summaryrefslogtreecommitdiffstats
path: root/source/libsmb
Commit message (Collapse)AuthorAgeFilesLines
...
* Merged Volkers (correct) fix from 2.2 for crash on unable to connect.Jeremy Allison2002-09-091-4/+6
| | | | Jeremy.
* don't use ENCTYPE_ARCFOUR_HMAC unless the kerberos lib supports itAndrew Tridgell2002-09-041-5/+4
|
* Fix the struct_blob.Richard Sharpe2002-09-032-5/+9
|
* Fix crashbug discovered by "Kim R. Pedersen" <krp@filanet.dk> whereJeremy Allison2002-09-031-1/+7
| | | | | cli struct was being deallocated in a called function. Jeremy.
* Formatting tidyup and additon of cli_close_connection() before bugfix.Jeremy Allison2002-09-032-118/+101
| | | | Jeremy.
* Fix the client side NTLMSSP. It now works between smbclient and smbd!Richard Sharpe2002-09-032-4/+52
| | | | However, it does not work with Win2K over 445 with raw NTLMSSP!
* Parse the NTLMSSP Challenge in cliconnect.c.Richard Sharpe2002-09-031-2/+28
| | | | This gets us closer ... Should have the challenge now. Need to check that it works.
* Make sure that an NTLMSSP negotiate blob has the correct stuff in it!Richard Sharpe2002-09-031-2/+3
|
* Add type A to the small MSRPC generator ...Richard Sharpe2002-09-031-0/+2
|
* The session key in NTLMSSP AUTH blobs is actually an empty string.Richard Sharpe2002-09-031-1/+1
| | | | | Also, the negotiate blob has two ASCI strings encoded in the same way that the UNICODE strings are, they are just in ASCII. The PARSER and Generator will have to deal with that.
* Add a dash of static.Andrew Bartlett2002-08-312-3/+3
|
* Add a bit of 'const' and move a lot of our 'repeditive' DEBUG() statements toAndrew Bartlett2002-08-311-16/+18
| | | | | | | | 'DEBUGADD', so we don't repeat headers. (Makes them much easier to read). (Based on patch by kai) Andrew Bartlett
* added cli_net_auth_3 client code.Jean-François Micouleau2002-08-301-1/+3
| | | | | | | | | | changed cli_nt_setup_creds() to call cli_net_auth_2 or cli_net_auth_3 based on a switch. pass also the negociation flags all the way. all the places calling cli_nt_setup_creds() are still using cli_net_aut2(), it's just for future use and for rpcclient. in the future we will be able to call auth_2 or auth_3 as we want. J.F.
* convert the LDAP/SASL code to use GSS-SPNEGO if possibleAndrew Tridgell2002-08-303-8/+17
| | | | | | | | | | | | | | | | we now do this: - look for suported SASL mechanisms on the LDAP server - choose GSS-SPNEGO if possible - within GSS-SPNEGO choose KRB5 if we can do a kinit - otherwise use NTLMSSP This change also means that we no longer rely on having a gssapi library to do ADS. todo: - add TLS/SSL support over LDAP - change to using LDAP/SSL for password change in ADS
* Sync up namecache code with HEAD and APPLIANCE_HEAD. Rerun unit tests.Tim Potter2002-08-281-16/+24
|
* merge from SAMBA_2_2Gerald Carter2002-08-271-1/+1
|
* Some fixes for SMB signing. I can now get Win2k to correctly respond with aAndrew Bartlett2002-08-261-3/+14
| | | | | | security signiture, but I can't get it to accept ours. Andrew Bartlett
* Updates!Andrew Bartlett2002-08-264-43/+100
| | | | | | | | | | | - Don't print an uninitialised buffer in service.c - Change some charcnv.c functions to take smb_ucs2_t ** instead of void ** - Update NTLMv2 code to use dynamic buffers - Update experimental SMB signing code - still more work to do - Move sys_getgrouplist() to SAFE_FREE() and do a DEBUG() on initgroups() failure. Andrew Bartlett
* Use a function that actually exists for the keepalive send.Andrew Bartlett2002-08-251-1/+1
| | | | Andrew Bartlett
* Fix from kai to correctly decode ntlmssp flags.Andrew Bartlett2002-08-251-1/+1
| | | | Andrew Bartlett
* Cope with negative cache dns entries better.Tim Potter2002-08-231-5/+6
|
* Moved calculation of secure channel type into a new function.Tim Potter2002-08-231-2/+1
|
* Don't take the sizeof(struct in_addr) * -1Tim Potter2002-08-231-2/+4
|
* move where got_sig_term and reload_after_sighup are defined.Herb Lewis2002-08-221-9/+9
| | | | | populate cli structure with called name and calling name even for port 445 connects.
