1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-24 21:34:56 +03:00
Commit Graph

531 Commits

Author SHA1 Message Date
Andrew Tridgell
a9ea3d6fa5 build: cope with the common gen_ndr files being in the git tree 2010-04-06 20:26:49 +10:00
Andrew Tridgell
e916aff9e1 build: much nicer pidl rules 2010-04-06 20:26:47 +10:00
Günther Deschner
1ff55500de drsblobs: remove utf8string2 from ForestTrustData.
Simo, it's not really worth to add a new idl type just for being able to omit
the size field. The size field is part of the spec in MS-ADTS 7.1.6.9.3.1 so we
should have it as well.

Guenther
2010-03-25 11:04:52 +01:00
Kamen Mazdrashki
ef6976dad3 idl: drsuapi.idl - fix few more comments 2010-03-24 17:34:45 +02:00
Kamen Mazdrashki
842d75613b s4/idl: DsAddEntry V3 request description 2010-03-24 17:34:43 +02:00
Kamen Mazdrashki
6b3ff0de46 s4/idl: Remove drsuapi_DsAddEntryExtraErrorBuffer - it is not used anymore 2010-03-24 17:34:42 +02:00
Kamen Mazdrashki
3efad5a6d8 s4/idl: Complete drsuapi_DsAddEntryErrorInfo description
Members for Security, Service, Update and System errors renamed
to be more descriptive.

All those error types share same description.
2010-03-24 17:34:41 +02:00
Kamen Mazdrashki
0663799275 s4/idl: Add DsAddEntry Referral error definition 2010-03-24 17:34:40 +02:00
Kamen Mazdrashki
61e80fe3eb s4/idl: Add DsAddEntry Name resolution error definition 2010-03-24 17:34:39 +02:00
Kamen Mazdrashki
fbaf3b3799 s4/drs: pretty print for drsuapi_DsAddEntry_AttrErrListItem_V1 2010-03-24 17:34:38 +02:00
Kamen Mazdrashki
98cbcf809f s4/idl: redefine drsuapi_DsAddEntryErrorInfo1
This actually describes Attribute error during DsAddEntry execution.

Structure is renamed to drsuapi_DsAddEntryErrorInfo_Attr.
And structure to define Attribute error data are all
prefixed with drsuapi_DsAddEntry_AttrErr
2010-03-24 17:34:37 +02:00
Kamen Mazdrashki
7b4341637c s4/idl: drsuapi_DsAddEntryError refactored
Structure description and name was changed to be aligned with
WSPP definition.

Ref: [MS-DRSR] 4.1.1.1.23
2010-03-24 17:34:36 +02:00
Kamen Mazdrashki
fbc1528649 s4/idl: DsAddEntry - refactor DsAddEntryCtr2 structure
Reply structure definition was aligned with WSPP documentation
Ref: [MS-DRSR], section 4.1.1.1.7
2010-03-24 17:34:34 +02:00
Kamen Mazdrashki
4cdf4627a1 s4/idl: Update drsuapi_DsAddEntryErrorInfoX definition
drsuapi_DsAddEntryErrorInfoX is an extended error
description used by most of the error infos returned
by DsAddEntry RPC method.
2010-03-24 17:34:33 +02:00
Kamen Mazdrashki
818719f7ba s4/idl: DIRERR error codes definition
DIRERR codes specify class of error returned from
DsAddEntry method call.

