summaryrefslogtreecommitdiff
path: root/source3/include
AgeCommit message (Collapse)AuthorFilesLines
2003-02-13A few typo fixes Andrew eventually let off to me.Rafal Szczesniak1-3/+3
Rafal (This used to be commit 16a66cf17a544a214b7c5b483c81c7568a18a779)
2003-02-10added the 'lsaenumacctwithright' command to rpcclient. This allows youAndrew Tridgell2-1/+33
to lookup what SIDs have a particular privilege (that is how privileges are stored). (This used to be commit 3ddb5fb0dd33992b7db54a661752551a3fefc0b4)
2003-02-10Some cleanups:Andrew Bartlett1-0/+2
- Don't use pstrcpy into an allocated string - use safe_strcpy() directly instead. - Keep a copy of the 'server_info' attached to the vuid. In future use this for things like the session key, homedir and full name instead of current copies. - Try to avoid memory leak/segfault on Realloc failure - clear up #endif comments Andrew Bartlett (This used to be commit 162477bb086827950b6cb71afa9bef62c2753c2e)
2003-02-09(only for HEAD at the moment).Andrew Bartlett1-1/+1
Add NTLMv2 support to our client, used when so configured ('client use NTLMv2 = yes') and only when 'client use spengo = no'. (A new option to allow the client and server ends to chose spnego seperatly). NTLMv2 signing doesn't yet work, and NTLMv2 is not done for NTLMSSP yet. Also some parinoia checks in our input parsing. Andrew Bartlett (This used to be commit 85e9c060eab59c7692198f14a447ad59f05af437)
2003-02-06ignore config.h.in in cvs as generated by autoheaderAndrew Tridgell1-0/+1
(This used to be commit 830423abd843dd20535755f910bc1e9563a0774f)
2003-02-06Remove configure and config.h.in from CVS.Andrew Bartlett1-1894/+0
configure and config.h.in is now regenerated by the 'autogen.sh' script. However, samba.org will run autoconf and autoheader to keep the anonyomous rsync 'unpacked' areas intact (helping the build farm), and released will ship with the genereated files. Andrew Bartlett (This used to be commit 15bba73dea51a6394294fc627933d026d6002091)
2003-02-06added the LSA privileges server backend stubs. Right now they just logAndrew Tridgell1-2/+0
what was requested. (This used to be commit 64ac6c2bcb729c4658de48e929cc792681903ecc)
2003-02-01We now have client-side SMB signing support!Andrew Bartlett1-0/+1
This checking allows us to connect to Microsoft servers the use SMB signing, within a few restrictions: - I've not get the NTLMSSP stuff going - it appears to work, but if you break the sig - say by writing a zero in it - it still passes... - We don't currently verfiy the server's reply - It works against one of my test servers, but not the other... However, it provides an excellent basis to work from. Enable it with 'client signing' in your smb.conf. Doc to come (tomorrow) and this is not for 3.0, till we get it complete. The CIFS Spec is misleading - the session key (for NTLMv1 at least) is the standard session key, ie MD4(NT#). Thanks to jra for the early work on this. Andrew Bartlett (This used to be commit 1a2738937e3d80b378bd0ed33cd8d395fba2d3c3)
2003-02-01Bitmap offsets and counts are always positive.Andrew Bartlett1-1/+1
(This used to be commit 8f495e8634a1777c4b03d3ec07c76f905ff2fb98)
2003-01-30Sync up with 3.0 heimdal.Jeremy Allison1-0/+8
Jeremy. (This used to be commit 371f4aca9204f3c093af622ec6c9ea7c5145bf85)
2003-01-30Fix kerberos compile after the tpot massicre :-).Jeremy Allison1-1006/+1115
Jeremy (This used to be commit d63849db6d02b1a9430072e6e15a67e1c526e5e7)
