1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-27 03:21:53 +03:00
Commit Graph

1077 Commits

Author SHA1 Message Date
Stefan Metzmacher
a851ab6fdb r1022: add the session_info() call to the dcerpc server auth backends
metze
(This used to be commit d1ab26b907)
2007-10-10 12:56:28 -05:00
Andrew Bartlett
42b6b71493 r1021: Because auth_serversupplied_info is not reference counted, this may
only be called once per authentication.

Andrew Bartlett
(This used to be commit 9a5de8de95)
2007-10-10 12:56:28 -05:00
Andrew Bartlett
8de7e76e78 r1020: Add an (untested, until the other end is hooked in) method for
obtaining the session_info from an NTLMSSP authenticated user.

Andrew Bartlett
(This used to be commit 7961f1a18d)
2007-10-10 12:56:28 -05:00
Andrew Bartlett
0d466258be r1019: Push the auth subsystem away from using typedef, and over to the 'all
goodness and light' struct ;-)

Break apart the auth subsystem's return strucutres, into the parts
that a netlogon call cares about, and the parts that are for a local
session.  This is the 'struct session_info' and it will almost
completly replace the current information stored on a vuid, but be
generic to all login methods (RPC over TCP, for example).

Andrew Bartlett
(This used to be commit d199697014)
2007-10-10 12:56:28 -05:00
Andrew Tridgell
b553acce4b r1018: fix a const and unsigned int problem in ldb
(This used to be commit 3d52ca9373)
2007-10-10 12:56:28 -05:00
Andrew Tridgell
e06d8e94a9 r1017: - move to a centralised way of handling talloc/ldb interaction
(This used to be commit 363cb3377a)
2007-10-10 12:56:28 -05:00
Andrew Tridgell
1a993b800e r1016: - store the schannel session key after it is established
- move to a centralised way of handling talloc/ldb interaction
(This used to be commit 2b9b752875)
2007-10-10 12:56:27 -05:00
Andrew Tridgell
cd35e12c7f r1015: commit the schannel session key handling code now, so abartlet and
metze can have a look. Not tested yet, as I'm still writing the server
side schannel code.
(This used to be commit 768cc0193a)
2007-10-10 12:56:27 -05:00
Andrew Tridgell
4ee70616cc r1014: change the handling of r->out to auto-zero the structure, and auto-copy
in,out,ref vars
(This used to be commit dffe916516)
2007-10-10 12:56:26 -05:00
Stefan Metzmacher
0413849c3b r1013: WE NEED ALWAYS TO INIT THE OUTPUT VARS!
in rpc server code!

add missing ZERO_STRUCT(r->out.info);
in samr_GetDomPwInfo

metze
(This used to be commit e21f8a3430)
2007-10-10 12:56:26 -05:00
Stefan Metzmacher
2d6207add7 r1010: make the dcesrv_crypto code a bit more generic...
fix type 'cyrpto' -> 'crypto'

metze
(This used to be commit 90f4777dfc)
2007-10-10 12:56:26 -05:00
Andrew Bartlett
9eb6afb00d r1009: Make all users of NT and LM passwords use the samr_Password structure.
This includes the netlogon pipe, for the machine account password
change system.

Andrew Bartlett
(This used to be commit 49d545a820)
2007-10-10 12:56:26 -05:00
Stefan Metzmacher
a58c249412 r1006: print out the SVN revision by configure,
so that the build farm can use it

metze
(This used to be commit 20f848aeef)
2007-10-10 12:56:26 -05:00
Stefan Metzmacher
faf527758c r1005: there was one NTLMSSP_STATE left in:-(
...fix the build

metze
(This used to be commit 4911818944)
2007-10-10 12:56:26 -05:00
Stefan Metzmacher
5165fec02e r1004: continue tridge's work on dcerpc server auth/crypto code
I made it much more generic, and we should be able to add a
module interface to this code, so that other DCERPC_AUTH types can be added
via modules...

metze
(This used to be commit d09abeb686)
2007-10-10 12:56:25 -05:00
Tim Potter
b0d4ed741f r1003: Removed e_ndr stuff - too verbose.
Merged across populating %needed with hf index members for functions
from old version of eparser.
(This used to be commit fc3c5d6fab)
2007-10-10 12:56:25 -05:00
Tim Potter
5c3f152d08 r1002: Add helper files for eparser output.
(This used to be commit 595b6e0f2c)
2007-10-10 12:56:25 -05:00
Stefan Metzmacher
8f84a98e29 r1001: in samba4 we don't(shouldn't) use typedef's anymore...
metze
(This used to be commit ac5f6f7e51)
2007-10-10 12:56:25 -05:00
Andrew Tridgell
8087d844ef r995: - renamed many of our crypto routines to use the industry standard
names rather than our crazy naming scheme. So DES is now called
  des_crypt() rather than smbhash()

- added the code from the solution of the ADS crypto challenge that
  allows Samba to correctly handle a 128 bit session key in all of the
  netr_ServerAuthenticateX() varients. A huge thanks to Luke Howard
  from PADL for solving this one!

