14 years agor1699: Formatting update, bugfixes
Jelmer Vernooij [Tue, 10 Aug 2004 18:44:58 +0000 (18:44 +0000)]
r1699: Formatting update, bugfixes

14 years agor1687: Fix bogus requirement for SMB signing on guest connections.
Andrew Bartlett [Tue, 10 Aug 2004 04:56:44 +0000 (04:56 +0000)]
r1687: Fix bogus requirement for SMB signing on guest connections.

Andrew Bartlett

14 years agor1686: Don't use a void* for the context inside the SMB signing code.
Andrew Bartlett [Tue, 10 Aug 2004 04:38:03 +0000 (04:38 +0000)]
r1686: Don't use a void* for the context inside the SMB signing code.

Andrew Bartlett

14 years agor1685: Add the ability to lookup RPC auth types for the RPC-MGMT torture test.
Andrew Bartlett [Tue, 10 Aug 2004 04:28:00 +0000 (04:28 +0000)]
r1685: Add the ability to lookup RPC auth types for the RPC-MGMT torture test.

Andrew Bartlett

14 years agor1679: fix add the extrasids and resource group array in
Stefan Metzmacher [Tue, 10 Aug 2004 01:03:44 +0000 (01:03 +0000)]
r1679: fix add the extrasids and resource group array in

the EXTRA_SIDS idl isn't verified to be correct yet


14 years agor1677: security descriptors are always little-endian, regardless of DCE/RPC
Andrew Tridgell [Mon, 9 Aug 2004 21:03:38 +0000 (21:03 +0000)]
r1677: security descriptors are always little-endian, regardless of DCE/RPC
level byte order flags

14 years agor1676: - improved the handling of username/password in locktest and gentest
Andrew Tridgell [Mon, 9 Aug 2004 20:51:16 +0000 (20:51 +0000)]
r1676: - improved the handling of username/password in locktest and gentest

- use lp_maxprotocol() in the libcli/raw/ negotiate code, so we obey
  the smb.conf "max protocol" option

- better handling of -M option in masktest

14 years agor1675: netlogon deltas IDL update from Richard Renard
Andrew Tridgell [Mon, 9 Aug 2004 20:47:57 +0000 (20:47 +0000)]
r1675: netlogon deltas IDL update from Richard Renard

14 years agor1674: fixed a bug in the handling of STR_LEN8BIT flagged strings
Andrew Tridgell [Mon, 9 Aug 2004 20:47:31 +0000 (20:47 +0000)]
r1674: fixed a bug in the handling of STR_LEN8BIT flagged strings

14 years agor1673: using the new [relative] pidl handling, the PAC decode is now much closer
Andrew Tridgell [Mon, 9 Aug 2004 20:34:59 +0000 (20:34 +0000)]
r1673: using the new [relative] pidl handling, the PAC decode is now much closer

14 years agor1671: make [relative] pointers in idl much more generic, treating them just
Andrew Tridgell [Mon, 9 Aug 2004 19:40:24 +0000 (19:40 +0000)]
r1671: make [relative] pointers in idl much more generic, treating them just
like normal pointers in most cases. This means we can now support
relative pointers to unions, builtin types etc, whereas we could only
previously support relative pointers to structures.

metze needs this for the PAC decoding.

14 years agor1662: add a copy of the GPL text to the samba4 svn tree
Andrew Tridgell [Fri, 6 Aug 2004 02:32:48 +0000 (02:32 +0000)]
r1662: add a copy of the GPL text to the samba4 svn tree

14 years agor1657: fixed the string types of two strings in svcctl.
Andrew Tridgell [Thu, 5 Aug 2004 05:03:04 +0000 (05:03 +0000)]
r1657: fixed the string types of two strings in svcctl.

we still need to fix the handling of subcontexts

14 years agor1654: rename cli_ -> smbcli_
Stefan Metzmacher [Wed, 4 Aug 2004 13:23:35 +0000 (13:23 +0000)]
r1654: rename cli_ -> smbcli_
rename CLI_ -> SMBCLI_


