1
0
mirror of https://github.com/samba-team/samba.git synced 2025-01-07 17:18:11 +03:00
Commit Graph

960 Commits

Author SHA1 Message Date
Günther Deschner
b69a590f6b Remove unused marshalling for SAMR_SET_USERINFO2.
Guenther
(This used to be commit d493f98cd1)
2008-02-12 18:54:03 +01:00
Günther Deschner
6f2a384b33 Remove unused marshalling for SAMR_QUERY_USERINFO.
Guenther
(This used to be commit daec00fd62)
2008-02-12 18:27:57 +01:00
Günther Deschner
4974200f30 Use pidl for _samr_QueryUserInfo.
Guenther
(This used to be commit 53dc913b2d)
2008-02-12 14:52:25 +01:00
Günther Deschner
6aa84ad8c5 Move some samr init functions around (to allow easier identification of new
calls).

Guenther
(This used to be commit c51c126049)
2008-02-12 12:30:51 +01:00
Günther Deschner
c3f68ad29f Remove unused marshalling for SAMR_ENUM_DOM_USERS.
Guenther
(This used to be commit 4521f31a72)
2008-02-12 11:38:31 +01:00
Günther Deschner
76f654e21c Remove unused marshalling for LSA_PRIV_GET_DISPNAME.
Guenther
(This used to be commit d853f4f263)
2008-02-11 19:16:05 +01:00
Günther Deschner
0e4088e626 Let rpccli_lsa_open_policy[2] be convenience wrappers around their pidl equivalents.
Guenther
(This used to be commit 4ca3b1c02e)
2008-02-11 17:50:18 +01:00
Günther Deschner
1042b0ce37 Remove unused marshalling for LSA_ENUM_PRIVS.
Guenther
(This used to be commit 793e5a608b)
2008-02-11 10:49:35 +01:00
Günther Deschner
5da927716a Remove unused marshalling for NET_DSR_GETDCNAME.
Guenther
(This used to be commit 65c2aa344e)
2008-02-08 23:38:13 +01:00
Günther Deschner
5c23f7d73c Remove unused marshalling for LSA_OPENACCOUNT.
Guenther
(This used to be commit bb8e77eb74)
2008-02-08 22:44:42 +01:00
Günther Deschner
ef01ceff89 Remove unused marshalling for LSA_CREATEACCOUNT.
Guenther
(This used to be commit c9a8baf507)
2008-02-08 22:38:34 +01:00
Günther Deschner
400ac70117 Remove unused marshalling for SAMR_LOOKUP_NAMES.
Guenther
(This used to be commit 593768c3e9)
2008-02-08 15:30:35 +01:00
Günther Deschner
99a134a74e Remove unused marshalling for LSA_QUERY_INFO.
Guenther
(This used to be commit f193d7d944)
2008-02-08 10:26:37 +01:00
Günther Deschner
b13277ed4e Remove unused marshalling for LSA_QUERY_INFO2.
Guenther
(This used to be commit 0fac016d9d)
2008-02-08 10:16:08 +01:00
Günther Deschner
8a1f56a90e Remove rpccli_lsa_query_info_policy_new and rpccli_lsa_query_info_policy_new2.
Guenther
(This used to be commit 08888e3773)
2008-02-08 10:02:52 +01:00
Günther Deschner
e1af5066d5 Remove unused marshalling for SAMR_QUERY_DISPINFO.
Guenther
(This used to be commit c09e619a58)
2008-02-08 00:17:54 +01:00
Günther Deschner
f564a5476b Remove unused marshalling for SAMR_QUERY_USERGROUPS.
Guenther
(This used to be commit 232a505535)
2008-02-07 14:25:29 +01:00
Günther Deschner
815ab1ac94 Remove unused marshalling for SAMR_QUERY_GROUPINFO.
Guenther
(This used to be commit 680dbd3ef6)
2008-02-07 14:13:09 +01:00
Günther Deschner
de3aec7026 Remove unused marshalling for SAMR_QUERY_ALIAS_INFO.
Guenther
(This used to be commit 03dff0194b)
2008-02-07 13:38:08 +01:00
Günther Deschner
bffbee263f Remove unused marshalling for SAMR_SET_GROUPINFO.
Guenther
(This used to be commit 2bcc01fd13)
2008-02-07 11:03:44 +01:00
Günther Deschner
009d09dcae Remove unused marshalling for SAMR_SET_ALIASINFO.
Guenther
(This used to be commit f56b5f976a)
2008-02-07 10:56:35 +01:00
Günther Deschner
44f1485f0b Remove unused marshalling for NET_DSR_GESITENAME.
Guenther
(This used to be commit c2682273fd)
2008-02-07 10:42:59 +01:00
Günther Deschner
f79051fe19 Remove unused marshalling for NET_GETANYDCNAME and NET_GETANYDCNAME.
Guenther
(This used to be commit a495e0e7c1)
2008-02-07 10:31:09 +01:00
Günther Deschner
83036e7fd2 Use rpccli_samr_ChangePasswordUser2 in rpccli_samr_chgpasswd_user() and friends.
Guenther
(This used to be commit a49220b5c8)
2008-02-07 10:07:01 +01:00
Günther Deschner
9c22a27aad Let rpccli_samr_chgpasswd3 use rpccli_samr_ChangePasswordUser3 internally.
Guenther
(This used to be commit ffbfd19ad7)
2008-02-07 10:07:00 +01:00
Günther Deschner
1430ab2dd3 Remove unused marshalling for SAMR_SET_DOMAIN_INFO.
Guenther
(This used to be commit c67581e1e4)
2008-02-06 02:10:18 +01:00
Günther Deschner
149fe79ad7 Remove unused marshalling for SAMR_QUERY_DOMAIN_INFO.
Guenther
(This used to be commit 28ef04437c)
2008-02-06 02:10:09 +01:00
Günther Deschner
80d1590cbb Remove unused marshalling for SAMR_QUERY_DOMAIN_INFO2.
Guenther
(This used to be commit d4dc2781ad)
2008-02-06 02:07:47 +01:00
Günther Deschner
a9333427d0 Remove unused marshalling for SAMR_REMOVE_SID_FOREIGN_DOMAIN.
Guenther
(This used to be commit 2e2b80bd03)
2008-02-05 13:19:47 +01:00
Günther Deschner
6e36f72ce6 Remove unused marshalling for SAMR_QUERY_USERALIASES.
Guenther
(This used to be commit fc55433aee)
2008-02-05 13:19:47 +01:00
Günther Deschner
23f76ed91f Remove unused marshalling for SAMR_QUERY_GROUPMEM.
Guenther
