1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
Commit Graph

1203 Commits

Author SHA1 Message Date
Andreas Schneider
02cdb65fc6 s3-librpc: Add dcerpc_binding_vector_replace_iface(). 2011-08-01 08:50:35 +02:00
Andreas Schneider
9cc6f90424 s3-librpc: Add dcerpc_binding_vector_dup(). 2011-08-01 08:50:35 +02:00
Andreas Schneider
169d0c4312 s3-librpc: Add dcerpc_binding_vector_add_unix(). 2011-08-01 08:50:35 +02:00
Andreas Schneider
eaced2e909 s3-librpc: Add dcerpc_binding_vector_add_port(). 2011-08-01 08:50:35 +02:00
Andreas Schneider
c810e47519 s3-librpc: Add dcerpc_binding_vector_add_np_default(). 2011-08-01 08:50:35 +02:00
Andreas Schneider
08523ed6b8 s3-librpc: Add dcerpc_binding_vector_new(). 2011-08-01 08:50:34 +02:00
Günther Deschner
3fd1652104 s3-secrets: add lsa_secret struct to secrets IDL.
Guenther
2011-07-31 22:37:26 +02:00
Andrew Bartlett
481f05ce02 s3-gse Work around the MIT 1.9 gss_krb5_import_cred
We detect this function at configure time, but it currently fails to
operate the way we need - that is, when the principal is not
specified, it gives this error.  When the principal is specified we
get 'wrong principal in request' in the GSS acceptor, so for now the
best option is to fall back to the alternate approach.

Andrew Bartlett

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Wed Jul 20 06:35:05 CEST 2011 on sn-devel-104
2011-07-20 06:35:05 +02:00
Andrew Bartlett
8ee3ba791d s3-gse Allow printing the partial error string
We may not be able to obtain the full error string, so print what we can get.

This is required when the error is the the GSSAPI layer, not the mechanism.

Andrew Bartlett
2011-07-20 12:04:45 +10:00
Andreas Schneider
c69f2c4de9 s3-librpc: Pass messaging context to dcerpc register functions. 2011-07-14 16:10:47 +02:00
Andreas Schneider
45f70db010 s3-auth: Added remote_address to ntlmssp server.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04 18:28:00 +10:00
Andreas Schneider
541f3cf639 s3-rpc_server: Migrate rpc function to tsocket_address.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04 18:27:58 +10:00
Volker Lendecke
0a74caa473 s3: explicitly pass domain_sid to wbint_LookupRids() (bug #7841)
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Mon Jun 27 18:21:30 CEST 2011 on sn-devel-104
2011-06-27 18:21:30 +02:00
Andrew Bartlett
74eed8f3ed s3-param Remove special case for global_myname(), rename to lp_netbios_name()
There is no reason this can't be a normal constant string in the
loadparm system, now that we have lp_set_cmdline() to handle overrides
correctly.

Andrew Bartlett
2011-06-09 12:40:09 +02:00
Andrew Bartlett
a772797a38 librpc/idr Use the Samba3 notify.idl in common.
The extra fields in the structure that Samba4 does not use should not
bother it.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-06-09 12:40:08 +02:00
Andrew Bartlett
d057116cc2 server_id.idl: Bring server_id.idl in common
Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-06-09 12:40:08 +02:00
Andrew Bartlett
174893c312 s3-server_id change pid to hyper
This matches Samba4's server_id.

Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-06-09 12:40:08 +02:00
Andrew Bartlett
cc3b75b807 s3-server_id Add task_id to server_id to match Samba4
This will allow this structure to be shared, and allow us to create a
common messaging system between all Samba processes.  Samba4 uses the
task_id to indicate the different tasks within a single unix process.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-06-09 12:40:08 +02:00
Michael Adam
9549cf125a s3:librpc: remove unused file librpc/ndr/util.h
Autobuild-User: Michael Adam <obnox@samba.org>
Autobuild-Date: Tue May 31 15:19:46 CEST 2011 on sn-devel-104
2011-05-31 15:19:46 +02:00
Christian Ambach
df650fa8cf s3:smbd remove unused code
in the early CTDB days, the RELEASE_IP message was defined
and some code was added to react on such a message to make
smbd exit if the IP address it was using for the server socket
is removed by CTDB.
Later, it was discovered that we need to stop smbd immediately
and logic was added to ctdb_conn to call release_ip() without
going through the messaging system.

So this code is not used and can be removed

Autobuild-User: Christian Ambach <ambi@samba.org>
Autobuild-Date: Fri May 20 16:18:24 CEST 2011 on sn-devel-104
2011-05-20 16:18:24 +02:00
Andrew Bartlett
c615ebed6e s3-lib Replace StrCaseCmp() with strcasecmp_m()
strcasecmp_m() never needs to call to talloc, and via next_codepoint()
still has an ASCII fast-path bypassing iconv() calls.

Andrew Bartlett
2011-05-18 16:12:08 +02:00
Andrew Bartlett
41b3c38587 librpc/ndr Merge ndr_print_sockaddr_storage() into common code
There is no longer a reason to leave this source3 specific, and this
brings it into a library (avoiding duplicate symbols).

