summaryrefslogtreecommitdiff
path: root/libcli
AgeCommit message (Collapse)AuthorFilesLines
2010-06-21libcli/named_pipe_auth: fix error handling in _tstream_npa_connect_recv()Stefan Metzmacher1-0/+2
metze
2010-06-21libcli/named_pipe_auth: fix memory handling for temporary dataStefan Metzmacher1-5/+6
In a tevent_req based function tevent_req_create() should be the first function! If it fails it's the only reason, why the function could every return NULL. And all temporary data belongs to 'state' and gets free'ed by tevent_req_received() in the _recv function. metze
2010-06-21s3/s4 - remove "talloc_tos()" from common code since s4 doesn't support itMatthias Dieter Wallnöfer2-5/+10
Please don't use this in common code parts until we change the policy regarding it.
2010-06-19libcli: Fixed a segfault in security_acl_dup when the acl is NULL.Brendan Powers1-0/+4
This can happen when duplicating a security descriptor that is missing either sacls or dacls. Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2010-06-14Fix warning messages about unused result of talloc_move. We're really ↵Jeremy Allison1-3/+3
talloc_steal'ing here.
2010-06-07named_pipe_auth Always lower case the incoming pipe nameAndrew Bartlett1-1/+7
Windows connects to an upper case NETLOGON pipe, and we can't find the socket to connect to until we lower case the name. Andrew Bartlett
2010-06-01s4:ntlmssp Use common code for ntlmssp_sign.cAndrew Bartlett2-18/+19
The common code does not have a mem_ctx on ntlmssp_check_packet() and ntlmssp_unseal_packet(). We do however need some internal working of the code exposed, so some structures are moved to ntlmssp_sign.h Andrew Bartlett
2010-05-31s3:ntlmssp Move ntlmssp_sign.c from source3 to common code.Andrew Bartlett4-0/+696
This needs a small re-arrangement of the supporting code. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31ntlmssp: Make the ntlmssp.h from source3/ a common headerAndrew Bartlett1-0/+139
The code is not yet in common, but I hope to fix that soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31libcli/nbt/lmhosts: fix missing prototype warning.Günther Deschner1-0/+1
Andrew, please check. Guenther
2010-05-26named_pipe_auth: implement tstream_npa_accept_existing_send/recvSimo Sorce2-0/+521
Pair-programmed-with: Stefan Metzmacher <metze@samba.org>
2010-05-21Make DFS work over SMB2.Jeremy Allison1-0/+9
Jeremy.
2010-05-20Fix what looks like a cut-and-paste error in our read_negTokenInit() function.Jeremy Allison1-4/+4
We should never be calling asn1_push_XXX functions inside an asn1 reading function. Change asn1_push_tag() -> asn1_start_tag() and asn1_pop_tag() -> asn1_end_tag(). This allows us to connect to a NetApp filer at the Microsoft plugfest. Andrew PLEASE CHECK ! Jeremy.
2010-05-19Thanks to Andrew Bartlett's advice, fix the NTLMSSP version problem the ↵Jeremy Allison1-1/+4
correct way. No more magic blobs :-). Use ndr_push_struct_blob() to push a properly formatted VERSION struct. Jeremy.
2010-05-18s3: Remove use of iconv_convenience.Jelmer Vernooij1-8/+2
2010-05-18Finish removal of iconv_convenience in public API's.Jelmer Vernooij20-106/+50
2010-05-06Remove the copy of ldb from Samba 3.Jelmer Vernooij1-0/+4
There were two utility functions that other parts of Samba 3 still relied on; they have been moved to lib/ldb_compat.[ch].
