summaryrefslogtreecommitdiff
path: root/source3/libsmb
AgeCommit message (Collapse)AuthorFilesLines
2003-02-10Clean up our NTLMv2 code by moving the grunt work into a helper function.Andrew Bartlett2-41/+34
Andrew Bartlett (This used to be commit 6789e237d7b070624ba09e7ed43680b838337b74)
2003-02-09(only for HEAD at the moment).Andrew Bartlett5-110/+186
Add NTLMv2 support to our client, used when so configured ('client use NTLMv2 = yes') and only when 'client use spengo = no'. (A new option to allow the client and server ends to chose spnego seperatly). NTLMv2 signing doesn't yet work, and NTLMv2 is not done for NTLMSSP yet. Also some parinoia checks in our input parsing. Andrew Bartlett (This used to be commit 85e9c060eab59c7692198f14a447ad59f05af437)
2003-02-02Add some return values, and don't attempt signing for NTLMSSP yet (it uses aAndrew Bartlett2-3/+3
different algorithm). Andrew Bartlett (This used to be commit e6f87c7ee5c61f03f81159a8017d31f439c4454a)
2003-02-02More signing updates - start checking that the server isn't being spoofed.Andrew Bartlett2-1/+42
Andrew Bartlett (This used to be commit b1c722e306533babeffeba9d8c7dcfa00e019423)
2003-02-01We now have client-side SMB signing support!Andrew Bartlett3-8/+15
This checking allows us to connect to Microsoft servers the use SMB signing, within a few restrictions: - I've not get the NTLMSSP stuff going - it appears to work, but if you break the sig - say by writing a zero in it - it still passes... - We don't currently verfiy the server's reply - It works against one of my test servers, but not the other... However, it provides an excellent basis to work from. Enable it with 'client signing' in your smb.conf. Doc to come (tomorrow) and this is not for 3.0, till we get it complete. The CIFS Spec is misleading - the session key (for NTLMv1 at least) is the standard session key, ie MD4(NT#). Thanks to jra for the early work on this. Andrew Bartlett (This used to be commit 1a2738937e3d80b378bd0ed33cd8d395fba2d3c3)
2003-01-30Stop tpot from trampling over my Heimdal fixes by moving some of themJeremy Allison1-0/+122
to HEAD :-). Jeremy. (This used to be commit 1fec0f50ed0e750afec5cdf551fcd37ef4858e94)
2003-01-28Factor out common code in the NTLMSSP/SPNEGO code.Andrew Bartlett2-53/+18
The idea here is to seperate, as much as possible, the SPNEGO layer from the NTLMSSP layer. This not only helps us with protocol correctness, but also should allow further mechinisms to be added with relitive ease. I indend to make the kerberos code use this shortly. I've never seen the 'zero length blob' form of the anonymous login, so I've removed that case. Andrew Bartlett (This used to be commit a8773c9f825539c5bc17e4200b16d7ebbe0b7620)
2003-01-23Fixed typo.Tim Potter1-1/+1
(This used to be commit 9b11ede90129fab8311344ce8621556fd6cff7dc)
2003-01-22fix for CR 1603; provide description of NT_STATUS_PIPE_NOT_AVAILABLEGerald Carter1-0/+1
(This used to be commit fcf63df8bfae37680ad7af48c65af62abc4e0020)
2003-01-21Fixup proto generation to not include krb5 specific symbolsJeremy Allison1-5/+5
if no kerberos selected. Noticed by Metze. Jeremy. (This used to be commit 1684719695acb7168115b032fc1ec672509239ea)
2003-01-21More fixes getting us closer to full Heimdal compile....Jeremy Allison1-0/+20
Jeremy. (This used to be commit 193cc4f4fc876c66e97ea6b82bae431d0247c1fa)
2003-01-20should be HAVE_KRB5_SET_REAL_TIME (HAVE_ was missing)...fix the buildJim McDonough1-1/+1
(This used to be commit aceaaad1c2efce41fe0e03655b0ca0583788d7ab)
2003-01-19Merge in more of the SuSE patches for Heimdal. These changes show howJeremy Allison1-0/+29
to add a function without an explicit #ifdef HEIMDAL which I'm trying to avoid. Jeremy. (This used to be commit 77aeb262ef7c7cd3d206afe2d5445caaca943dfd)
2003-01-16(missed in last commit)Andrew Bartlett2-6/+9
Change the 'cookie' to be the ntlmssp_context, and use the 'auth_context' on that to store the cookie. Ensures that simple callbacks can 'just work'. Also make it clear that we are doing a pull_string into a pstring, not just any sized buffer. Andrew Bartlett (This used to be commit c7793f27188e658b7fc6336aa51d367eab36fc17)
