Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2009-09-17 | spnego: share spnego_parse. | Günther Deschner | 1 | -0/+1 | |
Guenther | |||||
2009-09-16 | libcli/auth: rewrite schannel sign/seal code to be more generic | Stefan Metzmacher | 1 | -17/+27 | |
This prepares support for HMAC-SHA256/AES. metze | |||||
2009-09-16 | s3-dcerpc: remove more obsolete or duplicate headers. | Günther Deschner | 1 | -15/+15 | |
Guenther | |||||
2009-09-16 | s3-schannel: add dump_NL_AUTH_SIGNATURE. | Günther Deschner | 1 | -23/+3 | |
Guenther | |||||
2009-09-16 | schannel: fully share schannel sign/seal between s3 and 4. | Günther Deschner | 1 | -25/+60 | |
Guenther | |||||
2009-09-15 | s3-dcerpc: really fix remaining old auth level constants. sorry... | Günther Deschner | 1 | -2/+2 | |
Guenther | |||||
2009-09-15 | s3-dcerpc: fix remaining old auth level constants. | Günther Deschner | 1 | -13/+13 | |
Guenther | |||||
2009-09-15 | s3-dcerpc: remove duplicate RPC_AUTH_LEVEL flags. | Günther Deschner | 1 | -5/+5 | |
Guenther | |||||
2009-09-15 | s3-dcerpc: use dcerpc_AuthLevel and remove duplicate set of flags. | Günther Deschner | 1 | -15/+15 | |
Guenther | |||||
2009-09-13 | s3-schannel: fix api_pipe_schannel_process(), was using incorrect buffer length. | Günther Deschner | 1 | -1/+3 | |
Found by RPC-SCHANNEL torture test. Guenther | |||||
2009-09-11 | s3-schannel: use NL_AUTH_SIGNATURE for schannel sign & seal (client & server). | Günther Deschner | 1 | -8/+31 | |
Guenther | |||||
2009-09-11 | s3-schannel: use NL_AUTH_MESSAGE for schannel bind reply. | Günther Deschner | 1 | -10/+17 | |
Guenther | |||||
2009-09-08 | s3-rpc_server: use NL_AUTH_MESSAGE in pipe_schannel_auth_bind(). | Günther Deschner | 1 | -6/+23 | |
Guenther | |||||
2009-08-27 | s3-netlogon: use shared credential and schannel storage infrastructure for ↵ | Günther Deschner | 1 | -7/+11 | |
netlogon server. Guenther | |||||
2009-07-05 | Use null_ndr_syntax_id instead of zeroing null_interface manually | Volker Lendecke | 1 | -6/+2 | |
2009-07-05 | Remove "typedef struct ndr_syntax_id RPC_IFACE;" | Volker Lendecke | 1 | -4/+6 | |
2009-07-05 | Make check_bind_req static to rpc_server/srv_pipe.c | Volker Lendecke | 1 | -2/+2 | |
2009-03-05 | Get the sense of the integer wrap test the right way around. Sorry. | Jeremy Allison | 1 | -1/+1 | |
Jeremy. | |||||
2009-03-05 | Now we're allowing a lower bound for auth_len, ensure we | Jeremy Allison | 1 | -1/+5 | |
also check for an upper one (integer wrap). Jeremy. | |||||
2009-03-05 | Complete the fix for bug 6100 | Volker Lendecke | 1 | -1/+1 | |
According to [MS-RPCE].pdf, section 2.2.2.11: ---- A client or a server that (during composing of a PDU) has allocated more space for the authentication token than the security provider fills in SHOULD fill in the rest of the allocated space with zero octets. These zero octets are still considered to belong to the authentication token part of the PDU.<36> ---- RPC implementations are allowed to send padding bytes at the end of an auth footer. Windows 7 makes use of this. Thanks to Nick Meier <nmeier@microsoft.com> Volker | |||||
2009-02-08 | Make prs_struct->out_data.current_pdu dynamically allocated | Volker Lendecke | 1 | -113/+98 | |
Another 4k per open pipe | |||||
2009-02-01 | Add two new parameters to control how we verify kerberos tickets. Removes ↵ | Dan Sledz | 1 | -1/+1 | |
lp_use_kerberos_keytab parameter. The first is "kerberos method" and replaces the "use kerberos keytab" with an enum. Valid options are: secrets only - use only the secrets for ticket verification (default) system keytab - use only the system keytab for ticket verification dedicated keytab - use a dedicated keytab for ticket verification. secrets and keytab - use the secrets.tdb first, then the system keytab For existing installs: "use kerberos keytab = yes" corresponds to secrets and keytab "use kerberos keytab = no" corresponds to secrets only The major difference between "system keytab" and "dedicated keytab" is that the latter method relies on kerberos to find the correct keytab entry instead of filtering based on expected principals. The second parameter is "dedicated keytab file", which is the keytab to use when in "dedicated keytab" mode. This keytab is only used in ads_verify_ticket. | |||||
2009-02-01 | Replace pipe names in pipes_struct by ndr_syntax_id | Volker Lendecke | 1 | -29/+52 | |
This was mainly used for debugging output | |||||
2009-01-21 | Memory leaks and other fixes found by Coverity | todd stecher | 1 | -1/+3 | |
