ira/wip.git
7 years agoselftest: Establish a registry of socket wrapper IPs
Andrew Bartlett [Fri, 2 Mar 2012 00:44:56 +0000 (11:44 +1100)]
selftest: Establish a registry of socket wrapper IPs

This fixes a bug where chgdcpass was on the same IP as localsubdc, and
will avoid similar mistakes in future.

Andrew Bartlett

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Fri Mar  2 03:48:05 CET 2012 on sn-devel-104

7 years agos3-libsmb: Initialise ticket to ensure we do not invalid memory
Andrew Bartlett [Thu, 1 Mar 2012 05:55:04 +0000 (16:55 +1100)]
s3-libsmb: Initialise ticket to ensure we do not invalid memory

The free is however a talloc_free(), which has additional protection against
freeing the wrong thing.

Andrew Bartlett

Signed-off-by: Jeremy Allison <jra@samba.org>
Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Fri Mar  2 01:45:19 CET 2012 on sn-devel-104

7 years agoMove to talloc from malloc.
Jeremy Allison [Thu, 1 Mar 2012 20:35:27 +0000 (12:35 -0800)]
Move to talloc from malloc.

7 years agoFix mixup between talloc/malloc.
Jeremy Allison [Thu, 1 Mar 2012 18:57:17 +0000 (10:57 -0800)]
Fix mixup between talloc/malloc.

7 years agopyldb: Avoid using PyErr_LDB_ERROR_IS_ERR_RAISE where PyErr_SetLdbError suffices.
Jelmer Vernooij [Thu, 1 Mar 2012 20:26:27 +0000 (21:26 +0100)]
pyldb: Avoid using PyErr_LDB_ERROR_IS_ERR_RAISE where PyErr_SetLdbError suffices.

Autobuild-User: Jelmer Vernooij <jelmer@samba.org>
Autobuild-Date: Thu Mar  1 23:06:55 CET 2012 on sn-devel-104

7 years agodlz_bind9: Match PTR records as DNS names and not just strings
Amitay Isaacs [Thu, 1 Mar 2012 13:23:00 +0000 (00:23 +1100)]
dlz_bind9: Match PTR records as DNS names and not just strings

This fixes the dynamic update of PTR records.

Autobuild-User: Amitay Isaacs <amitay@samba.org>
Autobuild-Date: Thu Mar  1 15:58:05 CET 2012 on sn-devel-104

7 years agos4-dns: Fix handling of TXT DNS Record
Amitay Isaacs [Tue, 28 Feb 2012 06:01:27 +0000 (17:01 +1100)]
s4-dns: Fix handling of TXT DNS Record

7 years agoupgradedns: Fix import of TXT DNS records
Amitay Isaacs [Tue, 28 Feb 2012 07:27:04 +0000 (18:27 +1100)]
upgradedns: Fix import of TXT DNS records

7 years agos4-rpc: dnsserver: Update data type for TXT DNS records
Amitay Isaacs [Tue, 28 Feb 2012 05:35:39 +0000 (16:35 +1100)]
s4-rpc: dnsserver: Update data type for TXT DNS records

7 years agosamba-tool: dns: Add support for handling TXT records
Amitay Isaacs [Tue, 28 Feb 2012 04:14:49 +0000 (15:14 +1100)]
samba-tool: dns: Add support for handling TXT records

7 years agosamba-tool: dns: Copy string data when creating DNS_RPC_RECORD
Amitay Isaacs [Tue, 28 Feb 2012 04:12:44 +0000 (15:12 +1100)]
samba-tool: dns: Copy string data when creating DNS_RPC_RECORD

7 years agoprovision: dns: TXT Records need a list of strings as input
Amitay Isaacs [Tue, 28 Feb 2012 03:59:39 +0000 (14:59 +1100)]
provision: dns: TXT Records need a list of strings as input

7 years agondr: dnsserver: Add pull and push functions for DNS_RPC_RECORD_STRING
Amitay Isaacs [Tue, 28 Feb 2012 03:57:23 +0000 (14:57 +1100)]
ndr: dnsserver: Add pull and push functions for DNS_RPC_RECORD_STRING

