samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00

Author	SHA1	Message	Date
Stefan Metzmacher	664ca0e3ee	libcli/smb: negotiate SMB3_DIALECT_REVISION_310 if PROTOCOL_SMB3_10 is requested Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2014-10-07 22:47:04 +02:00
Stefan Metzmacher	d22fd000c9	libcli/smb: add PROTOCOL_SMB3_10 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2014-10-07 22:47:04 +02:00
Stefan Metzmacher	1fa8861f15	libcli/smb: add SMB3_DIALECT_REVISION_310 define Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2014-10-07 22:47:04 +02:00
Stefan Metzmacher	3eef853f74	libcli/smb: fix smb2cli_validate_negotiate_info with min=PROTOCOL_NT1 max=PROTOCOL_SMB2_02 If the connection starts with a SMB Negprot, the server only implies the selected dialect, but not the clients security mode. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2014-10-07 22:47:04 +02:00
Richard Sharpe	e4c27cb4bb	Add a status code for VHD support gleaned from some Win8.1 stuff. Signed-off-by: Richard Sharpe (rsharpe@samba.org) Reviewed-by: Jeremy Allison <jra@samba.org>	2014-10-06 19:18:05 +02:00
Jeremy Allison	6c05cd3e89	s3: smb2cli: query info return length check was reversed. Make it identical to the check in libcli/smb/smb2cli_ioctl.c https://bugzilla.samba.org/show_bug.cgi?id=10848 Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: "Stefan (metze) Metzmacher" <metze@samba.org> Reviewed-by: David Disseldorp <ddiss@suse.de> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Oct 2 04:42:26 CEST 2014 on sn-devel-104	2014-10-02 04:42:26 +02:00
Stefan Metzmacher	26ff9f3487	libcli/smb: call smb2cli_validate_negotiate_info*() after each authenticated tcon Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-30 23:35:08 +02:00
Stefan Metzmacher	7729ba5849	libcli/smb: add smb2cli_validate_negotiate_info*() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-30 23:35:08 +02:00
Stefan Metzmacher	6a82cb7b68	libcli/smb: list NT_STATUS_FILE_CLOSED as expected ioctl response. Some IOCTL requests change the behavior with new protocol versions. E.g. FSCTL_VALIDATE_NEGOTIATE_INFO resulted in NT_STATUS_FILE_CLOSED for old servers. As SMB2 signing might be skipped for responses with NT_STATUS_FILE_CLOSED we need to list it explicitly in the expected return values. This way we'll get NT_STATUS_ACCESS_DENIED, if the server doesn't sign the response to a signed requests. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-30 23:35:08 +02:00
Stefan Metzmacher	b77bb5a2e3	libcli/smb: move smb2cli_tcon.c to the toplevel removing use of cli_state from the code. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-30 23:35:08 +02:00
Stefan Metzmacher	8c846f78ed	libcli/smb: add smb2cli_tcon_{should_sign,is_signing_on}() This can be used to force signing for individual requests. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-30 23:35:08 +02:00
Stefan Metzmacher	e954f9290c	libcli/smb: add smb2cli_tcon_should_encrypt() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-30 23:35:08 +02:00
Stefan Metzmacher	ca1081ef5e	libcli/smb: add smbXcli_session_is_authenticated() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-30 23:35:08 +02:00
Stefan Metzmacher	aa4310b0af	libcli/smb: support additional_flags = SMB2_HDR_FLAG_SIGNED With SMB2_HDR_FLAG_SIGNED we make sure that we either use smb2 signing or smb2 encryption for the request. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-30 23:35:08 +02:00
Andreas Schneider	763d37e6a4	libcli: Remove unreachable code in cldap. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-28 01:32:09 +02:00
Andreas Schneider	321e948c98	libcli: Remove unreachable code in dns_hosts_file. The count is already checked for 0 above this line so it can never be 0 at this point. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-28 01:32:09 +02:00
Jeremy Allison	69a7e3cfdc	s4: libcli: ldap message - Ensure all asn1_XX returns are checked. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ronnie Sahlberg <ronniesahlberg@gmail.com> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Fri Sep 26 03:15:00 CEST 2014 on sn-devel-104	2014-09-26 03:15:00 +02:00
