samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2025-01-05 09:18:06 +03:00

Author	SHA1	Message	Date
Douglas Bagnall	18f44f3ba4	selftest:ndrdump: adjust xattr_NTACL test for ACE coda Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Thu Aug 24 03:47:08 UTC 2023 on atb-devel-224	2023-08-24 03:47:08 +00:00
Douglas Bagnall	882ad16138	pytest: compare Samba vs Windows SDDL security descriptors Can Samba understand Windows security descriptors? Does it parse SDDL the same way? Here we test on over 7000 SDDL/descriptor pairs and find the answer is pleasing. In later commits we will add more tests using different classes of ACE. The test cases are derived from fuzz seeds, exported to Windows via the script in the last commit, with the Windows descriptor bytes found using libcli/security/tests/windows/windows-sddl-test.py. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-24 02:53:31 +00:00
Douglas Bagnall	5a45a434c7	s4/ntfvfs/pvfs_acl: initialise ACEs to zeroes Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-24 02:53:30 +00:00
Douglas Bagnall	31dadff39a	s4/torture: initialise ACE structs to zero Because soon these structs will have more members, which are typically going to be zero. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-24 02:53:30 +00:00
Joseph Sutton	892c1b0a0c	s4:torture: Fix code spelling Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-21 23:37:29 +00:00
Joseph Sutton	783f09cc37	s4:smb_server: Fix code spelling Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-21 23:37:29 +00:00
Joseph Sutton	4b03aabe45	s4:kdc: Use smb_krb5_make_data() smb_krb5_make_data() sets the magic field, which we were previously ignoring. We should also not set krb5_data::length if krb5_data::data is NULL. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-21 23:37:29 +00:00
Joseph Sutton	6d2c7c45ca	s4:kdc: Use ‘krb5_error_code’ for return types Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-21 23:37:29 +00:00
Joseph Sutton	9166d01b19	s4:kdc: Set SAMBA_KDC_FLAG_PROTOCOL_TRANSITION flag for MIT Kerberos This flag was set in commit `461dc44e74`, but only in mit_samba_reget_pac(); it was not set in the newer function, mit_samba_update_pac(), used with MIT Kerberos 1.20 and above. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-21 23:37:29 +00:00
Joseph Sutton	bbfa98ec05	s4:kdc: Remove support code for older versions of MIT Kerberos The oldest version we now support is 1.21. For every supported version we can be certain that KRB5_KDB_API_VERSION >= 10 and KRB5_KDB_DAL_MAJOR_VERSION >= 9. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-21 23:37:29 +00:00
Joseph Sutton	6b580f7368	s4:kdc: Do not panic if authsam_logon_success_accounting() fails In hdb_samba4_audit(), ERR_GENERIC signals an unexpected situation — if we encounter that error code while running under selftest, we’ll panic. In response to an expected event such as the failure of authsam_logon_success_accounting(), it’s more appropriate to continue to run. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-21 23:37:29 +00:00
Andreas Schneider	5f024d57b3	s4:wrepl_server: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	dbfc239f5b	s4:wrepl_server: Remove trailing white spaces Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	920ffe5dc9	s4:torture: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	0d241305b4	s4:torture:smb2: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	085cfe0c4a	s4:torture:rpc: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	ff2f813b68	s4:torture:raw: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	428c155646	s4:torture:nbt: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	c4ed99a223	s4:torture:nbench: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	664f69617d	s4:torture:libnetapi: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	faa06e5ed2	s4:torture:ldb: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	1c4e84fd2a	s4:torture:ldap: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	3f023d7414	s4:torture:ldap: Remove trailing white spaces Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	56fdc3c588	s4:torture:krb5: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	e2c952cfea	s4:torture:dns: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	5850ea6338	s4:torture:basic: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	69b7876965	s4:torture:drs: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:30 +00:00
Andreas Schneider	3dd7625ab9	s4:torture:dfs: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	5dd07a44a2	s4:torture:auth: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	e1da1fc9d9	s4:smb_server: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	5a0201e8b4	s4:setup: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	541f4d08a3	s3:ldap_server: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	9ebd645e63	s4:selftest: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	9c13765f2d	s4:scripting: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	ee1bc66e02	s4:samba: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	8d85b9987e	s4:rpc_server: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	6427dafe70	s4:ntvfs: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	42f094afde	s4:librpc: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	37664f4ce7	s4:libnet: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	950f0b47d9	s4:libcli: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	a749d885f3	s4:libcli: Remove tailing white spaces Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Andreas Schneider	783eff3f76	s4:lib: Fix code spelling Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 21:45:29 +00:00
Joseph Sutton	c01c206d76	s4:kdc: Add get_claims_set_for_principal() Add a new function, get_claims_set_for_principal(), that returns the claims as a CLAIMS_SET structure rather than as a blob. To accommodate this, move the call to encode_claims_set() out of get_all_claims() and into get_claims_blob_for_principal(). Being able to get the unencoded claims will save us from having to decode claims that we just needlessly encoded. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Mon Aug 14 05:51:45 UTC 2023 on atb-devel-224	2023-08-14 05:51:45 +00:00
Joseph Sutton	21e0c25895	s4:kdc: Rename ‘claims_blob’ parameter to ‘claims_blob_out’ Just to make perfectly clear that it is an out parameter. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 04:57:35 +00:00
Joseph Sutton	504a36f320	s4:kdc: Rename get_claims_for_principal() to get_claims_blob_for_principal() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 04:57:35 +00:00
Joseph Sutton	e6b78ef7f7	s4:kdc: Ensure that we don’t dereference a NULL pointer Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 04:57:35 +00:00
Joseph Sutton	58371c33e9	s4:kdc: Properly allocate claims set on a talloc context Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 04:57:35 +00:00
Joseph Sutton	c6cd6b25ff	s4:kdc: Remove ldb_context parameter as being no longer needed Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 04:57:34 +00:00
Joseph Sutton	78fc6fbb61	s4:kdc: Have encode_claims_set return NTSTATUS This change will simplify things later. Probably. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 04:57:34 +00:00
Joseph Sutton	365455b6a1	s4:dsdb: Check for overflow in security_token_create() Overflow is unlikely ever to occur, but you never know. Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2023-08-14 04:57:34 +00:00

1 2 3 4 5 ...

38728 Commits