sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-15 23:24:37 +03:00
Code
71,573 Commits 60 Branches 1,145 Tags
Commit Graph

2595 Commits

Author SHA1 Message Date
Volker Lendecke
6ee0d866c2 s3: Lift talloc_autofree_context() from make_auth_context_fixed() 2010-09-26 01:12:37 +02:00
Volker Lendecke
242e329610 s3: Lift talloc_autofree_context() from make_auth_context_subsystem() 2010-09-26 01:12:37 +02:00
Simo Sorce
4cdee9b0ed s3-dcerpc: add spnego server helpers 
squashed: add michlistMIC signature checks

Signed-off-by: Günther Deschner <gd@samba.org>
 2010-09-23 10:54:23 -07:00
Michael Adam
5fe2abb2f8 s3:services_db: remove unused legacy function svcctl_fetch_regvalues(). 2010-09-21 06:53:32 +02:00
Michael Adam
3c85a9fcbe s3:services_db: publish svcctl_get_string_value() 2010-09-21 06:53:31 +02:00
Michael Adam
9bfd587358 s3:services_db: remove the TALLOC_CTX argument from svcctl_set_secdesc 2010-09-21 06:53:30 +02:00
Andrew Bartlett
80ca590d38 s3-lib/util Remove unused smb_uuid_unpack() 
Andrew Bartlett

Signed-off-by: Günther Deschner <gd@samba.org>
 2010-09-20 16:15:11 -07:00
Andrew Bartlett
6acb47b115 s3-uuid Remove unused smb_uuid_pack() 
Signed-off-by: Günther Deschner <gd@samba.org>
 2010-09-20 16:15:10 -07:00
Andrew Bartlett
d7bc452a89 s3: Replace sid_binstring and sid_guidstring with PIDL-based alternatives 
This reduces the manual marshalling of these structures by removing
the duplication here.

Andrew Bartlett

Signed-off-by: Günther Deschner <gd@samba.org>
 2010-09-20 16:15:03 -07:00
Günther Deschner
8853babb50 s3-build: try to fix the non-ldap build. 
ldapsam_search_suffix_by_name is already prototyped in smbldap.h.

Guenther
 2010-09-20 15:06:30 -07:00
Günther Deschner
102a70e809 s3-util: use shared dom_sid_dup. 
Guenther
 2010-09-20 14:05:07 -07:00
Günther Deschner
4dbd743e46 s3-util_sid: use shared dom_sid_compare_auth and dom_sid_equal_X functions. 
Guenther
 2010-09-20 14:04:37 -07:00
Günther Deschner
62544c5d2b s3-build: only include smbldap.h where needed. 
Guenther
 2010-09-20 13:54:56 -07:00
Volker Lendecke
1473330bbe s3: Add a missing prototype 2010-09-18 09:32:41 -07:00
Björn Jacke
66ad6c75e9 ѕ3: remove smb_msleep prototype from here 2010-09-16 22:18:45 +02:00
Simo Sorce
5685914344 s3-rpc_server: Convert rpc_connect_spoolss_pipe into a generic interface. 
This way we have one common way to open internal pipes whether they
are shortcircuited or piped to an external process.
 2010-09-15 12:53:42 +02:00
Simo Sorce
7b1748d959 s3-rpc_client: Added a tstream based transport. 
Signed-off-by: Andreas Schneider <asn@cynapses.org>
 2010-09-15 12:53:41 +02:00
Simo Sorce
5ccd7a56fa s3-rpc_server: Make process_incoming_data() public. 
Signed-off-by: Andreas Schneider <asn@cynapses.org>
 2010-09-15 12:53:41 +02:00
Simo Sorce
2ef693e3c8 s3-rpc_server: Make pipe destructor public. 
Signed-off-by: Andreas Schneider <asn@cynapses.org>
 2010-09-15 12:53:41 +02:00
Simo Sorce
94d86a22a1 s3-misc: Introduce lp_ncalrpc_dir() in S3, like we have in S4. 2010-09-15 12:53:40 +02:00
Pierre Carrier
eeb24afd78 Allows changing the maximum number of simultaneous clients in winbindd through an smb.conf option. 
Signed-off-by: Jeremy Allison <jra@samba.org>
 2010-09-14 16:43:39 -07:00
Björn Jacke
5f6a145800 s3/profiling: don't use CLOCK_PROCESS_CPUTIME_ID 
that clock is a CPU burnometer but we need a chronometer for profiling.
 2010-09-14 22:17:47 +02:00
Andrew Bartlett
aefe60da8c s3-util_sid Tidy up global struct security_token 
This no longer needs to be global, and should be const.  We now also
init it with the C99 style initialisers.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:12 +10:00
Andrew Bartlett
e3edd7ca3a s3-privs Add const 
Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:12 +10:00
Andrew Bartlett
96e59faa62 s3-privs Remove unused function 
Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:11 +10:00
Andrew Bartlett
9883993b66 s3-privs Overhaul PRIVILEGE_SET handling, avoid dealing with the bitmap 
This avoids us dealing with the privilege bitmap in the LSA server, and
overhauls much of the rest of the handling to be currnet with the modern
world of talloc.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:11 +10:00
Andrew Bartlett
ad5ec58a71 s3-privs Hide the bitmap-based grant_privilege and revoke_privilege 
The new wrappers avoid anything but the core privileges code
dealing with the bitmap values directly.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:11 +10:00
Andrew Bartlett
4080ff7af5 s3-privs Make privilege_enum_sids() take an LUID, not a bitmap 
This moves one more privileges call away from direct bitmap manipuation.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:11 +10:00
Andrew Bartlett
62e5900cd1 s3-privs Rework access_check_object() to take two privileges 
This allows the privileges bitmap to be used only when setting
privileges, and uses an the LUID constant for all 'does this user
have this privilege' operations.