14 years agor1649: do a join as dc and run this test as the machine account
Stefan Metzmacher [Wed, 4 Aug 2004 09:33:41 +0000 (09:33 +0000)]
r1649: do a join as dc and run this test as the machine account


14 years agor1648: the endpoints for the DRSUAPI pipe are
Stefan Metzmacher [Wed, 4 Aug 2004 09:30:24 +0000 (09:30 +0000)]
r1648: the endpoints for the DRSUAPI pipe are
lsass,protected_storage not drsuapi:-)


14 years agor1647: destroy mem_ctx
Stefan Metzmacher [Wed, 4 Aug 2004 07:44:14 +0000 (07:44 +0000)]
r1647: destroy mem_ctx


14 years agor1646: disable testing of group rename in the RPC-SAMR test, as it leaves the
Andrew Tridgell [Wed, 4 Aug 2004 06:01:10 +0000 (06:01 +0000)]
r1646: disable testing of group rename in the RPC-SAMR test, as it leaves the
group in a state where it can't be deleted via samr, which breaks
repeated runs of the test.

14 years agor1645: added a debug when a RPC fault is received
Andrew Tridgell [Wed, 4 Aug 2004 06:00:14 +0000 (06:00 +0000)]
r1645: added a debug when a RPC fault is received

14 years agor1644: changed the way [relative] pointers work in pidl, making them much
Andrew Tridgell [Wed, 4 Aug 2004 05:59:40 +0000 (05:59 +0000)]
r1644: changed the way [relative] pointers work in pidl, making them much
simpler. This doesn't appear to hurt any of the existing uses of
[relative], but fixes its use for svcctl that jelmer is working on.

14 years agor1642: Torture test for EnumServicesStatus, almost finished.
Jelmer Vernooij [Tue, 3 Aug 2004 23:06:15 +0000 (23:06 +0000)]
r1642: Torture test for EnumServicesStatus, almost finished.

14 years agor1641: Finish IDL for EnumServicesStatus
Jelmer Vernooij [Tue, 3 Aug 2004 23:05:43 +0000 (23:05 +0000)]
r1641: Finish IDL for EnumServicesStatus

14 years agor1637: - w2k3 can't handle more than 1000 names in a LookupNames request
Andrew Tridgell [Tue, 3 Aug 2004 12:30:17 +0000 (12:30 +0000)]
r1637: - w2k3 can't handle more than 1000 names in a LookupNames request

- use a SID that w2k3 likes in CreateTrustedDomain

14 years agor1636: improved the negnowait test so it is standalone (taking advantage of the async...
Andrew Tridgell [Tue, 3 Aug 2004 08:04:51 +0000 (08:04 +0000)]
r1636: improved the negnowait test so it is standalone (taking advantage of the async APIs)

14 years agor1635: when a transport dies, setup errors for all pending sends and recvs, plus...
Andrew Tridgell [Tue, 3 Aug 2004 08:04:11 +0000 (08:04 +0000)]
r1635: when a transport dies, setup errors for all pending sends and recvs, plus disalllow any more sends

14 years agor1634: to get signing right for async requests we must send requests in
Andrew Tridgell [Tue, 3 Aug 2004 07:16:41 +0000 (07:16 +0000)]
r1634: to get signing right for async requests we must send requests in
order. Fixed the linked list add to always add to the end for outgoing

14 years agor1633: fixed a couple of async oplock handling errors
Andrew Tridgell [Tue, 3 Aug 2004 06:52:06 +0000 (06:52 +0000)]
r1633: fixed a couple of async oplock handling errors

14 years agor1632: in case of error don't send uninitialised fnums on the wire
Andrew Tridgell [Tue, 3 Aug 2004 06:50:58 +0000 (06:50 +0000)]
r1632: in case of error don't send uninitialised fnums on the wire