* a ASN.1 fix from anthonyAndrew Tridgell2002-08-221-1/+3
|
* don't use spnego in the client unless enabled in smb.confAndrew Tridgell2002-08-221-1/+3
|
* fix a few segfaultsGerald Carter2002-08-221-1/+1
|
* A few fixes towards libsmbclient and rpcclient - get pointer types right andAndrew Bartlett2002-08-221-5/+3
| | | | | | try to keep to functions inside libsmbclient. Andrew Bartlett
* fix segfaultGerald Carter2002-08-211-5/+5
|
* Patch from Paul Green <Paul.Green@stratus.com> to be more POSIX-compatibleJelmer Vernooij2002-08-211-1/+1
|
* cannot use casts in the DLIST_xxx macrosHerb Lewis2002-08-201-2/+2
|
* fix irix compiler errorHerb Lewis2002-08-201-1/+1
|
* fixed memory corruption in cli_full_connection()Andrew Tridgell2002-08-191-2/+1
|
* we now receive and parse the main cldap netlogon reply.Andrew Tridgell2002-08-191-5/+2
| | | | we still need to parse the core of the structure
* added a 'net ads lookup' command that does a CLDAP NetLogon query to aAndrew Tridgell2002-08-191-0/+10
| | | | | win2000 server. It does seem to work, and win200 sends us a valid reply, but we don't parse it yet. Maybe tomorrow :)
* Merge of netbios namecache code from APPLIANCE_HEAD.Tim Potter2002-08-162-4/+276
| | | | | | | Tridge suggested a generic caching mechanism for Samba to avoid the proliferation of little cache files hanging around limpet like in the locks directory. Someone should probably implement this at some stage.
* Fix NTLMSSP challenge command and auth response. We can now service joinsJim McDonough2002-08-151-0/+61
| | | | | from win2k AND still use SPNEGO (provided you don't build with kerberos...I still have to fix that, as we are not properly falling back).
* This fixes a number of ADS problems, particularly with netbioslessAndrew Tridgell2002-08-051-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | setups. - split up the ads structure into logical pieces. This makes it much easier to keep things like the authentication realm and the server realm separate (they can be different). - allow ads callers to specify that no sasl bind should be performed (used by "net ads info" for example) - fix an error with handing ADS_ERROR_SYSTEM() when errno is 0 - completely rewrote the code for finding the LDAP server. Now try DNS methods first, and try all DNS servers returned from the SRV DNS query, sorted by closeness to our interfaces (using the same sort code as we use in replies from WINS servers). This allows us to cope with ADS DCs that are down, and ensures we don't pick one that is on the other side of the country unless absolutely necessary. - recognise dnsRecords as binary when displaying them - cope with the realm not being configured in smb.conf (work it out from the LDAP server) - look at the trustDirection when looking up trusted domains and don't include trusts that trust our domains but we don't trust theirs. - use LDAP to query the alternate (netbios) name for a realm, and make sure that both and long and short forms of the name are accepted by winbindd. Use the short form by default for listing users/groups. - rescan the list of trusted domains every 5 minutes in case new trust relationships are added while winbindd is running - include transient trust relationships (ie. C trusts B, B trusts A, so C trusts A) in winbindd. - don't do a gratuituous node status lookup when finding an ADS DC (we don't need it and it could fail) - remove unused sid_to_distinguished_name function - make sure we find the allternate name of our primary domain when operating with a netbiosless ADS DC (using LDAP to do the lookup) - fixed the rpc trusted domain enumeration to support up to approx 2000 trusted domains (the old limit was 3) - use the IP for the remote_machine (%m) macro when the client doesn't supply us with a name via a netbios session request (eg. port 445) - if the client uses SPNEGO then use the machine name from the SPNEGO auth packet for remote_machine (%m) macro - add new 'net ads workgroup' command to find the netbios workgroup name for a realm
* fixed a bug where we were truncating the returned names in a netbiosAndrew Tridgell2002-08-031-1/+1
| | | | | name status query to 14 bytes, so we could not join a DC who had a netbios name of 15 bytes in length.
