summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2003-08-04Changes to make gss-spnego ntlmssp client work against W2k AD.Volker Lendecke2-27/+59
Now I know where the mechListMIC changes came from: Ethereal ;-) Volker (This used to be commit 4e9eed1273035d09ac3b427b9711327ba8c6ebfc)
2003-08-04Fix unused variable warning.Tim Potter1-1/+1
(This used to be commit 73d02e3a2b0f9e84ab6d8685e4ad6a03ef9249b2)
2003-08-04Memory leak fix for create_rpc_bind_req()Tim Potter1-0/+1
(This used to be commit 4d26feabd75d5b298276b0c5880b9765507bb6ae)
2003-08-04More patches from Brett:Tim Potter1-20/+23
- remove 'if(mem_ctx)' tests prior to 'talloc_destroy' call to make consistent with other modules; 'talloc_destroy' already test for NULL anyway. - initialize PyObject* result pointers to NULL in function declarations; enables removal of redundant NULL assignments. - use local scope TALLOC_CTX in lsa_lookup_names to prevent unbounded memory growth during python policy object lifetime. - change context name string used in lsa_lookup_sids from 'lsa_open_policy' to 'lsa_lookup_sids' (cut'npaste oversight from previous patch) - change docstring to match module name (apparently another cut'npaste situation) (This used to be commit 98cac74c67c454f636df5c1ea2baa029c482e402)
2003-08-04Fix memory leak in py_smb_set_setdesc()Tim Potter1-10/+15
Consistency fixups in py_smb_query_secdesc() Thanks to Brett A. Funderburg for these patches. (This used to be commit 6c33189e50ae3704275198e324fcdb7facd209f7)
2003-08-03Fix up #defines around utmp_host and utmp_name. Noticed by ↵Jeremy Allison1-0/+6
Cord.Hockemeyer@uni-graz.at Jeremy. (This used to be commit 07c5ecb945c1189fd6e8628f5e989b90dd15163b)
2003-08-03Output message saying "signed connect" instead of just connect when signingJeremy Allison1-0/+1
is active. Jeremy. (This used to be commit c6674fa62865b64aa788a1903db118e4d773bcae)
2003-08-03Fix oplock break detection code on incoming oplock break responses. ThisJeremy Allison1-7/+15
fixes signing for oplocks. Jeremy. (This used to be commit 69c56ee8bce122839a8fec4e59198f84b0757166)
2003-08-03Removed duplicated file, no longer in use. Note: profiles.1.xml is stillJohn Terpstra1-86/+0
present and relevant. (This used to be commit 7b24759c270ffbc914aa0a45c8b7facbf6217c69)
2003-08-03Changed "winbind uid/gid" to "idmap uid/gid"John Terpstra2-6/+6
(This used to be commit d205dd963bb306935d3c02c94684fa1143436158)
2003-08-02make sure to initialize the backend methods when enumerating sequence ↵Gerald Carter1-0/+2
numbers; reported by Ken Cross (This used to be commit 10c7a1af67e556c17d4b3495934a2dad19728d77)
2003-08-02Ensure we don't leak any sign records on cancel of pending requests.Jeremy Allison3-0/+29
Jeremy. (This used to be commit 9a8ffc239c0f1aada713de7e9e007066738d8874)
2003-08-02Only look for mid sign records on incoming packets for oplock break replies.Jeremy Allison1-20/+28
Otherwise we find spurious mid sign records on reply_ntcancel calls (they cancel by mid). That took a *lot* of tracking down. I still need to remove the mid records from the sign state on reply_ntcancel to avoid leaking memory.... Jeremy. (This used to be commit 270bf20fe3e226ab5cfc689bd20ed4c22b2fa7e6)
2003-08-02More fixes for client and server side signing. Ensure sequence numbersJeremy Allison4-35/+108
are updated correctly on returning an error for server trans streams. Ensure we turn off client trans streams on error. Jeremy. (This used to be commit 3a789cb7f01115c37404e5a696de363287cb0e5f)
2003-08-02Leave the packet sequence checkers enabled whilst I track down a smbclient ↵Jeremy Allison1-2/+2
-> smbd sequence number problem. Jeremy. (This used to be commit 844898dbd8e99837ef1621aa73024714aa819ce4)
2003-08-02Add the same signing code to the server. Ensure we use identical sessionJeremy Allison4-12/+82
numbers and MIDs when in trans/trans2/nttrans code. Jeremy. (This used to be commit 901544b29b4d815709b3dbad3012f1d2c419d904)
2003-08-02Correct fix (removed the earlier band-aid) for what I thought was a signingJeremy Allison4-4/+97
