summaryrefslogtreecommitdiff
path: root/source3/libsmb
AgeCommit message (Collapse)AuthorFilesLines
2003-03-23NTLM Authentication:Andrew Bartlett1-18/+32
- Add a 'privileged' mode to Winbindd. This is achieved by means of a directory under lockdir, that the admin can change the group access for. - This mode is now required to access with 'CRAP' authentication feature. - This *will* break the current SQUID helper, so I've fixed up our ntlm_auth replacement: - Update our NTLMSSP code to cope with 'datagram' mode, where we don't get a challenge. - Use this to make our ntlm_auth utility suitable for use in current Squid 2.5 servers. - Tested - works for Win2k clients, but not Win9X at present. NTLMSSP updates are needed. - Now uses fgets(), not x_fgets() to cope with Squid environment (I think somthing to do with non-blocking stdin). - Add much more robust connection code to wb_common.c - it will not connect to a server of a different protocol version, and it will automatically try and reconnect to the 'privileged' pipe if possible. - This could help with 'privileged' idmap operations etc in future. - Add a generic HEX encode routine to util_str.c, - fix a small line of dodgy C in StrnCpy_fn() - Correctly pull our 'session key' out of the info3 from th the DC. This is used in both the auth code, and in for export over the winbind pipe to ntlm_auth. - Given the user's challenge/response and access to the privileged pipe, allow external access to the 'session key'. To be used for MSCHAPv2 integration. Andrew Bartlett (This used to be commit dcdc75ebd89f504a0f6e3a3bc5b43298858d276b)
2003-03-22Valgrind found a few memory leaks!Andrew Bartlett1-2/+10
Andrew Bartlett (This used to be commit fb680f610ceb9a0f350c99456cf7ab1a507543fe)
2003-03-22Don't use EDQUOT on systems where it's not availableJelmer Vernooij1-3/+5
(This used to be commit 2e1e5719f188a933e6b691fbd48037a0d29497e4)
2003-03-22Use FUNCTION_MACRO, not __FUNCTION__Jelmer Vernooij1-2/+2
(This used to be commit 6df38e250af1a8e7213ad66342c71c52ce118a12)
2003-03-22Don't use errno's when they're not availableJelmer Vernooij1-1/+15
(This used to be commit b757a4374832d76500a889e4785622320881018d)
2003-03-22Small clenaup patches:Andrew Bartlett1-1/+2
- safe_string.h - don't assume that __FUNCTION__ is available - process.c - use new workaround from safe_string.h for the same - util.c - Show how many bytes we smb_panic()ed trying to smb_xmalloc() - gencache.c - Keep valgrind quiet by always null terminating. - clistr.c - Add copyright - srvstr.h - move srvstr_push into a .c file again, as a real function. - srvstr.c - revive, with 'safe' checked srvstr_push - loadparm.c - set a default for the display charset. Andrew Bartlett (This used to be commit a7eba37aadeb0b04cb1bd89deddb58be8aba825c)
2003-03-22Fix compile on IA64 by noting that this should be the integer, not a pointerAndrew Bartlett1-1/+1
to the integer for SIVAL(). (This used to be commit e8b4b136669e7e415557956d698c66c254b28ec1)
2003-03-21Clobber the 'SAFETY_MARGIN' in libsmb.Andrew Bartlett1-3/+7
Andrew Bartlett (This used to be commit 05a63bd17e4c35979b3864b0969b2bfd945335d9)
2003-03-21Patch from colo (on IRC) to get libsmbclient building due to pstring/fstringAndrew Bartlett1-19/+19
issues. Also pick up these link failures at compile time (rather than runtime). Andrew Bartlett (This used to be commit 23c7342bc40daffbcd70ef04727cae2c2b2c366b)
2003-03-21Add more mappings to the nterr->errno mapping table. It should be fairlyJelmer Vernooij1-3/+75
complete now. (This used to be commit 72bb5615f3eef1c5b27716dfcabe4c8288729458)
2003-03-20Patch from Samuel Thibault to convert messages from unix to dos charset. WorksJelmer Vernooij1-3/+14
on 2000. sending messages to 9x needs to be fixed, but that didn't work anyway (This used to be commit ca066502a2a3dbdd8943d515c9c6d21e62d757b6)
2003-03-18Removed unused var.Jeremy Allison1-2/+0
Jeremy. (This used to be commit fb925a72a6323d96d8fae658c4271ca05e8256de)
2003-03-17Fix a memory leak - 'smbcontrol smbd pool-usage' is your freind!Andrew Bartlett1-0/+2
Andrew Bartlett (This used to be commit a12e8524997e329a4f4cd766d6371e384698795a)
2003-03-15Minor fixes.Andrew Bartlett1-2/+2
- signed/unsigned - quieten warning about assignment as truth value - whitespace Andrew Bartlett (This used to be commit a13ce0df4b4a776fa635a1fb804dd00d195f58d0)
