summaryrefslogtreecommitdiff
path: root/source4/smb_server/smb
AgeCommit message (Collapse)AuthorFilesLines
2012-05-23Introduce system MIT krb5 build with --with-system-mitkrb5 option.Alexander Bokovoy1-1/+2
System MIT krb5 build also enabled by specifying --without-ad-dc When --with-system-mitkrb5 (or --withou-ad-dc) option is passed to top level configure in WAF build we are trying to detect and use system-wide MIT krb5 libraries. As result, Samba 4 DC functionality will be disabled due to the fact that it is currently impossible to implement embedded KDC server with MIT krb5. Thus, --with-system-mitkrb5/--without-ad-dc build will only produce * Samba 4 client libraries and their Python bindings * Samba 3 server (smbd, nmbd, winbindd from source3/) * Samba 3 client libraries In addition, Samba 4 DC server-specific tests will not be compiled into smbtorture. This in particular affects spoolss_win, spoolss_notify, and remote_pac rpc tests.
2012-05-09s4:smb_server/smb: only create a new session with vuid == 0Stefan Metzmacher1-3/+9
metze
2012-04-02s4:smb_server/smb: remove a request from the list before adding the next one ↵Stefan Metzmacher1-0/+1
in a chain. metze
2012-03-07s4-smb_server: Put error from share_get_config() into the logsAndrew Bartlett1-1/+1
2012-02-18auth: Reorder arguments to generate_session_infoAndrew Bartlett1-4/+4
This matches check_ntlm_password() and generate_session_info_pac() Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sat Feb 18 02:19:35 CET 2012 on sn-devel-104
2012-02-13auth: Pass in the SMB username (for %U) into generate_session_infoAndrew Bartlett1-1/+3
This matches what Samba3 does. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Mon Feb 13 01:25:59 CET 2012 on sn-devel-104
2011-11-08s4-smb_server No longer follow the security=share smb.conf directiveAndrew Bartlett2-19/+2
By ignoring the value of security= from the smb.conf, we can allow this to instead set the value of 'server role' in a manner compatible with the Samba 3.x release stream. Andrew Bartlett
2011-11-03nbt: trim down header dependencies of nbt.idl.Günther Deschner1-0/+1
Guenther
2011-11-03s4:smb_server: s/SMB_SIGNING_SUPPORTED/SMB_SIGNING_IF_REQUIRED/Stefan Metzmacher1-1/+1
metze
2011-11-03s4:smb_server: change the default for "server signing" to "default"Stefan Metzmacher1-1/+4
metze
2011-11-03s4:smb_server/smb: make the SMB_SIGNING_AUTO behavior a bit easier to followStefan Metzmacher1-19/+25
The prepares a future change to SMB_SIGNING_DEFAULT. metze
2011-10-19s4:smb_server/smb: make use of _smb_setlen_nbt()Stefan Metzmacher1-1/+1
metze
2011-10-19s4-smb_server do not set credentials on gensec twiceAndrew Bartlett1-4/+0
The samba_server_gensec_start() has already set the credentials on the gensec_security context. Andrew Bartlett
2011-10-18gensec: move event context from gensec_*_init() to gensec_update()Andrew Bartlett1-1/+1
This avoids keeping the event context around on a the gensec_security context structure long term. In the Samba3 server, the event context we either supply is a NULL pointer as no server-side modules currently use the event context. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-08s4:smb_server: implement dfs referral handing on top of ↵Stefan Metzmacher2-812/+54
dfs_server_ad_get_referrals() metze
2011-09-05s4:smb_server: make use of PROTOCOL_SMB2_02Stefan Metzmacher1-1/+1
metze
2011-08-18credentials: Rename library to samba-credentials to avoid name clashes.Jelmer Vernooij1-1/+1
Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Thu Aug 18 22:16:38 CEST 2011 on sn-devel-104
2011-08-03gensec: clarify memory ownership for gensec_session_info() and ↵Andrew Bartlett1-2/+3
gensec_session_key() This is slightly less efficient, because we no longer keep a cache on the gensec structures, but much clearer in terms of memory ownership. Both gensec_session_info() and gensec_session_key() now take a mem_ctx and put the result only on that context. Some duplication of memory in the callers (who were rightly uncertain about who was the rightful owner of the returned memory) has been removed to compensate for the internal copy. Andrew Bartlett
2011-07-21update/add my copyrightMatthieu Patou1-1/+1
2011-07-12s4:libcli/raw: s/SMBchkpth/SMBcheckpathStefan Metzmacher1-1/+1
metze
2011-07-12s4:smb_server: s/SMBkeepalive/NBSSkeepaliveStefan Metzmacher1-3/+3
metze
2011-06-23dfsreferral: search client's site and use itMatthieu Patou1-2/+2
Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Thu Jun 23 01:50:39 CEST 2011 on sn-devel-104
2011-06-09lib/util Bring procid_str() into lib/util as server_id_string()Andrew Bartlett1-1/+1
This is needed for OpenChange, which prints Samba struct server_id values in debug messages. Andrew Bartlett
2011-05-18s4-dfs: Add workaround so that XP really works wellMatthieu Patou1-13/+18
XP seems to have problems working at a correct speed (or even working at all if we return referral of level 4).