* Moved rpc client routines from libsmb back to rpc_client where they belong.Tim Potter2002-08-029-6501/+0
|
* added 'disable netbios = yes/no' option, default is noAndrew Tridgell2002-07-311-2/+31
| | | | | | | | | | | | | When this option is disabled we should not do *any* netbios operations. You should also not start nmbd at all. I have put initial checks in at the major points we do netbios operations in smbd but there are bound to be more needed. Right now I've disabled all netbios name queries, all WINS lookups and node status queries in smbd and winbindd. I've been testing this option and the most noticable thing is how much more responsive things are! wthout those damn netbios timeouts things certainly are much slicker.
* this fixes plaintext passwords with win2000Andrew Tridgell2002-07-301-3/+2
| | | | | | | | | | there were 2 bugs: 1) we were sending a null challenge when we should have sent an empty challenge 2) the password can be in unicode if unicode is negotiated. This means our client code was wrong too :(
* Some crash fixes for netshareenum returning zero shares.Tim Potter2002-07-301-0/+3
|
* Rafal 'Mimir' Szczesniak <mimir@diament.ists.pwr.wroc.pl> has been busyAndrew Bartlett2002-07-272-4/+115
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | again, and has added 'net rpc trustdom list' support. This lists the trusted and trusting domains of a remote PDC. I've applied these almost directly, just fixing some special case code for when there are *no* trusting domains. We still have some parse errors in this case however. Andrew Bartlett. From mimir's e-mail: Here are another patches adding trust relationship features. More details: Better error reporting in cli_lsa_enum_trust_dom(). Implementation of cli_samr_enum_dom_users() which cli_samr.c lacked. More "consts" -- one of arguments in net_find_dc(). Modified implementation of run_rpc_command() -- now it allows to reuse already opened connection (if it is passed) to remote server's IPC$ (e.g. as part of longer exchange of rpc calls). I'm sure Andrew will argue ;-) More neat version of rpc_trustdom_list() function.
* Mimir has been busy with patches again, and sent in the followingAndrew Bartlett2002-07-261-3/+2
| | | | | | | | | | | | | | | | | | | | | | | | | patches: Andrew Bartlett From his e-mail: Below I attach the following patches as a result of my work on trusted domains support: 1) srv_samr_nt.c.diff This fixes a bug which caused to return null string as the first entry of enumerated accounts list (no matter what entry, it was always null string and rid) and possibly spoiled further names, depeding on their length. I found that while testing my 'net rpc trustdom list' against nt servers and samba server. 2) libsmb.diff Now, fallback to anonymous connection works correctly. 3) smbpasswd.c.diff Just a little fix which actually allows one to create a trusting domain account using smbpasswd 4) typos.diff As the name suggests, it's just a few typos fix :)
* fixed a segv in net time when the host is unavailableAndrew Tridgell2002-07-221-1/+1
|
* Renamed all the new_cli_netlogon_* functions to cli_netlogon_*Tim Potter2002-07-212-16/+16
| | | | as they're no longer new!
* Try to fix up warnings - particularly on the IRIX 64 bit compiler (which had aAndrew Bartlett2002-07-204-12/+24
| | | | | | | | distinction between uchar and char). Lots of const etc. Andrew Bartlett
* Fix up char/uchar casts etc. Fix up comments on some of the password hashAndrew Bartlett2002-07-202-12/+9
| | | | | | wrappers. Andrew Bartlett
* Add support for a weird behaviour apparently used by Win9X pass-throughAndrew Bartlett2002-07-201-2/+2
| | | | | | | | | | authentication - we can have an NT hash in the LM hash feild. (I need to double-check this fix with tpot, who discovered it). Also remove silly casts back and forth between uchar and char. Andrew Bartlett
generated by cgit (git 2.34.1) at 2025-09-30 10:31:52 +0000