7 years agoidl: dnsserver: Add DNS_RPC_RECORD_STRING data type for TXT DNS record
Amitay Isaacs [Tue, 28 Feb 2012 03:56:37 +0000 (14:56 +1100)]
idl: dnsserver: Add DNS_RPC_RECORD_STRING data type for TXT DNS record

7 years agodlz_bind9: Fix handling of TXT records with multiple quoted strings
Amitay Isaacs [Tue, 28 Feb 2012 03:14:07 +0000 (14:14 +1100)]
dlz_bind9: Fix handling of TXT records with multiple quoted strings

7 years agondr: Add NDR pull, push, print functions for dnsp_string_list
Amitay Isaacs [Tue, 28 Feb 2012 04:07:10 +0000 (15:07 +1100)]
ndr: Add NDR pull, push, print functions for dnsp_string_list

7 years agoidl: dnsp: Add dnsp_string_list data type for TXT DNS record
Amitay Isaacs [Tue, 28 Feb 2012 04:06:12 +0000 (15:06 +1100)]
idl: dnsp: Add dnsp_string_list data type for TXT DNS record

7 years agondr: Fix NDR push function for dnsp_string
Amitay Isaacs [Tue, 28 Feb 2012 02:58:48 +0000 (13:58 +1100)]
ndr: Fix NDR push function for dnsp_string

Push the actual length of the string not including null-termination.

7 years agondr: Fix the error messages, add correct data type name
Amitay Isaacs [Tue, 28 Feb 2012 03:58:16 +0000 (14:58 +1100)]
ndr: Fix the error messages, add correct data type name

7 years agodlz_bind9: This fixes the problem with adding/deleting rdataset
Amitay Isaacs [Mon, 27 Feb 2012 06:09:10 +0000 (17:09 +1100)]
dlz_bind9: This fixes the problem with adding/deleting rdataset

Fix commit 169db333033b72b6f9ac1e7b23f0f2c151218c1f. This change
allowed for LDB records without dnsRecord attribute to exist to
prevent large number of deleted records.

This change fixes the handling of missing dnsRecord attribute
and correctly deleting dnsRecord attribute.

7 years agos4-libnet: Remove set but unused variables
Andrew Bartlett [Thu, 1 Mar 2012 10:04:19 +0000 (21:04 +1100)]
s4-libnet: Remove set but unused variables

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Thu Mar  1 13:40:12 CET 2012 on sn-devel-104

7 years agos4-libnet: Move to talloc_get_type_abort()
Andrew Bartlett [Thu, 1 Mar 2012 10:02:24 +0000 (21:02 +1100)]
s4-libnet: Move to talloc_get_type_abort()

The NULL pointer dereference from talloc_get_type() might be free, but the
information on the actual and expected types from talloc_get_type_abort()
is priceless! :-)

Andrew Bartlett

7 years agos4:torture/smb2/ioctl.c - quiet format specifier warnings on 32 bit
Matthias Dieter Wallnöfer [Sat, 25 Feb 2012 17:24:37 +0000 (18:24 +0100)]
s4:torture/smb2/ioctl.c - quiet format specifier warnings on 32 bit

Achieve this by using platform independent casts.

7 years agos3-selftest: make ntlm_auth test more robust to bad input
Andrew Bartlett [Thu, 1 Mar 2012 06:44:48 +0000 (17:44 +1100)]
s3-selftest: make ntlm_auth test more robust to bad input

If we do not know the helper protocol, make sure to error.

Andrew Bartlett

7 years agos3-selftest: Add more tests for ntlm_auth
Andrew Bartlett [Thu, 1 Mar 2012 05:57:46 +0000 (16:57 +1100)]
s3-selftest: Add more tests for ntlm_auth

7 years agos3-ntlm_auth fix up gss-spnego-client so as to work with gss-spnego
Andrew Bartlett [Thu, 1 Mar 2012 05:57:04 +0000 (16:57 +1100)]
s3-ntlm_auth fix up gss-spnego-client so as to work with gss-spnego

The SPNEGO code changed since this was last tested.

Andrew Bartlett

7 years agos3-ntlm_auth: Wrap kerberos token in GSSAPI
Andrew Bartlett [Sat, 25 Feb 2012 03:17:23 +0000 (14:17 +1100)]
s3-ntlm_auth: Wrap kerberos token in GSSAPI

While windows will accept this ticket without the wrapping, it is
nicer to follow the standard and wrap it up in GSSAPI.

