sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-26 10:04:02 +03:00
Code
62,296 Commits 60 Branches 1,146 Tags
Commit Graph

696 Commits

Author SHA1 Message Date
Stefan Metzmacher
081f8883ba s4: fix LIBEVENTS dependencies and use more forward declarations 
We should only include events.h where we really need it
and prefer forward declarations of 'struct event_context'

metze
 2008-12-17 11:04:45 +01:00
Sam Liddicott
7d8f3cdbfc Let ntvfs request transport close via ntvfs_request state 
[I can't swear that this covers all the smb2 cases, there are some reply
functions that I can't trace properly]

Add NTVFS_ASYNC_STATE_CLOSE bit to ntvfs_request->async_states->state
so that the ntvfs layer can signify that the client transport should
be closed, most useful for proxy servies, and most likely due to a
forwarding transport having been closed.

Signed-off-by: Sam Liddicott <sam@liddicott.com>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2008-12-05 12:52:13 +01:00
Jelmer Vernooij
b45caa44e1 Fix the build. 2008-11-02 23:58:49 +01:00
Jelmer Vernooij
b034c519f5 Add gensec_settings structure. This wraps loadparm_context for now, but 
should in the future only contain some settings required for gensec.
 2008-11-02 02:05:48 +01:00
Jelmer Vernooij
23302413b3 Remove unused include param/param.h. 2008-10-24 16:37:56 +02:00
Jelmer Vernooij
37d885c51a Remove iconv_convenience argument from convert_string{,talloc}() but 
make them wrappers around convert_string{,talloc}_convenience().
 2008-10-24 14:26:46 +02:00
Jelmer Vernooij
922a29992e Remove iconv_convenience parameter from simple string push/pull 
functions.
 2008-10-24 03:40:09 +02:00
Tim Prouty
e11277e28d Fixed a variable undeclared compilation error 
Explicitly declaring environ eliminates a compilation error on some
systems.
 2008-10-13 17:53:58 -07:00
Jelmer Vernooij
9565999755 Fix include paths to new location of libutil. 2008-10-11 21:31:42 +02:00
Volker Lendecke
1a228b442e smbd3 is unhappy if stderr is not open 2008-10-05 22:15:40 +02:00
Volker Lendecke
9542b2fe60 Re-enable build of smb_samba3.c after the rename smbd->samba 2008-10-05 16:59:09 +02:00
Stefan Metzmacher
e622325155 s4:smb_server/smb: FLAGS2_SMB_SECURITY_SIGNATURES should only be echoed, not set always 
metze
 2008-09-30 08:42:47 +02:00
Andrew Bartlett
8dd35fabbb NetApp found that we never set the smb signing flags2. 
This was found during testing at the CIFS plugfest.

No other client seems to honour or use this bit, but it is quite
ligitimately required by the spec.

Andrew Bartlett
 2008-09-29 22:34:35 -07:00
Andrew Tridgell
0cf7175126 we need different error handling for truncated packets in NETPROT and 
other SMB2 operations.
 2008-09-24 18:58:38 -07:00
Andrew Tridgell
eb5b3f50d1 we should terminate the connection on a bad negprot packet size 2008-09-24 18:10:23 -07:00
Andrew Tridgell
742a99e046 - add reserved field in basic_information level 
- use INVALID_PARAMETER for info length mismatch to match windows
  behaviour

- added parsing of LINK_INFORMATION level
 2008-09-24 18:10:23 -07:00
Andrew Tridgell
63685c7d02 record highest seq number in SMB2 to check for seqnum going backwards 2008-09-24 18:10:23 -07:00
Andrew Tridgell
49c80cea0b cope with body_size zero in SMB2 receive 2008-09-24 18:10:23 -07:00
Andrew Tridgell
a3536c4c06 check for a 0 byte in the buffer in SMB2 read 2008-09-24 18:10:23 -07:00
Andrew Tridgell
7e57626d1d the offset is 16 bits in SMB2 fileinfo 2008-09-24 18:10:23 -07:00
Andrew Tridgell
71ae732669 fixed error code for bad keepalive 2008-09-24 18:10:22 -07:00
Andrew Tridgell
ff542275c3 stricter checking of SMB2 echo body (per the spec) 
thanks to the bluearc test suite
 2008-09-24 18:10:22 -07:00
Jelmer Vernooij
6a689c23e8 Rename smbd -> samba. 
This reverts commit 05ea5e23cf4e70de0bd658b1c5c0ead133967091.

Conflicts:

	source4/smbd/server.c
 2008-09-24 03:16:15 +02:00
Stefan Metzmacher
171349bc21 s4:smb_server: remove the bogus smbsrv_signing_restart() 
Real signing always starts with seqnumber 2, and once signing
is on the session key never change anymore for the complete
smb connection.

metze
 2008-09-23 11:30:04 +02:00
Andrew Bartlett
3b5060fdba Explain why we use signing for DCs, but not file servers 2008-09-22 16:32:04 -07:00
Stefan Metzmacher
bee2b6c3a3 process incoming connections and fork a samba3 in inetd mode 2008-09-22 04:38:06 +02:00
Jelmer Vernooij
05ea5e23cf Revert "Rename smbd -> samba." 
This reverts commit 0e9008be35a5b334bd65e6417193d4b8f27bdc36.
 2008-09-21 21:32:40 +02:00
Jelmer Vernooij
0e9008be35 Rename smbd -> samba. 2008-09-21 21:26:40 +02:00
Andrew Bartlett
059cd93497 Move our DC to implement mandetory signing. 
(this does not change the file server role, and only really changes
what 'server signing = auto' means)

Optional signing really isn't any benifit to network security.

In doing so, allow anonymous clients (if permitted by policy) to log
in without signing, as Samba3 does not sign these connections (which
would use an all-zero key, so pointless).