2003-03-15String handling parinoia fixes.Andrew Bartlett1-7/+21
This patch enables the compile-time checking of strings assable by means of sizeof(). (Original code had the configure check reversed). This is extended to all safe_strcpy() users, push_string and pull_string, as well as the cli and srv derivitives. There is an attempt to cap strings at the end of the cli buffer, and clobber_region() of the speified length (when not -1 :-). Becouse of the way they are declared, the 'overmalloc a string' users of safe_strcpy() have been changed to use overmalloc_safe_strcpy() (which skips some of the checks). This whole ball of mud worked fine, until I pulled out my 'fix' for our statcache. When jeremy fixes that, we should be able to get back to testing this stuff. This patch also includes a 'marker' of the last caller to clobber_region (ie, the function that called pstrcpy() that called clobber_region) to assist in debugging problems that may have smashed the stack. This is printed at smb_panic() time. (Original idea and patch by metze). It also removes some unsused functions, and #if 0's some others that are unused but probably should be used in the near future. For now, this patch gives us some confidence on one class of trivial parsing error in our code. Andrew Bartlett (This used to be commit 31f4827acc2a2f00399a5528fc83a0dae5cebaf4)
2003-03-15specify the size of these buffersAndrew Bartlett1-2/+2
(This used to be commit f6ea572cd57d4e655d387fe225a5d7122d587a9b)
2003-03-15Specify buffer sizesAndrew Bartlett1-2/+2
(This used to be commit aa12379b3fd9646199a8ff3f217ec7dfef1942a5)
2003-03-15Be parinoid, malloc an extra SAFETY_MARGIN on the client's inbuf and outbuf.Andrew Bartlett1-2/+2
Andrew Bartlett (This used to be commit 2effcae13f9dfbff40b34d32c7fd82118c3fd096)
2003-03-15client-side smbpasswd fixes - use pstrcpy_base to avoid clobber_region bugsAndrew Bartlett1-6/+6
Andrew Bartlett (This used to be commit 7ab6559369b4e6ee3c5269d8cff04e5a39f6b493)
2003-03-15Add const, and a signed/unsigned fix.Andrew Bartlett1-3/+3
(This used to be commit f07a93eaeba20f5704f43c7f02141adc564db136)
2003-03-14We haven't implemented The Singing Contexts so far.Rafal Szczesniak1-1/+1
Who knows what .NET server brings, though ...? ;-) Rafal (This used to be commit d81b0d26903004be6a99ac029dd531fd18947268)
2003-03-14/tmp/newfun.msgRafal Szczesniak1-3/+61
(This used to be commit 3f4cb7b2c4d9b54b41bcc184ccfd00032e2b021b)
2003-03-14Found by metze with the clobber-region check - if it's a pstring, use pstrcpy().Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit f9c3c93f55cac774e576fd5975c0582e0b334d6a)
2003-03-13win2000 can take much longer than the specified time to respond to aAndrew Tridgell1-1/+1
lock - so to make the torture tests valid I give it a grace time of 10 seconds instead of 2 (This used to be commit c9c9e9eb26ec3042395637d14a6661d04a629ccc)
2003-03-12Change size parameters from signed to unsigned to fix up warnings.Jeremy Allison4-95/+190
Jeremy. (This used to be commit 2e9880ef7c259b67eb75edc8098b734c3b7b22c1)
2003-03-10Some conversion to pstrcpy_base.Volker Lendecke1-6/+6
Volker (This used to be commit 329911e43681b724cb0579aad77b4a658759d7ba)
2003-03-10Further work on NTLMSSP-based SMB signing. Current status is that I cannnotAndrew Bartlett4-48/+424
get Win2k to send a valid signiture in it's session setup reply - which it will give to win2k clients. So, I need to look at becoming 'more like MS', but for now I'll get this code into the tree. It's actually based on the TNG cli_pipe_ntlmssp.c, as it was slightly easier to understand than our own (but only the utility functions remain in any way intact...). This includes the mysical 'NTLM2' code - I have no idea if it actually works. (I couldn't get TNG to use it for its pipes either). Andrew Bartlett (This used to be commit a034a5e381ba5612be21e2ba640d11f82cd945da)
2003-03-09Try not to clobber the session request.Andrew Bartlett1-3/+15
(This used to be commit 05cffbee56f0556f550b4d14f3111bd7db972621)
2003-03-09Change the way we sign SMB packets, to a function pointer interface.Andrew Bartlett4-146/+338
The intention is to allow for NTLMSSP and kerberos signing of packets, but for now it's just what I call 'simple' signing. (aka SMB signing per the SNIA spec) Andrew Bartlett (This used to be commit b9cf95c3dc04a45de71fb16e85c1bfbae50e6d8f)
