summaryrefslogtreecommitdiff
path: root/source3/libsmb
AgeCommit message (Collapse)AuthorFilesLines
2002-05-26Add support for NTLMv2 (tested!) with NTLMSSP.Andrew Bartlett1-1/+42
The problem was the NTLMv2 uses extra data in order to make reply/lookup more difficult. That extra data includes the hostname, and the domain. This matches Win2k (sort of) by sending this information. Win2k connects with LMCompatibilityLevel=5 without a problem. We can change the negotiation bits if we want, this should allow us to make NTLMv2 the default for other clients as well. Some of the extra #defines were found in the squid source. Andrew Bartlett (This used to be commit 17a5f67b3d1935baf6197ae967624eb847b66ac8)
2002-05-25Update some of the LM hash code to better respect the seperation betweenAndrew Bartlett3-54/+57
unix and DOS strings. This pushes all the 'have to uppercase, must be 14 chars' stuff behind the the interface. Andrew Bartlett (This used to be commit dec650efa8ab1466114c2e6d469320a319499ea0)
2002-05-25Clean up a few unused functions, add a bit of static etc.Andrew Bartlett2-2/+3
Importantly: The removal of the silly 'delete user script' behaviour when secuity=domain. I have left the name the same - as it still does the (previously documented, but not in smb.conf(5)) sane behaviour of deleting users on request. When we decide what to do with the 'add user' functionality, we might rename it. Andrew Bartlett (This used to be commit cdcfe3671eb7570e15649b77f708e6579055e7bc)
2002-05-24Remove the password length paramater from cli_full_connection - it reallyAndrew Bartlett1-5/+6
didn't make any sense, and its was always just strlen(password) anyway. This fixes it to be strlen(password)+1 Andrew Bartlett (This used to be commit c205b18bd6b9b69200ff3db55f2c641631d4ab40)
2002-05-23This function is unused, and doesn't make any sense to me anyway.Andrew Bartlett1-17/+0
Wasn't this what got us some of the bugs with big-endien smbpasswd -j FOO -U ? Anyway, it deserves to die. Andrew Bartlett (This used to be commit 7201720048b31e48fb2600de8f7396088cc9b533)
2002-05-23Given Jeremy's positive response, and a lack of one from tpot, I'll commitAndrew Bartlett11-434/+19
this: More code cleanup - this lot a bit more dodgy than the last: The aim is to trim pwd_cache down to size. Its overly complex, and a pain to deal with. With a header comment like this: 'obfusticaion is planned' I think it deserved to die (at least partly). This was being done to allow 'cli_establish_connection' to die - its functionality has been replaced by cli_full_connection(), which does not duplicate code everywhere for creating names etc. This also removes the little 'init' fucntions for the various pipes, becouse they were only used in one place, and even then it was dodgy. (I've reworked smbcacls not to use anonymous connections any more, as this will (should) fail with a 'restrict anonymous' PDC). This allowed me to remove cli_pipe_util.c, which was calling cli_establish_connection. tpot: I'm not sure what direction you were going with the client stuff, and you may well have been wanting the init functions. If thats the case, give me a yell and I'll reimplement them against cli_full_connection. Andrew Bartlett (This used to be commit fa67e4626bed623333c571e76e06ccd52cba5cc5)
2002-05-18Move client_receive_smb to clientgen.c as a static, as proposed by Elrond.Andrew Bartlett2-26/+62
(only function that used it was unused, and this helps bring TNG and HEAD closer) Its also cleaner. Andrew Bartlett (This used to be commit 78f47c83332a6408a718a3dee45645935638b364)
2002-05-17A few more trusted domains updates from mimir.Andrew Bartlett2-9/+23
I think we may still need to look at our server enumeration code, but other than that, its much better in the tree than out. Andrew Bartlett (This used to be commit d57a1b4629d12a0374cc6d74dfc6f5d4793fcef8)
2002-05-17This removes --with-ssl from Samba.Andrew Bartlett2-17/+0
This option was badly maintained, useless and confused our users and distirbutors. (its SSL, therfore it must be good...) No windows client uses this protocol without help from an SSL tunnel. I can't see any reason why setting up a unix-side SSL wrapper would be any more difficult than the > 10 config options this mess added to samba in any case. On the Samba client end, I think the LIBSMB_PROG hack should be sufficient to start stunnel on the unix side. We might extend this to take %i and %p (IP and port) if there is demand. Andrew Bartlett (This used to be commit b04561d3fd3ee732877790fb4193b20ad72a75f8)
