sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-12 09:18:10 +03:00
Code
58,491 Commits 60 Branches 1,145 Tags 452 MiB
0d5d7f5847
Commit Graph

2445 Commits

Author SHA1 Message Date
Günther Deschner
0992a9d987 s4-netlogon: merge netr_DsrGetDcSiteCoverageW from s3 idl. 
Guenther
 2008-10-28 23:40:51 +01:00
Günther Deschner
bb3836a67f s4-smbtorture: fix test_LogonUasLogon. 
Guenther
 2008-10-28 23:40:44 +01:00
Günther Deschner
98f8f89164 s4-netlogon: merge misc stuff. 
Guenther
 2008-10-28 23:37:40 +01:00
Günther Deschner
d04131c8ec idl: share lsa.idl between s3 and s4. 
Guenther
 2008-10-27 19:33:23 +01:00
Günther Deschner
95231eae39 s4-lsa: merge lsa_QueryInfoPolicy/{2} from s3 lsa idl. 
Guenther
 2008-10-27 19:33:23 +01:00
Günther Deschner
92f1c0d156 s4-lsa: merge lsa_LookupNames/{2,3,4} from s3 lsa idl. 
Guenther
 2008-10-27 19:33:23 +01:00
Günther Deschner
992c03a192 s4-lsa: merge lsa_LookupSids/{2,3} from s3 lsa idl. 
Guenther
 2008-10-27 19:33:23 +01:00
Günther Deschner
8e622f57e7 s4-lsa: merge lsa_QueryDomainInformationPolicy from s3 lsa idl. 
Guenther
 2008-10-27 19:33:23 +01:00
Günther Deschner
ea88686419 s4-lsa: merge lsa_QueryTrustedDomainInfoByName from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
36725ec0b4 s4-lsa: merge lsa_QueryTrustedDomainInfo from s3 idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
7c3d1dd8a9 s4-lsa: merge lsa_QueryTrustedDomainInfoBySid from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
8bcc939a8c s4-lsa: merge lsa_LookupPrivName from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
ea6b4865ea s4-lsa: merge lsa_EnumPrivsAccount from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
95c69caef6 s4-lsa: merge lsa_LookupPrivDisplayName from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
6a2dabe1a7 s4-lsa: merge lsa_GetUserName from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
6131c0d888 s4-lsa: merge lsa_EnumTrustDom from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
7e19dd6a0a s4-lsa: merge lsa_EnumAccounts from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
fb38705e42 s4-lsa: merge lsa_EnumPrivs from s3 lsa idl. 
Guenther
 2008-10-27 19:33:22 +01:00
Günther Deschner
4ee7b58e0a s4-lsa: merge lsa_QuerySecurity from s3 lsa idl. 
Guenther
 2008-10-27 19:33:21 +01:00
Jelmer Vernooij
e72e2773c4 Remove another use of global_loadparm. 2008-10-24 18:15:09 +02:00
Jelmer Vernooij
23302413b3 Remove unused include param/param.h. 2008-10-24 16:37:56 +02:00
Jelmer Vernooij
37d885c51a Remove iconv_convenience argument from convert_string{,talloc}() but 
make them wrappers around convert_string{,talloc}_convenience().
 2008-10-24 14:26:46 +02:00
Jelmer Vernooij
8b06312f7e Eliminate another instance of global_loadparm. 2008-10-24 13:13:27 +02:00
Günther Deschner
bb36f3a342 idl: merge from s4 lsa.idl to s3. 
Guenther
 2008-10-20 22:09:07 +02:00
Jelmer Vernooij
6d2d09348f Sync syntax of srvsvc.idl with samba3. 2008-10-20 19:50:49 +02:00
Jelmer Vernooij
41b02b7ac0 Move orpc to top-level directory. 2008-10-20 19:20:12 +02:00
Jelmer Vernooij
dc3828f06c Move WMI support code to top-level. 2008-10-20 19:14:47 +02:00
Jelmer Vernooij
87ec1d2532 Make sure prototypes are always included, make some functions static and 
remove some unused functions.
 2008-10-20 18:59:51 +02:00
Jelmer Vernooij
66b1c8b61a Import comments about opcodes from Samba 3. 2008-10-20 17:16:04 +02:00
Jelmer Vernooij
e0905c3090 Use tables in Samba 3 ndrdump. 2008-10-20 13:19:39 +02:00
Jelmer Vernooij
db90d9ad16 Also move wireshark conformance file. 2008-10-20 12:20:53 +02:00
Jelmer Vernooij
d78f3be238 Merge branch 'master' of ssh://git.samba.org/data/git/samba into crypt 2008-10-20 12:19:57 +02:00
Jelmer Vernooij
5b52964b15 Share winreg.idl. 2008-10-20 11:53:20 +02:00
Günther Deschner
fc8fadf1e9 idl: finally share krb5_pac.idl. 
Guenther
 2008-10-20 11:11:22 +02:00
Matthias Dieter Wallnöfer
b789ff950f LSA Patch for User Manager 
New (major) patch
=================
- Enhances the "lsa.idl" file in the sense that it adds more values to
"PolicyInformation" to improve the "lsa_QueryInfoPolicy*" calls.
- Adds a minimal implementation for "AuditEvents" (also lsa_QueryInfoPolicy*
calls) to enable the "Audit" option in the "User Manager for Domains" (at least
readable).
- Adds to the "lsa.idl" file the system access mode flags needed for the calls
"lsa_*SystemAccessAccount".
- Fill in the "lsa_GetSystemAccessAccount" for enabling the "User Rights"
option in the "User Manager for Domains" (at least readable).
- Merge the two similar torture tests of the "lsa_QueryInfoPolicy*" calls in
one using "if"'s for a few separations.
- Add a torture test for "lsa_GetSystemAccessAccount".
- Some cosmetic-only changes (unifications) in output strings in the "LSA"
torture test.