14 years agor1631: don't use req->transport after req has been destroyed
Andrew Tridgell [Tue, 3 Aug 2004 05:59:28 +0000 (05:59 +0000)]
r1631: don't use req->transport after req has been destroyed

14 years agor1630: - fixed the replacement timegm() function to work correctly for DST changes
Andrew Tridgell [Tue, 3 Aug 2004 05:47:24 +0000 (05:47 +0000)]
r1630: - fixed the replacement timegm() function to work correctly for DST changes

- got rid of global_myname(), using lp_netbios_name() instead

14 years agor1629: server_zone needs to be "int" not "int16_t" as it can hold values
Andrew Tridgell [Tue, 3 Aug 2004 05:44:48 +0000 (05:44 +0000)]
r1629: server_zone needs to be "int" not "int16_t" as it can hold values
larger than 35536 (the max value is actually 12*3600 == 43200)

14 years agor1628: - fixed the comment on run_deferopen. (I also think that the
Andrew Tridgell [Tue, 3 Aug 2004 04:44:27 +0000 (04:44 +0000)]
r1628:  - fixed the comment on run_deferopen. (I also think that the
   deferopen test should probably be ripped out and redone, as it
   tests the wrong thing.)

 - removed some unused code

 - add progress printing to the pipe_number test

 - fixed the dir1 test to use deltree rather than trying to re-invent it itself (in a broken manner)

 - renamed all of the tests into catagories, so you can now run
   BASE-* for the base tests, and BENCH-* for the benchmarks.

14 years agor1627: make sure we initialise write_time in the deprecated function cli_ctemp()
Andrew Tridgell [Tue, 3 Aug 2004 04:15:05 +0000 (04:15 +0000)]
r1627: make sure we initialise write_time in the deprecated function cli_ctemp()

14 years agor1619: - add support for older systems to cli_list*()
Andrew Tridgell [Mon, 2 Aug 2004 07:40:55 +0000 (07:40 +0000)]
r1619:  - add support for older systems to cli_list*()

 - make cli_list_new() use the last_name continue method rather than
   the trans2 findnext continue flag, as the continue flag is broken on
   win2003 (win2003 sometimes misses up to 1/3 of all files in a directory)

14 years agor1618: fixed the receipt of multi-part replies to SMBtrans2
Andrew Tridgell [Mon, 2 Aug 2004 05:51:42 +0000 (05:51 +0000)]
r1618: fixed the receipt of multi-part replies to SMBtrans2

14 years agor1617: Start working on the svcctl pipe
Jelmer Vernooij [Mon, 2 Aug 2004 00:24:04 +0000 (00:24 +0000)]
r1617: Start working on the svcctl pipe

14 years agor1611: Put a brace on a new line.
Tim Potter [Fri, 30 Jul 2004 05:30:14 +0000 (05:30 +0000)]
r1611: Put a brace on a new line.

14 years agor1606: make the low level socket read/write routines cope properly with non-blocking...
Andrew Tridgell [Thu, 29 Jul 2004 11:55:57 +0000 (11:55 +0000)]
r1606: make the low level socket read/write routines cope properly with non-blocking sockets

14 years agor1605: GENSEC krb5 updates - fix a valgrind found uninitialised variable, and
Andrew Bartlett [Thu, 29 Jul 2004 10:33:36 +0000 (10:33 +0000)]
r1605: GENSEC krb5 updates - fix a valgrind found uninitialised variable, and
allow tests for 'unwrapped' krb5, allowed by Win2k3.

SPENGO changes, trying to get the logic right (when and what
sub-mechanisms to wrap).

Andrew Bartlett

14 years agor1604: Samba4 avoids memcpy() as much as possible - we don't need to make a copy...
Andrew Bartlett [Thu, 29 Jul 2004 10:13:34 +0000 (10:13 +0000)]
r1604: Samba4 avoids memcpy() as much as possible - we don't need to make a copy here.