2003-01-30Fix for interesting resource constraint condition. When all opens areJeremy Allison1-1/+3
level 2 and a request for open with no oplock is received then the smbd should send *synchronous* break messages, not asynchronous, otherwise it spins very rapidly, releasing the lock, sending the 'break to none' messages and then re-acquiring the lock before any other process has a chance to get the lock and remove it's own oplock (at least on linux). Jeremy. (This used to be commit d1e8991a76a57b7d96dd7db3c1d9bbf5b28da88e)
2003-01-28added LsaRemoveAccountRightsAndrew Tridgell1-3/+20
this now gives us complete remove privileges control in the client libs, so we are in good shape for starting on the server side. (This used to be commit bf99440398db86f46233eb2f5adddffb61280a1b)
2003-01-28cleaned up the lsa_enum_acct_rights function and added aAndrew Tridgell2-8/+23
lsa_add_acct_rights function. This allows us to add privileges remotely to accounts using rpcclient. (This used to be commit 2e5e659e095a94b0716d97f673f993f0af99aabe)
2003-01-28Factor out common code in the NTLMSSP/SPNEGO code.Andrew Bartlett1-0/+4
The idea here is to seperate, as much as possible, the SPNEGO layer from the NTLMSSP layer. This not only helps us with protocol correctness, but also should allow further mechinisms to be added with relitive ease. I indend to make the kerberos code use this shortly. I've never seen the 'zero length blob' form of the anonymous login, so I've removed that case. Andrew Bartlett (This used to be commit a8773c9f825539c5bc17e4200b16d7ebbe0b7620)
2003-01-24Commit just a little more infrastructure for HAVE_GETDIRENTRIESRichard Sharpe1-1/+1
(This used to be commit fdd449fe7b4e858765f485cbbe2cc1b91a4e0c53)
2003-01-24At the prompting, start to add infrastructure to detect the presence ofRichard Sharpe1-0/+3
getdirentries. We would also detect getdents if present. This has some rudimentary support already. (This used to be commit 916c8784d21f566a1fb048301c3e78a9ecc52ea8)
2003-01-21Fixup proto generation to not include krb5 specific symbolsJeremy Allison1-0/+3
if no kerberos selected. Noticed by Metze. Jeremy. (This used to be commit 1684719695acb7168115b032fc1ec672509239ea)
2003-01-21More fixes getting us closer to full Heimdal compile....Jeremy Allison1-0/+6
Jeremy. (This used to be commit 193cc4f4fc876c66e97ea6b82bae431d0247c1fa)
2003-01-19Merge in more of the SuSE patches for Heimdal. These changes show howJeremy Allison2-0/+21
to add a function without an explicit #ifdef HEIMDAL which I'm trying to avoid. Jeremy. (This used to be commit 77aeb262ef7c7cd3d206afe2d5445caaca943dfd)
2003-01-17Enable dynamic loading of RPC modules. See docs/textdocs/RPC_PLUGGIN.txt ↵Jim McDonough2-1049/+999
for instructions. (This used to be commit d51e12df78ff8fc721d693fedbd1c633f39edd49)
2003-01-16Fixed up mutex protection around winbindd logon code. Sync with APP-HEAD.Jeremy Allison1-0/+8
Jeremy. (This used to be commit 3d04872499332ef2d8e7479b924afc8fc1ac29d7)
2003-01-16Updates to the NTLMSSP code again - moving the base64 decode fuctionality outAndrew Bartlett1-2/+4
of the SWAT code, and adding a base64 encoder. The main purpose of this patch is to add NTLMSSP support to 'ntlm_auth', for use with Squid. Unfortunetly the squid side doesn't quite support what we need yet. Changes to winbind to get us the info we need, and a couple of consequential changes/cleanups in the rest of the code. Andrew Bartlett (This used to be commit fe50ca8f54ded2e119bde08831785fbe0db2ee99)
