Age | Commit message (Collapse) | Author | Files | Lines |
|
metze
(This used to be commit 291da7bac3e8707009b239bd3c8b0a0d14f54481)
|
|
track down where a error is happening. The semantics sure are strange!
(This used to be commit f722aed66d19edc6b49ecde927853aaa7895ab91)
|
|
- Collect the generic utility functions into a lib/util/ (a la GLib is
for the GNOME folks)
- Remove even more files from include/
(This used to be commit ba62880f5b05c2a505dc7f54676b231197a7e707)
|
|
(This used to be commit 26bf2a393b90acc098be0b30886dbba34d348a01)
|
|
metze
(This used to be commit ae559920e1d227e4e787fe34d908a965b922b284)
|
|
credentials.
Consistantly rename these elements in the IDL to computer_name.
Fix the server-side code to always lookup by this name.
Add new, even nastier tests to RPC-SCHANNEL to prove this.
Andrew Bartlett
(This used to be commit 341a0abeb4a9f88d64ffd4681249cb1f643a7a5a)
|
|
Andrew Bartlett
(This used to be commit 273cb8fd4288f7bf15e0bcad9f6a4cbf4f142b24)
|
|
Andrew Bartlett
(This used to be commit e1de45bce47292eef1f9c56ea5576c0436e6151d)
|
|
Andrew Bartlett
(This used to be commit 04e2fe8b6d293092af86a54215c1fa037bbb20e9)
|
|
The new RPC-SCHANNEL test shows that the full credentials state must
be kept in some shared memory, for some length of time. In
particular, clients will reconnect with SCHANNEL (after loosing all
connections) and expect that the credentials chain will remain in the
same place.
To achive this, we do the server-side crypto in a transaction,
including the fetch/store of the shared state.
Andrew Bartlett
(This used to be commit 982a6aa871c9fce17410a9712cd9fa726025ff90)
|
|
available under schannel, and performs a netlogon authentication.
Andrew Bartlett
(This used to be commit 561a690915f9d3ca2fbb76f16c47cf2f6be1b825)
|
|
the new socket.
We should also test netlogon operations, but there are issues with
what state is expected to be stored (far more than we currently do).
Andrew Bartlett
(This used to be commit 39ddba0d0dc4475f9f7c5b7aa19ffff42c9fd1f5)
|
|
(This used to be commit fc17a50b48189c60af60b9163695b48c6b87c5c7)
|
|
close after setting delete on close flag.
Jeremy.
(This used to be commit fbea18e78f8a3c6dbb36aa935b7044c0fcf61da4)
|
|
metze
(This used to be commit 67837dbd2bcff8ec1917ba02884ee2eaa0776b46)
|
|
sent me arrived on time... :-).
Refactor this code to make it comprehensible. Tested
against W2K3 SP 1 and W2K SP 4. Test 19 is different
from what I thought. Turns out delete on close on
"open" of a directory (not create) does have an
effect - even if not reported in the flag bit.
trige please test against Vista (my XP box is
refusing to serve at the moment - have to reinstall).
Jeremy.
(This used to be commit 2b708e26185bfc0a909a33e74e67dd2101c3bbbe)
|
|
(This used to be commit 70ad98b05136da0cdbd91b8374ac9709abfcadeb)
|
|
now passes for me for W2K and W2K3... booting the XP
box to test it...
Jeremy.
(This used to be commit 0133ba78c15b10e925f4e26e163656aa7cd11476)
|
|
Jeremy.
(This used to be commit 0b61a8df3c1b5b1a73bf6afd0404871286d3a2fc)
|
|
Jeremy.
(This used to be commit 7986af2ece2e707ee3d98dadb37af9fc5126d138)
|
|
Jeremy.
(This used to be commit ae0851ce667c0559e786c3a83389ccfddce1a813)
|
|
metze
(This used to be commit 6c7065463fded629febd03efb2943d24cac74fda)
|
|
quicktest' but
also 'make test'
(This used to be commit e3d0676aee84e96e5c87bed4cd0cde75a4191953)
|
|
This allows the easy addition of additional named pipes and removes the
circular dependencies between the CIFS, RPC and RAP servers.
Simple tests for a custom named pipe included.
(This used to be commit 898d15acbd18e3b302a856c847e08c22c5024792)
|
|
(This used to be commit 841fb3d4e764dc7ae8222ad7cb69dc6244035ea2)
|
|
(This used to be commit f7c28d31481f6479f258cd878d173cbc42ed9de0)
|
|
group replicas
metze
(This used to be commit cf669e4b2a4dcfb080cbb01a108797acad802f36)
|
|
metze
(This used to be commit 833efdf8a943b210ba8e5b219dc754260001bedb)
|
|
(This used to be commit 7b9b1ced7d36a1adf8d86b3b434c9e5d4bdfab87)
|
|
metze
(This used to be commit b206c5e87c791ac8f2ecf5b7ef6b2622ad735f54)
|
|
In librpc, always try SMB level authentication, even if trying
schannel, but allow fallback to anonymous. This should better
function with servers that set restrict anonymous.
