Age | Commit message (Collapse) | Author | Files | Lines |
|
standalone), and use only NTLMSSP.
(But doing so would break Samba3's client).
Andrew Bartlett
(This used to be commit e74ca624e74ed82788817e302a516208dc1421bd)
|
|
the number of warnings generated now.
(This used to be commit d479f2d7607adc698d71c5ba26932c72a26dcaab)
|
|
(This used to be commit 9c4436a124f874ae240feaf590141d48c33a635f)
|
|
- it does Negprot and SessionSetup yet
the rest returns NT_STATUS_NOT_IMPLEMENTED
- it's off by default, enable with:
smbsrv:enable smb2 = yes
- negotition in the SMB Negprot isn't supported yet
- it's only tested with smbtorture SMB2-CONNECT
not with vista as client
metze
(This used to be commit 08b31d5f618d2e416cb9812ad3a49754cd7212b8)
|
|
metze
(This used to be commit 27a2615876be3d49cca417796ad7466c342a6f8b)
|
|
metze
(This used to be commit d74f333a84658a45d5386c39787e61bd31ab540d)
|
|
metze
(This used to be commit 5fea278cb65076cea71bb6c921e51c4feffc37d7)
|
|
metze
(This used to be commit eba4f6b7067c3e32a1db897fdca43f9a76a6f5ea)
|
|
- add an idtree_limit to limit the max VUID we give the clients
it's UINT16_MAX (0xffff) for the SMB protocol
- add auth_time to the smbsrv_session statistics
- use the session_info as marker for finished and non-finished
session setups
metze
(This used to be commit 7eb10048b2c4e5ee9c39750dc877514ed9235a76)
|
|
them
- add a idtree_limit to the tcons substructure of smbsrv_connection
this controls what the highest TID is we give away to the client
it's UINT16_MAX (0xFFFF) for the SMB protocol
metze
(This used to be commit f3bf5a2c0947e33d4167fa4fa290968204a826e8)
|
|
smbsrv_connection
metze
(This used to be commit acd3e644e030a3544ddc6cdcd4e0ec9617732cba)
|
|
context for the current request
- just use '0', I'll remove the UID_FIELD_INVALID macro completly later
- why search for the session we have just create
- add TODO notices, I need to dicuss them with abartlet...
metze
(This used to be commit 4bceb94749fba3138c492bed2733fad006affcc5)
|
|
smb_server.c
- add a generic incoming packet handler, which handles the first incoming packet
and passes to the protocol specifc packet handler
metze
(This used to be commit f89deac1cb8a7e5651116d96b9a94d5cc8293076)
|
|
we need to fake a smbsrv_session for each smbsrv_tcon...
metze
(This used to be commit 5b5fb1772034fbfebbb7174df235c8c11d4819fe)
|
|
metze
(This used to be commit b606d5664dde64412dc29c1499322c5de4c262d5)
|
|
finished and non-finished sessions
metze
(This used to be commit 7cf6b307bc820b87663e4b9d1aeb5e730729b24e)
|
|
metze
(This used to be commit 92aae176fbde22bcc6fe58aa651d3d4a421fdf60)
|
|
metze
(This used to be commit 0383218a00a8e744b70a3fa5056467a43fbe3a42)
|
|
before we create the request structure
- move code into one function
metze
(This used to be commit 96345b1c465c6cdf480f6e49d3c437cfe4d93c2c)
|
|
enabling of packet serialisation
(This used to be commit 6a47cd65a8b588f9ddd375c57caaba08281e7cbb)
|
|
and session
ntcancel also needs to have AS_USER
- move the SIGNING_NO_REPLY logic as global option, because this needs to be set
for the error replies too.