Andrew Bartlett

14 years agor1603: fixed in.size to not overstate the packet size by 4 bytes
Andrew Tridgell [Thu, 29 Jul 2004 09:30:54 +0000 (09:30 +0000)]
r1603: fixed in.size to not overstate the packet size by 4 bytes

my apologies to abartlett for thinking this was his bug!

14 years agor1602: make sure we honor the use_spnego flag
Andrew Tridgell [Thu, 29 Jul 2004 08:14:34 +0000 (08:14 +0000)]
r1602: make sure we honor the use_spnego flag

14 years agor1596: Fix up copyrights.
Jim McDonough [Wed, 28 Jul 2004 13:08:08 +0000 (13:08 +0000)]
r1596: Fix up copyrights.

14 years agor1595: Always use a loop variable named $e when iterating over lists of
Tim Potter [Tue, 27 Jul 2004 19:08:34 +0000 (19:08 +0000)]
r1595: Always use a loop variable named $e when iterating over lists of

14 years agor1594: Remove some array checks that we can't do because we don't store state
Tim Potter [Tue, 27 Jul 2004 18:45:18 +0000 (18:45 +0000)]
r1594: Remove some array checks that we can't do because we don't store state
between scalar and buffer passes.

Fix array handling - most of the samr queryuserinfo calls now parse

14 years agor1593: Fix bug in get_subtree() where we were always looking at the head of
Tim Potter [Tue, 27 Jul 2004 18:43:39 +0000 (18:43 +0000)]
r1593: Fix bug in get_subtree() where we were always looking at the head of
the list of subtrees.

14 years agor1592: Fix up subtrees for non-scalar types instead of hardcoding module subtree.
Tim Potter [Tue, 27 Jul 2004 10:56:34 +0000 (10:56 +0000)]
r1592: Fix up subtrees for non-scalar types instead of hardcoding module subtree.

Arrays currently broken though.  )-:

14 years agor1586: Finally, a technique for putting buffers in scalars in the same
Tim Potter [Mon, 26 Jul 2004 04:11:18 +0000 (04:11 +0000)]
r1586: Finally, a technique for putting buffers in scalars in the same
protocol tree that actually works.  Instead of trying really hard
to do this in code, just remember a list of strings and subtrees
for every tree.  (This does require the addition of a void *user_data
field to ethereal's proto_node structure).

14 years agor1585: add start, this should be configure a
Stefan Metzmacher [Sun, 25 Jul 2004 15:09:48 +0000 (15:09 +0000)]
r1585: add start, this should be configure a
samba4 ads domain controller's ldb database


14 years agor1578: the first stage of the async client rewrite.
Andrew Tridgell [Fri, 23 Jul 2004 06:40:49 +0000 (06:40 +0000)]
r1578: the first stage of the async client rewrite.

Up to now the client code has had an async API, and operated
asynchronously at the packet level, but was not truly async in that it
assumed that it could always write to the socket and when a partial
packet came in that it could block waiting for the rest of the packet.

This change makes the SMB client library full async, by adding a
separate outgoing packet queue, using non-blocking socket IO and
having a input buffer that can fill asynchonously until the full
packet has arrived.

The main complexity was in dealing with the events structure when
using the CIFS proxy backend. In that case the same events structure
needs to be used in both the client library and the main smbd server,
so that when the client library is waiting for a reply that the main
server keeps processing packets. This required some changes in the
events library code.

Next step is to make the generated rpc client code use these new

14 years agor1558: the unknown_time is the same as the logon_time in the PAC_LOGON_INFO
Stefan Metzmacher [Wed, 21 Jul 2004 09:57:39 +0000 (09:57 +0000)]
r1558: the unknown_time is the same as the logon_time in the PAC_LOGON_INFO

the account_name is a 'nstring'


14 years agor1552: commit the first version of the pidl generated krb5 PAC parser
Stefan Metzmacher [Tue, 20 Jul 2004 20:30:29 +0000 (20:30 +0000)]
r1552: commit the first version of the pidl generated krb5 PAC parser