The work has been done using the Microsoft WSPP docs.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2008-10-20 20:07:09 +11:00
Günther Deschner
f34b6bfe34 idl: share drsblobs idl. 
Guenther
 2008-10-18 23:54:49 +02:00
Günther Deschner
80af41b5ea drsuapi: build new merged drsuapi idl and helpers. 
Guenther
 2008-10-18 23:25:58 +02:00
Günther Deschner
d413e1f40a drsuapi: share drsuapi idl and helper code. 
Guenther
 2008-10-18 23:25:48 +02:00
Günther Deschner
dd49f7483b s4-drsuapi: merge drsuapi_DsGetNCChanges from s3 drsuapi idl. 
Guenther
 2008-10-18 23:06:39 +02:00
Günther Deschner
6ddaf5f160 s4-drsuapi: merge drsuapi_DsCrackNames from s3 drsuapi idl. 
Guenther
 2008-10-18 23:06:31 +02:00
Günther Deschner
ca84c406d3 s4-drsuapi: merge drsuapi_DsGetDomainControllerInfo from s3 drsuapi idl. 
Guenther
 2008-10-18 23:06:24 +02:00
Günther Deschner
32a1d55797 s4-drsuapi: merge drsuapi_DsWriteAccountSpn from s3 drsuapi idl. 
Guenther
 2008-10-18 23:06:17 +02:00
Günther Deschner
b684efacf5 s4-drsuapi: merge drsuapi_DsRemoveDSServer from s3 drsuapi idl. 
Guenther
 2008-10-18 23:06:07 +02:00
Günther Deschner
bc1d39483c s4-drsuapi: merge drsuapi_DsAddEntry from s3 drsuapi idl. 
Guenther
 2008-10-18 23:05:59 +02:00
Jelmer Vernooij
6a89b59ca6 Add TALLOC_CTX pointer to strhex_to_data_blob for consistency with Samba 
3.
 2008-10-18 18:09:04 +02:00
Günther Deschner
e941e4ad52 s4: merge from s3 drsuapi.idl. 
Guenther
 2008-10-17 10:54:01 +02:00
Andrew Bartlett
c35b0d9ab5 Merge branch 'master' of ssh://git.samba.org/data/git/samba into master-devel 2008-10-17 15:57:07 +11:00
Günther Deschner
80f9029aae s4-idl: merge drsuapi.idl from s3. 
Guenther
 2008-10-16 11:33:33 +02:00
Andrew Bartlett
7c88ea8aad Create a 'straight paper path' for UTF16 passwords. 
This uses a virtual attribute 'clearTextPassword' (name chosen to
match references in MS-SAMR) that contains the length-limited blob
containing an allegidly UTF16 password.  This ensures we do no
validation or filtering of the password before we get a chance to MD4
it.  We can then do the required munging into UTF8, and in future
implement the rules Microsoft has provided us with for invalid inputs.

All layers in the process now deal with the strings as length-limited
inputs, incluing the krb5 string2key calls.

This commit also includes a small change to samdb_result_passwords()
to ensure that LM passwords are not returned to the application logic
if LM authentication is disabled.

The objectClass module has been modified to allow the
clearTextPassword attribute to pass down the stack.

