summaryrefslogtreecommitdiff
path: root/source3/smbd/reply.c
AgeCommit message (Collapse)AuthorFilesLines
2001-11-25I think this is a fix for the "out of space" errors with oplocks=no.Jeremy Allison1-49/+58
Jeremy. (This used to be commit 84b62d3c8ebd78cd578ac36168631b3bbcafdd8c)
2001-11-17Tidyups when I was doing the big merge...Jeremy Allison1-12/+16
Jeremy. (This used to be commit 9148bb9eaa67de60c3b0b4709a9c05a840c20c66)
2001-11-14Fix from Herb. mincount/maxcount need to be ssize_t for comparisons.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 60983782ed078593d122e0c0bc6b4e17c3e56e63)
2001-11-09Fixup __LPID -> _LPID.Jeremy Allison1-1/+1
Jeremy. (This used to be commit ab607cdf153d9187fe50af3377ece5a9fafde1b1)
2001-11-08Change to guest logon code.Andrew Bartlett1-2/+0
This changes the way we process guest logons - we now treat them as normal logons, but set the 'guest' flag. In particular this is needed becouse Win2k will do an NTLMSSP login with username "", therefore missing our previous guest connection code - this is getting a pain to do as a special case all over the shop. Tridge: We don't seem to be setting a guest bit for NTLMSSP, in either the anonymous or authenticated case, can you take a look at this? Also some cleanups in the check_password() code that should make some of the debugs clearer. Various other minor cleanups: - change the session code to just take a vuser, rather than having to do a vuid lookup on vuser.vuid - Change some of the global_client_caps linking - Better debug in authorise_login(): show the vuid. Andrew Bartlett (This used to be commit 62f4e4bd0aef9ade653b3f8d575d2864c166ab4d)
2001-11-05Don't put a \n on the end of the arg to exit_server()Tim Potter1-5/+5
(This used to be commit dfb8566220c3e90ca2b757ea124f53aed103269e)
2001-11-01Various post AuthRewrite cleanups, fixups and tidyups.Andrew Bartlett1-2/+2
Zero out some of the plaintext passwords for paranoia Fix up some of the other passdb backends with the change to *uid_t rather than uid_t. Make some of the code in srv_netlog_nt.c clearer, is passing an array around, so pass its lenght in is definition, not as a seperate paramater. Use sizeof() rather than magic numbers, it makes things easier to read. Cope with a PAM authenticated user who is not in /etc/passwd - currently by saying NO_SUCH_USER, but this can change in future. Andrew Bartlett (This used to be commit 514c91b16baca639bb04638042bf9894d881172a)
2001-10-31When you make a data_blob() then you probably need to free it too...Andrew Bartlett1-0/+4
(This used to be commit 531e24973227ca4f1ae65ffb2454aedd5871de96)
2001-10-31This is a farily large patch (3300 lines) and reworks most of the AuthRewriteAndrew Bartlett1-16/+21
code. In particular this assists tpot in some of his work, becouse it provides the connection between the authenticaion and the vuid generation. Major Changes: - Fully malloc'ed structures. - Massive rework of the code so that all structures are made and destroyed using malloc and free, rather than hanging around on the stack. - SAM_ACCOUNT unix uids and gids are now pointers to the same, to allow them to be declared 'invalid' without the chance that people might get ROOT by default. - kill off some of the "DOMAIN\user" lookups. These can be readded at a more appropriate place (probably domain_client_validate.c) in the future. They don't belong in session setups. - Massive introduction of DATA_BLOB structures, particularly for passwords. - Use NTLMSSP flags to tell the backend what its getting, rather than magic lenghths. - Fix winbind back up again, but tpot is redoing this soon anyway. - Abstract much of the work in srv_netlog_nt back into auth helper functions. This is a LARGE change, and any assistance is testing it is appriciated. Domain logons are still broken (as far as I can tell) but other functionality seems intact. Needs testing with a wide variety of MS clients. Andrew Bartlett (This used to be commit f70fb819b2f57bd57232b51808345e2319d52f6c)
