summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2008-09-23Merge branch 'master' of ssh://git.samba.org/data/git/sambaAndrew Tridgell207-53113/+1778
2008-09-23selftest: run smb signing tests as part of make quicktestStefan Metzmacher1-0/+1
metze
2008-09-23selftest: test some smb signing combinations against the member serverStefan Metzmacher1-0/+40
metze
2008-09-23s4:smb_server: remove the bogus smbsrv_signing_restart()Stefan Metzmacher2-41/+2
Real signing always starts with seqnumber 2, and once signing is on the session key never change anymore for the complete smb connection. metze
2008-09-23libcli/smb_composite: for spnego session setups check the smb signature manuallyStefan Metzmacher1-23/+57
We need to start signing when we got NT_STATUS_OK from the server and manually check the signature of the servers response. This is needed as the response might be signed with the krb5 acceptor subkey, which comes within the server response. With NTLMSSP this happens for the session setup: request1 => BSRSPYL seqnum: 0 response1 => BSRSPYL seqnum: 0 request2 => BSRSPYL seqnum: 0 response2 => <SIGNATURE> seqnum: 1 and with krb5: request1 => BSRSPYL seqnum: 0 response1 => <SIGNATURE> seqnum: 1 metze
2008-09-23libcli/raw: real signing starts at seqnumber 2Stefan Metzmacher1-0/+1
metze
2008-09-23libcli/raw: in SMB_SIGNING_ENGINE_BSRSPYL state it's ok to accept any signatureStefan Metzmacher1-0/+2
Even if signing is mandatory. With NTLMSSP this happens for the session setup: request1 => BSRSPYL response1 => BSRSPYL request2 => BSRSPYL response2 => <SIGNATURE> and with krb5: request1 => BSRSPYL response1 => <SIGNATURE> metze
2008-09-23libcli/raw: give the caller the chance to do the signing checks on its own.Stefan Metzmacher2-0/+10
metze
2008-09-23libcli/raw: give the caller the chance to prevent the talloc_free(req) in ↵Stefan Metzmacher2-1/+8
the _recv functions metze
2008-09-23gensec_krb5: only give away the session key, when the authentication is doneStefan Metzmacher1-0/+4
metze
2008-09-23gensec_gssapi: only give away the session key, when the authentication is doneStefan Metzmacher1-4/+5
metze
2008-09-23ntlmssp: only give away the session key, when the authentication is doneStefan Metzmacher1-0/+4
metze
2008-09-23RPC-PAC: loop in gensec_update() untill the server side is readyStefan Metzmacher1-5/+1
metze
2008-09-23s4-nbt: use ../libcli/nbtGünther Deschner10-14/+14
Guenther
2008-09-23s4-nbt: move libcli/nbt up one level.Günther Deschner8-3042/+0
Guenther
2008-09-23s4-nbt: merge some fixes from samba3 nbt helper.Günther Deschner2-24/+24
Guenther
2008-09-23s4-nbt: use private_data instead of private.Günther Deschner19-57/+57
Guenther
2008-09-23s4-nbt: remove unrequired include.Günther Deschner1-1/+0
Guenther
2008-09-23s4: add talloc_strdup_upper.Günther Deschner1-1/+7
Guenther
2008-09-23test setinfo FULL_EA_INFORMATION in gentestAndrew Tridgell1-1/+8
2008-09-23added FULL_EA_INFORMATION setea callAndrew Tridgell2-1/+20
2008-09-23fixed a memory error in change notify handling in gentestAndrew Tridgell1-2/+1
2008-09-23fixed readonly handling in deltreeAndrew Tridgell2-1/+22
2008-09-23added some debug codeAndrew Tridgell3-1/+5
2008-09-22Remove unused parameter from decode_pw_buffer and fail on invalidAndrew Bartlett3-13/+14
UTF-16 input The input checking is important, as otherwise we could set the wrong password. Andrew Bartlett
2008-09-22Remove unused variableAndrew Bartlett1-2/+0
2008-09-22Explain why we use signing for DCs, but not file serversAndrew Bartlett1-0/+9
2008-09-22Test re-setting the challenge after an auth3 in RPC-NETLOGONAndrew Bartlett1-0/+4
2008-09-22This torture test and skipping of the server-side check was bogus.Andrew Bartlett2-52/+1
The IDL is declared to force the MessageType to 3 on output, so we instead checked the same thing 255 times... Andrew Bartlett
2008-09-22s4: allways initialize the process model before it's usedStefan Metzmacher8-9/+10
metze
2008-09-22process incoming connections and fork a samba3 in inetd modeStefan Metzmacher3-0/+183
2008-09-21Fix merged build.Jelmer Vernooij2-4/+5
2008-09-21Torture suite: Revert some changes because they aren't necessaryMatthias Dieter Wallnöfer2-16/+0
This reverts some changes made by me because they aren't necessary. The "ZERO_STRUCT"'s remain in.
