1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
Commit Graph

3991 Commits

Author SHA1 Message Date
Andrew Bartlett
824289dcc2 r5902: A rather large change...
I wanted to add a simple 'workstation' argument to the DCERPC
authenticated binding calls, but this patch kind of grew from there.

With SCHANNEL, the 'workstation' name (the netbios name of the client)
matters, as this is what ties the session between the NETLOGON ops and
the SCHANNEL bind.  This changes a lot of files, and these will again
be changed when jelmer does the credentials work.

I also correct some schannel IDL to distinguish between workstation
names and account names.  The distinction matters for domain trust
accounts.

Issues in handling this (issues with lifetime of talloc pointers)
caused me to change the 'creds_CredentialsState' and 'struct
dcerpc_binding' pointers to always be talloc()ed pointers.

In the schannel DB, we now store both the domain and computername, and
query on both.  This should ensure we fault correctly when the domain
is specified incorrectly in the SCHANNEL bind.

In the RPC-SCHANNEL test, I finally fixed a bug that vl pointed out,
where the comment claimed we re-used a connection, but in fact we made
a new connection.

This was achived by breaking apart some of the
dcerpc_secondary_connection() logic.

The addition of workstation handling was also propogated to NTLMSSP
and GENSEC, for completeness.

The RPC-SAMSYNC test has been cleaned up a little, using a loop over
usernames/passwords rather than manually expanded tests.  This will be
expanded further (the code in #if 0 in this patch) to use a newly
created user account for testing.

In making this test pass test_rpc.sh, I found a bug in the RPC-ECHO
server, caused by the removal of [ref] and the assoicated pointer from
the IDL.  This has been re-added, until the underlying pidl issues are
solved.
2007-10-10 13:11:07 -05:00
Andrew Bartlett
d585e1a759 r5901: Add another option to the test script - the realm, which must match
the real ream, not just the short domain name.

Andrew Bartlett
2007-10-10 13:11:07 -05:00
Andrew Bartlett
a6c502832c r5900: Use flatname to specify the netbios domain name (matches what win2k3
uses for trusted domain records) in the secrets join records.

Andrew Bartlett
2007-10-10 13:11:07 -05:00
Andrew Bartlett
50af206477 r5899: Fix spelling.
Andrew Bartlett
2007-10-10 13:11:07 -05:00
Andrew Bartlett
6b8b40f73b r5898: Handle errors in the 'sync' name and IP address handling code.
Andrew Bartlett
2007-10-10 13:11:07 -05:00
Andrew Bartlett
a16339729d r5895: Remove old auth_domain code - to be replaced with entirely new implementation.
Andrew Bartlett
2007-10-10 13:11:06 -05:00
Andrew Bartlett
7822101cb5 r5879: Rename SAMR_FIELD_WORKSTATION to SAMR_FIELD_WORKSTATIONS - it is a list.
Andrew Bartlett
2007-10-10 13:11:06 -05:00
Andrew Bartlett
b7297c44fa r5878: Be clear which machine name (We have one worksation, and one BDC) we
are doing logins with.

Andrew Bartlett
2007-10-10 13:11:06 -05:00
Andrew Bartlett
b484776cc4 r5877: It is not an error to have a zero-length secret, after decryption.
Andrew Bartlett
2007-10-10 13:11:06 -05:00
Andrew Bartlett
08b47e2dc0 r5876: Add a test account for the duration of the samsync - to ensure we have
a good variety of things to test against.

Add code to testjoin to handle this just like test machine accounts

Soon I'll remove the 'must change password' flag, so we can do logins with it.

Andrew Bartlett
2007-10-10 13:11:06 -05:00
Jelmer Vernooij
d25163159c r5871: Remove file with unused function (that uses fstring)
Remove fstring usage from version.c
2007-10-10 13:11:06 -05:00
Jelmer Vernooij
ff478d44be r5867: winreg depends on initshutdown now (uses initshutdown_String) 2007-10-10 13:11:05 -05:00
Jelmer Vernooij
ea61ec1122 r5866: Add InitShutdown IDL and torture test.
Implement push side of NDR_LEN4|NDR_NOTERM strings (pull side was already present)
2007-10-10 13:11:05 -05:00
Jelmer Vernooij
2603a7326d r5853: Move some of the functions not specific to the Samba NDR parser generator
to a new ndr.pm.
Add function that can generate a "OrderTable" describing the order
in which the NDR data will be pushed/pulled.
2007-10-10 13:11:05 -05:00
Jelmer Vernooij
5162daa946 r5852: Rename ndr.pm to ndr_parser.pm
I'm going to add a ndr.pm later on that'll generate a
tree with necessary information for the two NDR backends
(eparser, ndr_parser) containing alignment info, etc.
2007-10-10 13:11:05 -05:00
Stefan Metzmacher
2a6a075c7d r5850: enable parsing of revision 4 security acl's
metze
2007-10-10 13:11:05 -05:00
Stefan Metzmacher
29d898a338 r5839: add LDAP DirSync control idl
metze
2007-10-10 13:11:05 -05:00
Stefan Metzmacher
63229b9503 r5830: start to analyse the attribute values, depending on the attribute type
metze
2007-10-10 13:11:05 -05:00
Stefan Metzmacher
3e6ec81128 r5828: add some idl for DsAddEntry()
metze
2007-10-10 13:11:04 -05:00
Tim Potter
d59bc9dc9b r5827: Make ndrdump accept a uuid as well as a pipe name to specify
which rpc interface to use.
2007-10-10 13:11:04 -05:00
Stefan Metzmacher
1084ad4bfc r5800: fix recursiv printing in ndr_print_DsGetNCChangesInfo1()
metze
2007-10-10 13:11:04 -05:00
Stefan Metzmacher
bcde67a7ef r5799: more DsGetNCChanges updates, I'm starting to understand it...
also add a really simple torture test for DsGetNCChanges

metze
2007-10-10 13:11:04 -05:00
Stefan Metzmacher
2fc8a604b0 r5798: limit the size of an sid, 28 bytes complete is the biggest SID
that can be handled.