The advantage is that we now only need one API to determine if a
token has a privilege, and much less code needs to know what type
is used for the underlying bitmap.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:10 +10:00
Andrew Bartlett
b057867de3 s3-privs Remove a pointer from grant_privilege() 
Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:09 +10:00
Andrew Bartlett
a02ae674dd s3-privs Remove a pointer indirection from revoke_privilege() 
Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:08 +10:00
Andrew Bartlett
0d25212cc1 s3-privs Move manual prototypes to common privileges.h 
Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:07 +10:00
Andrew Bartlett
d1bb21b0d5 s3:auth Remove NT_USER_TOKEN 
The all UPPER case typedef is no longer the preferred Samba style
and this makes it easier to see that this is the IDL-derivied structure

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:06 +10:00
Andrew Bartlett
4bfc8d3b1a s3-auth Change struct nt_user_token -> struct security_token 
This common structure is defined in security.idl

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:05 +10:00
Andrew Bartlett
4bf783d4d6 s3-auth Change type of num_sids to uint32_t 
size_t is overkill here, and in struct security_token in the num_sids
is uint32_t.

This includes a change to the prototype of add_sid_to_array()
and add_sid_to_array_unique(), which has had a number of
consequnetial changes as I try to sort out all the callers using
a pointer to the number of sids.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:05 +10:00
Andrew Bartlett
fcaa86f402 s3-privs Further changes to remove SE_PRIV 
Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-09-11 18:46:04 +10:00
Andreas Schneider
fc1a5dbffb s3-spoolss: Don't leak memory on the session counter list. 
Thanks Günther, please check.
 2010-09-10 16:10:46 +02:00
Andreas Schneider
021539570b s3-msdfs: Make auth_serversupplied_info const. 2010-09-09 16:00:08 +02:00
Andreas Schneider
0d9fa9e96f s3-rpcint: Make auth_serversupplied_info const. 2010-09-09 16:00:08 +02:00
Andreas Schneider
669213e812 s3-auth: Added get_server_info_system function. 2010-09-09 16:00:07 +02:00
Stefan Metzmacher
2907310803 s3:rpc_server: make it possible to use rpcint_binding_handle() directly 
metze
 2010-09-04 09:01:10 +02:00
Andrew Tridgell
4ca96834f3 s3-param: added lp_set_cmdline() and --option= parameter 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-02 13:37:08 +10:00
Günther Deschner
95f9542e05 s3-auth: remove global include of krb5pac.h. 
Guenther
 2010-08-31 23:17:40 +02:00
Simo Sorce
08a8e25d6b s3-auth: add helper to get server_info out of kerberos info 
Signed-off-by: Günther Deschner <gd@samba.org>
 2010-08-30 14:24:30 +02:00
Simo Sorce
b9772a4886 s3-auth: Add helper function to retrieve the unix user from a kerberos ticket 
Signed-off-by: Günther Deschner <gd@samba.org>
 2010-08-30 14:17:06 +02:00
Volker Lendecke
e466bb4af4 s3: Remove smbd_server_fd() 
This breaks the perfcol_onefs() build.

Tim, Steve, this use of smbd_server_fd is replacable by calls into
substitute.c. I don't have a onefs environment around to build a fix, so I've
decided to insert an #error, making it not compile. The fix should be pretty
obvious, you can get the socket data via "%I" and "%i" substitutions.
 2010-08-29 21:55:25 +02:00
Volker Lendecke
4a58c640cc s3: Set the client_id in substitute.c once 
This never changes during a client connection's life, so we can set it
once.
 2010-08-29 21:55:23 +02:00
Volker Lendecke
92fd03c5f0 s3: Lift smbd_server_fd() from pass_check() 2010-08-28 11:12:13 +02:00
Volker Lendecke
636d107989 s3: Fix smb_pam_passcheck 2010-08-28 11:05:22 +02:00
Volker Lendecke
9322fa4077 s3: Lift smbd_server_fd() from smb_pam_passcheck 2010-08-27 21:59:09 +02:00