samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2007-10-10	r1077: fix segfault in schannel over ncacn_ip_tcp	Stefan Metzmacher	1	-13/+13
	metze (This used to be commit 9e9a52692ebe9d47f1a08740ea1dcb8f46041211)
2007-10-10	r1068: make the dcerpc client side auth/crypto code much more generic	Stefan Metzmacher	1	-2/+2
	metze (This used to be commit 1706ff88a72c6578a109c2cf24f2f009812c3892)
2007-10-10	r1041: - pulled the domain join code out of the netlogon test and made it a ↵	Andrew Tridgell	1	-32/+52
	separate utility function, to allow multiple torture tests to temporarily join a domain - fixed a session key size problem - added a schannel test suite - allow schannel to work with ncacn_ip_tcp (This used to be commit 36f05e4d575099fcb957b8a55781c38dcd2e1177)
2007-10-10	r1030: added server side schannel support	Andrew Tridgell	1	-4/+4
	(This used to be commit 2ac79dfba0e64056a680f21d7dd0c007f79d4a70)
2007-10-10	r962: convert 'unsigned' and 'unsigned int' to uint_t	Stefan Metzmacher	1	-1/+1
	metze (This used to be commit 57151e80eb1090281401930c8fe25b20a8cf3a38)
2007-10-10	r884: convert samba4 to use [u]int32_t instead of [u]int32	Stefan Metzmacher	1	-10/+10
	metze (This used to be commit 0e5517d937a2eb7cf707991d1c7498c1ab456095)
2007-10-10	r610: - Merge the Samba3 'ntlm_auth --diagnostics' testsuite to Samba4.	Andrew Bartlett	1	-16/+10
	- This required using NETLOGON_NEG_AUTH2_FLAGS for the SetupCredentials2 negotiation flags, which is what Samba3 does, because otherwise the server uses different crypto. - This tests the returned session keys, which we decrypt. - Update the Samba4 notion of a 'session key' to be a DATA_BLOB in most places. - Fix session key code to return NT_STATUS_NO_SESSION_KEY if none is available. - Remove a useless argument to SMBsesskeygen_ntv1 - move netr_CredentialState from the .idl to the new credentials.h Andrew Bartlett (This used to be commit 44f8b5b53e6abd4de8a676f78d729988fadff320)
2007-10-10	r390: added my best guess for how session keys are supposed to work when you	Andrew Tridgell	1	-5/+14
	use NTLMSSP sign or seal at the RPC layer It doesn't work yet, but then again neither does the old code (which just assumed the SMB session key was used, which of course makes no sense on a ncacn_ip_tcp connection) (This used to be commit e8782329269bc78d36d8ca83fb7a4e38b9c6b167)
2007-10-10	r101: added lsa_SetSecret() and lsa_QuerySecret()	Andrew Tridgell	1	-0/+22
	this required some crypto infrastructure and some sid utilities (This used to be commit 37d0efa9c2af8532536bea88412f0dd3ed39ecfc)
2004-02-10	- modified the dcerpc client security code to be generic, so ntlmssp	Andrew Tridgell	1	-1/+14
	and schannel are both instances of possible security modules - added schannel sign and sign/seal support to the dcerpc client code. You select it with binding options of "schannel,sign" or "schannel,seal". (This used to be commit 05db0b9d942cad8f1dd574dc35b759e5e79d4195)
2004-02-03	- add 'print' to the DCERPC binding strings	Stefan Metzmacher	1	-0/+1
	e.g. ncacn_np:myserver:[samr,sign,print] will now enable the packet debugging and the debugging is not bound anymore to the debuglevel >= 2 in the torture tests - also the dcesrv_remote module now supports debugging of the packets use the 'dcerpc_remote:binding' smb.conf parameter. metze (This used to be commit 40abf3c584efed7f977ddd688ea064540e5a5b13)
2004-01-20	added code to the RPC-SPOOLSS test that demonstrates that policy	Andrew Tridgell	1	-0/+39
	handles are not shared between open dcerpc connections, even when those connections are on the same SMB socket. I have tested this with w2k3, w2k and NT4. It seems that policy handles have a strict scope of the dcerpc connection on which they were opened. I realise that this goes against existing folk-law in the team, but it seems that the previous testing (I'm not sure who did this?) was wrong. Perhaps clients do send us policy handles from other connections, but if they do then the correct thing to do is to fail the operation with a dcerpc fault. I suspect that failing it with exactly the right dcerpc fault code is important. (This used to be commit 2ed24d29bafd9055d5782acdd595cd0f378a651a)
2003-12-19	fixed removal of moe than one ncacn_* option from option list	Andrew Tridgell	1	-0/+1
	(This used to be commit 09a9b25c8d916c0467a124d959d5cd911b782dfa)
2003-12-17	fixed a segv in RPC-* when debug level > 2	Andrew Tridgell	1	-1/+1
	thanks to Kai for spotting this! (This used to be commit 0fc42c33d3b0930fdf1dc71a407f4fcaac69d82d)
2003-12-17	Fix typo.	Tim Potter	1	-1/+1
	(This used to be commit 3f1b781c5659361d7e9cc3ab2072e1462d40df55)