2003-01-15Missed auth_ntlmssp.c in last night's checkin. Also keep track of the currentAndrew Bartlett1-0/+4
challenge in the NTLMSSP context. Andrew Bartlett (This used to be commit ba13e058d4533b1ffba723b9e98e95090ad63d85)
2003-01-15small merges from SAMBA_3_0; mostly typos, renames, etc...Gerald Carter1-0/+179
(This used to be commit 9ac196dad4893b0ceef13281a140be5d85391e6c)
2003-01-15Refactor the NTLMSSP code again - this time we use function pointers toAndrew Bartlett2-1/+280
eliminate the dependency on the auth subsystem. The next step is to add the required code to 'ntlm_auth', for export to Squid etc. Andrew Bartlett (This used to be commit 9e48ab86da40e4c1cafa70c04fb9ebdcce23dfab)
2003-01-14query_alt_name takes a forced unicode string in win2000. It is notAndrew Tridgell1-1/+1
null terminated. Thanks to Metze for finding this. (This used to be commit e4ce26332b8f876e25ff9baf06d4767a473e2676)
2003-01-13Make sure that those cleanups actually went in.Richard Sharpe1-2/+2
(This used to be commit 9a38e378115a1c36d0cd7c41f4c5767c23b4eb3f)
2003-01-13Updates to our NTLMSSP code:Andrew Bartlett3-16/+51
This tries to extract our server-side code out of sessetup.c, and into a more general lib. I hope this is only a temporay resting place - I indend to refactor it again into an auth-subsystem independent lib, using callbacks. Move some of our our NTLMSSP #defines into a new file, and add two that I found in the COMsource docs - we seem to have a double-up, but I've verified from traces that the NTLMSSP_TARGET_TYPE_{DOMAIN,SERVER} is real. This code also copes with ASCII clients - not that we will ever see any here, but I hope to use this for HTTP, were we can get them. Win2k authenticates fine under forced ASCII, btw. Tested with Win2k, NTLMv2 and Samba's smbclient. Andrew Bartlett (This used to be commit b6641badcbb2fb3bfec9d00a6466318203ea33e1)
2003-01-13Don't force the DOS password into a 14 char space, as this would imply nullAndrew Bartlett1-1/+2
termination - the password will not be null terminated before hashing if len >= 14. related to debian bug #157432 Andrew Bartlett (This used to be commit c6535836f2e48903aa89a18c11cbb37576fb4a20)
2003-01-11Fix a number of client-side fstring/pstring mixups.Andrew Bartlett2-12/+14
Andrew Bartlett (This used to be commit fe1cc779d5ea77e87dbc0e2edf7c34a354fee6e0)
2003-01-03Fixed some simple typos, including one that would have resulted in aChristopher R. Hertel1-2/+2
DEBUG() message printing the wrong value. (This used to be commit 42a4e5b851aa7c9fd9dca5a6f8f42e5d91246c76)
2003-01-02One more const. Andrew, you seem to have krb5 :-)Volker Lendecke1-1/+1
Volker (This used to be commit f5494f5ef6a14020bd31541b1f87d48111f60ad8)
2003-01-02BIG patch...Andrew Bartlett15-36/+37
This patch makes Samba compile cleanly with -Wwrite-strings. - That is, all string literals are marked as 'const'. These strings are always read only, this just marks them as such for passing to other functions. What is most supprising is that I didn't need to change more than a few lines of code (all in 'net', which got a small cleanup of net.h and extern variables). The rest is just adding a lot of 'const'. As far as I can tell, I have not added any new warnings - apart from making all of tdbutil.c's function const (so they warn for adding that const string to struct). Andrew Bartlett (This used to be commit 92a777d0eaa4fb3a1c7835816f93c6bdd456816d)
2003-01-01Document the size constraints on a write request.Richard Sharpe1-2/+5
(This used to be commit 5d6c1810330b38e48355078b7a5d53e7b5076f74)
2002-12-30Port the fix to cli_setup_write to handle offsets greater than 32-bits fromRichard Sharpe1-2/+12
Samba 2.2.x ... (This used to be commit 4201038588bab8674b73371a5eac70a412c5dd6c)
2002-12-23Finish adding strings to all talloc_init() calls.Jeremy Allison1-9/+10
