bbaumbach/samba-autobuild/.git
12 years agor12123: handle fde == NULL at the correct level
Stefan Metzmacher [Thu, 8 Dec 2005 08:31:59 +0000 (08:31 +0000)]
r12123: handle fde == NULL at the correct level

metze
(This used to be commit 1dd5bb60a5047b94034eb084473bb8f4a9926e7c)

12 years agor12122: add forward declaration for packet_context
Stefan Metzmacher [Thu, 8 Dec 2005 07:52:52 +0000 (07:52 +0000)]
r12122: add forward declaration for packet_context

metze
(This used to be commit 2ea8e61f2383c1d375c852bb0a44aac5a5af2d96)

12 years agor12121: remove some dublicate code
Stefan Metzmacher [Thu, 8 Dec 2005 07:50:38 +0000 (07:50 +0000)]
r12121: remove some dublicate code

metze
(This used to be commit 2fe8a643d3d01e669d40f714d58502b00e2446c5)

12 years agor12116: got rid of composite_trigger_done() and composite_trigger_error(), and
Andrew Tridgell [Thu, 8 Dec 2005 01:13:45 +0000 (01:13 +0000)]
r12116: got rid of composite_trigger_done() and composite_trigger_error(), and
instead make the normal composite_done() and composite_error()
functions automatically trigger a delayed callback if the caller has
had no opportunity to setup a async callback

this removes one of the common mistakes in writing a composite function
(This used to be commit f9413ce792ded682e05134b66d433eeec293e6f1)

12 years agor12115: bring SMB sesssetup_spnego in sync with SMB2 sesssetup
Stefan Metzmacher [Wed, 7 Dec 2005 08:11:50 +0000 (08:11 +0000)]
r12115: bring SMB sesssetup_spnego in sync with SMB2 sesssetup

metze
(This used to be commit 99cf7dbb177f92df40301ed8faeeb93e89452922)

12 years agor12114: - smb2_keepalive() acts on the smb2_transport
Stefan Metzmacher [Wed, 7 Dec 2005 07:28:43 +0000 (07:28 +0000)]
r12114: - smb2_keepalive() acts on the smb2_transport
- smb2_logoff() acts on the smb2_session

metze
(This used to be commit ae1ca2bb4affefff1026c03f0765faf28c2b316b)

12 years agor12113: in SMB2 we should only allocate a new session
Stefan Metzmacher [Wed, 7 Dec 2005 07:14:13 +0000 (07:14 +0000)]
r12113: in SMB2 we should only allocate a new session
when the client sends UID = 0, otherwise we return
NT_STATUS_USER_SESSION_DELETED

metze
(This used to be commit 15973be48e3da0a49130911b9d3f192338c23783)

12 years agor12105: Formatting.
Rafal Szczesniak [Tue, 6 Dec 2005 19:48:47 +0000 (19:48 +0000)]
r12105: Formatting.

rafal
(This used to be commit 13d7b8fa43fe7ae74d511820c4d28f5caf44f006)

12 years agor12104: Move to (sync) smb_composite_connect from smbcli_tree_full_connection()
Rafal Szczesniak [Tue, 6 Dec 2005 19:48:06 +0000 (19:48 +0000)]
r12104: Move to (sync) smb_composite_connect from smbcli_tree_full_connection()
This is one of the last places using the latter function.

rafal
(This used to be commit c95d30d38c4969c070766d320ed52e332e131195)

12 years agor12103: Comments and a bit of formatting.
Rafal Szczesniak [Tue, 6 Dec 2005 19:44:49 +0000 (19:44 +0000)]
r12103: Comments and a bit of formatting.

rafal
(This used to be commit 4a12711c310f3dc228ea7be539703fc3fc77444a)

12 years agor12102: for SMB2 we need to allocate tcons per session
Stefan Metzmacher [Tue, 6 Dec 2005 17:59:20 +0000 (17:59 +0000)]
r12102: for SMB2 we need to allocate tcons per session

metze
(This used to be commit 4d527ac005086c2db954578b4126ca128e436e01)

12 years agor12101: revert my last commit, I breaks the build and I don't know why...
Stefan Metzmacher [Tue, 6 Dec 2005 17:42:04 +0000 (17:42 +0000)]
r12101: revert my last commit, I breaks the build and I don't know why...

metze
(This used to be commit dc664df873c208c57752e8288a82cef77bc61338)

12 years agor12095: the most SMB2 opcodes need a valid session and tcon,
Stefan Metzmacher [Tue, 6 Dec 2005 14:17:06 +0000 (14:17 +0000)]
r12095: the most SMB2 opcodes need a valid session and tcon,

metze
(This used to be commit 40b301c6bdb329ad347ac8a474be85dcbc671518)