Andrew Bartlett
 2008-10-16 12:48:16 +11:00
Günther Deschner
d242491488 idl: finally fully share nbt.idl in s3 and s4. 
Guenther
 2008-10-15 21:44:39 +02:00
Günther Deschner
a1b7b6d5b4 idl: more lsa.idl merges. 
Guenther
 2008-10-15 20:46:35 +02:00
Günther Deschner
e561c9acd5 s4: merge from s3 lsa idl. 
Guenther
 2008-10-15 19:45:28 +02:00
Jelmer Vernooij
4c61745573 Merge branch 'master' of git://git.samba.org/samba 2008-10-15 17:48:25 +02:00
Günther Deschner
11ecd5acfd s4: merge from s3 samr.idl. 
Guenther
 2008-10-15 17:42:33 +02:00
Jelmer Vernooij
ada0e343b2 Sync parameter names with samba 3. 2008-10-15 17:38:51 +02:00
Jelmer Vernooij
fed4658c1b winreg.idl: Sync ref change from Samba 3. 2008-10-15 17:34:55 +02:00
Jelmer Vernooij
5390dc0d24 Share wkssvc.idl. 2008-10-15 16:48:53 +02:00
Jelmer Vernooij
85c36cb2cd Share eventlog.idl. 2008-10-15 16:37:27 +02:00
Jelmer Vernooij
5d408ccf83 Rename reboot -> do_reboot since the first is a reserved name on FreeBSD. 2008-10-15 16:25:06 +02:00
Jelmer Vernooij
ec63a6f5ad Merge branch 'master' of git://git.samba.org/samba 2008-10-15 16:16:01 +02:00
Günther Deschner
9b162bd3a9 idl: merge netlogon IDL between s3 and s4 wrt LogonSamLogon. 
Guenther
 2008-10-15 16:14:19 +02:00
Jelmer Vernooij
881b36f4cf Share initshutdown.idl. 2008-10-15 16:13:02 +02:00
Jelmer Vernooij
0c840bd8d2 Share xattr implementation. 2008-10-15 15:57:39 +02:00
Jelmer Vernooij
760dfa76d9 Share epmapper. 2008-10-15 15:31:49 +02:00
Günther Deschner
94d7e52dd8 idl: more netlogon merges between s3 and s4. 
Guenther
 2008-10-15 15:14:00 +02:00
Günther Deschner
714cde8bc1 s4-idl: merge netlogon bits from s3. 
Guenther
 2008-10-15 14:16:31 +02:00
Günther Deschner
5c8944a5b9 s4-idl: merge lsa_BinaryString from s3. 
Guenther
 2008-10-15 14:15:57 +02:00
Günther Deschner
f0fd834141 share ntsvcs.idl. 
Guenther
 2008-10-15 12:03:12 +02:00
Günther Deschner
fe46368e09 move svcctl to main idl directory. 
Guenther
 2008-10-15 11:37:42 +02:00
Jelmer Vernooij
aaa3e0425d Fix includes. 2008-10-15 02:52:10 +02:00
Jelmer Vernooij
4695504a6c Share security.idl. 2008-10-15 02:33:16 +02:00
Jelmer Vernooij
f75b460814 Share misc.idl. 2008-10-15 02:08:24 +02:00
Jelmer Vernooij
4f6a4b5510 Share idl_types.h. 2008-10-15 01:53:09 +02:00
Jelmer Vernooij
45f97c4614 Move shared DCE/RPC IDL files to root IDL dir. 2008-10-15 01:23:36 +02:00
Jelmer Vernooij
7f24027e02 Allow specifying the exact IDL files to build. 2008-10-15 01:15:58 +02:00
Jelmer Vernooij
95a86edd97 Fix installation of libndr.h 2008-10-15 01:11:18 +02:00
Jelmer Vernooij
0132423a09 Share libndr.h between Samba 3 and Samba 4. 2008-10-15 00:35:13 +02:00
Jelmer Vernooij
5198fb6e19 Share ndr_krb5pac implementation. 2008-10-14 23:52:20 +02:00
Jelmer Vernooij
f02a68a89f Share ndr_compression.c. 2008-10-14 23:46:34 +02:00
Jelmer Vernooij
d940012dc8 Move ndr pkg-config file to top-level. 2008-10-14 16:23:46 +02:00
Jelmer Vernooij
a9d8ed748e Sync with Samba 3. 2008-10-14 15:43:04 +02:00
Jelmer Vernooij
2049cfe743 Share ndr.c implementation. 2008-10-13 16:09:48 +02:00
Jelmer Vernooij
2fddd2e2d5 Share ndrdump implementation. 2008-10-13 15:58:45 +02:00
Jelmer Vernooij
6d02f0805a Import warning fixes from Samba 3 into libndr, sync more libndr code. 2008-10-13 15:33:40 +02:00
Jelmer Vernooij
58f844ab54 Share uuid implementations. 2008-10-13 15:23:35 +02:00
Jelmer Vernooij
8cae7a5bab Share ndr_misc implementations. 2008-10-13 15:22:27 +02:00
Jelmer Vernooij
390d37187a Share ndr_basic implementation. 2008-10-13 15:20:10 +02:00
Jelmer Vernooij
5ae73c67b5 Import warning fixes from Samba 3. 2008-10-13 15:17:41 +02:00
Jelmer Vernooij
bf768aa1ec Import debug macros from Samba 3's libndr. 2008-10-13 14:30:41 +02:00
Jelmer Vernooij
3994c42f19 Fix number of arguments for file_load() functions. 2008-10-12 19:46:38 +02:00
Jelmer Vernooij
9f2ed1e00f Share RPC binding string utility functions. 2008-10-12 19:05:46 +02:00
Jelmer Vernooij
9565999755 Fix include paths to new location of libutil. 2008-10-11 21:31:42 +02:00
Jelmer Vernooij
caa4e42860 Move lib/util from source4 to top-level libutil. 
Conflicts:

	source4/Makefile
 2008-10-11 21:05:38 +02:00
Andrew Bartlett
8e1c0470d7 Add in secure channel type used by AD trusts 2008-10-06 14:28:25 -07:00
Andrew Bartlett
8cdb3ebe27 Clarify use of manual parsers in trustInOutBlob (drsblobs.idl) 2008-10-06 14:28:25 -07:00
Andrew Bartlett
8256717c76 Implement 'type unknown' names in the CrackNames code. 
This guesses the type by running each of the possible options.