2001-10-29another few changes to the new mangle codeSimo Sorce1-2/+27
(This used to be commit 92f953c156a39b54230c52c6102a319a4a5ca798)
2001-10-20Converted a bunch of 0x85 constants to SMBkeepalive.Tim Potter1-2/+2
(This used to be commit b16a15a13ed7d267c6366abaeeb3ccafa5776f5e)
2001-10-19Restored old Bmpx code - actually used by OS/2.Jeremy Allison1-57/+247
Jeremy. (This used to be commit 7c1688fd67c1bda1477aaf870371c825280db870)
2001-10-15split session setup code out of reply.c in preparation for addingAndrew Tridgell1-344/+1
NTLMSSP and kerberos support in smbd (This used to be commit 38a43d75e25bbebe0f6cdfcf389129a842ede842)
2001-10-02Removed 'extern int DEBUGLEVEL' as it is now in the smb.h header.Tim Potter1-1/+0
(This used to be commit 2d0922b0eabfdc0aaf1d0797482fef47ed7fde8e)
2001-09-26Kill of the reply.c end of the workstaion trust account mess.Andrew Bartlett1-155/+43
Fix the NT errror codes, this time in line with WinXP/2k. - Return the normal error codes, expect for bad user/bad password. These map to logon failure, as a quick security hack. We follow suit. Simplfy some of the password extraction code, the auth subsytem has the intelegence to sort this stuff out, no need to do it here. Move to 'global_encrypted_passwords_negotiated' to determine the use of unencrypted hacks, replacing the current mess. Andrew Bartlett (This used to be commit c04f063573c61d8ef3f43815bbb9b6b076dc23eb)
2001-09-23Lets call an NTSTATUS an nt_status, not an ecode.Andrew Bartlett1-6/+6
(This used to be commit b6048e28ab996ba5581cfa3b50401c0f775befdd)
2001-09-23Zero out these pstrings before we start: makes for much easier debugging.Andrew Bartlett1-2/+2
(This used to be commit d417b6b5cbdbb244cc683387d73a9200eef53427)
2001-09-23Fix up NT_STATUS return for session setups, Win2k objects to anything otherAndrew Bartlett1-3/+3
than NT_STATUS_LOGON_FAILURE. This also brings us (almost) back in line with their implementation. Kill off SMBENCRYPT() macro Kill off 'nt smb support' paramater - tridge okayed this one. Andrew Bartlett (This used to be commit 67947bf6e31ee9758f8a2186f83031ba21b716f2)
2001-09-21fixed the error code handling in can_delete() by converting it toAndrew Tridgell1-19/+22
NTSTATUS. This gets the right error codes in SMBunlink (This used to be commit c82f7828c05c747a5782d10c68cc2df80d4071bd)
2001-09-17move to SAFE_FREE()Simo Sorce1-1/+1
(This used to be commit a95943fde0ad89ae3f2deca2f7ba9cb5ab612b74)
2001-09-17fixed ctemp in server and client. It turns out that ctemp on NT is ↵Andrew Tridgell1-9/+20
completely broken, and it's pointless to emulate their brokenness completely in this case, but at least this makes us use approximately the same packet format. The spec is complelet wrong in this case (This used to be commit 2d507ec669def6d49304559e53d6c14af9b290a9)
2001-09-16Fix up workstaion and kickoff time checks, moved to auth_smbpasswd.c whereAndrew Bartlett1-4/+7
they can have general effect. Fixed up workstaion support in the rest of samba, so that we can do these checks. Pass through the workstation for cli_net_logon(), if supplied. (This used to be commit 7f04a139b2ee34b4c282590509cdf21395815a7a)
2001-09-16Start pushing the NTSTATUS stuff out to the wire for session setups.Andrew Bartlett1-51/+27