Jeremy Allison	53f21ffb4a	libcli: auth: Ensure all asn1_XX returns are checked. Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ronnie Sahlberg <ronniesahlberg@gmail.com>	2014-09-26 00:51:16 +02:00
Andreas Schneider	f92086f4a3	libcli: Fix a segfault calling smbXcli_req_set_pending() on NULL. BUG: https://bugzilla.samba.org/show_bug.cgi?id=10817 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Sep 23 04:23:05 CEST 2014 on sn-devel-104	2014-09-23 04:23:05 +02:00
Anubhav Rakshit	4c64d41cfc	libcli/smb: Add routines to enable/disable SMB2_HDR_FLAG_REPLAY_OPERATION flag. Signed-off-by: Anubhav Rakshit <anubhav.rakshit@gmail.com> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-19 09:15:10 +02:00
Anubhav Rakshit	2a8a6edfef	libcli/smb: Add routine to reset the Channel Sequence number. Signed-off-by: Anubhav Rakshit <anubhav.rakshit@gmail.com> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-19 09:15:10 +02:00
Stefan Metzmacher	dfcc683e38	libcli/smb: correctly report disconnect errors after getting STATUS_PENDING smb2cli_req_recv() should not report STATUS_PENDING if the request isn't pending anymore (e.g. the connection was disconnected) Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-09-19 09:15:10 +02:00
Volker Lendecke	3ffff13e0d	lib: Fix samba-util dep in "errors" module This piece of code pulls in talloc_stackframe and smb_panic into what should be a very simple mapping library. I'm trying to reduce our dependencies right now a bit, and I think the use cases that this fixes (unknown NTSTATUS together with double nt_errstr() calls in the same DEBUG) are rare enough that this is not justified. Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>	2014-09-18 20:36:11 +02:00
Volker Lendecke	6a1c51ee80	lib: Reduce deps for "smb_transport" Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Martin Schwenke <martin@meltin.net>	2014-09-18 20:36:11 +02:00
Volker Lendecke	6ce6262014	lib: Make nt_err_code_struct private Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Sep 17 02:56:54 CEST 2014 on sn-devel-104	2014-09-17 02:56:54 +02:00
Stefan Metzmacher	3fcc4a545e	libcli/dns: ignore NS entries in dns_hosts_file.c at a higher log level for now Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-08-26 09:13:06 +02:00
Stefan Metzmacher	7f18a3b58e	libcli/dns: add AAAA support to dns_hosts_file.c Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-08-26 09:13:06 +02:00
Stefan Metzmacher	5cbda7e248	libcli/security: add better detection of SECINFO_[UN]PROTECTED_[D\|S]ACL in get_sec_info() Bug: https://bugzilla.samba.org/show_bug.cgi?id=10773 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Fri Aug 22 02:52:50 CEST 2014 on sn-devel-104	2014-08-22 02:52:50 +02:00
Andrew Bartlett	36ecbf34ba	libcli/auth: Ensure that the dns_names in/out parameter is preserved This is in dcerpc_netr_DsrUpdateReadOnlyServerDnsRecords, which has status variables filled in by the server and placed in this in/out array. This showed up as a segfault in winbindd during RODC DNS update. Andrew Bartlett Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Pair-programmed-with: Garming Sam <garming@catalyst.net.nz>	2014-08-01 09:48:35 +02:00
Volker Lendecke	0a7290ca7d	libcli: Remove an unused variable Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Jul 1 00:43:18 CEST 2014 on sn-devel-104	2014-07-01 00:43:18 +02:00
Volker Lendecke	9f3e894468	libcli: Make smb2cli_create return blobs Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2014-06-30 22:28:14 +02:00
Volker Lendecke	0a2209c161	libsmb: Make smb2cli_create cancellable Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2014-06-21 20:38:11 +02:00
Volker Lendecke	1dda098401	libsmb: Put the "smb2_lease" struct into idl This will make it easier in the future to NDR_PRINT a lease and a lease key Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Ronnie Sahlberg <ronniesahlberg@gmail.com> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Thu Jun 12 03:34:41 CEST 2014 on sn-devel-104	2014-06-12 03:34:41 +02:00
