summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r9418: SPNEGO fixes:Andrew Bartlett1-18/+29
- Fix mixing of code and data - send mechListMic again in SPENGO server - only send optomistic first packet in the client. (This used to be commit 9941da8081ef5a669b0946265860d2f20d3718d3)
2007-10-10r9417: Ask for the ASYNC_REPLIES feature, as will want that.Andrew Bartlett1-0/+1
Andrew Bartlett (This used to be commit 8cb8f99ae602f3bca0235e5e695ecb1ba55b0e46)
2007-10-10r9416: Cleanups inspired by jra's work to migrate Samba4's NTLMSSP code backAndrew Bartlett6-170/+160
into Samba3. The NTLMSSP sign/seal code now assumes that GENSEC has already checked to see if SIGN or SEAL should be permitted. This simplfies the code ensures that no matter what the mech, the correct code paths have been set in place. Also remove duplication caused by the NTLMv2 code's history, and document why some of the things a bit funny. In SPNEGO, create a new routine to handle the negTokenInit creation. We no longer send an OID for a mech we can't start (like kerberos on the server without a valid trust account). Andrew Bartlett (This used to be commit fe45ef608f961a6950d4d19b4cb5e7c27b38ba5f)
2007-10-10r9415: Remove old kerberos code (including salt guessing code) that has onlyAndrew Bartlett3-713/+8
caused me pain (and covourty warnings). Simply gensec_gssapi to assume the properties of lorikeet-heimdal, rather than having #ifdef around critical features. This simplifies the code rather a lot. Andrew Bartlett (This used to be commit 11156f556db678c3d325fe5ced5e41a76ed6a3f1)
2007-10-10r9414: Fix failure to find own domain info due to recent ldb_dn upgrade - weAndrew Bartlett1-2/+2
don't use a simple char* here any more. Andrew Bartlett (This used to be commit f21c31c7e151e23caa2699b1727d1ae310fbed4e)
2007-10-10r9413: Bring Samba4 back up to date with lorikeet-heimdal.Andrew Bartlett26-609/+1613
Delete test_crypto_wrapping.c, previously included but unbuilt. Andrew Bartlett (This used to be commit d5fb30fb0cef330e0947969f0c9afc1f58fc4c7d)
2007-10-10r9412: Simplfy this NTLM authentication code by requiring the caller toAndrew Bartlett2-96/+42
supply the user_sess_key and lm_sess_key parameters. Inspired by coverty complaining about inconsistant checking. Also factor out some of this code, where we deal with just NT and LM hashes, or embedded plaintext passwords. Andrew Bartlett (This used to be commit ceec35564f44c8043888c8ffa776f137bd1171c8)
2007-10-10r9411: Ensure we don't send a challenge without first getting a negotiate inAndrew Bartlett2-2/+9
NTLMSSP, unless we are in datagram mode (not fully implemented yet). Andrew Bartlett (This used to be commit 727f5109421e9414a335e42e3ad3dd3ff19776bd)
2007-10-10r9410: - a winreg_CloseKey() should return a zero key on success (zeroing theAndrew Tridgell1-7/+4
callers key). This is the normal pattern with rpc handles. - fixed reference to undefined error variable in winreg_DeleteKey() (This used to be commit 6757d51a280d6c393648a384f1ef3ca403517352)
2007-10-10r9409: fix a problem that volker noticed with web page timeouts causing smbdAndrew Tridgell2-2/+25
to crash. This is one of the downsides of the fact that the ejs engine is not event driven, resulting in the rendering of each web page being 'semi-async'. We need to protect the web context from the timeout processing until we have unwound the stack back to the point that the 'web' variable representing the page rendering logic won't be used any more. (This used to be commit 97e3c9eaf1a917eb504a2c3414c5d2b64cd4539a)
2007-10-10r9406: Add const.Andrew Bartlett1-3/+3
Andrew Bartlett (This used to be commit 4c6052ccfd6ff01eb00d8f953ae8912ea6dedba3)
2007-10-10r9396: ntlm_auth updates, including again support for the NTLMSSP clientAndrew Bartlett1-2/+8
mode, and specification of the workstation. Andrew Bartlett (This used to be commit 8f53d995c63b718b40fb52ec102fa74f94719b65)
2007-10-10r9394: avoid to use BOOL in ldbSimo Sorce2-8/+4
(This used to be commit d2055849fba56e8620403621f3fb9684f24e853f)
2007-10-10r9393: Fix ldb standalone buildSimo Sorce2-0/+6
(This used to be commit 796d0ea2fcf5132b157a397cc1a54aa26c042691)
2007-10-10r9392: Fix ldb_dn_compose to make build farm happySimo Sorce7-42/+36
Add ldb_dn_string_compose so that you can build a dn starting from a struct ldb_dn base and a set of parameters to be composed in a format string with the same syntax of printf (This used to be commit 31c69d0655752cc8ea3bc5b7ea87792291302091)
2007-10-10r9391: Convert all the code to use struct ldb_dn to ohandle ldap like ↵Simo Sorce56-864/+1477
