summaryrefslogtreecommitdiff
path: root/source3/rpc_server/srv_lsa_nt.c
AgeCommit message (Collapse)AuthorFilesLines
2008-02-08Use pidl for _lsa_OpenAccount().Günther Deschner1-12/+7
Guenther (This used to be commit e1968880a88ad2a56c5fef7d416646dcb96965ef)
2008-02-08Use pidl for _lsa_CreateAccount().Günther Deschner1-13/+8
Guenther (This used to be commit d71f56a293d67971c45ee44219752a55fb21f8be)
2008-02-08Remove unused marshalling for LSA_QUERY_INFO2.Günther Deschner1-1/+1
Guenther (This used to be commit 0fac016d9d0018c983576d5cc8c3e06f40360b73)
2008-02-08Use pidl for _lsa_QueryInfoPolicy().Günther Deschner1-70/+61
Guenther (This used to be commit 1b931e9145910a74b9e9661a9255cd79e434ffea)
2008-02-04Use pidl for (dummy) _lsa_DeleteObject().Günther Deschner1-7/+3
Guenther (This used to be commit 81e2e3a288fb40bf4ba1b83adf459a0cf6f02ed2)
2008-02-04Use pidl for _lsa_QuerySecurity().Günther Deschner1-17/+8
Guenther (This used to be commit 6b2f205844b1e2af4c74247fed13d6e383319067)
2008-02-04Use pidl for _lsa_OpenPolicy2().Günther Deschner1-10/+5
Guenther (This used to be commit fc29364abe10d3ec249602cb3437e50294f5de76)
2008-02-04Use pidl for _lsa_OpenPolicy().Günther Deschner1-10/+5
Guenther (This used to be commit b6b226e6365477f855de1e549ef32df452838031)
2008-01-16Merge lsarpc.idl from samba4 and rerun make idl.Günther Deschner1-1/+1
Guenther (This used to be commit d9c8a2271d5d4ff845f1fe5986a2c63d79c41415)
2007-12-21Some C++ fixesVolker Lendecke1-1/+3
(This used to be commit 5c392c4c6e277a24d0d477902dc7856b2b46ee53)
2007-12-17Fix for bug #4801: Correctly implement lsa lookup levels for lookupnames.Michael Adam1-9/+28
This patch is still incomplete in that winbindd does not walk the the trusted domains to lookup unqualified names here. Apart from that this fix should be pretty much complete. Michael (This used to be commit f7efc0eca9426e63b751c07a90265a12bb39cf95)
2007-12-15s/sid_to_string/sid_to_fstring/Volker Lendecke1-2/+2
least surprise for callers (This used to be commit eb523ba77697346a365589101aac379febecd546)
2007-12-15Replace sid_string_static with sid_to_stringVolker Lendecke1-1/+3
This adds 28 fstrings on the stack, but I think an fstring on the stack is still far better than a static one. (This used to be commit c7c885078be8fd3024c186044ac28275d7609679)
2007-12-15Replace sid_string_static by sid_string_dbg in DEBUGsVolker Lendecke1-6/+7
(This used to be commit bb35e794ec129805e874ceba882bcc1e84791a09)
2007-12-14Revert "Fix for bug #4801: Correctly implement lsa lookup levels for ↵Stefan Metzmacher1-28/+9
lookupnames." As it breaks all tests which try to join a new machine account. So more testing is needed... metze This reverts commit dd320c0924ce393a89b1cab020fd5cffc5b80380. (This used to be commit cccb80b7b7980fbe1298ce266375e51bacb4a425)
2007-12-13Fix for bug #4801: Correctly implement lsa lookup levels for lookupnames.Michael Adam1-9/+28
This is a first patch aimed at fixing bug #4801. It is still incomplete in that winbindd does not walk the the trusted domains to lookup unqualified names here. Apart from that this fix should be pretty much complete. Michael (This used to be commit dd320c0924ce393a89b1cab020fd5cffc5b80380)
2007-11-08Fix case where we have no dns domain name. Return a talloc of "".Jeremy Allison1-1/+1
Jeremy. (This used to be commit ab8934844a8ae08657769ce1787c32f14a7eb745)