(This used to be commit 48e74f7752)
2008-02-05 13:19:47 +01:00
Günther Deschner
636229cc09 Remove marshalling for SAMR_LOOKUP_DOMAIN.
Guenther
(This used to be commit e03fd62917)
2008-02-05 10:10:06 +01:00
Günther Deschner
8a88a14267 Remove unused marshalling for SAMR_QUERY_ALIASMEM.
Guenther
(This used to be commit 1b1f9ee2e9)
2008-02-05 10:06:04 +01:00
Günther Deschner
30857dbf26 Remove unused marshalling for SAMR_ADD_ALIASMEM.
Guenther
(This used to be commit 27e0b6a1aa)
2008-02-05 10:01:35 +01:00
Günther Deschner
6a0897b363 Remove unused marshalling for SAMR_DEL_ALIASMEM.
Guenther
(This used to be commit 99d80ada6d)
2008-02-05 09:58:30 +01:00
Günther Deschner
0bffd59a4c Remove unused marshalling for SAMR_CONNECT.
Guenther
(This used to be commit 2b1bc8ab68)
2008-02-05 09:39:25 +01:00
Günther Deschner
a1c2242f3f Remove unused marshalling for LSA_QUERY_SEC_OBJ.
Guenther
(This used to be commit 9b2aeeb369)
2008-02-04 22:12:41 +01:00
Günther Deschner
d93631f96f Remove unused marshalling for SAMR_CONNECT_4.
Guenther
(This used to be commit 86d00328ae)
2008-02-04 19:17:41 +01:00
Günther Deschner
944f11af5b Remove unused marshalling for SAMR_ADD_GROUPMEM.
Guenther
(This used to be commit 83d1b7429e)
2008-02-04 18:45:25 +01:00
Günther Deschner
c01a62c4d6 Remove unused marshalling for SAMR_DEL_GROUPMEM.
Guenther
(This used to be commit a65c89c806)
2008-02-04 18:32:50 +01:00
Günther Deschner
00073422d5 Remove unused marshalling for SAMR_SET_SEC_OBJ.
Guenther
(This used to be commit 90982cf43a)
2008-02-02 13:37:20 +01:00
Günther Deschner
33d5becfad Remove unused marshalling for SAMR_QUERY_SEC_OBJ.
Guenther
(This used to be commit b15512f8cc)
2008-02-02 13:37:19 +01:00
Günther Deschner
b708005a71 Remove unused marshalling for SAMR_CREATE_USER.
Guenther
(This used to be commit 69e8a83093)
2008-02-01 16:29:21 +01:00
Günther Deschner
42f61160f9 Remove unused marshalling for SAMR_CREATE_DOM_GROUP.
Guenther
(This used to be commit 2882d48dfe)
2008-02-01 16:29:20 +01:00
Günther Deschner
d3b25867f5 Remove unused marshalling for SAMR_CREATE_DOM_ALIAS.
Guenther
(This used to be commit 2e56289889)
2008-02-01 16:29:20 +01:00
Günther Deschner
a3b00a3244 Remove unused marshalling for SAMR_OPEN_USER.
Guenther
(This used to be commit f34c0e7ada)
2008-02-01 12:30:25 +01:00
Günther Deschner
e8c794fabe Remove unused marshalling for SAMR_OPEN_ALIAS.
Guenther
(This used to be commit c00d629d4e)
2008-02-01 12:30:07 +01:00
Günther Deschner
331c1ad49b Remove unused marshalling for SAMR_OPEN_GROUP.
Guenther
(This used to be commit 9660a341b6)
2008-02-01 12:29:45 +01:00
Günther Deschner
481a7f9572 Remove unused marshalling for SAMR_OPEN_DOMAIN.
Guenther
(This used to be commit ebf9caa004)
2008-02-01 12:29:26 +01:00
Günther Deschner
c4bb59afb4 Remove rpccli_samr_delete_dom_user().
Guenther
(This used to be commit 1b620ea648)
2008-02-01 10:17:49 +01:00
Günther Deschner
dc7c06d52d Remove rpccli_samr_delete_dom_alias().
Guenther
(This used to be commit eac804b9a3)
2008-02-01 10:15:53 +01:00
Günther Deschner
f69bf4050d Remove rpccli_samr_delete_dom_group().
Guenther
(This used to be commit 882537f26f)
2008-02-01 10:14:23 +01:00
Günther Deschner
5334b364c2 Remove rpccli_samr_close and use pidl generated function instead.
Guenther
(This used to be commit 64f0889401)
2008-01-31 11:09:11 +01:00
Günther Deschner
5a89a4674e Finally delete rpccli_ds_enum_domain_trusts() completly.
Guenther
(This used to be commit c420e42adf)
2008-01-29 15:23:38 +01:00
Günther Deschner
a6ce6c5649 Remove hand-written rpccli_netlogon_dsr_getdcnameex[2].
Guenther
(This used to be commit 3ded8b9b7e)
2008-01-25 21:43:55 +01:00
Günther Deschner
05ff7fd46e Use generated DSSETUP client & server rpc functions and remove the hand-written ones.
Guenther
(This used to be commit d5ebfccebb)
2008-01-25 15:30:43 +01:00
Günther Deschner
242a57b624 Remove rpccli_samr_get_dom_pwinfo() and rpccli_samr_get_usrdom_pwinfo().
Guenther
(This used to be commit 29690d1860)
2008-01-25 15:24:27 +01:00
Andreas Schneider
691c4b1a41 Windows 2008 (Longhorn) auth2 flag fixes.
Interop fixes for AD specific flags. Original patch from Todd Stetcher.
(This used to be commit 5aadfcdaac)
2008-01-23 14:55:22 -08:00
Jeremy Allison
a0186fb78d Forward ported version of Matt Geddes <musicalcarrion@gmail.com>
patch for adding acct_flags to rpccli_samr_create_dom_user().
Jerry please test.
Jeremy.
(This used to be commit 7d94f97947)
2008-01-23 13:54:02 -08:00
Günther Deschner
c920764b19 Apply const to rpccli_lsa_query_info_policy() and rpccli_lsa_query_info_policy2().
Guenther
(This used to be commit 7a3fe68bef)
2008-01-15 16:40:22 +01:00
Günther Deschner
862e1685b8 Remove old lsa set info policy call.
Guenther
(This used to be commit b37b2b77ed)
2008-01-14 17:16:06 +01:00
Günther Deschner
08946cc546 Remove some more hand written LSA rpc.
(rpccli_lsa_open_trusted_domain,
rpccli_lsa_query_trusted_domain_info,
cli_lsa_query_domain_info_policy).