Andrew Bartlett
 2008-10-06 14:28:24 -07:00
Andrew Tridgell
ba5ef49f83 updated the LSA and NETLOGON servers with fixes resulting from the AD 
plugfest in Redmond
 2008-10-03 17:52:59 -07:00
Andrew Tridgell
23ec448f83 Merge commit 'master/master' 2008-10-03 12:23:00 -07:00
Stefan Metzmacher
3c9f3c32d1 s4:drsuapi.idl: fix some fields in drsuapi_DsRemoveDSServer() 
metze
 2008-10-02 12:20:59 +02:00
Andrew Tridgell
69fe3a5ddd fixed a number of places in our LSA server where we should return the 
sid/name array even when all are unmapped. If we don't fill in the
array then the windows client runtime crashes
 2008-09-30 13:42:30 -07:00
Andrew Tridgell
f84093df86 Merge branch 'master' of ssh://git.samba.org/data/git/samba 2008-09-30 13:02:09 -07:00
Jelmer Vernooij
ae38514534 Merge branch 'master' of ssh://git.samba.org/data/git/samba 2008-09-30 14:57:51 +02:00
Stefan Metzmacher
394f24b374 s4:drsblob: fix the build 
metze
 2008-09-30 09:05:45 +02:00
Andrew Bartlett
64195b72be Fix parsing of the trust passwords in LSA CreateTrustedDomainEx* 2008-09-29 22:34:35 -07:00
Stefan Metzmacher
eb1de4f0ed s4:librpc/rpc: correctly sign or seal rpc request with an object guid 
metze
 2008-09-30 06:47:23 +02:00
Stefan Metzmacher
abe0af4ab4 dcerpc.idl: add DCERPC_PFC_OFFSET 
metze
 2008-09-30 06:47:23 +02:00
Jelmer Vernooij
454122ab09 make sure dcerpc is always initialized. 2008-09-30 06:05:05 +02:00
Jelmer Vernooij
5bbd73c0ff Remove two more uses of global loadparm by remember required 
details for secondary DCE/RPC connections.
 2008-09-30 04:01:47 +02:00
Jelmer Vernooij
181ee01da6 Pass session options around; saves another use of global_loadparm. 2008-09-30 02:47:19 +02:00
Jelmer Vernooij
9de1472bd1 Remove redundant call. 2008-09-30 01:58:06 +02:00
Andrew Tridgell
c951a881da added new level for lsalookupnames2 2008-09-29 16:51:21 -07:00
Andrew Tridgell
750a848d0d added some more well known SIDs - thanks to the WSPP LSAT test suite 2008-09-29 16:01:07 -07:00
Günther Deschner
1147d05b47 s4-nbt: use moved libcli netlogon helpers. 
Guenther
 2008-09-23 23:18:00 +02:00
Günther Deschner
a1a92688ba s4-nbt: use ../libcli/nbt 
Guenther
 2008-09-23 09:37:24 +02:00
Jelmer Vernooij
163292f325 Merge branch 'master' of ssh://git.samba.org/data/git/samba into noejs 2008-09-19 16:26:00 +02:00
Jelmer Vernooij
9e8881414b Fix dependencies for nbt python module. 2008-09-19 13:00:11 +02:00
Jelmer Vernooij
c7d069a483 Fix path to ndrdump in blackbox test, don't start smb server for ndrdump 
tests.
 2008-09-19 12:07:03 +02:00
Jelmer Vernooij
729ffbae08 Merge branch 'master' of ssh://git.samba.org/data/git/samba into noejs 
Conflicts:
	source4/main.mk
 2008-09-18 20:29:05 +02:00
Jelmer Vernooij
a0e5f9194a Import ndr_syntax_id_equal from Samba 3. 2008-09-18 16:56:11 +02:00
Jelmer Vernooij
f5b134fb46 Sync more interface descriptions between Samba 3 and Samba 4. 2008-09-17 15:43:04 +02:00
Jelmer Vernooij
5975cbc260 Sync addition of [todo] attribute to Samba 3. 2008-09-17 15:07:24 +02:00
Jelmer Vernooij
94855cd692 Move common libraries from root to lib/. 2008-09-17 14:11:12 +02:00
Jelmer Vernooij
3e5ba883b3 Fix paths to subunit.sh 2008-09-16 18:39:08 +02:00
Jelmer Vernooij
aa09d8a75f Move ndrdump tests closer to the code they test. 2008-09-16 18:16:49 +02:00
Jelmer Vernooij
f594044d79 Remove remaining JavaScript code. 2008-09-16 18:09:34 +02:00
Jelmer Vernooij
5062d4c16a Fix more WMI compilation issues. 2008-09-16 07:22:53 +02:00
Jelmer Vernooij
db872cfe37 Remove more hand-written marshallers. 2008-09-16 05:48:29 +02:00
Jelmer Vernooij
e970efc721 Support restricted. 2008-09-16 04:35:34 +02:00
Jelmer Vernooij
e9d44b2e1c Import proper IDL for interface pointers. 2008-09-16 04:15:39 +02:00
Jelmer Vernooij
c212a65b65 More changes getting WMI code to compile, import manual marshalling. 2008-09-16 02:27:33 +02:00
Jelmer Vernooij
7e239a15b3 Revert accidental changes to lib/basic.mk. 2008-09-15 19:46:11 +02:00
Jelmer Vernooij
51fbc88fc2 Get code closer to compiling without errors, fix formatting, add docstrings. 2008-09-15 17:40:34 +02:00
Jelmer Vernooij
b1b97e39ad Add wikipedia link to WMI. 2008-09-15 17:40:21 +02:00
Jelmer Vernooij
f29220fe11 Allow base classes to be defined in other files. 2008-09-15 17:39:44 +02:00
Jelmer Vernooij
53c9df4da0 Redefine BSTR. 2008-09-15 17:39:40 +02:00
Jelmer Vernooij
feb0ab15b9 Redefine BSTR. 2008-09-15 17:39:39 +02:00
Jelmer Vernooij
9b21042938 Build (D)COM output again. 2008-09-15 17:37:06 +02:00
Jelmer Vernooij
947bde9562 Avoid using unions without discriminants. 2008-09-15 17:36:59 +02:00
Jelmer Vernooij
7b88d09d8d Reimport pidl support for COM. 2008-09-15 17:36:58 +02:00
Jelmer Vernooij
51a613acde Move WMI IDL into separate IDL file. 2008-09-15 17:36:54 +02:00
Andrzej Hajda
323b97f76d Import IDL for WMI. 2008-09-15 17:36:53 +02:00
Jelmer Vernooij
37a38eeff2 Reimport DCOM IDL. 2008-09-15 17:36:51 +02:00
Stefan Metzmacher
48f500edc0 librpc/rpc: don't send auth trailers in level connect 
Also ignore auth trailers in level connect on receive.

This fixes [krb5,connect] against windows.

TODO: maybe the gensec mech need to decide if signatures
      are needed in level connect.

metze
(This used to be commit eca0502b86)
 2008-09-13 20:37:12 +02:00
Stefan Metzmacher
73ebb58f2d client free credentials when not needed anymore 
(This used to be commit d982b69df6)
 2008-09-13 20:37:11 +02:00
Stefan Metzmacher
5b70daad7a drsblobs.idl: add parser for ExtendedErrorInfo see [MS-EERR]: ExtendedError Remote Data Structure 
metze
(This used to be commit 3edbbb12bd)
 2008-09-09 11:29:15 +02:00
Andrew Bartlett
3eb6f79a02 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into trusted-domains 
(This used to be commit a057c3ed9d)
 2008-09-08 12:54:13 +10:00
Andrew Bartlett
b3cee235f5 More work towards trusted domains support in Samba4's LSA 
Make 'lsar_CreateTrustedDomain' consistant with
lsar_CreateTrustedDomainEx{,2} by renaming handle -> policy_handle

Implement LSA server logic to create the cn=users trust account for
incoming trusts.