NOTE: there a lot of work todo, maybe we need to extent pidl


14 years agor1547: rename 'enum <bla>_level' -> 'enum smb_<bla>_level'
Stefan Metzmacher [Mon, 19 Jul 2004 10:35:05 +0000 (10:35 +0000)]
r1547: rename 'enum <bla>_level' -> 'enum smb_<bla>_level'

e.g. we now have 'union smb_mkdir' and 'enum smb_mkdir_level' in sync

we may should also rename 'RAW_MKDIR_*' -> 'SMB_MKDIR_*'


14 years agor1546: fix the build the function name has changed to srvsvc_NetRemoteTOD
Stefan Metzmacher [Mon, 19 Jul 2004 10:15:33 +0000 (10:15 +0000)]
r1546: fix the build the function name has changed to srvsvc_NetRemoteTOD
because I implemented the idl for it


14 years agor1545: add some comments and move a transport function to the transport section
Stefan Metzmacher [Mon, 19 Jul 2004 06:49:53 +0000 (06:49 +0000)]
r1545: add some comments and move a transport function to the transport section


14 years agor1544: add some comments and fix 'return True' -> 'return ret'
Stefan Metzmacher [Mon, 19 Jul 2004 06:41:34 +0000 (06:41 +0000)]
r1544: add some comments and fix 'return True' -> 'return ret'


14 years agor1543: add srvsvc_NetRemoteTOD idl and torture tests
Stefan Metzmacher [Mon, 19 Jul 2004 06:14:00 +0000 (06:14 +0000)]
r1543: add srvsvc_NetRemoteTOD idl and torture tests


14 years agor1540: - Remove return statements when a parse error is detected as ethereal
Tim Potter [Sat, 17 Jul 2004 03:43:15 +0000 (03:43 +0000)]
r1540: - Remove return statements when a parse error is detected as ethereal
  will do this for us.

- Fix a format string error

- Use subtrees for scalar and buffer elements

- Add subtree support for function request/responses

- Formatting fixups

14 years agor1535: Create a subtree for each array element.
Tim Potter [Fri, 16 Jul 2004 12:59:16 +0000 (12:59 +0000)]
r1535: Create a subtree for each array element.

14 years agor1534: Alternate method of grouping togethers buffers and scalars which actually
Tim Potter [Fri, 16 Jul 2004 12:58:33 +0000 (12:58 +0000)]
r1534: Alternate method of grouping togethers buffers and scalars which actually
seems to work.  We create a subtree one level higher instead of in the
parse function.

14 years agor1530: we don't need to call srvsvc_NetShareGetInfo twice
Stefan Metzmacher [Fri, 16 Jul 2004 09:51:54 +0000 (09:51 +0000)]
r1530: we don't need to call srvsvc_NetShareGetInfo twice
in NetShareEnum and NetShareEnumAll


14 years agor1529: add NetSrvGetInfo torture test
Stefan Metzmacher [Fri, 16 Jul 2004 09:36:17 +0000 (09:36 +0000)]
r1529: add NetSrvGetInfo torture test


14 years agor1528: add NetCharDevQ torture tests
Stefan Metzmacher [Fri, 16 Jul 2004 09:25:52 +0000 (09:25 +0000)]
r1528: add NetCharDevQ torture tests


14 years agor1527: add NetCharDev torture tests
Stefan Metzmacher [Fri, 16 Jul 2004 09:10:36 +0000 (09:10 +0000)]
r1527: add NetCharDev torture tests


14 years agor1526: some cleanups and fixes for the srvsvc torture tests
Stefan Metzmacher [Fri, 16 Jul 2004 08:56:11 +0000 (08:56 +0000)]
r1526: some cleanups and fixes for the srvsvc torture tests


14 years agor1525: share info level 1004 is invalid,
Stefan Metzmacher [Fri, 16 Jul 2004 08:53:20 +0000 (08:53 +0000)]
r1525: share info level 1004 is invalid,
but is not the same as the default case


14 years agor1524: add some comments
Stefan Metzmacher [Fri, 16 Jul 2004 07:20:15 +0000 (07:20 +0000)]
r1524: add some comments


14 years agor1523: declaring variables "in" and "out" in every C module is a bad idea!
Andrew Tridgell [Fri, 16 Jul 2004 03:57:04 +0000 (03:57 +0000)]
r1523: declaring variables "in" and "out" in every C module is a bad idea!

