Tim Beale 2d0766a48b s4-drsuapi: Set getnc_state *after* we've checked request is valid ... We were creating the getnc_state (and storing it on the connection) before we had done some basic checks that the request was valid. If the request was not valid and we returned early with an error, then the partially-initialized getnc_state was left hanging on the connection. The next request that got sent on the connection would try to use this, rather than creating a new getnc_state from scratch. The main side-effect of this was if you sent an invalid GetNCChanges request twice, then it could be rejected the first time and accepted the second time. Note that although an invalid request was accepted, it would typically not return any objects, so it would not actually leak any secure information. Signed-off-by: Tim Beale <timbeale@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>		2017-08-29 07:23:28 +02:00
..
auth	s4:auth/ntlmssp: add support for using "winbind" as DC	2017-08-07 15:20:03 +02:00
build/pasn1
cldap_server	s4: Add TALLOC_CTX * to register_server_service().	2017-05-11 20:30:13 +02:00
client	s4: cifsdd: Allocate the event context off NULL, not talloc_autofree_context().	2017-05-13 16:50:13 +02:00
cluster	Remove callers of lp_use_ntdb	2015-03-17 11:30:51 +01:00
dns_server	dnsserver: Add support for dns wildcards	2017-08-15 08:07:10 +02:00
dsdb	selftest: Make dirsync test use symobolic name and OA not A	2017-08-29 07:23:28 +02:00
echo_server	s4: Add TALLOC_CTX * to register_server_service().	2017-05-11 20:30:13 +02:00
heimdal	HEIMDAL: don't bother seeing q if not sent	2017-08-28 15:10:54 +02:00
heimdal_build	strerror_r: provide XSI-compliant strerror_r	2017-06-13 18:38:14 +02:00
include	lib: Remove global xfile.h includes	2016-11-20 06:23:19 +01:00
kdc	mit-kdb: Fix NULL pointer check after malloc	2017-07-24 18:45:33 +02:00
ldap_server	ldap: Run the LDAP server with the default (typically standard) process model	2017-07-02 17:35:20 +02:00
lib	lib: talloc: Use the system <talloc.h> include.	2017-08-17 00:53:48 +02:00
libcli	s4:libcli/smb_composite: make the additional gensec_update steps async	2017-06-17 20:54:59 +02:00
libnet	replmd: Don't fail cycle if we get link for deleted object with GET_TGT	2017-08-18 06:07:12 +02:00
librpc	lib: talloc: Use the system <talloc.h> include.	2017-08-17 00:53:48 +02:00
nbt_server	s4: Add TALLOC_CTX * to register_server_service().	2017-05-11 20:30:13 +02:00
ntp_signd	s4: Add TALLOC_CTX * to register_server_service().	2017-05-11 20:30:13 +02:00
ntvfs	s4:auth/unix_token: remove unused tevent_context from security_token_to_unix_token()	2017-06-26 08:47:15 +02:00
param	source4/provision: fix talloc_steal on unallocated memory	2017-05-25 02:25:13 +02:00
rpc_server	s4-drsuapi: Set getnc_state *after* we've checked request is valid	2017-08-29 07:23:28 +02:00
script	find_unused_macros: Remove obsolete script that finds unused macros.	2014-08-31 21:21:13 +02:00
scripting	python: Make generated modules samba.ntstatus and samba.werror Python 3 compatible.	2017-08-22 17:38:17 +02:00
selftest	s4-drsuapi: Avoid segfault when replicating as a non-admin with GUID_DRS_GET_CHANGES	2017-08-29 07:23:28 +02:00
setup	selftest: Add a test for @ATTRIBUTES and @INDEXLIST generation	2017-06-15 01:24:25 +02:00
smb_server	s4:smb_server: avoid using gensec_update_ev() for the negotiate blob	2017-05-21 21:05:08 +02:00
smbd	stream_terminate_connection: Prevent use-after-free	2017-06-15 01:24:25 +02:00
torture	selftest: GetNCChanges can 'accept' a repeated bad request	2017-08-29 07:23:28 +02:00
utils	man pages: change http://samba.org to https://www.samba.org	2016-12-09 13:10:26 +01:00
web_server	s4: Add TALLOC_CTX * to register_server_service().	2017-05-11 20:30:13 +02:00
winbind	s4: Add TALLOC_CTX * to register_server_service().	2017-05-11 20:30:13 +02:00
wrepl_server	s4: Add TALLOC_CTX * to register_server_service().	2017-05-11 20:30:13 +02:00
.clang_complete
.valgrind_suppressions
wscript_build	Do not install smbclient4 and nmblookup4	2014-04-15 03:25:13 +02:00