Andrew Bartlett
(This used to be commit d87b655e20)
 2008-09-08 10:55:34 +10:00
Stefan Metzmacher
1efff73068 ndr_compression: add XPRESS compression support 
metze
(This used to be commit 1432a96d37)
 2008-09-07 19:20:41 +02:00
Stefan Metzmacher
6e0335f864 ndr_compression: fix the build after lzxpress_decompress() prototype change 
metze
(This used to be commit b36056aac3)
 2008-09-07 19:18:48 +02:00
Stefan Metzmacher
253e222831 ndr_compression: change debug levels 
metze
(This used to be commit 83446e22dd)
 2008-09-06 16:16:40 +02:00
Stefan Metzmacher
3b8c11b4d9 ndr_compression: use deflateReset() together with defalteSetDictionary() 
metze
(This used to be commit dcc57512b0)
 2008-09-06 16:16:00 +02:00
Stefan Metzmacher
79cc502e5d ndr_compression: use inflateReset() and inflateSetDictionary() instead of inflateReset2() 
Now we can use an unmodified system zlib-1.2.3

metze
(This used to be commit d68e36b485)
 2008-09-06 16:15:39 +02:00
Andrew Bartlett
19fb3b0199 More work to implement LSA CreateTrustedDomainEx2 
We still don't get the format inside the encrypted blob correct
however.

Andrew Bartlett
(This used to be commit 99a3abda09)
 2008-09-04 16:06:38 +10:00
Andrew Bartlett
b936d0f3be Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-abartlet 
(This used to be commit 9590805bcb)
 2008-09-03 15:34:44 +10:00
Andrew Bartlett
a35263e1ab Implement NETLOGON PAC verfication on the server-side 
This is implemented by means of a message to the KDC, to avoid having
to link most of the KDC into netlogon.

Andrew Bartlett
(This used to be commit 82fcd7941f)
 2008-09-03 15:30:17 +10:00
Andrew Bartlett
279ca74493 Share IDL between the LSA and drsblob representations of trusts 
(This used to be commit e5520706c8)
 2008-09-02 11:31:17 +10:00
Andrew Bartlett
81dcc99e9a It turns out that the Netlogon PAC verification is encrypted. 
This test now passes against Win2k3, and a implementation in the
Samba4 server should follow shortly.

Andrew Bartlett
(This used to be commit c6b8ba893d)
 2008-08-29 15:06:30 +10:00
Andrew Bartlett
adb207e903 Further rework the RPC-PAC test. 
This would seem to match the documentation requirements for the PAC
verfication over NETLOGON, but I can't get Win2k3 to accept it so far.

Andrew Bartlett
(This used to be commit acfa87f341)
 2008-08-28 16:30:17 +10:00
Andrew Bartlett
960bd9df1f Add a test to explore Netlogon PAC validation 
However, I have still not figured out this protocol yet, and the docs
are rather unclear... :-(

Andrew Bartlett
(This used to be commit d878643071)
 2008-08-27 21:36:27 +10:00
Andrew Bartlett
f08786686c Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into pac-verify 
(This used to be commit b706708210)
 2008-08-26 16:26:08 +10:00
Andrew Bartlett
291b0dfb2a Update RPC-LSA to (almost) pass against Windows 2008. 
(This used to be commit a17cb558c2)
 2008-08-26 09:49:54 +10:00
Andrew Bartlett
9eacc3a8f3 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local 
(This used to be commit a555334db6)
 2008-08-25 08:27:06 +10:00
Andrew Tridgell
e80876ef9e Merge commit 'origin/v4-0-test' into v4-0-test 
(This used to be commit 93cf0b3c7e)
 2008-08-22 18:39:52 +10:00
Andrew Tridgell
0a27ff953e Merge branch 'abartlet-4-0-local' into v4-0-test 
(This used to be commit 469fac2669)
 2008-08-22 17:37:43 +10:00
Stefan Metzmacher
9d3add9b9f ndr_compression: implement mszip compression based on deflate() 
The output doesn't match the output from windows servers,
but it's a start...

metze
(This used to be commit 8a2f968827)
 2008-08-21 12:50:43 +02:00
Stefan Metzmacher
e3319bf849 drsuapi.idl: use hand written push functions for the compressed blobs 
This isn't really the final solution, as we compress the data twice,
but it works.

metze
(This used to be commit 6da1d41173)
 2008-08-21 12:48:48 +02:00
Stefan Metzmacher
2d2e7f6c48 ndr_compression: add common parts of ndr compression 
metze
(This used to be commit 9fe466f84a)
 2008-08-21 11:47:40 +02:00
Stefan Metzmacher
8acc7f7da7 krb5pac.idl: make use of subcontext(0xFFFFFC01) to handle the type Serialization header 
Now we should be able to handle bigendian PAC_LOGON_INFO buffers.

metze
(This used to be commit adbff0b0f9)
 2008-08-20 15:23:25 +02:00
Stefan Metzmacher
9d0db64d24 drsuapi.idl: readd type serialization headers to compressed DsGetNCChangesCtr* 
metze
(This used to be commit 4e6937816f)
 2008-08-20 15:22:05 +02:00
Stefan Metzmacher
fbeb6d7801 ndr_compression: remove the type serialization handling from the compression layer 
metze
(This used to be commit 70a7b1f6c2)
 2008-08-20 15:22:05 +02:00
Stefan Metzmacher
17fcc4118f ndr_compression: unify the common handling of mszip and xpress compression 
metze
(This used to be commit 925a2066ff)
 2008-08-20 15:22:04 +02:00
Stefan Metzmacher
f4e2f3f14c librpc/ndr: add support for Type Serialization Version 1 to subcontext 
We use the header size 0xFFFFFC01 as magic for constructed types.

