Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | ntlmssp: add ntlmssp helper skeleton. | Günther Deschner | 2009-08-28 | 3 | -1/+45 |
| | | | | Guenther | ||||
* | ntlmssp: add IDL. | Günther Deschner | 2009-08-28 | 1 | -0/+89 |
| | | | | Guenther | ||||
* | lib/tevent: close pipe_fds on event_context destruction | Rusty Russell | 2009-08-28 | 1 | -0/+2 |
| | | | | | | | The "hack_fds" were never closed before; now they're inside event_context they should be closed when that is destroyed. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> | ||||
* | lib/tevent: handle tevent_common_add_signal on different event contexts. | Rusty Russell | 2009-08-28 | 2 | -14/+31 |
| | | | | | | | | | | I don't know if this is a problem in real life. The code assumes there's only one tevent_context; all signals will notify the first event context. That's counter-intuitive if you ever use more than one, and there's nothing else in this code which prevents it AFAICT. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> | ||||
* | lib/tevent: fix race with signals and tevent_common_add_signal | Rusty Russell | 2009-08-28 | 1 | -20/+20 |
| | | | | | | | | | | | We carefully preserve the old signal handler, but we replace it before we've set up everything; in particular, if we fail setting up the pipe_hack we could write a NUL char to stdout (fd 0), instead of calling the old signal handler. Replace the signal handler as the very last thing we do. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> | ||||
* | lib/tdb: don't overwrite TDBs with different version numbers. | Rusty Russell | 2009-08-28 | 1 | -5/+7 |
| | | | | | | In future, this may happen, and we don't want to clobber them. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> | ||||
* | lib/tevent: remove spectacularly complicated manual subtraction | Rusty Russell | 2009-08-28 | 1 | -4/+1 |
| | | | | | | | | | | | To be completely honest, I don't quite know whether to laugh or cry at this one: 1 + (0xFFFFFFFF & ~(s.seen - s.count)) == 1 + (~(s.seen - s.count)) # s.seen, s.count are uint32_t == s.count - s.seen # -A == ~A + 1 Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> | ||||
* | util: fix comment and clarify argument name in DLIST_DEMOTE() | Michael Adam | 2009-08-27 | 1 | -3/+3 |
| | | | | Michael | ||||
* | s3:smbd: teach filename_convert() about fake files (2nd fix for bug #6642) | Stefan Metzmacher | 2009-08-27 | 1 | -0/+11 |
| | | | | metze | ||||
* | s3:smbd: add is_fake_file_path() that takes only the raw path as string | Stefan Metzmacher | 2009-08-27 | 2 | -14/+23 |
| | | | | metze | ||||
* | s3:streams: check for :$DATA only in the backend (fix bug #6642) | Stefan Metzmacher | 2009-08-27 | 3 | -5/+11 |
| | | | | | | | We need to allow "\\$Extend\\$Quota:$Q:$INDEX_ALLOCATION" to pass check_path(), so that the Quota Dialog works. metze | ||||
* | s3:error_map: make NTSTATUS -> errno -> NTSTATUS mapping consistent for ↵ | Stefan Metzmacher | 2009-08-27 | 1 | -1/+1 |
| | | | | | | | | NT_STATUS_INVALID_PARAMETER Why have we mapped EINVAL -> NT_STATUS_INVALID_HANDLE before? metze | ||||
* | s3-ntlmssp: remove trailing whitespace. | Günther Deschner | 2009-08-27 | 3 | -137/+137 |
| | | | | Guenther | ||||
* | libcli/auth: add netlogon_creds_step_crypt() and netlogon_creds_first_step() | Stefan Metzmacher | 2009-08-27 | 1 | -10/+21 |
| | | | | | | | | | This abstracts the usage of crypto functions instead of directly calling des_crypt112(). metze Signed-off-by: Günther Deschner <gd@samba.org> | ||||
* | libcli/auth: remove some useless lines | Stefan Metzmacher | 2009-08-27 | 1 | -3/+0 |
| | | | | | | metze Signed-off-by: Günther Deschner <gd@samba.org> | ||||
* | libcli/auth: remember schannel type in netlogon_creds_server_init() | Stefan Metzmacher | 2009-08-27 | 1 | -0/+1 |
| | | | | | | metze Signed-off-by: Günther Deschner <gd@samba.org> | ||||
* | s3-schannel: remove remaining code that was using "struct dcinfo". | Günther Deschner | 2009-08-27 | 3 | -192/+0 |
| | | | | Guenther | ||||
* | s3-credentials: remove unused code. | Günther Deschner | 2009-08-27 | 4 | -314/+1 |
| | | | | Guenther | ||||
* | s3-schannel: upgrade old format schannel_store.tdb. | Günther Deschner | 2009-08-27 | 1 | -4/+9 |
| | | | | Guenther | ||||
* | s3-netlogon: use shared credential and schannel storage infrastructure for ↵ | Günther Deschner | 2009-08-27 | 3 | -196/+146 |
| | | | | | | netlogon server. Guenther | ||||
* | s3-netlogon: add netr_creds_server_step_check() convenience wrapper. | Günther Deschner | 2009-08-27 | 1 | -0/+34 |
| | | | | Guenther | ||||
* | s3-schannel: add simple wrappers to fetch and store schannel auth info. | Günther Deschner | 2009-08-27 | 4 | -1/+79 |
| | | | | Guenther | ||||
* | s3-schannel: make open_schannel_session_store() public. | Günther Deschner | 2009-08-27 | 2 | -1/+2 |