Ref: [MS-DRSR], section 4.1.1.1.25
2010-03-24 17:34:32 +02:00
Kamen Mazdrashki
a4ed8dc1fd s4/idl: DsAddEntry - switch types should be unsigned 2010-03-24 17:34:31 +02:00
Simo Sorce
7d89c7c17b idl: fix comment and convert whitespaces to tabs 2010-03-24 07:46:00 -04:00
Simo Sorce
fd2bc08138 idl: fix forest trust information idl
--validate now passes
2010-03-23 18:47:39 -04:00
Karolin Seeger
18d1821490 security.idl: Add missing builtin groups.
Karolin
2010-03-23 15:22:48 +01:00
Stefan Metzmacher
0fa67c8d8f dcerpc.idl: add nca_s_* status codes from the DCE 1.1 specification
metze
2010-03-23 14:37:25 +01:00
Simo Sorce
9f84d72ef1 idl:drsblobs add code to interpret msDS-TrustForestTrustInfo 2010-03-23 01:09:50 -04:00
Simo Sorce
d9e311ddce s4:lsa Functions to set Domain Trust Information 2010-03-22 21:49:40 -04:00
Günther Deschner
4f28afc929 lsa: fix IDL for lsa_SetTrustedDomainInfoByName.
Guenther
2010-03-16 21:51:37 +01:00
Simo Sorce
cfa2b7b6bf s4:idl add lsaRSetForestTrustInformation
Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-16 15:12:18 +01:00
Matthias Dieter Wallnöfer
c91afe9596 security.idl - push generated code diff 2010-03-16 15:01:46 +01:00
Simo Sorce
8353aa39b6 s4:idl change level to type in lsa_ForestTrustRecord. 2010-03-16 14:48:40 +01:00
Nadezhda Ivanova
a212c1dedb Added a net acl ds command for modification of ACLs on directory objects
At present the command supports only addition of control access rigts, done
so DRS access checks can be tested. It will be expanded to deal with most
ways to modify and view a DS ACL.
Shifted commands a bit. What used to be net acl is now "net acl nt" as apposed
to this, which is "net acl ds"

./bin/net acl ds set --help
Usage: set --objectdn=objectdn --car=control right --action=[deny|allow] --trusteedn=trustee-dn

Options:
  -h, --help            show this help message and exit
  --host=HOST           LDB URL for database or target server
  --car=CAR              The access control right to allow or deny
  --action=ACTION       Deny or allow access
  --objectdn=OBJECTDN   DN of the object whose SD to modify
  --trusteedn=TRUSTEEDN
                        DN of the entity that gets access

  Samba Common Options:
    -s FILE, --configfile=FILE
                        Configuration file

  Credentials Options:
    --simple-bind-dn=DN
                        DN to use for a simple bind
    --password=PASSWORD
                        Password
    -U USERNAME, --username=USERNAME
                        Username
    -W WORKGROUP, --workgroup=WORKGROUP
                        Workgroup
    -N, --no-pass       Don't ask for a password
    -k KERBEROS, --kerberos=KERBEROS
                        Use Kerberos
2010-03-16 13:37:48 +02:00
Stefan Metzmacher
f85c825ae2 drsuapi.idl: don't mark drsuapi_DsGetMemberships as [todo]
metze
2010-03-12 15:25:39 +01:00
Günther Deschner
e0d85f87b7 winreg: add winreg_KeyType enum.
Guenther
2010-03-11 20:23:47 +01:00
Stefan Metzmacher
aef4890a7c drsuapi.idl: finish drsuapi_DsGetNT4ChangeLog idl
metze
2010-03-11 13:31:38 +01:00
Kamen Mazdrashki
6853f452b4 s4/idl: drsuapi_QuerySitesByCostCtr1 'unknown' member is now known
and this it is a reserved fields for future flags - 'flags_reserver'
Must be 0 and is currently ignored.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:08 +01:00
Kamen Mazdrashki
14fd25ae82 s4/idl: QuerySitesByCost - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:07 +01:00
Kamen Mazdrashki
e76d6e9454 s4/idl: DsGetMemberships2 - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:06 +01:00
Kamen Mazdrashki
1ad805e04f s4/idl: DsRemoveDSServer - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:05 +01:00
Kamen Mazdrashki
d07883ed86 s4/idl: DsWriteAccountSpn - switch types should be unsigned
Changes also propagated into source code as they are
too minor to be done in separate commit

Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:03 +01:00
Kamen Mazdrashki
d22eaddf95 s4/idl: DsCrackNames - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:02 +01:00
Kamen Mazdrashki
00135d83f4 s4/idl: DsGetMemberships - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:01 +01:00
Kamen Mazdrashki
890d408fea s4/idl: DsReplicaMod - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:00 +01:00
Kamen Mazdrashki
4ea818e349 s4/idl: DsReplicaDel - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:12:00 +01:00
Kamen Mazdrashki
9f71ffb06c s4/idl: DsReplicaAdd - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:11:59 +01:00
Kamen Mazdrashki
62b4b675fd s4/idl: DsReplicaUpdateRefs - switch types should be unsigned
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:11:58 +01:00
Kamen Mazdrashki
89f8c35ac4 s4/idl: DsGetNCChanges - switch types should be unsigned
Converting those types to unsigned should help in
creating DRSUAPI dissector for Wireshark also.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:11:56 +01:00
Kamen Mazdrashki
163cc1a02d s4/idl: drsuapi_DsReplicaSyncOptions flags are no more used
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-03-10 17:11:55 +01:00
Günther Deschner
f258e98e17 winreg: fix winreg_QueryValue IDL.
Note that before this change pidl generated code that just dereferenced size_is
and length_is values from unique pointers without checking whether these
pointers were actually NULL.

