CVE-2022-38023 s4:torture: use NETLOGON_NEG_SUPPORTS_AES by default For generic tests we should use the best available features. And AES will be required by default soon. BUG: https://bugzilla.samba.org/show_bug.cgi?id=15240 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org>
s4:torture: Use GnuTLS MD5 in ntp_signd test Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
s4: torture: Change torture_register_suite() to add a TALLOC_CTX *. Change callers to use the passed in TALLOC_CTX * instead of talloc_autofree_context(). Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Ralph Böhme <slow@samba.org>
lib: modules: Change XXX_init interface from XXX_init(void) to XXX_init(TALLOC_CTX *) Not currently used - no logic changes inside. This will make it possible to pass down a long-lived talloc context from the loading function for modules to use instead of having them internally all use talloc_autofree_context() which is a hidden global. Updated all known module interface numbers, and added a WHATSNEW. Signed-off-by: Jeremy Allison <jra@samba.org> Signed-off-by: Ralph Böhme <slow@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Sat Apr 22 01:17:00 CEST 2017 on sn-devel-144
s4:torture/ntp: add missing #include "torture/ntp/proto.h" Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
libcli/auth: also set secure channel type in netlogon_creds_client_init(). Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
build: Build with system md5.h on OpenIndiana This changes (again...) our system md5 detection to cope with how OpenIndiana does md5. I'm becoming increasingly convinced this isn't worth our while (we should have just done samba_md5...), but for now this change seems to work on FreeBSD, OpenIndiana and Linux with libbsd. This needs us to rename struct MD5Context -> MD5_CTX, but we provide a config.h define to rename the type bad if MD5_CTX does not exist (it does however exist in the md5.h from libbsd). Andrew Bartlett Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Jun 19 21:32:36 CEST 2013 on sn-devel-104
s4-smbtorture: Make test names lowercase and dot-separated. This is consistent with the test names used by selftest, should make the names less confusing and easier to integrate with other tools. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sat Dec 11 04:16:13 CET 2010 on sn-devel-104
s4:torture/ntp/ntp_signd.c - add more "char *" casts in order to suppress Solaris warnings
s4-loadparm: 2nd half of lp_ to lpcfg_ conversion this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Finish removal of iconv_convenience in public API's.
s4:torture/rpc: rename rpc.h => torture_rpc.h The reason for this is that some systems include <rpc/rpc.h> from within system headers. HP-UX 11.00 does so somewhere deep inside of <shadow.h>. For torture/winbind/struct_based.c <rpc/rpc.h> resolves to torture/rpc/rpc.h and breaks the build. metze
s4:torture/ntp: add explicit check for NTSTATUS r.out.result Guenther Signed-off-by: Stefan Metzmacher <metze@samba.org>
s4:torture/ntp: make use of dcerpc_binding_handle stubs metze
s4-torture: Migrate ntp_signd test to tsocket. Signed-off-by: Stefan Metzmacher <metze@samba.org>
s4-torture: ran minimal_includes.pl over source4/torture This reduces compile time somewhat.
s4:ntp_signd Fix bug 6656 - Set protocol version to 0, as used by ntpd The change to protocol version 1 was not intentional, and broke the protocol established with the ntp.org project. Andrew Bartlett
s4:torture Add test for the NTP signd server This is used by at patch to the NTP project to supply authenticated time as required by MS-SNTP. (ie, to keep windows clients in time sync in the domain) Andrew Bartlett