Guenther
(This used to be commit 5bfb33f1c5)
2008-01-14 15:29:52 +01:00
Günther Deschner
c939441411 Start removing hand-written lsa marshalling code (namely
rpccli_lsa_open_trusted_domain_by_name,
rpccli_lsa_query_trusted_domain_info_by_sid and
rpccli_lsa_query_trusted_domain_info_by_name).

Guenther
(This used to be commit f2fb347345)
2008-01-14 15:29:43 +01:00
Volker Lendecke
533d6f617e Remove static zeros
(This used to be commit dbcc213710)
2007-12-28 17:02:34 +01:00
Günther Deschner
8ded1df767 Kill fstring in getdcname & getanydcname return.
Guenther
(This used to be commit b738381816)
2007-12-21 15:12:40 +01:00
Michael Adam
68e65b2981 Fix a debug message: add missing space.
Michael
(This used to be commit 6a7f2a59fc)
2007-12-18 07:58:37 +01:00
Michael Adam
d9682dfb59 Do not close netlogon pipe in get_schannel_session_key_common().
This removes one forgotten call of cli_rpc_pipe_close(netlogon_pipe).
Correction of e77c4022cf.

Michael
(This used to be commit 7f6593cdde)
2007-12-17 23:27:53 +01:00
Volker Lendecke
900288a2b8 Replace sid_string_static by sid_string_dbg in DEBUGs
(This used to be commit bb35e794ec)
2007-12-15 22:09:36 +01:00
Michael Adam
7cf5c17f12 Refactoring out get_schannel_session_key logic.
Refactor the actual retrieval of the session key through the
established netlogon pipe out of get_schannel_session_key()
and get_schannel_session_key_auth_ntlmssp() into a new
function get_schannel_session_key_common().
(To avoid code duplication.)

Michael
(This used to be commit e77c4022cf)
2007-12-13 10:15:19 +01:00
Michael Adam
31f221ed93 Rename get_trust_pw() to get_trust_pw_hash().
Michael
(This used to be commit 0cde7ac9cb)
2007-12-13 10:15:19 +01:00
Michael Adam
f793c99ca5 Let get_trust_pw() determine the machine_account_name to use.
Up to now each caller used its own logic.

This eliminates code paths where there was a special treatment
of the following situation: the domain given is not our workgroup
(i.e. our own domain) and we are not a DC (i.e. it is not a typical
trusted domain situation). In situation the given domain name was
previously used as the machine account name, resulting in an account
name of DOMAIN\\DOMAIN$, which does not seem very reasonable to me.
get_trust_pw would not have obtained a password in this situation
anyways.

I hope I have not missed an important point here!

Michael
(This used to be commit 6ced4a7f88)
2007-12-13 10:15:17 +01:00
Günther Deschner
0439fdd777 Replace "unknown" with access_mask when calling samr_CreateUser2().
Guenther
(This used to be commit cfc6e7a2e6)
2007-12-11 15:26:09 +01:00
Jeremy Allison
7faee02d0d Remove the char[1024] strings from dynconfig. Replace
them with malloc'ing accessor functions. Should save a
lot of static space :-).
Jeremy.
(This used to be commit 52dc5eaef2)
2007-12-10 11:30:37 -08:00
Günther Deschner
82089a2e84 Fix winreg callers.
Guenther
(This used to be commit 677d9e6d86)
2007-12-03 18:43:19 +01:00
Jeremy Allison
d2cf97aeba Remove the explicit TALLOC_CTX * from cli_struct.
Make us very explicit about how long a talloc ctx
should last.
Jeremy.
(This used to be commit ba9e2be2b5)
2007-11-29 13:24:54 -08:00
Jeremy Allison
6b6655edd9 Remove pstrings from everything except srv_spoolss_nt.c.
Jeremy.
(This used to be commit 0002a9e96b)
2007-11-27 14:35:30 -08:00
Jeremy Allison
66298d8080 More pstring elimination.
Jeremy.
(This used to be commit 15074de938)
2007-11-20 17:18:16 -08:00
Stefan Metzmacher
f9578af966 ndr: change NTSTAUS into enum ndr_err_code (samba3 callers)
lib/messages_local.c
rpc_client/ndr.c
smbd/notify_internal.c
utils/net_rpc_registry.c

metze
(This used to be commit c2645d2164)
2007-11-09 21:23:16 +01:00
Jeremy Allison
922db25272 Fix a mismatched interface where we were using
uint32 instead of enum lsa_SidType.
Jeremy.
(This used to be commit 2df8252ff7)
2007-10-25 18:29:49 -07:00
Jeremy Allison
30191d1a57 RIP BOOL. Convert BOOL -> bool. I found a few interesting
bugs in various places whilst doing this (places that assumed
BOOL == int). I also need to fix the Samba4 pidl generation
(next checkin).
Jeremy.
(This used to be commit f35a266b3c)
2007-10-18 17:40:25 -07:00
Gerald (Jerry) Carter
e5a951325a [GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch.
(This used to be commit 5c6c8e1fe9)
2007-10-10 15:34:30 -05:00
Gerald Carter
5221ebb299 r25407: Revert Longhorn join patch as it is not correct for the 3.2 tree.
The translate_name() used by cli_session_setup_spnego() cann rely
Winbindd since it is needed by the join process (and hence before
Winbind can be run).
(This used to be commit 00a93ed336)
2007-10-10 12:31:03 -05:00
Gerald Carter
3529156971 r25400: Windows 2008 (Longhorn) Interop fixes for AD specific auth2 flags,
and client fixes.  Patch from Todd Stetcher <todd.stetcher@isilon.com>.
(This used to be commit 8304ccba73)
2007-10-10 12:31:02 -05:00
Günther Deschner
2fcdaae84c r25313: dd HKEY_CURRENT_USER to rpccli_winreg_Connect().
Guenther
(This used to be commit eb311cafbb)
2007-10-10 12:30:58 -05:00
Michael Adam
c97fe37ea3 r25294: Tidy up callers of unistr2_to_ascii() to pass sizeof(target_area) to
the maxeln parameter instead of sizeof(target_area) - 1 (or even
sizeof(fstring) - 1 in some places.

I hope these were really all there were.