2003-03-08Make it clear that this is a fstrcpy().Andrew Bartlett1-2/+2
(This used to be commit c2a266b7b661d319e13982bfdbc3a86e8502b8a4)
2003-03-05Writable string const fixes.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 60b0cfc8a5b6275d3460ebc6bf17d0f08e25b67e)
2003-03-05Connectathon fix. W2K -> W2K over port 445 doing a tconX does the fullJeremy Allison1-7/+2
\\server\share syntax, not just a "share" tconX syntax. This broke interop with a vendor. Jeremy. (This used to be commit 9d7ea5585c873156ede4b56e43a0d4d75077283a)
2003-03-03Do my janitorial duties to encourage others to do so.Richard Sharpe1-1/+1
Fix lingering large offset problems in smbtar etc. (This used to be commit c416eec2f2a38eebfcda5868999d474628037f1e)
2003-03-03Add constAndrew Bartlett1-1/+1
(This used to be commit 251b91f46988053eccc53f814a23ed5ca787c852)
2003-03-01the new DEVELOPER checks for string overflows have (as expected)Andrew Tridgell1-3/+3
broken a lot of stuff. These two macros are meant to make life easier when fixing these bugs. I'm guessing we will see more macros like this (eg. fstrcpy_base) (This used to be commit 50389c0cb2504d7941ec691af21d6a20ae5c5de7)
2003-02-26Netlogon-unigroup changes needed for the winbind RID-to-SID conversion.Andrew Bartlett1-12/+25
This changes the cache format, which will simply invalidate existing entries, leaving them dead in the cache. Andrew Bartlett (This used to be commit 3fc179362ea849db23490b971a9f64f943e7f7f8)
2003-02-25Fix unused variable warning when ENCTYPE_ARCFOUR_HMAC is not defined.Tim Potter1-0/+2
(This used to be commit 92abafa62894a125c5a09fc92f5056e4d8b51089)
2003-02-24Clean up non-krb5 breakages from my modifications to luke howard's patch.Andrew Bartlett1-7/+1
Andrew Bartlett (This used to be commit 32fd0c49009e38022523cc5c14567dd55de08206)
2003-02-24Patch from Luke Howard to add mutual kerberos authentication, and SMB sessionAndrew Bartlett3-23/+64
keys for kerberos authentication. Andrew Bartlett (This used to be commit 8b798f03dbbdd670ff9af4eb46f7b0845c611e0f)
2003-02-21Fix IRIX build...void fn can't return another void fnJim McDonough1-1/+2
(This used to be commit df3c7c9cbb275e9c35356b4f1cab1a741de6f500)
2003-02-21Doesn't anyone run ./configure.developer anymore?Tim Potter1-1/+1
(This used to be commit 09be123c6c1b67621eaf6c8ffb3016eccd375e5b)
2003-02-19Can't return SAFE_FREE...put on its own line.Jim McDonough1-1/+2
(This used to be commit 9f1a4809b503f050189d5f87a294b7d8675b1e95)
2003-02-19Correct way to keep fucntion from proto.hJim McDonough1-7/+4
(This used to be commit 762b072efb0d6801775a874494cb19ea3d61fa97)
2003-02-19After a talloc_zero(), we don't need to ZERO_STRUCTP too..Andrew Bartlett1-4/+0
(This used to be commit 4fe8066394143c64c79c052c00f0d747e872103a)
2003-02-19Only do a kinit if we got told to use kerberos.Andrew Bartlett1-12/+12
Andrew Bartlett (This used to be commit 6af9ec50e010d171cf5287f40ec774e79e4a93fe)
2003-02-19Get non-krb systems to compile. How the heck do I keep something from being ↵Jim McDonough1-8/+9
sucked into proto.h? (This used to be commit 7e84497882df5bf933ab7ae7fe9af3728393202c)
2003-02-19Try to get heimdal working with HEAD.Jim McDonough1-4/+34
- Provide generic functions for - get valid encryption types - free encryption types - Add encryption type parm to generic function create_kerberos_key_from_string() - Try to merge the two versions (between HEAD and SAMBA_3_0) of kerberos_verify.c I think this should work for both MIT and heimdal, in HEAD. If all goes smooth, I'll move it over to 3.0 soon... (This used to be commit 45e409fc8da9f26cf888e13d004392660d7c55d4)
2003-02-17Correctly check for inet_addr fail. Patch from gregor.7@osu.edu.Jeremy Allison1-2/+5
Jeremy. (This used to be commit fb3548e5080812c037c2c134504cc9af4ecbfedd)
2003-02-17Don't leak a session_key worth of memory at the end of the NTLMSSP auth.Andrew Bartlett1-0/+1
(This used to be commit ae9765b84de0fd6eff790b3bff26dd3d43ec2bd6)
2003-02-16Add the 'session key' output of the NTLMSSP exchange to the cli struct, soAndrew Bartlett1-0/+11
it can be used for 'net rpc join'. Also fix a bug in our server-side NTLMSSP code - a client without any domain trust links to us may calculate the NTLMv2 response with "" as the domain. Andrew Bartlett (This used to be commit ddaa42423bc952e59b95362f5f5aa7cca10d1ad4)