This should allow the ntlm_auth gss-spnego-client to talk to
the ntlm_auth gss-spengo server.

Reported by Christof Schmitt <christof.schmitt@us.ibm.com>

Andrew Bartlett

7 years agos3-ntlm_auth: Add --target-service and --target-hostname options
Andrew Bartlett [Sat, 25 Feb 2012 03:15:17 +0000 (14:15 +1100)]
s3-ntlm_auth: Add --target-service and --target-hostname options

This will allow the gss-spnego-client protocol to work with modern
SPNEGO servers that do not send the principal in the mechListMIC.

Andrew Bartlett

7 years agobuild: look for backtrace_symbols in libexec
Andrew Bartlett [Thu, 1 Mar 2012 01:57:12 +0000 (12:57 +1100)]
build: look for backtrace_symbols in libexec

7 years agobuild: link heimdal krb5 against execinfo if found
Andrew Bartlett [Thu, 1 Mar 2012 07:13:28 +0000 (18:13 +1100)]
build: link heimdal krb5 against execinfo if found

This is for FreeBSD, where backtrace symbols are in execinfo

7 years agos4-provision: Use "state directory" from lp, as it is always set
Amitay Isaacs [Thu, 1 Mar 2012 08:37:25 +0000 (19:37 +1100)]
s4-provision: Use "state directory" from lp, as it is always set

This fixes new provisions when --targetdir is not provided.

Autobuild-User: Amitay Isaacs <amitay@samba.org>
Autobuild-Date: Thu Mar  1 11:41:02 CET 2012 on sn-devel-104

7 years agoTrivial Comment fix: Supply a missing word in a comment
Richard Sharpe [Thu, 1 Mar 2012 03:45:29 +0000 (19:45 -0800)]
Trivial Comment fix: Supply a missing word in a comment

Autobuild-User: Richard Sharpe <sharpe@samba.org>
Autobuild-Date: Thu Mar  1 06:55:44 CET 2012 on sn-devel-104

7 years agos3: Fix "make bin/smbtorture4" in the autoconf build
Volker Lendecke [Thu, 1 Mar 2012 01:58:28 +0000 (02:58 +0100)]
s3: Fix "make bin/smbtorture4" in the autoconf build

tdb2 support does not work with a system-supplied libtdb yet

Autobuild-User: Volker Lendecke <vl@samba.org>
Autobuild-Date: Thu Mar  1 05:23:57 CET 2012 on sn-devel-104

7 years agoheimdal: Fix the build on FreeBSD
Volker Lendecke [Thu, 1 Mar 2012 01:56:10 +0000 (02:56 +0100)]
heimdal: Fix the build on FreeBSD

We don't have BACKTRACE_SYMBOLS by default

7 years agoAdd open_dir_with_privilege() to ensure we're opening the correct directory when...
Jeremy Allison [Thu, 1 Mar 2012 00:05:50 +0000 (16:05 -0800)]
Add open_dir_with_privilege() to ensure we're opening the correct directory when doing backup requests.

Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Thu Mar  1 03:50:40 CET 2012 on sn-devel-104

7 years agoImplement FLAG_TRANS2_FIND_BACKUP_INTENT for trans2 with privileges.
Jeremy Allison [Wed, 29 Feb 2012 20:15:12 +0000 (12:15 -0800)]
Implement FLAG_TRANS2_FIND_BACKUP_INTENT for trans2 with privileges.

7 years agoAdd accessor functions to set a bool "priv" on a directory handle. Not yet used,...
Jeremy Allison [Wed, 29 Feb 2012 19:42:21 +0000 (11:42 -0800)]
Add accessor functions to set a bool "priv" on a directory handle. Not yet used, but will be part of FLAG_TRANS2_FIND_BACKUP_INTENT code.

7 years agoAdd the implementation of check_reduced_name_with_privilege(). Now to plumb into
Jeremy Allison [Thu, 1 Mar 2012 01:04:08 +0000 (17:04 -0800)]
Add the implementation of check_reduced_name_with_privilege(). Now to plumb into
SMB1 requests.

