From bf772399bf38b16567b68e7fde102431e5a28135 Mon Sep 17 00:00:00 2001
From: Stefan Metzmacher <metze@samba.org>
Date: Fri, 23 Feb 2007 07:46:51 +0000
Subject: r21511: this seems to be the nicer fix for the problem with the
 windows 2000 LDAP client

metze
(This used to be commit d40465470fa09827ea529e1f2c80bca9efc152a8)
---
 source4/ldap_server/ldap_bind.c | 12 ++++--------
 1 file changed, 4 insertions(+), 8 deletions(-)

(limited to 'source4/ldap_server/ldap_bind.c')

diff --git a/source4/ldap_server/ldap_bind.c b/source4/ldap_server/ldap_bind.c
index 3d5df58e21..c0d3e67ff2 100644
--- a/source4/ldap_server/ldap_bind.c
+++ b/source4/ldap_server/ldap_bind.c
@@ -185,14 +185,10 @@ static NTSTATUS ldapsrv_BindSASL(struct ldapsrv_call *call)
 		status = gensec_update(conn->gensec, reply,
 				       input, &output);
 
-		/* TODO: gensec should really handle the difference between NULL and length=0 better! */
-		if (output.data) {
-			resp->SASL.secblob = talloc(reply, DATA_BLOB);
-			NT_STATUS_HAVE_NO_MEMORY(resp->SASL.secblob);
-			*resp->SASL.secblob = output;
-		} else {
-			resp->SASL.secblob = NULL;
-		}
+		/* Windows 2000 mmc doesn't like secblob == NULL and reports a decoding error */
+		resp->SASL.secblob = talloc(reply, DATA_BLOB);
+		NT_STATUS_HAVE_NO_MEMORY(resp->SASL.secblob);
+		*resp->SASL.secblob = output;
 	} else {
 		resp->SASL.secblob = NULL;
 	}
-- 
cgit