summaryrefslogtreecommitdiff
path: root/source4/libcli
AgeCommit message (Collapse)AuthorFilesLines
2008-10-19Move SMB-specific attribute function to SMB client library.Jelmer Vernooij1-0/+44
2008-10-17Improve RPC-SAMR tests to check random passwordsAndrew Bartlett1-0/+22
By random I don't mean 'nice stream of ASCII chars, but pure random passwords containing invalid UTF16 sequences etc. Andrew Bartlett
2008-10-16Create a 'straight paper path' for UTF16 passwords.Andrew Bartlett1-1/+32
This uses a virtual attribute 'clearTextPassword' (name chosen to match references in MS-SAMR) that contains the length-limited blob containing an allegidly UTF16 password. This ensures we do no validation or filtering of the password before we get a chance to MD4 it. We can then do the required munging into UTF8, and in future implement the rules Microsoft has provided us with for invalid inputs. All layers in the process now deal with the strings as length-limited inputs, incluing the krb5 string2key calls. This commit also includes a small change to samdb_result_passwords() to ensure that LM passwords are not returned to the application logic if LM authentication is disabled. The objectClass module has been modified to allow the clearTextPassword attribute to pass down the stack. Andrew Bartlett
2008-10-15idl: finally fully share nbt.idl in s3 and s4.Günther Deschner1-1/+1
Guenther
2008-10-15idl: more lsa.idl merges.Günther Deschner1-1/+1
Guenther
2008-10-12Move nmblookup to same location as the rest of the NBT client library.Jelmer Vernooij2-604/+0
2008-10-12Use common strlist implementation in Samba 3 and Samba 4.Jelmer Vernooij1-1/+1
2008-10-11Fix include paths to new location of libutil.Jelmer Vernooij15-16/+16
2008-10-08fix libclinbtsrcdir variable.Jelmer Vernooij1-6/+6
2008-10-08Add manpage for nmblookup, move nmblookup closer to nbt library.Jelmer Vernooij3-0/+618
2008-09-30Merge branch 'master' of ssh://git.samba.org/data/git/sambaAndrew Tridgell13-229/+153
2008-09-30- make bcast name resolution match other name resolution modules forAndrew Tridgell2-2/+8
host not found errors - when we have no resolve context return NT_STATUS_OBJECT_NAME_NOT_FOUND
2008-09-30Make Sid member variables accessible from Python.Jelmer Vernooij3-0/+128
2008-09-30Merge branch 'master' of ssh://git.samba.org/data/git/sambaJelmer Vernooij3-215/+0
2008-09-30s4:drsblob: fix the buildStefan Metzmacher1-28/+0
metze
2008-09-29Fix parsing of the trust passwords in LSA CreateTrustedDomainEx*Andrew Bartlett2-187/+0
2008-09-29return a more useful error message when no name resolution methods areAndrew Tridgell1-0/+4
available
2008-09-30Cope with API changes.Jelmer Vernooij1-2/+4
2008-09-30Pass session options around; saves another use of global_loadparm.Jelmer Vernooij5-5/+8
2008-09-30Remove global_loadparm instance.Jelmer Vernooij1-4/+6
2008-09-30Explicitly pass on session options to session setup function.Jelmer Vernooij1-4/+2
2008-09-30Pass options struct into session initialization functions rather thanJelmer Vernooij3-6/+12
using global_loadparm.
2008-09-29s4:libcli/smb2: remove unused headerStefan Metzmacher1-1/+0
This hopefully fixes the build with internal popt. metze
2008-09-29LDB ASYNC: misc changesSimo Sorce1-1/+1
2008-09-24we need different error handling for truncated packets in NETPROT andAndrew Tridgell1-0/+1
other SMB2 operations.