| | | | | Guenther | ||||
* | libcli/auth: add tdb backend for schannel state. | Günther Deschner | 2009-08-27 | 4 | -1/+242 |
| | | | | Guenther | ||||
* | libcli/auth: move netlogon_creds_CredentialState out of libcli. | Günther Deschner | 2009-08-27 | 2 | -13/+1 |
| | | | | Guenther | ||||
* | schannel: add netlogon_creds_CredentialState to IDL. | Günther Deschner | 2009-08-27 | 4 | -0/+142 |
| | | | | Guenther | ||||
* | s4-schannel: add ldb suffix to schannel functions. | Günther Deschner | 2009-08-27 | 4 | -43/+43 |
| | | | | Guenther | ||||
* | libcli/auth: rename schannel_state.c to schannel_state_ldb.c. | Günther Deschner | 2009-08-27 | 2 | -14/+14 |
| | | | | Guenther | ||||
* | s3-build: add SCHANNEL_OBJ to Makefile.in. | Günther Deschner | 2009-08-27 | 1 | -2/+5 |
| | | | | Guenther | ||||
* | s3:winbind: Convert WINBINDD_GETUSERSIDS to the new API | Volker Lendecke | 2009-08-27 | 6 | -255/+130 |
| | |||||
* | s3:winbind: Fix a typo | Volker Lendecke | 2009-08-27 | 1 | -1/+1 |
| | |||||
* | s3:winbind: Remove the manual caching for the async wb_ functions | Volker Lendecke | 2009-08-27 | 6 | -80/+15 |
| | | | | The generic NDR-based cache in winbindd_dual_ndr.c replaces this. | ||||
* | s3:winbind: Some calls are not cacheable | Volker Lendecke | 2009-08-27 | 1 | -0/+19 |
| | |||||
* | s3:winbind: Factor out wcache_store_seqnum() | Volker Lendecke | 2009-08-27 | 2 | -19/+34 |
| | |||||
* | s3:winbind: Add a generic cache for NDR based parent-child requests | Volker Lendecke | 2009-08-27 | 7 | -21/+157 |
| | |||||
* | s3:winbind: Factor out wcache_fetch_seqnum | Volker Lendecke | 2009-08-27 | 1 | -14/+39 |
| | |||||
* | s4-smbtorture: do not hard code BDC secure channel type into RPC-NETLOGON tests. | Günther Deschner | 2009-08-27 | 1 | -9/+12 |
| | | | | Guenther | ||||
* | s4-smbtorture: add test_SetPassword_flags to RPC-NETLOGON-S3 testsuite. | Günther Deschner | 2009-08-27 | 1 | -0/+101 |
| | | | | Guenther | ||||
* | s4:python Add helper to get at the domain SID | Andrew Bartlett | 2009-08-27 | 2 | -0/+33 |
| | |||||
* | s3/smbd: open the share_info.tdb on startup instead of tconx | Steven Danneman | 2009-08-26 | 3 | -1/+11 |
| | | | | | | | | This is a small performance optimization. Instead of opening the tdb on every smb connection in the forked child process, we now open it in the parent and share the fd. This also reduces the total fd usage in the system. | ||||
* | s3/debug: make SPENGO OID list appear under one debug header | Steven Danneman | 2009-08-26 | 1 | -1/+4 |
| | |||||
* | s3/winbindd: Remove unnecessary check for NULL SID | Steven Danneman | 2009-08-26 | 2 | -8/+7 |
| | | | | | | | | | | | | | | | | There's a known bug in some Windows implementations of DsEnumerateDomainTrusts() where domain SIDs are not returned for transitively trusted domains within the same forest. Jerry originally worked around this in the winbindd parent by checking for S-0-0 and converting it to S-1-0 in 8b0fce0b. Guenter later moved these checks into the child process in commit 3bdfcbac making the initial patch unecessary. I've removed it and added a clarifying comment to the child process. If ever this SID is needed we could add an extra DsEnumerateDomainTrusts() call in trusted_domains() as suggested by the Microsoft KB. | ||||
* | s3-selftest: enable running RPC-NETLOGON-S3 against samba3. | Günther Deschner | 2009-08-26 | 1 | -1/+1 |
| | | | | Guenther | ||||
* | s4-smbtorture: add RPC-NETLOGON-S3 to test samba3 netlogon server. | Günther Deschner | 2009-08-26 | 2 | -0/+19 |
| | | | | Guenther | ||||
* | s3 onefs: Canonicalize the ACL in the correct order | tprouty | 2009-08-26 | 1 | -4/+8 |
| | |||||
* | s3: Allow full_audit to play nice with smbd if it's using syslog | tprouty | 2009-08-26 | 2 | -1/+17 |
| | | | | | | | | Explictly pass the facility from both smbd and full_audit to syslog. Really the only major change is to not call openlog() in full_audit if WITH_SYSLOG is defined, which implies that smbd is already using syslog. This allows full audit to piggy-back on the same ident as smbd, while still differentiating the logging via the facility. | ||||
* | s3 audit: Change create_file in full_audit to print whether a directory or ↵ | tprouty | 2009-08-26 | 1 | -2/+28 |
| | | | | | | | file was requested full_audit will now print out whether the createfile was requested for a file or directory. The create disposition is also printed out. | ||||
* | s3:winbind: Fix Coverity ID 942: Resource Leak | Volker Lendecke | 2009-08-26 | 1 | -0/+2 |
| | |||||
* | s4:heimdal_build: lib/hcrypto/evp-aes-cts.o belongs to HEIMDAL_HCRYPTO | Stefan Metzmacher | 2009-08-26 | 1 | -1/+1 |
| | | | | metze | ||||
* | s3-netlogon: let get_md4pw() return a struct dom_sid. | Günther Deschner | 2009-08-26 | 1 | -7/+5 |
| | | | | Guenther |