Jeremy. (This used to be commit 784d15761c3271bfd602866f8f9f880dac77671c)
2002-12-20Forward port the change to talloc_init() to make all talloc contextsJeremy Allison2-2/+2
named. Ensure we can query them. Jeremy. (This used to be commit 842e08e52a665ae678eea239759bb2de1a0d7b33)
2002-12-20Fixed bug in debug statement when tconX fails.Tim Potter1-1/+1
(This used to be commit a2159610b9d38cc7cfa7cb877ccee816cd2206b8)
2002-12-19merge from 2.2 fix for smbclient large filesHerb Lewis1-1/+9
(This used to be commit 723c4caf64c56b78052c52fec78c7143ec19e944)
2002-12-17app_head merge for get_friendly_nt_err()Gerald Carter1-2/+2
(This used to be commit 3ceff08eb75ecd70dcf10d033c7451d87b659c0b)
2002-12-12merge of get_dc_name()-like code from APP_HEAD; better support password ↵Gerald Carter1-0/+104
server = DC1 * (This used to be commit 6b18ca9511ddcf1718f222af3f61491d1e5f3b60)
2002-12-11Fix write error returning EFBIG - found by Conrad.Jeremy Allison1-0/+3
Jeremy. (This used to be commit 2d63fc7760634308cc280e4d745a6f7398f75d20)
2002-12-10Fix client large file reporting.Jeremy Allison1-4/+4
Jeremy (This used to be commit 185804ac945e717a5e3d3602e8118b35080f6251)
2002-12-06Ensure global_scope() returns "", not the NULL string. Froma tpot fix.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 7185b846e41da2bf7edaa7f3edeff1cc1486d28b)
2002-12-04cleaning up some friendly error messagesGerald Carter1-22/+26
(This used to be commit f978387e789eeaf9b53a21231d4cdc7cf3ea6db3)
2002-12-04[merge] remove assert(count ==1) for multi-homed PDCs; CR 1277Gerald Carter1-182/+22
(This used to be commit 157b5ab198670c6999f22d6b49072fdebc84be0d)
2002-12-04Doing janitorial duty for tpot - memory leak fix.Jeremy Allison1-0/+2
Jeremy. (This used to be commit c6da50def80e64226c7e5b310dce30d0490512cb)
2002-12-03use the new IVAL_TO_SMB_OFF_T for file_info size memberHerb Lewis1-4/+4
dir now shows correct size on large files (This used to be commit ce7d421ba9cfa65e3ed404f18e8b3b4cf4730593)
2002-12-01Dereference the correct thing here, so we don't segfaultAndrew Bartlett1-1/+1
(This used to be commit ea18d02036b4e0502e5ecb057c9fe381709a07d8)
2002-12-01Fixup of ordered cleanup of get_dc_list - bug found by Dominik 'Aeneas' ↵Jeremy Allison1-27/+10
Schnitzer <dominik@schnitzer.at> Jeremy. (This used to be commit 7ba051a830a7dc96e3860a87643a3ac99cdf5836)
2002-11-27Test was reversed for ERRmoredata in cli_read.Jeremy Allison1-0/+10
Jeremy. (This used to be commit 1a36ac60bef8de5368860478c268ba1671bb4825)
2002-11-26Having waited for *way* too long, this is mimir's namecache and trusted domainAndrew Bartlett3-178/+372
cache code. This uses gencache, mimir's new caching code that stores at text-based cache of various data. Mimir has done a *lot* of work on this patch, and it is finally time to get it in CVS. Andrew Bartlett (This used to be commit 47f3bfe9564e7f3aff60cefaefd599e0abb30a31)
2002-11-23[merge from APP_HEAD]Gerald Carter1-22/+104
90% fix for CR 1076. The password server parameter will no take things like password server = DC1 * which means to contact DC1 first and the go to auto lookup if it fails. jerry (This used to be commit c31a17889e3e4daf7c1e807038efc2c0fba78be3)
2002-11-23Lots of fixes for error paths where tdb_fetch() data need freeing.Jeremy Allison2-1/+4
Found via a post from Arcady Chernyak <Arcady.Chernyak@efi.com>. Jeremy. (This used to be commit 19f86f1f72aca924e9e320e20a175b5d21de45ad)
2002-11-21get_nt_error_msg from APPLIANCE_HEAD is called nt_errstr in HEAD. This ↵Jim McDonough1-1/+1
should fix the build. (This used to be commit 929874d2744509bba743d99b9c707e7626845fa0)
2002-11-21merge get_friendly_nt_err_msg() from app_headGerald Carter1-0/+50
(This used to be commit 3ea73f158ebfca0561d7928e5d6c0939c0734585)
2002-11-15fix segfaultGerald Carter1-1/+3
(This used to be commit 32ca3afa5486b1b04118e9f144bfdf4b3702d118)
2002-11-13Try to bring libsmbclient in line with the new global_myname stuffAndrew Bartlett1-3/+2
(This used to be commit e424b08050b44b1b52abd2af76b1b4dc8b100095)