1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-24 21:34:56 +03:00
Commit Graph

1934 Commits

Author SHA1 Message Date
Andrew Bartlett
bfd924725e r2611: Try to make Samba4's ntlm_auth more consistant with Samba 3.0.
Andrew Bartlett
(This used to be commit 8f4dab5d44)
2007-10-10 12:59:11 -05:00
Simo Sorce
567ed4e718 r2601: avoid free()ing unallocated memory by mistake
(This used to be commit e502b276ae)
2007-10-10 12:59:11 -05:00
Tim Potter
df99e4bb37 r2597: A small program that takes SID strings on stdin and produces a marshalled
lsa_SidArray on stdout.
(This used to be commit d7d8a7ffc6)
2007-10-10 12:59:11 -05:00
Jelmer Vernooij
9dd6674a6c r2594: Remove call to Gtk+ 2.4 specific code
(This used to be commit fa29cecb12)
2007-10-10 12:59:11 -05:00
Andrew Tridgell
82b61938ac r2593: don't crash if the server doesn't know that 0 count searches mean 1
(This used to be commit 640ced4530)
2007-10-10 12:59:11 -05:00
Andrew Tridgell
1954070a7e r2592: this fixes one of the security memory leaks in the server
(This used to be commit efb2b88edd)
2007-10-10 12:59:10 -05:00
Andrew Tridgell
4f2058175e r2591: fixed two errors in simple backend found with valgrind
(This used to be commit 1730882b9d)
2007-10-10 12:59:10 -05:00
Andrew Tridgell
7358fb62b8 r2590: fixed one of the server security memory leaks. There are more :(
(This used to be commit 9e1eb58e4b)
2007-10-10 12:59:10 -05:00
Andrew Tridgell
8e5acb6df0 r2589: a simple test to help find security related memory leaks. Run valgrind on smbd with
--show-leak=yes and --show-reachable=yes to track them down.
(This used to be commit 7b23624a0f)
2007-10-10 12:59:09 -05:00
Andrew Tridgell
3e54089bc1 r2588: connect/disconnect is common enough that I don't think a level 0 DEBUG
is warranted to warn that it has happened :)
(This used to be commit ee51eefe17)
2007-10-10 12:59:08 -05:00
Andrew Tridgell
f5db8edc97 r2587: fixed a couple of authentication memory leaks. There are more to be
fixed - I'll commit a little test suite soon.
(This used to be commit 5b967c1cbb)
2007-10-10 12:59:08 -05:00
Andrew Tridgell
a1ed65e8ed r2586: updated the nbench example in the README to reflect the new chaining syntax
(This used to be commit be20b3164c)
2007-10-10 12:59:07 -05:00
Andrew Tridgell
78d9f3f8a7 r2583: mkproto.pl now treats "int main" as a special case and avoids it.
(This used to be commit 01288e82bc)
2007-10-10 12:59:07 -05:00
Tim Potter
00e05a0b8b r2582: Merge checks for xattr and acl libraries from Samba3 so the {get,set}ntacl
programs can build on non-xattr machines.
(This used to be commit daad76207d)
2007-10-10 12:59:07 -05:00
Andrew Tridgell
fe45888e22 r2581: added "hosts allow" and "hosts deny" checking in smbd. I needed this
as my box keeps getting hit by viruses spreading on my companies
internal network, which screws up my debug log badly (sigh).

metze, I'm not sure if you think access.c should go in the socket
library or not. It is closely tied to the socket functions, but you
may prefer it separate.

The access.c code is a port from Samba3, but with some cleanups to
make it (slighly) less ugly.
(This used to be commit 058b2fd99e)
2007-10-10 12:59:07 -05:00
Andrew Tridgell
5d4fc1284e r2580: fixed an uninitialised byte found by valgrind
(This used to be commit 0806378b0e)
2007-10-10 12:59:07 -05:00
Andrew Tridgell
5c94fcab92 r2577: - I recently found out that charaters below 0x3F are guaranteed not to
occur as secondary bytes in any multi-byte character set. This
  allows for a very simple optimisation in strchr_m() and
  strrchr_m(). It might be a good idea to pick this up for Samba3.