I actually don't like this idea of sharing the request buffer
structure between client and server, and I'll see if I can convince
abartlet to revert it. It ties the two pieces of code far more
intimately than is justified, and will certainly lead to ugliness as
the client and server take different paths of development. I would far
prefer we just pass 2 arguments (pointer and length) to the signing
calls instead of 1 (the request).

14 years agor1522: Oops - I forgot this file in the prvevious commit.
Andrew Bartlett [Fri, 16 Jul 2004 03:10:48 +0000 (03:10 +0000)]
r1522: Oops - I forgot this file in the prvevious commit.

This breaks the request structure out into a common part between the
client and server, which the signing code now uses.

Andrew Bartlett

14 years agor1521: Updates to our SMB signing code.
Andrew Bartlett [Fri, 16 Jul 2004 02:54:57 +0000 (02:54 +0000)]
r1521: Updates to our SMB signing code.

- This causes our client and server code to use the same core code,
  with the same debugs etc.
- In turn, this will allow the 'mandetory/fallback' signing algorithms
  to be shared, and only written once.

Updates to the SPNEGO code
- Don't wrap an empty token to the server, if we are actually already finished.

Andrew Bartlett

14 years agor1520: only call write handler or read handler, not both. This copes with the
Andrew Tridgell [Thu, 15 Jul 2004 10:16:40 +0000 (10:16 +0000)]
r1520: only call write handler or read handler, not both. This copes with the
connection being removed between calls.

14 years agor1519: show the ldb_errstring() value in the log for failed ldb calls
Andrew Tridgell [Thu, 15 Jul 2004 10:08:56 +0000 (10:08 +0000)]
r1519: show the ldb_errstring() value in the log for failed ldb calls

14 years agor1518: check for ldb_search giving -1 (indicating db corruption)
Andrew Tridgell [Thu, 15 Jul 2004 10:07:45 +0000 (10:07 +0000)]
r1518: check for ldb_search giving -1 (indicating db corruption)

14 years agor1517: change event_remove_timed() to remove by structure not by handler.
Andrew Tridgell [Thu, 15 Jul 2004 10:07:05 +0000 (10:07 +0000)]
r1517: change event_remove_timed() to remove by structure not by handler.

this fixes a crash bug in smbd with multiple RPC clients

14 years agor1516: remove the server_connection from the list on the server_socket
Stefan Metzmacher [Thu, 15 Jul 2004 09:43:32 +0000 (09:43 +0000)]
r1516: remove the server_connection from the list on the server_socket

and call talloc_destroy(srv_conn->mem_ctx)

also don't follow NULL pointers


14 years agor1515: move dublicate code to a function
Stefan Metzmacher [Thu, 15 Jul 2004 08:59:07 +0000 (08:59 +0000)]
r1515: move dublicate code to a function


14 years agor1514: close stuff from the server_connection not in the
Stefan Metzmacher [Thu, 15 Jul 2004 08:28:19 +0000 (08:28 +0000)]
r1514: close stuff from the server_connection not in the
close_connection fn of a specific service


14 years agor1513: change DEBUG level to 1
Stefan Metzmacher [Thu, 15 Jul 2004 08:26:41 +0000 (08:26 +0000)]
r1513: change DEBUG level to 1


14 years agor1512: fixed a bug where we could reference the timer event handler after destruction
Andrew Tridgell [Thu, 15 Jul 2004 07:44:46 +0000 (07:44 +0000)]
r1512: fixed a bug where we could reference the timer event handler after destruction

14 years agor1511: fixed a free() that should be ldb_free()
Andrew Tridgell [Thu, 15 Jul 2004 07:16:15 +0000 (07:16 +0000)]
r1511: fixed a free() that should be ldb_free()

this might explain the tdb corruption that metze found - it caused heap corruption that affected tdb

14 years agor1510: add a commented out routine I used to test password change on NT3.
Andrew Tridgell [Thu, 15 Jul 2004 05:13:08 +0000 (05:13 +0000)]
r1510: add a commented out routine I used to test password change on NT3.