See [MS-RPCE] 2.2.6 Type Serialization Version 1 for more details.

metze
(This used to be commit 98d3568f07)
 2008-08-20 15:22:04 +02:00
Matthias Dieter Wallnöfer
bec7a95207 Add extra bits to our 'netlogon' response in CLDAP and NBT. 
I've studied now the netlogon attribute from the CLDAP request and
have compared them with the table presented in the WSPP docs
(http://msdn.microsoft.com/en-us/library/cc201036.aspx). The first two
bytes seem to be correct, but that the third and fourth one is
completely clear with SAMBA 4.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
(This used to be commit 3024a43c25)
 2008-08-20 12:45:41 +10:00
Andrew Bartlett
5631ebaf78 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local 
(This used to be commit a6146cc14b)
 2008-08-19 14:54:30 +10:00
Stefan Metzmacher
4422617f7a librpc: don't build the old mszip decompression code 
metze
(This used to be commit f48dfd87ba)
 2008-08-18 15:34:54 +02:00
Stefan Metzmacher
6cd8e2bccf ndr_compression: use zlib's inflate() for decompression 
metze
(This used to be commit 25876fc4ab)
 2008-08-18 15:29:02 +02:00
Matthieu Suiche
ffa18ca49a librpc/ndr: add support for XPRESS decompression 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
(This used to be commit 6a9720c99d)
 2008-08-18 14:52:36 +02:00
Andrew Bartlett
ac503b140d Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local 
(This used to be commit b337369d5c)
 2008-08-15 07:58:03 +10:00
Andrew Tridgell
0eb1840994 cope with arbitrary unknown pac buffer types, so when MS adds 
a new one we don't break our server
(This used to be commit 5e08b28531)
 2008-08-14 15:27:48 +10:00
Andrew Bartlett
bf002d1173 Rework the trustAuthInOutBlob with the help of a hand parser. 
This produces a C structure that is sane, while still parsing the wire
blobs (as far as I can tell).

Andrew Bartlett
(This used to be commit b5dbe815e5)
 2008-08-13 16:16:59 +10:00
Andrew Bartlett
b5a3f45f64 Add GenericInfo level for SamLogon calls from the WSPP IDL. 
Andrew Bartlett
(This used to be commit ea58b650a8)
 2008-08-12 17:46:01 +10:00
Stefan Metzmacher
0965b22ec5 dcerpc.idl: remove used DCERPC_MAX_SIGN_SIZE 
metze
(This used to be commit 54b873e49f)
 2008-08-11 18:15:59 +02:00
Stefan Metzmacher
eb81a62d14 librpc/rpc: correct the chunk_size depending on the signature size 
metze
(This used to be commit 50eb0e7264)
 2008-08-11 18:15:59 +02:00
Stefan Metzmacher
802b4596fe dcerpc.idl: add DCERPC_AUTH_TRAILER_LENGTH 
metze
(This used to be commit ce36448d74)
 2008-08-11 18:15:58 +02:00
Stefan Metzmacher
8a01bdc99a drsuapi.idl: directly use mszip in level 2 
This fixes the push because the switch_level doesn't work
otherwise because the pointer is the same as for
the outer switch_level.

metze
(This used to be commit a4c81ee68c)
 2008-08-07 18:44:49 +02:00
Stefan Metzmacher
50f82609b5 librpc/rpc: add support DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN 
You can trigger it like this:

ncacn_ip_tcp:172.31.9.234[sign,hdrsign]

or

ncacn_ip_tcp:172.31.9.234[seal,hdrsign]

metze
(This used to be commit 54f1fca582)
 2008-08-07 15:40:20 +02:00
Stefan Metzmacher
b3573ce76e librpc/rpc: pass struct dcerpc_pipe to dcerpc_auth3() 
metze
(This used to be commit 60b3523da4)
 2008-08-07 15:40:20 +02:00
Stefan Metzmacher
b2023570c4 build: remove warning about missing generated include file 
metze
(This used to be commit 495d068df5)
 2008-08-01 21:10:39 +02:00
Andrew Bartlett
43d2329da6 Update to a working trustAuthIncoming and trustAuthOutgoing parser. 
This is based on the docs, as well as testing against a domain trust
in windows.

Clearly it needs to be more general - perhaps a non IDL parser?

Andrew Bartlett
(This used to be commit 816bb64a56)
 2008-07-31 23:17:20 +10:00
Andrew Bartlett
2b0ed1832a Update trustAuthInOutBlob in line with MS-ADTS 7.1.6.8.1 
(This used to be commit 26c2a34dec)
 2008-07-31 07:45:30 +10:00
Stefan Metzmacher
7a633ed96b dcerpc.idl: add DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN flag 
metze
(This used to be commit 131a1cfdc9)
 2008-07-26 21:44:30 +02:00
Stefan Metzmacher
8a86e3cb45 drsblobs.idl: unify the Primary:Kerberos and Primary:Kerberos-Newer-Keys structs 
metze
(This used to be commit 4b79a76785)
 2008-07-24 08:24:09 +02:00
Stefan Metzmacher
aaa29d2fa5 drsblobs.idl: give some unknowns a meaning 
metze
(This used to be commit 231e6f5ab2)
 2008-07-24 08:24:08 +02:00
Stefan Metzmacher
28a7e6f125 drsblobs.idl: add idl for Primary:Kerberos-Newer-Keys blob in supplementalCredentials 
metze
(This used to be commit 97b7901afb)
 2008-07-23 14:46:10 +02:00
Stefan Metzmacher
e3434f8995 drsblobs.idl: fix unknowns in package_PrimaryKerberos idl 
metze
(This used to be commit da9ceb2bf1)
 2008-07-23 14:46:09 +02:00
Stefan Metzmacher
ecdd13389f drsblobs.idl: fix idl for supplementalCredentialsSubBlob 
metze
(This used to be commit 24c5b10136)
 2008-07-23 14:46:08 +02:00
Stefan Metzmacher
bb12c78d44 drsblobs.idl: rename unknown1 -> reserved 
metze
(This used to be commit 9a70b2237d)
 2008-07-23 14:46:07 +02:00
Andrew Bartlett
768515f4ad The SMB session key must not be more than 16 bytes in SAMR (and 
presumably LSA).

Tests show that Vista requires the sesion key to be truncated for a
domain join.