Andrew Bartlett	223fbdaf38	s3-winbindd: Listen on IRPC and do forwarded DNS updates on an RODC Change-Id: Ib87933c318f510d95f7008e122216d73803ede68 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>	2014-06-11 10:18:26 +02:00
Volker Lendecke	f4e358bc8b	libcli: Add a NULL check in dom_sid_string Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Jun 10 21:46:15 CEST 2014 on sn-devel-104	2014-06-10 21:46:15 +02:00
David Disseldorp	96c7e9b08d	libcli/security: remove sec_ace_equal This function is a duplicate of security_ace_equal(), and is no longer used. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Thu May 29 03:34:38 CEST 2014 on sn-devel-104	2014-05-29 03:34:38 +02:00
David Disseldorp	7226a8920d	secdesc: use security_ace_equal instead of sec_ace_equal Both offer the same functionality, sec_ace_equal() will be removed. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-05-29 01:08:25 +02:00
David Disseldorp	4de94ad8fd	libcli/security: cleanup security_ace_equal() This change cleans up the white-space damage, and converts the single line if-then statements to match Samba's coding conventions. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-05-29 01:08:25 +02:00
David Disseldorp	f1a96f8582	libcli/security: remove unused sec_ace_del_sid() With sec_desc_del_sid() now gone, this can also be removed. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-05-29 01:08:25 +02:00
David Disseldorp	8a2599a349	libcli/security: remove unused sec_desc_del_sid() The function is unused, and shares mostly the same behaviour as security_descriptor_acl_del(). Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-05-29 01:08:25 +02:00
David Disseldorp	f0bc0ac893	libcli/security: remove dup_sec_acl() With make_sec_desc() converted to use security_acl_dup(), which offers the same behaviour, this function is no longer needed. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-05-29 01:08:25 +02:00
David Disseldorp	256aa9b20b	libcli/security: clean up and fix make_sec_desc It currently leaks memory onto the provided talloc context on error, fix this. Use X_acl_dup() functions provided by secuity_descriptor.c, rather than the redundant secdesc.c calls. Also, use the IDL generated functions to calculate the security descriptor structure size. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-05-29 01:08:25 +02:00
David Disseldorp	58b8c87d0f	libcli/secdesc: remove dup_sec_desc() With all callers converted to use security_descriptor_copy(), this function can be removed. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>	2014-05-28 17:52:13 +02:00
David Disseldorp	23a95931d3	libcli/secdesc: replace dup_sec_desc() usage Use security_descriptor_copy() instead, which is also provided by libcli. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>	2014-05-28 17:52:13 +02:00
David Disseldorp	e3e01de345	libcli/sd: remove redundant sec_ace_add_sid() This function adds a new allow-type ACE to an existing ACE list. With the removal of sec_desc_add_sid(), this is no longer used internally. The same behaviour can be achieved via the much cleaner security_ace_create() function. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>	2014-05-28 17:52:13 +02:00
David Disseldorp	d735a4a9be	libcli/sd: remove redundant sec_desc_add_sid() This function adds an ACE to a security descriptor DACL. The same can be achieved via the more flexible and much cleaner security_ace_create() and security_descriptor_dacl_add() functions. Signed-off-by: David Disseldorp <ddiss@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>	2014-05-28 17:52:13 +02:00
Volker Lendecke	e72d8b7acc	libcli: Simplify desc_ace_has_generic() Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>	2014-05-27 17:32:12 +02:00
Volker Lendecke	6218e5cbfe	libcli: Simplify desc_expand_generic() Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>	2014-05-27 17:32:12 +02:00
Volker Lendecke	8bb5107d41	libcli: Avoid an explicit memset call On x86 with -O3, this saves surprising 160 bytes .text Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>	2014-05-27 17:32:12 +02:00
Volker Lendecke	af83a15887	libcli: Avoid a talloc/free Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>	2014-05-27 17:32:12 +02:00

1 2 3 4 5 ...

999 Commits