Michael
(This used to be commit 9a28be220d)
2007-10-10 12:30:58 -05:00
Michael Adam
88eda8245d r25254: Add my C - Michael
(This used to be commit 3246be8cf0)
2007-10-10 12:30:55 -05:00
Michael Adam
6f5869461c r25247: Rename the rpccli_lsa_lookup_sids_all() function to rpccli_lsa_lookup_sids()
and remove the old rpccli_lsa_lookup_sids() function. The old function would
fail due to server limits when requesting to resolve too many sids at once
(20480 for W2k3). The new version passes the list of sids in hunks to the
server. It has up to now been used (and tested) in the winbindd_ads
lookup_groupmem() function, and I think the time has come to replace the actual
function with this correct version.

Michael
(This used to be commit 1194d4f36e)
2007-10-10 12:30:54 -05:00
Michael Adam
0d1e7e97d3 r25226: Get rid of more red bars...
(This used to be commit aa603bcc6c)
2007-10-10 12:30:52 -05:00
Michael Adam
0ed9c5569a r25225: Add a debug message.
Michael
(This used to be commit 7238884c2c)
2007-10-10 12:30:52 -05:00
Michael Adam
c57da5d796 r25224: Fix a potential segfault in lsa_lookupsids client code due to
uninitialized data.

Michael
(This used to be commit b4fff6d09d)
2007-10-10 12:30:51 -05:00
Michael Adam
5bf7692997 r25223: Fix behaviour of rpccli_lsa_lookupsids_all() when
rpccli_lsa_lookupsids_noalloc() returns an error for one hunk
of SIDs: free all allocated arrays and return the error code
returned by the hunk lookup.

Michael
(This used to be commit 2c68ebd693)
2007-10-10 12:30:51 -05:00
Volker Lendecke
ff0947fbed r24949: Remove some static buffers
(This used to be commit df648d47ff)
2007-10-10 12:30:29 -05:00
Michael Adam
d86c441b46 r24784: Initialize uninitalized data to prevent segfaults.
Thanks to Volker for the hint!

Michael
(This used to be commit 3b7ed3ea88)
2007-10-10 12:30:21 -05:00
Stefan Metzmacher
18a48df488 r24594: pass down the ndr_interface_table in the samba3 client bindings
instead of the pull and push functions

metze
(This used to be commit 5e3d4df9bc)
2007-10-10 12:30:08 -05:00
Michael Adam
451224166d r23850: Fix whitespacing in DEBUG output.
(This used to be commit 918aad0d8b)
2007-10-10 12:28:34 -05:00
Andrew Tridgell
153cfb9c83 r23801: The FSF has moved around a lot. This fixes their Mass Ave address.
(This used to be commit 87c91e4362)
2007-10-10 12:28:27 -05:00
Andrew Tridgell
5e54558c6d r23784: use the GPLv3 boilerplate as recommended by the FSF and the license text
(This used to be commit b0132e94fc)
2007-10-10 12:28:22 -05:00
Jeremy Allison
d824b98f80 r23779: Change from v2 or later to v3 or later.
Jeremy.
(This used to be commit 407e6e695b)
2007-10-10 12:28:20 -05:00
Günther Deschner
7eb828135b r23627: Allow to pass down the lookup-level to rpccli_lsa_lookup_names().
Guenther
(This used to be commit e9a7512a9f)
2007-10-10 12:23:38 -05:00
Jeremy Allison
2e6deee020 r23400: Fix lsa crash bug #4683. The "names" enum struct
in a lookup_sidX reply isn't optional - like the
lookup_sidX query it needs to be defined in the
struct.
All this will go away with PIDL (thank goodness....).
Jerry - I think this is a showstopper to be merged
for 3.0.25b.
I'll be watching the build farm to see if anything broke.
Jeremy.
(This used to be commit 9300b92f7a)
2007-10-10 12:23:13 -05:00
Günther Deschner
1ea5dfae04 r23380: netr_getdcname returns WERROR not NTSTATUS.
Guenther
(This used to be commit 5e75ea7f2b)
2007-10-10 12:23:12 -05:00
Gerald Carter
d99f4f004c r23271: merge service control pidl change for CloseServiceHandle() from SAMBA_3_0_26
(This used to be commit 0b1bc3521f)
2007-10-10 12:23:01 -05:00
Volker Lendecke
d807dec0f4 r23219: Two warnings
(This used to be commit eccd50abda)
2007-10-10 12:22:54 -05:00
Günther Deschner
d8e454664a r23210: Very funny, we thought to use netr_GetDcName (e.g. in winbind) but were using
netr_GetDcAnyName all the time (which is the correct thing to do).

Fix the naming and opcode mixup in all branches.

Guenther
(This used to be commit def6464c87)
2007-10-10 12:22:54 -05:00
Günther Deschner
94e4a468f0 r23127: Fill in some more netlogon dsgetdcname flavours (netr_DsRGetDCNameEx,
netr_DsRGetDCNameEx2) and add new ds request and reply flags, also add some
more WERROR codes.

Guenther
(This used to be commit 37ae7f4197)
2007-10-10 12:22:48 -05:00
Volker Lendecke
2945490a0f r23091: Add rpccli_netlogon_sam_network_logon_ex, fix its parsing. This does not
use the credential chain and only works over netlogon, but it would
allow multiple outstanding auth requests for a single workstation
account.
(This used to be commit 123290d094)
2007-10-10 12:22:44 -05:00
Michael Adam
cda3cf211b r23082: Ooops - that portion of the last checkin was by accident.
Before comitting that, I have to verify that it does not
break anything...

Michael
(This used to be commit 55ea93d47e)
2007-10-10 12:22:43 -05:00
Michael Adam
5d1755710a r23081: Reorder the lsa_lookup_sids functions so that the order makes more sense...
(This used to be commit 374dea8c6f)
2007-10-10 12:22:43 -05:00
Michael Adam
9d6fd22e27 r23073: In the internal rpccli_lsa_lookup_sids_noalloc(), use a temporary
talloc context for use with the actual rpc query and response.
So the the parent context does not get flooded by the posslibly
large amount of response data (when looking up a lot of sids).

Note: It not possible, to simply use the names and domains arrays
as talloc contexts for the talloc_strdup calls, because from
rpccli_lsa_lookup_sids_all, this is called with names + offset
and domains + offset where names and domains are talloced
arraye for the complete response.
(This used to be commit 8e60900c5c)
2007-10-10 12:22:18 -05:00
Michael Adam
87d30dc32d r23070: The lsa rpc lookup sids call has a maximum number of SIDS to be
looked up at one time. This limit is at 20480 for w2k3.
Our rpccli_lsa_lookup_sids function ignores this limit, so when
we give the server too long a list of SIDs, then we will get
nothing back. Since typically rpccli_lsa_lookup_sids is given
one SID  (or a small number of SIDS), this did not do harm
up to now. But since I want to use lsa_lookup_sids in a subsequent
modification to winbindd_ads.c:lookup_groupmem to get rid of
a vast number of dn_lookup calls to the server, I had to make
sure we do it correctly.

