1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-24 21:34:56 +03:00
Commit Graph

222 Commits

Author SHA1 Message Date
Andrew Tridgell
e8010adffe r3543: fixed some #include lines to make them more consistent, and fixed
conditional compilation of xattr client code
(This used to be commit 321fb06a62)
2007-10-10 13:05:30 -05:00
Andrew Bartlett
c772c75400 r3541: Add support (to be verified with the squid team) for the Squid 3.0
multiplexed helper system.

This system prefixes every request with a number, and we maintian a
state machine for each of these integers.  This means that we can have
multiple outstanding challenges, without the overhead of a whole
ntlm_auth process.

In future, the actual password check will also be async.

Andrew Bartlett
(This used to be commit 9ea34abce3)
2007-10-10 13:05:30 -05:00
Andrew Tridgell
02785df1b0 r3497: removed some include cruft, and split out librpc/gen_ndr/tables.h
(This used to be commit 7dd3a5a6da)
2007-10-10 13:05:22 -05:00
Andrew Tridgell
6f214cc510 r3494: got rid of include/rewrite.h, and split out the dynconfig.h header
(This used to be commit 558de54ec6)
2007-10-10 13:05:22 -05:00
Jelmer Vernooij
bd6bc9c5ee r3490: All tests work against NT4 now
(This used to be commit 640e3a8ce8)
2007-10-10 13:05:21 -05:00
Jelmer Vernooij
3c4cd186ea r3489: Add a couple more DCOM tests (Both OxidResolver and RemoteActivation are
completely covered now)
(This used to be commit 06048d0dac)
2007-10-10 13:05:21 -05:00
Andrew Tridgell
6bd02aa504 r3478: split out some more pieces of includes.h
(This used to be commit 8e9212ecfc)
2007-10-10 13:05:20 -05:00
Andrew Tridgell
3643fb1109 r3463: separated out some more headers (asn_1.h, messages.h, dlinklist.h and ioctl.h)
(This used to be commit b97e395c81)
2007-10-10 13:05:17 -05:00
Andrew Tridgell
6148deca66 r3454: moved a few more things out if includes.h into the include/system/ include files.
this brings us down to about 11k lines of headers included with
includes.h, while still retaining the speed of building with pch
(This used to be commit 10188869ef)
2007-10-10 13:05:13 -05:00
Andrew Tridgell
edbfc0f6e7 r3453: - split out the auth and popt includes
- tidied up some of the system includes

- moved a few more structures back from misc.idl to netlogon.idl and samr.idl now that pidl
  knows about inter-IDL dependencies
(This used to be commit 7b7477ac42)
2007-10-10 13:05:13 -05:00
Andrew Tridgell
26c6b4c70b r3449: more include file reduction
the ldb part isn't ideal, I will have to think of a better solution
(This used to be commit 6b1f86aea8)
2007-10-10 13:05:13 -05:00
Andrew Tridgell
ead3508ac8 r3447: more include/system/XXX.h include files
(This used to be commit 264ce91810)
2007-10-10 13:05:12 -05:00
Andrew Tridgell
284349482f r3443: the next stage in the include files re-organisation.
I have created the include/system/ directory, which will contain the
wrappers for the system includes for logical subsystems. So far I have
created include/system/kerberos.h and include/system/network.h, which
contain all the system includes for kerberos code and networking code.
These are the included in subsystems that need kerberos or networking
respectively.