Andrew Bartlett
2011-05-18 16:12:08 +02:00
Michael Adam
05e8881fef s3:librpc: remove unneded gssapi includes from source3/librpc/crypto/gse.c
These come in via the smb_krb5.h include (and lib/replace/system/kerberos.h)
in the end.

Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>

Autobuild-User: Michael Adam <obnox@samba.org>
Autobuild-Date: Tue May 10 23:12:31 CEST 2011 on sn-devel-104
2011-05-10 23:12:31 +02:00
Jeremy Allison
4f41be356a Fix many const compiler warnings. 2011-05-05 10:41:59 -07:00
Günther Deschner
0bb4701a74 s3: remove various references to server side dcerpc structs (which are not needed).
Guenther
2011-05-02 15:03:44 +02:00
Günther Deschner
80fa624861 s3: move pipe_auth_data to dcerpc.h
Guenther
2011-05-02 15:03:44 +02:00
Günther Deschner
bc781bf7d9 s3-proto: remove duplicate prototypes.
Guenther
2011-04-29 21:01:05 +02:00
Günther Deschner
faf1175125 s3-proto: move more librpc prototypes to librpc/rpc/dcerpc.h
Guenther
2011-04-29 21:01:04 +02:00
Günther Deschner
bc6f24e89f s3-build: remove some unused headers.
Guenther
2011-04-29 12:19:03 +02:00
Andrew Bartlett
91ebf22fa8 s3-rpc_server Fix compile without kerberos
Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Wed Apr 27 23:08:48 CEST 2011 on sn-devel-104
2011-04-27 23:08:48 +02:00
Andrew Bartlett
cd7112ba84 s3-gse: Don't release the mech OID from gss_accept_security_context
This is constant data according to the man pages I find for this
fucntion, and causes a segfault to free() when linked to Heimdal.  I
am advised that while it is constant for gss_mech_krb5, it may not be
for other mechanisms, so an assert will ensure this is dealt with by
the programmer who extends this code in future.

Andrew Bartlett
2011-04-27 11:56:48 +10:00
Andrew Bartlett
6ec4306f8c auth/kerberos: Create common helper to get the verified PAC from GSSAPI
This only works for Heimdal and MIT Krb5 1.8, other versions will get
an ACCESS_DEINED error.

We no longer manually verify any details of the PAC in Samba for
GSSAPI logins, as we never had the information to do it properly, and
it is better to have the GSSAPI library handle it.

Andrew Bartlett
2011-04-27 11:56:48 +10:00
Andrew Bartlett
3a2afe4285 s3-gse: Allow the GSSAPI wrapper to load a keytab using gss_krb5_import_cred()
This Heimdal function does not set the global state, and allows the
GSSAPI server to progress further when compiled against Heimdal (such
as in the top level build).

The ability to specify a keytab has been removed from the API as it is
unused, and and the Heimdal function (avoiding setting global
variables) works with an open keytab.

Andrew Bartlett
2011-04-20 04:31:07 +02:00
Andrew Bartlett
1f534422cc s3-gse Allow GSSAPI wrapper to compile against Heimdal 2011-04-16 11:43:05 +02:00
Volker Lendecke
a671885f49 s3: Add wbint_Sids2UnixIDs idl & implementation
Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-13 14:13:25 -07:00
Volker Lendecke
091fd0f0f7 s3: Add wbint_LookupSids
This will be called from wb_lookupsids to query remote DCs via lsa

Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-13 14:13:24 -07:00
Günther Deschner
f102748061 s3-librpc: let librpc/rpc/dcerpc.h include ndr and generated dcerpc headers.
Guenther
2011-04-12 12:20:43 +02:00
Andrew Bartlett
0415a5736e s3-librpc Fix creation of in-memory keytab for previous password
We set the current password twice, rather than the current and old
password.

Andrew Bartlett
2011-04-06 12:34:58 +10:00
Günther Deschner
a730dff783 s3-libndr: add ../librpc/ndr/libndr.h include in some places.
Guenther
2011-03-31 00:14:01 +02:00
Günther Deschner
6e3f0d28a4 s3-includes: only include ntdomain.h where needed.
Guenther
2011-03-30 01:13:09 +02:00
Günther Deschner
146c1aac99 s3-auth: rpc_server needs auth.h
Guenther
2011-03-30 01:13:09 +02:00
Günther Deschner
b903c28939 librpc: bring more librpc prototypes in common.
Guenther
2011-03-23 23:59:11 +01:00
Andreas Schneider
73faa82bf9 s3-rpc_server: Implement an endpoint monitor loop. 2011-03-23 17:19:22 +01:00
Andreas Schneider
81a2046879 s3-librpc: Leave the epm registration connection open. 2011-03-23 17:19:22 +01:00
Stefan Metzmacher
72c1fe0081 librpc/rpc: move DCERPC_ flags to rpc_common.h
metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Sun Mar 13 20:45:53 CET 2011 on sn-devel-104
2011-03-13 20:45:53 +01:00
Stefan Metzmacher
f7840b3293 s3:librpc/rpc: add DCERPC_ANON_FALLBACK flag
With this they're in sync with source4.

