sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-27 03:21:53 +03:00
Code
103,711 Commits 60 Branches 1,144 Tags 452 MiB
8b8e73a310
Commit Graph

188 Commits

Author SHA1 Message Date
Richard Sharpe
1ef68eb680 Convert all uint32/16/8 to _t in source3/rpcclient. 
Signed-off-by: Richard Sharpe <rsharpe@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>
 2015-05-12 01:32:12 +02:00
Stefan Metzmacher
7d201c096e s3:rpcclient: remove unused code from cmd_lsa_get_username() 
lsa_GetUserName() doesn't require a policy handle.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Guenther Deschner <gd@samba.org>
 2014-01-16 16:22:52 +01:00
Jeremy Allison
0dc6181894 CVE-2013-4408:s3:Ensure LookupNames replies arrays are range checked. 
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10185

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Jeremy Allison <jra@samba.org>
 2013-12-09 07:05:46 +01:00
Jeremy Allison
b0ba4a5621 CVE-2013-4408:s3:Ensure LookupSids replies arrays are range checked. 
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10185

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Jeremy Allison <jra@samba.org>
 2013-12-09 07:05:46 +01:00
Michael Adam
f23fbbf735 rpcclient: fix output of lsalookupsids for sids of type DOMAIN 
For domain sids, don't print NAME\*unknown* but print NAME instead.

Signed-off-by: Michael Adam <obnox@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>
 2013-11-13 11:40:28 +01:00
Andrew Bartlett
34d52532b5 s3-rpcclient: pass struct ndr_interface_table down 
This will allow the target service (as determined from the IDL) to be
passed to GSSAPI (rather than the current, incorrect, "cifs").

Andrew Bartlett

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2012-01-18 16:23:24 +01:00
Günther Deschner
158f6d8f68 s3-rpcclient: add tool to call lsa_SetInformationTrustedDomain. 
"lsasettrustdominfo S-1-5-21-123456-123456-123456 13 1"

currently you only can set the encryption type field.

Guenther
 2011-11-29 13:15:39 +01:00
Andrew Bartlett
da4345a8d1 s3-ntlmssp Remove rpccli_get_pwd_hash and auth_ntlmssp_get_nt_hash 
The session key we want here (the only one that is availble to the
encryption layer) is the one obtained by cli_get_session_key(), as
NTLMSSP creates a per-session session key via key exchange and NTLMv2
negotiation.

The key was never directly the NT hash anyway (this is simply a
mistake, the extra MD4() was lost during my previous cleanup
f28f113d8e in 2008), but was MD4(NT
hash) in early implementations of NTLMSSP.

However, regardless this call is not available on domain trusts
between AD domains and Windows 2003 R2, making this less useful.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-08-03 18:48:03 +10:00
Andrew Bartlett
3d15137653 s3-talloc Change TALLOC_ARRAY() to talloc_array() 
Using the standard macro makes it easier to move code into common, as
TALLOC_ARRAY isn't standard talloc.
 2011-06-09 12:40:08 +02:00
Andrew Bartlett
73b377432c s3-talloc Change TALLOC_REALLOC_ARRAY() to talloc_realloc() 
Using the standard macro makes it easier to move code into common, as
TALLOC_REALLOC_ARRAY isn't standard talloc.

Andrew Bartlett
 2011-06-09 12:40:08 +02:00
Günther Deschner
2352e7cb7f s3-rpcclient: include rpc_client/cli_pipe.h globally in rpcclient.h 
Guenther
 2011-03-31 00:14:01 +02:00
Andreas Schneider
bf18403c81 s3-rpc_client: Move client pipe functions to own header. 2011-02-28 18:15:04 +01:00
Günther Deschner
36cd79f14b s3-rpcclient: prefer dcerpc_lsa_X functions. 
Guenther
 2011-02-02 19:02:35 +01:00
Günther Deschner
707d572f62 s3-rpcclient: use status variable. 
Guenther
 2011-02-02 19:02:29 +01:00
Andrew Bartlett
f768b32e37 libcli/security Provide a common, top level libcli/security/security.h 
This will reduce the noise from merges of the rest of the
libcli/security code, without this commit changing what code
is actually used.

This includes (along with other security headers) dom_sid.h and
security_token.h

Andrew Bartlett

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
 2010-10-12 05:54:10 +00:00
Günther Deschner
e978a3d3f4 s3-lsa: separate out init_lsa headers. 
Guenther
 2010-08-25 22:50:39 +02:00
Stefan Metzmacher
d6eb42cc61 s3:rpcclient: we also need some ndr_pull functions 
metze
 2010-08-08 11:05:18 +02:00
Günther Deschner
a75436e3ee s3-security: use shared SECINFO_DACL define. 
Guenther
 2010-06-03 11:00:12 +02:00
Andrew Bartlett
cba7f8b827 s3:dom_sid Global replace of DOM_SID with struct dom_sid 
This matches the structure that new code is being written to,
and removes one more of the old-style named structures, and
the need to know that is is just an alias for struct dom_sid.