2003-01-16More Heimdal changes. Still not compiling with Heimdal yet...Jeremy Allison2-0/+7
Jeremy. (This used to be commit c3544c119e4cafb817479b4c5dfae178c3de000b)
2003-01-16Fist part of fixes to make us compile with Heimdal. Don't explicitlyJeremy Allison2-1/+11
detect for now, I still have vague hopes of hiding the differences between MIT and Heimdal with a compatibility layer.... Jeremy. (This used to be commit a776fbef3244ae82a17c57a7f62de115fd023c86)
2003-01-15small merges from SAMBA_3_0; mostly typos, renames, etc...Gerald Carter1-1/+0
(This used to be commit 9ac196dad4893b0ceef13281a140be5d85391e6c)
2003-01-15Refactor the NTLMSSP code again - this time we use function pointers toAndrew Bartlett2-4/+22
eliminate the dependency on the auth subsystem. The next step is to add the required code to 'ntlm_auth', for export to Squid etc. Andrew Bartlett (This used to be commit 9e48ab86da40e4c1cafa70c04fb9ebdcce23dfab)
2003-01-15added cli_lsa_enum_account_rights() call. Note that this is inAndrew Tridgell2-0/+33
principal similar to the existing cli_lsa_enum_privsaccount() call, except that cli_lsa_enum_account_rights() doesn't require a call to open_account first. There is also the minor matter that cli_lsa_enum_account_rights() works whereas cli_lsa_enum_privsaccount() doesn't! this call can be used to find what privileges an account or group has. This is a first step towards proper privileges support in Samba. (This used to be commit 65bac11d716f873dcdbda528313c33634c26a072)
2003-01-15Run autoheaderMartin Pool1-6/+0
(This used to be commit 82e4bb598c9fc26eaa090687d0daa6505fa0d550)
2003-01-14Commit my (disabled) fstring/pstring mixup detection code.Andrew Bartlett1-0/+21
We need to fix some 'overmalloc' cases before it can be enabled by default. Andrew Bartlett (This used to be commit 2c2c52a18be1bd0a5ae1f4a48b1d9e18f4887dda)
2003-01-13Updates to our NTLMSSP code:Andrew Bartlett3-32/+81
This tries to extract our server-side code out of sessetup.c, and into a more general lib. I hope this is only a temporay resting place - I indend to refactor it again into an auth-subsystem independent lib, using callbacks. Move some of our our NTLMSSP #defines into a new file, and add two that I found in the COMsource docs - we seem to have a double-up, but I've verified from traces that the NTLMSSP_TARGET_TYPE_{DOMAIN,SERVER} is real. This code also copes with ASCII clients - not that we will ever see any here, but I hope to use this for HTTP, were we can get them. Win2k authenticates fine under forced ASCII, btw. Tested with Win2k, NTLMv2 and Samba's smbclient. Andrew Bartlett (This used to be commit b6641badcbb2fb3bfec9d00a6466318203ea33e1)
2003-01-12Make the 'service' in make_connection() use an fstrcpy(), and an fstring,Andrew Bartlett1-1/+0
becouse that is what it's input (reply_tcon_and_x) uses, and becouse we really don't want supprises for service names. Also remove a legacy #define, in favor of the lp_ equiv. Andrew Bartlett (This used to be commit 7854a439ac601d3c23703b115cd5a8d4257c7717)
2003-01-03Fix problem with "hide unreadable". stat file opens are baaack :-).Jeremy Allison1-0/+1
Jeremy. (This used to be commit 6e0cfec16594ade6e6c499f521781348fee25040)
2003-01-02Add PRINTF_ATTRIBUTE() to a few more printf() style functions. Aids inAndrew Bartlett2-0/+11
compiler-based argument checking. (This used to be commit 16fe928e68623a878b125910ff83df500a29d0ce)
2003-01-02BIG patch...Andrew Bartlett9-30/+30