2009-01-09 | Remove the rpc_srv_register wrapper around rpc_pipe_register_commands | Volker Lendecke | 1 | -15/+4 | |
2009-01-09 | Pass the full ndr_interface_table into the s3 rpcserver when registering | Volker Lendecke | 1 | -0/+10 | |
2009-01-09 | Simplify find_pipe_fns_by_context slightly | Volker Lendecke | 1 | -8/+4 | |
2009-01-09 | Fix some nonempty blank lines | Volker Lendecke | 1 | -17/+17 | |
2008-11-24 | Get rid of pipes_struct->pipe_user, we have server_info now --- YESSS! | Volker Lendecke | 1 | -49/+1 | |
2008-10-22 | s3: use shared asn1 code. | Günther Deschner | 1 | -1/+1 | |
Guenther | |||||
2008-07-26 | Make api_rpcTNP static to srv_pipe.c | Volker Lendecke | 1 | -2/+5 | |
(This used to be commit 256c93a8b3d4d9a4e52a656c91b89a043a087066) | |||||
2008-07-19 | Introduce is_known_pipename | Volker Lendecke | 1 | -0/+33 | |
This scans the list of pipes registered via rpc_pipe_register_commands instead of using static tables. (This used to be commit 283e6039989adea1c8921b3600b410cb67b6492a) | |||||
2008-07-18 | Simplify the RPC servers: remove get_pipe_fns | Volker Lendecke | 1 | -97/+25 | |
The per-server xxx_get_pipe_fns functions can go once all the RPC servers are converted (This used to be commit 6aa2391cbe1cbda8269ded767117f53d83b243e1) | |||||
2008-07-16 | In api_pipe_bind_req(), check for the iface id, not the pipe name | Volker Lendecke | 1 | -3/+14 | |
This requires to store the rpc_interface in "struct rpc_table" (This used to be commit 654f8de8497aff29f9b1f1822b6a8e734ff329e0) | |||||
2008-07-16 | In api_pipe_bind_req(), decode the bind request before checking the pipe | Volker Lendecke | 1 | -8/+10 | |
(This used to be commit 8be41382ed9bb4fb44a1846fff2c7652388e4f28) | |||||
2008-06-26 | Now that we have p->server_info, use p->server_info->user_session_key | Volker Lendecke | 1 | -18/+29 | |
(This used to be commit aefad64e3a5c86d2f988d47e6215ed2085b8fc47) | |||||
2008-06-26 | Fix typo | Volker Lendecke | 1 | -1/+1 | |
(This used to be commit 41d2daeaa5a87da82a0debc4c9cfe14976215bd8) | |||||
2008-06-26 | Add server_info to pipes_struct | Volker Lendecke | 1 | -0/+10 | |
(This used to be commit d621867bb8767e1c4236d28dd9294a61db6cbb10) | |||||
2008-06-21 | Make pipes_struct its own talloc ctx | Volker Lendecke | 1 | -1/+1 | |
(This used to be commit 829b1ad4697f2f1ea008377d591456722dccd025) | |||||
2008-06-19 | Wrap the unix token info in a unix_user_token in auth_serversupplied_info | Volker Lendecke | 1 | -5/+6 | |
No functional change, this is a preparation for more current_user ref removal (This used to be commit dcaedf345e62ab74ea87f0a3fa1e3199c75c5445) | |||||
2008-04-17 | rpc_parse: Use UUIDs from librpc/gen_ndr/ when possible to reduce | Jelmer Vernooij | 1 | -4/+4 | |
duplication. (This used to be commit 428654b473ba44b2f5340eefef0d4fcd51aff558) | |||||
2008-04-15 | Reconcile ndr_syntax_id used by pidl-generated code and Samba3's RFC_IFACE. | Jelmer Vernooij | 1 | -2/+2 | |
(This used to be commit 7bea00dca1ee08ef731dfa73110ef9c190a29919) | |||||
2008-04-11 | Remove some write-only fstrings | Volker Lendecke | 1 | -12/+3 | |
(This used to be commit aacb07b1b0f674b8cb92347ef4b4dd1e7808dde8) | |||||
2008-03-23 | Fix Coverity ID 514 | Volker Lendecke | 1 | -0/+2 | |
Not exactly an uninitialized variable, but having Coverity figure out that we're only UNMARSHALLING here is probably asking for a bit too much. (This used to be commit 07a9f7daa83c94afefe0d81db4812135121862c2) | |||||
2008-03-21 | Remove remaining old srvsvc client and server rpc code entirely. | Günther Deschner | 1 | -1/+1 | |
Guenther (This used to be commit a5f0186f70abe8dba650265219e69ce5ca2fb642) | |||||
2008-03-17 | Coverity fixes | Marc VanHeyningen | 1 | -8/+8 | |
(This used to be commit 3fc85d22590550f0539215d020e4411bf5b14363) | |||||
2008-02-27 | Cosmetics: make check_bind_req() debug statements a little nicer. | Günther Deschner | 1 | -1/+1 | |
Guenther (This used to be commit 997a0a4a12d97595ff4df963601cf2c24d612972) | |||||
2008-02-19 | Yippie! LSARPC server-side migration to pidl finished. | Günther Deschner | 1 | -1/+1 | |
Guenther (This used to be commit aa7023b88d3161897b9616d950c2a99624d81931) | |||||
2008-02-17 | Build the generated ntsvcs server (not at all useable yet). | Günther Deschner | 1 | -1/+1 | |
Guenther (This used to be commit acce1092d90db1f90265de44fd340d7df73e4e0e) | |||||
2008-02-16 | YES! NETLOGON rpc server side migration to pidl finished. | Günther Deschner | 1 | -1/+1 | |
Guenther (This used to be commit 7845a0d9a8f938c1be888ab2d9aa6c35d6f1dbad) |