There are too many parts of Samba that get, parse and modify the
binding parameters. Avoid the extra work, and add a binding element
to the struct dcerpc_pipe
The libnet vampire code has been refactored, to reduce extra layers
and to better conform with the standard argument pattern. Also, take
advantage of the new libnet_Lookup code, so we don't require the silly
'password server' smb.conf parameter.
To better support forcing traffic to be sealed for the vampire
operation, the dcerpc_bind_auth() function now takes an auth level
parameter.
Andrew Bartlett
(This used to be commit d65b354959842326fdd4bd7eb7fbeea0390f4afa)
|
|
Andrew Bartlett
(This used to be commit 21f87f87a9b79da4463bddc993df502beae50a16)
|
|
the remote server's name, or in the absence of a local nbt_server to
communicate with (or without root access), a node status request.
The result is that we are in a better position to use kerberos, as well
as to remove the 'password server' mandatory parameter for the samsync
and samdump commands. (I need this to put these into SWAT).
The only problem I have is that I must create a messaging context, which
requires a server ID. As a client process, I don't expect to get
messages, but it is currently required for replies, so I generate a
random() number. We probably need the servers to accept connections on
streamed sockets too, for client-only tasks that want IRPC.
Because I wanted to test this code, I have put the NET-API-* tests into
our test scripts, to ensure they pass and keep passing. They are good
frontends onto the libnet system, and I see no reason not to test them.
In doing so the NET-API-RPCCONNECT test was simplified to take a
binding string on the command line, removing duplicate code, and
testing the combinations in the scripts instead.
(I have done a bit of work on the list shares code in libnet_share.c
to make it pass 'make test')
In the future, I would like to extend the libcli/findds.c code (based
off volker's winbind/wb_async_helpers.c, which is why it shows up a bit
odd in the patch) to handle getting multiple name replies, sending a
getdc request to each in turn.
(posted to samba-technical for review, and I'll happily update with
any comments)
Andrew Bartlett
(This used to be commit 7ccddfd3515fc2c0d6f447c768ccbf7a220c3380)
|
|
as well as ncacn_np.
rafal
(This used to be commit 70cf8a4b67657f7c51e95ae5321e5a2e7f52832d)
|
|
valgrind in 'make valgrindtest'
(This used to be commit b2030d527a75fecd907148d13860b4ba5193f218)
|
|
torture:quick is set
(This used to be commit b591b28567eba148509c5dec060efaef2fd95ff6)
|
|
structure that is more generic than just 'IP/port'.
It now passes make test, and has been reviewed and updated by
metze. (Thankyou *very* much).
This passes 'make test' as well as kerberos use (not currently in the
testsuite).
The original purpose of this patch was to have Samba able to pass a
socket address stucture from the BSD layer into the kerberos routines
and back again. It also removes nbt_peer_addr, which was being used
for a similar purpose.
It is a large change, but worthwhile I feel.
Andrew Bartlett
(This used to be commit 88198c4881d8620a37086f80e4da5a5b71c5bbb2)
|
|
to specific dirs)
(This used to be commit 243cf760b077e155f5ac508aeebf819f7708a84e)
|
|
metze
(This used to be commit 6647feb761a272b687d12685bc096e4ebdd02abe)
|
|
Andrew Bartlett
(This used to be commit 59c380e048423d706ab65513c09dbefecb5819ae)
|
|
(This used to be commit 568fc8a3412e07ac3084f441e693bc82b9ea912b)
|
|
(This used to be commit d73c343904f32956ba97e4ad82af9c9a75f5d70c)
|
|
(This used to be commit d96c84126dcc1ec97e39814f21de167528fe886f)
|
|
to add
trusted domains.
Volker
(This used to be commit 8b8bb85ad365721bfa1cf5309d53d851f2013c22)
|
|
(This used to be commit 63917616016133c623fc6ff59454bc313ee7dd8f)
|
|
(This used to be commit c722f665c90103f3ed57621c460e32ad33e7a8a3)
|
|
torture prototypes in seperate header
(This used to be commit 73610639b23ca3743077193fa0b1de7c7f65944d)
|
|
- we already call usleep() directly in some places,
so do it everywhere
metze
(This used to be commit 9eaf6e2c4d3dae3b6711e4aae3828222f5cab65e)
|
|
- do some tests with 0xBF and 0xBE, this shows that the '+' padding
should be done by the client
metze
(This used to be commit 5a257ba9811b247a0df2b44c99df00f59dacc1e0)
|
|
(This used to be commit 2b603d3ecf2f3108942422bda864e41c8addbf60)
|