summaryrefslogtreecommitdiffstats
path: root/source/smbd/sesssetup.c
Commit message (Collapse)AuthorAgeFilesLines
* Don't re-initialize a token when we already have one. This fixes the build ↵Jeremy Allison2008-08-221-10/+13
| | | | | | | farm failures when winbindd connects as guest. This one took a *lot* of tracking down :-). Jeremy.
* Fix type error in debug messageVolker Lendecke2008-05-201-1/+1
|
* sesssetup.c: Add debug message.Karolin Seeger2008-05-201-0/+3
| | | | | | | | Log when we kill other smbd sessions like when we hit the VC == 0 case. This one fixes BUG #5476. Initial patch from Björn Jacke <bj@sernet.de>. Karolin
* Fix a memleak in new auth_serversupplied codeVolker Lendecke2008-05-111-1/+2
|
* Fix a memleakVolker Lendecke2008-05-101-5/+0
|
* Add a mem_ctx argument to make_server_info_guest()Volker Lendecke2008-05-101-3/+3
|
* Rename server_info->was_mapped to server_info->nss_tokenVolker Lendecke2008-05-071-3/+1
| | | | | "nss_token" from my point of view much better reflects what this flag actually represents
* Fix typoVolker Lendecke2008-05-051-1/+1
|
* Remove "session_key" from "struct user_struct"Volker Lendecke2008-05-051-18/+13
| | | | This one took a bit -- I hope I covered all data paths
* Fix Kerberos interop with Mac OS X 10.5 clients.Bill Ricker2008-04-071-21/+28
| | | | | Ignore optional req_flags. Use the Kerberos mechanism OID negotiated with the client rather than hardcoding OID_KERBEROS5_OLD.
* Fix up the comments on security=share to explain we'reJeremy Allison2008-03-271-1/+5
| | | | | ignoring passwords. Jeremy.
* smbd: fix session setup with security = share.Michael Adam2008-03-201-1/+1
| | | | | | | | | Broken by pstring removal in 9ed12bfc48fe7f9b1863a9dd88e881974083053c. Jeremy, please check. Thanks to Yannick Bergeron <yaberger@ca.ibm.com> for noting this. Michael
* Be more verbose why create local token has failed duringGünther Deschner2008-03-061-0/+2
| | | | | | NTLMSSP and Kerberos session setup Guenther
* Use new structs in reply_spnego_kerberos().Günther Deschner2008-02-171-6/+5
| | | | Guenther
* Correctly use SPNEGO to negotiate down from krb5 to NTLMSSP.Jeremy Allison2008-02-141-28/+81
| | | | | Previously we didn't implement the 'NEGO' part of SPNEGO :-). Jeremy.
* smbd: use make usage of wbcDomainInfo()Stefan Metzmacher2008-02-111-15/+9
| | | | metze
* Fix CID 476. Ensure a valid pac_data pointer is always passed toJeremy Allison2008-01-111-2/+1
| | | | | ads_verify_ticket as it's always derefed. Jeremy.
* Can't use logical operations on boolean values.Jeremy Allison2008-01-041-1/+3
| | | | Jeremy.
* Now conn is part of smb_request, we don't need it asJeremy Allison2008-01-041-23/+17
| | | | | | an extra parameter. This cleans up quite a few places we were passing it around without needing it. Jeremy.
* Refactor the crypto code after a very helpful conversationJeremy Allison2008-01-041-1/+1
| | | | | | with Volker. Mostly making sure we have data on the incoming packet type, not stored in the smb header. Jeremy.
* Remove last pstring from sesssetup.cJeremy Allison2007-11-101-19/+21
| | | | Jeremy.
* Remove most of the remaining globals out of lib/util_sock.c.Jeremy Allison2007-11-031-2/+2
| | | | | | I have a plan for dealing with the remaining..... Watch this space. Jeremy.
* I can't get away without a 'length' arg. :-).Jeremy Allison2007-11-031-1/+2
| | | | Jeremy.
* Stop get_peer_addr() and client_addr() from using globalJeremy Allison2007-11-031-1/+3
| | | | | statics. Part of my library cleanups. Jeremy.
* RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison2007-10-181-17/+17
| | | | | | | bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy.
* Add const to the get_peer_addr() and get_socket_addr()Jeremy Allison2007-10-111-1/+2
| | | | | calls. Use the IPv6 varient for get_peer_addr(). Jeremy.
* r25286: Fix one more caller of unistr2_to_ascii() that passedMichael Adam2007-10-101-1/+1
| | | | | | in -1 for maxlen. Michael
* r24702: Remove the old API pointersVolker Lendecke2007-10-101-1/+1
|
* r24661: Fix some obvious diffs between 3_2 and 3_2_0Volker Lendecke2007-10-101-3/+5
| | | | | | | | | Jeremy, there are two remaining diffs in sesssetup.c which I don't really know which one is right. Can you take a look? Thanks, Volker
* r24638: Remove redundent setting of vuid.Jeremy Allison2007-10-101-3/+1
| | | | Jeremy
* r24590: Reformatting to coding standards. Added my (C) in places it already ↵Jeremy Allison2007-10-101-172/+249
| | | | | | | should have been :-). Jeremy.