2007-11-08Remove more fstring/pstring bad useage. Go talloc !Jeremy Allison1-3/+5
Jeremy. (This used to be commit 2a0173743d2cf615d52278f3dd87cc804abe2d16)
2007-10-17r17064: lsa_GetUserName needs to return the name for S-1-5-7 on an anonymous ↵Volker Lendecke1-4/+16
login. Found that because I want to play around with setsharesecurity, for this I need the "whoami" call figuring out the SID of the currently connected user. Not activating this test yet until the build farm has picked up the new samba4 revision. Volker (cherry picked from commit 5cfe482841b77208b68376f9e2b8a4a62271f7c9) (This used to be commit 15935bad1d756d3896f0687108e60ca10a35a936)
2007-10-10[GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch.Gerald (Jerry) Carter1-39/+28
(This used to be commit 5c6c8e1fe93f340005110a7833946191659d88ab)
2007-10-10r25534: Apply some constVolker Lendecke1-1/+1
Why? It moves these structs from the data into the text segment, so they will never been copy-on-write copied. Not much, but as in German you say "Kleinvieh macht auch Mist...." (This used to be commit 0141e64ad4972232de867137064d0dae62da22ee)
2007-10-10r24165: Fix Coverity ID 369.Volker Lendecke1-5/+5
This was not really a bug I think, but this change cleans up the code a bit. (This used to be commit 59b4914df3ecc97a1c629e8c7a066aed8e8d9226)
2007-10-10r23801: The FSF has moved around a lot. This fixes their Mass Ave address.Andrew Tridgell1-2/+1
(This used to be commit 87c91e4362c51819032bfbebbb273c52e203b227)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r23402: Got bitten by a talloc hierarchy. Make sure we allocJeremy Allison1-3/+3
off the pipe ctx now ->names is part of the containing struct. Jeremy. (This used to be commit 02fd43490212e9ff8f784ce4d33d64566d58fd82)
2007-10-10r23400: Fix lsa crash bug #4683. The "names" enum structJeremy Allison1-25/+10
in a lookup_sidX reply isn't optional - like the lookup_sidX query it needs to be defined in the struct. All this will go away with PIDL (thank goodness....). Jerry - I think this is a showstopper to be merged for 3.0.25b. I'll be watching the build farm to see if anything broke. Jeremy. (This used to be commit 9300b92f7a51eb80fdc039d8dad23ea9ce82aa8f)
2007-10-10r22675: Simo's patch for 0 size allocation. Still needJeremy Allison1-7/+9
to examine parse_misc.c fix. Jeremy. (This used to be commit 80d981265cd3bc9d73c5da3c514ec736e2dfa73a)
2007-10-10r22587: Ensure TALLOC_ZERO_ARRAY is consistent.Jeremy Allison1-23/+62
Jeremy. (This used to be commit c3df5d08dd6a983f9d53dc6628a50e571d322e8d)
2007-10-10r22573: Fix old bug mixing free() and talloc_free()Jeremy Allison1-1/+1
when the add_sid_to_array_XX code was moved from malloc to talloc. Found running valgrind and rpcclient. Needs merging for 3.0.25 final. Jeremy. (This used to be commit 8af56dbd00045049ea3c5022822bbaeeecbd9661)
2007-10-10r20875: Pass DCE/RPC server call arguments as a struct rather than as ↵Jelmer Vernooij1-96/+84
separate arguments. This makes it a bit more similar to the Samba4 code. (This used to be commit 0596badb410a58e7a715e2b17bc0bef0489a2448)
2007-10-10r20824: Send access to the trusted domain passwords through the pdb backend, ↵Volker Lendecke1-2/+1
so that in the next step we can store them in LDAP to be replicated across DCs. Thanks to Michael Adam <ma@sernet.de> Volker (This used to be commit 3c879745cfc39be6128b63a88ecdbfa3d9ce6c2d)
