summaryrefslogtreecommitdiff
path: root/source3/rpc_server/srv_netlog_nt.c
AgeCommit message (Collapse)AuthorFilesLines
2010-03-12s3-netlogon: Fix bug #7237: _netr_SamLogon segfaults for clients sending ↵Günther Deschner1-6/+12
NULL domain. Thanks to Marc Muehlfeld <muehlfeld@medizinische-genetik.de>. Guenther
2010-02-23schannel_tdb: make code compilable in both treesSimo Sorce1-2/+5
2010-02-23s3:schannel streamline interfaceSimo Sorce1-14/+8
Make calling schannel much easier by removing the need to explicitly open the database. Let the abstraction do it instead.
2010-02-23s3:schannel more readable check logicSimo Sorce1-5/+39
Make the initial schannel check logic more understandable. Make it easy to define different policies depending on ther caller's security requirements (Integrity/Privacy/Both/None)
2010-02-22s3 Fix the buildSimo Sorce1-3/+3
I didn't mean to puch the GetForestTrustInformation patch just yet, now that it is in fix the s3 build ...
2010-01-10s3: Remove the typedef for "auth_serversupplied_info"Volker Lendecke1-1/+1
2010-01-10s3: Remove the typedef for "auth_usersupplied_info"Volker Lendecke1-1/+1
2009-11-26s3-rpc: running minimal_includes.pl on rpc_client and rpc_server.Günther Deschner1-2/+0
Guenther
2009-11-26s3-rpc: Avoid including every pipe's client and server stubs everywhere in ↵Günther Deschner1-0/+1
samba. Guenther
2009-11-09s3-netlogon: enable RPC-NETLOGON-ADMIN test against s3.Günther Deschner1-4/+23
Guenther
2009-11-06s3-netlogon: implement _netr_GetDcName and _netr_GetAnyDcName.Günther Deschner1-5/+116
Guenther
2009-11-04s3-netlogon: make sure we protect some function codes in ↵Günther Deschner1-0/+13
_netr_LogonControl2Ex(). Guenther
2009-11-04s3-netlogon: let s3 pass against RPC-NETLOGON-S3 again.Günther Deschner1-0/+72
Guenther
2009-11-04s3-netlogon: implement _netr_NETLOGON_INFO_4 in netr_LogonControl2Ex() and ↵Günther Deschner1-0/+10
friends as well. Guenther
2009-11-04s3-netlogon: implement remote trust account changing in ↵Günther Deschner1-0/+41
netr_LogonControl2Ex() and friends. Guenther
2009-10-16s3-netlogon: Fix _netr_ServerPasswordSet2 cleartext blob handling.Günther Deschner1-1/+4
Following Andrew's advice, let's straight md4 the plaintext blob and avoid trying to get a paintext string out of the input the client sends. Guenther
2009-10-13s3: use enum netr_SchannelType all over the place.Günther Deschner1-1/+1
Guenther
2009-10-07s3-netlogon: pure cosmetic indent fixes in _netr_LogonControl2Ex().Günther Deschner1-69/+71
Guenther
2009-09-30s3-netlogon: properly implement _netr_NetrEnumerateTrustedDomains().Günther Deschner1-6/+33
Guenther
2009-09-16s3-netlogon: support validation level 6 in netr_SamLogon calls.Günther Deschner1-0/+10
Guenther
2009-09-16s3-netlogon: match all logon levels in netr_SamLogon calls.Günther Deschner1-0/+9
Guenther
2009-09-16schannel: fully share schannel sign/seal between s3 and 4.Günther Deschner1-1/+2
Guenther
2009-09-15s3-dcerpc: use dcerpc_AuthLevel and remove duplicate set of flags.Günther Deschner1-2/+2
Guenther
2009-09-13s3-netlogon: Fix Coverity #945 UNINIT.Günther Deschner1-1/+1
Guenther
2009-09-02s3-netlogon: use WERRORs in NETLOGON_INFO structures.Günther Deschner1-60/+20
Guenther
2009-09-02s3-netlogon: implement _netr_ServerPasswordSet2.Günther Deschner1-11/+55
Guenther
2009-09-02s3-netlogon: rework _netr_ServerPasswordSet.Günther Deschner1-62/+123
Guenther
2009-09-02s3-netlogon: implement _netr_LogonSamLogonWithFlags().Günther Deschner1-18/+40
Guenther
2009-08-27s3-netlogon: use shared credential and schannel storage infrastructure for ↵Günther Deschner1-189/+132
netlogon server. Guenther
2009-08-27s3-netlogon: add netr_creds_server_step_check() convenience wrapper.Günther Deschner1-0/+34
Guenther
2009-08-26s3-netlogon: let get_md4pw() return a struct dom_sid.Günther Deschner1-7/+5
Guenther
2009-08-26s3-netlogon: fix default case when _netr_LogonSamLogon is called from other ↵Günther Deschner1-1/+3
opcodes. Guenther
2009-08-26Revert "s3: Fix uninitialized const char *"Günther Deschner1-1/+0
Tim, I am reverting this as this eliminates "_netr_LogonSamLogonEx" from the debug messages completely. Followup fix to come immediately. This reverts commit add9b4afb14d3426d1f3bf5b8e7c86926f462578.