With this change, pidl now throws a warning like:

	warning: Got pointer for `data_size', expected fully derefenced variable

which is not correct, probably because pidl does not evaluate the C expression.

Guenther
2010-03-05 22:00:52 +01:00
Günther Deschner
4df1047e83 spoolss: fix spoolss_EnumPrinterDataEx IDL.
Guenther
2010-03-05 15:18:00 +01:00
Günther Deschner
0e779b573b spoolss: rollback GetPrinterData[Ex] IDL.
Guenther
2010-03-05 15:17:59 +01:00
Günther Deschner
0528515be4 spoolss: rollback SetPrinterData{Ex} IDL.
Guenther
2010-03-05 15:17:58 +01:00
Günther Deschner
b1f18fb808 spoolss: add spoolss_Build to IDL.
Guenther
2010-02-26 17:39:21 +01:00
Simo Sorce
76f4e6f16b idl:lsa change string type
comapring win<-> traces it looks like this is an lsa_StringLarge
2010-02-24 18:35:48 -05:00
Kamen Mazdrashki
0f6a453f9f s4/idl: drsuapi_DsReplicaGetInfoRequest2 - 'string2' to 'value_dn_str' 2010-02-24 14:14:08 +02:00
Kamen Mazdrashki
10fce687fe s4/idl: drsuapi_DsReplicaGetInfoRequest2 - 'string1' to 'attribute_name' 2010-02-24 14:14:08 +02:00
Kamen Mazdrashki
fb9880d6e8 s4/idl: rename 'guid1' to 'source_dsa_guid' in drsuapi_DsReplicaGetInfoRequest description 2010-02-24 14:14:08 +02:00
Kamen Mazdrashki
e9438b4c12 s4/idl: drsuapi.idl fix drsuapi_DsReplicaSync definition
- Function should accept pointer to drsuapi_DsReplicaSyncRequest.
  While this doesn't generate essentially different code for
  NDR parser, using pointer will make drsuapi_DsReplicaSync
  descritpin with the rest of the functions in DRSUAPI interface.
  Another benefit is that this way we could create Wireshark
  dissector directly from Samba's verions for drsuapi.idl

- 'level' and thus the switch_type() should be uint32
2010-02-24 14:14:06 +02:00
Kamen Mazdrashki
f1a33a6cfe s4/idl: drsuapi.idl fix drsuapi_DsReplicaSyncRequest1 description
- pointer to naming_context should be [ref] pointer
  (i.e. not NULL pointer)
- other_info is actually the DNS name for Source DSA and is used
  if DRSUAPI_DRS_SYNC_BYNAME is passed
  ref: [MS-DRSR] 5.39
2010-02-24 14:14:06 +02:00
Günther Deschner
d22b54c4eb spoolss: some fixes for devicemode dm extra structs.
Guenther
2010-02-23 17:01:26 +01:00
Günther Deschner
2288e16d72 spoolss: add various DM extradata formats (including PostScript and UniDriver).
Guenther
2010-02-23 16:48:37 +01:00
Simo Sorce
d4b8be513c s4:netlogon GetTrustedDomainInformation
start implementing calls related to trusted domain information
2010-02-22 18:49:16 -05:00
Andrew Bartlett
e4523e3c8f misc.idl: Add reference to the slightly odd representation of if_version
I found this confusing, so explian for the next poor programmer who
has to get up to speed with this quickly.

Andrew Bartlett
2010-02-19 16:32:49 +11:00
Günther Deschner
0a8011aa98 spoolss: use ndr_push_spoolss_PrinterInfo2 hand-marshalled version (moves devmode relative pointer down to sd).
Guenther
2010-02-18 15:47:59 +01:00
Günther Deschner
2881742493 spoolss: add spoolss_security_descriptor.
Guenther
2010-02-18 15:47:59 +01:00
Günther Deschner
f10a2d773d security: make two bitmaps public.
Guenther
2010-02-18 15:47:58 +01:00
Günther Deschner
8c4ff98ea1 spoolss: make two bitmaps public.
Guenther
2010-02-18 15:47:58 +01:00
Stefan Metzmacher
8f52957369 spoolss: make all security descriptors and devicemodes 4 byte aligned and add missing subcontexts.
Guenther
2010-02-18 15:47:57 +01:00
Günther Deschner
6d0a39741d spoolss: set NDR_RELATIVE_REVERSE flag for various unions that have relative pointers.
Guenther
2010-02-18 15:47:57 +01:00
Günther Deschner
a2c34296fa libndr: add LIBNDR_FLAG_NO_RELATIVE_REVERSE so that relative reverse processing
can be disabled for single structure elements.

