sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-02-03 13:47:25 +03:00
Code
5,077 Commits 60 Branches 1,146 Tags
Commit Graph

5077 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andrew Tridgell
7dcb8c26de r7721: solve a problem with null arguments to testit() 
(This used to be commit 73a21737cea295c09255997e5830c68ad390a4de)
 2007-10-10 13:18:26 -05:00
Andrew Tridgell
b4eee348c4 r7720: - simplify the asn1 decode of ldap_search() a lot, taking advantage of 
the fact that the ldap data structures now use ldb_message_element.

- fixed null termination of elements in ildap
(This used to be commit 09060994c1ed12073ae6e1131d7074db8fdc523c)
 2007-10-10 13:18:26 -05:00
Andrew Tridgell
97318cdb45 r7719: make the ildap ldb backend use the defaultNamingContext if the basedn 
is not specified, so:

  ldbsearch ldap://hostname '(objectclass=user)'

works without knowing the domain name
(This used to be commit f6c2c5190737ca11f55a147f5295ccca505fb58b)
 2007-10-10 13:18:26 -05:00
Andrew Tridgell
ca91a8a691 r7717: fixed some typos 
(This used to be commit fc8feee56034fe165359c804d111f80e5b3ebb65)
 2007-10-10 13:18:25 -05:00
Andrew Tridgell
1e99722d02 r7716: a single wrapped ldap blob can contain multiple ldap messages 
(This used to be commit de5f265b6c586335965a6de844c203206261cc3b)
 2007-10-10 13:18:25 -05:00
Andrew Tridgell
90cf33953d r7715: ensure we don't print null strings in ldap_errstr() 
(This used to be commit dc419fc89973c2d7fa333df389b75cb218e8a848)
 2007-10-10 13:18:25 -05:00
Andrew Tridgell
f40e69da26 r7714: enable samba credentials handling in ldb tools. So you can now do a 
encrypted ldbedit against w2k3
(This used to be commit 6277c3923e7d9c26753424b1e77ac62f8e0729a4)
 2007-10-10 13:18:25 -05:00
Andrew Tridgell
56b79e945f r7713: fixed error display in ildap_search() 
(This used to be commit abc9f4bd89d0eda655f7de01db49cbbb64682bf4)
 2007-10-10 13:18:25 -05:00
Andrew Tridgell
f8b60c8b1a r7712: ldb/common/util.c is gone 
(This used to be commit aec0544962483b3cd8507b2de6d1552691e72932)
 2007-10-10 13:18:25 -05:00
Andrew Tridgell
74037cbe92 r7711: update callers of ldb_connect() for new syntax 
(This used to be commit f852661463624714ad8e7adc0547b2f07b8f9f6d)
 2007-10-10 13:18:24 -05:00
Andrew Tridgell
f52b42c75f r7710: new command line handling code for ldb 
(This used to be commit 5e8db1c9b3bb6c5196652a7af877b4204148c305)
 2007-10-10 13:18:24 -05:00
Andrew Tridgell
ed3d8091ce r7709: - convert ldb to use popt, so that it can interact with the samba 
cmdline credentials code (which will be done soon)

- added a ldb_init() call, and changed ldb_connect() to take a ldb
  context. This allows for much better error handling in
  ldb_connect(), and also made the popt conversion easier

- fixed up all the existing backends with the new syntax

- improved error handling in *_connect()

