sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-14 19:24:43 +03:00
Code
64,579 Commits 60 Branches 1,145 Tags
Commit Graph

240 Commits

Author SHA1 Message Date
Simo Sorce
3b12c38ac0 s3:schannel streamline interface 
Make calling schannel much easier by removing the need to explicitly open the
database. Let the abstraction do it instead.
 2010-02-23 12:46:50 -05:00
Simo Sorce
e5ab64a799 s3:schannel fix memory hierarchy 
passing mem_ctx was causing creds->sid to be allocated on mem_ctx and not be
child of creds as expected. When later in schannel_check_creds_state() we
stole the creds on a different memory context the sid was left behind and the
memory it points to freed when the temporary context was freed.
 2010-02-23 12:46:50 -05:00
Simo Sorce
bb9014d5cb schannel: merge header files 
One almost empty header file was simply including another not included by
anything else. Just merge them together.
 2010-02-23 12:46:50 -05:00
Simo Sorce
8e2f5fe7c5 s4:schannel more readable check logic 
Make the initial schannel check logic more understandable.
Make it easy to define different policies depending on the caller's
security requirements (Integrity/Privacy/Both/None)

This is the same change applied to s3
 2010-02-23 12:46:50 -05:00
Simo Sorce
b4c9dc3724 s3:schannel more readable check logic 
Make the initial schannel check logic more understandable.
Make it easy to define different policies depending on ther caller's security
requirements (Integrity/Privacy/Both/None)
 2010-02-23 12:46:50 -05:00
Andreas Schneider
975a7a3d1b tstream: Added a typedef for the function prototype. 2010-02-23 13:48:22 +01:00
Andrew Tridgell
76a7382346 lib: use TYPESAFE_QSORT() in lib/ and libcli/ 2010-02-14 18:44:20 +11:00
Andrew Tridgell
6b01ca95a8 nbt: don't reference the event_ctx in nbtsock 
This causes talloc_free with references errors
 2010-02-08 11:04:59 +11:00
Matt Kraai
aa6a507e76 Change uint_t to unsigned int in libcli 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2010-02-02 07:18:17 +01:00
Stefan Metzmacher
e37dc56e97 libcli/nbt: fix ndr_push_nbt_string() string labels with a length of 63 (0x3F) are allowed 
metze
 2010-02-01 15:23:32 +01:00
Matthias Dieter Wallnöfer
dfd93fc7e3 s4:libcli/util/tstream.c - Need to include "system/network.h" 
Otherwise I don't get "struct iovec" through "<sys/uio.h>" on CentOS 4.
 2010-01-29 20:01:34 +01:00
Stefan Metzmacher
6442b0fcc1 libcli/nbt: fix off-by-one bug in ndr_pull_wrepl_nbt_name() 
The scope starts at byte 17 with index 16.

metze
 2010-01-29 15:55:11 +01:00
Stefan Metzmacher
c50a17cc8d libcli/nbt: fix ndr_pull/push_wrepl_nbt_name() 
[MS-WINSRA] — v20091104 was wrong
regarding section "2.2.10.1 Name Record"

If the name buffer is already 4 byte aligned
Windows (at least 2003 SP1 and 2008) add 4 extra
bytes. This can happen when the name has a scope.

metze
 2010-01-29 15:55:10 +01:00
Volker Lendecke
005bbd0826 Revert "libcli/security: Remove a call to strncasecmp" 
This reverts commit 7c687665eaf16b0c6f83c130f6d9e5459e0b2a32.
 2010-01-25 16:45:32 +01:00
Volker Lendecke
d86d5be636 Revert "libcli/security: Convert some strtol calls to strtoul" 
This reverts commit 7fe66e06c4df575c410d4d70ff38f120c2f4363b.
 2010-01-25 16:45:32 +01:00
Volker Lendecke
fa47dbb57a Revert "libcli/security: Fix a valgrind error in dom_sid_parse" 
This reverts commit f1c889a4e61d6d751cbabd8014b4345b8051b97c.
 2010-01-25 16:45:31 +01:00
Volker Lendecke
a53a8ec452 Revert "libcli/security: Prohibit SID formats like S-1-5-32-+545" 
This reverts commit 1fbeae41655b8305834f2149b1268077eba8633d.

Apparently this breaks the build of Samba4
 2010-01-25 12:40:51 +01:00
Volker Lendecke
1fbeae4165 libcli/security: Prohibit SID formats like S-1-5-32-+545 2010-01-23 16:28:11 +01:00
Volker Lendecke
f1c889a4e6 libcli/security: Fix a valgrind error in dom_sid_parse 2010-01-23 16:28:11 +01:00
Volker Lendecke
7fe66e06c4 libcli/security: Convert some strtol calls to strtoul 
This tightens the dom_sid_parse syntax check a bit: "--" would have been
allowed in sid string
 2010-01-23 16:28:11 +01:00
Volker Lendecke
7c687665ea libcli/security: Remove a call to strncasecmp 2010-01-23 16:28:11 +01:00
Stefan Metzmacher
bbaec01b37 libcli/util: add tstream_read_pdu_blob_send/recv 
This will take the some full_request callback function
as the Samba4 packet code.

metze
 2010-01-08 14:36:43 +01:00
Volker Lendecke
be05d71b9e Simplify E_md5hash a bit 2010-01-07 11:07:55 +01:00
Andrew Bartlett
ba2cfceb96 libcli/auth Make gd's NDR NTLMSSP parsers helpers common 
(but not built in Samba4 for now)
 2009-12-22 21:07:51 +01:00
Andrew Tridgell
f9302f9e08 ldap: give a debug error when we don't know a control 
This interface should really have a proper error interface, but at
least a DEBUG() gives the user a chance of finding the error

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2009-12-16 20:56:23 +11:00
Andrew Tridgell
1b20002cc2 libcli: use GUID_to_ndr_blob() 2009-12-10 17:51:28 +11:00
Andrew Tridgell
6eb262f0e8 libcli: allow ntstatus.h to be used by openchange 
apparently ntstatus.h is used by openchange, but they don't include
replace.h. This makes that possible again.
 2009-11-25 15:30:20 +11:00
Andrew Bartlett
b5ce97511a libcli/nbt Move more of lmhosts lookup into common code 
This aims to eventually share this with Samba4.