Guenther
2010-02-18 13:44:02 +01:00
Günther Deschner
ee13a51b05 libndr: add LIBNDR_FLAG_RELATIVE_REVERSE flag.
Guenther
2010-02-18 13:44:02 +01:00
Anatoliy Atanasov
55f7c74cea s4/drs: add DRSUAPI_ATTRIBUTE_options attribute 2010-02-17 18:03:31 +02:00
Anatoliy Atanasov
0e8fe821c9 s4/drs:kccdrs_replica_get_info_obj_metadata implementation
Fix the names of the drsuapi_DsReplicaInfoType enum and rebuild the .idl
The get_info_obj_metadata implementation is ported from implementation
i developed and tested at the samba io lab 2009
2010-02-17 18:03:31 +02:00
Andrew Tridgell
259129e8f4 a4-dcerpc: another attempt at dcerpc auth padding
The last change broke net vampire against w2k8r2
2010-02-14 18:44:21 +11:00
Andrew Tridgell
da86f08605 s4-rpc: be more careful about DCERPC auth padding
Cope with a wider range of auth padding in dcerpc bind_ack and
alter_context packets. We now use a helper function that calculates
the right auth padding.
2010-02-13 23:12:29 +11:00
Fernando J V da Silva
7bd7194c2b s4-drs: Add DRSUAPI_DRS_NONGC_RO_REP bit to DRS_OPTIONS
Signed-off-by: Matthias Dieter Wallnöfer <mwallnoefer@yahoo.de>
2010-02-11 12:19:51 +01:00
Kamen Mazdrashki
7dde20ae45 s4/idl: Naming reserved flags for DRSUAPI_SUPPORTED_EXTENSION_ field
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-02-11 21:59:36 +11:00
Kamen Mazdrashki
5c7f55ba26 s4/idl: add DRSUAPI_SUPPORTED_EXTENSION_RECYCLE_BIN ext. flag for DRSUAPI
This flag corresponds to DRS_EXT_RECYCLE_BIN extended
flag in [MS-DRSR] documentation.

Reference:
  [MS-DRSR] - 5.37
Description:
  If present, signifies that the DC has enabled
  the Recycle Binoptional feature.
2010-02-05 10:51:56 +01:00
Kamen Mazdrashki
386f2c3d12 s4/idl: add DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V10 flag for DRSUAPI
This flag corresponds to DRS_EXT_GETCHGREQ_V10 flag
in [MS-DRSR] documentation.

Reference:
  [MS-DRSR] - 5.37
Description:
  If present, signifies that the DC supports DRS_MSG_GETCHGREQ_V10.
2010-02-05 10:51:56 +01:00
Kamen Mazdrashki
d8a7718b9e s4/idl: add DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V5 flag for DRSUAPI
This flag corresponds to DRS_EXT_GETCHGREQ_V5 flag
in [MS-DRSR] documentation.

Reference:
  [MS-DRSR] - 5.37
Description:
  If present, signifies that the DC supports DRS_MSG_GETCHGREQ_V5.
2010-02-05 10:51:55 +01:00
Kamen Mazdrashki
6687c6e182 s4/idl: add DRSUAPI_SUPPORTED_EXTENSION_ADDENTRY flag for DRSUAPI
This flag corresponds to DRS_EXT_ADDENTRY flag
in [MS-DRSR] documentation.