7 years agoAdd check_reduced_name_with_privilege(), filename_convert_with_privilege() (currently...
Jeremy Allison [Fri, 24 Feb 2012 22:12:05 +0000 (14:12 -0800)]
Add check_reduced_name_with_privilege(), filename_convert_with_privilege() (currently unimplemented) in order to prepare for adding SeBackup/SeRestore code to the main fileserver.

Not yet plumbed into the main SMB1/SMB2 code.

7 years agoselftest: add more tests for plugin_s4_dc
Andrew Bartlett [Wed, 29 Feb 2012 01:48:21 +0000 (12:48 +1100)]
selftest: add more tests for plugin_s4_dc

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Wed Feb 29 12:14:05 CET 2012 on sn-devel-104

7 years agoselftest: change plugin_dc to test using s3fs
Andrew Bartlett [Thu, 8 Sep 2011 23:03:23 +0000 (09:03 +1000)]
selftest: change plugin_dc to test using s3fs

7 years agoselftest: skip the troublesome samba4.rpc.unixinfo test
Andrew Bartlett [Tue, 28 Feb 2012 23:06:31 +0000 (10:06 +1100)]
selftest: skip the troublesome samba4.rpc.unixinfo test

The issue here is that while the single rpc_server process is stuck in
an nss_winbind getpwuid() call, winbindd cannot contact netlogon to
make the connection to the domain.

nss_winbind comes into play when (for s3fs) the
NSS_WRAPPER_WINBIND_SO_PATH environment variable is set.  In the
medium term, the unixinfo pipe should either be rewritten fully async
or removed.

Andrew Bartlett

7 years agos4:winbind: use ncalrpc for connections to ourself
Stefan Metzmacher [Fri, 24 Feb 2012 14:58:40 +0000 (15:58 +0100)]
s4:winbind: use ncalrpc for connections to ourself

That avoids recursion if "smbd" is used as file server.

metze

7 years agoselftest: Do not run chgdcpass test on the main DC
Andrew Bartlett [Wed, 29 Feb 2012 01:48:21 +0000 (12:48 +1100)]
selftest: Do not run chgdcpass test on the main DC

If winbindd has it's password changed from under it, it becomes
grumpy.

Andrew Bartlett

7 years agos4-winbindd: Do not ask for a tree that we will not use
Andrew Bartlett [Tue, 28 Feb 2012 23:37:40 +0000 (10:37 +1100)]
s4-winbindd: Do not ask for a tree that we will not use

7 years agotestsuite: Replace deprecated bzero with memset
Amitay Isaacs [Wed, 29 Feb 2012 05:05:53 +0000 (16:05 +1100)]
testsuite: Replace deprecated bzero with memset

This fixes build issues on solaris reported in bug #8767.

  https://bugzilla.samba.org/show_bug.cgi?id=8767

Autobuild-User: Amitay Isaacs <amitay@samba.org>
Autobuild-Date: Wed Feb 29 10:39:10 CET 2012 on sn-devel-104

7 years agolibcli/smb/smb2_signing: rename smb2_key_deviration -> smb2_key_derivation
Michael Adam [Wed, 29 Feb 2012 04:49:49 +0000 (05:49 +0100)]
libcli/smb/smb2_signing: rename smb2_key_deviration -> smb2_key_derivation

Autobuild-User: Michael Adam <obnox@samba.org>
Autobuild-Date: Wed Feb 29 09:01:54 CET 2012 on sn-devel-104

7 years agos3:torture/test_smb2: test path based calls during reauth in SMB2-MULTI-CHANNEL
Stefan Metzmacher [Mon, 27 Feb 2012 12:27:38 +0000 (13:27 +0100)]
s3:torture/test_smb2: test path based calls during reauth in SMB2-MULTI-CHANNEL

metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Wed Feb 29 07:23:14 CET 2012 on sn-devel-104