bug with w2k. Turns out that when we're doing a trans/trans2/nttrans call the MID and send_sequence_number and reply_sequence_number must remain constant. This was something we got very wrong in earlier versions of Samba. I can now get a directory listing from WINNT\SYSTEM32 with the older earlier parameters for clilist.c This still needs to be fixed for the server side of Samba, client appears to be working happily now (I'm doing a signed smbtar download of an entire W2K3 image to test this :-). Jeremy. (This used to be commit 2093a3130d4087d0659b497eebd580e7a66e5aa3)
2003-08-01Fix the option processing for smbtar. Does no one check this !Jeremy Allison2-6/+35
Jeremy. (This used to be commit c4af1ec73584656fb9d2b372461da4748e1643f1)
2003-08-01add tests for IRIX attr functionsHerb Lewis1-1/+3
(This used to be commit ea57a57db036de6245ff44cd953dae3b482b4744)
2003-08-01Update my copyrights according to my agreement with IBMJim McDonough20-20/+20
(This used to be commit a2bd8f0bfa12f2a1e33c96bc9dabcc0e2171700d)
2003-08-01Update my copyrights according to my agreement with IBMJim McDonough12-12/+12
(This used to be commit c9b209be2b17c2e4677cc30b46b1074f48878f43)
2003-08-01Fix copyright statements for various pieces of Anthony Liguori's work.Jim McDonough23-25/+19
(This used to be commit 15d2bc47854df75f8b2644ccbc887d0357d9cd27)
2003-08-01fix cut-n-paste error found by abartletGerald Carter1-8/+10
(This used to be commit 042492b862c4f2389086275dd8a0e044d7432537)
2003-08-01Add ntlmssp client support to ntlm_auth. Find the corresponding cyrus saslVolker Lendecke1-25/+310
module under http://samba.sernet.de/cyrus-gss-spnego.diff Volker (This used to be commit a82f6a00969f7ea377626c28ec05ace04f8135a9)
2003-08-01Fix a memory leak. I did not check all the calls to winbindd_request, butVolker Lendecke1-0/+2
we might leak the extra_data somewhere else as well. Volker (This used to be commit 5d379345fa06f4253f67b40cb8127b70072db561)
2003-08-01locking.c now refers to map_nt_error_from_unix, so link it in withVolker Lendecke1-2/+2
smbstatus and smbcontrol Volker (This used to be commit c2c901e06b9723e33cccdb592c609072b4376c10)
2003-08-01Finish reformatting.Jeremy Allison1-516/+467
Jeremy. (This used to be commit 5ef75fa36620a87e8fd8567b854ea0770d8125ea)
2003-08-01Final fix for the bug tridge found. Only push locks onto a blocking lockJeremy Allison2-1/+6
queue if the posix lock failed with EACCES or EAGAIN (this means another lock conflicts). Else return an error and don't queue the request. Jeremy. (This used to be commit 43fbc18fdc184bf29c15186c16bc99fb208de963)
2003-08-01Reformat lots of clitar code as I hate the style so much :-).Jeremy Allison1-563/+540
Jeremy. (This used to be commit 77f2a91549c8b61e74e2088faef2b61612803aed)
2003-08-01Reformat clitar option processing - getting ready to fix it for popt...Jeremy Allison1-183/+176
Jeremy. (This used to be commit 94b30e7b4a4f71d3aa2fefee60b9ea8ead2acccd)
2003-07-31CVAL_NC() doesn't need the (unsigned) fix and breaks the IRIX buildAndrew Tridgell1-1/+1
Thanks to Herb for pointing this out! (This used to be commit 87ede8d310db10d92b4ff57e67d3b53cbb7697fb)
2003-07-31Added a note inspired by andrew@cis.uoguelph.ca to explain when thisJeremy Allison1-0/+7
parameter gets run. Jeremy. (This used to be commit c5e11fd01003fa2d85c91ec81afd2cb2498472f5)
2003-07-31only honor the first OID in the sessetup snego negotiate. DeviatesGerald Carter1-4/+15
from RFC but I'm smelling a client bug here. /* only look at the first OID for determining the mechToken -- accoirding to RFC2478, we should choose the one we want and renegotiate, but i smell a client bug here.. Problem observed when connecting to a member (samba box) of an AD domain as a user in a Samba domain. Samba member server sent back krb5/mskrb5/ntlmssp as mechtypes, but the client (2ksp3) replied with ntlmssp/mskrb5/krb5 and an NTLMSSP mechtoken. --jerry */ (This used to be commit 731420b03dbc15977822f74047e931dc62284fc0)
2003-07-31Return proper error when it is impossible to change quota flagsAlexander Bokovoy1-2/+23
(This used to be commit 44bae9da9e03a1df738367f8d86adb0f315da41f)
2003-07-31Fix off-by-one found by valgrind.Volker Lendecke1-1/+1
Volker (This used to be commit bc39c9b57fa6258674e1ee44b3446f25bf63661e)