2002-05-17NT sends the server name prepended with \\ for a enumerate printers RPCTim Potter1-2/+2
call so we probably should as well. (This used to be commit 39c0218e5b4132e60401c2fc25fcbc88be94f87f)
2002-05-17Changes to allow head to translate NMB flags ...Richard Sharpe1-3/+19
(This used to be commit c986a19cde0dfa96b512eb24d873203981e68c48)
2002-05-14Added deleteprinterdata client rpc.Tim Potter1-0/+45
(This used to be commit 217ae50acd8cf088e268e7d2a6a7c192aca9e2f1)
2002-05-14Added writeprinter rpc command.Tim Potter1-0/+49
(This used to be commit a1934a7a8eda592e283a01014280ddb373564927)
2002-05-14Added getprinterdata and enumprinterdata rpc client routines.Tim Potter1-42/+186
The setprinterdata routine was rewritten slightly to take more arguments. (This used to be commit a9a5702c88ea9c4a6a9197cf4e3444b26be858cc)
2002-05-13RPC client function for startdocprinter and enddocprinter.Tim Potter1-2/+101
(This used to be commit 38de5025fb1f6396e456e26bfb071223da247f03)
2002-05-08Added client side spoolss rpc commands for startpageprinter,Tim Potter1-0/+200
endpageprinter, setjob and getjob. (This used to be commit d091a9d300c70b708218067d355c8282a6f14ab6)
2002-05-07Added cli_spoolss_enumjobs() function.Tim Potter1-3/+46
(This used to be commit aaa996355287fcd86873697f51a069ccb5a908b9)
2002-05-07DOS error 1307 is returned when an invalid owner for a security descriptorTim Potter1-0/+1
is detected. (This used to be commit 0377448b8c3e2bd8d5bc9f49a585292dc5c5b5a1)
2002-04-24Added constant and message for invalid security descriptor dos error.Tim Potter1-0/+1
(This used to be commit 0827bd4184256a87d6cf6c58bc314309503da7be)
2002-04-22My seven-year-old daughter calls me 'Captain Pedantic'. I don't know whichChristopher R. Hertel1-2/+13
is freakier... the name or the fact that a seven-year-old knows what it means. Small change to correct the value we place in the DGM_LENGTH field of NBT Datagram messages. We have been counting the full datagram, but it's fairly clear in the RFCs that we should only count the source name, destination name, and payload. We've been overcharging by 14 bytes (the size of the NBT DGM header). This fix brings us in line with what Windows does, and what the RFCs say should be done. I'm a little surprised that this didn't cause any bugs or error messages. I guess no one actually checks this field. (This used to be commit 3156c020e5b6f12a448d58669977ad4449789460)
2002-04-19fixed a namequery bug caused by my recent string length patchesAndrew Tridgell1-1/+1
(This used to be commit b2329039d255928faf53474ee7ab06b6353b9fbe)
2002-04-17libsmb/cli_netlogon.c: Fixed confusing debug messages.Jeremy Allison1-4/+4
param/loadparm.c: Added missing debugs that would have helped me find a misconfiguration I lost a day on.... Jeremy. (This used to be commit 6e9572379784c77f3c4e6a95e18a9641880a8ffc)
2002-04-15better handling of DOS LANMAN2.1 protocolAndrew Tridgell1-4/+18
(This used to be commit 7f923d738b94eef042b21e4d0143861755620d91)
2002-04-14The cli_lsa_lookup_{names,sids} functions were returning uselessTim Potter1-20/+21
information when one or more of the names/sids being queried were not resolvable. We now return a list the same length as the parameters passed instead of an array of just the resolvable names/sids. (This used to be commit 245468dbabb7c849ce423cc3cb586fa913d0adfe)
2002-04-14Added error string for STATUS_SOME_UNMAPPEDTim Potter1-0/+1
(This used to be commit f736e115c00e02e3f131ccceb7769559dd4d908a)
2002-04-14Partly based on the work by mimir (Rafal SzczesniakAndrew Bartlett1-1/+1
<mimir@diament.ists.pwr.wroc.pl>) this patch allows samba to correctly enumerate its trusted domains - by exaimining the keys in the secrets.tdb file. This patch has been tested with both NT4 and rpcclient/wbinfo, and adds some extra functionality to talloc and rpc_parse to allow it to deal with already unicode strings. Finally, this cleans up some const warnings that were in net_rpc.c by pushing another dash of const into the rpc client code. Andrew Bartlett (This used to be commit 0bdd94cb992b40942aaf2e5e0efd2868b4686296)
2002-04-10Added cli_spoolss_enumjobs() function.Tim Potter1-0/+52
(This used to be commit 952eb866f44ac0d8ba2032cf251d3a4298a750d3)
2002-04-09Added WERR_INVALID_FORM_NAME constant.Tim Potter1-0/+1
(This used to be commit 908b70f3e23846d0b438a68e45e076e65016e95e)
2002-04-06Always pass NT password as well as Lanman.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 146fb9d12bd3621087193f439e99c13d609ff658)
