| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
http://www.hsc.fr/ressources/articles/win_net_srv
(This used to be commit 8d36dbed8c5bdc82176083b2c6f8d989ae903ba5)
|
|
Andrew Bartlett
(This used to be commit c4036f218967459c17056f9d27eb95eed3f72dd8)
|
|
added -D parameter to torture to be able to specify:
- user dn
- base dn
- user secret
(This used to be commit 0eaec28f5c511a28764a1d350c2eaaf37272eb62)
|
|
metze
(This used to be commit 4e1156602caf60b3c0659d9d5e7aba8e430153e2)
|
|
Thanks to Metze and Volker for their unvaluable support :)
(This used to be commit e6a6c0737ab94d58930c0d4e1ef0bb4d99510833)
|
|
SPNEGO/non-SPNEGO games.
Andrew Bartlett
(This used to be commit 90d70a63ee6d44172cec99a9115817f666b5d06d)
|
|
on trunk
(This used to be commit 606caddeb95382287fa41a5017ca473d0301be6b)
|
|
(This used to be commit c3bce90be745db3e7cbf8273c1c8496920332f5e)
|
|
- Support for "object oriented" interfaces in pidl
- Support for inherited interfaces in pidl
- Simplification of the support for properties on an interface
- Start on dcom rpc torture tests
(This used to be commit 45c3d0036b8510102816f9cdff9210098259cc5f)
|
|
- More updates/fixes to the ethereal parser generator
(This used to be commit 547f860285b117e291bf3dbaca0707dc268b214e)
|
|
Andrew Bartlett
(This used to be commit 0e4e3647e848605416fe79c742ac84d84dc4357c)
|
|
- use lp_maxprotocol() in the libcli/raw/ negotiate code, so we obey
the smb.conf "max protocol" option
- better handling of -M option in masktest
(This used to be commit 8685a584c92ab73a35b29a8c719f1ec207562837)
|
|
rename CLI_ -> SMBCLI_
metze
(This used to be commit 8441750fd9427dd6fe477f27e603821b4026f038)
|
|
metze
(This used to be commit 59de2b1f528fb82fbfcf9c3783dd733a36d3fb6c)
|
|
metze
(This used to be commit 973ac69a012e579a09807d635061ff3550a10719)
|
|
group in a state where it can't be deleted via samr, which breaks
repeated runs of the test.
(This used to be commit bcad9efd728983c2d8932ef93eebd3d0c6d4d085)
|
|
(This used to be commit fb2ca1f4cde014c93a0741b8ba03d2d9caffd8df)
|
|
- use a SID that w2k3 likes in CreateTrustedDomain
(This used to be commit b5f25fdb7440ba21f073f4ca7fa9a8771a6ebaf4)
|
|
the async APIs)
(This used to be commit 19c22760c699aa2b000f023ff6083055a27a83cb)
|
|
(This used to be commit 13cd58efce8fc077c7c3ced99a82344766e20c5c)
|
|
deferopen test should probably be ripped out and redone, as it
tests the wrong thing.)
- removed some unused code
- add progress printing to the pipe_number test
- fixed the dir1 test to use deltree rather than trying to re-invent it itself (in a broken manner)
- renamed all of the tests into catagories, so you can now run
BASE-* for the base tests, and BENCH-* for the benchmarks.
(This used to be commit 2e297be5c34086a42396acc3abf965f8dbd665cd)
|
|
(This used to be commit 518ff5f505446fee623365fd5bdfc75c0cb93d2a)
|
|
Up to now the client code has had an async API, and operated
asynchronously at the packet level, but was not truly async in that it
assumed that it could always write to the socket and when a partial
packet came in that it could block waiting for the rest of the packet.
This change makes the SMB client library full async, by adding a
separate outgoing packet queue, using non-blocking socket IO and
having a input buffer that can fill asynchonously until the full
packet has arrived.
The main complexity was in dealing with the events structure when
using the CIFS proxy backend. In that case the same events structure
needs to be used in both the client library and the main smbd server,
so that when the client library is waiting for a reply that the main
server keeps processing packets. This required some changes in the
events library code.
Next step is to make the generated rpc client code use these new
capabilities.
(This used to be commit 96bf4da3edc4d64b0f58ef520269f3b385b8da02)
|
|
e.g. we now have 'union smb_mkdir' and 'enum smb_mkdir_level' in sync
we may should also rename 'RAW_MKDIR_*' -> 'SMB_MKDIR_*'
metze
(This used to be commit 0bb50dcf1ccb9797000fcbea4d8a73f2d2a3db77)
|
|
metze
(This used to be commit a9a22d1e0db32c7715809efc4bb08ea5a5a9a69b)
|
|
metze
(This used to be commit 3f2b77d7ec024f54dc478522d85278ced8fce617)
|
|
in NetShareEnum and NetShareEnumAll
metze
(This used to be commit e5bf65b840cd7fbc97166c6313f5eb29de9d129f)
|
|
metze
(This used to be commit 0018aeb2fe8c42e49fdcdd1ecc646b277625967d)
|
|
metze
(This used to be commit d44c85176a79461bfb465a5643b855aa0d8da726)
|
|
metze
(This used to be commit dde75d3b346be33213e9f38db01945ee45eff9df)
|
|
metze
(This used to be commit 3a2a8973bee1d7e4b21cf807ef549ad3498b4e9d)
|
|
(This used to be commit fb5796b0dccf7cd518db03e6456d986f17e50345)
|
|
Rework our random number generation system.