distinguished names Provide more functions to handle DNs in this form (This used to be commit 692e35b7797e39533dd2a1c4b63d9da30f1eb5ba)
2007-10-10r9390: fixed mixing of code and dataAndrew Tridgell1-1/+2
(This used to be commit ae2122e76a7e50435dafcc412ee425b522c0c766)
2007-10-10r9389: handle errors reading from files in web serverAndrew Tridgell1-4/+5
bug found by coverity (This used to be commit 1a3229777adf12f8148267af7b33689ebe880ed8)
2007-10-10r9388: we should fault bad handles given to winreg_GetVersion()Andrew Tridgell1-1/+5
(This used to be commit 00e55be9efc6050e3bda13603270b028dbc19c3f)
2007-10-10r9387: regedit uses "New Key #nn" for newly created keys, which conflicts ↵Andrew Tridgell3-4/+17
with the stricter DN rules in ldb. Escape the DN components to cope. Simo, sorry for making a change in ldb_dn.c while you have changes pending. Please feel free to revert these and switch reg_backend_ldb.c to use the new dn construction code. (This used to be commit 136ecf5cb23758558b4119b08047fc273be8b0f8)
2007-10-10r9386: OpenKey with a bad name must return WERR_BADFILE (w2k3 regedit relies ↵Andrew Tridgell1-1/+1
on this) (This used to be commit ae42976590b3c532790d854be45fff49074aef68)
2007-10-10r9385: Remove unused functionsSimo Sorce1-97/+0
(This used to be commit fac8ff623778250acd830f358fcd34b85f7983b6)
2007-10-10r9384: added a debug to show the dcerpc fault code for any calls we faultAndrew Tridgell1-0/+4
(This used to be commit 92ed69695b2a5459e79f3edb37790a17de5a66c6)
2007-10-10r9382: Add a dummy registry for HKEY_USERS to get rid of the annoying dialogTim Potter1-0/+6
presented by regedt32. I think this hive is dynamically generated from SAM information. (This used to be commit feb341969e59540bc22e78df0d44b4d42c336d31)
2007-10-10r9381: Line wrapping.Tim Potter1-8/+8
(This used to be commit 2cebdd59387786c8aeee4c6757e38ed5303f7315)
2007-10-10r9379: the valgrind test box is now just going past the max 30 minute smbdAndrew Tridgell1-1/+1
runtime for testing. Increased to 45 minutes. (This used to be commit 4fd436260901785e808de23763a6e127bc742142)
2007-10-10r9378: initialise the last_mod attribute in the ldb backend. Better to returnAndrew Tridgell1-0/+2
0 than an uninitialised value, but we should put proper last_modified time support into the ldb winreg backend in the future (This used to be commit 899bf07908d4a04cb3d1cd4034dca0c91e6a912b)
2007-10-10r9377: made winreg a user tool (I find it quite useful). I expect it to get ↵Andrew Tridgell2-0/+76
the ability to add/remove keys and values in the future. add it to the standard tests, ensuring that we know if winreg breaks. This is particularly important as winreg uses such unusual IDL constructs (This used to be commit e4ca36bda34cf5e6fecaef5fe60e5dd397ebee3c)
2007-10-10r9374: HPUX is also missing setegid()Andrew Tridgell2-1/+13
(This used to be commit 57e6bd61395e82064c72510dcc326b11b7bdf7fd)
2007-10-10r9373: - create a hierachical memory tree with recursiv ndr_pull_* functionsStefan Metzmacher6-24/+168
- with this it's also possible to talloc_free() the ndr_pull structure and talloc_steal(ndr->current_mem_ctx); to fetch the whole data of the hierachical tree - if the toplevel struct is a valid talloc pointer it's also possible to use NDR_PULL_SET_MEM_CTX(ndr, mem_ctx); to the the toplevel pointer with the struct pointer (NOTE: no callers are using this yet, but they shortly will) metze (This used to be commit 1a2b8369586642cc9bc15d015c1e4256c3a92732)
2007-10-10r9372: - make the subcontext handling autogenerated code look nicer,Stefan Metzmacher5-126/+179
- unify the handling of subcontext, compression and obfucation metze (This used to be commit 09de7e0af7f9f7539cf63791baf90ac202536176)
2007-10-10r9371: add the usefull trick hack for NT_STATUS_NO_MEMORY tooStefan Metzmacher1-0/+5
metze (This used to be commit 9b9635833f44e63f8acfd619ae2ecc06f6b2312a)
2007-10-10r9370: need a configure test for setresuid()Andrew Tridgell1-1/+1
(This used to be commit 5a38b9a10b3c5363cddc7acaaea2e1e9aceb254c)
2007-10-10r9369: an attempt to fix the build on HPUX. This is based on work by DonAndrew Tridgell5-137/+35
McCall, but takes a slightly different approach that I hope will be more generic (This used to be commit e8260a81cf99be2ccae64135ca0572c8a6ae62ad)
2007-10-10r9360: fixed the IDL for winreg_SetValue()Andrew Tridgell1-1/+1
(This used to be commit 8aff6a0bd808358162b646514d996ad432bfb70d)
2007-10-10r9359: don't check for size overflow if value is NULLAndrew Tridgell1-1/+2
this gets viewing the product options in smbd HKLM from w2k3 regedit working (This used to be commit 17f3250dd61bc9aad5cf3804e271383e219752f6)
