Age | Commit message (Collapse) | Author | Files | Lines |
|
Volker
(This used to be commit f42032060812e9bf409042c790e71fefb40ff17a)
|
|
Thanks to Guenther Deschner <gd@suse.de>
Volker
(This used to be commit 52250e42a99390deb58478305410b93b877aa015)
|
|
(This used to be commit 52c2b2418d3ba0d64dcaa2e1d0be3b240cd6c636)
|
|
(This used to be commit 3247b6be7a284c10c2885854a0da0501fb2f506e)
|
|
(This used to be commit 051b33e98f94ad09b4d8816a88e78715e7dc2a5e)
|
|
(This used to be commit 12110a263b5ac65d6b965ccbe19b7be3025f0373)
|
|
Volker
(This used to be commit da83d97eb50c3c3a67985e22410842100207431f)
|
|
Volker
(This used to be commit 71906a5b4e4f93ebd4c27a0d22d74aad62e14924)
|
|
Jeremy.
(This used to be commit e619c50834a06b3026dc6b8603d1f88268bbdbc1)
|
|
Jeremy.
(This used to be commit 1c6ea31b8f48b93606f4c5b6a0472571dc8a471e)
|
|
Jeremy.
(This used to be commit f93c64b5ca1bc21f5fa89200034cd82dcbc0910b)
|
|
Jeremy.
(This used to be commit 478a5c654a6d2765b726e9a8ef64af7716cb56c0)
|
|
Jeremy.
(This used to be commit da1271a95fce7fd217555fb161d4669d0b9b80e2)
|
|
(This used to be commit 38a6ad95d789b3ece7a8e697195c8851663b3cd9)
|
|
(This used to be commit fa10640630cd893c30aa75f8b94e906199cecbe6)
|
|
buffer size.
(This used to be commit 27ec538eca0905e1f749de4c49cc2555c5932d5c)
|
|
A much better SMB signing module, that allows for mulitple signing algorithms
and correctly backs down from signing when the server cannot sign the reply.
This also attempts to enable SMB signing on NTLMSSP connections, but I don't
know what NTLMSSP flags to set yet.
This would allow 'client use signing' to be set by default, for server
compatability. (A seperate option value should be provided for mandetory
signing, which would not back down).
Andrew Bartlett
(This used to be commit 1c87be7a3d127201a6ab78d22d17c971af16b86b)
|
|
Andrew Bartlett
(This used to be commit fb29caddd987f94989f852584b912eeee45b50da)
|
|
Andrew Bartlett
(This used to be commit f4ae028c2ad6ff8c7da3a6ef77a92762861144e1)
|
|
This patch catches up on the rest of the work - as much string checking
as is possible is done at compile time, and the rest at runtime.
Lots of code converted to pstrcpy() etc, and other code reworked to correctly
call sizeof().
Andrew Bartlett
(This used to be commit c5b604e2ee67d74241ae2fa07ae904647d35a2be)
|
|
(This used to be commit 196628432130f826505187a27207a7b947e034cf)
|
|
(This used to be commit 29d909b184e0044f728091f3215eeb58bbeff437)
|
|
Andrew Bartlett
(This used to be commit 92bd0f69df4eef612b73da00e45d244f5236afa2)
|
|
(This used to be commit 454fb434195b8d46cbcbaee6a200070e5bcd7364)
|
|
'set_local_machine_name' so that the client can't change it from under us.
(.NET RC2 and WinXP install calls the machine 'machinename' during NTLMSSP
on the domain join).
Andrew Bartlett
(This used to be commit 4c7163e7c2cc09bd95faa05156ee480957a7a4d8)
|
|
(This used to be commit ed245023016779700571d108e7b9339236bcbe7c)
|
|
used to be commit f0d009c3e91979b0dc3443e16f3f545bcc64cfda)
|
|
grows too much larger.