7 years agos3:torture/test_smb2: test handle based calls during reauth in SMB2-MULTI-CHANNEL
Stefan Metzmacher [Mon, 27 Feb 2012 12:27:38 +0000 (13:27 +0100)]
s3:torture/test_smb2: test handle based calls during reauth in SMB2-MULTI-CHANNEL

metze

7 years agos3:torture/test_smb2: do a reauth over multiple channels in SMB2-MULTI-CHANNEL
Stefan Metzmacher [Mon, 27 Feb 2012 10:19:22 +0000 (11:19 +0100)]
s3:torture/test_smb2: do a reauth over multiple channels in SMB2-MULTI-CHANNEL

metze

7 years agos3:torture/test_smb2: add a 3rd channel to SMB2-MULTI-CHANNEL
Stefan Metzmacher [Mon, 27 Feb 2012 10:50:40 +0000 (11:50 +0100)]
s3:torture/test_smb2: add a 3rd channel to SMB2-MULTI-CHANNEL

metze

7 years agos3:torture/test_smb2: expect FILE_CLOSED on invalid handles in SMB2-MULTI-CHANNEL
Stefan Metzmacher [Wed, 29 Feb 2012 02:57:34 +0000 (03:57 +0100)]
s3:torture/test_smb2: expect FILE_CLOSED on invalid handles in SMB2-MULTI-CHANNEL

metze

7 years agos4:torture/smb2: remove unused var
Stefan Metzmacher [Wed, 29 Feb 2012 02:42:52 +0000 (03:42 +0100)]
s4:torture/smb2: remove unused var

metze

7 years agolibcli/smb/smbXcli: use smb2_key_deviration() to setup SMB 2.24 keys
Stefan Metzmacher [Mon, 27 Feb 2012 08:33:46 +0000 (09:33 +0100)]
libcli/smb/smbXcli: use smb2_key_deviration() to setup SMB 2.24 keys

This uses the key diveration function from "NIST Special Publication 800-108"
in counter mode (section 5.1).

Thanks to Jeremy, Michael and Volker for the debugging!

metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Wed Feb 29 04:54:48 CET 2012 on sn-devel-104

7 years agolibcli/smb/smb2_signing: implement aes_cmac_128 based signing for SMB 2.24
Stefan Metzmacher [Mon, 27 Feb 2012 08:32:33 +0000 (09:32 +0100)]
libcli/smb/smb2_signing: implement aes_cmac_128 based signing for SMB 2.24

metze

7 years agolibcli/smb/smb2_signing: add smb2_key_deviration()
Stefan Metzmacher [Wed, 22 Feb 2012 12:13:47 +0000 (13:13 +0100)]
libcli/smb/smb2_signing: add smb2_key_deviration()

This implements a simplified version of "NIST Special Publication 800-108" section 5.1
using hmac-sha256.

Thanks to Jeremy, Michael and Volker for the debugging!

metze

7 years agolib/crypto: add aes_cmac_128_test.c as local.crypto.aes_cmac_128 test
Stefan Metzmacher [Wed, 29 Feb 2012 00:39:31 +0000 (01:39 +0100)]
lib/crypto: add aes_cmac_128_test.c as local.crypto.aes_cmac_128 test

metze

7 years agolib/crypto: add aes_cmac_128* (rfc 4493)
Stefan Metzmacher [Sat, 18 Feb 2012 10:47:31 +0000 (11:47 +0100)]
lib/crypto: add aes_cmac_128* (rfc 4493)

Thanks to Jeremy, Michael and Volker for the debugging!

metze

7 years agos3: Introduce "req" helper var in reply_lockingX_success
Volker Lendecke [Tue, 28 Feb 2012 01:47:46 +0000 (02:47 +0100)]
s3: Introduce "req" helper var in reply_lockingX_success

Autobuild-User: Volker Lendecke <vl@samba.org>
Autobuild-Date: Wed Feb 29 03:08:53 CET 2012 on sn-devel-104

7 years agos3: Fix a const warning
Volker Lendecke [Tue, 28 Feb 2012 02:14:37 +0000 (03:14 +0100)]
s3: Fix a const warning

7 years agos3: Add a test that makes a chained open break an oplock
Volker Lendecke [Tue, 28 Feb 2012 19:28:55 +0000 (20:28 +0100)]
s3: Add a test that makes a chained open break an oplock

Autobuild-User: Volker Lendecke <vl@samba.org>
Autobuild-Date: Wed Feb 29 01:13:03 CET 2012 on sn-devel-104

7 years agos3: More fix for smbd -i
Volker Lendecke [Tue, 28 Feb 2012 21:36:06 +0000 (22:36 +0100)]
s3: More fix for smbd -i

We need a full re-initialize, otherwise we don't re-init the USR1
signal handler

7 years agoFix problem reported by Tom Lee <tlee2951@gmail.com> - when calculating
Jeremy Allison [Tue, 28 Feb 2012 17:47:50 +0000 (09:47 -0800)]
Fix problem reported by Tom Lee <tlee2951@gmail.com> - when calculating
the share security mask, take priviliges into account for the connecting
user.

Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Tue Feb 28 20:21:26 CET 2012 on sn-devel-104

7 years agotorture: added samba4-ntvfs target
Andrew Tridgell [Thu, 9 Feb 2012 03:33:09 +0000 (14:33 +1100)]
torture: added samba4-ntvfs target

this will be used for the samba4 server with the ntvfs backend

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Tue Feb 28 13:34:44 CET 2012 on sn-devel-104

7 years agos3fs: when samba is logging to stdout, ask smbd to also do so
Andrew Tridgell [Thu, 9 Feb 2012 03:07:00 +0000 (14:07 +1100)]
s3fs: when samba is logging to stdout, ask smbd to also do so

this prevents make test getting spurious errors about opening log
files in the install prefix

7 years agosmbd: detect EOF on stdin in --foreground mode
Andrew Tridgell [Wed, 30 Nov 2011 03:08:28 +0000 (14:08 +1100)]
smbd: detect EOF on stdin in --foreground mode

if EOF is detected on stdin then exit

7 years agoselftest: added a pipe on stdin in s3 child processes
Andrew Tridgell [Tue, 3 Jan 2012 05:48:29 +0000 (16:48 +1100)]
selftest: added a pipe on stdin in s3 child processes

this adds a pipe for STDIN in smbd, nmbd and winbindd when run in
selftest. This allows those processes to detect when they should exit
by looking for EOF on stdin.

7 years agos3fs: added file_server directory
Andrew Tridgell [Mon, 2 May 2011 23:35:07 +0000 (09:35 +1000)]
s3fs: added file_server directory

this contains a file server backend that forks and starts smbd

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>

7 years agos4-smb_server Remove inetd-mode samba3 hook
Andrew Bartlett [Tue, 6 Sep 2011 01:34:35 +0000 (11:34 +1000)]
s4-smb_server Remove inetd-mode samba3 hook

7 years agoupgradedns: Missing rename from upgradedns to samba_upgradedns
Amitay Isaacs [Tue, 28 Feb 2012 07:26:28 +0000 (18:26 +1100)]
upgradedns: Missing rename from upgradedns to samba_upgradedns

Autobuild-User: Amitay Isaacs <amitay@samba.org>
Autobuild-Date: Tue Feb 28 10:06:03 CET 2012 on sn-devel-104

7 years agos4:torture:smb2:durable-open: fix a silly access-after-free panic
Michael Adam [Tue, 28 Feb 2012 04:33:23 +0000 (05:33 +0100)]
s4:torture:smb2:durable-open: fix a silly access-after-free panic

Autobuild-User: Michael Adam <obnox@samba.org>
Autobuild-Date: Tue Feb 28 08:33:44 CET 2012 on sn-devel-104

7 years agos3:torture/test_smb2: test a tree_connect during reauth
Stefan Metzmacher [Tue, 28 Feb 2012 04:11:23 +0000 (05:11 +0100)]
s3:torture/test_smb2: test a tree_connect during reauth

metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Tue Feb 28 06:58:44 CET 2012 on sn-devel-104

7 years agos3:torture/test_smb2: check directory listing during reauth
Stefan Metzmacher [Tue, 28 Feb 2012 03:24:12 +0000 (04:24 +0100)]
s3:torture/test_smb2: check directory listing during reauth

metze

7 years agos4:selftest: skip smb2.session testsuite
Michael Adam [Tue, 28 Feb 2012 00:44:10 +0000 (01:44 +0100)]
s4:selftest: skip smb2.session testsuite

Autobuild-User: Michael Adam <obnox@samba.org>
Autobuild-Date: Tue Feb 28 03:19:52 CET 2012 on sn-devel-104