2007-10-10r9358: - opening a winreg key of "" is the same as re-opening the hive. TheAndrew Tridgell1-11/+17
w2k3 regedit does this. - w2k3 expects null termination is string lengths (This used to be commit bcef9e592acd96a2fd7028b299d3d93968d044ae)
2007-10-10r9357: Remove DBGC_CLASS cruft copied over from Samba 3. I would like toTim Potter13-39/+0
replace this with something funkier. (This used to be commit 8d376d56c78894b9bbd27ed7fa70da415c0cd038)
2007-10-10r9356: a better way of coping with NULL arrays in the array bounds checking. ↵Andrew Tridgell2-8/+4
This copes with the case of size_is(*size) where size is NULL, and the array is NULL (This used to be commit 56769b4b1d900cce60cd35298b642a85e4eddfee)
2007-10-10r9355: return the EnumKey and EnumValue list we have so far when we get a ↵Andrew Tridgell1-4/+4
rpc fault (This used to be commit 3a9c63923fbb21dfb8e5fc549dde8fad8cb8f354)
2007-10-10r9347: this array bounds checking is harder than it looks ...Andrew Tridgell2-2/+12
this copes with 2 more situations: 1) where the array is NULL, which would previously be coped with by a if (ptr) check, but now in the deferred array bounds checking needs to look at the array variable in the ndr code. Not nice. 2) nest the array checking along with the SCALARS vs BUFFERS checks, ensuring we don't do array bounds checking for a buffer when in scalars only mode (This used to be commit ad1b9867a5a14bc9ed2e1a5eb8f05bb2046bc645)
2007-10-10r9346: allow test_ldap.sh to be called when $CONFFILE is not setAndrew Tridgell1-1/+1
(This used to be commit 3ad02091f621e3ff51aa082ca7a47b9da238aa40)
2007-10-10r9344: started adding calls for manipulation of data blobs in ejsAndrew Tridgell4-1/+167
added: blobToArray() blobFromArray() blobCompare() (This used to be commit cc5a3e9cc3b44f418eb5dfcd4e855a36c5ac8327)
2007-10-10r9340: print the [in] contents when debugging even if the marshallingAndrew Tridgell1-2/+4
failed. This makes it easier to track down marshalling bugs. (This used to be commit a7a1752ca47a18b325a0ad0984cf7d02da1e2afe)
2007-10-10r9339: treat arrays of uint8 values as a special DATA_BLOB type in the ejsAndrew Tridgell4-3/+88
interfaces to RPC. This makes large blobs of data much saner. Tim, you will probably want to do the same for the smb_interfaces.h generated code. Next we will need ways of extracting different data types from these blobs, for example asking for the blob to be interpreted as a utf16 string, or as a little-endian integer. That will allow for registry scripting to be quite sane. (This used to be commit a8bca2e8e27c953c0413693326ec3b5ecf17ba41)
2007-10-10r9338: fixed the winreg IDL to be correct for the EnumKey and EnumValueAndrew Tridgell5-112/+219
calls. The previous IDL was just a workaround for the limitations of our older rpc infrastructure. Now that Jelmer has added much improved string support using the charset keyword we can correctly implemenent the unusual winreg string buffers. Jelmer, note the little comment I put on winreg_StringBuf() about why I couldn't use [value()] for the length field. This also fixes EnumKey() and EnumValue() to use NTTIME fields for the last_changed_time. I don't know why we were using a pair of uint32's, as it is just a NTTIME. (This used to be commit 8354b016122cc4f3cff042b3ada1de07e1614eb7)
2007-10-10r9337: defer the checking of array sizes until the end of theAndrew Tridgell1-4/+53
function/structure, as the checks might involve variables that have not yet been unmarshalled. This is needed to cope with the correct IDL for the winreg pipe. Jelmer, can you look at this when you get a chance and see if you think this is a reasonable approach? Sorry its wrecks the nice indentation in the generated code. (This used to be commit 127ed0cfe2d210f5e927d3768d5372042d1c070c)
2007-10-10r9335: only copy the in side of an array to the out side of an array when theAndrew Tridgell1-1/+2
array is a [ref] pointer. For non-ref arrays it is quite valid for a server to return a larger response array then the client gave (as can happen with winreg) in which case this memcpy() will fault. (This used to be commit 6cf20e7adb9891119fdc9a0b208c3f94fe823334)
2007-10-10r9321: Fix potential bug found by Coverity. src_len has to be int but later ↵Alexander Bokovoy1-5/+5
we do pass it as size_t. In case src_len is negative, we need to register a failure and return to the caller (This used to be commit 95d96c79a538814bb524d7905e1e8f64df6341ca)
2007-10-10r9320: Fix premature dereference bug found by Coverty and also get rid of ↵Alexander Bokovoy1-6/+3
non-used memory context (This used to be commit 127e06492a545940443c93e9aec66eebefa26dc2)