry-pick after master autobuild has succeeded.
Created attachment 8531 [details] patch for v4-0-test cherry-picked from master
assigning to metze for review
Comment on attachment 8531 [details] patch for v4-0-test Looks good
Comment on attachment 8524 [details] patch for v3-6-test Looks good
Pushed to v3-6-test and autobuild-v4-0-test.
Pushed to v4-0-test. Closing out bug report. Thanks!