14 years agor1509: in order to interoperate with NT3.1 we need to ignore extra data at the end...
Andrew Tridgell [Thu, 15 Jul 2004 05:11:27 +0000 (05:11 +0000)]
r1509: in order to interoperate with NT3.1 we need to ignore extra data at the end of RPC PDUs.
It turns out that NT3.1 adds junk onto the end of every PDU.

14 years agor1508: simple fix for broken server side signing. This may need more work for
Andrew Tridgell [Thu, 15 Jul 2004 05:04:17 +0000 (05:04 +0000)]
r1508: simple fix for broken server side signing. This may need more work for
SPNEGO, but I'll leave andrew to tackle that.

14 years agor1507: fixed the handling of SMB chaining with the new server structure. You
Andrew Tridgell [Thu, 15 Jul 2004 02:11:03 +0000 (02:11 +0000)]
r1507: fixed the handling of SMB chaining with the new server structure. You
must think carefully about packet chaining when dealing with any
authentication or SMB parsing issues. The particular problem here was
that a chained tconX didn't get the req->session setup after an
initial sesstion setup call, so the tconx used a bogus VUID.

14 years agor1499: combine struct user_struct and struct smbsrv_user
Stefan Metzmacher [Wed, 14 Jul 2004 12:44:31 +0000 (12:44 +0000)]
r1499: combine struct user_struct and struct smbsrv_user

to a struct smbsrv_session that the same as cli_session for the client

we need a gensec_security pointer there
(spnego support will follow)

prefix some related functions with smbsrv_


14 years agor1498: (merge from 3.0)
Andrew Bartlett [Wed, 14 Jul 2004 12:14:07 +0000 (12:14 +0000)]
r1498: (merge from 3.0)

Rework our random number generation system.

On systems with /dev/urandom, this avoids a change to secrets.tdb for every fork().

For other systems, we now only re-seed after a fork, and on startup.
No need to do it per-operation.  This removes the 'need_reseed'
parameter from generate_random_buffer().

This also requires that we start the secrets subsystem, as that is
where the reseed value is stored, for systems without /dev/urandom.

In order to aviod identical streams in forked children, the random
state is re-initialised after the fork(), at the same point were we do
that to the tdbs.

Andrew Bartlett

14 years agor1497: add forward declaration for struct auth_session_info
Stefan Metzmacher [Wed, 14 Jul 2004 11:28:34 +0000 (11:28 +0000)]
r1497: add forward declaration for struct auth_session_info
(fix compiler warning)


14 years agor1494: fix debug message
Stefan Metzmacher [Wed, 14 Jul 2004 09:00:28 +0000 (09:00 +0000)]
r1494: fix debug message


14 years agor1486: commit the start of the generic server infastructure
Stefan Metzmacher [Tue, 13 Jul 2004 21:04:56 +0000 (21:04 +0000)]
r1486: commit the start of the generic server infastructure

the idea is to have services as modules (smb, dcerpc, swat, ...)

the process_model don't know about the service it self anymore.

- the smbsrv should use the smbsrv_send function
- the service subsystem init should be done like for other modules
- we need to have a generic socket subsystem, which handle stream, datagram,
  and virtuell other sockets( e.g. for the ntvfs_ipc module to connect to the dcerpc server
  , or for smb or dcerpc or whatever to connect to a server wide auth service)
- and other fixes...

NOTE: process model pthread seems to be broken( but also before this patch!)


