summaryrefslogtreecommitdiff
path: root/libcli
AgeCommit message (Collapse)AuthorFilesLines
2010-09-11libcli/security Return number of entries in the old source3 listAndrew Bartlett1-3/+4
This ensures there isn't a behaviour change when the source3 list is combined with the longer source4 list. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/privileges Simplify get_privilege_luid() to return just the enumAndrew Bartlett2-9/+4
As Samba only deals with the lower 32 bits of the LUID, just return those and let the LSA layer deal with the upper 0 bits. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Don't memcpy a uint64_t value, just assign it.Andrew Bartlett1-1/+1
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Use ARRAY_SIZE() consistantly.Andrew Bartlett1-15/+16
This avoids the use of SE_END, and has all callers walking the array using the same termination condition. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Fix and clarify privilege manipulation function commentsAndrew Bartlett1-9/+9
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Make the two privileges tables share a common struct definitionAndrew Bartlett2-27/+22
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Move source4/ privileges code into the common libcli/securityAndrew Bartlett3-4/+331
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-privs Move manual prototypes to common privileges.hAndrew Bartlett1-0/+88
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-privs Inline dump_se_priv into callers now that it's just a uint64_tAndrew Bartlett1-9/+0
The previous 128 bit structure needed this helper function. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Use talloc_realloc() not TALLOC_REALLOC_ARRAY()Andrew Bartlett1-1/+1
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Use C99 typesAndrew Bartlett1-3/+3
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Use true and false, not True and FalseAndrew Bartlett1-22/+22
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-privs Move source3/ privileges implmentation into commonAndrew Bartlett2-0/+531
Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-10s3/s4:libcli/tstream - add more "char *" casts in order to suppress Solaris ↵Matthias Dieter Wallnöfer2-14/+14
warnings
2010-09-09libcli/netlogon: add LOGON_REQUEST handling to pull_nbt_netlogon_response().Günther Deschner1-0/+1
Guenther
2010-09-09libcli/netlogon: add LOGON_RESPONSE2 to pull_nbt_netlogon_response().Günther Deschner1-0/+9
Guenther
2010-09-09libcli/netlogon: add NETLOGON_RESPONSE2 to push_nbt_netlogon_response().Günther Deschner2-1/+12
Guenther
2010-08-26libcli/auth/ntlm_check.c - fix parameter indentationMatthias Dieter Wallnöfer1-3/+3
2010-08-26manpages: Avoid using Samba-Team specific DTD, which requires net accessJelmer Vernooij1-11/+1
or modification of /etc/catalogs.
2010-08-24s3-dcerpc: avoid talloc_move on schannel creds in ↵Günther Deschner2-1/+47
cli_rpc_pipe_open_schannel_with_key(). Initially, the schannel creds were talloc memduped, then, during the netlogon creds client merge (baf7274fed2f1ae7a9e3a57160bf5471566e636c) they were first talloc_referenced and then later (53765c81f726a8c056cc4e57004592dd489975c9) talloc_moved. The issue with using talloc_move here is that users of that function in winbind will only be able to have two schanneled connections, as the cached schannel credentials pointer from the netlogon pipe will be set to NULL. Do a deep copy of the struct instead. Guenther
2010-08-14werror.h - fix order and duplicate DS error codesMatthias Dieter Wallnöfer2-62/+54
2010-08-12ntlmssp: fix unitialized variable in ntlmssp_server_postauth().Günther Deschner1-1/+1
Guenther
2010-08-12Fix a typoVolker Lendecke1-1/+1
2010-08-10libcli/auth Make the source3/ implementation of the NTLMSSP server commonAndrew Bartlett2-0/+530
This means that the core logic (but not the initialisation) of the NTLMSSP server is in common, but uses different authentication backends. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-08-10libcli/auth/ntlmssp: remove outdated comment. The version flag is well ↵Günther Deschner1-2/+0
understood now. Guenther
2010-08-10libcli/auth Move some source3/ NTLMSSP functions to the common code.Andrew Bartlett3-0/+120
libcli/auth Use true and false rather than True and False in common code Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-16s4-loadparm: 2nd half of lp_ to lpcfg_ conversionAndrew Tridgell1-2/+2
this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-16libcli/netlogon: re-enable debugging.Günther Deschner1-7/+0
Now that we do not share binary objects anymore, we can safely enable debugging here again. Guenther This reverts commit 3eb122069b9f81196ac658375fcb828924af3e94.