metze
2011-03-13 19:24:57 +01:00
Stefan Metzmacher
08dca92499 librpc/rpc: move struct dcerpc_binding to rpc_common.h
metze
2011-03-13 16:53:05 +01:00
Stefan Metzmacher
7b7baecf1a s3:librpc/rpc: add target_principal to struct dcerpc_binding
This brings the source3 copy in sync with the source4 copy
of struct dcerpc_binding.

metze
2011-03-13 16:52:59 +01:00
Stefan Metzmacher
83c55ac67e librpc/rpc: move enum dcerpc_transport_t to rpc_common.h
metze
2011-03-13 16:33:06 +01:00
Stefan Metzmacher
b738e092a2 librpc/rpc: move dcerpc_binding_handle stuff to rpc_common.h
metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Fri Mar 11 12:28:08 CET 2011 on sn-devel-104
2011-03-11 12:28:08 +01:00
Stefan Metzmacher
5657c96714 s3:librpc/rpc: remove unused dcerpc_pipe define hack
metze
2011-03-11 11:02:24 +01:00
Günther Deschner
d92e060dd9 s3-epmap: fix uninitialized variable in ep_register()
Guenther

Signed-off-by: Günther Deschner <gd@samba.org>
2011-03-08 11:41:31 +01:00
Andreas Schneider
ce491edcad s3-librpc: Register NCALRPC pipes.
Signed-off-by: Günther Deschner <gd@samba.org>
2011-03-08 11:41:30 +01:00
Andreas Schneider
cc5b88545d s3-rpc_server: Introduce transport in pipe_struct.
Signed-off-by: Günther Deschner <gd@samba.org>
2011-03-08 11:41:30 +01:00
Andreas Schneider
148ed2c3f9 s3-librpc: Register endpoints using ncalrpc.
Signed-off-by: Günther Deschner <gd@samba.org>
2011-03-08 11:41:29 +01:00
Andreas Schneider
d343409d6b s3-rpc_client: Added DCERPC_AUTH_TYPE_NCALRPC bind.
Signed-off-by: Günther Deschner <gd@samba.org>
2011-03-08 11:41:29 +01:00
Andreas Schneider
c80e519cdc s3-librpc: Free memory we don't need.
Signed-off-by: Günther Deschner <gd@samba.org>
2011-03-08 11:41:28 +01:00
Andreas Schneider
a45353b3e2 s3-librpc: Added tcpip support for dcerpc_binding_vector_create.
Signed-off-by: Günther Deschner <gd@samba.org>
2011-03-08 11:41:28 +01:00
Andreas Schneider
bf18403c81 s3-rpc_client: Move client pipe functions to own header. 2011-02-28 18:15:04 +01:00
Gregor Beck
58081884f7 s3: smbcontrol to notify smbd about idmap changes
Autobuild-User: Michael Adam <obnox@samba.org>
Autobuild-Date: Mon Feb 28 14:07:23 CET 2011 on sn-devel-104
2011-02-28 14:07:23 +01:00
Andrew Bartlett
2e69e89456 s3-auth Rename auth_serversupplied_info varaiables: server_info -> session_info
These variables, of type struct auth_serversupplied_info were poorly
named when added into 2001, and in good consistant practice, this has
extended all over the codebase in the years since.

The structure is also not ideal for it's current purpose.  Originally
intended to convey the results of the authentication modules, it
really describes all the essential attributes of a session.  This
rename will reduce the volume of a future patch to replaced these with
a struct auth_session_info, with auth_serversupplied_info confined to
the lower levels of the auth subsystem, and then eliminated.

(The new structure will be the output of create_local_token(), and the
change in struct definition will ensure that this is always run, populating
local groups and privileges).

Andrew Bartlett

Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-02-22 16:20:10 +11:00
Andreas Schneider
59f7bcbc39 s3-librpc: Only register NCACN_NP.
This is the only transport we support at the moment.
2011-02-21 23:00:02 +01:00
Andrew Tridgell
c8b2b10976 s3-waf: use SAMBA3_*() build rules in source3/build
this brings the s3 waf build much closer to the proposed s3build top
level build, using the same bld.SAMBA3_*() rules

There are a few renames of subsystems in here, with a 3 suffix where
it would create a conflict.

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-02-18 16:46:41 +11:00
Andrew Tridgell
41b1f97943 s3-build: allow waf build of s3 IDL files from any top directory
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-02-18 15:09:46 +11:00
Günther Deschner
6840549123 s3: add server_id.idl and use only autogenerated code.
Volker, Tridge and other clustering gurus, please check.

It is ok to get rid of ifdef CLUSTER_SUPPORT here, right ?
Why was unique_id not marshalled at all ?

Guenther
2011-02-17 16:02:19 +01:00
Günther Deschner
e34ba447ec s3-librpc: move server_id marshalling to own helper file.
(in preparation of merging struct server_id).

