Andrew Tridgell [Tue, 23 Sep 2008 18:15:46 +0000 (11:15 -0700)]
Merge branch 'master' of ssh://git.samba.org/data/git/samba
Stefan Metzmacher [Tue, 9 Sep 2008 19:15:54 +0000 (21:15 +0200)]
selftest: run smb signing tests as part of make quicktest
metze
Stefan Metzmacher [Tue, 9 Sep 2008 19:10:08 +0000 (21:10 +0200)]
selftest: test some smb signing combinations against the member server
metze
Stefan Metzmacher [Tue, 23 Sep 2008 00:30:15 +0000 (02:30 +0200)]
s4:smb_server: remove the bogus smbsrv_signing_restart()
Real signing always starts with seqnumber 2, and once signing
is on the session key never change anymore for the complete
smb connection.
metze
Stefan Metzmacher [Tue, 9 Sep 2008 16:02:07 +0000 (18:02 +0200)]
libcli/smb_composite: for spnego session setups check the smb signature manually
We need to start signing when we got NT_STATUS_OK from the server
and manually check the signature of the servers response.
This is needed as the response might be signed with the krb5 acceptor subkey,
which comes within the server response.
With NTLMSSP this happens for the session setup:
request1 => BSRSPYL seqnum: 0
response1 => BSRSPYL seqnum: 0
request2 => BSRSPYL seqnum: 0
response2 => <SIGNATURE> seqnum: 1
and with krb5:
request1 => BSRSPYL seqnum: 0
response1 => <SIGNATURE> seqnum: 1
metze
Stefan Metzmacher [Tue, 23 Sep 2008 00:29:20 +0000 (02:29 +0200)]
libcli/raw: real signing starts at seqnumber 2
metze
Stefan Metzmacher [Tue, 9 Sep 2008 15:56:11 +0000 (17:56 +0200)]
libcli/raw: in SMB_SIGNING_ENGINE_BSRSPYL state it's ok to accept any signature
Even if signing is mandatory.
With NTLMSSP this happens for the session setup:
request1 => BSRSPYL
response1 => BSRSPYL
request2 => BSRSPYL
response2 => <SIGNATURE>
and with krb5:
request1 => BSRSPYL
response1 => <SIGNATURE>
metze
Stefan Metzmacher [Tue, 9 Sep 2008 15:54:13 +0000 (17:54 +0200)]
libcli/raw: give the caller the chance to do the signing checks on its own.
metze
Stefan Metzmacher [Tue, 9 Sep 2008 15:50:30 +0000 (17:50 +0200)]
libcli/raw: give the caller the chance to prevent the talloc_free(req) in the _recv functions
metze
Stefan Metzmacher [Thu, 11 Sep 2008 04:47:06 +0000 (06:47 +0200)]
gensec_krb5: only give away the session key, when the authentication is done
metze
Stefan Metzmacher [Thu, 11 Sep 2008 04:46:43 +0000 (06:46 +0200)]
gensec_gssapi: only give away the session key, when the authentication is done
metze
Stefan Metzmacher [Thu, 11 Sep 2008 04:40:26 +0000 (06:40 +0200)]
ntlmssp: only give away the session key, when the authentication is done
metze
Stefan Metzmacher [Tue, 23 Sep 2008 00:14:26 +0000 (02:14 +0200)]
RPC-PAC: loop in gensec_update() untill the server side is ready
metze
Günther Deschner [Tue, 23 Sep 2008 08:04:17 +0000 (10:04 +0200)]
s3-nbt: remove old samba3 libcli/nbt copy.
Guenther
Michael Adam [Sun, 21 Sep 2008 00:07:43 +0000 (02:07 +0200)]
[s3]winbindd_group: don't list the domain twice when expanding internal aliases
Before this, "getent group builtin\\administrators" expanded
domain group members in the form DOMAIN\domain\user.
Michael
Michael Adam [Sun, 21 Sep 2008 00:06:44 +0000 (02:06 +0200)]
[s3]winbindd_group: sanely handle NULL domain in add_member().
Michael
Michael Adam [Mon, 22 Sep 2008 08:39:37 +0000 (10:39 +0200)]
[s3]winbindd_ads: honour "winbind use default domain" in lookup_groupmem().