7 years agos4:selftest: remove old "samba4.smb2.persistent.handle1" from knownfail - test does...
Michael Adam [Tue, 28 Feb 2012 00:27:59 +0000 (01:27 +0100)]
s4:selftest: remove old "samba4.smb2.persistent.handle1" from knownfail - test does not exist

7 years agos4:torture:smb2: add new "session" testsuite starting with a session.reconnect test
Michael Adam [Sun, 26 Feb 2012 16:53:13 +0000 (17:53 +0100)]
s4:torture:smb2: add new "session" testsuite starting with a session.reconnect test

7 years agos4:torture:smb2: add durable_open.reopen2a - variant of reopen2 with session reconnect
Michael Adam [Sun, 26 Feb 2012 01:36:13 +0000 (02:36 +0100)]
s4:torture:smb2: add durable_open.reopen2a - variant of reopen2 with session reconnect

7 years agos4:torture:smb2: add torture_smb2_connection_ext() that takes previous_session
Michael Adam [Sun, 26 Feb 2012 00:45:53 +0000 (01:45 +0100)]
s4:torture:smb2: add torture_smb2_connection_ext() that takes previous_session

7 years agos4:libcli:smb2: add a smb2_connect_ext variant of smb2_connect that takes a previous_...
Michael Adam [Sun, 26 Feb 2012 00:45:00 +0000 (01:45 +0100)]
s4:libcli:smb2: add a smb2_connect_ext variant of smb2_connect that takes a previous_session argument

7 years agos4:libcli:smb2: add a previous session argument to smb2_connect_send()
Michael Adam [Sun, 26 Feb 2012 00:43:50 +0000 (01:43 +0100)]
s4:libcli:smb2: add a previous session argument to smb2_connect_send()

7 years agos4:torture:smb2: add previous_session argument to torture_smb2_session_setup()
Michael Adam [Sun, 26 Feb 2012 00:36:51 +0000 (01:36 +0100)]
s4:torture:smb2: add previous_session argument to torture_smb2_session_setup()

To allow for doing a session reconnect

7 years agos4:libcli:smb2: add a previous session argument to smb2_session_setup_spnego()
Michael Adam [Sat, 25 Feb 2012 21:32:03 +0000 (22:32 +0100)]
s4:libcli:smb2: add a previous session argument to smb2_session_setup_spnego()

So that we can do a session reconnect.

7 years agos3:libsmb:smb2: pass previous session ID to session setup, not previous session
Michael Adam [Sun, 26 Feb 2012 16:35:28 +0000 (17:35 +0100)]
s3:libsmb:smb2: pass previous session ID to session setup, not previous session

We only need the session, and under some circumstances, it might complicate
things for the caller to have to cope with the whole structure (talloc...).

7 years agos3-winbindd: Close netlogon connection if the status returned by the NetrSamLogonEx...
Matthieu Patou [Sat, 25 Feb 2012 00:13:10 +0000 (16:13 -0800)]
s3-winbindd: Close netlogon connection if the status returned by the NetrSamLogonEx call is timeout in the pam_auth_crap path

If not the child process would hang for quite a long time up to the
moment when the connection is cleaned by the kernel (took ~ 20 minutes)
in my tests.

Signed-off-by: Jeremy Allison <jra@samba.org>
Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Mon Feb 27 23:10:03 CET 2012 on sn-devel-104

7 years agos3:torture/test_smb2: show that a session is not valid for path based calls during...
Stefan Metzmacher [Mon, 27 Feb 2012 12:23:53 +0000 (13:23 +0100)]
s3:torture/test_smb2: show that a session is not valid for path based calls during reauth

metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Mon Feb 27 16:29:02 CET 2012 on sn-devel-104

7 years agos3:torture/test_smb2: show that a session is valid during a multi-leg reauth
Stefan Metzmacher [Mon, 27 Feb 2012 12:18:42 +0000 (13:18 +0100)]
s3:torture/test_smb2: show that a session is valid during a multi-leg reauth

metze

7 years agos3:torture/test_smb2: fix missleading file name in reauth test
Stefan Metzmacher [Mon, 27 Feb 2012 12:26:00 +0000 (13:26 +0100)]
s3:torture/test_smb2: fix missleading file name in reauth test

metze

7 years agolibcli/smb/smb2_signing: pass down 'protocol' to smb2_signing_[sign|check]_pdu()
Stefan Metzmacher [Mon, 27 Feb 2012 08:29:53 +0000 (09:29 +0100)]
libcli/smb/smb2_signing: pass down 'protocol' to smb2_signing_[sign|check]_pdu()

metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Mon Feb 27 14:26:32 CET 2012 on sn-devel-104