Andrew Bartlett
(This used to be commit af629a3738)
 2008-07-23 16:19:54 +10:00
Michael Adam
e184b70768 drsuapi.idl: change the u1 field in DsBindInfo* to "pid". 
According to the WSPP docs, section 5.35,
this is the "process identifyer" of the client.
It is meant for informational and debugging purposes
only and its assignment is implementation specific.

Michael
(This used to be commit 579306eb5b)
 2008-07-22 15:33:26 +02:00
Michael Adam
901e764fa7 drsuapi.idl: add drsuapi_SupportedExtensionsExt bitfield. 
This knowledge is obtained from the wspp-docs (section 5.35).

Michael
(This used to be commit f5afb69504)
 2008-07-22 13:16:56 +02:00
Michael Adam
e7785a371a drsuapi.idl: the last 16 bytes in DsBindInfo48 ar the GUID of the config dn. 
This bit seems not to be documented in the WSPP docs.

Michael
(This used to be commit 705f79bd0a)
 2008-07-22 13:16:40 +02:00
Michael Adam
2abe5e9240 drsuapi.idl: add drsuapi_DsBindInfo48. 
This is necessary to make DsGetNcChanges work with win2008.

Michael
(This used to be commit dd278b069b)
 2008-07-22 13:16:31 +02:00
Andrew Bartlett
d626a26374 Rename structures to better match the names in the WSPP IDL. 
The 'comment' element in a number of domain structures is called
oem_information.  This was picked up actually because with OpenLDAP
doing the schema checking, it noticed that 'comment' was not a valid
attribute.

The rename tries to keep this consistant in both the LDB mappings and
IDL, so we don't make the same mistake in future.

This has no real schema impact, as this value isn't actually used for
anything, as 'comment' was not used in the provision.

Andrew Bartlett
(This used to be commit 65dc0d5365)
 2008-07-21 13:42:07 +10:00
Stefan Metzmacher
033683b00e drsuapi.idl: fix unknowns in drsuapi_DsGetNCChangesCtr* 
metze
(This used to be commit 9e99e59ca7)
 2008-07-16 12:16:55 +02:00
Stefan Metzmacher
e81feb77a2 drsuapi.idl: fix unknowns in drsuapi_DsReplicaObject* 
metze
(This used to be commit de2aed042d)
 2008-07-16 12:15:37 +02:00
Stefan Metzmacher
9827cf832f drsuapi.idl: fix unknowns in drsuapi_DsReplicaCursor[2] 
metze
(This used to be commit a681e55067)
 2008-07-16 12:12:30 +02:00
Stefan Metzmacher
80fe14a211 drsuapi.idl: correctly handle xpress compressed payload 
metze

Signed-off-by: Stefan Metzmacher <metze@samba.org>
(This used to be commit d9d19eef4f)
 2008-07-16 12:12:29 +02:00
Andrew Bartlett
0edce42b36 Fix the build - this element was renamed. 
(This used to be commit 60161954ad)
 2008-07-16 15:28:54 +10:00
Jeremy Allison
87f1a6c151 (Hopefully) fix the build by re-adding security.NTACL 
const char. The deletion earlier was a typo.
Jeremy.
(This used to be commit aa27344b96)
 2008-07-09 17:46:11 -07:00
Jeremy Allison
526eaeb1e0 Add in a version2 of the NT security descriptor store 
that can store a timestamp along with the SD. Allows
us to check for validity against the POSIX st_ctime.
Keeps the IDL consistent with Samba3.3 IDL.
Jeremy.
(This used to be commit 29843a6b33)
 2008-07-09 16:55:51 -07:00
Stefan Metzmacher
a3ea8bcb19 dcerpc_smb: trans->in.max_data should not depend on the smb max size 
We now support async multi fragment SMBtrans calls.

metze
(This used to be commit 6813e22e9d)
 2008-07-07 20:59:13 +02:00
Stefan Metzmacher
b6327116dd dcerpc.idl: the signing overhead can be more than 32 bytes 
Windows seems to use 64 here, so we do now.

Before we got nca_proto_error fault because we send fragments
larger than the negotiated max frag size.

If the max frag size is 5840, we're sending 5837 bytes
when the auth_len is 45 and that matches w2k3 traffic.

metze
(This used to be commit 351947dba3)
 2008-07-03 15:49:56 +02:00
Stefan Metzmacher
1eb5756ca5 drsuapi.idl: remove some unknows from DsGetNCChanges() 
metze
(This used to be commit 924ef407bd)
 2008-06-30 17:40:01 +02:00
Simo Sorce
2daf2897d5 Use a custom init function for samba4 that sets a samba4 
specific debug function.
By default do not debug, this is the most appropriate action for a library
as we cannot assume what stderr is use for in the main app.
The main app is responsible to set ev_debug_stderr if they so desire.
(This used to be commit e566a2f308)
 2008-06-14 13:00:53 -04:00
Jelmer Vernooij
230503ad84 Add working Python bindings for NBT. 
(This used to be commit 9c88f5e1de)
 2008-06-11 00:05:58 +02:00
Andrew Tridgell
3df0fee42d fixed for per session session_key here too 
(This used to be commit abcbce004c)
 2008-06-07 11:10:23 -07:00
Stefan Metzmacher
0827b08a43 opendb: add write time handling 
metze
(This used to be commit 3868d8ce63)
 2008-06-03 14:03:49 +02:00
Andrew Tridgell
beaa01e403 implemented client side SMB2 signing 
This doessn't work against Windows yet, and I've submitted a WSPP
request for clarification of the docs to try and find out
why. Meanwhile this is no worse than what we had, as it only gets used
when the server demands signing, and we didn't work then anyway.
(This used to be commit b788096add)
 2008-05-30 17:03:54 +10:00
Andrew Bartlett
844a7ad15a Add in an enum for two future NTP signing ops. 
I hope to extend this code to handle NTP clients getting authenticated
time too.