Rework the 'map to guest' code, its now possible to follow what its trying to do... Add an NT_STATUS_EQUAL(x,y) macro to make this stuff sane to look at. Andrew Bartlett (This used to be commit d618880661976644a6ee713edf969ad561e82097)
2001-09-15Kill off the //server/share%user hack in share level security.Andrew Bartlett1-65/+8
This should help make much of this code simpiler. Andrew Bartlett (This used to be commit fb0c3629c360fd0c57129500474960e6da6f9ef0)
2001-09-15Oops... For reference, NTLMv2 passwords are > 24 chars in length, whileAndrew Bartlett1-1/+1
NTLMv1 passwords (and old LM passwords) are exactly 24 in lenghth. (This used to be commit 51baa1614d1a338f50dbf8eaa5ea31ab58c11409)
2001-09-15This looked suspicious now we are attempting to to NTLMv2.Andrew Bartlett1-2/+2
Andrew Bartlett (This used to be commit 21baa33946a24159ebe873ac37cf30581437aa1a)
2001-09-12Some patches to authentication:Tim Potter1-2/+3
- the usersupplied_info now contains a smb_username (as it comes across on the wire) and a unix_username (after being passed through mapping functions) - when doing security={server,domain} use the smb_username, otherwise use the unix_username (This used to be commit d34fd8ec0716127c7a68eeb8e77d1ae8cc07b547)
2001-09-08convert more code to using d_printfAndrew Tridgell1-1/+0
(This used to be commit 60d297303488ed583537ca2853828fccd6da2ade)
2001-09-07#ifdef out function when not used.Jeremy Allison1-0/+2
Jeremy. (This used to be commit fa8d626a2773569a454451e77ea56c707b33b69e)
2001-09-06Fix the 62bit locking onto 32 bit NFS mounts problem generically for HPUX.Jeremy Allison1-0/+32
Don. please check this out. Jeremy. (This used to be commit ce9f95996498f7795aaef069e1443ea1c7d524b3)
2001-09-04Merge of transfer file code from 2.2, fix for readbraw.Jeremy Allison1-267/+267
Jeremy. (This used to be commit c05e79453655abb67fd47a2d3dba88b4c5377e35)
2001-09-04the next stage in the NTSTATUS/WERROR change. smbd and nmbd now compile, but ↵Andrew Tridgell1-102/+83
the client code still needs some work (This used to be commit dcd6e735f709a9231860ceb9682db40ff26c9a66)
2001-09-01more NTSTATUS changesAndrew Tridgell1-17/+4
(This used to be commit 8a49b2f7df46b2c990a980758fe1f3871e8b578e)
2001-08-30Fix crash bug with indirecting through null pointer on recursive delete.Jeremy Allison1-134/+119
Jeremy. (This used to be commit a6f04d16613a06c1aafa89d7373d1e4b4a5fb45b)
2001-08-27started converting NTSTATUS to be a structure on systems with gcc in order ↵Andrew Tridgell1-11/+13
to make it type incompatible with BOOL so we catch errors sooner. This has already found a number of bugs (This used to be commit 1b778bc7d22efff3f90dc450eb12baa1241cf68f)
2001-08-27converted smbd to use NTSTATUS by defaultAndrew Tridgell1-765/+495
major changes include: - added NSTATUS type - added automatic mapping between dos and nt error codes - changed all ERROR() calls to ERROR_DOS() and many to ERROR_NT() these calls auto-translate to the client error code system - got rid of the cached error code and the writebmpx code We eventually will need to also: - get rid of BOOL, so we don't lose error info - replace all ERROR_DOS() calls with ERROR_NT() calls but that is too much for one night (This used to be commit 83d9896c1ea8be796192b51a4678c2a3b87f7518)
2001-08-24get rid of compiler warningsHerb Lewis1-2/+2
(This used to be commit 0768991d04ea03e774ca8662c9cae5e1951b88e0)
2001-08-24flush on a invalid fsp should give an errorAndrew Tridgell1-16/+16
(This used to be commit ef5f4866fbbfa6be07cdc3e612a8899967d48289)
2001-08-23Fix to only send the status32 error for status32 clients, not to otherAndrew Bartlett1-3/+1
nt_smb clients. As spotted by Thursby. (This used to be commit 22de76a920671614144babac9f589419532d8671)
2001-08-22A few changes:Andrew Bartlett1-3/+1