- the horrible toktocliplist() is only used in clitar.c, so move it
  there, to prevent anyone else from being tempted to use it.
(This used to be commit 663b7b75dd)
2007-10-10 12:59:07 -05:00
Tim Potter
1cf7a3420e r2576: Some userspace tools for getting and setting ntacls via the 'security.ntacl'
extended attribute.
(This used to be commit 5b88226f90)
2007-10-10 12:59:07 -05:00
Andrew Tridgell
cb0cd473a0 r2573: - added a configure test for nanosecond time resolution in struct stat
(recently Linux systems support this, allowing us to support the
  full resolution in NTTIME)

- use nanosecond resolution in the posix backend if available

- moved the configure tests and list of object files for the posix
  backend into ntvfs/posix/ to keep them more neatlly separated.
(This used to be commit d92ad9f307)
2007-10-10 12:59:06 -05:00
Andrew Tridgell
9c89a30113 r2572: fixed two places where status is not initialised in the nbench backend
(This used to be commit 4103392a59)
2007-10-10 12:59:06 -05:00
Andrew Tridgell
5401105ddf r2562: got rid of the "reference" backend that never happened - the code is
too stale to be of any use as a reference.
(This used to be commit 8d455a6f09)
2007-10-10 12:59:06 -05:00
Andrew Tridgell
a3cec511bb r2561: completely redid the ntvfs module chaining code, You can now do something like:
ntvfs handler = nbench posix

and the nbench pass-thru module will be called before the posix
module. The chaining logic is now much saner, and less racy, with each
level in the chain getting its own private pointer rather than relying
on save/restore logic in the pass-thru module.

The only pass-thru module we have at the moment is the nbench one
(which records all traffic in a nbench compatibe format), but I plan
on soon writing a "unixuid" pass-thru module that will implement the
setegid()/setgroups()/seteuid() logic for standard posix uid
handling. This separation of the posix backend from the uid handling
should simplify the code, and make development easier.

I also modified the nbench module so it can do multiple chaining, so
if you want to you can do:

   ntvfs module = nbench nbench posix

and it will save 2 copies of the log file in /tmp. This is really only
useful for testing at the moment until we have more than one pass-thru
module.
(This used to be commit f84c0af35c)
2007-10-10 12:59:06 -05:00
Tim Potter
5821c39553 r2560: Don't require structure fields that have the pidl value() property
to be set.  They can be if you want, but will be overwritten by the
pidl push code.
(This used to be commit 3170f6ed84)
2007-10-10 12:59:06 -05:00
Tim Potter
46cbe76a2c r2559: Python ints can't hold the full range of uint32 values so store them
as Python longs.

Also allow shorter width integer types to be initialised from long values.
Their values are truncated if they are too long.
(This used to be commit e9eb231d64)
2007-10-10 12:59:06 -05:00
Andrew Tridgell
54d33d5674 r2556: fixed the -s one bug that jelmer pointed out
(This used to be commit 03c38477ad)
2007-10-10 12:59:06 -05:00
Tim Potter
169627d7f5 r2555: Start of a rpcclient type program.
(This used to be commit c9d6827312)
2007-10-10 12:59:05 -05:00
Andrew Tridgell
9fbd16921a r2554: added a test for a bug that jelmer pointed out (handling of -s one)
(This used to be commit 74d7bc1948)
2007-10-10 12:59:05 -05:00
Andrew Tridgell
e4cd51e17e r2553: fixed ldbtest so it passes the ldap schema restrictions and thus can be used on the ldap backend
(This used to be commit 9f230425a0)
2007-10-10 12:59:05 -05:00
Andrew Bartlett
9a9dcc7250 r2552: Character set conversion and string handling updates.
The intial motivation for this commit was to merge in some of the
bugfixes present in Samba3's chrcnv and string handling code into
Samba4.  However, along the way I found a lot of unused functions, and
decided to do a bit more...

The strlen_m code now does not use a fixed buffer, but more work is
needed to finish off other functions in str_util.c.  These fixed
length buffers hav caused very nasty, hard to chase down bugs at some
sites.

The strupper_m() function has a strupper_talloc() to replace it (we
need to go around and fix more uses, but it's a start).  Use of these
new functions will avoid bugs where the upper or lowercase version of
a string is a different length.

I have removed the push_*_allocate functions, which are replaced by
calls to push_*_talloc.  Likewise, pstring and other 'fixed length'
wrappers are removed, where possible.

I have removed the first ('base pointer') argument, used by push_ucs2,
as the Samba4 way of doing things ensures that this is always on an
even boundary anyway.  (It was used in only one place, in any case).
(This used to be commit dfecb01506)
2007-10-10 12:59:05 -05:00
Andrew Bartlett
70c88af1f9 r2551: Add const.
Andrew Bartlett
(This used to be commit 066789a479)
2007-10-10 12:59:05 -05:00
Andrew Bartlett
0d2b17666a r2550: survive our own BASE-NEGNOWAIT torture test.
Andrew Bartlett
(This used to be commit a132082249)
2007-10-10 12:59:05 -05:00
Andrew Bartlett
ccdf4e045f r2547: Another place to use convert_string_talloc().
Andrew Bartlett
(This used to be commit 4904d814c0)
2007-10-10 12:59:05 -05:00
Andrew Bartlett
3318a6e2c6 r2546: Remove another strupper_m() that we don't need.
Andrew Bartlett
(This used to be commit 5c5b45c1a8)
2007-10-10 12:59:04 -05:00
Andrew Bartlett
352de0eaaf r2545: str_charnum -> strlen_m.
These two functions do exactly the same thing, I'll be removing
str_charnum shortly.