2011-05-17s4-dfs: Use a workaround for ndr relative pointer bug/limitationMatthieu Patou1-11/+8
Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Tue May 17 01:33:27 CEST 2011 on sn-devel-104
2011-05-17s4-dfs: clean the codeMatthieu Patou1-44/+50
2011-05-17s4-dfs: fix bugs in idl and adapt code accordinglyMatthieu Patou1-17/+23
2011-05-08s4-auth Rename auth -> auth4 to avoid conflict with s3 authAndrew Bartlett1-1/+1
2011-05-03s4:cluster Rename .id to .pid in server_idAndrew Bartlett2-6/+10
This also changes some DEBUG messages to use cluster_id_string() rather than .id, to isolate them from this and other changes. Andrew Bartlett
2011-04-29s4-param Rename lock_path() -> lpcfg_lock_path()Andrew Bartlett1-1/+1
This avoids a conflict with the source3/ lock_path()
2011-03-30s4:smb_server/smb/trans2.c - "talloc_move" isn't strictly necessary hereMatthias Dieter Wallnöfer1-1/+1
Since the "set" will be free'd afterwards "talloc_steal" is enough. Reviewed-by: Tridge
2011-03-29Ensure convert_string_XXX is always called with a valid converted_size pointer.Jeremy Allison1-2/+4
Preparation for cleaning up this API. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Mar 29 21:01:49 CEST 2011 on sn-devel-104
2011-03-24charcnv: removed the allow_badcharcnv and allow_bad_conv options to ↵Andrew Tridgell1-2/+2
convert_string*() we shouldn't accept bad multi-byte strings, it just hides problems Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Mar 24 01:47:26 CET 2011 on sn-devel-104
2011-03-04s4-nterr: move auth_nt_status_squash to nt_status_squash and move to nterr.cGünther Deschner1-5/+5
Guenther
2011-02-09s4-auth Rework auth subsystem to remove struct auth_serversupplied_infoAndrew Bartlett1-11/+10
This changes auth_serversupplied_info into the IDL-defined struct auth_user_info_dc. This then in turn contains a struct auth_user_info, which is the only part of the structure that is mainted into the struct session_info. The idea here is to avoid keeping the incomplete results of the authentication (such as session keys, lists of SID memberships etc) in a namespace where it may be confused for the finalised results. Andrew Barltett
2010-11-07credentials: Lowercase library name,Jelmer Vernooij1-1/+1
Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sun Nov 7 01:48:44 UTC 2010 on sn-devel-104
2010-10-31s4: Remove the old perl/m4/make/mk-based build system.Jelmer Vernooij1-22/+0
The new waf-based build system now has all the same functionality, and the old build system has been broken for quite some time. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sun Oct 31 02:01:44 UTC 2010 on sn-devel-104
2010-10-10samdb: Add flags argument to samdb_connect().Jelmer Vernooij1-1/+1
2010-10-05dfs: Fix wrong size of referral, change order of dc referralMatthieu Patou1-5/+12
Order of referral is now like w2k8/w2k8r2 as it seems it has an influence on how clients manage to get it.
2010-09-15s4-smb: serialise session setup operationsAndrew Tridgell1-0/+7
the mixture of async and sync code in gensec makes a EOF on a socket during a session setup cause a crash. The simplest solution is to stop processing events on the socket until the session setup is complete.
2010-08-14s4:auth Move struct auth_usersupplied_info to a common locationAndrew Bartlett1-2/+2
This also changes the calling convention slightly - we should always allocate this with talloc_zero() to allow some elements to be optional. Some elements may only make sense in Samba3, which I hope will use this common structure. Andrew Bartlett
2010-07-16s4-loadparm: 2nd half of lp_ to lpcfg_ conversionAndrew Tridgell6-42/+42
this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-05-20s4:auth Change auth_generate_session_info to take flagsAndrew Bartlett1-1/+13
This allows us to control what groups should be added in what use cases, and in particular to more carefully control the introduction of the 'authenticated' group. In particular, in the 'service_named_pipe' protocol, we do not have control over the addition of the authenticated users group, so we key of 'is this user the anonymous SID'. This also takes more care to allocate the right length ptoken->sids Andrew Bartlett
2010-05-18s4:smb_server/smb/trans2.c - remove unused define "DEFAULT_SITE_NAME"Matthias Dieter Wallnöfer1-1/+0
Obviously this isn't needed and in general site names shouldn't be hardcoded anymore (except there is a good reason).
2010-05-18s4:smb_server: Implement GET_DFS_REFERRAL for domain referral requestsMatthieu Patou1-1/+871
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-05-18s4:smb_server: fix trailling whitespace in trans2.cMatthieu Patou1-25/+25
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-05-18Finish removal of iconv_convenience in public API's.Jelmer Vernooij1-3/+3
2010-04-28s4:smb_server/smb: SMBreadX can return STATUS_BUFFER_OVERFLOWStefan Metzmacher1-1/+5
metze
2010-04-27s4:smb_server: pass tsocket_addresses to the ntvfs layerStefan Metzmacher1-2/+4
metze
2010-04-14s4:auth Change auth_generate_session_info to take an auth contextAndrew Bartlett1-18/+61
The auth context was in the past only for NTLM authentication, but we need a SAM, an event context and and loadparm context for calculating the local groups too, so re-use that infrustructure we already have in place. However, to avoid problems where we may not have an auth_context (in torture tests, for example), allow a simpler 'session_info' to be generated, by passing this via an indirection in gensec and an generate_session_info() function pointer in the struct auth_context. In the smb_server (for old-style session setups) we need to change the async context to a new 'struct sesssetup_context'. This allows us to use the auth_context in processing the authentication reply . Andrew Bartlett