I have added a function rpccli_lsa_lookup_sids_all function
that has the same prototype but internally splits the list
of SIDs up into hunks of a (conservative, hard coded) 1000
SIDs each for a first go.

If this approach is agreed upon, the new function could replace
the original rpccli_lsa_lookup_sids function.

Michael
(This used to be commit 66ff0bc6c3)
2007-10-10 12:22:18 -05:00
Volker Lendecke
b4a7b7a888 r22844: Introduce const DATA_BLOB data_blob_null = { NULL, 0, NULL }; and
replace all data_blob(NULL, 0) calls.
(This used to be commit 3d3d61687e)
2007-10-10 12:22:01 -05:00
Jeremy Allison
f1d8c4da23 r22675: Simo's patch for 0 size allocation. Still need
to examine parse_misc.c fix.
Jeremy.
(This used to be commit 80d981265c)
2007-10-10 12:19:54 -05:00
Jeremy Allison
be8b0685a5 r22589: Make TALLOC_ARRAY consistent across all uses.
Jeremy.
(This used to be commit 8968808c3b)
2007-10-10 12:19:49 -05:00
Jeremy Allison
79de0ad946 r22588: Make all uses of TALLOC_MEMDUP consistent.
Jeremy.
(This used to be commit 8ad13718af)
2007-10-10 12:19:48 -05:00
Michael Adam
b851e8eb87 r22537: Use a (more speaking) macro when there is one.
(This used to be commit 2eec760154)
2007-10-10 12:19:43 -05:00
Stefan Metzmacher
c5a93fd897 r22464: remove double code and use a function
metze
(This used to be commit aa28bcc466)
2007-10-10 12:19:35 -05:00
Stefan Metzmacher
eceb926df9 r22092: - make spnego_parse_auth_response() more generic and
not specific for NTLMSSP
- it's possible that the server sends a mechOID and authdata
  if negResult != SPNEGO_NEG_RESULT_INCOMPLETE, but we still
  force the mechOID to be present if negResult == SPNEGO_NEG_RESULT_INCOMPLETE

metze
(This used to be commit e9f2aa22f9)
2007-10-10 12:19:10 -05:00
Stefan Metzmacher
56ba447668 r22001: change prototype of dump_data(), so that it takes unsigned char * now,
which matches what samba4 has.

also fix all the callers to prevent compiler warnings

metze
(This used to be commit fa322f0cc9)
2007-10-10 12:18:59 -05:00
Jelmer Vernooij
1052cadbae r21462: Fix EnumValue (?)
(This used to be commit e73a418b5b)
2007-10-10 12:18:06 -05:00
Günther Deschner
ca072a9998 r21382: Important fix for winbind when using non-AD domains.
Jeremy, I'm afraid you removed the "domain->initialized" from the
set_dc_types_and_flags() call when the connect to PI_LSARPC_DS failed
(with rev. 19148).

This causes now that init_dc_connection_network is called again and
again which in turn rescans the DC each time (which of course fails each
time with NT_STATUS_BUFFER_TOO_SMALL). Just continue with the
non-PI_LSARPC_DS scan so that the domain is initialized properly.

Guenther
(This used to be commit c6f63a08f5)
2007-10-10 12:17:59 -05:00
Günther Deschner
69cee2a3ec r21240: Fix longstanding Bug #4009.
For the winbind cached ADS LDAP connection handling
(ads_cached_connection()) we were (incorrectly) assuming that the
service ticket lifetime equaled the tgt lifetime. For setups where the
service ticket just lives 10 minutes, we were leaving hundreds of LDAP
connections in CLOSE_WAIT state, until we fail to service entirely with
"Too many open files".

Also sequence_number() in winbindd_ads.c needs to delete the cached LDAP
connection after the ads_do_search_retry() has failed to submit the
search request (although the bind succeeded (returning an expired
service ticket that we cannot delete from the memory cred cache - this
will get fixed later)).

Guenther
(This used to be commit 7e1a84b722)
2007-10-10 12:17:50 -05:00
Günther Deschner
aeb834036d r20970: Allow to define workstation for samlogon in rpcclient (for testing).
Guenther
(This used to be commit 5d4747fdf2)
2007-10-10 12:17:22 -05:00
Volker Lendecke
c63be3a4e7 r19818: Remove reg_split_hive, make use of registry_openkey
(This used to be commit 7fd1578a90)
2007-10-10 12:15:58 -05:00
Günther Deschner
dbcb4b1266 r19355: Add getdispenumindex2 wrapper for rpcclient.
Guenther
(This used to be commit 27c35848eb)
2007-10-10 12:15:31 -05:00
Günther Deschner
7b84b133fe r19161: Add NET_GETANYDCNAME (getdcname only gives the PDC while getanydcname
gives just any DC), also make sure to set timeouts in rpcclient
accordingly so that we actually get the DC's reply.

Guenther
(This used to be commit 6091c8152a)
2007-10-10 12:15:18 -05:00
Günther Deschner
adc299bd08 r19143: getdcname on the NETLOGON pipe returns WERROR, not NTSTATUS.
Guenther
(This used to be commit 44e228ac79)
2007-10-10 12:15:16 -05:00
Gerald Carter
18d4176633 r18981: * cleanup some vestiges of old cli_reg.c code and mark some TODO
items in cac_winreg.c
* Get 'net rpc registry enumerate' to list values again
* Fix winreg.idl QueryInfoKey().  The max_subkeysize is the
  max_classlen (we previously had this correct in Samba3")
* fix valgrind error about uninitialized memory and use-before-set
  on size value inmemset() call
* Fix key enumeration in 'net rpc registry enumerate'
* regenerate gen_dir files based on local pidl patches

Please note that the generated ndr files are from my local
copy of pidl.  If you need to regenerate, please apply the
patch that I posted to the samba-technical list earlier today.
(This used to be commit 5d843612a1)
2007-10-10 12:14:53 -05:00
Gerald Carter
49c73b5734 r18931: * Fix the IDL for QueryInfoKey. teh Classname in an
in,out ref pointer
* Clarify variable names in EnumValue IDL
* Fix server code for _winreg_EnumValue() and _winreg_QueryInfoKe()
(This used to be commit f520a9d0fb)
2007-10-10 12:14:48 -05:00
Gerald Carter
bbaa0b178d r18919: * Get the new rpccli_winreg_XXXX() functions into the tree
There some broken functionality here that I'm still working on.
* remove unneeded parsing routines
(This used to be commit cbfe1a4b49)
2007-10-10 12:14:46 -05:00
Gerald Carter
d56c3dfdaa r18803: remove unused function
(This used to be commit 964d95bce6)
2007-10-10 12:00:59 -05:00
Jelmer Vernooij
7ba2554d88 r18802: Use the pidl-generated code for the srvsvc interface, both client and server code.
This has had some basic testing. I'll do more during the next couple of days and hopefully also
make RPC-SRVSVC from Samba4 pass against it.
(This used to be commit ef10672399)
2007-10-10 12:00:59 -05:00
Günther Deschner
1b7b6e54db r18799: Prepare query_disp_info to use the next idx from the last result entry
for the enumeration loop (following msdn docs of that call).