Note that this method avoids the mess of #ifdef HAVE_XXX_H in every C
file, instead each C module includes the include/system/XXX.h file for
the logical system support it needs, and the details are kept isolated
in include/system/

This patch also creates a "struct ipv4_addr" which replaces "struct
in_addr" in our code. That avoids every C file needing to import all
the system networking headers.
(This used to be commit 2e25c71853)
2007-10-10 13:05:11 -05:00
Jelmer Vernooij
beb3e7041a r3415: Add support for parsing a Request file before a Reply file so we can
use ndrdump for replies that depend on variables from requests
(This used to be commit 5d83de4c64)
2007-10-10 13:05:07 -05:00
Andrew Tridgell
a6ae640313 r3323: more warning reductions
(This used to be commit 5921587ec2)
2007-10-10 13:04:55 -05:00
Stefan Metzmacher
157dc5e7ea r3291: fix the build, thx to pipitas for finding this
metze
(This used to be commit d331a83f08)
2007-10-10 13:04:51 -05:00
Andrew Tridgell
9d055846f2 r3278: - rewrote the client side rpc connection code to use lib/socket/
rather than doing everything itself. This greatly simplifies the
  code, although I really don't like the socket_recv() interface (it
  always allocates memory for you, which means an extra memcpy in this
  code)

- fixed several bugs in the socket_ipv4.c code, in particular client
  side code used a non-blocking connect but didn't handle EINPROGRESS,
  so it had no chance of working. Also fixed the error codes, using
  map_nt_error_from_unix()

- cleaned up and expanded map_nt_error_from_unix()

- changed interpret_addr2() to not take a mem_ctx. It makes absolutely
  no sense to allocate a fixed size 4 byte structure like this. Dozens
  of places in the code were also using interpret_addr2() incorrectly
  (precisely because the allocation made no sense)
(This used to be commit 7f2c771b0e)
2007-10-10 13:04:49 -05:00
Jelmer Vernooij
c209120056 r3006: Poptify
(This used to be commit 5c46747c36)
2007-10-10 12:59:56 -05:00
Andrew Tridgell
6bea5bea4c r2643: convert more of the auth subsyystem to the new talloc methods. This
also fixes a memory leak found with --leak-check.
(This used to be commit f19201ea27)
2007-10-10 12:59:15 -05:00
Andrew Tridgell
a2f3527d96 r2630: I missed a couple of places in the gensec talloc conversion
(This used to be commit 7124949140)
2007-10-10 12:59:14 -05:00
Andrew Tridgell
c5f4378361 r2629: convert gensec to the new talloc model
by making our gensec structures a talloc child of the open connection
we can be sure that it will be destroyed when the connection is
dropped.
(This used to be commit f12ee2f241)
2007-10-10 12:59:14 -05:00
Andrew Bartlett
cf938f14a2 r2612: Ensure ntlm_auth always logs to stderr.
Add missing break;

Andrew Bartlett
(This used to be commit cdb8261775)
2007-10-10 12:59:11 -05:00
Andrew Bartlett
bfd924725e r2611: Try to make Samba4's ntlm_auth more consistant with Samba 3.0.
Andrew Bartlett
(This used to be commit 8f4dab5d44)
2007-10-10 12:59:11 -05:00
Tim Potter
df99e4bb37 r2597: A small program that takes SID strings on stdin and produces a marshalled
lsa_SidArray on stdout.
(This used to be commit d7d8a7ffc6)
2007-10-10 12:59:11 -05:00
Tim Potter
00e05a0b8b r2582: Merge checks for xattr and acl libraries from Samba3 so the {get,set}ntacl
programs can build on non-xattr machines.
(This used to be commit daad76207d)
2007-10-10 12:59:07 -05:00
Tim Potter
1cf7a3420e r2576: Some userspace tools for getting and setting ntacls via the 'security.ntacl'
extended attribute.
(This used to be commit 5b88226f90)
2007-10-10 12:59:07 -05:00
Andrew Bartlett
3318a6e2c6 r2546: Remove another strupper_m() that we don't need.
Andrew Bartlett
(This used to be commit 5c5b45c1a8)
2007-10-10 12:59:04 -05:00
Andrew Tridgell
e36341a85e r2074: fixed a typo
(This used to be commit dce43a535c)
2007-10-10 12:58:23 -05:00
Stefan Metzmacher
7eb820d31b r2066: add 'net time' command
use it like:

net time <server>
net time <server> -U "" -N
net time <server> -U DOM\\user
...