12 years agor12094: - implement dummy smb2srv_tcon()
Stefan Metzmacher [Tue, 6 Dec 2005 14:14:43 +0000 (14:14 +0000)]
r12094: - implement dummy smb2srv_tcon()
- implement smb2srv_tdis()

metze
(This used to be commit cb9ddf7997731a4ad21f274fcb2e713614b382ef)

12 years agor12093: add missing file
Stefan Metzmacher [Tue, 6 Dec 2005 14:11:55 +0000 (14:11 +0000)]
r12093: add missing file

metze
(This used to be commit 1506be37db16e24c3694278739fc3e52719d0d8b)

12 years agor12092: - add dummy functions for the missing SMB2 opcodes
Stefan Metzmacher [Tue, 6 Dec 2005 13:26:24 +0000 (13:26 +0000)]
r12092: - add dummy functions for the missing SMB2 opcodes
- implement keepalive and logoff

metze
(This used to be commit 859ab627f45a5acca1deb66b8abdc38eaf49e5a2)

12 years agor12091: the SMB2 specific level are not available via SMB
Stefan Metzmacher [Tue, 6 Dec 2005 12:33:32 +0000 (12:33 +0000)]
r12091: the SMB2 specific level are not available via SMB
(get rid of the compiler warnings)

metze
(This used to be commit 436c5127ef7baec22377d2f1d129702597486575)

12 years agor12090: use the _trigger_error() function in the function
Stefan Metzmacher [Tue, 6 Dec 2005 11:52:16 +0000 (11:52 +0000)]
r12090: use the _trigger_error() function in the function
that allocated the composite_context

metze
(This used to be commit 998a7f8572bb90b5d478f03f09fba9867a6d8bfa)

12 years agor12089: Couple of fixes in cases of memory outage before we sort
Rafal Szczesniak [Tue, 6 Dec 2005 11:11:11 +0000 (11:11 +0000)]
r12089: Couple of fixes in cases of memory outage before we sort
out how and when to use composite_error() and composite_trigger_error().
Spotted by Metze.

rafal
(This used to be commit 218db3ebc06f2d3e906f23a36bad088861b8e720)

12 years agor12088: Use a structure to pass arguments to dcerpc connection functions
Rafal Szczesniak [Tue, 6 Dec 2005 08:58:21 +0000 (08:58 +0000)]
r12088: Use a structure to pass arguments to dcerpc connection functions
and move migrated (async) code to a new file.

rafal
(This used to be commit 79b231bc534e10149d86a2c647a27c27ce524949)

12 years agor12087: Split dcerpc pipe connection functions into separate file.
Rafal Szczesniak [Tue, 6 Dec 2005 08:56:13 +0000 (08:56 +0000)]
r12087: Split dcerpc pipe connection functions into separate file.
It's going to contain async functions and ncacn_np is the
first.

rafal
(This used to be commit 3fe2df5fe3165972536c937620d770e763b0d5bb)

12 years agor12086: reverted the utf8string change in xattr.idl. See the discussion on
Andrew Tridgell [Tue, 6 Dec 2005 05:25:03 +0000 (05:25 +0000)]
r12086: reverted the utf8string change in xattr.idl. See the discussion on
samba-technical on why this should stay as a simple null terminated
string (basically to make hand-written parsers easier)
(This used to be commit 0f1de4b1db7f0035e2b31f967d86de9306558968)

12 years agor12085: wkssvc.idl updated based on work by Ronnie Sahlberg to bring the
Andrew Tridgell [Tue, 6 Dec 2005 03:53:51 +0000 (03:53 +0000)]
r12085: wkssvc.idl updated based on work by Ronnie Sahlberg to bring the
Samba4 and ethereal IDL into line, so ethereal doesn't lose any
existing strucutres when switching to idl
(This used to be commit afccf73ecf6cf85e72c04e28724096aa6da96a80)

12 years agor12084: added a comment on what is appropriate for parameter_control
Andrew Tridgell [Tue, 6 Dec 2005 03:51:54 +0000 (03:51 +0000)]
r12084: added a comment on what is appropriate for parameter_control
(This used to be commit 040d798a88ad6e6d56179de2b9036e3d0c36afc8)

12 years agor12082: fixed a valgrind error found by kukks in the transs server handling
Andrew Tridgell [Tue, 6 Dec 2005 00:12:32 +0000 (00:12 +0000)]
r12082: fixed a valgrind error found by kukks in the transs server handling
(This used to be commit 5c81986bff06efeacf95d3d64254d566181c30bb)

12 years agor12079: Fix to the comment for sake of completness...
Rafal Szczesniak [Mon, 5 Dec 2005 22:34:45 +0000 (22:34 +0000)]
r12079: Fix to the comment for sake of completness...

rafal
(This used to be commit 7aa40e3a3ff7a655c5ed8ee67c55af92193815f1)

12 years agor12078: fix the build on hosts with old compilers
Stefan Metzmacher [Mon, 5 Dec 2005 22:22:05 +0000 (22:22 +0000)]
r12078: fix the build on hosts with old compilers

metze
(This used to be commit 82fa27da0725b1d84688e26ca189b445c4a08f4e)