14 years agor1483: build dynconfig.c also with PICFLAGS
Stefan Metzmacher [Tue, 13 Jul 2004 18:41:08 +0000 (18:41 +0000)]
r1483: build dynconfig.c also with PICFLAGS


14 years agor1482: today I saw DCERPC_AUTH_TYPE 16(0x10)
Stefan Metzmacher [Tue, 13 Jul 2004 18:10:11 +0000 (18:10 +0000)]
r1482: today I saw DCERPC_AUTH_TYPE 16(0x10)
and it seems to be raw krb5, but I need to do some tests


14 years agor1481: add idl file and torture test dummies
Stefan Metzmacher [Tue, 13 Jul 2004 18:05:02 +0000 (18:05 +0000)]
r1481: add idl file and torture test dummies
for DRSUapi (the Active Directory Replication Protocol)

I'll try to fill the idl file as part of a study project
together with some other students...


14 years agor1480: gwsam has unresolved symbols in it
Stefan Metzmacher [Tue, 13 Jul 2004 17:52:29 +0000 (17:52 +0000)]
r1480: gwsam has unresolved symbols in it
(on my SuSE 9.1)

so I disable it for now


14 years agor1479: print out domain too
Stefan Metzmacher [Tue, 13 Jul 2004 17:40:28 +0000 (17:40 +0000)]
r1479: print out domain too

14 years agor1476: Don't print messages about the CCACHE not being found - this is normal.
Andrew Bartlett [Tue, 13 Jul 2004 06:39:55 +0000 (06:39 +0000)]
r1476: Don't print messages about the CCACHE not being found - this is normal.

Andrew Bartlett

14 years agor1475: More kerberos work
Andrew Bartlett [Tue, 13 Jul 2004 05:14:59 +0000 (05:14 +0000)]
r1475: More kerberos work

- We can now connect to hosts that follow the SPNEGO RFC, and *do not*
give us their principal name in the mechListMIC.
 - The client code now remembers the hostname it connects to

- We now kinit for a user, if there is not valid ticket already

- Re-introduce clock skew compensation

 - See if the username in the ccache matches the username specified
 - Use a private ccache, rather then the global one, for a 'new' kinit
 - Determine 'default' usernames.
  - The default for Krb5 is the one in the ccache, then $USER
  - For NTLMSSP, it's just $USER

Andrew Bartlett

14 years agor1474: It is useful if talloc_strdup() behaves like strdup()
Andrew Bartlett [Tue, 13 Jul 2004 03:23:55 +0000 (03:23 +0000)]
r1474: It is useful if talloc_strdup() behaves like strdup()
 - NULL in, NULL out

Andrew Bartlett

14 years agor1470: Get the smb_trans2 structure out of the rap_cli_call struct.
Volker Lendecke [Mon, 12 Jul 2004 16:35:48 +0000 (16:35 +0000)]
r1470: Get the smb_trans2 structure out of the rap_cli_call struct.

Initial attempt at RAP server infrastructure. Look at rap_server.c for the
dummy functions that are supposed to implement the core functionality.

ipc_rap.c contains all the data shuffling. _rap_shareenum and _rap_serverenum2
in ipc_rap.c are (I think) regular enough to be auto-generated.

I did not test all the corner cases yet, but nevertheless I would like some
comments on the general style.


P.S: samba-3 smbclient now doesn't freak out anymore, although the results are
not entirely correct :-)

14 years agor1469: fix a segfault and compiler warning,
Stefan Metzmacher [Mon, 12 Jul 2004 15:34:34 +0000 (15:34 +0000)]
r1469: fix a segfault and compiler warning,

introduced by the "compiler warning fix" in rev 1460...


14 years agor1467: disable gensec_krb5 by default till abartlet
Stefan Metzmacher [Mon, 12 Jul 2004 13:53:35 +0000 (13:53 +0000)]
r1467: disable gensec_krb5 by default till abartlet
add the kinit code