tridge: do you think it would make sense to change the sub_auth[num_auths] to sub_auth[5],
        so we can copy the struct by sid1 = sid2;
	comments please

metze
2007-10-10 13:11:04 -05:00
Stefan Metzmacher
483bb1418f r5797: - add idl property [subcontext_size()]
this can be used like this
  [subcontext_size(28),subcontext(0)] dom_sid sid;

  this descripes a fixed 28 byte buffer which contains a dom_sid,
  and the rest of the buffer is padded with zero bytes if the dom_sid doesn't
  need all 28 byte in it's ndr encoding.

- only push and pull the subcontext when we are in the NDR_SCALARS section
  (tridge, jelmer: I hope this is correct for all cases...!?:-)

metze
2007-10-10 13:11:04 -05:00
Stefan Metzmacher
8ac0928a91 r5796: add ndr_* function for int8 and int16
metze
2007-10-10 13:11:03 -05:00
Jelmer Vernooij
0d590906cd r5785: Fix subcontext pushes 2007-10-10 13:11:03 -05:00
Andrew Bartlett
fd748f9d2f r5783: Test renaming of accounts in the RPC-SAMR test, and add support into
the SAMR server.

Andrew Bartlett
2007-10-10 13:11:03 -05:00
Tim Potter
c3c6dafc31 r5782: Use standard input for reading packet data if filename not specified. 2007-10-10 13:11:03 -05:00
Tim Potter
35354456b2 r5781: Fix build. 2007-10-10 13:11:03 -05:00
Tim Potter
1ee84e373e r5780: Remove unused arguments. 2007-10-10 13:11:03 -05:00
Tim Potter
dbb56e9a59 r5779: Remove signal and timeout gubbage from tdb. 2007-10-10 13:11:03 -05:00
Tim Potter
8b83eca265 r5778: Remove tdb_set_lock_alarm() function from wrappers at tridge's request. 2007-10-10 13:11:02 -05:00
Tim Potter
170139035a r5777: At some stage SIG_ATOMIC_T was renamed to sig_atomic_t. This should
fix abartlet's compile problem.
2007-10-10 13:11:02 -05:00
Jelmer Vernooij
e193555f0e r5775: Remove some unused functions (unions are no longer as special as they used to be)
Add oxid mapping table support in DCOM
2007-10-10 13:11:02 -05:00
Tim Potter
80dfac3640 r5769: Fix unused variable warning. 2007-10-10 13:11:02 -05:00
Stefan Metzmacher
1a4560997d r5766: get some more DsGetNCChanges stuff parsing correct
metze
2007-10-10 13:11:01 -05:00
Stefan Metzmacher
a8f7c3e59f r5765: remove unused var
metze
2007-10-10 13:11:01 -05:00
Stefan Metzmacher
112043b180 r5764: add support for embedded ref pointers
metze
2007-10-10 13:11:01 -05:00
Stefan Metzmacher
cf7c1352ab r5742: - add torture test and idl for DsReplicaUpdateRefs()
(the torture test currently only tests if the idl is correct)

- add start for idl for DsGetNCChanges()
  (if someone didn't noticed the current ethereal trunk code can
   successful decrypt DCERPC and LDAP gsskrb5 encrypted blobs,
   when you provide a keytab and have compiled against heimdal :-)

- add a view bitmaps and enum's for better debugging

metze
2007-10-10 13:11:01 -05:00
Stefan Metzmacher
f543eb4ede r5737: add some error codes
metze
2007-10-10 13:11:01 -05:00
Stefan Metzmacher
eaac0f2147 r5736: fix to avoid endless recursion in ndr_size_*() calculation
metze
2007-10-10 13:11:00 -05:00
Jeremy Allison
23733abfa2 r5730: More fun with delayed write semantics with multiple file handles
open on the same file on the same connection.
Jeremy.
2007-10-10 13:11:00 -05:00
Steve French
7f6ea98e0f r5716: Add new Unix extensions defines for infolevels 2007-10-10 13:11:00 -05:00
Jelmer Vernooij
a3e136b2f3 r5709: Leave out the pull/push call with NDR_BUFFERS for not just
scalars but also for structs/unions containing only scalars.
2007-10-10 13:11:00 -05:00
Jelmer Vernooij
7ecc2e6130 r5697: Give an error message when a ref pointer is NULL (requested by tpot) 2007-10-10 13:11:00 -05:00
Stefan Metzmacher
67a2b09126 r5682: fix the build
metze
2007-10-10 13:11:00 -05:00
Stefan Metzmacher
bb2622a0c9 r5681: fix the build and compiler wanings
metze
2007-10-10 13:11:00 -05:00
Jelmer Vernooij
0d789872a8 r5680: Don't crash if none of the predefined keys is available (reported by Alexander) 2007-10-10 13:10:59 -05:00
Rafal Szczesniak
7278c7d837 r5679: Complete basic test of rpc_composite_userinfo function (which
btw proves the function is completely broken but that's what
tests are for)

rafal
2007-10-10 13:10:59 -05:00
Rafal Szczesniak
e492a2a604 r5678: Torture tests require also libnet in order to run NET-* tests.
rafal
2007-10-10 13:10:59 -05:00