1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
Commit Graph

1724 Commits

Author SHA1 Message Date
Andrew Bartlett
30ae74d399 s4:dsdb: add support for DSDB_OPENLDAP_DEREFERENCE_CONTROL
Encode and decode the OpenLDAP dereference control (draft-masarati-ldap-deref-00)

At this time, the ldb_controls infrustructure does not handle request
and reply controls having different formats, so this is purely the
client implementation (ie, there is no decode of the client->server
packet, and no encode of the server->client packet).

Signed-off-by: Stefan Metzmacher <metze@samba.org>
2008-12-17 12:29:24 +11:00
Andrew Bartlett
fc61ef2afc s4:libcli/ldap: split out a ldap_decode_attribs_bare() function
The OpenLDAP dereference control (draft-masarati-ldap-deref-00) uses
an attribute list, as found in the search reply, but without one
enclosing ASN1_SEQUENCE(0)

This allows the dereference control parsing code to use this as a
helper function.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
2008-12-17 12:29:24 +11:00
Jelmer Vernooij
c4fc0b49f0 Manually marshall dom_sid, so we can use a fixed size array for
dom_sid.sub_auths rather than a dynamically allocated one.

This makes it possible to use the same DCE/RPC object code for Samba 3
and Samba 4's DCE/RPC parsers and allows copying sids more easily
(since they no longer contain any pointers). The cost of having additional
manual marshalling code is limited (~35 additional lines of C code).
2008-12-12 19:52:06 +01:00
Stefan Metzmacher
4a3ae3831d s4:libcli/resolve: add resolve_name_all*() which return all addresses not only the first one
metze
2008-12-11 17:58:31 +01:00
Günther Deschner
985d9b1099 s4-smbtorture: add test for setting passwords via samr_UserInfo18.
Guenther
2008-12-05 16:03:04 +01:00
Stefan Metzmacher
dfc365743a s4:libcli/clideltree: work against servers without NTSTATUS support
metze
2008-12-01 14:42:07 -08:00
Andrew Bartlett
cf5c919c74 Improve debug when SASL search fails 2008-11-17 10:07:09 +11:00
Stefan Metzmacher
1290b1d3d3 s4:librpc/ndr: integrate NDR_MISC into LIBNDR
metze
2008-11-16 16:24:34 +01:00
Stefan Metzmacher
8c2c62c5ea s4:libcli/resolve: don't ignore SIGCHLD anymore
This broke ldbedit against a LDAP server,
as the editor is called by "system()" which relies
on getting something useful out of waitpid().

TODO: we should create a generic infrastructure to
      handle temporary forks and integrate the signal
      handling with signal events there.

metze
2008-11-16 16:22:08 +01:00
Günther Deschner
0474c8665d nterrors: add NT_STATUS_DS_BUSY.
Guenther
2008-11-10 21:46:24 +01:00
Jelmer Vernooij
b45caa44e1 Fix the build. 2008-11-02 23:58:49 +01:00
Jelmer Vernooij
15c0aad880 Remove unused include of param/param.h. 2008-11-02 18:13:19 +01:00
Jelmer Vernooij
62c57cb400 Remove use of global_loadparm when comparing nt status error - use
global variable instead.
2008-11-02 17:11:20 +01:00
Jelmer Vernooij
a1cc278142 Remove use of global_loadparm during initialization of gensec. 2008-11-02 17:04:22 +01:00
Jelmer Vernooij
29a20af75f Remove use of global_loadparm for SMB2 client connections. 2008-11-02 16:20:00 +01:00
Jelmer Vernooij
ff36c52d8c Remove another use of global_loadparm.
Eventually, we should move some of these parameters into a separate
struct (perhaps into smb_transport_options?), to avoid the long lists of
parameters.
2008-11-02 16:07:28 +01:00
Jelmer Vernooij
c537f7a914 Fix the build. 2008-11-02 05:49:36 +01:00
Jelmer Vernooij
b034c519f5 Add gensec_settings structure. This wraps loadparm_context for now, but
should in the future only contain some settings required for gensec.
2008-11-02 02:05:48 +01:00
Jelmer Vernooij
7a6190e9a7 Remove another use of global_loadparm. 2008-11-02 01:03:26 +01:00
Jelmer Vernooij
cb7d085ec3 Use global iconv convenience rather than global loadparm. 2008-11-02 00:35:04 +01:00
Jelmer Vernooij
d9cbf2b0d9 Remove another use of global_loadparm. 2008-11-01 23:26:36 +01:00
Jelmer Vernooij
7942333712 Remove another use of global_loadparm. 2008-11-01 23:09:18 +01:00
Jelmer Vernooij
9293c59e25 Move calls to lp_* higher up in the call stack. 2008-11-01 22:42:09 +01:00
Jelmer Vernooij
57a60f0920 Move lp_*() calls a bit higher up the calls tack. 2008-11-01 22:13:47 +01:00
Jelmer Vernooij
2d42c4cade Fix proto header. 2008-11-01 16:11:26 +01:00
Jelmer Vernooij
af2940459d Fix prototype for attrib_string(). 2008-11-01 16:00:41 +01:00
Stefan Metzmacher
8160cd1595 s4: libcli/security: a NULL DACL allows access
This fixes bug 4284.