2003-07-31spnego.c has function definitions. Prototype them.Volker Lendecke1-1/+1
Anybody familiar with Makefile.in could you please look at this? This is probably the wrong way to fix this. Volker (This used to be commit 9a04750dea1b614604e6f9a0f69a251391994a71)
2003-07-31Fixes for memory leaks in gss spnego handling by aliguori.Volker Lendecke1-13/+9
Volker (This used to be commit 946695242f0a6db0e8c712f9bd97ac3cb99c4119)
2003-07-31This fixes an error I must have made when playing with spnego.c foundVolker Lendecke1-14/+35
by aliguori: NegTokenInit.mechListMIC is an Octet String. Second: add a free_spnego_data function. Both thanks to aliguori. Volker (This used to be commit 6c252440fba33eb69827d5515a95fbb3e8e9a653)
2003-07-31Apply some constVolker Lendecke1-2/+2
(This used to be commit 692ff44ba39cd24dbc906e0319bc51c8be9cc267)
2003-07-31make sure the domain sid is set when enumerating trusted domainsGerald Carter1-1/+24
(we don't always get it back) (This used to be commit 6e8f23d1b1dd5122691cd9363a5c572fcab182af)
2003-07-31working on transtive trusts issue:Gerald Carter9-144/+174
* use DsEnumerateDomainTrusts() instead of LDAP search. wbinfo -m now lists all trusted downlevel domains and all domains in the forest. Thnigs to do: o Look at Krb5 connection trusted domains o make sure to initial the trusted domain cache as soon as possible (This used to be commit 0ab00ccaedf204b39c86a9e1c2fcac5f15d0e033)
2003-07-31Whoops - this is probably better shell syntax.Tim Potter1-2/+1
(This used to be commit 4644085b682c806796f9acf2ed73de9dd9872738)
2003-07-31Turn on automatic winbindd support for FreeBSD and see what the compile farmTim Potter1-0/+1
thinks of it. (This used to be commit e6210295e4daa5f1768616b4d8390a173c5c67ae)
2003-07-31This is a critical bug fix for a data corruption bug. If youAndrew Tridgell1-2/+2
maintain another tree then please apply! On non-X86 machines out byte-order macros fails for one particular value. If you asked for IVAL() of 0xFFFFFFFF and assigned it to a 64 bit quantity then you got a 63 bit number 0x7FFFFFFFFFFFFFFF rather than the expected 0xFFFFFFFF. This is due to some rather bizarre and obscure sign extension rules to do with unsigned chars and arithmetic operators (basically if you | together two unsigned chars you get a signed result!) This affected a byte range lock using the large lockingX format and a lock of offset 0 and length 0xFFFFFFFF. Microsoft Excel does one of these locks when opening a .csv file. If the platform you run on does not then handle locks of length 0x7FFFFFFFFFFFFFFF then the posix lock fails and the client is given a lockingX failure. This causes the .csv file to be trunated!! (This used to be commit 886661c3777dbfd4fa431746c8a5f48674a12b8e)
2003-07-31Wrap calls to change_oem_password() in become_root()/unbecome_root() pairsJeremy Allison3-73/+78
to allow UNIX password change scripts to work correctly. This is safe as the old password has been checked as correct before invoking this. Jeremy. (This used to be commit 1734d43eb55561d46a6ffb5d806afedfd3746f9f)
2003-07-31Turn the 'doing_signing' variable on - fix bug where it was only being setJeremy Allison1-1/+1
on when signing was mandatory. Jeremy. (This used to be commit 7c58673a103195435ca75ebb2684880d1f7242d3)
2003-07-30Add a command line option (-S on|off|required) to enable signing on clientJeremy Allison19-21/+72
connections. Overrides smb.conf parameter if set. Jeremy. (This used to be commit 879309671df6b530e0bff69559422a417da4a307)
2003-07-30Save us from possibly uninitialised variable (caught by gcc).Jeremy Allison1-4/+4
Jeremy. (This used to be commit f3f29665bd2c396c4756cd23f603ac768fea66fd)
2003-07-30Fix bug we discovered in W2K client signing on secondary trans2 packets.Jeremy Allison1-2/+3
Use W2K parameters. tpot please re-test smbclient with your problem directory. Jeremy. (This used to be commit 677d3a3c4ca0b67148e5e56fa876773a067679bd)
2003-07-30Eliminate valgrind error when client gets bad sig on list. Some reformatting.Jeremy Allison2-12/+25
Jeremy. (This used to be commit b8f6b836468b3a0ae75977dc65cae8400f74734c)