2008-09-21Registry client: Remove all conversion helper functionsMatthias Dieter Wallnöfer1-44/+17
2008-09-21Registry client library: Remove two elementar conversion functionsMatthias Dieter Wallnöfer1-26/+4
2008-09-21Revert "Registry tool "regtree": Removing an error message"Matthias Dieter Wallnöfer1-0/+5
This reverts commit f37a57fa366e2b0d77f9c1bd232d42a0f2cceb52.
2008-09-21Torture suite: Fixes the tests to not segfault again SAMBA 4 registry serverMatthias Dieter Wallnöfer2-0/+32
2008-09-21Registry client: Fixup the "patchfile" libraryMatthias Dieter Wallnöfer1-38/+66
Rework and enhance the "patchfile" library (used in "regdiff")
2008-09-21Registry client: Implement the "winreg_QueryValue" callMatthias Dieter Wallnöfer1-0/+48
This is needed for the registry patchfile library
2008-09-21Registry client library: Use "talloc_zero" to avoid uninitialized valuesMatthias Dieter Wallnöfer1-3/+2
2008-09-21Registry tool "regdiff": Add the event context for remote connectionsMatthias Dieter Wallnöfer1-1/+1
Adds the event context for remote connections to make the tool working again.
2008-09-21Registry client library: Fixes the creation of new keysMatthias Dieter Wallnöfer2-2/+3
Giving the right permissions
2008-09-21Registry client library: Fix some buffer problemsMatthias Dieter Wallnöfer1-5/+9
This buffer maximum values are used in Windows (2000), so I take them also for SAMBA 4.
2008-09-21Registry client library: Various fixup's and correctionsMatthias Dieter Wallnöfer1-63/+64
I reverted the change with the string conversions because they aren't needed and included many fixup's and improvements in the code. We should be able now to connect to a Windows WINREG server without a problem.
2008-09-21Registry tools "regshell" and "regtree": Small fixup'sMatthias Dieter Wallnöfer2-22/+6
I fixed up my fault regarding the handling of the default value (if it doesn't exist it hasn't the index number zero and you get immediately the subvalues). Then I corrected an error in regshell to find the right registry context.
2008-09-21Registry client: Various cleanups and charset conversionsMatthias Dieter Wallnöfer1-66/+125
This patch contains various changes to the "rpc.c" file to clean it up and introduces the right string charset conversions (UNIX <-> UTF16).
2008-09-21Registry tool "regshell": Handle the default attribute in the right wayMatthias Dieter Wallnöfer1-13/+15
This commit introduces the default attribute in "regshell"
2008-09-21Registry tool "regtree": Removing an error messageMatthias Dieter Wallnöfer1-5/+0
The error message "Error occurred while fetching values" doesn't seem very useful, so remove it.
2008-09-21Registry tool "regtree": Handle the default attribute in the right wayMatthias Dieter Wallnöfer1-12/+18
This commit introduces the default attribute in "regtree"
2008-09-21Avoid printing characters when in immediate mode.Jelmer Vernooij1-4/+6