12 years agor12075: remove NBT-WINSREPLICATION-QUICK test, as we now pass the NBT-WINSREPLICATION
Stefan Metzmacher [Mon, 5 Dec 2005 15:47:15 +0000 (15:47 +0000)]
r12075: remove NBT-WINSREPLICATION-QUICK test, as we now pass the NBT-WINSREPLICATION
test

metze
(This used to be commit 224dab45ab8de9fd4288c473b141541614cde422)

12 years agor12074: in accept() we need to set socket name of the child socket by looking
Stefan Metzmacher [Mon, 5 Dec 2005 15:26:49 +0000 (15:26 +0000)]
r12074: in accept() we need to set socket name of the child socket by looking
up what address the client has used, as the socket is maybe bound to '0.0.0.0'

metze
(This used to be commit 81d322f91aa7097a51c13648211a0556b0424fa4)

12 years agor12073: fix vlgrind error, calculate the correct size for memcpy()
Stefan Metzmacher [Mon, 5 Dec 2005 15:22:38 +0000 (15:22 +0000)]
r12073: fix vlgrind error, calculate the correct size for memcpy()
and don't assume out_len is >= sizeof(*in_addr)

metze
(This used to be commit 61dbe9e5070085117b12b5b37cf0e7fe4342e2a3)

12 years agor12072: fix sgroup,active,owned vs. sgroup,non-active case
Stefan Metzmacher [Mon, 5 Dec 2005 12:47:32 +0000 (12:47 +0000)]
r12072: fix sgroup,active,owned vs. sgroup,non-active case

metze
(This used to be commit 47ce4286dec3df9eb22ac2efde18af807ecf9cfa)

12 years agor12071: - implement MHOMED merging
Stefan Metzmacher [Mon, 5 Dec 2005 12:25:19 +0000 (12:25 +0000)]
r12071: - implement MHOMED merging
- implement late release demands

we now pass the full NBT-WINSREPLICATION torture test
but only with non-socket_wrapper mode

metze
(This used to be commit bd78c97cfff7e2d3a053e4bb4d6459afad5fba5c)

12 years agor12070: make sure a unique record with multiple addresses becauses mhomed
Stefan Metzmacher [Mon, 5 Dec 2005 12:18:16 +0000 (12:18 +0000)]
r12070: make sure a unique record with multiple addresses becauses mhomed

metze
(This used to be commit 4be3b576f2926279686ecada52144b9df8165a03)

12 years agor12069: fix typo
Stefan Metzmacher [Mon, 5 Dec 2005 10:24:07 +0000 (10:24 +0000)]
r12069: fix typo

metze
(This used to be commit 3c442ccb594d1a781e42f2268a3582578ae82d76)

12 years agor12068: a better fix to prevent crashing, on errors
Stefan Metzmacher [Mon, 5 Dec 2005 10:15:56 +0000 (10:15 +0000)]
r12068: a better fix to prevent crashing, on errors

metze
(This used to be commit 7b20f8e66d55774877ec1441175fb707856c6609)

12 years agor12067: print out some more details
Stefan Metzmacher [Mon, 5 Dec 2005 10:03:10 +0000 (10:03 +0000)]
r12067: print out some more details

metze
(This used to be commit 8207969a5727e54877752be5168931f609591be1)

12 years agor12066: - add a unique,active,owner vs. unique,active,replica tests where
Stefan Metzmacher [Mon, 5 Dec 2005 07:56:22 +0000 (07:56 +0000)]
r12066: - add a unique,active,owner vs. unique,active,replica tests where
  we respond with the replicas address to the challenge
- fix some skip checks

metze
(This used to be commit a37aaa93cb25c559b27f4c1a7c48285d4223b9aa)

12 years agor12065: fix compiler warning
Stefan Metzmacher [Mon, 5 Dec 2005 06:55:20 +0000 (06:55 +0000)]
r12065: fix compiler warning

metze
(This used to be commit c60bac5baa572a597ce6e1c2e3639be4c7daeefc)

12 years agor12064: pass back the socket level error correctly (so we get
Andrew Tridgell [Mon, 5 Dec 2005 06:05:02 +0000 (06:05 +0000)]
r12064: pass back the socket level error correctly (so we get
NT_STATUS_CONNECTION_REFUSED when a KDC is not listening)
(This used to be commit 0f85fc204c6018f8403c2e8f75f683aed38ba83b)

12 years agor12063: fixed the krb5 client code to handle ICMP port unreachable errors, and
Andrew Tridgell [Mon, 5 Dec 2005 06:01:22 +0000 (06:01 +0000)]
r12063: fixed the krb5 client code to handle ICMP port unreachable errors, and
error out immediatelly. This prevents a long timeout
(This used to be commit f6c0fccc06060582ef870a0ac590dabeec2f2e6a)

12 years agor12062: SASL negotiation now requires a gensec_security context, so that we
Andrew Bartlett [Mon, 5 Dec 2005 04:10:13 +0000 (04:10 +0000)]
r12062: SASL negotiation now requires a gensec_security context, so that we
only try permitted mechanims.