Guenther

Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb 16 00:02:33 CET 2011 on sn-devel-104
2011-02-16 00:02:33 +01:00
Günther Deschner
b3ea56ae16 s3-librpc: no need to globally include endpointmapper headers.
Guenther

Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Mon Feb 14 12:31:56 CET 2011 on sn-devel-104
2011-02-14 12:31:56 +01:00
Günther Deschner
9d9659896b s3-librpc: remove duplicate prototypes.
Guenther
2011-02-14 11:47:19 +01:00
Günther Deschner
ad0a3185ce librpc: move preg.idl to main directory.
Guenther

Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Thu Feb 10 13:56:49 CET 2011 on sn-devel-104
2011-02-10 13:56:49 +01:00
Günther Deschner
fdd4d56405 s3: give ../librpc/ndr/util.c its own header.
Guenther
2011-02-10 12:58:06 +01:00
Günther Deschner
84dbc2a82d ndr: merge ndr_map_error2string and ndr_errstr.
Guenther
2011-02-08 08:58:31 +01:00
Günther Deschner
8b55ae1785 ndr: move null_ndr_syntax_id to the common libndr location.
Guenther
2011-02-08 08:58:21 +01:00
Günther Deschner
724c982131 ndr: merge duplicate ndr_map_error2ntstatus() functions.
Guenther
2011-02-08 08:58:11 +01:00
Jeremy Allison
40850b3b27 Fix a couple of missing checks on talloc returns.
Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Wed Feb  2 22:23:46 CET 2011 on sn-devel-104
2011-02-02 22:23:46 +01:00
Günther Deschner
885887ac1b s3-waf: no need to call pidl with --samba3-ndr-client anymore.
Guenther

Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb  2 21:38:23 CET 2011 on sn-devel-104
2011-02-02 21:38:23 +01:00
Günther Deschner
586b2ee826 s3-epmap: use correct dcerpc client header in dcerpc_ep.c
Guenther

Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb  2 19:50:02 CET 2011 on sn-devel-104
2011-02-02 19:50:02 +01:00
Andreas Schneider
31779662b7 s3-librpc: Added dcerpc_binding_vector_create function. 2011-02-02 12:44:20 +01:00
Andreas Schneider
20afe97177 s3-librpc: Added dcerpc register endpoint functions. 2011-02-02 12:44:20 +01:00
Günther Deschner
c9f4fad75c idl: add file_id idl.
Guenther

Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Tue Jan 25 12:27:00 CET 2011 on sn-devel-104
2011-01-25 12:27:00 +01:00
Günther Deschner
f0b3c72bcc s3-libndr: remove cmdline_lp_ctx.
Guenther
2011-01-25 11:42:46 +01:00
Günther Deschner
7eac3100ea libndr: move ndr_print_bool to ndr_basic.c
Guenther
2011-01-25 11:42:46 +01:00
Stefan Metzmacher
b7d6d3b840 s3:librpc: remove prototype of dcerpc_binding_handle_set_ref_alloc()
This function doesn't exist anymore.

metze
2011-01-21 07:21:10 +01:00
David Disseldorp
0b188e7784 s3-printing: Initiate pcap reload from parent smbd
Since commit 7022554, smbds share a printcap cache (printer_list.tdb),
therefore ordering of events between smbd processes is important when
updating printcap cache information. Consider the following two process
example:
1) smbd1 receives HUP or printcap cache time expiry
2) smbd1 checks whether pcap needs refresh, it does
3) smbd1 marks pcap as refreshed
4) smbd1 forks child1 to obtain cups printer info
5) smbd2 receives HUP or printcap cache time expiry
6) smbd2 checks whether pcap needs refresh, it does not (due to step 3)
7) smbd2 reloads printer shares prior to child1 completion (stale pcap)
8) child1 completion, pcap cache (printer_list.tdb) is updated by smbd1
9) smbd1 reloads printer shares based on new pcap information

In this case both smbd1 and smbd2 are reliant on the pcap update
performed on child1 completion.
The prior commit "reload shares after pcap cache fill" ensures that
smbd1 only reloads printer shares following pcap update, however smbd2
continues to present shares based on stale pcap data.

This commit addresses the above problem by driving pcap cache and
printer share updates from the parent smbd process.
1) smbd0 (parent) receives a HUP or printcap cache time expiry
2) smbd0 forks child0 to obtain cups printer info
3) child0 completion, pcap cache (printer_list.tdb) is updated by smbd0
4) smbd0 reloads printer shares
5) smbd0 notifies child smbds of pcap update via message_send_all()
6) child smbds read fresh pcap data and reload printer shares

This architecture has the additional advantage that only a single
process (the parent smbd) requests printer information from the printcap
backend.