7 years agolibcli/smb/smb2_signing: rename session_key to signing_key
Stefan Metzmacher [Mon, 27 Feb 2012 08:27:51 +0000 (09:27 +0100)]
libcli/smb/smb2_signing: rename session_key to signing_key

metze

7 years agolibcli/smb/smbXcli: remove unused if statement from smb2cli_conn_dispatch_incoming()
Stefan Metzmacher [Mon, 27 Feb 2012 08:24:38 +0000 (09:24 +0100)]
libcli/smb/smbXcli: remove unused if statement from smb2cli_conn_dispatch_incoming()

metze

7 years agos4:libcli/smb2: remove unused 'session_key' from struct smb2_session
Stefan Metzmacher [Mon, 27 Feb 2012 08:20:20 +0000 (09:20 +0100)]
s4:libcli/smb2: remove unused 'session_key' from struct smb2_session

metze

7 years agos4:librpc/dcerpc_smb2: make use of smb2cli_session_application_key()
Stefan Metzmacher [Mon, 27 Feb 2012 08:16:28 +0000 (09:16 +0100)]
s4:librpc/dcerpc_smb2: make use of smb2cli_session_application_key()

metze

7 years agolibcli/smb/smbXcli: add smb2cli_session_application_key()
Stefan Metzmacher [Mon, 27 Feb 2012 08:03:54 +0000 (09:03 +0100)]
libcli/smb/smbXcli: add smb2cli_session_application_key()

metze

7 years agolibcli/smb/smbXcli: maintain smb2 channel_signing_key separate from the signing_key
Stefan Metzmacher [Mon, 27 Feb 2012 07:48:55 +0000 (08:48 +0100)]
libcli/smb/smbXcli: maintain smb2 channel_signing_key separate from the signing_key

The signing_key is fix across all channels and is used for session setups
on a channel binding.

Note:
 - the last session setup response is signed with the new channel signing key.
 - the reauth session setups are signed with the channel signing key.

It's also not needed to remember the main session key.

metze

7 years agolibcli/smb/smbXcli: remove unused checks from smb2cli_session_create_channel()
Stefan Metzmacher [Mon, 27 Feb 2012 08:58:53 +0000 (09:58 +0100)]
libcli/smb/smbXcli: remove unused checks from smb2cli_session_create_channel()

metze

7 years agos3:torture/test_smb2: remove explicit smb2_signing_check_pdu()
Stefan Metzmacher [Mon, 27 Feb 2012 08:18:33 +0000 (09:18 +0100)]
s3:torture/test_smb2: remove explicit smb2_signing_check_pdu()

smb2cli_session_set_session_key() already checks the signature
and that function really knows the signing key.

metze

7 years agos3:torture/test_smb2: a reauth doesn't update the session/signing key
Stefan Metzmacher [Mon, 27 Feb 2012 10:52:50 +0000 (11:52 +0100)]
s3:torture/test_smb2: a reauth doesn't update the session/signing key

metze

7 years agolib/crypto: fix hmac_sha256_final() prototype
Stefan Metzmacher [Wed, 22 Feb 2012 08:01:10 +0000 (09:01 +0100)]
lib/crypto: fix hmac_sha256_final() prototype

metze

7 years agodbwrap: changed log level for information about lock order
Andrew Tridgell [Thu, 9 Feb 2012 03:10:41 +0000 (14:10 +1100)]
dbwrap: changed log level for information about lock order

we were filling our logs with lock ordering debug lines

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Mon Feb 27 12:50:29 CET 2012 on sn-devel-104

7 years agoselftest: up the default log level in s3
Andrew Bartlett [Mon, 13 Feb 2012 06:47:11 +0000 (17:47 +1100)]
selftest: up the default log level in s3

This may help show more detail when our tests fail.

Andrew Bartlett