Andrew Bartlett
(This used to be commit 0f50239dc40ee128e4985f8aec5bb5f440a4f3f0)

12 years agor12061: Add missing file to previous commit. This provides a hook on which to
Andrew Bartlett [Mon, 5 Dec 2005 03:42:28 +0000 (03:42 +0000)]
r12061: Add missing file to previous commit.  This provides a hook on which to
attach a restriction on available GENSEC mechanisms.

Andrew Bartlett
(This used to be commit 8154f2421f828be65ee89f21ed7ac0f5e2132ca9)

12 years agor12060: Work towards allowing the credentials system to allow/deny certain
Andrew Bartlett [Mon, 5 Dec 2005 03:20:40 +0000 (03:20 +0000)]
r12060: Work towards allowing the credentials system to allow/deny certain
GENSEC mechansims.  This will allow a machine join to an NT4 domain to
avoid even trying kerberos, or a sensitive operation to require it.

Andrew Bartlett
(This used to be commit 11c7a89e523f85afd728d5e5f03bb084dc620244)

12 years agor12059: Use random keytab names (so we get different keytabs, rather than
Andrew Bartlett [Mon, 5 Dec 2005 01:38:26 +0000 (01:38 +0000)]
r12059: Use random keytab names (so we get different keytabs, rather than
share the MEMORY: keytab).

Andrew Bartlett
(This used to be commit 6c43de27086d3c463891598eb55a44877194cb0d)

12 years agor12058: Set an anonymous fallback, if the machine account isn't available.
Andrew Bartlett [Mon, 5 Dec 2005 01:36:53 +0000 (01:36 +0000)]
r12058: Set an anonymous fallback, if the machine account isn't available.

Andrew Bartlett
(This used to be commit 55cb72f5cfe9a2c520c30e11ab34896588e91730)

12 years agor12057: fixed authentication in ldb client tools
Andrew Tridgell [Mon, 5 Dec 2005 00:43:50 +0000 (00:43 +0000)]
r12057: fixed authentication in ldb client tools
(This used to be commit 020de11a61a1aa2c77c0a308186c85960c10fe32)

12 years agor12056: Some clarification fixes for the keytab code, and use the right
Andrew Bartlett [Sun, 4 Dec 2005 12:17:02 +0000 (12:17 +0000)]
r12056: Some clarification fixes for the keytab code, and use the right
function for enctype to string.

Andrew Bartlett
(This used to be commit ae6c968cb27f451e5f8cea62be7f33b4b4716f82)

12 years agor12037: Fix malloc corruption caused by double-free(), where realloc(ptr, 0)
Andrew Bartlett [Sat, 3 Dec 2005 00:47:51 +0000 (00:47 +0000)]
r12037: Fix malloc corruption caused by double-free(), where realloc(ptr, 0)
is equivilant to free().

This is the issue tridge was seeing in the MEMORY: keytab code.

Andrew Bartlett
(This used to be commit d5a2de8ef06a08274d25ab005f2a68ec32e226f0)

12 years agor12036: Fix more KDC memory leaks (and there are probably still more...).
Andrew Bartlett [Sat, 3 Dec 2005 00:46:23 +0000 (00:46 +0000)]
r12036: Fix more KDC memory leaks (and there are probably still more...).

Andrew Bartlett
(This used to be commit 0c4ea6f6413e260a15c0afe331a066ea7051fd9f)

12 years agor12035: Fix memory leaks in the KDC.
Andrew Bartlett [Fri, 2 Dec 2005 22:37:07 +0000 (22:37 +0000)]
r12035: Fix memory leaks in the KDC.

Andrew Bartlett
(This used to be commit b60531b109cf9539a9d58d46436f397346352cee)

12 years agor12024: do some extra sleeping to give the server the chance to handle our reply
Stefan Metzmacher [Fri, 2 Dec 2005 15:51:39 +0000 (15:51 +0000)]
r12024: do some extra sleeping to give the server the chance to handle our reply

metze
(This used to be commit 144bde91b3ccbf40494b3f235a2f2699e32f9ad8)

12 years agor12023: use the NBTD IRPC proxy calls for implementing the challenge and release...
Stefan Metzmacher [Fri, 2 Dec 2005 15:40:26 +0000 (15:40 +0000)]
r12023: use the NBTD IRPC proxy calls for implementing the challenge and release demand
conflict cases

metze
(This used to be commit 9e84c85b3de178e0dd093ed9344d30d4c9ea6730)

