Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-03-12 | s3-netlogon: Fix bug #7237: _netr_SamLogon segfaults for clients sending ↵ | Günther Deschner | 1 | -6/+12 | |
NULL domain. Thanks to Marc Muehlfeld <muehlfeld@medizinische-genetik.de>. Guenther | |||||
2010-02-23 | schannel_tdb: make code compilable in both trees | Simo Sorce | 1 | -2/+5 | |
2010-02-23 | s3:schannel streamline interface | Simo Sorce | 1 | -14/+8 | |
Make calling schannel much easier by removing the need to explicitly open the database. Let the abstraction do it instead. | |||||
2010-02-23 | s3:schannel more readable check logic | Simo Sorce | 1 | -5/+39 | |
Make the initial schannel check logic more understandable. Make it easy to define different policies depending on ther caller's security requirements (Integrity/Privacy/Both/None) | |||||
2010-02-22 | s3 Fix the build | Simo Sorce | 1 | -3/+3 | |
I didn't mean to puch the GetForestTrustInformation patch just yet, now that it is in fix the s3 build ... | |||||
2010-01-10 | s3: Remove the typedef for "auth_serversupplied_info" | Volker Lendecke | 1 | -1/+1 | |
2010-01-10 | s3: Remove the typedef for "auth_usersupplied_info" | Volker Lendecke | 1 | -1/+1 | |
2009-11-26 | s3-rpc: running minimal_includes.pl on rpc_client and rpc_server. | Günther Deschner | 1 | -2/+0 | |
Guenther | |||||
2009-11-26 | s3-rpc: Avoid including every pipe's client and server stubs everywhere in ↵ | Günther Deschner | 1 | -0/+1 | |
samba. Guenther | |||||
2009-11-09 | s3-netlogon: enable RPC-NETLOGON-ADMIN test against s3. | Günther Deschner | 1 | -4/+23 | |
Guenther | |||||
2009-11-06 | s3-netlogon: implement _netr_GetDcName and _netr_GetAnyDcName. | Günther Deschner | 1 | -5/+116 | |
Guenther | |||||
2009-11-04 | s3-netlogon: make sure we protect some function codes in ↵ | Günther Deschner | 1 | -0/+13 | |
_netr_LogonControl2Ex(). Guenther | |||||
2009-11-04 | s3-netlogon: let s3 pass against RPC-NETLOGON-S3 again. | Günther Deschner | 1 | -0/+72 | |
Guenther | |||||
2009-11-04 | s3-netlogon: implement _netr_NETLOGON_INFO_4 in netr_LogonControl2Ex() and ↵ | Günther Deschner | 1 | -0/+10 | |
friends as well. Guenther | |||||
2009-11-04 | s3-netlogon: implement remote trust account changing in ↵ | Günther Deschner | 1 | -0/+41 | |
netr_LogonControl2Ex() and friends. Guenther | |||||
2009-10-16 | s3-netlogon: Fix _netr_ServerPasswordSet2 cleartext blob handling. | Günther Deschner | 1 | -1/+4 | |
Following Andrew's advice, let's straight md4 the plaintext blob and avoid trying to get a paintext string out of the input the client sends. Guenther | |||||
2009-10-13 | s3: use enum netr_SchannelType all over the place. | Günther Deschner | 1 | -1/+1 | |
Guenther | |||||
2009-10-07 | s3-netlogon: pure cosmetic indent fixes in _netr_LogonControl2Ex(). | Günther Deschner | 1 | -69/+71 | |
Guenther | |||||
2009-09-30 | s3-netlogon: properly implement _netr_NetrEnumerateTrustedDomains(). | Günther Deschner | 1 | -6/+33 | |
Guenther | |||||
2009-09-16 | s3-netlogon: support validation level 6 in netr_SamLogon calls. | Günther Deschner | 1 | -0/+10 | |
Guenther | |||||
2009-09-16 | s3-netlogon: match all logon levels in netr_SamLogon calls. | Günther Deschner | 1 | -0/+9 | |
Guenther | |||||
2009-09-16 | schannel: fully share schannel sign/seal between s3 and 4. | Günther Deschner | 1 | -1/+2 | |
Guenther | |||||
2009-09-15 | s3-dcerpc: use dcerpc_AuthLevel and remove duplicate set of flags. | Günther Deschner | 1 | -2/+2 | |
Guenther | |||||
2009-09-13 | s3-netlogon: Fix Coverity #945 UNINIT. | Günther Deschner | 1 | -1/+1 | |
Guenther | |||||
2009-09-02 | s3-netlogon: use WERRORs in NETLOGON_INFO structures. | Günther Deschner | 1 | -60/+20 | |
Guenther | |||||
2009-09-02 | s3-netlogon: implement _netr_ServerPasswordSet2. | Günther Deschner | 1 | -11/+55 | |
Guenther | |||||
2009-09-02 | s3-netlogon: rework _netr_ServerPasswordSet. | Günther Deschner | 1 | -62/+123 | |
Guenther | |||||
2009-09-02 | s3-netlogon: implement _netr_LogonSamLogonWithFlags(). | Günther Deschner | 1 | -18/+40 | |
Guenther | |||||
2009-08-27 | s3-netlogon: use shared credential and schannel storage infrastructure for ↵ | Günther Deschner | 1 | -189/+132 | |