Guenther
(This used to be commit 138a921f82)
2007-10-10 12:00:59 -05:00
Gerald Carter
05ba38f754 r18747: replace rpccli_lsa_close() with rpccli_lsa_Close()
(This used to be commit 50d74ce048)
2007-10-10 12:00:54 -05:00
Jelmer Vernooij
4db7642caa r18745: Use the Samba4 data structures for security descriptors and security descriptor
buffers.

Make security access masks simply a uint32 rather than a structure
with a uint32 in it.
(This used to be commit b41c52b9db)
2007-10-10 12:00:54 -05:00
Gerald Carter
b7d069097b r18739: * Get the wkssvc patch right this time.
* Remove the old wkssvc server, client, & parsing code.
* Update srv_wkssvc_nt.c with stubs for the remaining
  stubs
(This used to be commit 0cb79ee13f)
2007-10-10 12:00:53 -05:00
Gerald Carter
8711b490e2 r18729: readd missing files
(This used to be commit a2d61ca85c)
2007-10-10 12:00:53 -05:00
Gerald Carter
9dda6cdf4c r18725: Replace out one wkssvc call (wkssrv_GetInfo()) with autogenerated
code.  Removed first rpc_parse/*.c file.  w00t!
(This used to be commit bb9b7a058d)
2007-10-10 12:00:52 -05:00
Gerald Carter
a6ddf9bf5d r18711: Replace the following hand code client routines:
* rpccli_reg_abort_shutdown()
* rpccli_reg_flush_key()
Remove the cmd_reg.c from rpcclient since the entire file
was unused
(This used to be commit c4788f0c13)
2007-10-10 12:00:51 -05:00
Günther Deschner
5864fb9fc5 r18677: quickly add samr_GetDisplayEnumerationIndex for debugging to rpcclient.
Guenther
(This used to be commit bd546edc48)
2007-10-10 12:00:46 -05:00
Jelmer Vernooij
4e7d11449a r18654: Rename "struct uuid" => "struct GUID" for consistency.
(This used to be commit 5de76767e8)
2007-10-10 11:52:19 -05:00
Günther Deschner
a812e2d7db r18619: Add rpcclient helper for samr_querydispinfo2|3 for testing.
Guenther
(This used to be commit 1a307954e5)
2007-10-10 11:52:00 -05:00
Jelmer Vernooij
e5db7fee0f r18572: Use the autogenerated client and server for the echo interface and implement
some of the missing functions. RPC-ECHO now passes against Samba3.
(This used to be commit 9e9a053661)
2007-10-10 11:51:51 -05:00
Gerald Carter
c4013df0c1 r18560: * Add in the winreg and initshutdown IDL files
* rename PI_SHUTDOWN from include/smb.h to PI_INITSHUTDOWN
  for compatibility with pidl libndr output
(This used to be commit 23a8828613)
2007-10-10 11:51:50 -05:00
Jelmer Vernooij
8be112a81b r18469: Use new pidl-generated DFS client code.
(This used to be commit e277fb067b)
2007-10-10 11:51:43 -05:00
Gerald Carter
40892266f6 r18405: Now that POLICY_HND == struct policy_handle, we can
make rpccli_lsa_close() a real one line wrapper for
rpccli_lsa_Close().

I'm still keeping the wrapper for now because I'm not sure
what we will do about a usable client API.  I don't think
calling the autogenerated client code directly is a good idea
as the IDL is still evolving.
(This used to be commit 47f0c71218)
2007-10-10 11:51:22 -05:00
Gerald Carter
5e1146ab58 r18404: * swap from POLICY_HND to the struct policy_handle from ndr/misc.h
* move OUR_HANDLE macro to include/rpc_misc.h
(This used to be commit 2b37079af2)
2007-10-10 11:51:22 -05:00
Gerald Carter
e397e2f22a r18397: Change rpccli_lsa_close() as a wrapper for the autogenerated
rpccli_lsa_Close().
(This used to be commit 365c75603d)
2007-10-10 11:51:21 -05:00
Gerald Carter
4f024ad3d1 r18395: have the ndr layer alloc outgoing structure members for us
(This used to be commit 4fb35eeb44)
2007-10-10 11:51:21 -05:00
Gerald Carter
2b27c93a9a r18271: Big change:
* autogenerate lsa ndr code
* rename 'enum SID_NAME_USE' to 'enum lsa_SidType'
* merge a log more security descriptor functions from
  gen_ndr/ndr_security.c in SAMBA_4_0

The most embarassing thing is the "#define strlen_m strlen"
We need a real implementation in SAMBA_3_0 which I'll work on
after this code is in.
(This used to be commit 3da9f80c28)
2007-10-10 11:51:18 -05:00
Jelmer Vernooij
1779e3f104 r18233: Use the autogenerated cli_unixinfo rather than the old one.
(This used to be commit eec8b915d1)
2007-10-10 11:51:17 -05:00
Gerald Carter
82ed086618 r18193: Not quite to autogenerated NDR but closer thanks to Jelmer's
initial work.  I'm including the librpc/gen_ndr directory
in svn temporarily just to get some compile issues straightened
out.
(This used to be commit cf271aa433)
2007-10-10 11:51:08 -05:00
Jelmer Vernooij
995205fc60 r18188: merge 3.0-libndr branch
(This used to be commit 1115745cae)
2007-10-10 11:43:56 -05:00
Günther Deschner
72c605b4fc r17454: Adding dfs_EnumEx for rpcclient (Samba4 IDL to follow).
Guenther
(This used to be commit 8c1198c159)
2007-10-10 11:38:35 -05:00
Günther Deschner
11673dc07a r17453: Fix msdfs RPC management (this broke with the autogenerated dfs rpcs).
* Remove "unknown" from dfs_Enum (samba4 dfs IDL updates to follow).