12 years agor12022: add NBTD IRPC proxy calls for wins challenge and wins release demand,
Stefan Metzmacher [Fri, 2 Dec 2005 15:37:52 +0000 (15:37 +0000)]
r12022: add NBTD IRPC proxy calls for wins challenge and wins release demand,
used for replication conflicts

metze
(This used to be commit d7d14cb2bd9823d7e7d81266ca4014ea5263c714)

12 years agor12021: remove shortpath for winsdb_lookup, this isn't needed
Stefan Metzmacher [Fri, 2 Dec 2005 15:30:25 +0000 (15:30 +0000)]
r12021: remove shortpath for winsdb_lookup, this isn't needed

metze
(This used to be commit 8fb07b1ea8fdf353da832212289aceef20495bda)

12 years agor12020: fix memory hierachie
Stefan Metzmacher [Fri, 2 Dec 2005 15:02:21 +0000 (15:02 +0000)]
r12020: fix memory hierachie

metze
(This used to be commit 2433800834293a95669c3c48eb2462b76d1b3029)

12 years agor12019: - let us only reference libblkid stuff in one file
Stefan Metzmacher [Fri, 2 Dec 2005 14:53:56 +0000 (14:53 +0000)]
r12019: - let us only reference libblkid stuff in one file
- and make it it bit simpler, by caching the GUID struct instead of the device name
- and this also removes all compiler warnings...

metze
(This used to be commit f4f0d626e00116e85a91962bf8534c1fbb69334c)

12 years agor12016: fixed a valgrind error
Andrew Tridgell [Fri, 2 Dec 2005 11:33:19 +0000 (11:33 +0000)]
r12016: fixed a valgrind error
(This used to be commit 482548031e69ba4bddac999ca9f2cb6ad8359953)

12 years agor12014: free the irpc_request structure with the irpc_call_recv functions,
Stefan Metzmacher [Fri, 2 Dec 2005 07:30:34 +0000 (07:30 +0000)]
r12014: free the irpc_request structure with the irpc_call_recv functions,
to match all other _recv functions we have

metze
(This used to be commit bd4f85ab5f60c7430ac88062fa6a9f6cffa9596f)

12 years agor12013: fix compiler warnings
Stefan Metzmacher [Fri, 2 Dec 2005 07:11:43 +0000 (07:11 +0000)]
r12013: fix compiler warnings

metze
(This used to be commit 4d35c2b8e671cc8fe44971cf2a577236afd1abbd)

12 years agor12012: fix renaming smbsrv_trees -> smbsrv_tcons
Stefan Metzmacher [Fri, 2 Dec 2005 07:02:38 +0000 (07:02 +0000)]
r12012: fix renaming smbsrv_trees -> smbsrv_tcons

metze
(This used to be commit e5654f9791a2786e45108216344b2daea3ad9d91)

12 years agor12011: fixed another 'mixed code and declarations' bug
Andrew Tridgell [Fri, 2 Dec 2005 05:29:13 +0000 (05:29 +0000)]
r12011: fixed another 'mixed code and declarations' bug
(This used to be commit 1eca19d597ea21a073361fc6fc550919abf97574)

12 years agor12010: - added support for domain specific SID codes in SDDL strings
Andrew Tridgell [Fri, 2 Dec 2005 04:26:51 +0000 (04:26 +0000)]
r12010: - added support for domain specific SID codes in SDDL strings

- added a bunch more tests to LOCAL-SDDL (all the ones from our schema)

- fixed 'mixed coded declarations' bug
(This used to be commit c30e7698e8e1d9991d35bf86c0d4041a1814ad92)

12 years agor12009: made the LOCAL-SDDL test less verbose by default, and add it to the
Andrew Tridgell [Fri, 2 Dec 2005 03:21:29 +0000 (03:21 +0000)]
r12009: made the LOCAL-SDDL test less verbose by default, and add it to the
standard tests for the build farm
(This used to be commit 9d6d9b6e50dfe5513f332668b860e6a55af3a39c)

12 years agor12008: added a simple LOCAL-SDDL test suite. Only one example so far. Will be
Andrew Tridgell [Fri, 2 Dec 2005 03:19:23 +0000 (03:19 +0000)]
r12008: added a simple LOCAL-SDDL test suite. Only one example so far. Will be
filled in with more examples as I expand the sddl parsing code.
(This used to be commit 8f80e483a3aa07bb5a16eeccde5af5cd7fb5a975)

12 years agor12007: fixed a valgrind error in the SMB2-SETINFO test
Andrew Tridgell [Fri, 2 Dec 2005 03:18:34 +0000 (03:18 +0000)]
r12007: fixed a valgrind error in the SMB2-SETINFO test
(This used to be commit 0c3223ab7db93a31121667c65956f30a5b0ec9f8)

12 years agor12006: don't require callers to fill in pad bytes in SMB2 calls
Andrew Tridgell [Fri, 2 Dec 2005 03:17:40 +0000 (03:17 +0000)]
r12006: don't require callers to fill in pad bytes in SMB2 calls
(This used to be commit 6935765fda99a6efb19f6f72358d4d48fc35ad5e)

12 years agor12005: added a SDDL (Security Descriptor Description Language) parser. Not
Andrew Tridgell [Fri, 2 Dec 2005 03:16:42 +0000 (03:16 +0000)]
r12005: added a SDDL (Security Descriptor Description Language) parser. Not
all flags are covered yet, and object aces aren't done yet.