On systems with /dev/urandom, this avoids a change to secrets.tdb for every fork().
For other systems, we now only re-seed after a fork, and on startup.
No need to do it per-operation. This removes the 'need_reseed'
parameter from generate_random_buffer().
This also requires that we start the secrets subsystem, as that is
where the reseed value is stored, for systems without /dev/urandom.
In order to aviod identical streams in forked children, the random
state is re-initialised after the fork(), at the same point were we do
that to the tdbs.
Andrew Bartlett
(This used to be commit b97d3cb2efd68310b1aea8a3ac40a64979c8cdae)
|
|
for DRSUapi (the Active Directory Replication Protocol)
I'll try to fill the idl file as part of a study project
together with some other students...
metze
(This used to be commit 3fc9abcad712c4cc5c9879df0acaa5a19a3d8718)
|
|
Initial attempt at RAP server infrastructure. Look at rap_server.c for the
dummy functions that are supposed to implement the core functionality.
ipc_rap.c contains all the data shuffling. _rap_shareenum and _rap_serverenum2
in ipc_rap.c are (I think) regular enough to be auto-generated.
I did not test all the corner cases yet, but nevertheless I would like some
comments on the general style.
Volker
P.S: samba-3 smbclient now doesn't freak out anymore, although the results are
not entirely correct :-)
(This used to be commit 08140cc1a838b4eaa23c897b280a46c95b7ef3e0)
|
|
Volker
(This used to be commit 1506da85b9e53c71a470b1ef0579e0096451b5a7)
|
|
we'll try to autogenerate the specific calls in future by pidl
and create a new subsystem for the rap lib
after that the server side will be added
metze
(This used to be commit f1bbde6bb4790f915c1fdbb53f6452c5ea454936)
|
|
metze
(This used to be commit acde1358c940ed159a67e433e662c255103a1a02)
|
|
of SIDs
w2k3 can handle in a single request. With the samba3 client rpc libs I can do
about 21000 SIDs in a single request. test_many_LookupSIDs with 10000 SIDs
fails on the subsequent request with a NET_WRITE_FAULT. Maybe the Samba4 DCE
people want to take a look at this -- I don't see the problem.
Bug fix: SID components should be treated as unsigned when parsing
Volker
(This used to be commit 8c997a2ad2e89a640f854b556ef76a3d52c15963)
|
|
This implements gensec for Samba's server side, and brings gensec up
to the standards of a full subsystem.
This means that use of the subsystem is by gensec_* functions, not
function pointers in structures (this is internal). This causes
changes in all the existing gensec users.
Our RPC server no longer contains it's own generalised security
scheme, and now calls gensec directly.
Gensec has also taken over the role of auth/auth_ntlmssp.c
An important part of gensec, is the output of the 'session_info'
struct. This is now reference counted, so that we can correctly free
it when a pipe is closed, no matter if it was inherited, or created by
per-pipe authentication.
The schannel code is reworked, to be in the same file for client and
server.
ntlm_auth is reworked to use gensec.
The major problem with this code is the way it relies on subsystem
auto-initialisation. The primary reason for this commit now.is to
allow these problems to be looked at, and fixed.
There are problems with the new code:
- I've tested it with smbtorture, but currently don't have VMware and
valgrind working (this I'll fix soon).
- The SPNEGO code is client-only at this point.
- We still do not do kerberos.
Andrew Bartlett
(This used to be commit 07fd885fd488fd1051eacc905a2d4962f8a018ec)
|
|
(jra: please use: void, char int, uint_t, [u]int<8|16|32|64>_t types in new code)
metze
(This used to be commit 626bb153c45405f93a96bc5019241af506fac163)
|
|
metze
(This used to be commit 238acc5acf026d341186ed2debcf5d131f2dde96)
|
|
Andrew Bartlett
(This used to be commit 57ca89eab37b9d3dd83124d9d0f5a526aca0979f)
|
|
call, avoid code duplication in the torture suite.
Andrew Bartlett
(This used to be commit b6128c2a9d8e23dad0b14106f45a0638655d6cd7)
|
|
still be broken.
Andrew Bartlett
(This used to be commit da5f311732d626c500dc5eaf6d457fee49e2da99)
|
|
endpoint.
Andrew Bartlett
(This used to be commit e12ad47c69098b6865f5b10527aa44ff322e4b18)
|
|
Andrew Bartlett
(This used to be commit 81678f8dc6fc7ef7218c7fad2b2766355927f21c)
|
|
- added a torture test for interactive login in smbtorture
These changes allow winxp to perform an interactive login (a login on
the winxp console) against a Samba4 DC. Our netlogon server code is
still filling in many of the fields incorrectly, but it fills in
enough that winxp can login.
(This used to be commit db9ea488b047b5f0f7538fd75fb7dde8277eb06b)
|
|
structure (andrew, this is the type of structure consolidation I think
you were asking about. It's possible here in NDR as it isn't in the
top level fn code)
- added validation level 6 in sam logon
With these changes I can successfully authentication smbclient to a
winxp server, with the winxp server using a Samba4 ADS DC for account
auth
(This used to be commit 705205083a6e2430c420f44436a1d1ff8826bc73)
|
|
(This used to be commit c8541098436d2cd83538375889560405ecb50034)
|
