sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-06-28 00:49:42 +03:00
Code
16,584 Commits 62 Branches 1,161 Tags
Commit Graph

18 Commits

Author SHA1 Message Date
Jeremy Allison
adf8ee3df7 More paranoia checks. 
Jeremy.
 -
Jeremy Allison
86b030197d Paranoia fixes :-). 
Jeremy.
 -
Gerald Carter
9f835b85dd convert snprintf() calls using pstrings & fstrings 
to pstr_sprintf() and fstr_sprintf() to try to standardize.
lots of snprintf() calls were using len-1; some were using
len.  At least this helps to be consistent.
 -
Andrew Bartlett
e9d6e2ea9a Merge minor library fixes from HEAD to 3.0. 
- setenv() replacement
 - mimir's ASN1/SPNEGO typo fixes
 - (size_t)-1 fixes for push_* returns
 - function argument signed/unsigned correction
 - ASN1 error handling (ensure we don't use initiailsed data)
 - extra net ads join error checking
 - allow 'set security discriptor' to fail
 - escape ldap strings in libads.
 - getgrouplist() correctness fixes (include primary gid)

Andrew Bartlett
 -
Gerald Carter
7a4c874842 merging some rpcclient and net functionality from HEAD -
Andrew Bartlett
3a7458f947 Merge from HEAD - make Samba compile with -Wwrite-strings without additional 
warnings.  (Adds a lot of const).

Andrew Bartlett
 -
Gerald Carter
65e7b5273b sync'ing up for 3.0alpha20 release -
Tim Potter
6a58c9bd06 Removed version number from file header. 
Changed "SMB/Netbios" to "SMB/CIFS" in file header.
 -
Andrew Tridgell
c6affae4bf fixed another DATA_BLOB constructor -
Andrew Tridgell
74303b75e4 add asn1 integer handling ready for the ldap netjoin code -
Jeremy Allison
ee5e7ca547 Added NT_USER_TOKEN into server_info to fix extra groups problem. 
Got "medieval on our ass" about const warnings (as many as I could :-).
Jeremy.
 -
Andrew Tridgell
353c290f05 the beginnings of kerberos support in smbd. It doesn't work yet, but 
it should give something for others to hack on and possibly find what
I'm doing wrong.
 -
Andrew Tridgell
b74fda69bf added basic NTLMSSP support in smbd. This is still quite rough, and 
loses things like username mapping. I wanted to get this in then
discuss it a bit to see how we want to split up the existing
session setup code
 -
Andrew Tridgell
1bcdf9106a minor Realloc() fix - pedantic -
Andrew Tridgell
076aa97bee added NTLMSSP authentication to libsmb. It seems to work well so I have enabled it by default if the server supports it. Let me know if this breaks anything. Choose kerberos with the -k flag to smbclient, otherwise it will use SPNEGO/NTLMSSP/NTLM -
Andrew Tridgell
395cfeea94 added a ASN.1 parser, so now I can properly parse the negTokenInit 
packet which means I can extract the service and realm, so we should
now work with realms other than the local realm.

it also means we now check the list of OIDs given by the server just
in case it says that it doesn't support kerberos. In that case we
should fall back to NTLMSSP but that isn't written yet.
 -
Andrew Tridgell
919734c1a6 fixed some memory leaks, started adding asn1 decoder for server side -
Andrew Tridgell
d330575856 initial kerberos/ADS/SPNEGO support in libsmb and smbclient. To 
activate you need to:

- install krb5 libraries
- run configure
- build smbclient
- run kinit to get a TGT
- run smbclient with the -k option to choose kerberos auth
 -