Andrew Bartlett
 2009-11-04 14:58:25 +11:00
Stefan Metzmacher
dc8e681755 libcli/auth: initialize creds in netlogon_creds_client_init_session_key() 
metze
 2009-10-24 11:59:15 +02:00
Stefan Metzmacher
f2da9c8c1a libcli/auth: fix memory leak in schannel_creds_server_step_check_ldb() 
metze
 2009-10-24 11:59:14 +02:00
Stefan Metzmacher
5ae1d700eb libcli/auth: don't leak the ldb_msg in schannel_store_session_key_ldb() 
metze
 2009-10-24 11:59:13 +02:00
Andrew Tridgell
3050f83288 s4-python: we need to include Python.h first 
If we don't include Python.h first then we get a pile of warnings due
to broken redefines of XOPEN_SOURCE in the Python includes.
 2009-10-23 16:23:01 +11:00
Andrew Tridgell
b6a1beb131 added NT_STATUS_NOT_OK_RETURN_AND_FREE() 
Try to make it a bit easier to avoid leaks in common code
 2009-10-17 13:01:02 +11:00
Matthias Dieter Wallnöfer
19302db6cb s3/s4 common: fix up header file 2009-10-04 20:18:28 +02:00
Kamen Mazdrashki
1f2490e7d8 w32err: Importing auto-generated Win32 errors and descriptions 
Error codes and their descriptions are generated
using w32err_code.py script.
Error are downloaded from MS site:
http://msdn.microsoft.com/en-us/library/cc231199%28PROT.10%29.aspx

Signed-off-by: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2009-09-30 15:48:41 +03:00
Kamen Mazdrashki
0e1840b84a w32err: WERR_GROUP_NOT_FOUND renamed to WERR_GROUPNOTFOUND 
In Win 32 we have
NERR_GroupNotFound which maps to WERR_GROUP_NOT_FOUND currently
and we have
ERROR_GROUP_NOT_FOUND which maps to nothing, so it is to be added

Signed-off-by: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2009-09-30 15:48:41 +03:00
Kamen Mazdrashki
948cd70bad w32err: WERR_USER_EXISTS replace with WERR_USEREXISTS name 
In Win32 we have
NERR_UserExists which maps to WERR_USER_EXISTS currently
and there is
ERROR_USER_EXISTS which maps to WERR_USER_ALREADY_EXISTS

Signed-off-by: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2009-09-30 15:48:40 +03:00
Kamen Mazdrashki
d9994a604b w32err: WERR_DC_NOT_FOUND replaced with WERR_DCNOTFOUND 
It turns out in win32 ERROR_DC_NOT_FOUND exists and it is
an error for Device Context (DC), not Domain Controller

Signed-off-by: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2009-09-30 15:48:40 +03:00
Kamen Mazdrashki
0e64fcb18f w32err: FRS_ group of errors replaced with numeric values 
Signed-off-by: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2009-09-30 15:48:40 +03:00
Kamen Mazdrashki
e669113900 w32err: WERR_DOMAIN_CONTROLLER_NOT_FOUND error value fixed 
Signed-off-by: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2009-09-30 15:48:40 +03:00
Nadezhda Ivanova
6283f2caaa Initial implementation of security descriptor creation in DS 
TODO's:
ACE sorting and clarifying the inheritance of object specific ace's.
 2009-09-20 15:16:17 -07:00
Andrew Bartlett
59bea84362 libcli:nbt move prototypes of lmhosts functions to libnbt.h 2009-09-19 14:34:16 -07:00
Stefan Metzmacher
825484ee6d libcli/named_pipe_auth: pass gssapi delegated credentials through the named pipe 
metze
 2009-09-18 20:34:42 +02:00
Andrew Tridgell
ec422edab5 util: use likely/unlikely for NT_STATUS_* macros 2009-09-17 21:52:24 -07:00
Kouhei Sutou
f8dae40fc8 spnego: Support ASN.1 BIT STRING and use it in SPNEGO. 
Signed-off-by: Günther Deschner <gd@samba.org>
 2009-09-17 20:10:54 +02:00
Kamen Mazdrashki
8bebce45d3 w32err: Set hex format values for all errors 
Signed-off-by: Günther Deschner <gd@samba.org>
 2009-09-17 07:18:46 +02:00
Kamen Mazdrashki
3f835eb947 w32err: Re-define errors with numeric values 
Signed-off-by: Günther Deschner <gd@samba.org>
 2009-09-17 07:18:41 +02:00
Kamen Mazdrashki
91d3d3c6a2 w32err: Sorting error codes in ascending order 
Signed-off-by: Günther Deschner <gd@samba.org>
 2009-09-17 07:18:36 +02:00
Kamen Mazdrashki
fc1ac736d6 w32err: NERR_ codes grouped together 
Signed-off-by: Günther Deschner <gd@samba.org>
 2009-09-17 07:18:31 +02:00
Kamen Mazdrashki
1cfac63fa4 w32err: WERR_CLASS_NOT_REGISTERED updated 
Error code move to COM/OLE group.
Error value changed to as REGDB_E_CLASSNOTREG in Windows

Signed-off-by: Günther Deschner <gd@samba.org>
 2009-09-17 07:18:29 +02:00