metze
(This used to be commit ea14b2780f)
2007-10-10 12:58:23 -05:00
Andrew Tridgell
b7e1ea20dc r1985: take advantage of the new talloc in a few more places
(This used to be commit 6ffdfd7799)
2007-10-10 12:58:14 -05:00
Stefan Metzmacher
32ec317c90 r1951: add 'net password set' call
use it like:
net password set user
net password set DOM\\user
net password set user pass
net password set DOM\\user pass
net password set -U DOM\\Administrator%admpass DOM\\user pass

metze
(This used to be commit b660e5b9e6)
2007-10-10 12:58:13 -05:00
Stefan Metzmacher
c2e2921bad r1949: provide functions to access the username, userdomain and userpassword
now you're prompted when cmdline_get_userpassword() is called
and the password is not yet known

metze
(This used to be commit d14a01533c)
2007-10-10 12:58:13 -05:00
Stefan Metzmacher
9d62046b0e r1919: paasword change basicly works now:-)
but we need to find the real pdc for the users domain
and fallback to other levels

metze
(This used to be commit f1b9c1f3dd)
2007-10-10 12:58:11 -05:00
Stefan Metzmacher
124e00068f r1915: use popt's cmdline_auth_info to fill the net_context
and print the user domain when prompting for a new password

metze
(This used to be commit aedb2e9e1c)
2007-10-10 12:58:11 -05:00
Stefan Metzmacher
5c9c6b4741 r1914: use common popt stuff in net
metze
(This used to be commit 52b866c403)
2007-10-10 12:58:11 -05:00
Stefan Metzmacher
770fb6d22d r1880: bugger, now I have used gcc 3.4.1 myself and have statements before declarations
Does any knows if there are flags to let gcc 3.4.1 fail with that?

metze
(This used to be commit 6ad57a86c8)
2007-10-10 12:58:08 -05:00
Stefan Metzmacher
bc3a20e9d8 r1879: - add a user sub struct in net_context
- add 'net password change' command
  (it doesn'T work yet because libnet_rpc_connect() isn't implemented yet,
   and we don't fill in the net_context user substruct yet)

metze
(This used to be commit 939da063cd)
2007-10-10 12:58:07 -05:00
Stefan Metzmacher
f7c842707a r1877: since make proto catches all functions
the inlcude has to move to includes.h

metze
(This used to be commit 97fe38183b)
2007-10-10 12:58:06 -05:00
Stefan Metzmacher
9373c046f1 r1876: rewrite net command completely
and add it to the build

metze
(This used to be commit 14b9858800)
2007-10-10 12:58:06 -05:00
Stefan Metzmacher
8de0c24a08 r1875: - move 'net' code into a subdir
- and remove all unneeded files

we'll reimplement the stuff step by step using the functions from
libnet/ which will do the hard work for us

metze
(This used to be commit 8b2d5ec973)
2007-10-10 12:58:06 -05:00
Stefan Metzmacher
85f12a0ee0 r1844: fix the build,
jelmer: you forgot lookupsid.c

metze
(This used to be commit 2d4b806156)
2007-10-10 12:58:00 -05:00
Jelmer Vernooij
d3e8a74551 r1838: Updates from the airplane:
- IDL fixes + adding comments
 - Start working on dcom infrastructure
(This used to be commit ef0fc269f0)
2007-10-10 12:58:00 -05:00
Jelmer Vernooij
daa7c98409 r1786: Add support for the 'helpstring' attribute on interfaces
(This used to be commit 85fb26a05d)
2007-10-10 12:57:56 -05:00
Stefan Metzmacher
c5fbb6f23c r1654: rename cli_ -> smbcli_
rename CLI_ -> SMBCLI_