Use time_mono in housekeeping functions As suggested by Björn Jacke.
2011-01-07 15:37:39 -08:00
Stefan Metzmacher
fbcbeabd65 s3:build: don't use cli_wbint.c any more
metze
2011-01-04 16:37:19 +01:00
Stefan Metzmacher
2d466b41cd s3:librpc: use netsec_outgoing_sig_size() instead of a hardcoded signature
size

metze
2011-01-03 16:44:29 +01:00
Volker Lendecke
ab1b857f58 s3: Fix bug 7842: WINBIND_LOOKUPRIDS does not return the proper domain name
Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Mon Dec  6 21:18:07 CET 2010 on sn-devel-104
2010-12-06 21:18:07 +01:00
Jelmer Vernooij
8cf61377aa waf: Remove lib prefix from libraries manually. 2010-10-26 10:17:17 -07:00
Günther Deschner
0a1ce77e29 s3-libndr: handle NDR_ERR_IPV6ADDRESS case in ndr_errstr().
Guenther
2010-10-05 13:09:05 +00:00
Volker Lendecke
bad98e37e7 s3: Add "smbcontrol winbindd ip-dropped <local-ip>"
This is supposed to improve the winbind reconnect time after an ip address
has been moved away from a box. Any kind of HA scenario will benefit from
this, because winbindd does not have to wait for the TCP timeout to kick in
when a local IP address has been dropped and DC replies are not received
anymore.
2010-09-30 14:30:33 +02:00
Günther Deschner
0e1588aa98 s3-waf: add NDR_PERFCOUNT subsystem.
Guenther
2010-09-28 01:16:48 +02:00
Günther Deschner
db4bec3f4c s3-waf: convert LIBNET et al into subsystems.
Guenther
2010-09-24 21:09:45 -07:00
Günther Deschner
fa3eb7f5d4 s3-waf: let winbind depend on SRV_NDR_WBINT and RPCCLI_NDR_WBINT.
Guenther
2010-09-24 12:14:23 -07:00
Günther Deschner
2b76785311 s3-waf: add RPC_NDR_WBINT to librpc/wscript_build.
Guenther
2010-09-24 12:14:11 -07:00
Günther Deschner
c54881b2e1 s3-waf: add wscript_build to s3 librpc dir for NDR_ subsystems.
Guenther
2010-09-24 11:12:39 -07:00
Simo Sorce
926a3f4fcd s3-dcerpc: Use spnego own sign/seal functions
Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:54:24 -07:00
Simo Sorce
3453bc7b11 s3-dcerpc: make auth context opaque
This way we always double check in advance that the context
is of the right type with talloc_get_type_abort instead of
potentially accessing random memory by addressing the wrong
structure in the union.

Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:54:24 -07:00
Simo Sorce
d10e192b83 s3-dcerpc: finally remove the legaqcy spnego_type variable from pipe_auth_data
Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:54:23 -07:00
Simo Sorce
4cdee9b0ed s3-dcerpc: add spnego server helpers
squashed: add michlistMIC signature checks

Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:54:23 -07:00
Simo Sorce
77c73a5ec9 spnego: make spnego_context public
Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:54:23 -07:00
Simo Sorce
2c9f420d75 s3-dcerpc: move client spnego stuff in /librpc/crypto
Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:54:22 -07:00
Simo Sorce
59722ef2fb spnego: avoid explicit dependency on dcerpc specific structures
Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:54:22 -07:00
Simo Sorce
4194383cfe gssapi: remove unused function argument
Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:36:54 -07:00
Simo Sorce
412ebad02b gssapi: avoid explicit dependency on dcerpc specific structures
Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:36:54 -07:00
Simo Sorce
0e5eb82a6f s3-dcerpc: move crypto stuff in /librpc/crypto
Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-23 10:36:54 -07:00
Günther Deschner
47a7a5830c libnetapi: deal with NULL data in I_NetLogonControl2().
Guenther
2010-09-19 02:47:10 +02:00
Simo Sorce
f7f9916dc7 s3-rpc_server: Added helper functions to read data from a ncacn socket.
Signed-off-by: Andreas Schneider <asn@cynapses.org>
2010-09-15 12:53:42 +02:00
Günther Deschner
45d772e0e6 libnetapi: add DOMAIN_CONTROLLER_INFO_FLAGS.
Guenther
2010-09-15 08:32:58 +02:00
Julien Kerihuel
e5e5a1110f Add unique IP address binding for client connections (EPM and ncacn_ip_tcp levels)
This allows for binding strings like this:

  ncacn_ip_tcp:host[localaddress=192.168.2.1,seal]

which will force the connection to be locally bound to the specified
IP address

Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-07 09:55:14 +10:00
Stefan Metzmacher
54d2dce7b1 librpc/rpc: add dcerpc_binding_handle_set_timeout()
metze
2010-09-04 09:01:19 +02:00
Stefan Metzmacher
27918981de librpc/rpc: add set_timeout() to dcerpc_binding_handle_ops
metze
2010-09-04 09:01:11 +02:00
Simo Sorce
804aaad526 s3-kerberos: use krb5 compat macros in fill_keytab_from_password()
This one uses the compat macro in the right way, without actually
breaking the code.

Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-02 22:48:09 +02:00
Simo Sorce
d9c63fbe92 Revert "s3-kerberos: use krb5 compat macros in fill_keytab_from_password()."
This reverts commit 9986d25ed1.

This patch was causing us to free unallocated memory.

Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-02 22:48:09 +02:00
Günther Deschner
d8c9756d53 s3-kerberos: use more krb5 compat macros in get_mem_keytab_from_secrets().
Guenther
2010-08-31 23:17:39 +02:00
Günther Deschner
765bee9d7a s3-kerberos: use smb_get_enctype_from_kt_entry() in
get_mem_keytab_from_secrets().

Guenther
2010-08-31 23:17:39 +02:00
Günther Deschner
e26a936333 s3-kerberos: use get_kerberos_allowed_etypes in fill_keytab_from_password().
Guenther
2010-08-31 23:17:39 +02:00
Günther Deschner
9986d25ed1 s3-kerberos: use krb5 compat macros in fill_keytab_from_password().
Guenther
2010-08-31 23:17:39 +02:00
Günther Deschner
3d78279fd4 s3-kerberos: fix flush_keytab() compile with heimdal.
krb5_kt_cursor is not a pointer in heimdal but a struct.

Guenther
2010-08-31 23:17:39 +02:00
Günther Deschner
9697687e25 dcerpc-gssapi: include missing dcerpc_krb5.h header.
Guenther
2010-08-30 14:47:52 +02:00
Günther Deschner
d524f58518 dcerpc-gssapi: fix "shadows a global declaration" warning when gssapi is unavailable.
Guenther
2010-08-30 14:44:13 +02:00
Simo Sorce
36fdb211a6 dcerpc-gssapi: add function to retrieve client name
Signed-off-by: Günther Deschner <gd@samba.org>
2010-08-30 14:34:01 +02:00
Simo Sorce
d15d76af5f dcerpc-gssapi: add function to extract authtime
Signed-off-by: Günther Deschner <gd@samba.org>
2010-08-30 14:33:14 +02:00
Simo Sorce
6c80e04120 dcerpc-gssapi: add function to extract authorization data (PAC) form gssapi context
Signed-off-by: Günther Deschner <gd@samba.org>
2010-08-30 14:33:01 +02:00
Simo Sorce
fb1aef085e dcerpc-gssapi: add function to check flags
Signed-off-by: Günther Deschner <gd@samba.org>
2010-08-30 14:32:47 +02:00
Simo Sorce
e6ed1dc249 dcerpc-gssapi: add initial server side code
Signed-off-by: Günther Deschner <gd@samba.org>
2010-08-30 14:32:33 +02:00
Simo Sorce
b31f75d8f6 s3-dcerpc: add krb5 helpers
Signed-off-by: Günther Deschner <gd@samba.org>
2010-08-30 14:27:48 +02:00
Günther Deschner
3aab0c701c s3-build: only include rpc_misc.h where needed.
Guenther
2010-08-26 00:26:01 +02:00
Stefan Metzmacher
5d7c27cb5b s3:librpc: make dcerpc_read_ncacn_packet_send/recv() available
metze
2010-08-20 18:09:26 +02:00
Günther Deschner
16ad1bbb4e s3-dcerpc: try to fix the non gssapi build.
Guenther
2010-08-17 13:18:34 +02:00
Günther Deschner
36cfadcf6a s3-dcerpc: fix c++ build warning.
Guenther
2010-08-17 13:06:36 +02:00
Simo Sorce
86914b8fab s3-dcerpc: properly implement gse/spnego_get_session_key 2010-08-17 06:33:13 -04:00
Simo Sorce
72a0098415 s3-dcerpc: Pull packet in the caller, before validation 2010-08-17 06:33:13 -04:00
Andreas Schneider
7644fbdff9 s3-waf: Added missing client option to pidl list for wbint. 2010-08-16 21:40:04 +02:00
Andreas Schneider
1b022d1d3d s3-waf: Try to fix the idl build. 2010-08-16 21:31:31 +02:00
Michael Adam
3b56f7f6b5 s3:winbind: remove the method REMOVE_MAPPING from winbind's API
Michael
2010-08-14 02:10:34 +02:00
Michael Adam
474020b1ae s3:winbind: remove the method SET_MAPPING from winbind's API
Michael
2010-08-14 02:10:33 +02:00
Michael Adam
66e67c1bad s3:winbind: remove SET_HWM from winbind's API. 2010-08-14 02:10:31 +02:00
Günther Deschner
bb8936c087 s3-dcerpc: fix build warning seen with -O3.
"warning: assuming signed overflow does not occur when assuming that (X + c) < X is always false"

Guenther
2010-08-13 15:20:58 +02:00
Stefan Metzmacher
2c0e296dd7 s3:rpc_client: add dcerpc_binding_handle backend
metze
2010-08-12 14:31:21 +02:00
Günther Deschner
385adcce73 s3-libnet_join: add ads.h as helper header to IDL.
Guenther
2010-08-05 00:32:02 +02:00
Günther Deschner
64b26affe0 s3-dcerpc: fix some uninitialized variables build warnings.
Guenther
2010-08-03 15:57:56 +02:00
Günther Deschner
322b524194 s3-build: fix some c++ build warnings.
Guenther
2010-08-02 12:05:03 +02:00
Simo Sorce
4c64e4d4af s3-dceprc: Improve dcerpc_guess_sizes() interface
Make it possible to pass in the NDR padding size so that theoretically
client and server code can decide to use a different alignment.