* When encountering an unsupported infolevel the rpc server must reply
with a dfs_info_0 structure and WERR_OK (observed from w2k3 when talking
to nt4).

Guenther
(This used to be commit f9bef1f08f)
2007-10-10 11:38:34 -05:00
Volker Lendecke
e23781b3b3 r17316: More C++ warnings -- 456 left
(This used to be commit 1e4ee728df)
2007-10-10 11:38:25 -05:00
Andrew Bartlett
0dc8f720e1 r17005: Add a new helper mode to ntlm_auth: ntlm-change-password-1
This mode proxies pre-calculated blobs from a remote (probably VPN)
client into the domain.  This allows clients to change their password
over a PPTP connection (where they would not be able to connect to
SAMR directly).

The precalculated blobs do not reveal the plaintext password.

Original patch by Alexey Kobozev <cobedump@gmail.com>
(This used to be commit 967292b713)
2007-10-10 11:19:17 -05:00
Jeremy Allison
fbdcf2663b r16945: Sync trunk -> 3.0 for 3.0.24 code. Still need
to do the upper layer directories but this is what
everyone is waiting for....

Jeremy.
(This used to be commit 9dafb7f48c)
2007-10-10 11:19:14 -05:00
Jeremy Allison
2b8abc030b r16644: Fix bug #3887 reported by jason@ncac.gwu.edu
by converting the lookup_XX functions to correctly
return SID_NAME_TYPE enums.
Jeremy.
(This used to be commit ee2b2d96b6)
2007-10-10 11:19:05 -05:00
Volker Lendecke
ee4ee4c541 r16335: Fix Klocwork IDs 107 108 109 111 112 113 114 116 117 118 121
(This used to be commit 555984ea77)
2007-10-10 11:17:34 -05:00
Gerald Carter
22b52b818b r16255: Fix 'net ads join' when the workgroup is set incorrectly
in smb.conf.  This did work before the join rewrite.
Samba will have problems if you try to run any of the daemons
with an incorrect workgroup but it should not fail to join.

The summary is that a member server should always use it's
own machine name when setting up schannel since that is
the only account it has.  Thanks to Volker for the discussion.
(This used to be commit 95763b94f7)
2007-10-10 11:17:28 -05:00
Günther Deschner
a6e662f556 r16253: Fix another host/ UPN case in (the currently unused)
cli_rpc_pipe_open_krb5.

Guenther
(This used to be commit fa19099112)
2007-10-10 11:17:28 -05:00
Günther Deschner
4137c63d02 r15455: Add rpccli_samr_query_dom_info2() and return the comment string in
samr_query_domain_info(2) for consistency reasons.

Guenther
(This used to be commit 870495e2c8)
2007-10-10 11:16:48 -05:00
Günther Deschner
c5e2804762 r15452: Again purely cosmetic reformat of the samr query domain info calls.
Guenther
(This used to be commit 6ed7d7fa70)
2007-10-10 11:16:47 -05:00
Jeremy Allison
0498f3b889 r15129: Separate out mechanism and policy for NTLMSSP auth/sign/seal.
With this change (and setting lanman auth = no in smb.conf)
we have *identical* NTLMSSP flags to W2K3 in SPNEGO auth.
Jeremy
(This used to be commit 93ca3eee55)
2007-10-10 11:16:25 -05:00
Günther Deschner
655b04e4f8 r15041: Adding rpc client calls to manipulate auditing policies on remote CIFS
servers. Also add a new "net rpc audit" tool. The lsa query infolevels
were taken from samb4 IDL, the lsa policy flags and categories are
partly documented on msdn. I need to cleanup the double
lsa_query_info_policy{2}{_new} calls next.

Guenther
(This used to be commit 0fed66926f)
2007-10-10 11:15:59 -05:00
Jeremy Allison
ec4191fe98 r14784: Fix coverity bug #274. Null deref.
Jeremy.
(This used to be commit f88f2d9368)
2007-10-10 11:15:48 -05:00
Jeremy Allison
0b1e1ed722 r14782: Fix coverity bug #273, null deref.
Jeremy.
(This used to be commit c2636c1026)
2007-10-10 11:15:48 -05:00
Günther Deschner
6e17934ee6 r14643: Merge dcerpc_errstr from Samba 4.
Might need to rework prs_dcerpc_status().

Guenther
(This used to be commit 38b18f428b)
2007-10-10 11:15:41 -05:00
Günther Deschner
485a286a65 r14585: Tighten argument list of kerberos_kinit_password again,
kerberos_kinit_password_ext provides access to more options.

Guenther
(This used to be commit afc519530f)
2007-10-10 11:15:38 -05:00
Gerald Carter
a199498213 r14449: fix the build (sorry everyone)
(This used to be commit e49ca3af8c)
2007-10-10 11:15:30 -05:00
Gerald Carter
0f0ad2992e r14448: * protect against NULL cli_state* pointers in cli_rpc_pipe_open()
* Fix inverted logic check for machine accounts in get_md4pw()
(This used to be commit a36529535d)
2007-10-10 11:15:30 -05:00
Volker Lendecke
15f4c6372c r14244: Okay, had not seen that this happened twice.
Fix Coverity bug # 142.

Volker
(This used to be commit f2a24b63e3)
2007-10-10 11:15:20 -05:00
Volker Lendecke
e2e3c377a3 r14243: Fix Coverity bug # 143
(This used to be commit 5a0087e636)
2007-10-10 11:15:20 -05:00
Jeremy Allison
dc93156fe9 r14121: We never pass NULL to the rpc_api_pipe fn so don't
trigger coverity checks by testing for NULL.
Jeremy.
(This used to be commit 6b44841592)
2007-10-10 11:11:13 -05:00
Volker Lendecke
bd8e1b442d r13958: Fix Coverity Bug # 141
(This used to be commit 598513d1d3)
2007-10-10 11:11:01 -05:00
Günther Deschner
9f2e29799e r13864: Some cleanup and the samr set security object function client-side.
Guenther
(This used to be commit 0ae3fddf95)
2007-10-10 11:10:57 -05:00
Jeremy Allison
7f59c7fcd6 r13722: Ensure we use the correct enumerated type. Bug #3558
from jason@ncac.gwu.edu.
Jeremy.
(This used to be commit 00f8b4e1aa)
2007-10-10 11:10:50 -05:00
Günther Deschner
e54786b535 r13711: * Correctly handle acb_info/acct_flags as uint32 not as uint16.
* Fix a couple of related parsing issues.
* in the info3 reply in a samlogon, return the ACB-flags (instead of
  returning zero)