- restructured the server side rpc authentication to allow for other
  than NTLMSSP sign and seal. This commit just adds the structure, the
  next commit will add schannel server side support.

- added 128 bit session key support to our client side code, and
  testing against w2k3 with smbtorture. Works well.
(This used to be commit 729b2f41c9)
2007-10-10 12:56:25 -05:00
Stefan Metzmacher
4309727424 r990: fix tdb standalone build
metze
(This used to be commit 4c1c9f59cc)
2007-10-10 12:56:25 -05:00
Tim Potter
e071ecd991 r987: Start replacing ndr_* functions with e_ndr_* and removing stuff related
to storing data in structure members.
(This used to be commit 60942eaa3a)
2007-10-10 12:56:25 -05:00
Tim Potter
faaa211d66 r986: Attempt #3 at eparser. This time use the 'pull' code as a base as it's
closer to what ethereal does.  Also try to keep as much of the generated
structure wrt pointers/structs/alignment as possible.
(This used to be commit 8ad93f03d6)
2007-10-10 12:56:24 -05:00
Tim Potter
525d2fba27 r985: Add stub function for dumping enums to prevent perl warnings in eparser.
(This used to be commit 12c7d3a464)
2007-10-10 12:56:24 -05:00
Andrew Tridgell
21c71e0bed r976: - added -W for workgroup to locktest
- retry connections a few times when reconnecting
(This used to be commit d0d0734845)
2007-10-10 12:56:24 -05:00
Andrew Tridgell
dfbf620129 r975: slight improvemet to nt_errstr(), still needs to be fixed properly
(getting rid of the static buffer)
(This used to be commit 86a6236c2a)
2007-10-10 12:56:24 -05:00
Stefan Metzmacher
de827cb9d9 r970: - remove unused wchar_t check
- move immediate structures check to the compiler checks

metze
(This used to be commit e2a322aa11)
2007-10-10 12:56:24 -05:00
Stefan Metzmacher
60025b1d67 r969: remove some unused checks
metze
(This used to be commit 5357700fc5)
2007-10-10 12:56:24 -05:00
Stefan Metzmacher
c6dfa0cc3d r968: use sinlcude() and no function, that's more portable between
autoconf versions

metze
(This used to be commit 9fa83ca022)
2007-10-10 12:56:24 -05:00
Stefan Metzmacher
9318fdbb33 r967: move some configure checks to seperate files
metze
(This used to be commit 2d109074e8)
2007-10-10 12:56:24 -05:00
Volker Lendecke
63990406ae r963: Tridge, according to ethereal this is an 'Acct Ctrl' field. My tests also
indicate this although I could not find any consistent pattern.

I found this as 'net rpc group list local' in Samba3 sets this to 250 and only
gets a fixed, but incomplete list of groups out of W2k3.

I tried to correlate the results I got from w2k3 with the LDAP contents of the
corresponding entries, but I could not find anything. Ethereal only decodes
the lower byte, but to get all it seems necessary to have 0xffff here.

If you have time, could you might want to spend some of it decoding the bits
for SAMR completeness....

Volker
(This used to be commit 74e59c4560)
2007-10-10 12:56:23 -05:00
Stefan Metzmacher
770e3307ce r962: convert 'unsigned' and 'unsigned int' to uint_t
metze
(This used to be commit 57151e80eb)
2007-10-10 12:56:23 -05:00
Stefan Metzmacher
98d291423f r961: convert 'uchar' to 'uint8_t'
metze
(This used to be commit 9f914e4af9)
2007-10-10 12:56:23 -05:00
Stefan Metzmacher
fa2e9ec311 r960: convert 'unsigned int' to uint_t in the most places
metze
(This used to be commit 18062d2ed9)
2007-10-10 12:56:23 -05:00
Stefan Metzmacher
b88fc7a391 r959: - a static WERROR function should return a WERROR:-)
- some minor format fixes

metze
(This used to be commit 72d9c70fdd)
2007-10-10 12:56:23 -05:00
Jelmer Vernooij
9fba08b621 r955: Update debian package rules... builds now
(This used to be commit 3df8ff6cf1)
2007-10-10 12:56:22 -05:00
Tim Potter
50b21753ba r954: Start working on typedef parsing.
(This used to be commit 877f7c32a8)
2007-10-10 12:56:22 -05:00
Tim Potter
9389779793 r953: Remove unused Pull and Print parse functions. Remove Push from
remaining parse function names.