Pass in the header length as a parameter so that this function can be used for
different type of packets.

Make sure padding size will not make the fragment exceed the maximum length.

Calculate padding taking in account the header length.
2010-07-30 14:55:28 -04:00
Simo Sorce
3469fbc5e4 s3-dcerpc: rationalize packet creation in the server code
Move all related functions into create_next_packet, but make it transport
neutral (not pass in pipse_struct)
2010-07-30 14:55:27 -04:00
Simo Sorce
a9d3a596a7 s3-dcerpc: Make function to guess pdu sizes common. 2010-07-30 14:55:27 -04:00
Simo Sorce
186f93633b s3-dcerpc: use common spengo wrapper code for client SPNEGO/NTLMSSP 2010-07-30 14:55:27 -04:00
Simo Sorce
984438ca15 s3-dcerpc: add sign/seal support when using SPNEGO/KRB5 2010-07-30 14:55:27 -04:00
Simo Sorce
0b24e8e869 s3-dcerpc: Add SPNEGO incapsulation for KRB5 auth 2010-07-30 14:55:27 -04:00
Simo Sorce
e8ac4a8b82 s3-dcerpc: Try to fix build when gssapi_ext.h is not available 2010-07-28 17:12:57 -04:00
Simo Sorce
7c9c075987 Do not refernece pipe_auth_data directly in dcerpc_gssapi.c 2010-07-28 15:53:56 -04:00
Simo Sorce
7eaa15af2c s3-dcerpc: Add sign/seal with gssapi 2010-07-28 12:42:15 -04:00
Simo Sorce
1abcbd70ae s3-dcerpc: Add next authentication step with gssapi 2010-07-28 12:24:44 -04:00
Simo Sorce
135a82e78f s3-decrpc: Introduce gssapi support for dcerpc krb5 auth 2010-07-28 12:24:44 -04:00
Simo Sorce
2463a87177 s3-dcerpc: Use dcerpc_AuthType in pipe_auth_data 2010-07-28 12:19:32 -04:00
Simo Sorce
9565e3f6a7 s3-dcerpc: Make dcerpc_check_auth() common code 2010-07-28 12:17:41 -04:00
Simo Sorce
3139333419 s3-dcerpc: Move dcerpc_add_auth_footer() to the common helpers file 2010-07-28 12:15:13 -04:00
Andrew Tridgell
a709e423d2 waf-idl: put the gen_ndr/README file for source3 back
This was removed by 100d37fc46, probably
accidentially.
2010-07-19 22:17:17 +10:00
Simo Sorce
628b57ca37 s3-dcerpc: Move common cli/srv functions into a common file 2010-07-17 15:01:11 -04:00
Simo Sorce
65116adceb s3-dcerpc: Fix ability to receive Big Endian PDUs 2010-07-16 16:02:39 -04:00
Simo Sorce
100d37fc46 s3-dcerpc: Use DATA_BLOB for pipes_struct input data
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-16 01:51:18 +02:00
Simo Sorce
bd19c964d5 s3-dcerpc: Move common helpers into a common file
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-16 01:51:17 +02:00
Günther Deschner
5f92bd863c s3-registry: add preg.idl.
Guenther
2010-07-07 15:27:04 +02:00
Günther Deschner
6ab9eaf90f s3-notify: add MS-CIFS 2.2.7.4.2 FILE_NOTIFY_INFORMATION to IDL.
Guenther
2010-07-07 13:52:18 +02:00
Günther Deschner
eb634e8c7f s3-libnet_join: small IDL enhancement.
Guenther
2010-07-01 21:19:52 +02:00
Günther Deschner
bcd4077be6 s3: remove unused librpc/ndr/sid.c.
Guenther
2010-06-03 01:07:17 +02:00
Günther Deschner
60079f59b0 s3-idl: fix some missing dependencies to other IDL files.
Guenther
2010-05-28 02:49:36 +02:00
Kai Blin
b6c5d5de37 s3-waf: Fix up PIDL includes.
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
2010-05-20 22:16:15 +02:00
Stefan Metzmacher
5556deee7a s3-waf: Add autogeneration with PIDL 2010-05-20 22:16:15 +02:00
Günther Deschner
b75384546a librpc: finally merge ndr_string.c.
Guenther
2010-05-20 13:57:22 +02:00
Günther Deschner
6d9fe52310 s3-libndr: merge in better ndr warnings from s4 ndr_string.c
Guenther
2010-05-20 13:54:44 +02:00
Andrew Bartlett
864a95fd9c s3:winbind use no_srv_register to avoid needing rpc_srv_register
This pidl attribute avoids the need for this dummy function, which
helps s3compat.

Andrew Bartlett

Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-18 17:17:43 +02:00
Jelmer Vernooij
f9ca9e46ad Finish removal of iconv_convenience in public API's. 2010-05-18 11:45:30 +02:00
Günther Deschner
c94f1c16bd s3-libndr: make sure ndr_pull_string_array() only inspects string termination flags.
Otherwise the NOTERM case is not reachable for ascii strings (only utf16).