This fixes the output of "getent group" when "winbind use default domain = yes"
with security = ads.
Michael
Michael Adam [Sat, 20 Sep 2008 23:20:32 +0000 (01:20 +0200)]
[s3]winbindd_rpc: add domain prefix to username in lookup_groupmem().
This makes the output of "getent group" of a domain group show the
domain prefix with "security = domain".
Michael
Michael Adam [Mon, 22 Sep 2008 08:37:11 +0000 (10:37 +0200)]
[s3]winbindd_util: add fill_domain_username_talloc().
A talloc version of fill_domain_username().
Michael
Michael Adam [Mon, 22 Sep 2008 08:36:32 +0000 (10:36 +0200)]
[s3]winbindd_util: add prototype for fill_domain_username_talloc().
A talloc version of fill_domain_username().
Michael
Michael Adam [Mon, 22 Sep 2008 12:51:51 +0000 (14:51 +0200)]
[s3]winbindd: fix a comment typo
Michael
Michael Adam [Mon, 22 Sep 2008 08:34:57 +0000 (10:34 +0200)]
[s3]winbind_util: fix an implicit cast compile warning.
Michael
Günther Deschner [Tue, 23 Sep 2008 07:49:56 +0000 (09:49 +0200)]
s3-nbt: fix remaining callers of ndr_push/pull_struct_blob.
Guenther
Günther Deschner [Tue, 23 Sep 2008 06:34:22 +0000 (08:34 +0200)]
s3-nbt: use ../libcli/nbt helper.
Guenther
Günther Deschner [Tue, 23 Sep 2008 06:59:40 +0000 (08:59 +0200)]
s3: re-run make idl.
Guenther
Günther Deschner [Tue, 23 Sep 2008 06:59:19 +0000 (08:59 +0200)]
s3-nbt: refer to ../libcli/nbt in nbt.idl.
Guenther
Günther Deschner [Tue, 23 Sep 2008 06:06:33 +0000 (08:06 +0200)]
s4-nbt: use ../libcli/nbt
Guenther
Günther Deschner [Tue, 23 Sep 2008 04:58:17 +0000 (06:58 +0200)]
s4-nbt: move libcli/nbt up one level.
Guenther
Günther Deschner [Tue, 23 Sep 2008 07:34:03 +0000 (09:34 +0200)]
s4-nbt: merge some fixes from samba3 nbt helper.
Guenther
Günther Deschner [Tue, 23 Sep 2008 07:02:16 +0000 (09:02 +0200)]
s4-nbt: use private_data instead of private.
Guenther
Günther Deschner [Tue, 23 Sep 2008 06:09:37 +0000 (08:09 +0200)]
s3: use samba4 prototype for ndr_push/pull_struct_blob.
Guenther
Günther Deschner [Tue, 23 Sep 2008 06:58:37 +0000 (08:58 +0200)]
s3: re-run make idl.
Guenther
Günther Deschner [Tue, 23 Sep 2008 06:31:34 +0000 (08:31 +0200)]
s3-nbt: fix nbt.idl in order to use shared nbt helper.
Guenther
Günther Deschner [Tue, 23 Sep 2008 00:41:44 +0000 (02:41 +0200)]
s3-charset: add smb_iconv_convenience.
Guenther
Günther Deschner [Mon, 22 Sep 2008 20:22:04 +0000 (22:22 +0200)]
s4-nbt: remove unrequired include.
Guenther
Günther Deschner [Tue, 23 Sep 2008 06:32:42 +0000 (08:32 +0200)]
s4: add talloc_strdup_upper.
Guenther
Andrew Tridgell [Tue, 23 Sep 2008 06:45:55 +0000 (16:45 +1000)]
test setinfo FULL_EA_INFORMATION in gentest
Andrew Tridgell [Tue, 23 Sep 2008 06:45:10 +0000 (16:45 +1000)]
added FULL_EA_INFORMATION setea call
Andrew Tridgell [Tue, 23 Sep 2008 05:20:24 +0000 (15:20 +1000)]
fixed a memory error in change notify handling in gentest
Andrew Tridgell [Tue, 23 Sep 2008 05:16:46 +0000 (15:16 +1000)]
fixed readonly handling in deltree
Andrew Bartlett [Tue, 23 Sep 2008 04:48:49 +0000 (21:48 -0700)]
Merge branch 'master' of ssh://git.samba.org/data/git/samba into abartlet-devel
Andrew Tridgell [Tue, 23 Sep 2008 02:09:56 +0000 (12:09 +1000)]
added some debug code
Andrew Bartlett [Tue, 23 Sep 2008 00:50:43 +0000 (17:50 -0700)]
Remove unused parameter from decode_pw_buffer and fail on invalid
UTF-16 input
The input checking is important, as otherwise we could set the wrong
password.