Andrew Bartlett
(This used to be commit 1854ab058b)
 2008-05-29 15:22:01 +10:00
Andrew Bartlett
ce877cafdd Final fixes to for a functional NTP signing deamon. 
Andrew Bartlett
(This used to be commit 4dcc0cd06e)
 2008-05-29 11:16:03 +10:00
Andrew Bartlett
68ec3006a4 Don't make the NTP signd headers public. 
This means we don't have to install them

Andrew Bartlett
(This used to be commit 2f2ba0c68a)
 2008-05-29 11:15:18 +10:00
Andrew Tridgell
07b4cafb09 added a newline at the end of the IDL 
(This used to be commit 6386155e99)
 2008-05-28 18:47:39 +10:00
Andrew Bartlett
93d2f8ff9e Try adding a stub to fix the build 
(This used to be commit a529c377ae)
 2008-05-28 15:47:27 +10:00
Andrew Bartlett
6bfdc74b92 Fix dependency list for NDR_TABLE 
This list must include everything for which we have IDL

Andrew Bartlett
(This used to be commit a6f0b98311)
 2008-05-28 14:53:30 +10:00
Andrew Bartlett
51ae2302a6 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-abartlet 
It seems the format of main.mk changed in my sleep...

Conflicts:

	source/main.mk
(This used to be commit 56f2288e4f)
 2008-05-28 08:11:05 +10:00
Jelmer Vernooij
52b230141b Allow librpcsrcdir to be an absolute path. 
(This used to be commit 8c0b55114f)
 2008-05-27 19:47:16 +02:00
Jelmer Vernooij
4053e3c700 Use variables for IDL file paths. 
(This used to be commit 683ba6de41)
 2008-05-27 18:38:05 +02:00
Andrew Bartlett
5d0d239d1a Start an 'NTP signing server' in Samba4. 
I am modifying the ntp.org server to talk to this service, to sign
packets per MS-SNTP.

Andrew Bartlett
(This used to be commit 0c15385e60)
 2008-05-27 16:20:18 +10:00
Andrew Tridgell
af4f6f445a add a mask of invalid security bits 
(This used to be commit ccbf523876)
 2008-05-27 14:06:38 +10:00
Jelmer Vernooij
dce310ef4e Remove evil hack which breaks Python bindings. 
(This used to be commit 1c179566cb)
 2008-05-26 13:31:57 +02:00
Jelmer Vernooij
40a90e6a55 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into v4-0-pyirpc 
(This used to be commit e1af9708c9)
 2008-05-26 12:19:09 +02:00
Andrew Tridgell
c5c1b3706a allow larger streams using the TDB backend 
(This used to be commit 8c0d756eb8)
 2008-05-26 14:59:58 +10:00
Jelmer Vernooij
d5434f0b4b Allow using IRPC functions on the messaging bus from Python. 
(This used to be commit 6ecf81ae13)
 2008-05-26 04:14:28 +02:00
Jelmer Vernooij
d60d8e57d8 Implement IRPC calls over the internal messaging bus. 
(This used to be commit 777dc3a2c7)
 2008-05-26 03:07:18 +02:00
Jelmer Vernooij
22778de582 Remove some unused cruft. 
(This used to be commit 8f47157f09)
 2008-05-26 00:38:12 +02:00
Jelmer Vernooij
eae3658674 Fix compilation errors. 
(This used to be commit daae053365)
 2008-05-25 23:22:05 +02:00
Jelmer Vernooij
77acb789e2 Trim the size of the Python bindings a bit. 
(This used to be commit 717ce0b640)
 2008-05-25 23:14:48 +02:00
Jelmer Vernooij
74126bc6d0 Expose transfer and abstract syntax. 
(This used to be commit a875e07a37)
 2008-05-25 04:54:38 +02:00
Jelmer Vernooij
5211755563 Expose request timeout variable in Python. 
(This used to be commit daed1432d2)
 2008-05-25 04:38:57 +02:00
Jelmer Vernooij
928ecbaebb Add support for secondary contexts from Python. 
(This used to be commit 16d1ad0505)
 2008-05-25 04:23:03 +02:00
Jelmer Vernooij
4c1f0641d3 Check for fault codes when connecting. 
(This used to be commit 42537b1d52)
 2008-05-25 00:04:11 +02:00
Jelmer Vernooij
63c2a19e6e Add helper function to return DCE/RPC fault codes. 
(This used to be commit 4716cdfb5d)
 2008-05-24 23:39:38 +02:00
Jelmer Vernooij
21b6e9ec9e Add convenience function for creating objects with NDR error codes. 
(This used to be commit 991541a78c)
 2008-05-24 23:22:49 +02:00
Jelmer Vernooij
5863864f1d Fix memory initialization in raw calls. 
(This used to be commit 788b2dbfe4)
 2008-05-24 23:07:16 +02:00
Jelmer Vernooij
2a6c4da9d1 Support optional object argument when sending DCE/RPC requests. 
(This used to be commit 75ba01a0fa)
 2008-05-24 23:02:09 +02:00
Jelmer Vernooij
21ce0ff006 Allow connecting to a DCE/RPC interface with Python for which we don't have IDL. 
(This used to be commit e3178d522c)
 2008-05-24 22:56:49 +02:00
Jelmer Vernooij
75e7962d2e Add convenience functions for setting Python objects from errors. 
(This used to be commit f1de723b89)
 2008-05-24 22:13:32 +02:00
Jelmer Vernooij
f9c36fae75 Export functions for setting NTSTATUS and WERRORs in python. 
(This used to be commit 4bcb92d2d4)
 2008-05-24 21:38:33 +02:00
Jelmer Vernooij
fe5be25547 Allow request() call to do custom calls on DCE/RPC interfaces. 
(This used to be commit 9c2eff0289)
 2008-05-24 21:20:45 +02:00
Jelmer Vernooij
654be49c01 Use manually written Python bindings for DCE/RPC rather than SWIG based. 
Use base class for pidl-generated DCE/RPC interface Python bindings.
(This used to be commit 25e7fc8a2c)
 2008-05-24 21:02:56 +02:00