Guenther
(This used to be commit 5b89e8bc24)
2007-10-10 11:10:25 -05:00
Jeremy Allison
202bc164ca r13641: Finish fix for #3510. Don't use client schannel when told
not to, cope with a server that doesn't offer schannel also.
Jeremy
(This used to be commit 68005f6bdb)
2007-10-10 11:10:20 -05:00
Günther Deschner
fd5ecef41c r13639: Never overwrite the acct_flags in rpccli_netlogon_sam_network_logon().
Guenther
(This used to be commit c201e51de3)
2007-10-10 11:10:20 -05:00
Jeremy Allison
39a572e010 r13539: Add 128 bit creds processing client and server. Thanks to Andrew Bartlett's
Samba4 code.
Jeremy.
(This used to be commit a2fb436fc5)
2007-10-10 11:10:11 -05:00
Günther Deschner
6a6f2463f6 r13522: Add SAMR_GET_USRDOM_PWINFO client-side.
Guenther
(This used to be commit 290a581b75)
2007-10-10 11:10:09 -05:00
Jeremy Allison
d3196b85c9 r13475: Fix erroneous initialization caused by my renaming types.
Jeremy.
(This used to be commit e8e2fc79b4)
2007-10-10 11:10:05 -05:00
Günther Deschner
f0a6a004f3 r13451: Fix build warning.
Guenther
(This used to be commit d27771ca1d)
2007-10-10 11:10:04 -05:00
Günther Deschner
e83c7d0141 r13442: Implement samr_chgpasswd_user3 server-side.
Guenther
(This used to be commit f60eddc0a4)
2007-10-10 11:10:03 -05:00
Volker Lendecke
da979c9e7e r13350: Implement rpccli_samr_set_domain_info. Weird that it was not around :-)
Implement 'net rpc shell account' -- An editor for account policies

nt_time_to_unix_abs changed its argument which to me seems wrong, and I could
not find a caller that depends on this. So I changed it. Applied some more
const in time.c.

Volker
(This used to be commit fc73690a70)
2007-10-10 11:06:26 -05:00
Gerald Carter
0af1500fc0 r13316: Let the carnage begin....
Sync with trunk as off r13315
(This used to be commit 17e63ac4ed)
2007-10-10 11:06:23 -05:00
Günther Deschner
54b1c585bb r12853: Fix segfault in "net rpc vampire|samdump" (Bugzilla #3390).
The session key, after beeing set, was zeroed later on by the prs_init
in the CLI_DO_RPC macro.

Guenther
(This used to be commit eaaeaa767e)
2007-10-10 11:06:04 -05:00
Jeremy Allison
76796e212c r12275: Fix memory leak found by Mikhail Kshevetskiy <kl@laska.dorms.spbu.ru>
and followed up by derrell@samba.org.
Jeremy.
(This used to be commit 5cab88f144)
2007-10-10 11:05:51 -05:00
Derrell Lipman
0dc59604f7 r12236: r11740@cabra: derrell | 2005-12-14 13:16:58 -0500
check in the DEBUG message referenced in the previous commit
(This used to be commit 6c04a8f9ad)
2007-10-10 11:05:50 -05:00
Derrell Lipman
765daab643 r12225: r11729@cabra: derrell | 2005-12-13 22:59:45 -0500
1. Fix a crash bug which should have reared its ugly head ages ago, but for
    some reason, remained dormant until recently.  The bug pertained to
    libsmbclient doing a structure assignment of a cli after having opened a
    pipe.  The pipe open code makes a copy of the cli pointer that was passed
    to it.  If the cli is later copied (and that cli pointer that was saved
    is no longer valid), the pipe code will cause a crash during shutdown or
    when the copied cli is closed.

 2. The 'type' field in enumerated shares was not being set correctly with
    the new RPC-based mechanism for enumerating shares.
(This used to be commit 62a02b8f2a)
2007-10-10 11:05:50 -05:00
Günther Deschner
436b3dd88a r12106: Fix return value
Guenther
(This used to be commit 1fa8039397)
2007-10-10 11:05:45 -05:00
Günther Deschner
41eb1127fd r11963: add rpccli_samr_chgpasswd3 from samba4.
Guenther
(This used to be commit 0705fed566)
2007-10-10 11:05:40 -05:00
Günther Deschner
d93c2b1046 r11854: Remove unused DOM_SID.
Guenther
(This used to be commit 8609484ff6)
2007-10-10 11:05:30 -05:00
Günther Deschner
63addcb4d7 r11853: Add Dsr_GetSiteName (handy for experimenting with GPOs).
Guenther
(This used to be commit c54430a7b5)
2007-10-10 11:05:30 -05:00
Günther Deschner
e09cc27d3b r11852: Fill in samr_get_dom_pwinfo based on Samba4.
Guenther
(This used to be commit a8bc4bc902)
2007-10-10 11:05:30 -05:00
Volker Lendecke
32cf16f3cf r11706: Implement dsr_getdcname client code. It's handy: It not only gives you the IP
address but also the fqdn of the remote dc and site info.

Volker
(This used to be commit 62d01ce7e6)
2007-10-10 11:05:24 -05:00
Jeremy Allison
fcceedd67c r11573: Adding Andrew Bartlett's patch to make machine account
logons work if the client gives the MSV1_0_ALLOW_SERVER_TRUST_ACCOUNT
or MSV1_0_ALLOW_WORKSTATION_TRUST_ACCOUNT flags. This changes
the auth module interface to 2 (from 1). The effect of this is
that clients can access resources as a machine account if they
set these flags. This is the same as Windows (think of a VPN
where the vpn client authenticates itself to a VPN server
using machine account credentials - the vpn server checks
that the machine password was valid by performing a machine
account check with the PDC in the same was as it would a
user account check. I may add in a restriction (parameter)
to allow this behaviour to be turned off (as it was previously).
That may be on by default.
Andrew Bartlett please review this change carefully.
Jeremy.
(This used to be commit d1caef8663)
2007-10-10 11:05:20 -05:00
Jeremy Allison
5678e4abb0 r11492: Fix bug #3224 (I hope). Correctly use machine_account_name
and client_name when doing netlogon credential setup.
Jeremy.
(This used to be commit 37e6ef9389)
2007-10-10 11:05:18 -05:00
Jeremy Allison
e12eb25793 r11491: If we get a reject ensure we're printing out the server/domain/machine
a/c we were asking for.
Jeremy.
(This used to be commit 3ba5d02cff)
2007-10-10 11:05:18 -05:00