This is needed for ACL support in ldb, as the default security
descriptor for each object class is given by the
defaultSecurityDescriptor attribute in the schema, which is stored in
SDDL format
(This used to be commit dbdeecea01a8b362a9a525a3689cb03662a86776)

12 years agor12004: added some SEC_ADS_* security flags. Needed for a SDDL parser.
Andrew Tridgell [Fri, 2 Dec 2005 03:14:45 +0000 (03:14 +0000)]
r12004: added some SEC_ADS_* security flags. Needed for a SDDL parser.
(This used to be commit dc1b83cc13e0324139c6b756a6f135534be7be79)

12 years agor12001: Replace smbcli_full_connection call with composite connect used
Rafal Szczesniak [Thu, 1 Dec 2005 22:43:30 +0000 (22:43 +0000)]
r12001: Replace smbcli_full_connection call with composite connect used
in sync version. This step makes it easer to move further to async
dcerpc connect routine.

rafal
(This used to be commit 87b016d55315190fa3f6083c75cb783ad45ddd0b)

12 years agor12000: Update to current lorikeet-heimdal, including in particular support
Andrew Bartlett [Thu, 1 Dec 2005 22:18:34 +0000 (22:18 +0000)]
r12000: Update to current lorikeet-heimdal, including in particular support
for referencing an existing in-MEMORY keytab (required for the new way
we push that to GSSAPI).

Andrew Bartlett
(This used to be commit 2426581dfb9f5f0f9367f846c01dfd3c30fea954)

12 years agor11997: for multidimentional array like this:
Stefan Metzmacher [Thu, 1 Dec 2005 12:39:33 +0000 (12:39 +0000)]
r11997: for multidimentional array like this:
uint32 [num_level2][num_level1][num_level0]

fix the order they're pushed and pulled, it should be like this

for (l2=0; l2 < num_level2; l2++) {
for (l1=0; l1 < num_level1; l1++) {
for (l0=0; l0 < num_level0; l0++) {
ndr_pull_uint32(...);
}
}
}

metze
(This used to be commit c10195f31383f51911edd8a32f8b5d5857d5bf2d)

12 years agor11996: don't overwrite the buffercode
Stefan Metzmacher [Thu, 1 Dec 2005 07:09:24 +0000 (07:09 +0000)]
r11996: don't overwrite the buffercode

metze
(This used to be commit fee5b6f40784e75a469320a584423c5030b69400)

12 years agor11995: A big kerberos-related update.
Andrew Bartlett [Thu, 1 Dec 2005 05:20:39 +0000 (05:20 +0000)]
r11995: A big kerberos-related update.

This merges Samba4 up to current lorikeet-heimdal, which includes a
replacement for some Samba-specific hacks.

In particular, the credentials system now supplies GSS client and
server credentials.  These are imported into GSS with
gss_krb5_import_creds().  Unfortunetly this can't take an MEMORY
keytab, so we now create a FILE based keytab as provision and join
time.

Because the keytab is now created in advance, we don't spend .4s at
negprot doing sha1 s2k calls.  Also, because the keytab is read in
real time, any change in the server key will be correctly picked up by
the the krb5 code.

To mark entries in the secrets which should be exported to a keytab,
there is a new kerberosSecret objectClass.  The new routine
cli_credentials_update_all_keytabs() searches for these, and updates
the keytabs.

This is called in the provision.js via the ejs wrapper
credentials_update_all_keytabs().

We can now (in theory) use a system-provided /etc/krb5.keytab, if

krb5Keytab: FILE:/etc/krb5.keytab

is added to the secrets.ldb record.  By default the attribute

privateKeytab: secrets.keytab

is set, pointing to allow the whole private directory to be moved
without breaking the internal links.
(This used to be commit 6b75573df49c6210e1b9d71e108a9490976bd41d)

12 years agor11994: This function no longer needs a special declaration.
Andrew Bartlett [Thu, 1 Dec 2005 05:10:37 +0000 (05:10 +0000)]
r11994: This function no longer needs a special declaration.

Andrew Bartlett
(This used to be commit 88a7b7805c11cb3a1be3222d3e4b0b3ad8aff2aa)

12 years agor11993: As well as making an in-MEMORY keytab, allow a file-based keytab to be updated.
Andrew Bartlett [Thu, 1 Dec 2005 05:09:28 +0000 (05:09 +0000)]
r11993: As well as making an in-MEMORY keytab, allow a file-based keytab to be updated.

This allows a new password to be written in, and old entries removed
(we keep kvno and kvno-1).