2010-07-01s3-libads: move spnego defines to their appropriate header file.Günther Deschner1-0/+6
Guenther
2010-06-30libcli: Fixed a build warning for a missing prototype.Andreas Schneider1-0/+1
2010-06-25schannel Change to TDB_CLEAR_IF_FIRST to reduce fsync()Andrew Bartlett1-32/+1
By making this DB TDB_NOSYNC, and by making that safe with TDB_CLEAR_IF_FIRST, we greatly reduce the fsync() load on the server. This particularly helps the source4/ 'make test', which otherwise tries to disable fsync() in ldb. Andrew Bartlett Signed-off-by: Jeremy Allison <jra@samba.org>
2010-06-25libcli/auth make open_schannel_session_store() publicAndrew Bartlett2-7/+7
This will allow TDB_CLEAR_IF_FIRST to be used Signed-off-by: Jeremy Allison <jra@samba.org>
2010-06-21libcli/named_pipe_auth: fix error handling in _tstream_npa_connect_recv()Stefan Metzmacher1-0/+2
metze
2010-06-21libcli/named_pipe_auth: fix memory handling for temporary dataStefan Metzmacher1-5/+6
In a tevent_req based function tevent_req_create() should be the first function! If it fails it's the only reason, why the function could every return NULL. And all temporary data belongs to 'state' and gets free'ed by tevent_req_received() in the _recv function. metze
2010-06-21s3/s4 - remove "talloc_tos()" from common code since s4 doesn't support itMatthias Dieter Wallnöfer2-5/+10
Please don't use this in common code parts until we change the policy regarding it.
2010-06-19libcli: Fixed a segfault in security_acl_dup when the acl is NULL.Brendan Powers1-0/+4
This can happen when duplicating a security descriptor that is missing either sacls or dacls. Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2010-06-14Fix warning messages about unused result of talloc_move. We're really ↵Jeremy Allison1-3/+3
talloc_steal'ing here.
2010-06-07named_pipe_auth Always lower case the incoming pipe nameAndrew Bartlett1-1/+7
Windows connects to an upper case NETLOGON pipe, and we can't find the socket to connect to until we lower case the name. Andrew Bartlett
2010-06-01s4:ntlmssp Use common code for ntlmssp_sign.cAndrew Bartlett2-18/+19
The common code does not have a mem_ctx on ntlmssp_check_packet() and ntlmssp_unseal_packet(). We do however need some internal working of the code exposed, so some structures are moved to ntlmssp_sign.h Andrew Bartlett
2010-05-31s3:ntlmssp Move ntlmssp_sign.c from source3 to common code.Andrew Bartlett4-0/+696
This needs a small re-arrangement of the supporting code. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31ntlmssp: Make the ntlmssp.h from source3/ a common headerAndrew Bartlett1-0/+139
The code is not yet in common, but I hope to fix that soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31libcli/nbt/lmhosts: fix missing prototype warning.Günther Deschner1-0/+1
Andrew, please check. Guenther
2010-05-26named_pipe_auth: implement tstream_npa_accept_existing_send/recvSimo Sorce2-0/+521
Pair-programmed-with: Stefan Metzmacher <metze@samba.org>
2010-05-21Make DFS work over SMB2.Jeremy Allison1-0/+9
Jeremy.
2010-05-20Fix what looks like a cut-and-paste error in our read_negTokenInit() function.Jeremy Allison1-4/+4
We should never be calling asn1_push_XXX functions inside an asn1 reading function. Change asn1_push_tag() -> asn1_start_tag() and asn1_pop_tag() -> asn1_end_tag(). This allows us to connect to a NetApp filer at the Microsoft plugfest. Andrew PLEASE CHECK ! Jeremy.
2010-05-19Thanks to Andrew Bartlett's advice, fix the NTLMSSP version problem the ↵Jeremy Allison1-1/+4
correct way. No more magic blobs :-). Use ndr_push_struct_blob() to push a properly formatted VERSION struct. Jeremy.
2010-05-18s3: Remove use of iconv_convenience.Jelmer Vernooij1-8/+2
2010-05-18Finish removal of iconv_convenience in public API's.Jelmer Vernooij20-106/+50
2010-05-06Remove the copy of ldb from Samba 3.Jelmer Vernooij1-0/+4
There were two utility functions that other parts of Samba 3 still relied on; they have been moved to lib/ldb_compat.[ch].
2010-04-28libcli/named_pipe_auth: we need to hide length of the message mode header ↵Stefan Metzmacher1-1/+12
from the caller metze