Andrew Bartlett
Andrew Bartlett [Tue, 23 Sep 2008 00:24:57 +0000 (17:24 -0700)]
Remove unused variable
Volker Lendecke [Mon, 22 Sep 2008 23:24:56 +0000 (01:24 +0200)]
Fix make pch in the merged build
Andrew Bartlett [Mon, 22 Sep 2008 23:32:04 +0000 (16:32 -0700)]
Explain why we use signing for DCs, but not file servers
Gerald (Jerry) Carter [Fri, 19 Sep 2008 17:27:15 +0000 (12:27 -0500)]
idmap_adex: Add new idmap plugin for support RFC2307 enabled AD forests.
The adex idmap/nss_info plugin is an adapation of the Likewise
Enterprise plugin with support for OU based cells removed
(since the Windows pieces to manage the cells are not available).
This plugin supports
* The RFC2307 schema for users and groups.
* Connections to trusted domains
* Global catalog searches
* Cross forest trusts
* User and group aliases
Prerequiste: Add the following attributes to the Partial Attribute
Set in global catalog:
* uidNumber
* uid
* gidNumber
A basic config using the current trunk code would look like
[global]
idmap backend = adex
idmap uid = 10000 - 19999
idmap gid = 20000 - 29999
idmap config US:backend = adex
idmap config US:range = 20000 - 29999
winbind nss info = adex
winbind normalize names = yes
winbind refresh tickets = yes
template homedir = /home/%D/%U
template shell = /bin/bash
Andrew Bartlett [Mon, 22 Sep 2008 22:37:16 +0000 (15:37 -0700)]
Test re-setting the challenge after an auth3 in RPC-NETLOGON
Andrew Bartlett [Mon, 22 Sep 2008 21:23:40 +0000 (14:23 -0700)]
Merge branch 'master' of ssh://git.samba.org/data/git/samba into abartlet-devel
Andrew Bartlett [Mon, 22 Sep 2008 21:23:22 +0000 (14:23 -0700)]
This torture test and skipping of the server-side check was bogus.
The IDL is declared to force the MessageType to 3 on output, so we
instead checked the same thing 255 times...
Andrew Bartlett
Günther Deschner [Tue, 16 Sep 2008 14:04:43 +0000 (16:04 +0200)]
re-run make idl.
Guenther
Günther Deschner [Tue, 16 Sep 2008 14:04:31 +0000 (16:04 +0200)]
netapi: add more fields to USER_INFO_X.
Guenther
Günther Deschner [Fri, 12 Sep 2008 15:24:37 +0000 (17:24 +0200)]
netapi: add NetFile testsuite.
Guenther
Günther Deschner [Mon, 22 Sep 2008 17:31:44 +0000 (19:31 +0200)]
netapi: fix case statement in example NetUserSetModals code.
Guenther
Stefan Metzmacher [Mon, 22 Sep 2008 16:15:24 +0000 (18:15 +0200)]
s4: allways initialize the process model before it's used
metze
Karolin Seeger [Mon, 22 Sep 2008 15:57:59 +0000 (08:57 -0700)]
create-tarball: Adapt script to changed directory structure.
Karolin
Karolin Seeger [Mon, 22 Sep 2008 15:55:01 +0000 (08:55 -0700)]
create-tarball: Don't remove /*.
These strings do appear several times. Extend the grep pattern to
get the right string only. This avoids the removal of /*!
Karolin
Karolin Seeger [Mon, 22 Sep 2008 15:53:40 +0000 (08:53 -0700)]
create-tarball: Remove trailing/leading whitespaces.