metze
(This used to be commit 8441750fd9)
2007-10-10 12:57:47 -05:00
Andrew Tridgell
94fb514376 r1630: - fixed the replacement timegm() function to work correctly for DST changes
- got rid of global_myname(), using lp_netbios_name() instead
(This used to be commit e8d4b39088)
2007-10-10 12:57:45 -05:00
Andrew Bartlett
66ac77dd12 r1356: Fix logic bugs in ntlm_auth.
Andrew Bartlett
(This used to be commit 871e98ce57)
2007-10-10 12:56:52 -05:00
Andrew Bartlett
fb667783ac r1305: Grrr, fix my build breakage...
Declare variables at the start of a block.

Andrew Bartlett
(This used to be commit 9f5394703e)
2007-10-10 12:56:49 -05:00
Andrew Bartlett
dc9f55dbec r1294: A nice, large, commit...
This implements gensec for Samba's server side, and brings gensec up
to the standards of a full subsystem.

This means that use of the subsystem is by gensec_* functions, not
function pointers in structures (this is internal).  This causes
changes in all the existing gensec users.

Our RPC server no longer contains it's own generalised security
scheme, and now calls gensec directly.

Gensec has also taken over the role of auth/auth_ntlmssp.c

An important part of gensec, is the output of the 'session_info'
struct.  This is now reference counted, so that we can correctly free
it when a pipe is closed, no matter if it was inherited, or created by
per-pipe authentication.

The schannel code is reworked, to be in the same file for client and
server.

ntlm_auth is reworked to use gensec.

The major problem with this code is the way it relies on subsystem
auto-initialisation.  The primary reason for this commit now.is to
allow these problems to be looked at, and fixed.

There are problems with the new code:
- I've tested it with smbtorture, but currently don't have VMware and
  valgrind working (this I'll fix soon).
- The SPNEGO code is client-only at this point.
- We still do not do kerberos.

Andrew Bartlett
(This used to be commit 07fd885fd4)
2007-10-10 12:56:49 -05:00
Andrew Bartlett
be081037e0 r1200: Add 'gensec', our generic security layer.
This layer is used for DCERPC security, as well as ntlm_auth at this
time.  It expect things like SASL and the CIFS layer to use it as
well.

The particular purpose of this layer is to introduce SPENGO, which
needs generic access to the actual implementation mechanisms.

Schannel, due to it's 'interesting' setup properties is in GENSEC, but
is only in the RPC code.

Andrew Bartlett
(This used to be commit 902af49006)
2007-10-10 12:56:44 -05:00
Andrew Bartlett
bf598954f7 r1198: Merge the Samba 3.0 ntlm_auth, including the kerberos and SPENGO parts.
I have moved the SPNEGO and Kerberos code into libcli/auth, and intend
to refactor them into the same format as NTLMSSP.