drop paramaters: status utmp hostname change session code to always record each vuid current on the server. The sessionid struct is no longer packed, as I couldn't get that to work ;-) change smbstatus to show this info and less of the connections.tdb info (its not actualy that accurate). I'll get swat doing some of this shortly. (This used to be commit b068ad300527c44673bbee0aede7849199c89de7)
2001-08-22The DELL powervault 705 is sending a tcon&x with the service name beingJean-François Micouleau1-5/+15
"share" instead of "\\server\share". Fix that. Still not able to get the user list but that's something else. Jeremy I don't think I broke anything ;-) J.F. (This used to be commit 59018c58e4158e9ccb51c42ca32e490f32ee0def)
2001-08-20two fixes for NT clients -> share level Samba serverAndrew Tridgell1-1/+9
(This used to be commit a25911d58c752350b62b205cfb0d6fc5b1c90cef)
2001-08-17smbd/auth_server: Doco, we want to use cli_nt_error here soonAndrew Bartlett1-3/+2
smbd/password.c: We don't use globals here anymore smbd/reply.c: Tidyness, global_myworkgroup must die! smbd/service.c: Move some of the make_connection code into a helper function. (This used to be commit 15c87e404fcaff9e360a40b8b673938c6e611daf)
2001-08-17One less getpwnam() call...Andrew Bartlett1-1/+3
Andrew Bartlett (This used to be commit 204da7ba96b0c562bab5e5536728a0378077bdc7)
2001-08-07Always return NT_STATUS_DISK_FULL, even for quota errors.Jeremy Allison1-1/+1
Jeremy. (This used to be commit e4a295b730b3d1ee784c896611d184c7699c74e7)
2001-08-07Added fixes to return correct error codes on space allocation fail.Jeremy Allison1-1/+30
Jeremy. (This used to be commit 3bf2419f4b7a9d46a1d48062212a6a6579c22b92)
2001-08-03The write zero bytes is an allocate, not set EOF.Jeremy Allison1-1/+2
Jeremy. (This used to be commit 28b4ee1eba5fbfd83c000a0e485632c477b7bfa9)
2001-08-03This is my 'Authentication Rewrite' version 1.01, mostly as submitted toAndrew Bartlett1-210/+46
samba-technical a few weeks ago. The idea here is to standardize the checking of user names and passwords, thereby ensuring that all authtentications pass the same standards. The interface currently implemented in as nt_status = check_password(user_info, server_info) where user_info contains (mostly) the authentication data, and server_info contains things like the user-id they got, and their resolved user name. The current ugliness with the way the structures are created will be killed the next revision, when they will be created and malloced by creator functions. This patch also includes the first implementation of NTLMv2 in HEAD, but which needs some more testing. We also add a hack to allow plaintext passwords to be compared with smbpasswd, not the system password database. Finally, this patch probably reintroduces the PAM accounts bug we had in 2.2.0, I'll fix that once this hits the tree. (I've just finished testing it on a wide variety of platforms, so I want to get this patch in). (This used to be commit b30b6202f31d339b48d51c0d38174cafd1cfcd42)
2001-07-25we need to pull passwords in client charset for crypto to workAndrew Tridgell1-1/+1
(This used to be commit 9a87d6f58fc005ddf2daf6fceb12a54fdc48f3b7)
2001-07-21This patch fixes up a few issues where we would do lookups in the local systemAndrew Bartlett1-38/+42
on username we already know are perfectly valid, and in their final form. In particular we don't want to do a lookup for DOMAIN\nobody, it just does not make sense, nor should we do map_username and the like if the username is as specified in the vuid - we have done it already. Andrew Bartlett (This used to be commit 7cb517329b0fa2dec427a890a985c75cd467a3b0)