dce/rpc "client" api
Elrond
elrond at samba.org
Tue Aug 22 16:43:03 GMT 2000
On Tue, Aug 22, 2000 at 10:26:57PM +1000, Andrew Tridgell wrote:
[...]
> > I would like to know if the intention is to:
> > - drop all ntdom code,
> > - only implement the portion that allows file/printer sharing,
> > - implement all ntdom code in place in TNG.
>
> Sander, I know that you are Luke are deaply irritated that I have not
> just taken all your code as-is and put it into a production release of
> Samba. If you think for one moment that I don't want a production
> release with the ability to be a good domain controller then you are
> mistaken. It is my code too, you may not remember but I did quite a
> bit of early coding and bug fixing on the ntdom code and I have put a
> lot of effort into building appropriate pieces of infrastructure code
> etc.
Okay, since I'm also quite heavily involved with TNG, I
have to say something here.
I wasn't irritated, that you didn't take "our" code and
dropped it into HEAD.
This has several reasons:
- Dropping in the current code (especialy the server-side,
non-(un)marshalling code) would introduce a big security
hole into HEAD. This security hole does not exist in TNG,
because it uses seperate daemons.
This security hole is well known (at least to me) and I
have some ideas for fixing them. (All on my "what I want
to do next in TNG"-list)
- Since HEAD is more related to release/production-code, I
respect/expect code-reviews, so simple drop-in isn't,
what I expect.
- There's a whole bunch of code in TNG, that I currently
don't like or which should be enhanced (including the
above mentioned security issue). And I would like this
code to be "fixed" before it gets into HEAD.
> When Luke first proposed his separate daemon architecture to me I told
> him that I didn't like it and that I would not accept it. Since then I
> have had the argument with him perhaps a dozen times on the phone, in
> person and in email. Each time going over the same ground and each
> time having to re-explain my reasons. Because I respect the effort he
> has put into this I have spent more time explaining things to him than
> I think I have ever put into explaining a coding decision before in my
> life.
>
> I think the correct approach now is to:
>
> 1) implement the shared object loading scheme I outlined in my email
> yesterday
I have to note here, that I didn't get your mail about this
yesterday. I haven't found it in the archive either. Sander
was so kind to forward a copy.
I will write a seperate reply to it.
[... stuff about autogenerated code and sidlc ...]
We're currently planing some backend-library issues for
sidlc or more precisely for dce/rpc... maybe something to
show up on sidlc at samba.org.
> Of course, you guys don't have to go along with what I say. You are
> very welcome to do your own releases of the TNG code (as you have
> done) and thus fill the gap that so obviously needs
> filling. Alternatively you can do like Luke has done with Cliffs and
> start a new project. Either way I will try to support you and offer
> advice if you want it.
Big thanks for that support! :-)
> If, however, you want code to become part of the production releases
> of Samba that Jeremy and I do then _please_ have these arguments
> before the code is written. It is much less painful for everyone that
> way. It has happened far too often that code has been thrown away
> because of stupid things that could so easily have been prevented.
That's partly, what this discussion currently is all about.
> Cheers, Tridge
Elrond
More information about the samba-technical
mailing list