Karolin
Stefan Metzmacher [Mon, 22 Sep 2008 01:57:31 +0000 (03:57 +0200)]
process incoming connections and fork a samba3 in inetd mode
Stefan Metzmacher [Sun, 21 Sep 2008 22:21:26 +0000 (00:21 +0200)]
s3: link @tallocdir@/testsuite_main.o into talloctort
metze
Stefan Metzmacher [Sun, 21 Sep 2008 22:20:39 +0000 (00:20 +0200)]
lib/talloc: move main() out of testsuite.c
metze
Stefan Metzmacher [Sun, 21 Sep 2008 21:46:10 +0000 (23:46 +0200)]
s3: link libreplace/test/main.c into replacetort
metze
Stefan Metzmacher [Sun, 21 Sep 2008 21:59:58 +0000 (23:59 +0200)]
libreplace: move main() out of testsuite.c
metze
Jelmer Vernooij [Sun, 21 Sep 2008 21:57:59 +0000 (23:57 +0200)]
Fix merged build.
Matthias Dieter Wallnöfer [Fri, 19 Sep 2008 14:03:20 +0000 (16:03 +0200)]
Torture suite: Revert some changes because they aren't necessary
This reverts some changes made by me because they aren't necessary. The "ZERO_STRUCT"'s remain in.
Matthias Dieter Wallnöfer [Fri, 19 Sep 2008 13:53:02 +0000 (15:53 +0200)]
Registry client: Remove all conversion helper functions
Matthias Dieter Wallnöfer [Fri, 19 Sep 2008 12:35:35 +0000 (14:35 +0200)]
Registry client library: Remove two elementar conversion functions
Matthias Dieter Wallnöfer [Fri, 19 Sep 2008 10:57:26 +0000 (12:57 +0200)]
Revert "Registry tool "regtree": Removing an error message"
This reverts commit
f37a57fa366e2b0d77f9c1bd232d42a0f2cceb52.
Matthias Dieter Wallnöfer [Mon, 15 Sep 2008 19:09:32 +0000 (21:09 +0200)]
Torture suite: Fixes the tests to not segfault again SAMBA 4 registry server
Matthias Dieter Wallnöfer [Mon, 15 Sep 2008 17:00:07 +0000 (19:00 +0200)]
Registry client: Fixup the "patchfile" library
Rework and enhance the "patchfile" library (used in "regdiff")
Matthias Dieter Wallnöfer [Mon, 15 Sep 2008 16:59:17 +0000 (18:59 +0200)]
Registry client: Implement the "winreg_QueryValue" call
This is needed for the registry patchfile library
Matthias Dieter Wallnöfer [Mon, 15 Sep 2008 11:04:40 +0000 (13:04 +0200)]
Registry client library: Use "talloc_zero" to avoid uninitialized values
Matthias Dieter Wallnöfer [Sun, 14 Sep 2008 01:29:07 +0000 (03:29 +0200)]
Registry tool "regdiff": Add the event context for remote connections
Adds the event context for remote connections to make the tool working again.
Matthias Dieter Wallnöfer [Sat, 13 Sep 2008 13:02:56 +0000 (15:02 +0200)]
Registry client library: Fixes the creation of new keys
Giving the right permissions
Matthias Dieter Wallnöfer [Sat, 13 Sep 2008 12:26:08 +0000 (14:26 +0200)]
Registry client library: Fix some buffer problems
This buffer maximum values are used in Windows (2000), so I take them also for SAMBA 4.
Matthias Dieter Wallnöfer [Sat, 13 Sep 2008 10:30:47 +0000 (12:30 +0200)]
Registry client library: Various fixup's and corrections
I reverted the change with the string conversions because they aren't needed and included
many fixup's and improvements in the code. We should be able now to connect to a Windows WINREG server
without a problem.
Matthias Dieter Wallnöfer [Sat, 13 Sep 2008 10:26:03 +0000 (12:26 +0200)]
Registry tools "regshell" and "regtree": Small fixup's
I fixed up my fault regarding the handling of the default value (if it doesn't exist
it hasn't the index number zero and you get immediately the subvalues). Then I corrected an error in regshell to find the right registry context.