Andrew Bartlett
(This used to be commit 468bf839c500ed1a26ab9a358ee64a4c0a695797)
 2008-09-05 16:45:10 +10:00
Andrew Bartlett
b7a1640b38 With a windows 2008 client, even anonymous requires signing... 
Andrew Bartlett
(This used to be commit a89f9818180e8fb868975c444c4d0e5aaa8d4e79)
 2008-09-05 16:24:44 +10:00
Stefan Metzmacher
2a36568129 smb2srv: async replies with STATUS_PENDING are not signed 
..., but the they may have the sign flag set.

metze
(This used to be commit 43e43dead030f6bffd06631007fdb162c3c6b2b5)
 2008-08-14 13:13:50 +02:00
Stefan Metzmacher
0294c678c0 smb2srv: sign replies when the request was also signed 
metze
(This used to be commit dd2f4f7a491debcc30e590f571272afd99e52940)
 2008-08-14 13:13:50 +02:00
Stefan Metzmacher
4a214dba30 smb2srv: use defines instead of hex values 
metze
(This used to be commit 7c4abf6614c47471ae005a12abe27d85890d867f)
 2008-08-14 13:13:50 +02:00
Stefan Metzmacher
0251096a89 smb2srv: sign SMB2 Logoff replies 
metze
(This used to be commit 2844e361730a6bc640ea89d0e10059deca1ca867)
 2008-07-28 14:09:46 +02:00
Stefan Metzmacher
8623e2cc4c smb2srv: correctly hold the signing state per session 
metze
(This used to be commit 5b3ba3f3556e8031133128853cd2324ee3852aa1)
 2008-07-28 14:09:45 +02:00
Andrew Tridgell
809632c3df initialise query_maximal_access here too 
(This used to be commit 4b3af09450cf33c6785a3d8fddddc68047f2e388)
 2008-07-24 14:21:31 +10:00
Andrew Tridgell
091c141aba make sure we initialise query_maximal_access 
(This used to be commit 036f73d39a7ef882fd76afcd3c11eef483f6c308)
 2008-07-24 14:20:02 +10:00
Stefan Metzmacher
8bf2127313 smb_server/smb: handle incoming multi fragmented nttrans requests 
metze
(This used to be commit 9a5f7bf68b20e3b490b209b5cfc4408566320f2e)
 2008-07-07 20:59:19 +02:00
Stefan Metzmacher
5e4b8d6e51 smb_server/smb: prepare multi fragmented nttrans requests 
metze
(This used to be commit 36a39b92d732a682e38ad4b3f733951fee4757ed)
 2008-07-07 20:59:19 +02:00
Stefan Metzmacher
1bc344cf52 smb_server/smb: trans(2) setup count is uint8_t 
metze
(This used to be commit 1b507a9b8e2ede5a4eb542bdf7a0eab9269b9f7b)
 2008-07-07 18:10:08 +02:00
Stefan Metzmacher
50df83ac8c smb_server/smb: transs and transs2 calls have different word counts 
Also add a note about NT_STATUS_DOS(ERRSRV, ERRerror).

metze
(This used to be commit 4287b7c1323796cf0688d0fae9b5bd4e840e3d48)
 2008-07-07 13:43:12 +02:00
Stefan Metzmacher
88a26f6e7f smb_server/smb: fix crash bug with fragmented trans calls 
We need to use smbsrv_setup_secondary_request(req) to send the
trans ack, because smbsrv_send_reply(req) destroys 'req'
and the partial trans list had dead elements in the list.

Also make sure the partial list element is removed by a talloc
destructor.

metze
(This used to be commit 221f4d6e534a40b7def6e51dc6b4f9e8057d18b7)
 2008-07-07 13:43:12 +02:00
Andrew Tridgell
e4ad580b99 fixed mandatory signing 
Metze pointed out that if signing is mandatory in the server then we
need to reject packets without the signed flag if the packet contains
a session id.
(This used to be commit 056f16e664e581bab1c07759e99ad4f6685c58eb)
 2008-06-07 08:14:25 -07:00
Andrew Tridgell
e97cf207fa added server side SMB2 signing 
(This used to be commit 8e919dcb0826a5b25d037ee6144af5f7cb21f3ae)
 2008-06-06 22:10:30 -07:00
Andrew Tridgell
405e64c437 more updates for new info levels 
(This used to be commit 85d1873ee92fcc7df3addc42ddb8189144901f8b)
 2008-06-02 11:05:06 +10:00
Andrew Tridgell
eb8634b2f0 check for requested buffer size in getinfo call 
(This used to be commit ed8f16379d01d3dffd2645e2b275aa27507dfec9)
 2008-05-31 13:39:51 +10:00
Andrew Tridgell
6ef9674caa the docs shows that this is a o16s32 blob 
(This used to be commit a6d28e2b330a20e95b745966bb5eb153bdc58ed1)
 2008-05-30 07:28:53 +10:00
Andrew Tridgell
de4c962638 fix from WSPP SMB2 test 11 
(This used to be commit 81612b7854725837e8487bf97b87bff6548b6ad3)
 2008-05-29 19:32:04 +10:00
Andrew Tridgell
c86dc11be6 added support for returning the maximal access MXAC tag in SMB2 create 
(This used to be commit 4eb49335d5f0319f9aa47ded5215a2977d3336bf)
 2008-05-29 19:16:26 +10:00
Andrew Tridgell
6b70726305 implement the documented SMB2 create blobs in the server 
Not all of them are honoured yet, but they are all parsed and the ones
that have SMB equivalents are honoured
(This used to be commit 9fc70e2ed6a54f6d9a0530f4d37c0f8acadb6778)
 2008-05-28 16:28:37 +10:00