- fixed a crash bug in the new case_fold_required() code

- ensured that ltdb_rename() and all ltdb_search() paths get the read lock

- added a ldb_oom() macro to make it easier to report out of memory
  situations in ldb code
(This used to be commit f648fdf187669d6d87d01dd4e786b03cd420f220)
 2007-10-10 13:18:24 -05:00
Jelmer Vernooij
d4d6d0d2e5 r7706: Move ParseExpr() to util. 
(This used to be commit 72efb695291f0ad3cdc80daa9f979454f6a81c04)
 2007-10-10 13:18:24 -05:00
Andrew Tridgell
777b4b0214 r7705: prevent SIGPIPE. this is what causes BASE-NEGNOWAIT to sometimes fail 
(This used to be commit 0163d7fe99caee54c6c2bd614e4f076fd00a6176)
 2007-10-10 13:18:24 -05:00
Andrew Tridgell
ee57c76a68 r7704: - fixed open_nbt_connection() to return NULL when the connection failed 
- got rid of smbcli_shutdown() and use talloc_free() instead.
(This used to be commit 1011b1bf51d420d6702ef448c894ea8ebeafa284)
 2007-10-10 13:18:23 -05:00
Jelmer Vernooij
82dfe0b29b r7702: Implement [charset()] attribute. 
(This used to be commit 7012e10bb6252a7e602e80f05c914a783610088c)
 2007-10-10 13:18:23 -05:00
Jelmer Vernooij
cd39847e81 r7695: Add support for the [string] attribute that works in the traditional sense. Not 
used anywhere yet.
(This used to be commit a73a35cfc7b5b92cd95bd0d0fbd64d04acecccf3)
 2007-10-10 13:18:23 -05:00
Andrew Bartlett
5b19286df0 r7690: Move the NT hash generation into the credentials system, rather than 
in all the callers.  This also allows us to be more flexible in the
type of password we store.

Andrew Bartlett
(This used to be commit 00b8588c68526e1d86fda0bd81c0b86f690b62c3)
 2007-10-10 13:18:23 -05:00
Andrew Bartlett
a4bb5ae30c r7689: Add new file from previous commit (seperate file for session key test). 
(This used to be commit fbec0ed13bc20093da308dee0108721d88e9c322)
 2007-10-10 13:18:23 -05:00
Andrew Bartlett
8a6b60e1e4 r7688: Fix the internal heimdal build - push one #define back to 
heimdal_build/config.h

Andrew Bartlett
(This used to be commit 337cb20ac45c95b8a6d0c90dfef4bdac591ba39a)
 2007-10-10 13:18:22 -05:00
Andrew Bartlett
949deaf9e3 r7687: Some more tests that must be done only when krb5_config is absent. 
Andrew Bartlett
(This used to be commit 898f72d19654c68ba68d36a099bf4dbed5d09fe9)
 2007-10-10 13:18:22 -05:00
Andrew Bartlett
88fc8f243f r7686: Check for a type of invalid account name. 
Andrew Bartlett
(This used to be commit 7520879bb08d191f0ab97508f14f525886b1b48b)
 2007-10-10 13:18:22 -05:00
Andrew Bartlett
9db3f0cd5e r7685: Simply the test for session key logic, so we pass against NT4. 
Now, to try and figure out why this logic failed for jra...

Andrew Bartlett
(This used to be commit a32066a9ecf7cd82f66eb8381e07d014f5ac5eff)
 2007-10-10 13:18:22 -05:00
Andrew Bartlett
b0f5ac8248 r7684: Add a test aimed at checking we have agreement between client and 
server as to the CIFS session key.

JRA had pain with this being wrong against NT4 (without spnego), hence
this specific test.

Andrew Bartlett
(This used to be commit 47f433708ba38db9bf569567cc048e65f2786ebe)
 2007-10-10 13:18:22 -05:00
Andrew Bartlett
dd39c8cedf r7683: The other file from the last commit. And it's include/system/kerberos.h that I'm putting the #defines in... 
Andrew Bartlett
(This used to be commit 31f7ec38e63fc86ad7c756de47414152d2809c8f)
 2007-10-10 13:18:22 -05:00
Andrew Bartlett
4482cf72d4 r7682: Move the properties of our heimdal build from heimdal_build/config.h 
(which gets included by heimdal, or shoudl be) into
auth/kerberos/kerberos.h (which is used by Samba, but not by the
Heimdal code).

Andrew Barteltt
(This used to be commit 3f473a93778b1350df3f7aac07b64008988a059d)
 2007-10-10 13:18:22 -05:00
Andrew Bartlett
d2c2e0d3b7 r7681: This #define is unused. 
Andrew Bartlett
(This used to be commit 2a22f413c9704dbfc3befb819d4183523f75d393)
 2007-10-10 13:18:21 -05:00
Andrew Bartlett
363e1143de r7680: Move to using our own private enum for the principal type inside the 
hdb-ldb module.  This removes the need for the KRBTGT case to exist in
the broader heimdal code.