2007-10-10r19224: Add setting the rng_fault_state to the already converted pipes.Volker Lendecke1-8/+483
Convert the low-hanging fruit of the LSA server. This provides a sample how the server calls can be converted one by one, see the "proxy_lsa_call" function. Volker (This used to be commit 99e54a213ad3561ea6e8dc44c483847c18c5681e)
2007-10-10r18680: Fix last struct uuids (in uncommented code).Günther Deschner1-3/+3
Guenther (This used to be commit 41c79ee5accb13f73d1f65b303d723ca2ff49933)
2007-10-10r18271: Big change:Gerald Carter1-2/+2
* autogenerate lsa ndr code * rename 'enum SID_NAME_USE' to 'enum lsa_SidType' * merge a log more security descriptor functions from gen_ndr/ndr_security.c in SAMBA_4_0 The most embarassing thing is the "#define strlen_m strlen" We need a real implementation in SAMBA_3_0 which I'll work on after this code is in. (This used to be commit 3da9f80c28b1e75ef6d46d38fbb81ade6b9fa951)
2007-10-10r17554: CleanupVolker Lendecke1-1/+1
(This used to be commit 761cbd52f0cff6b864c506ec03c94039b6101ef9)
2007-10-10r17463: A bit of cleanup work:Volker Lendecke1-1/+1
Remove some unused code: pdb_find_alias is not used anymore, and nobody I think has ever used the pdb_nop operations for group mapping. smbpasswd and tdb use the default ones and ldap has its own. Make the functions pdb_getgr* return NTSTATUS instead of BOOL. Nobody right now really makes use of it, but it feels wrong to throw away information so early. Volker (This used to be commit f9856f6490fe44fdba97ea86062237d8c74d4bdc)
2007-10-10r17451: Change pdb_getgrsid not to take a DOM_SID but a const DOM_SID * as anVolker Lendecke1-1/+1
argument. Volker (This used to be commit 873a5a1211d185fd50e7167d88cbc869f70dfd3f)
2007-10-10r17199: Add comment to the RID/SID miracleVolker Lendecke1-1/+6
(This used to be commit 4c4ae01c671bd35687af686a34824a96828e6b25)
2007-10-10r17194: To run rpc-samba3-lsa in the build farm, we can't rely on ↵Volker Lendecke1-2/+2
geteuid()==0. Adapt it to other "Am I root?" checks. Jerry, Jeremy, please check this! Thanks, Volker (This used to be commit f777b2d294f7258e676976d7807adbb644c85a2f)
2007-10-10r17192: Make this actually survive valgrind. We NEED pidl here...Volker Lendecke1-5/+12
Maybe bzr is not such a bad idea, then you would probably see less spam on samba-cvs, sorry for that... :-) Volker (This used to be commit 41456b498a181c70707ca1ea80288bd7bdcadcdf)
2007-10-10r17188: Dump lsa_lookupsids3. I could not make it work at all against W2k3, theVolker Lendecke1-24/+10
rpc-lsa test even considers NT_STATUS_RPC_PROTSEQ_NOT_SUPPORTED not to be an error. Before someone re-activates this, show me a working sniff please :-) Volker (This used to be commit b185fb9fa61d89b612870c2fdd9e112c9e7ae57c)
2007-10-10r17183: LsaLookupSids() shoudl return the string form of a SID whenGerald Carter1-2/+3
it cannot be mapped and not the hex of the RID. Who wrote that? (This used to be commit 4e51cf34cf4cbe77957d754952369df3a180f974)
2007-10-10r17064: lsa_GetUserName needs to return the name for S-1-5-7 on an anonymous ↵Volker Lendecke1-4/+16
login. Found that because I want to play around with setsharesecurity, for this I need the "whoami" call figuring out the SID of the currently connected user. Not activating this test yet until the build farm has picked up the new samba4 revision. Volker (This used to be commit 5cfe482841b77208b68376f9e2b8a4a62271f7c9)