2008-09-24for use in python we need to use global_loadparmAndrew Tridgell1-1/+1
2008-09-24- SMB2 uses INVALID_PARAMETER not BUFFER_TOO_SMALL for buffer sizeAndrew Tridgell1-15/+39
errors - added a s32o16 buffer function
2008-09-24- use the current dialect first, for servers that only look at theAndrew Tridgell1-3/+10
first dialect - allow override of SMB2 port in client code
2008-09-24added the structure for LINK_INFORMATION setfileinfo callAndrew Tridgell1-0/+13
2008-09-24be friendlier in smb2_deltree to some of the SMB2 implementations thatAndrew Tridgell1-1/+1
don't handle SEC_FLAG_MAXIMUM_ALLOWED
2008-09-24fixed uninitialised variable bugAndrew Tridgell1-0/+1
2008-09-24Merge branch 'master' of ssh://git.samba.org/data/git/samba into cryptoJelmer Vernooij2-9/+13
2008-09-24Move source4/lib/crypto to lib/crypto.Jelmer Vernooij4-4/+4
2008-09-24Fix nasty bug that would come up only if a client connection to a remoteSimo Sorce2-9/+13
ldap server suddenly dies. We were creating a wrong talloc hierarchy, so the event.fde was not freed automatically as expected. This in turn made the event system call the ldap io handlers with a null packet structure, causing a segfault. Fix also the ordering in ldap_connection_dead() Thanks to Metze for the huge help in tracking down this one.
2008-09-24s4:libcli/smb_composite: we only check the signature when the server return OKStefan Metzmacher1-0/+9
We need to manually free the request, otherwise the timeout handler is triggered later. metze
2008-09-24s3: fix merged_build.Günther Deschner1-6/+6
Guenther
2008-09-24s4: remove autogeneration of libcli/netlogon protos.Günther Deschner1-6/+0
we do need to have them around for samba3. Guenther
2008-09-23s4-nbt: use moved libcli netlogon helpers.Günther Deschner3-6/+6
Guenther
2008-09-23s4-libcli: move nbt/netlogon helper functions up one level.Günther Deschner3-502/+0
Guenther
2008-09-23fixed problem with ACLs with an empty DACL listAndrew Tridgell1-1/+14
2008-09-23Merge branch 'master' of ssh://git.samba.org/data/git/sambaAndrew Tridgell20-3086/+101
2008-09-23libcli/smb_composite: for spnego session setups check the smb signature manuallyStefan Metzmacher1-23/+57
We need to start signing when we got NT_STATUS_OK from the server and manually check the signature of the servers response. This is needed as the response might be signed with the krb5 acceptor subkey, which comes within the server response. With NTLMSSP this happens for the session setup: request1 => BSRSPYL seqnum: 0 response1 => BSRSPYL seqnum: 0 request2 => BSRSPYL seqnum: 0 response2 => <SIGNATURE> seqnum: 1 and with krb5: request1 => BSRSPYL seqnum: 0 response1 => <SIGNATURE> seqnum: 1 metze
2008-09-23libcli/raw: real signing starts at seqnumber 2Stefan Metzmacher1-0/+1
metze
2008-09-23libcli/raw: in SMB_SIGNING_ENGINE_BSRSPYL state it's ok to accept any signatureStefan Metzmacher1-0/+2
Even if signing is mandatory. With NTLMSSP this happens for the session setup: request1 => BSRSPYL response1 => BSRSPYL request2 => BSRSPYL response2 => <SIGNATURE> and with krb5: request1 => BSRSPYL response1 => <SIGNATURE> metze
2008-09-23libcli/raw: give the caller the chance to do the signing checks on its own.Stefan Metzmacher2-0/+10
metze
2008-09-23libcli/raw: give the caller the chance to prevent the talloc_free(req) in ↵Stefan Metzmacher2-1/+8
the _recv functions metze
2008-09-23s4-nbt: use ../libcli/nbtGünther Deschner6-10/+10
Guenther
2008-09-23s4-nbt: move libcli/nbt up one level.Günther Deschner8-3042/+0
Guenther
2008-09-23s4-nbt: merge some fixes from samba3 nbt helper.Günther Deschner2-24/+24
Guenther
2008-09-23s4-nbt: use private_data instead of private.Günther Deschner7-20/+20
Guenther