Andrew Bartlett
(This used to be commit 58da78a746)
2007-10-10 12:56:44 -05:00
Andrew Tridgell
2fcf85920d r1135: - allow integer function numbers in ndrdump
- dump unused data in ndrdump
(This used to be commit 65c5590bd0)
2007-10-10 12:56:39 -05:00
Stefan Metzmacher
770e3307ce r962: convert 'unsigned' and 'unsigned int' to uint_t
metze
(This used to be commit 57151e80eb)
2007-10-10 12:56:23 -05:00
Stefan Metzmacher
98d291423f r961: convert 'uchar' to 'uint8_t'
metze
(This used to be commit 9f914e4af9)
2007-10-10 12:56:23 -05:00
Stefan Metzmacher
fa2e9ec311 r960: convert 'unsigned int' to uint_t in the most places
metze
(This used to be commit 18062d2ed9)
2007-10-10 12:56:23 -05:00
Stefan Metzmacher
45e93c19ef r943: change samba4 to use 'uint8_t' instead of 'unsigned char'
metze
(This used to be commit b5378803fd)
2007-10-10 12:56:21 -05:00
Stefan Metzmacher
fcd718c7d8 r890: convert samba4 to use [u]int8_t instead of [u]int8
metze
(This used to be commit 2986c5f08c)
2007-10-10 12:56:16 -05:00
Stefan Metzmacher
f88bf54c7f r889: convert samba4 to use [u]int16_t instead of [u]int16
metze
(This used to be commit af6f1f8a01)
2007-10-10 12:56:16 -05:00
Stefan Metzmacher
f9d8f8843d r884: convert samba4 to use [u]int32_t instead of [u]int32
metze
(This used to be commit 0e5517d937)
2007-10-10 12:56:15 -05:00
Stefan Metzmacher
6ac53d211d r866: convert the rest of the binaries to config.mk files
metze
(This used to be commit 0f8c193ac3)
2007-10-10 12:56:13 -05:00
Stefan Metzmacher
f1a8a690fc r852: remove unused utility progs
metze
(This used to be commit 4ef0b3656a)
2007-10-10 12:56:12 -05:00
Stefan Metzmacher
a3d61e0485 r848: convert lib/tdb into the same layout as lib/ldb
metze
(This used to be commit bacab322ce)
2007-10-10 12:56:02 -05:00
Andrew Tridgell
5767c10773 r718: removed some more unused code, and two source files
(This used to be commit a9768c25fd)
2007-10-10 12:53:44 -05:00
Stefan Metzmacher
f236700ef6 r665: merge over the new build system from my tmp branch
to the main SAMBA_4_0 tree.

NOTE: that it's not completely ready, but it's functional:-)

metze
(This used to be commit c78a2ddb28)
2007-10-10 12:53:36 -05:00
Andrew Tridgell
ac193579e7 r152: a quick airport commit ....
added ldbedit, a _really_ useful command

added ldbadd, ldbdel, ldbsearch and ldbmodify to build

solved lots of timezone issues, we now pass the torture tests with
client and server in different zones

fixed several build issues

I know this breaks the no-LDAP build. Wait till I arrive in San Jose for that
fix.
(This used to be commit af34710d4d)
2007-10-10 12:51:11 -05:00
Gerald Carter
381a903d00 r42: importing .cvsignore files
(This used to be commit 11717ae912)
2007-10-10 12:50:40 -05:00
Andrew Tridgell
3c76426f2e * removed some unused code
* updated tdb to latest version from Samba3

 * removed some extraneous ';' in tdbutil.c (Thanks to Erlend Aasland
   for pointing this out)
(This used to be commit f3eaf270e5)
2003-12-10 03:02:12 +00:00
Andrew Tridgell
c7fd83d0b2 added the dcerpc remote management interfaces as mgmt.idl, and wrote a
test suite. The test suite dumps all of the interfaces available on
all pipes. There sure are a lot more interfaces on w2k3 than w2k !
(This used to be commit f94bc07990)
2003-11-24 01:24:29 +00:00
Andrew Tridgell
27b1dbaea6 * better diagnostics in ndrdump
* added samr_Connect2()
(This used to be commit 6b262ca37c)
2003-11-23 21:51:24 +00:00
Andrew Tridgell
3d0e6b3835 added a tool called 'ndrdump' that allows you to dump NDR data
according to the current IDL taking the data from a file. In
combination with a little hack to ethereal to extract data this is a
quite powerful IDL development tool.
(This used to be commit 229a325c3c)
2003-11-23 13:44:19 +00:00
Andrew Tridgell
231ae2430e get rid of some more unused headers
(This used to be commit 48276c768b)
2003-11-23 03:10:50 +00:00
Andrew Tridgell
8e4ab747b0 more fixes from the IRIX compiler (thanks herb!)
(This used to be commit 4cf3839b72)
2003-08-15 18:33:43 +00:00
Andrew Tridgell
ef2e26c91b first public release of samba4 code
(This used to be commit b0510b5428)
2003-08-13 01:53:07 +00:00