Add some debug comments in parser output to aid in debugging.
(This used to be commit 8225a3245a)
2007-10-10 12:56:22 -05:00
Andrew Tridgell
e86bb4dcc1 r952: fixed schannel from my last commit
(This used to be commit 05b69d9fff)
2007-10-10 12:56:21 -05:00
Andrew Tridgell
6611f01050 r951: from w2k3 behaviour, the netlogon server is supposed to give back the negotiate flags it can support.
(This used to be commit 7ad56fc4db)
2007-10-10 12:56:21 -05:00
Andrew Tridgell
6a0ce94d02 r950: - added netr_ServerAuthenticate3(). This is used by WinXP clients who try to login to Samba4, as
WinXP sees us as an ADS server.

Unfortunately WinXP also uses a set of negotiate_flags that we don't
support yet. Some crypto work needed.
(This used to be commit 2d740b6570)
2007-10-10 12:56:21 -05:00
Tim Potter
45fd1ba4ec r948: Tridge suggested that the best way to write the ethereal parser is to
base it on the generator for the ndr pull/push code rather than trying
to get all the alignment and other junk sorted out by hand.

This commit (nearly) gets eparser to the same state it previously was
but based on parser.pm.  We correctly parse simple types, strings and
sids.
(This used to be commit 6739cd5fdd)
2007-10-10 12:56:21 -05:00
Jeremy Allison
496220916a r946: Updated attribute only oplock tester to cover more cases.
Jeremy.
(This used to be commit 6c9d32173b)
2007-10-10 12:56:21 -05:00
Stefan Metzmacher
45e93c19ef r943: change samba4 to use 'uint8_t' instead of 'unsigned char'
metze
(This used to be commit b5378803fd)
2007-10-10 12:56:21 -05:00
Andrew Tridgell
d9538e7412 r937: - added a simple QuerySecurity implementation in samr server
- moved some sec desc defines into misc.idl

 - fixed pw_len field in UserInfo26

 - made some pipes available on TCP

 - added netr_DsrEnumerateDomainTrusts() to netlogon

 - added templates for remaining netlogon IDL calls (from ethereal)

 - added a unistr_noterm vs unistr error detector in ndr basic decoder

 - added torture test for netr_DsrEnumerateDomainTrusts()
(This used to be commit ae5a5113fb)
2007-10-10 12:56:20 -05:00
Andrew Tridgell
90341da78b r935: remove unused variable
(This used to be commit a8056e3294)
2007-10-10 12:56:20 -05:00
Andrew Tridgell
7cd74a596e r934: on ascii strings STR_TERMINATE_ASCII should trigger STR_TERMINATE behaviour
(This used to be commit b7935c9674)
2007-10-10 12:56:20 -05:00
Andrew Bartlett
c5cd8680ab r929: Remove more unused code from util_sid.c (the old-style sid code is
almost gone).
(This used to be commit 82d68e8a44)
2007-10-10 12:56:20 -05:00
Andrew Tridgell
56e74a7c3f r924: got rid of the global well-known SIDs, instead using const defines in misc.idl
(This used to be commit ce7920a5fa)
2007-10-10 12:56:20 -05:00
Andrew Tridgell
2b63af8248 r920: a placeholder lsads.idl file (lack of this is why the build farm is unhappy for samba4)
(This used to be commit 35dfa3e07b)
2007-10-10 12:56:20 -05:00
Andrew Tridgell
7f3d4cc980 r919: - added lsa_QueryInfoPolicy2() to IDL, test suite and server
- added lsa_OpenPolicy2() to server

- added guid handling in samdb

- added a couple more info policy levels in lsa server

- added some DNS info in the provisioning template and script

With the above changes WinXP professional can join a Samba4 domain
(This used to be commit d6dca96352)
2007-10-10 12:56:20 -05:00