Matthias Dieter Wallnöfer [Fri, 12 Sep 2008 18:26:13 +0000 (20:26 +0200)]
Registry client: Various cleanups and charset conversions
This patch contains various changes to the "rpc.c" file to clean it up and introduces the right string charset conversions (UNIX <-> UTF16).
Matthias Dieter Wallnöfer [Fri, 12 Sep 2008 15:02:30 +0000 (17:02 +0200)]
Registry tool "regshell": Handle the default attribute in the right way
This commit introduces the default attribute in "regshell"
Matthias Dieter Wallnöfer [Fri, 12 Sep 2008 14:57:22 +0000 (16:57 +0200)]
Registry tool "regtree": Removing an error message
The error message "Error occurred while fetching values" doesn't seem very useful, so remove it.
Matthias Dieter Wallnöfer [Fri, 12 Sep 2008 14:41:49 +0000 (16:41 +0200)]
Registry tool "regtree": Handle the default attribute in the right way
This commit introduces the default attribute in "regtree"
Jelmer Vernooij [Sun, 21 Sep 2008 21:11:30 +0000 (23:11 +0200)]
Merge branch 'master' of ssh://git.samba.org/data/git/samba
Jelmer Vernooij [Sun, 21 Sep 2008 21:09:56 +0000 (23:09 +0200)]
Avoid printing characters when in immediate mode.
Volker Lendecke [Sun, 21 Sep 2008 18:39:17 +0000 (20:39 +0200)]
Attempt to fix bug 5778
Jeff, Steve, please check!
Günther Deschner [Sun, 21 Sep 2008 16:57:26 +0000 (18:57 +0200)]
netlogon: move password change code out to rpccli_netlogon_set_trust_password.
Guenther
Günther Deschner [Sat, 20 Sep 2008 16:20:29 +0000 (18:20 +0200)]
netlogon: refactor just_change_the_password a bit.
Guenther
Günther Deschner [Sat, 20 Sep 2008 15:01:20 +0000 (17:01 +0200)]
netlogon: use init_netr_CryptPassword in "just_change_the_password"
Guenther
Günther Deschner [Sat, 20 Sep 2008 15:00:30 +0000 (17:00 +0200)]
netlogon: add init_netr_CryptPassword.
Guenther
Günther Deschner [Sat, 20 Sep 2008 15:02:00 +0000 (17:02 +0200)]
build: rebuild only changed IDL files.
Let"s see how this works now.
Guenther
Jelmer Vernooij [Sun, 21 Sep 2008 20:26:44 +0000 (22:26 +0200)]
Print status (one character per test) when not running selftest with --immediate.
Jelmer Vernooij [Sun, 21 Sep 2008 19:32:40 +0000 (21:32 +0200)]
Revert "Rename smbd -> samba."
This reverts commit
0e9008be35a5b334bd65e6417193d4b8f27bdc36.
Jelmer Vernooij [Sun, 21 Sep 2008 19:29:13 +0000 (21:29 +0200)]
Use absolute paths for wbinfo rather than relying on it being in PATH.
Jelmer Vernooij [Sun, 21 Sep 2008 19:26:40 +0000 (21:26 +0200)]
Rename smbd -> samba.
Jelmer Vernooij [Sun, 21 Sep 2008 18:08:00 +0000 (20:08 +0200)]
Merge branch 'master' of ssh://git.samba.org/data/git/samba into wsgi
Jelmer Vernooij [Sun, 21 Sep 2008 18:06:18 +0000 (20:06 +0200)]
Allow SWAT to be run outside of smbd.
Jelmer Vernooij [Sun, 21 Sep 2008 18:01:00 +0000 (20:01 +0200)]
Support POST requests again, provide more variables in environment.
Jelmer Vernooij [Sun, 21 Sep 2008 18:00:44 +0000 (20:00 +0200)]
Make standard SWAT script print received headers.
Jelmer Vernooij [Sun, 21 Sep 2008 17:03:12 +0000 (19:03 +0200)]
First GET request works. SWAT now displays a Hello world message.
Jelmer Vernooij [Sun, 21 Sep 2008 16:45:09 +0000 (18:45 +0200)]
Properly call WSGI request handler when requests come in.
Volker Lendecke [Sun, 21 Sep 2008 16:09:55 +0000 (18:09 +0200)]
Fix the build -- appweb is no more