2002-04-04small change in name_resolve_bcast()Jean-François Micouleau1-1/+1
spotted by alexander bokovoy. it shouldn't break anything. if it's wrong, feel free to revert but explain why. J.F. (This used to be commit 638c692525c050ecdf414d461ef6b4aed3ce51db)
2002-04-04If compiling with Insure, mallocate a byte of memory and attach it to theTim Potter2-1/+33
POLICY_HND structure when passing new handles back from the appropriate cli_* functions. When closing the policy handle free the memory. Insure (and indeed other memory checkers) should detect handles that have not been closed properly as memory leaks. Unfortunately this can only be done when the program terminates (set insure++.summarize leaks in your .psrc file) rather than when the policy handle falls out of scope. Looks like Jeremy has squished all the policy handle leaks at the moment but more are bound to crop up later. (This used to be commit 6dc80d625752f0a3ce6fd7b2278095529c6ec29f)
2002-04-04oopsTim Potter1-1/+1
(This used to be commit 6b20a809020821276b0330810317a4d10c9fdb5a)
2002-04-04Fixed memory leak in cli_lsa_enum_trust_dom(). Use talloc_strdup() insteadTim Potter1-1/+1
of strdup(). (This used to be commit fb32f7199b8a487757b509555e5a69ec5cae8fbd)
2002-04-02some mergee from SAMBA_2_2. Does compile, but needs some more testing.Gerald Carter1-208/+266
This is an intermediate check-in. More to come.... (This used to be commit 5b9b152971aa635d484cde45413a7880424ee22d)
2002-03-23Make a number of the lookup tables 'const'. I'm told this assists in sharingAndrew Bartlett2-12/+12
memory between users of shared libs. Andrew Bartlett (This used to be commit 41dd5a4d292bb08fa313f6220014cd9b4490237b)
2002-03-20Correctly increment offset in cli_smbwrite.Jeremy Allison1-0/+2
Jeremy. (This used to be commit 5b04b5f1df3ee509e7314064966be09e2202b0ef)
2002-03-20Test against W2K that we're doing large read/writes correctly (we are).Jeremy Allison1-0/+9
At least with 14 word writes. Jeremy. (This used to be commit 24ef6258a16e6b4673f1088d64b79bddcd268df5)
2002-03-19Don't try to sort a list of zero length in internal_resolve_name()Tim Potter1-1/+1
(This used to be commit 5387e4046f67a1c6ef9e98268268b06a729d5ca4)
2002-03-17Added dos_errstr() function. Not all errors in list yet.Tim Potter2-12/+88
(This used to be commit ddb5753e36b8c5efb48ce5c82c16d970fb8e76b6)
2002-03-17Renamed get_nt_error_msg() to nt_errstr().Tim Potter7-10/+10
(This used to be commit 1f007d3ed41c1b71a89fa6be7d173e67e927c302)
2002-03-15this tdb was being opened without locking, which is unsafe for sharedAndrew Tridgell1-2/+2
databases (This used to be commit 1394e6ed318af5fc740aa5622919f9fd26d5a8d2)
2002-03-14getpid() -> sys_getpid()Tim Potter1-1/+1
(This used to be commit a3cea5e9ae3b53ecbc45e61a39cbce0ca1b916aa)
2002-03-11added cli_locktype() for testing different lockingX lock typesAndrew Tridgell1-0/+54
(This used to be commit 136b9752fc9da86f0ad0e1f46dc389b752975aea)
2002-03-10better handling of a zero timeout in cli_lockAndrew Tridgell1-2/+6
(This used to be commit 56662a75f58d35cec1a5b2d6c9a4315d95a22420)
2002-03-08Added case statment for decoding enumprinters level 0 result.Tim Potter1-0/+4
(This used to be commit 33d49ed68c4d6a66217558b13d960764c235089a)
2002-03-06Removed duplicate \n from debug message.Tim Potter1-21/+13
Small tidyups. (This used to be commit 252da94ebb279c47263dfae36fd016d0a29a6dbf)
2002-03-05Fix error return.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 3bec83cbe9b863176ca087fd45efa6d1457b502c)
2002-03-02Allow Samba to trust NT4 Domains.Andrew Bartlett2-7/+9
This commit builds on the auth subsystem to give Samba support for trusting NT4 domains. It is off by default, but is enabled by adding 'trustdomain' to the 'auth methods' smb.conf paramater. Tested against NT4 only - there are still some issues with the join code for Win2k servers (spnego stuff). The main work TODO involves enumerating the trusted domains (including the RPC calls to match), and getting winbind to run on the PDC correctly. Similarly, work remains on getting NT4 to trust Samba domains. Andrew Bartlett (This used to be commit ac8c24a9a888a3f916e8b40238b936e6ad743ef7)
2002-03-02Add a dash of const here and there...Andrew Bartlett2-6/+6
(This used to be commit 413a46292b4e963343abce2428955305052e9cb4)
2002-03-01The beginning of trusted and trusting domain support fromAndrew Bartlett1-0/+112
Rafal Szczesniak <mimir@diament.ists.pwr.wroc.pl> This adds the 'net' tools to manipulate the trusted domains. Andrew Bartlett (This used to be commit 770c8a31d9804d3339ffa0de8b5072a5c7eb02df)