With this patch we now can have:
[flag(STR_ASCII|STR_NOTERM|NDR_REMAINING)] string_array array_name;

Guenther
2010-05-14 13:20:40 +02:00
Günther Deschner
cc46f4a319 s3-libnetjoin: omit admin password in generated ndr_print function.
Guenther
2010-05-04 16:31:34 +02:00
Andrew Tridgell
5bff08d9a9 s3-idl: removed gen_ndr files from source3/ as well 2010-05-04 13:47:07 +02:00
Stefan Metzmacher
845f9c01ed s3:librpc/rpc: move prototypes to dcerpc.h
metze
2010-03-23 18:44:31 +01:00
Stefan Metzmacher
b82f168c3c s3:librpc: remove unused stuff
metze
2010-03-19 17:05:46 +01:00
Volker Lendecke
4c1c3f2549 s3: Implement global locks in a g_lock tdb
This is the basis to implement global locks in ctdb without depending on a
shared file system. The initial goal is to make ctdb persistent transactions
deterministic without too many timeouts.
2010-02-12 23:12:09 +01:00
Volker Lendecke
8905b599b4 s3: Fix some nonempty blank lines 2010-01-23 14:35:37 +01:00
Volker Lendecke
9b6b01aab6 s3:winbind: Add a lower-cost alternative to wbinfo -t: wbinfo --ping-dc
This just does a NULL RPC call through an existing NETLOGON connection. If
someone knows an operation that "just works" and does not return NOT_SUPPORTED,
please tell me :-)
2009-12-21 23:23:52 +01:00
Günther Deschner
4d0fca4472 s3-winbind: properly include netlogon.idl in wbint.idl.
Guenther
2009-11-26 19:21:10 +01:00
Volker Lendecke
e181b88978 Revert "s3: Do not reference ndr_table_<pipe> in the cli_ routines directly"
This reverts commit daa964013b.
2009-11-08 19:43:47 +01:00
Volker Lendecke
47455b4d1a Revert "s3: Do not reference the ndr_tables in the server calls directly"
This reverts commit 98fb71782e.
2009-11-08 19:43:46 +01:00
Volker Lendecke
82c35e460e Revert "s3: Do not reference ndr_table when calling rpc_srv_register"
This reverts commit 494b2aff88.
2009-11-08 19:43:46 +01:00
Volker Lendecke
494b2aff88 s3: Do not reference ndr_table when calling rpc_srv_register 2009-11-08 13:12:15 +01:00
Volker Lendecke
98fb71782e s3: Do not reference the ndr_tables in the server calls directly
This involves storing the interface table in the pipes_struct
2009-11-08 13:12:14 +01:00
Volker Lendecke
daa964013b s3: Do not reference ndr_table_<pipe> in the cli_ routines directly 2009-11-08 13:12:13 +01:00
Volker Lendecke
5cdee7ae05 s3: Do the printing for DEBUGLEVEL>=10 centrally
12 insertions(+), 10651 deletions(-)

I think that says it all :-)
2009-11-07 11:07:37 +01:00
Günther Deschner
e92e33238c s3: add secrets.idl.
Guenther
2009-10-29 10:49:35 +01:00
Günther Deschner
8bd4378ff8 s3-libnetapi: add I_NetLogonControl{2} to IDL.
Guenther
2009-10-16 10:50:27 +02:00
Günther Deschner
a3306e352d s3-winbindd: add wbint_ChangeMachineAccount implementation.
Guenther
2009-10-13 12:42:44 +02:00
Günther Deschner
fea2a78beb s3: re-run make samba3-idl.
Guenther
2009-10-07 10:34:15 +02:00
Günther Deschner
cd82d4ba56 s3: add perfcount idl and generated files.
Guenther
2009-10-01 12:19:43 +02:00
Günther Deschner
0650423edf s3-libndr: fix build warning.
Guenther
2009-09-25 11:46:51 +02:00
Andrew Tridgell
a3f33356bb s3-rpc: samba3 needs the DCERPC_NDR64 define 2009-09-17 21:52:28 -07:00
Jeremy Allison
b92c399d97 Check in modified generated files for systems where pidl can't run.
Jeremy.
2009-09-17 11:16:54 -07:00
Volker Lendecke
04ea250aeb s3:winbind: Convert WINBINDD_SET_HWM to the new API 2009-09-07 01:28:32 +02:00
Volker Lendecke
4ad330d522 s3:winbind: Convert WINBINDD_REMOVE_MAPPING to the new API 2009-09-07 01:28:32 +02:00
Volker Lendecke
7159060450 s3:winbind: Convert WINBINDD_SET_MAPPING to the new API 2009-09-07 01:28:32 +02:00
Volker Lendecke
d9b7fd59b0 s3:winbind: Convert WINBINDD_CHECK_MACHACC to the new API 2009-09-07 01:28:32 +02:00
Volker Lendecke
0cae043b0c w3:winbind: Convert WINBINDD_ALLOCATE_GID to the new API 2009-08-30 09:48:28 +02:00