2009-08-26s3-netlogon: get rid of init_net_r_req_chal().Günther Deschner1-13/+1
Guenther
2009-08-26s3-netlogon: let get_md4pw() return a struct samr_Password.Günther Deschner1-5/+6
(in preparation of credential merge). Guenther
2009-08-26s3-netlogon: make _netr_ServerAuthenticate a callback to ↵Günther Deschner1-46/+16
_netr_ServerAuthenticate3. Guenther
2009-08-24s3-netlogon: Only hand out rid when netlogon credential chain has been setup ↵Günther Deschner1-1/+5
sucessfully. Guenther
2009-06-30s3-netlogon: remove unneeded fstrings from netlogon server.Günther Deschner1-22/+12
Guenther
2009-06-25s3-netlogon: fix validation level 2 support in netr_SamLogon and friends.Günther Deschner1-11/+27
Guenther
2009-06-18s3:netlogon Cope with recent rename in netlogon.idlAndrew Bartlett1-1/+1
2009-05-29s3-netlogon: Fix _netr_LogonSamLogon{Ex} with validation level != 3.Günther Deschner1-6/+7
Guenther
2009-05-29s3-netlogon: return proper error code for unsupported validation class.Günther Deschner1-1/+1
Guenther
2009-05-06After getting confirmation from Guenther, add 3 changes we'llJeremy Allison1-13/+23
ultimately need to fix bug #6099 Samba returns incurrate capabilities list. 1). Add a comment to point out that r->in.negotiate_flags is an aliased pointer to r->out.negotiate_flags. 2). Ensure we return NETLOGON_NEG_STRONG_KEYS in our flags return if the client requested it. 3). Clean up the error exits so we always return the same way. Signed off by Guenther. Jeremy.
2009-05-06s3-netlogon: Fix NETLOGON credential chain. Fixes Bug #6099 (Windows 7 ↵Günther Deschner1-2/+6
joining Samba3) and probably many, many more. Jeremy, with 9a5d5cc1db0ee60486f932e34cd7961b90c70a56 you alter the in negotiate flags (which are a pointer to the out negotiate flags assigned in the generated netlogon server code). So, while you wanted to just set the *out* negflags, you did in fact reset the *in* negflags, effectively eliminating the NETLOGON_NEG_STRONG_KEYS bit (formerly known as NETLOGON_NEG_128BIT) which then caused creds_server_init() to generate 64bit creds instead of 128bit, causing the whole chain to break. *Please* check. Guenther
2009-04-14Rework Samba3 to use new libcli/auth code (partial)Andrew Bartlett1-0/+1
This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett
2009-02-21Remove the static "chal" from ntlmssp.c:get_challenge()Volker Lendecke1-2/+2
2009-02-16Fix bug 5920Yasuma Takeda1-1/+1
The length of the memcpy was calculated wrong, r->out.return_authenticator is a pointer
2009-02-16s3:netlogon: implement _netr_LogonGetCapabilities() with ↵Stefan Metzmacher1-4/+3
NT_STATUS_NOT_IMPLEMENTED This hopefully fixes bug #6100. metze
2009-02-15Attempt to fix bug #6099. According to MicrosoftJeremy Allison1-17/+26
Windows 7 looks at the negotiate_flags returned in this structure *even if the call fails with access denied ! So in order to allow Win7 to connect to a Samba NT style PDC we set the flags before we know if it's an error or not. Jeremy.
2009-02-13s3: Fix uninitialized const char *Tim Prouty1-0/+1