2007-10-10r16945: Sync trunk -> 3.0 for 3.0.24 code. Still needJeremy Allison1-16/+15
to do the upper layer directories but this is what everyone is waiting for.... Jeremy. (This used to be commit 9dafb7f48ca3e7af956b0a7d1720c2546fc4cfb8)
2007-10-10r16433: Fix Coverity #300 (triggered by a Klockwork bugfixJeremy Allison1-5/+1
I think). If a alloc fails just return NT_STATUS_NO_MEMORY, don't go to "done" label and deref pointers. Jeremy. (This used to be commit 490c7c84674860ecd9daa24341edb427b9fe0aa5)
2007-10-10r16409: Fix Klocwork ID's.Volker Lendecke1-0/+5
1177 In reg_perfcount.c: 1200 1202 1203 1204 In regfio.c: 1243 1245 1246 1247 1251 Jerry, the reg_perfcount and regfio.c ones, can you take a look please? This is really your code, and I'm not sure I did the right thing to return an error. smbcacls.c: 1377 srv_eventlog_nt.c: 1415 1416 1417 srv_lsa_nt.c: 1420 1421 srv_netlog_nt.c: 1429 srv_samr_nt: 1458 1459 1460 Volker Volker (This used to be commit d6547d12b1c9f9454876665a5bdb010f46b9f5ff)
2007-10-10r15044: Fix the build. (void returning non-void).Günther Deschner1-1/+1
Guenther (This used to be commit 3ff278b852b4085461127bc7ccb2c5dba81fb3c8)
2007-10-10r15041: Adding rpc client calls to manipulate auditing policies on remote CIFSGünther Deschner1-16/+37
servers. Also add a new "net rpc audit" tool. The lsa query infolevels were taken from samb4 IDL, the lsa policy flags and categories are partly documented on msdn. I need to cleanup the double lsa_query_info_policy{2}{_new} calls next. Guenther (This used to be commit 0fed66926f4b72444abfc8ffb8c46cca8d0600aa)
2007-10-10r14403: * modifies create_local_nt_token() to create a BUILTIN\AdministratorsGerald Carter1-1/+1
group IFF sid_to_gid(S-1-5-32-544) fails and 'winbind nested groups = yes' * Add a SID domain to the group mapping enumeration passdb call to fix the checks for local and builtin groups. The SID can be NULL if you want the old semantics for internal maintenance. I only updated the tdb group mapping code. * remove any group mapping from the tdb that have a gid of -1 for better consistency with pdb_ldap.c. The fixes the problem with calling add_group_map() in the tdb code for unmapped groups which might have had a record present. * Ensure that we distinguish between groups in the BUILTIN and local machine domains via getgrnam() Other wise BUILTIN\Administrators & SERVER\Administrators would resolve to the same gid. * Doesn't strip the global_sam_name() from groups in the local machine's domain (this is required to work with 'winbind default domain' code) Still todo. * Fix fallback Administrators membership for root and domain Admins if nested groups = no or winbindd is not running * issues with "su - user -c 'groups'" command * There are a few outstanding issues with BUILTIN\Users that Windows apparently tends to assume. I worked around this presently with a manual group mapping but I do not think this is a good solution. So I'll probably add some similar as I did for Administrators. (This used to be commit 612979476aef62e8e8eef632fa6be7d30282bb83)
2007-10-10r14182: Ensure we know that dom_sid cannot be null.Jeremy Allison1-1/+1
Jeremy. (This used to be commit e3a28bf4c8064f7053b7d1a25a2f087ac2095fcd)