2003-12-17	added a smb.conf flag "rpc big endian" that tells our rpc server to	Andrew Tridgell	1	-3/+2
	send packets in bigendian format. (This used to be commit 44df662960e662a55a9f27627f838771503a7a59)
2003-12-16	fixed the RPC-MGMT and RPC-SCANNER tests to work with the new	Andrew Tridgell	1	-24/+75
	dcerpc_binding_string code (This used to be commit 1fa68c18facfb6c96d5a274cfd9560cb4b2956f6)
2003-12-16	no longer require the pipe name or tcp port number to be the first	Andrew Tridgell	1	-0/+4
	option in the ncacn_* syntax (This used to be commit 74f36d32bb14e94a80e1963cbc95f8fba3f23335)
2003-12-16	a fairly large commit!	Andrew Tridgell	1	-4/+10
	This adds support for bigendian rpc in the client. I have installed SUN pcnetlink locally and am using it to test the samba4 rpc code. This allows us to easily find places where we have stuffed up the types (such as 2 uint16 versus a uint32), as testing both big-endian and little-endian easily shows which is correct. I have now used this to fix several bugs like that in the samba4 IDL. In order to make this work I also had to redefine a GUID as a true structure, not a blob. From the pcnetlink wire it is clear that it is indeed defined as a structure (the byte order changes). This required changing lots of Samba code to use a GUID as a structure. I also had to fix the if_version code in dcerpc syntax IDs, as it turns out they are a single uint32 not two uint16s. The big-endian support is a bit ugly at the moment, and breaks the layering in some places. More work is needed, especially on the server side. (This used to be commit bb1af644a5a7b188290ce36232f255da0e5d66d2)
2003-12-15	more flexible handling of [] in binding strings	Andrew Tridgell	1	-2/+14
	(This used to be commit edc67fffeaee5fe4bbbc6fbd76345d0a9d5b2093)
2003-12-15	allow the specification of full dcerpc endpoint binding strings on the	Andrew Tridgell	1	-0/+299
	command line. This allows you to (for example) control signing/sealing of smbtorture RPC sessions (This used to be commit a73825eb496d5924012ea926fcbac8c956fe081e)
2003-12-14	fixed a bug handling multiple PDUs being read from a socket at one	Andrew Tridgell	1	-0/+40
	time in the rpc server. started on the framework for the dcerpc authentication server code (This used to be commit 74041b6a0a60d792e1b220496d66ec27b9ee6c25)
2003-12-13	added a basic dcerpc endpoint mapper to Samba4. Currently only	Andrew Tridgell	1	-5/+5
	implements the epm_Lookup() call, I'll add the other important calls soon. I was rather pleased to find that epm_Lookup() worked first time, which is particularly surprising given its complexity. This required quite a bit of new infrastructure: * a generic way of handling dcerpc policy handles in the rpc server * added type checked varients of talloc. These are much less error prone. I'd like to move to using these for nearly all uses of talloc. * added more dcerpc fault handling code, and translation from NTSTATUS to a dcerpc fault code * added data_blob_talloc_zero() for allocating an initially zero blob * added a endpoint enumeration hook in the dcerpc endpoint server operations (This used to be commit 3f85f9b782dc17417baf1ca557fcae22f5b6a83a)
2003-11-28	the beginnings of an automated tool for working out IDL properties of	Andrew Tridgell	1	-0/+14
	a pipe. I'm not sure how possible this will be without lots of human intervention, but its an interesting thing to try. (This used to be commit d5afe7c6a8651457da9438fcf0035c792701ac86)
2003-11-27	more epmapper and mgmt magic	Andrew Tridgell	1	-1/+33
	protocol 0x1f is interesting - its ncacn_http ! (This used to be commit e3d40e3da6e15407162c1d0a29d2cbe86842228e)
2003-11-27	added an rpc scanner. This prints messages like this:	Andrew Tridgell	1	-1/+2
	uuid 82273fdc-e32a-18c3-3f78-827929dc23ea version 0x0000:0x0000 'eventlog' 24 calls available WARNING: local IDL defines 4 calls when all the WARNINGs are gone then we know we have all the calls :) (This used to be commit f5821b2468a0c46d0e5590de59562926d746c349)
2003-11-27	use EPMAPPER_PORT constant instead of 135	Andrew Tridgell	1	-3/+3
	(This used to be commit 953ab587dc5a625d0fb557fdcac122a3b2ed0224)
2003-11-27	a couple of tidyups	Andrew Tridgell	1	-0/+6
	* don't try to map the epmapper uuid ! * some preliminary support for alter context pdus (This used to be commit f9857e56850cabfac06534fb33ff7a7a04346a9b)
2003-11-26	use the IDL defined NDR version number	Andrew Tridgell	1	-1/+2
	(This used to be commit 00e0c14b76c9b001c7d7b6b18b2cb543a57fe082)
2003-11-26	added auto-determination of the DCERPC over TCP port number by asking	Andrew Tridgell	1	-0/+149
	the servers endpoint mapper (This used to be commit 4abf5376b00f580eb69196e55a792cc7eb4c9880)