Andrew Bartlett
(This used to be commit fb83465dbccae8af5eb26f735e60f3f40e944446)
 2007-10-10 13:18:21 -05:00
Stefan Metzmacher
fca7031da9 r7679: update the documentation of security_description_create() 
metze
(This used to be commit 6ad7ffab043c3b510f4dff052973a054e5a75779)
 2007-10-10 13:18:21 -05:00
Andrew Tridgell
c04d826182 r7678: fixed typo 
(This used to be commit df29f25140192b64b55012d0a3c36095fbbfb82d)
 2007-10-10 13:18:21 -05:00
Andrew Tridgell
fa165a688c r7677: fixed ldap server to honor 'private path' 
(This used to be commit f6abed5660ad8f7298eb2aebbaa25a8c355861a6)
 2007-10-10 13:18:21 -05:00
Andrew Bartlett
8047db6e4b r7676: Make VUID and TID choice random, as this gives us protection against 
replay attacks under SMB signing, where the session key is a fixed
derivitive of the user's password.

This removes the VID offset, but I'm not worried about random client
bytes mattering here, given the space (and the fact that it applies to
very, very old clients).

Andrew Bartlett
(This used to be commit eb1d37c5a91a6bc4515469e1ae026d28c12d7149)
 2007-10-10 13:18:21 -05:00
Andrew Bartlett
b523bde499 r7675: Use correct memory context for anonymous session setup auth context 
(no need for it to hang around forever).

Add test for this behaviour.

Andrew Bartlett
(This used to be commit 36dc2491d778fbbff32c4abdf95faa9f83024e12)
 2007-10-10 13:18:21 -05:00
Andrew Bartlett
b11efd3e50 r7674: Fix the printf() attribute suggestion by correctly prototyping, then 
declaring the static function.  The attribute only works on the
prototype, not the function.

Andrew Bartlett
(This used to be commit 4c254754d25e5aa8b203d2d67a39895ffef3f393)
 2007-10-10 13:18:20 -05:00
Andrew Bartlett
876ed022c2 r7673: With current Heimdal we don't need this (correct) fix. 
This will however still be useful when we have crypt() based
authentication.

Andrew Bartlett
(This used to be commit 005e2c0cfed11010685ebc3f3a69cf9f484c958a)
 2007-10-10 13:18:20 -05:00
Andrew Tridgell
416c9068a2 r7672: this should fix the crypt dependency problem (I hope!) 
(This used to be commit 3fe00b61147e09159ef02328a7f1d8f7805abf0d)
 2007-10-10 13:18:20 -05:00
Andrew Tridgell
08e23b36cb r7671: added ldap testing to the set of standard tests 
(This used to be commit dcdf44024aa93e7eca54247d9058904c6950fae7)
 2007-10-10 13:18:20 -05:00
Andrew Tridgell
cf4552761e r7670: fixed rootDSE search in ldap server 
(This used to be commit 0981a375cfa9d8d75b6c89613eadb9d14cf1064f)
 2007-10-10 13:18:20 -05:00
Andrew Tridgell
1f052665f3 r7669: removed ldap from our configure tests 
This takes our link dependencies from this:

tridge@blu:~/samba/samba4/source$ ldd bin/ldbsearch
        libdl.so.2 => /lib/tls/libdl.so.2 (0xb7fc9000)
        libldap_r.so.2 => /usr/lib/libldap_r.so.2 (0xb7f92000)
        liblber.so.2 => /usr/local/lib/liblber.so.2 (0xb7f85000)
        libpam.so.0 => /lib/libpam.so.0 (0xb7f7d000)
        libc.so.6 => /lib/tls/libc.so.6 (0xb7e48000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0xb7fea000)
        libresolv.so.2 => /lib/tls/libresolv.so.2 (0xb7e36000)
        libcrypt.so.1 => /lib/tls/libcrypt.so.1 (0xb7e09000)
        libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0xb7df3000)
        libgnutls.so.11 => /usr/lib/libgnutls.so.11 (0xb7d8c000)
        libpthread.so.0 => /lib/tls/libpthread.so.0 (0xb7d7d000)
        libtasn1.so.2 => /usr/lib/libtasn1.so.2 (0xb7d6d000)
        libgcrypt.so.11 => /usr/lib/libgcrypt.so.11 (0xb7d20000)
        libgpg-error.so.0 => /usr/lib/libgpg-error.so.0 (0xb7d1c000)
        libz.so.1 => /usr/lib/libz.so.1 (0xb7d09000)
        libnsl.so.1 => /lib/tls/libnsl.so.1 (0xb7cf5000)

