Skip to content

fix regression in ChannelBinding/NTLM auth #40222

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
wfurt merged 2 commits into from
Aug 3, 2020
Merged

fix regression in ChannelBinding/NTLM auth #40222

wfurt merged 2 commits into from
Aug 3, 2020

Conversation

@wfurt
Copy link
Member

@wfurt wfurt commented Jul 31, 2020

This regression caused by #32008. The old security buffer had dedicated size property. With the PR, we switched to using Span and Span.Length. However that is not correct for TokenBinding. For that the span is empty e.g. cbBuffer becomes 0 and OS will reject ChannelBinding buffer.
Alternatively we can convert the UnmanagedToken to Span as well. But since currently doing not have any good test infrastructure for this, I would prefer to limit the changes.

This effectively solves #39011 but I will leave it open until we have tests to prevent regression like this.

contributes to #39011.

@wfurt wfurt added this to the 5.0.0 milestone Jul 31, 2020
@wfurt wfurt requested a review from a team July 31, 2020 23:43
@wfurt wfurt self-assigned this Jul 31, 2020
@ghost
Copy link

ghost commented Jul 31, 2020

Tagging subscribers to this area: @dotnet/ncl
See info in area-owners.md if you want to be subscribed.

@geoffkizer
Copy link
Contributor

geoffkizer commented Aug 3, 2020

Aside from that, LGTM

@wfurt wfurt merged commit 436fd91 into dotnet:master Aug 3, 2020
@wfurt wfurt deleted the channelBind_39011 branch August 3, 2020 20:08
Jacksondr5 pushed a commit to Jacksondr5/runtime that referenced this pull request Aug 10, 2020
@wfurt @Jacksondr5
fix regression in ChannelBinding/NTLM auth (dotnet#40222)
9573a6d 
* fix regression in ChannelBinding/NTLM auth

* fix index
@karelz karelz mentioned this pull request Aug 10, 2020
Closed
This was referenced Aug 13, 2020
Closed
Closed
This was referenced Aug 25, 2020
Closed
Closed
@SteveL-MSFT
Copy link
Contributor

SteveL-MSFT commented Aug 28, 2020

@wfurt can you confirm if this change is already in .NET 5 preview 8?

@wfurt
Copy link
Member Author

wfurt commented Aug 28, 2020

It does not seems to @SteveL-MSFT. Looks like the fix missed the train and I don't see it in preview8 branch.

@SteveL-MSFT
Copy link
Contributor

SteveL-MSFT commented Aug 28, 2020

@wfurt thanks for the confirmation. The reported issues in the PowerShell web cmdlets repro'd with a build with .NET 5 preview 8 and was concerned that this PR didn't fix it. Looks like I'll have to see if it's fixed with RC1.

@wfurt
Copy link
Member Author

wfurt commented Aug 28, 2020

unfortunately, yes. You can always grab daily build if you have local repro outside of production.

@karelz karelz modified the milestones: 5.0.0, 6.0.0 Aug 28, 2020
@ghost ghost locked as resolved and limited conversation to collaborators Dec 7, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@geoffkizer geoffkizer geoffkizer approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@wfurt wfurt

Labels

area-System.Net.Security os-windows

Projects

None yet

Milestone

5.0.0

Development

Successfully merging this pull request may close these issues.

4 participants

@wfurt @geoffkizer @SteveL-MSFT @karelz