- as we currently don't know how to generate signatures for ntcancel replies
we just skip the sending of the reply
- w2k3 first checks the VUID and then the TID, so we do now
- ntcreateX also uses ERRbaduid when getting a wrong VUID
metze
(This used to be commit d677ebf43d0d7e679ff11862683c993d887d9441)
|
|
metze
(This used to be commit 0c520e19a0676c688341523add8a176c3aba8578)
|
|
metze
(This used to be commit 913d5356eb04d0fd02c36052b5cb6a2a5646473a)
|
|
metze
(This used to be commit 9399e4d260011ce59229086e39585e1e56bd79a5)
|
|
metze
(This used to be commit 5fb5d1a864d9df0ac82fca145b51fdb27406bc97)
|
|
metze
(This used to be commit 3389544c2b14a044aed4a6d0ff966c0a2d92a61a)
|
|
(This used to be commit 6ab808223475ba7c52dbe4d639af9a8e7f64b202)
|
|
(This used to be commit 9eee7bafa12553a894536db8ce5cc2d268e09ae6)
|
|
(This used to be commit 0fc496bb6f520ddf6d85cc2f3df80f93b871cfe9)
|
|
Andrew Bartlett
(This used to be commit abff53b6339b7924ff705c7e3685135e85d8ed7a)
|
|
(This used to be commit 24e10300906c380919d2d631bfb3b8fd6b3f54ba)
|
|
http://lists.samba.org/archive/samba-technical/2005-October/043443.html)
(This used to be commit 7fffc5c9178158249be632ac0ca179c13bd1f98f)
|
|
authentication. This pulls the creating of the keytab back to the
credentials code, and removes the special case of 'use keberos keytab
= yes' for now.
This allows (and requires) the callers to specify the credentials for
the server credentails to GENSEC. This allows kpasswdd (soon to be
added) to use a different set of kerberos credentials.
The 'use kerberos keytab' code will be moved into the credentials
layer, as the layers below now expect a keytab.
We also now allow for the old secret to be stored into the
credentials, allowing service password changes.
Andrew Bartlett
(This used to be commit 205f77c579ac8680c85f713a76de5767189c627b)
|
|
the right
talloc context.
Volker
(This used to be commit 256cf928d786b2533953505aea20ec80a25c6929)
|
|
Should fix a valgrind error volker is seeing.
Andrew Bartlett
(This used to be commit 11957c5f37fe0a0be465a9ce9d6d256724c5951c)
|
|
(This used to be commit d2f80c0457f7404b2cac9df59a400130e9ad025f)
|
|
then StaticLibrary()
(This used to be commit b53313dc517986c69a4e4cb8fe3885b696f8faa1)
|
|
use pstring is next_token() now.
(This used to be commit a5b88bcd420eb7ae42283293541519e142be36e3)
|
|
but final linking still fails (as does generating files asn1, et, idl and proto
files)
(This used to be commit 4f0d7f75b99c7f4388d8acb0838577d86baf68b5)
|
|
RAW_SEARCH_UNIX_INFO find_fill_info(), which I think is a bug.
(This used to be commit 5f1cd6382cd90b1b33f645b1b2a469f4de4f42b9)
|
|
we do pass it as size_t. In case src_len is negative, we need to register a failure and return to the caller
(This used to be commit 95d96c79a538814bb524d7905e1e8f64df6341ca)
|
|
(This used to be commit cf1a7bbe96e8e40ac4df3eaa3e5922a944b45579)
|
|
(This used to be commit fac77f5fa267da57a55e88cad8993897e80741a0)
|
|
we didn't cope with the 'anonymous NTLM under SPNEGO' login.
Andrew Bartlett
(This used to be commit c3cc14542e426b23e468a11803c1bab0f6fe290f)
|
|
user_info strcture in auth/
This moves it to a pattern much like that found in ntvfs, with
functions to migrate between PAIN, HASH and RESPONSE passwords.
Instead of make_user_info*() functions, we simply fill in the control
block in the callers, per recent dicussions on the lists. This
removed a lot of data copies as well as error paths, as we can grab
much of it with talloc.
Andrew Bartlett
(This used to be commit ecbd2235a3e2be937440fa1dc0aecc5a047eda88)
|
|
connection structure.
This massively reduces the number of lp_*() calls made
(This used to be commit b1d577f48d31c0c17ad0b6abd78120087408e58d)
|
|
setup. Andrew, please check over this.
What happens is this:
- run the BASE-SECLEAK test
- with each failed session setup using spnego a gensec ctx is leaked into the smb_conn structure
- after the client disconnects these are finally cleaned up as they
are all children of the connection structure
- the cleanup of the millions of memory objects takes long enough
that the next operation in test_posix.sh sometimes fails with a timeout
Andrew, can you also look at the talloc_reference() on line 332 of
sesssetup.c ? I suspect it isn't needed (I don't think it does any
actual harm though)
(This used to be commit b40fb6a4569ccc1fa1750a1e534e18a020764b4c)
|
|
(This used to be commit 658befc1e4df44bee1f365a730951001f0f36640)
|
|
(This used to be commit 391cfe3c9645a19f8f5ff5c11b1ac03ee0b10f8f)
|
|
(This used to be commit 9eebd240d8ed9a634307ce31696d817f78f503b2)
|