to this:

tridge@blu:~/samba/samba4/source$ ldd bin/ldbsearch
        libdl.so.2 => /lib/tls/libdl.so.2 (0xb7fc9000)
        libpam.so.0 => /lib/libpam.so.0 (0xb7fc0000)
        libc.so.6 => /lib/tls/libc.so.6 (0xb7e8b000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0xb7fea000)

this finally gets rid of the implicit dependency on pthreads! Yay!
(This used to be commit 844d2a20830a4666b6c38f6a58305be64b6b76fa)
 2007-10-10 13:18:20 -05:00
Andrew Tridgell
44a04d74cd r7668: - setup HAVE_ILDAP to enable the ildap backend in ldb 
- fixed a bug in socket_connect_ev()
(This used to be commit 3f77b879a035929a843e02b798d54eba6625bde7)
 2007-10-10 13:18:20 -05:00
Andrew Tridgell
03b0f279ed r7667: added a ldb ildap backend, using our internal ldap client library. Next step is to 
remove the check for the ldap libraries in configure
(This used to be commit 74841dbb2a86bb1c584b5c26c4cd24a818a65a34)
 2007-10-10 13:18:19 -05:00
Andrew Tridgell
52400f0f7d r7666: fixed a memory leak in the ldap ldb backend 
(This used to be commit ac3f33c61555a2afa30fe446676013564982e257)
 2007-10-10 13:18:19 -05:00
Andrew Tridgell
ab1e121b76 r7665: - added a ildap_*() interface to our internal ldap library. This 
interface is very similar to the traditional ldap interface, and will
  be used as part of a ldb backend based on the current ldb_ldap backend

- fixed some allocation issues in ldb_msg.c
(This used to be commit b34a29dcf26f68a2f47380a6c74a4095fdfd2fbe)
 2007-10-10 13:18:19 -05:00
Andrew Tridgell
2068037ba9 r7661: patch from tburdi1@uic.edu to fix autogen.sh on freebsd 
(This used to be commit ffe1b5e6f4cd8cc9ddd0ceda882ad76917ebd1d3)
 2007-10-10 13:18:18 -05:00
Andrew Tridgell
11bc3f3589 r7660: improved error handling in socket_connect_ev() (it matters when name 
resolution fails)
(This used to be commit 4013c2ddea0cd03f875e2acf40d2a34344017d05)
 2007-10-10 13:18:18 -05:00
Andrew Tridgell
5c332f6e9d r7659: fixup the ordering of socket destruction for ncacn_ip_tcp so we don't try and 
remove an epoll descriptor for a closed fd
(This used to be commit bec5e9f80a934e6472e8d227214a9baba4f15054)
 2007-10-10 13:18:18 -05:00
Andrew Tridgell
3422499a85 r7658: don't timeout at the smb level for rpc requests as otherwise some rpc 
level sign/seal mechanisms can break
(This used to be commit 9df569f023f9a1e0d8c35de8135a344933bc69bf)
 2007-10-10 13:18:18 -05:00
Andrew Tridgell
07c395a40b r7657: test addone again after request timeout and destruction to ensure the pipe is still OK 
(This used to be commit 9f7f70124fc67109bc9ace7a57490851341ad759)
 2007-10-10 13:18:18 -05:00
Andrew Tridgell
dc8961ad42 r7656: added testing of rpc request timeouts and destruction 
(This used to be commit eddf41d5e4ca43073b96f96b96dbadf7b8b91df5)
 2007-10-10 13:18:18 -05:00
Andrew Tridgell
4f6225d695 r7655: test the evnt friendly socket_connect() in the LOCAL-SOCKET test 
(This used to be commit b9ed92d550f1b821c5402a516eb2dfc2c8d69f0a)
 2007-10-10 13:18:18 -05:00