Clean up the code a lot, and add comments on what it is doing...

Andrew Bartlett
(This used to be commit 0a911baabad60a43741269d29a96fdd74e54331a)

12 years agor11992: Potentially allow SPNEGO to be disabled (as occours on WinXP
Andrew Bartlett [Thu, 1 Dec 2005 05:06:52 +0000 (05:06 +0000)]
r11992: Potentially allow SPNEGO to be disabled (as occours on WinXP
standalone), and use only NTLMSSP.

(But doing so would break Samba3's client).

Andrew Bartlett
(This used to be commit e74ca624e74ed82788817e302a516208dc1421bd)

12 years agor11991: Null termainte the list of backends. (Makes it easier to walk the list).
Andrew Bartlett [Thu, 1 Dec 2005 04:58:15 +0000 (04:58 +0000)]
r11991: Null termainte the list of backends.  (Makes it easier to walk the list).

Andrew Bartlett
(This used to be commit fc4202dea88a72de061cb2e1caa7847fae37018f)

12 years agor11990: Set the password set time as 'now', so it isn't expired back in 2004.
Andrew Bartlett [Thu, 1 Dec 2005 04:55:18 +0000 (04:55 +0000)]
r11990: Set the password set time as 'now', so it isn't expired back in 2004.

Andrew Bartlett
(This used to be commit b3929230b210bd6f0b12f90f48767aa861fd08fa)

12 years agor11989: Rather than grabbing the machine account details at this point, grab
Andrew Bartlett [Thu, 1 Dec 2005 04:54:28 +0000 (04:54 +0000)]
r11989: Rather than grabbing the machine account details at this point, grab
them 'later'.  We will need to handle the errors when we call the
get_* methods.

Andrew Bartlett
(This used to be commit c6e572f87022b57cdfd8178eb5c23df67a92c453)

12 years agor11988: Setup the sessionInfo just before the connect, rather than earlier
Andrew Bartlett [Thu, 1 Dec 2005 04:52:54 +0000 (04:52 +0000)]
r11988: Setup the sessionInfo just before the connect, rather than earlier
when we havn't finished popt.

Andrew Bartlett
(This used to be commit e5c5eb97a0ab841442b2c3fb5ea67f0d21b42932)

12 years agor11987: Clarify the accountExpires behaviour in the KDC.
Andrew Bartlett [Thu, 1 Dec 2005 04:50:28 +0000 (04:50 +0000)]
r11987: Clarify the accountExpires behaviour in the KDC.

Andrew Bartlett
(This used to be commit 05334e98fb1658965a822517365a86bc3906378b)

12 years agor11984: LGPL on header and testsuite as well
Andrew Tridgell [Thu, 1 Dec 2005 00:25:06 +0000 (00:25 +0000)]
r11984: LGPL on header and testsuite as well
(This used to be commit ed90975bf50644f00da681eb7cc41123abc60f81)

12 years agor11983: make talloc LGPL. This makes more sense given that ldb depends on
Andrew Tridgell [Thu, 1 Dec 2005 00:23:01 +0000 (00:23 +0000)]
r11983: make talloc LGPL. This makes more sense given that ldb depends on
talloc, and ldb is now LGPL
(This used to be commit 5bdd50fa38b1be28cf7bcddc561c743437e70cae)

12 years agor11982: ensure the fde event gets freed before the socket itself, as otherwise
Andrew Tridgell [Thu, 1 Dec 2005 00:22:08 +0000 (00:22 +0000)]
r11982: ensure the fde event gets freed before the socket itself, as otherwise
we get a error from epoll about disabling events for a file descriptor
that is closed
(This used to be commit f32739307464a1f0c835cff886b8c4b960778900)

12 years agor11981: we should allocate request specific memory in ldb modules off the
Andrew Tridgell [Thu, 1 Dec 2005 00:19:36 +0000 (00:19 +0000)]
r11981: we should allocate request specific memory in ldb modules off the
request strucutre. It will take a while for this to happen everywhere.
(This used to be commit b1d38153b8c1d2d5be2d41005eadb0e0aa46bd72)

12 years agor11980: ronnie worked out that opcode 0xb in SMB2 is in fact ioctl, and that
Andrew Tridgell [Thu, 1 Dec 2005 00:18:29 +0000 (00:18 +0000)]
r11980: ronnie worked out that opcode 0xb in SMB2 is in fact ioctl, and that
it only appeared to be like a SMBtrans request as it was being called
with function 0x11c017 which is "named pipe read write"

I wonder if this means we could do DCE/RPC over SMB using ntioctl
calls as well?
(This used to be commit f2b8857797328be64b0b85e875ae6d108e2aeaaa)

12 years agor11974: only look at $pl->{POINTER_TYPE} when $pl is defined
Stefan Metzmacher [Wed, 30 Nov 2005 17:07:02 +0000 (17:07 +0000)]
r11974: only look at $pl->{POINTER_TYPE} when $pl is defined

metze
(This used to be commit 271d0af16d50bc89a384b56db70d569914273f6c)