2010-04-28libcli/named_pipe_auth: we need to hide length of the message mode header ↵Stefan Metzmacher1-1/+12
from the caller metze
2010-04-27nbt: samlogon/netlogon structures - unify denominationsMatthias Dieter Wallnöfer2-5/+5
2010-04-27registry: add some shared registry helper functions.Günther Deschner1-0/+140
Guenther
2010-04-18s4-waf: removed the unused installdir= option to SAMBA_BINARY()Andrew Tridgell1-1/+0
This was left over from the automatic conversion of the config.mk files
2010-04-11libcli/auth: Fix an uninitialized variableVolker Lendecke1-2/+1
value.dptr was used uninitialized in the "goto done;"
2010-04-06s4-waf: removed the AUTOGENERATED markersAndrew Tridgell6-18/+0
we won't be using the mk -> wscript generator again
2010-04-06s4-waf: more dependencies on tallocAndrew Tridgell2-5/+3
these are needed so we can support a system talloc without using the bundled talloc.h
2010-04-06s4-waf: cleanup use of LIBPOPT vs popt dependencyAndrew Tridgell1-1/+1
2010-04-06s4-waf: fixed some deps now we don't auto-include tevent and replaceAndrew Tridgell1-1/+1
this is preparation for being able to use system versions of these libraries
2010-04-06s4-waf: mark the wscript files as python so vim/emacs knows how to highlight ↵Andrew Tridgell9-0/+18
them
2010-04-06s4-waf: install the rest of the headersAndrew Tridgell2-9/+1
2010-04-06build: waf quicktest nearly worksAndrew Tridgell2-2/+2
Rewrote wafsamba using a new dependency handling system, and started adding the waf test code
2010-04-06build: commit all the waf build files in the treeAndrew Tridgell9-0/+144
2010-03-30libcli/nbt/dns_hosts_file.c - change "ULONG_MAX" into "UINT32_MAX"Matthias Dieter Wallnöfer1-1/+1
This fits better since the variable which is tested is of type "uint32_t".
2010-03-28Attempt to fix the build on AIX, that system seems to have a #define for s_typeVolker Lendecke1-18/+35
2010-03-26libutil: moved the networking defines to util_net.hAndrew Tridgell1-0/+1
These were causing thousands of warnings on solaris8
2010-03-19error_codes: fix NT_STATUS_RPC_UNKNOWN_IF typo.Günther Deschner1-1/+1
Metze, please check. Guenther
2010-03-18libcli/util: add more NT_STATUS_RPC_* definesStefan Metzmacher1-4/+11
metze
2010-03-16libcli/auth/schannel_state_tdb.c - fix a memory leakMatthias Dieter Wallnöfer1-0/+1
2010-03-11libcli/nbt Add parser for a 'hosts' file that takes DNS record typesAndrew Bartlett3-0/+313
2010-03-09libcli/auth/schannel_state_tdb.c - fix an obviously wrong error handlingMatthias Dieter Wallnöfer1-1/+0
2010-03-05libcli/auth: add a const to des_crypt112_16()Stefan Metzmacher2-2/+2
metze
2010-03-03Fix typo in comments.Karolin Seeger1-1/+1
2010-03-03libcli/security: fix sddl.c to be able to build it from source3Michael Adam1-1/+1
2010-03-03s4:move the sddl code down to the top levelMichael Adam3-1/+659
Michael
2010-02-26libcli/auth: print the error in the debug messageStefan Metzmacher1-1/+2
metze
2010-02-23s4:cleanup remove unused schannel ldb codeSimo Sorce2-339/+0
2010-02-23s4:schannel merge code with s3Simo Sorce1-2/+2
After looking at the s4 side of the (s)channel :) I found out that it makes more sense to simply make it use the tdb based code than redo the same changes done to s3 to simplify the interface. Ldb is slow, to the point it needs haks to pre-open the db to speed it up, yet that does not solve the lookup speed, with ldb it is always going to be slower. Looking through the history it is evident that the schannel database doesn't really need greate expanadability. And lookups are always done with a single Key. This seem a perfet fit for tdb while ldb looks unnecessarily complicated. The schannel database is not really a persistent one. It can be discared during an upgrade without causing any real issue. all it contains is temproary session data.
2010-02-23schannel_tdb: make code compilable in both treesSimo Sorce2-51/+98
2010-02-23s3:schannel streamline interfaceSimo Sorce2-42/+181
Make calling schannel much easier by removing the need to explicitly open the database. Let the abstraction do it instead.
2010-02-23s3:schannel fix memory hierarchySimo Sorce1-1/+1
passing mem_ctx was causing creds->sid to be allocated on mem_ctx and not be child of creds as expected. When later in schannel_check_creds_state() we stole the creds on a different memory context the sid was left behind and the memory it points to freed when the temporary context was freed.
2010-02-23schannel: merge header filesSimo Sorce2-48/+34
One almost empty header file was simply including another not included by anything else. Just merge them together.
2010-02-23s4:schannel more readable check logicSimo Sorce2-12/+0
Make the initial schannel check logic more understandable. Make it easy to define different policies depending on the caller's security requirements (Integrity/Privacy/Both/None) This is the same change applied to s3