This patch makes Samba compile cleanly with -Wwrite-strings. - That is, all string literals are marked as 'const'. These strings are always read only, this just marks them as such for passing to other functions. What is most supprising is that I didn't need to change more than a few lines of code (all in 'net', which got a small cleanup of net.h and extern variables). The rest is just adding a lot of 'const'. As far as I can tell, I have not added any new warnings - apart from making all of tdbutil.c's function const (so they warn for adding that const string to struct). Andrew Bartlett (This used to be commit 92a777d0eaa4fb3a1c7835816f93c6bdd456816d)
2002-12-31ignore tdbsam2_parse_info.hSimo Sorce1-0/+1
(This used to be commit 1a1c746c9fde965d2ad3f8fb9c1b0263754745e8)
2002-12-30Catching up with old patches. Add define for VERITAS quota support.Jeremy Allison1-0/+8
Check return in ldap. Jeremy. (This used to be commit e789edbb287319f52f49f2999917a610565144d9)
2002-12-30the shutdown call does not have a 16 bit flags, but 2 byte representing booleansSimo Sorce1-5/+2
this commit change the structure and code to reflect this some test revelead I'm right. some other revelead currently the abort shutdown does not work against my test machine even if it returns successfully ... need investigation (This used to be commit c5892b656dedd0367adc33d9606311d1dde99a58)
2002-12-20Forward port the change to talloc_init() to make all talloc contextsJeremy Allison1-1/+1
named. Ensure we can query them. Jeremy. (This used to be commit 842e08e52a665ae678eea239759bb2de1a0d7b33)
2002-12-17it's getting comic ...Simo Sorce1-0/+58
yet another missing piece :-O (This used to be commit eb595efa7e6c260092478564e5fb3fdefcc120d8)
2002-12-16Uhmm a bad day to commit changes :-((Simo Sorce1-0/+2
(This used to be commit 5320d54b901b92a3a8cdf9a407651713826c6c9f)
2002-12-16oh god, I will forgot my name one of these days :-/Simo Sorce1-0/+78
(This used to be commit 0b2591cc4001dd5430591f1871b76c1a6d133b43)
2002-12-16updates to the gumsSimo Sorce2-13/+107
introduce genparser will be used by tdbsam2 (This used to be commit 831d3d1ec751f23481f26b31d22b09f3d9c0709a)
2002-12-14Ensure talloc pool query messages are reserved.Jeremy Allison1-0/+4
Jeremy. (This used to be commit 3520195523c629c4d936db6b0112bd4bd4426ad7)
2002-12-13More printer publishing code.Jim McDonough1-2/+3
- Add published attribute to info2, needed for win clients to work properly - Return proper info on getprinter 7 This means you can now look at the sharing tab of a printer and get correct info about whether it is published or not, and change it. (This used to be commit adda04379ee46f105436262663652f3f576fa3cf)
2002-12-12merge of get_dc_name()-like code from APP_HEAD; better support password ↵Gerald Carter1-0/+8
server = DC1 * (This used to be commit 6b18ca9511ddcf1718f222af3f61491d1e5f3b60)
2002-12-11Fixed auth module code. Added VALGRIND defines to reduce spurious warnings.Jeremy Allison1-0/+4
Jeremy. (This used to be commit ff3a8d37289216a2cb808406044a7abef1e564d0)
2002-12-10Fix client large file reporting.Jeremy Allison2-1/+5
Jeremy (This used to be commit 185804ac945e717a5e3d3602e8118b35080f6251)
2002-12-05More printer data to publishJim McDonough1-0/+1
(This used to be commit 82f3a786bf01878629fe4c05b028ae8d58eb4394)
2002-12-05The element in fsp->print_job should be a RAP jobid, not a uint32 RPCJeremy Allison1-1/+1
jobid. This was causing Win9x client "set name" calls to fail. Still need one cleanup fix to finish. Jeremy. (This used to be commit 15f0bad1fc72ff44cd195d34fd530c25a739f42d)