Andrew Bartlett
(This used to be commit 5eaa4c9748)
2007-10-10 12:59:04 -05:00
Andrew Bartlett
e517b653ab r2544: (missed from the last commit)
smb_conn->socket has gone away, and the packet count is now in the
main structure.

Andrew Bartlett
(This used to be commit 2e197f05ff)
2007-10-10 12:59:04 -05:00
Andrew Bartlett
964d46138d r2543: Catch one more use of sub_get_remote_machine().
Andrew Bartlett
(This used to be commit d483d88674)
2007-10-10 12:59:04 -05:00
Andrew Bartlett
79ae828819 r2542: I really don't like the 'substitute' code, and I particularly don't
like it in the mainline code (outside the smb.conf magic).

We will need to have a more useful 'helper' routine for this, but for
now we at least get a reliable IP address.

Also remove the unused 'socket' structure in the smb server - it seems
to have been replaced by the socket library.

Andrew Bartlett
(This used to be commit d8fd19a202)
2007-10-10 12:59:04 -05:00
Andrew Bartlett
3fb57e31a0 r2541: Add a TODO: This is one place we can grab the remote netbios name.
Andrew Bartlett
(This used to be commit cd2f97530b)
2007-10-10 12:59:04 -05:00
Jelmer Vernooij
924fa2db94 r2538: Support IPv6 as transport for MSRPC. Tested against Win2k3
Implemented using the POSIX getaddrinfo() call (specified by POSIX 1003.1-2003 and 2553)
I'm not sure how portable this function is, so we might have to add a sys_getaddrinfo() later on.
(This used to be commit 0fb0530389)
2007-10-10 12:59:04 -05:00
Andrew Bartlett
814cd2bc3f r2537: Add static and use strlen_m instead of str_charnum().
Andrew Bartlett
(This used to be commit f3bf57ca6b)
2007-10-10 12:59:04 -05:00
Andrew Bartlett
8ab562dcb2 r2536: This is a classic case for the use of our new talloc code, and
convert_string_talloc().

Andrew Bartlett
(This used to be commit 79776006b3)
2007-10-10 12:59:03 -05:00
Andrew Bartlett
5e7259a697 r2535: Make certain, that even if we have invalid ASN.1 here, and the caller does not check the return value, that we don't return uninitialised memory here.
Andrew Bartlett
(This used to be commit 0e081ecb9d)
2007-10-10 12:59:03 -05:00
Andrew Bartlett
366be01eef r2534: Change NTLMSSP parsing to avoid a seperate str_chrnum() call - storing
away the string as a data blob to be put in the buffers later.

This also avoids a length-limited push_str, moving to push_ucs2_talloc().

Andrew Bartlett
(This used to be commit 69163500e0)
2007-10-10 12:59:03 -05:00
Jelmer Vernooij
9e71950c5b r2532: Don't run EnumValue torture test for now (idl needs fixing, doesn't compile)
(This used to be commit c98fbfe250)
2007-10-10 12:59:02 -05:00
Jelmer Vernooij
d472d2e107 r2531: Fix crashbug
(This used to be commit 80294f799f)
2007-10-10 12:59:02 -05:00
Jelmer Vernooij
32561fa70c r2530: Don't put main in proto.h
(This used to be commit eb3f65c6e9)
2007-10-10 12:59:02 -05:00
Stefan Metzmacher
9a7c87bb64 r2527: - add a dummy for a simple ldb backend
- handle the complete rootDSE search (maybe this will be also a partition module)

metze
(This used to be commit 6fc904a71c)
2007-10-10 12:59:02 -05:00
Stefan Metzmacher
0c7a18525c r2526: use LDAP error 53 (unwillingToPerform)
when the backend didn't implement the call

metze
(This used to be commit e2fe685849)
2007-10-10 12:59:02 -05:00
Stefan Metzmacher
1efef4a19f r2525: fix a search response when the backend didn't support Search
we return LDAP error 32 (noSuchObject) now instead of a protocol error

metze
(This used to be commit f9dc34cd0b)
2007-10-10 12:59:02 -05:00
Andrew Tridgell
d3fc90eaa1 r2524: a simple pvfs rename implementation to make testing easier
(This used to be commit 98c1c75076)
2007-10-10 12:59:02 -05:00