* r24589: Refactor our vuid code so that we keep the sameJeremy Allison2007-10-101-43/+79
| | | | | | | | | | | vuid that was allocated whilst the connection is being constructed and after the connection has been set up. This is what Windows does and at least one client (and HP printer) depends on this behaviour. As it depends on the req struct not yet ported to SAMBA_3_2_0 (Volker, hint hint.... :-) I am not yet adding this to that branch, but will investigate that tomorrow. Jeremy.
* r24135: Convert call_trans2open to the new APIVolker Lendecke2007-10-101-0/+1
| | | | | | | | | This itself won't help much, because send_trans2_replies_new still allocates the big buffers, but stay tuned :-) Also add/update my copyright on stuff I recently touched. Volker
* r24056: Another big one: This converts reply_sesssetup_and_X to the new API. ↵Volker Lendecke2007-10-101-185/+248
| | | | | | | | | As usual, its history can be found on http://samba.org/~vlendec/sesssetup/. This very obviously needs close review. Volker
* r24050: Fix a typoVolker Lendecke2007-10-101-1/+3
|
* r23997: Check in the infrastructure for getting rid of the global ↵Volker Lendecke2007-10-101-1/+1
| | | | | | | | | | | | | | | | | | InBuffer/OutBuffer The complete history of this patch can be found under http://www.samba.org/~vlendec/inbuf-checkin/. Jeremy, Jerry: If possible I would like to see this in 3.2.0. I'm only checking into 3_2 at the moment, as it currently will slow down operations for all non-converted (i.e. all at this moment) operations, as it will copy the talloc'ed inbuf over the global InBuffer. It will need quite a bit of effort to convert everything necessary for the normal operations an XP box does. I have patches for negprot, session setup, tcon_and_X, open_and_X, close. More to come, but I would appreciate some help here. Volker
* r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell2007-10-101-2/+1
|
* r23779: Change from v2 or later to v3 or later.Jeremy Allison2007-10-101-1/+1
| | | | Jeremy.
* r23736: Use local variable of smb_flag2 instead of using the macro every time.Jeremy Allison2007-10-101-14/+16
| | | | Jeremy.
* r23726: Explicitly pass down the FLAGS2 field to srvstr_pull_buf. The nextVolker Lendecke2007-10-101-14/+29
| | | | | | checkin will pull this up to srvstr_get_path. At that point we can get more independent of the inbuf, the base_ptr in pull_string will only be used to satisfy UCS2 alignment constraints.
* r23474: Here's a small patch that disables the libkrb5.so replay cacheGerald Carter2007-10-101-1/+3
| | | | | | | | | | | | | | | | | | when verifying a ticket from winbindd_pam.c. I've found during multiple, fast, automated SSH logins (such as from a cron script) that the replay cache in MIT's krb5 lib will occasionally fail the krb5_rd_req() as a replay attack. There seems to be a small window during which the MIT krb5 libs could reproduce identical time stamps for ctime and cusec in the authenticator since Unix systems only give back milli-seconds rather than the micro-seconds needed by the authenticator. Checked against MIT 1.5.1. Have not researched how Heimdal does it. My thinking is that if someone can spoof the KDC and TDS services we are pretty hopeless anyways.
* r23172: Change shutdown_other_smbds to use connections_traverse instead ofVolker Lendecke2007-10-101-9/+10
| | | | session_traverse.
* r22868: Replace some message_send_pid calls with messaging_send_pid calls. MoreVolker Lendecke2007-10-101-2/+2
| | | | tomorrow.
* r22844: Introduce const DATA_BLOB data_blob_null = { NULL, 0, NULL }; andVolker Lendecke2007-10-101-10/+10
| | | | replace all data_blob(NULL, 0) calls.
* r22751: Next step for the cluster merge: sessionid.tdb should contain a 'structVolker Lendecke2007-10-101-3/+3
| | | | server_id' instead of a 'uint32 pid'
* r22747: Fix some C++ warningsVolker Lendecke2007-10-101-2/+1
|
* r22391: Looks bigger than it is. Make "inbuf" availableJeremy Allison2007-10-101-11/+14
| | | | | | | to all callers of smb_setlen (via set_message() calls). This will allow the server to reflect back the correct encryption context. Jeremy.
* r22095: BUG 4484: Add more checks to set %a for Vista clients (based on ↵Gerald Carter2007-10-101-0/+5
| | | | absence of native OS and Lanman strings in the session setup request)
* r21882: The server part of the code has to use an AUTH_NTLMSSP struct,Jeremy Allison2007-10-101-1/+1
| | | | | | | | not just an NTLMSSP - grr. This complicates the re-use of common client and server code but I think I've got it right. Not turned on of valgrinded yet, but you can see it start to take shape ! Jeremy.
* r21847: Fix memory leaks in error paths (and in main code path in one case...)Jeremy Allison2007-10-101-0/+1
| | | | | in sasl bind. Wonder why coverity didn't find these ? Jeremy.
generated by cgit (git 2.34.1) at 2025-09-03 09:37:05 +0000