Andrew Bartlett

Signed-off-by: Günther Deschner <gd@samba.org>
 2010-05-21 10:39:59 +02:00
Günther Deschner
230b880d14 s3-rpc_client: move protos to cli_lsarpc.h 
Guenther
 2010-05-18 21:42:41 +02:00
Günther Deschner
8bc9c343c4 s3-secdesc: remove "typedef struct sec_desc_buf SEC_DESC_BUF". 
Guenther
 2010-05-18 12:30:11 +02:00
Volker Lendecke
2002b4e4c2 s3: Remove a call to string_sid_talloc 2010-01-23 14:35:37 +01:00
Volker Lendecke
c2c71b8e05 s3: Fix sending NULL sids to lookupsids3 2010-01-23 14:35:37 +01:00
Volker Lendecke
9fcbe3a65c s3: Remove some pointless uses of string_sid_talloc 2010-01-23 14:35:37 +01:00
Volker Lendecke
8905b599b4 s3: Fix some nonempty blank lines 2010-01-23 14:35:37 +01:00
Günther Deschner
3d679a3b5f s3-rpc: Avoid including every pipe's client and server stubs everywhere in samba. 
Guenther
 2009-11-26 20:03:17 +01:00
Volker Lendecke
bb283af16f Revert "s3: Do not directly reference the ndr_table_* in rpcclient" 
This reverts commit 70c698fd54.
 2009-11-08 19:43:47 +01:00
Volker Lendecke
70c698fd54 s3: Do not directly reference the ndr_table_* in rpcclient 2009-11-08 00:28:36 +01:00
Günther Deschner
2f3a40844d s3-rpcclient: add deletetrustdom command. 
Guenther
 2009-10-30 12:28:48 +01:00
Günther Deschner
fbdda19549 s3-rpcclient: add createtrustdom command. 
Guenther
 2009-10-30 12:28:48 +01:00
Günther Deschner
6dab835fbb s3-rpcclient: Fix Coverity #935: UNINIT. 
Guenther
 2009-09-16 10:29:35 +02:00
Günther Deschner
cbac8e4fa0 s3-rpcclient: add lookupsids3 command. 
Guenther
 2009-09-11 13:59:56 +02:00
Günther Deschner
8bd730f5ad s3-rpcclient: add lookupnames4 command. 
Guenther
 2009-09-11 00:26:24 +02:00
Günther Deschner
7e9f8f0f95 s3-rpcclient: add LSA storeprivatedata command. 
Guenther
 2009-07-17 13:50:34 +02:00
Günther Deschner
27c39a2804 s3-rpcclient: add LSA retrieveprivatedata command. 
Guenther
 2009-07-17 13:50:34 +02:00
Günther Deschner
7194fc6a69 s3-rpcclient: add LSA setsecret command. 
Guenther
 2009-07-17 13:50:33 +02:00
Günther Deschner
1a862349e1 s3-rpcclient: add LSA querysecret command. 
Guenther
 2009-07-17 13:50:33 +02:00
Günther Deschner
f848f4f4d3 s3-rpcclient: add LSA deletesecret command. 
Guenther
 2009-07-17 13:50:33 +02:00
Günther Deschner
dee787cb77 s3-rpcclient: add LSA createsecret command. 
Guenther
 2009-07-17 13:50:33 +02:00
Günther Deschner
b5bec1a6d7 s3-secdesc: use SEC_FLAG_MAXIMUM_ALLOWED instead of SEC_RIGHTS_MAXIMUM_ALLOWED. 
Guenther
 2009-04-21 12:40:47 +02:00
Andrew Bartlett
f28f113d8e Rework Samba3 to use new libcli/auth code (partial) 
This commit is mostly to cope with the removal of SamOemHash (replaced
by arcfour_crypt()) and other collisions (such as changed function
arguments compared to Samba3).

We still provide creds_hash3 until Samba3 uses the credentials code in
netlogon server

Andrew Bartlett
 2009-04-14 16:23:35 +10:00
Günther Deschner
531af136f9 s3: remove POLICY_HND. 
Guenther
 2009-03-18 23:22:29 +01:00
Volker Lendecke
f4e760faf9 Fix bug 5840: Segfault in "rpcclient lsaaddacctrights" 2008-10-22 14:31:40 +02:00
Günther Deschner
b11f3a60fd s3-lsa-server: fix _lsa_GetUserName. 
Guenther
 2008-10-21 11:39:45 +02:00
Günther Deschner
cefe4c6697 s3-rpcclient: fix cmd_lsa build. 
Guenther
 2008-10-20 22:09:07 +02:00
Jelmer Vernooij
1f3e4f39c5 Use GUID_string rather than smb_uuid_string(). 2008-10-14 02:26:18 +02:00
Volker Lendecke
82b5f54f96 Refactoring: rpcclient uses ndr_syntax_id instead of pipe_idx 
(This used to be commit 85db87c451)
 2008-07-21 14:36:27 +02:00
Volker Lendecke
b78453326b Remove the "pwd" struct from rpc_pipe_client 
The only user of this was decrypt_trustdom_secret, and this only needs the NT
hash anyway.
(This used to be commit 3d8c2a47e6)
 2008-04-21 23:36:05 +02:00
Volker Lendecke
2a2188591b Add "desthost" to rpc_pipe_client 
This reduces the dependency on cli_state
(This used to be commit 783afab9c8)
 2008-04-20 00:13:09 +02:00
Günther Deschner
51d9e913bb Fix lsa_QueryTrustedDomainInfo caller. 
Guenther
(This used to be commit 9f148daaf2)
 2008-04-08 23:09:24 +02:00