samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2025-02-28 01:58:17 +03:00

Author	SHA1	Message	Date
Günther Deschner	dfb607ee7b	librpc: build clusapi.idl Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	d64c551441	librpc: add clusapi idl version 3.0. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	87054a5355	pidl/python: support HRESULT errors in generated python bindings. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	9564a1f295	pidl: support HRESULT in pidl. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	a22246516a	librpc/ndr: add ndr_{pull\|push\|print}_HRESULT and release new 0.0.5 ABI. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	5b68527f2b	lib/util: globally include herrors in error.h Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	533cfb63f3	libcli/util/hresult: add generated hresult_errstr() function. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	5cf1545bd7	s4-scripting: generate a hresult_errstr() function. Equivalent to the nt_errstr(), win_errstr(), etc. function. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	3152529c7f	libcli/util/hresult: re-generate hresult.c. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	169f6cd37b	s4-scripting: add string representation of error code define to generated table. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:07 +01:00
Günther Deschner	1d2cde058b	s4-scripting: fix hresult generator python script indentation. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-03-13 23:58:06 +01:00
Volker Lendecke	d171d2010a	ctdb: Fix CID 1125613 Destination buffer too small Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Fri Mar 13 19:14:20 CET 2015 on sn-devel-104	2015-03-13 19:14:20 +01:00
Volker Lendecke	8d9bb5c54a	ctdb: Introduce a helper var in ctdb_get_script_list Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2015-03-13 16:39:05 +01:00
Volker Lendecke	c1e8bfb186	ctdb: Fix memleak in ctdb_get_script_list scandir allocates every name individually, see example code in susv4 or man scandir Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2015-03-13 16:39:05 +01:00
Volker Lendecke	a8cc495b96	ctdb: Make for-loop in ctdb_get_script_list more idiomatic Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2015-03-13 16:39:05 +01:00
Volker Lendecke	b584bdebf9	ctdb: Fix whitespace Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2015-03-13 16:39:05 +01:00
Andreas Schneider	07330d248b	replace: Remove superfluous check for gcrypt header. We only need to check for the header if we need gnutls with gcrypt support. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11135 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Fri Mar 13 01:00:27 CET 2015 on sn-devel-104	2015-03-13 01:00:27 +01:00
Andrew Bartlett	733435f858	backupkey: Explicitly link to gnutls and gcrypt The gcrypt link will be disabled if gnutls is > 3.0.0 BUG: https://bugzilla.samba.org/show_bug.cgi?id=11135 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>	2015-03-12 22:24:07 +01:00
Andrew Bartlett	61d962bdfd	lib/tls: Fix behaviour of --disable-gnutls and remove link to gcrypt We no longer link against gcrypt if gnutls > 3.0.0 is found, as these versions use libnettle. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11135 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>	2015-03-12 22:24:07 +01:00
Stefan Metzmacher	f0a6935b1e	s3:rpc_server/lsa: only return collision_info if filled in lsaRSetForestTrustInformation() If there're no collisions we should not fill the collision_info pointer. Otherwise Windows fails to create a forest trust. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org> Autobuild-User(master): Günther Deschner <gd@samba.org> Autobuild-Date(master): Thu Mar 12 19:49:33 CET 2015 on sn-devel-104	2015-03-12 19:49:33 +01:00
Stefan Metzmacher	ac45921981	s4:rpc_server/lsa: only return collision_info if filled in lsaRSetForestTrustInformation() If there're no collisions we should not fill the collision_info pointer. Otherwise Windows fails to create a forest trust. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:44 +01:00
Günther Deschner	b6292d8be4	s4-torture: add ndr test for lsa_lsaRQueryForestTrustInformation(). Thanks to Alexander for providing the binary blobs. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:44 +01:00
Stefan Metzmacher	aea55377f9	drsblobs.idl: improve idl for ForestTrustInfoRecord* Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:44 +01:00
Stefan Metzmacher	080db5f60a	lsa.idl: improve idl for lsa_ForestTrustRecord The meaning of lsa_ForestTrustRecordFlags is based lsa_ForestTrustRecordType, but the type is not always available so it's not possible to use an union. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:44 +01:00
Stefan Metzmacher	701ed1117b	lsa.idl: use 'boolean8 check_only' instead of 'uint8 check_only' This is only a cosmetic change to make the idl more verbose, the resulting C code will still use 'uint8_t'. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:44 +01:00