netlogon server. Guenther | |||||
2009-08-27 | s3-netlogon: add netr_creds_server_step_check() convenience wrapper. | Günther Deschner | 1 | -0/+34 | |
Guenther | |||||
2009-08-26 | s3-netlogon: let get_md4pw() return a struct dom_sid. | Günther Deschner | 1 | -7/+5 | |
Guenther | |||||
2009-08-26 | s3-netlogon: fix default case when _netr_LogonSamLogon is called from other ↵ | Günther Deschner | 1 | -1/+3 | |
opcodes. Guenther | |||||
2009-08-26 | Revert "s3: Fix uninitialized const char *" | Günther Deschner | 1 | -1/+0 | |
Tim, I am reverting this as this eliminates "_netr_LogonSamLogonEx" from the debug messages completely. Followup fix to come immediately. This reverts commit add9b4afb14d3426d1f3bf5b8e7c86926f462578. | |||||
2009-08-26 | s3-netlogon: get rid of init_net_r_req_chal(). | Günther Deschner | 1 | -13/+1 | |
Guenther | |||||
2009-08-26 | s3-netlogon: let get_md4pw() return a struct samr_Password. | Günther Deschner | 1 | -5/+6 | |
(in preparation of credential merge). Guenther | |||||
2009-08-26 | s3-netlogon: make _netr_ServerAuthenticate a callback to ↵ | Günther Deschner | 1 | -46/+16 | |
_netr_ServerAuthenticate3. Guenther | |||||
2009-08-24 | s3-netlogon: Only hand out rid when netlogon credential chain has been setup ↵ | Günther Deschner | 1 | -1/+5 | |
sucessfully. Guenther | |||||
2009-06-30 | s3-netlogon: remove unneeded fstrings from netlogon server. | Günther Deschner | 1 | -22/+12 | |
Guenther | |||||
2009-06-25 | s3-netlogon: fix validation level 2 support in netr_SamLogon and friends. | Günther Deschner | 1 | -11/+27 | |
Guenther | |||||
2009-06-18 | s3:netlogon Cope with recent rename in netlogon.idl | Andrew Bartlett | 1 | -1/+1 | |
2009-05-29 | s3-netlogon: Fix _netr_LogonSamLogon{Ex} with validation level != 3. | Günther Deschner | 1 | -6/+7 | |
Guenther | |||||
2009-05-29 | s3-netlogon: return proper error code for unsupported validation class. | Günther Deschner | 1 | -1/+1 | |
Guenther | |||||
2009-05-06 | After getting confirmation from Guenther, add 3 changes we'll | Jeremy Allison | 1 | -13/+23 | |
ultimately need to fix bug #6099 Samba returns incurrate capabilities list. 1). Add a comment to point out that r->in.negotiate_flags is an aliased pointer to r->out.negotiate_flags. 2). Ensure we return NETLOGON_NEG_STRONG_KEYS in our flags return if the client requested it. 3). Clean up the error exits so we always return the same way. Signed off by Guenther. Jeremy. | |||||
2009-05-06 | s3-netlogon: Fix NETLOGON credential chain. Fixes Bug #6099 (Windows 7 ↵ | Günther Deschner | 1 | -2/+6 | |
joining Samba3) and probably many, many more. Jeremy, with 9a5d5cc1db0ee60486f932e34cd7961b90c70a56 you alter the in negotiate flags (which are a pointer to the out negotiate flags assigned in the generated netlogon server code). So, while you wanted to just set the *out* negflags, you did in fact reset the *in* negflags, effectively eliminating the NETLOGON_NEG_STRONG_KEYS bit (formerly known as NETLOGON_NEG_128BIT) which then caused creds_server_init() to generate 64bit creds instead of 128bit, causing the whole chain to break. *Please* check. Guenther | |||||
2009-04-14 | Rework Samba3 to use new libcli/auth code (partial) | Andrew Bartlett | 1 | -0/+1 | |
This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett | |||||
2009-02-21 | Remove the static "chal" from ntlmssp.c:get_challenge() | Volker Lendecke | 1 | -2/+2 | |
2009-02-16 | Fix bug 5920 | Yasuma Takeda | 1 | -1/+1 | |
The length of the memcpy was calculated wrong, r->out.return_authenticator is a pointer | |||||
2009-02-16 | s3:netlogon: implement _netr_LogonGetCapabilities() with ↵ | Stefan Metzmacher | 1 | -4/+3 | |
NT_STATUS_NOT_IMPLEMENTED This hopefully fixes bug #6100. metze | |||||
2009-02-15 | Attempt to fix bug #6099. According to Microsoft | Jeremy Allison | 1 | -17/+26 | |
Windows 7 looks at the negotiate_flags returned in this structure *even if the call fails with access denied ! So in order to allow Win7 to connect to a Samba NT style PDC we set the flags before we know if it's an error or not. Jeremy. | |||||
2009-02-13 | s3: Fix uninitialized const char * | Tim Prouty | 1 | -0/+1 | |