12 years agor11973: make it easier to find bugs
Stefan Metzmacher [Wed, 30 Nov 2005 13:10:44 +0000 (13:10 +0000)]
r11973: make it easier to find bugs

metze
(This used to be commit 247f90c28d845fd2224cb07ed30d3e8122ba5644)

12 years agor11972: handle [noejs] property also on functions
Stefan Metzmacher [Wed, 30 Nov 2005 12:40:26 +0000 (12:40 +0000)]
r11972: handle [noejs] property also on functions

metze
(This used to be commit e5fef8519b28f66ce8a401fc866c8b9bf08c584d)

12 years agor11971: add nbt specific continue wrapper
Stefan Metzmacher [Wed, 30 Nov 2005 12:39:32 +0000 (12:39 +0000)]
r11971: add nbt specific continue wrapper

metze
(This used to be commit b8c5978df18b98db89069e02597d483f893e39ae)

12 years agor11970: fixed a valgrind error. The auth info from the alter_context reply was
Andrew Tridgell [Wed, 30 Nov 2005 04:45:26 +0000 (04:45 +0000)]
r11970: fixed a valgrind error. The auth info from the alter_context reply was
being freed before being given to gensec_update()
(This used to be commit cf2cb4279e2b31989eee2fec848982b10fcc2136)

12 years agor11969: got rid of the very annoying 'failed to open /secrets.tdb'
Andrew Tridgell [Wed, 30 Nov 2005 03:35:17 +0000 (03:35 +0000)]
r11969: got rid of the very annoying 'failed to open /secrets.tdb'
messages. As discussed with Andrew, this will soon be replaced with a
system that marks the credentials to use the machine accout from the
database rather than pre-loading the machine account details here.

The reason we got the annoying messages is this was being called
before smb.conf is loaded, so the code doesn't yet know the location
of the private directory
(This used to be commit 6aeb4bf3fe224a6f81962237bdda329ba828b493)

12 years agor11968: More warning fixes. We're on track to getting to double digits for
Tim Potter [Wed, 30 Nov 2005 03:20:25 +0000 (03:20 +0000)]
r11968: More warning fixes.  We're on track to getting to double digits for
the number of warnings generated now.
(This used to be commit d479f2d7607adc698d71c5ba26932c72a26dcaab)

12 years agor11967: Fix more 64-bit warnings.
Tim Potter [Wed, 30 Nov 2005 02:08:15 +0000 (02:08 +0000)]
r11967: Fix more 64-bit warnings.
(This used to be commit 9c4436a124f874ae240feaf590141d48c33a635f)

12 years agor11965: Try to fix some 64-bit warnings.
Tim Potter [Wed, 30 Nov 2005 00:00:53 +0000 (00:00 +0000)]
r11965: Try to fix some 64-bit warnings.
(This used to be commit e98c28941a6002042e0e429f99f14e7dd4920aa6)

12 years agor11959: Use DOS_errors array for displaying WERROR values
Jelmer Vernooij [Tue, 29 Nov 2005 13:54:51 +0000 (13:54 +0000)]
r11959: Use DOS_errors array for displaying WERROR values
(This used to be commit 0830ed0d60cdbd00e6f42dae2c7e295363bca17d)

12 years agor11958: - fixed memory leaks in the ldb_result handling in ldb operations
Andrew Tridgell [Tue, 29 Nov 2005 12:34:03 +0000 (12:34 +0000)]
r11958: - fixed memory leaks in the ldb_result handling in ldb operations

- removed an unnecessary level of pointer in ldb_search structure
(This used to be commit b8d4afb14a18dfd8bac79882a035e74d3ed312bd)

12 years agor11957: fixed up code meant for debugging
Andrew Tridgell [Tue, 29 Nov 2005 10:12:01 +0000 (10:12 +0000)]
r11957: fixed up code meant for debugging
(This used to be commit 8ca85842579a8a1d8f60259812d04eb7ee27d7aa)

12 years agor11956: removed the old rootdse.ldif, and the provision.js code that uses it
Andrew Tridgell [Tue, 29 Nov 2005 08:58:39 +0000 (08:58 +0000)]
r11956: removed the old rootdse.ldif, and the provision.js code that uses it
(This used to be commit 4b56c129c6f1654f9dbe37bc950a836f15c48b3d)

12 years agor11955: got rid of the old rootDSE code in the ldap server.
Andrew Tridgell [Tue, 29 Nov 2005 08:55:13 +0000 (08:55 +0000)]
r11955: got rid of the old rootDSE code in the ldap server.

The partitioning logic is still there, but we only have one
partition. If we need partitioning in the future it might be better to
remove this partitioning code and use a partitioning module instead
(This used to be commit f4685e7dc9bdc3b9e240c9f5891b9da9251f82e5)