Stefan Metzmacher	cdf6373c3b	lsa.idl: fix idl for lsa_ForestTrustRecordType Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:44 +01:00
Stefan Metzmacher	1d299f1d7b	security.idl: add KERB_ENCTYPE_{FAST_SUPPORTED,COMPOUND_IDENTITY_SUPPORTED,CLAIMS_SUPPORTED,RESOURCE_SID_COMPRESSION_DISABLED} These are not encryption types, but flags for specific kerberos features. See [MS-KILE] 2.2.6 Supported Encryption Types Bit Flags. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:44 +01:00
Stefan Metzmacher	2c1f948150	netlogon.idl: remove netr_SupportedEncTypes and use kerb_EncTypes instead These are the same. We keep the old defines arround in order to avoid a lot of changes in the callers. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:44 +01:00
Günther Deschner	a0700dd275	netlogon.idl: netr_ServerPasswordGet returns NTSTATUS not WERROR. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	4810f47c44	netlogon.idl: improve idl for netr_ServerTrustPasswordsGet() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	19e4a101db	ldb-samba: implement --show-binary for msDS-RevealedUsers Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	5abb9acc9b	drsblobs.idl: make replPropertyMetaData1 public This is used as binary data for the msDS-RevealedUsers attribute. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	450dc02d6d	s4:py_net: make domain and address fully optional to py_net_finddc E.g. address=None is now also possible. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	79b1041651	s4:librpc: add auth_type=ncalrpc_as_system as binding option In future we may want another way to trigger this, but our current rpc libraries need a lot of cleanup before. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	29b173d2a7	s4:trust_utils: store new trust/machine passwords before trying it remotely. If this fails we can still fallback to the old password... Before trying the password change we verify the dc knows our current password. This should make the password changes much more robust. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	1623992105	s3:winbindd: make open_internal_lsa_conn() non static Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	f126eeb2a1	s3:winbindd_cm: improve detection for the anonymous fallback. If the kinit results in NT_STATUS_NO_LOGON_SERVERS, we should fallback, if allowed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	7391416399	s3:pdb_samba_dsdb: implement pdb_samba_dsdb_set_trusteddom_pw() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	e0a4f438d1	s3:pdb_samba_dsdb: return the domain sid in pdb_samba_dsdb_get_trusteddom_pw() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	2a2cec6f9c	s3:pdb_samba_dsdb: return the previous password and the kvno in pdb_samba_dsdb_get_trusteddom_creds() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	7d36141ba3	s3:rpc_client: remove unused cli_rpc_pipe_open_schannel_with_key() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	0f3e32247c	s3:libnet: use cli_credentials based functions in libnet_join_ok() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	484adf45ed	s3:auth_domain: make use of cli_rpc_pipe_open_schannel() This simplifies a lot and allows the previous password to be used. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	91e4cbc46f	s3:auth_domain: fix talloc problem in connect_to_domain_password_server() return values of connect_to_domain_password_server() need to be exported to the callers memory context. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	9af336cce7	s3:rpcclient: make use of rpccli_[create\|setup]_netlogon_creds_with_creds() This passing struct cli_credentials allows the usage of the previous password. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	6d31763de1	s3:rpc_client: handle !NETLOGON_NEG_AUTHENTICATED_RPC in cli_rpc_pipe_open_schannel() This is only allowed with special config options ("client schannel = no", "require strong key = no" and "reject md5 servers = no"). By default we require NETLOGON_NEG_AUTHENTICATED_RPC. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	c3b7e6e218	s3:rpc_client: use cli_credentials based functions in cli_rpc_pipe_open_schannel() This simplifies the code and allows the previous password to be passed through the stack. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	0994e0a3e3	s3:rpc_client: remove unused auth_level paramter of cli_rpc_pipe_open_schannel() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Stefan Metzmacher	8d73127462	s3:cli_netlogon: cli_credentials_get_old_nt_hash() in rpccli_setup_netlogon_creds_with_creds() This way we'll fallback to use the previous machine/trust account password if required. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:42 +01:00
Stefan Metzmacher	33fcfb37c4	auth/credentials: add cli_credentials_set_old_utf16_password() This is required to set the previous trust account password. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:42 +01:00

1 2 3 4 5 ...

98019 Commits