Reference:
  [MS-DRSR] - 5.37
Description:
  If present, signifies that the DC supports IDL_DRSAddEntry.
2010-02-05 10:51:54 +01:00
Kamen Mazdrashki
cd3d165778 s4/idl: PrefixMap description for W2K3 and W2K8 Schema:prefixMap attribute
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-02-01 15:23:29 +01:00
Stefan Metzmacher
34a5d56d55 security.idl: add wellknown TrustedInstaller SID
metze
2010-01-29 14:09:50 +01:00
Matthieu Patou
1a143b8a59 s4: allow python code to dump NTACL object as well 2010-01-21 07:11:18 +13:00
Andrew Tridgell
f461a72ec3 idl: switched to using the WSPP names for the 'neighbour' DRS options
The documentation shows that all these functions in fact use the same
flags variable type. To be consistent between functions, and to allow
easy reference to the WSPP docs, it is better for us to also use this
generic DrsOptions bitfield rather than one per operations.
2010-01-18 07:25:18 +11:00
Andrew Tridgell
93531a52f0 s4-idl: in DsReplicaGetInfo unknown2 is actually an enumeration_context 2010-01-16 14:10:44 +11:00
Andrew Tridgell
c663af8b7b s4-idl: get rid of the operation specific DRS options flags
It was confusing to have several sets of incomplete options when WSPP
uses a single set.
2010-01-14 15:37:59 +11:00
Andrew Tridgell
60c5a5f39f s4-idl: update the DRS_OPTIONS bits based on the latest WSPP docs 2010-01-14 15:37:59 +11:00
Andrew Tridgell
b0090d01e0 s4-idl: give a enum for attribute cn and a 'NONE' attribute
The 'NONE' attribute has value 0xFFFFFFFF. Adding this ensures the
compiler will complain if it is set to use 16 bit enums. We rely on
being able to store 32 bits in an attid enum.
2010-01-09 13:10:28 +11:00
Andrew Tridgell
4c7bf0527a s4-idl: added some more wellknown attributeIDs
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08 13:03:04 +11:00
Günther Deschner
be95cb6f83 spoolss: more mork on SetPrinterInfo() levels.
Guenther
2009-12-17 10:43:31 +01:00
Günther Deschner
64e588f868 spoolss: add spoolss_DriverInfo7.
Guenther
2009-12-16 16:09:41 +01:00
Volker Lendecke
0d10efe1fd s3: Allow up to 20480 entries in LookupSids, as mandated by the official IDL
Seen in the wild by putting >1000 users into BUILTIN\Users
2009-12-14 17:00:12 +01:00
Matthieu Patou
8f8613dcef idl: introduce new file: dfsblobs.idl
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2009-12-14 10:58:32 +01:00
Günther Deschner
e316624ddb spoolss: fix spoolss_PrinterData size calculation.
Currently we were crashing in EnumPrinterDataEx when an e.g. an empty (NULL)
string for a separator file was returned.

Guenther
2009-12-14 10:39:34 +01:00
Günther Deschner
5ae61cfbc2 spoolss: trivial fix for spoolss_FormInfo2 IDL.
Guenther
2009-12-14 10:38:53 +01:00
Günther Deschner
835e7d6c98 spoolss: remove unused spoolss_StringArray2.
Guenther
2009-12-10 17:48:50 +01:00
Günther Deschner
0ecb7f6ab2 spoolss: use spoolss_KeyNames in spoolss_EnumPrinterKey.
Guenther
2009-12-10 17:48:49 +01:00
Günther Deschner
cf2561473f spoolss: add spoolss_KeyNames union.
Guenther
2009-12-10 17:48:49 +01:00
Günther Deschner
fb3b0987f7 spoolss: add more spoolss architectures to IDL.
Guenther
2009-12-08 16:20:51 +01:00
Günther Deschner
1b6c444557 spoolss: fix spoolss_DriverInfo8 IDL.
found by RPC-SPOOLSS torture teset.

Guenther
2009-12-08 11:51:16 +01:00
Günther Deschner
08823166a1 spoolss: rework spoolss_GetPrinterDataEx and spoolss_SetPrinterDataEx.
Guenther
2009-12-07 14:42:12 +01:00
Günther Deschner
f32ccc321a spoolss: hand-marshall the spoolss_StringArray2 struct for spoolss_EnumPrinterKey.
This call is just driving me nuts :-)

Guenther
2009-12-03 01:04:02 +01:00
Günther Deschner
5f60855ba2 samba-spoolss: use spoolss_StringArray2 in spoolss_EnumPrinterKey.
This should finally resolve the endian issues we were seeing on sparc and is
much cleaner for spoolss clients and servers.

Guenther
2009-12-02 14:56:17 +01:00
Günther Deschner
292af4fc04 spoolss: add spoolss_StringArray2.
The difference to spoolss_StringArray is that in spoolss_StringArray2 the string
array is put into a subcontext of _ndr_size.

Guenther
2009-12-02 14:37:02 +01:00