(This used to be commit 4bbddbfc6a97ebb11e299aa7bd07ebebeab42c65)
|
|
(This used to be commit fb91bfa7a28f548dcc549f7e09805e4485c83538)
|
|
(This used to be commit 8cabdd635df2455d9b25604f2ea0fb85efa067e2)
|
|
(This used to be commit 067810ed4a38c567e64e683a24cdd405479b5ee1)
|
|
(This used to be commit fc0b2fcf977b9014d2478296168b22e9faa22108)
|
|
(This used to be commit 195582c4cb7906ab95e47f5a2aea4ae86a7ab023)
|
|
(This used to be commit 8d64419625dda242fdb7a5d956644b052b43a2ea)
|
|
(This used to be commit 5ac062580690eee9b4bd423dbb82631c0cdb8b30)
|
|
Add bin/t_stringoverflow test case. Not built by default.
(This used to be commit 7741bb8d18e7ba16522c00513174f2909d75535d)
|
|
trapped at runtime, which is great. So we have to try a little harder
to provoke an overflow -- which is still caught nicely in developer
mode.
(This used to be commit cea126f62ad411f5efbebc7c5d39297fd8ef9efb)
|
|
requests, without needing --client-perms=yes.
(This used to be commit 412a8780c35ee9449c9682e3ef73afb2c4933285)
|
|
(This used to be commit 8da383bb3e63d25ceb0204c775580f2f1b3336ec)
|
|
clobbering the region, just in case clobbering causes us to crash
immediately. (That might happen if we just shot ourselves in the
stack and strcpy was not inlined.)
Also, in DEVELOPER mode and when Valgrind is available, mark the
clobbered region as uninitialized. This is an even stronger
protection than clobbering with 0xf1.
(This used to be commit 5653a42ae695f4b8f4c14d3184ca76523d38b51b)
|
|
(This used to be commit e1baab1ee04b27447445351d0d88b0c02a5fa85d)
|
|
is as stable as possible in the string department and some pain now
will help later :-).
Jeremy.
(This used to be commit 86e3eddac698d90f4666b8492b4603a4efbbd67b)
|
|
when auth_smbd functionality merged to HEAD.
(This used to be commit 2b6d13672dc1e4a46fc2600e729c22d0ee7e534b)
|
|
before this can be fully implemented. )-:
(This used to be commit a040a8471f884cb295100f841594d86ddf754bb6)
|
|
Original message:
This patch attemptes to clean up winbindd's mutex locking.
The current locking scheme in winbind is a complete mess - indeed, the
next step should be to push the locking into cli_full_connection(), but
I'll leave it for now.
This patch works on the noted behaviour that 2 parts of the connection
process need protection - and independent protection. Tim Potter did
some work on this a little while back, verifying the second case.
The two cases are:
- between connect() and first session setup
- during the auth2 phase of the netlogon pipe setup.
I've removed the counter on the lock, as I fail to see what it gains us.
This patch also adds 'anonymous fallback' to our winbindd -> DC connection.
If the authenticated connection fails (wbinfo -A specifed) - say that
account isn't trusted by a trusted DC - then we try an anonymous.
Both tpot and mbp like the patch.
Andrew Bartlett
(This used to be commit b5283c00a900393b83f0edb2785c5caf402404eb)
|
|
signed/unsigned (mostly i counters)
a little bit of const.
Andrew Bartlett
(This used to be commit 50f0ca752e5058c4051f42a9337361373ba1f727)
|
|
net ads password
Heimdal compile fixes.
Andrew Bartlett
(This used to be commit 3aa4f923e99f453310bb4a8d43ce43757591909d)
|
|
- Make ReadDirName return a const char*.
- Consequential changes from that
- mark our fstring/pstring assumptions in function prototypes
Andrew Bartlett
(This used to be commit 10b53d7c6fd77f23433dd2ef12bb14b227147a48)
|
|
Andrew Bartlett
(This used to be commit 64796ed27a3842be1dde52dd4f46698e95961767)
|
|
session key and auth verifier patches.
Andrew Bartlett
(This used to be commit 3f9616a68a855acbae3f405c27ee2358fbe7ba2c)
|