metze
2008-10-28 17:10:51 +01:00
Günther Deschner
92f1c0d156 s4-lsa: merge lsa_LookupNames/{2,3,4} from s3 lsa idl.
Guenther
2008-10-27 19:33:23 +01:00
Günther Deschner
992c03a192 s4-lsa: merge lsa_LookupSids/{2,3} from s3 lsa idl.
Guenther
2008-10-27 19:33:23 +01:00
Jelmer Vernooij
23302413b3 Remove unused include param/param.h. 2008-10-24 16:37:56 +02:00
Jelmer Vernooij
27dce768d3 Remove more usages of global_loadparm. 2008-10-24 14:57:03 +02:00
Jelmer Vernooij
37d885c51a Remove iconv_convenience argument from convert_string{,talloc}() but
make them wrappers around convert_string{,talloc}_convenience().
2008-10-24 14:26:46 +02:00
Jelmer Vernooij
284f523ec7 Remove a few more usages of global_loadparm. 2008-10-24 13:22:12 +02:00
Jelmer Vernooij
8b06312f7e Eliminate another instance of global_loadparm. 2008-10-24 13:13:27 +02:00
Jelmer Vernooij
e9ab9e52f0 Just hardcode workgroup to empty string, to avoid use of
global_loadparm.
2008-10-24 04:00:07 +02:00
Jelmer Vernooij
922a29992e Remove iconv_convenience parameter from simple string push/pull
functions.
2008-10-24 03:40:09 +02:00
Jelmer Vernooij
8baf169549 Fix function parameters. 2008-10-23 22:10:08 +02:00
Jelmer Vernooij
44b728958a Use common error definitions. 2008-10-23 15:35:21 +02:00
Jelmer Vernooij
391ce30d49 Fix header file installation. 2008-10-23 04:57:44 +02:00
Jelmer Vernooij
94c522b1ab Import NTSTATUS defines from Samba 3. 2008-10-23 03:29:20 +02:00
Jelmer Vernooij
3be0f6ea56 Move libcli-util error code to top-level. 2008-10-23 03:11:19 +02:00
Jelmer Vernooij
1d9ea911e3 Change buffer size back to 256, just to be sure. 2008-10-22 05:24:00 +02:00
Jelmer Vernooij
6d9b24de78 Remove pstring usages. 2008-10-22 04:25:00 +02:00
Jelmer Vernooij
87ec1d2532 Make sure prototypes are always included, make some functions static and
remove some unused functions.
2008-10-20 18:59:51 +02:00
Jelmer Vernooij
c484b0465c Move SMB-specific attribute function to SMB client library. 2008-10-19 10:45:02 +02:00
Andrew Bartlett
85919c34f4 Improve RPC-SAMR tests to check random passwords
By random I don't mean 'nice stream of ASCII chars, but pure random
passwords containing invalid UTF16 sequences etc.

Andrew Bartlett
2008-10-17 13:00:24 +11:00
Andrew Bartlett
7c88ea8aad Create a 'straight paper path' for UTF16 passwords.
This uses a virtual attribute 'clearTextPassword' (name chosen to
match references in MS-SAMR) that contains the length-limited blob
containing an allegidly UTF16 password.  This ensures we do no
validation or filtering of the password before we get a chance to MD4
it.  We can then do the required munging into UTF8, and in future
implement the rules Microsoft has provided us with for invalid inputs.

All layers in the process now deal with the strings as length-limited
inputs, incluing the krb5 string2key calls.

This commit also includes a small change to samdb_result_passwords()
to ensure that LM passwords are not returned to the application logic
if LM authentication is disabled.

The objectClass module has been modified to allow the
clearTextPassword attribute to pass down the stack.

Andrew Bartlett
2008-10-16 12:48:16 +11:00
Günther Deschner
d242491488 idl: finally fully share nbt.idl in s3 and s4.
Guenther
2008-10-15 21:44:39 +02:00
Günther Deschner
a1b7b6d5b4 idl: more lsa.idl merges.
Guenther
2008-10-15 20:46:35 +02:00
Jelmer Vernooij
652f0e601d Move nmblookup to same location as the rest of the NBT client library. 2008-10-12 17:34:28 +02:00