summaryrefslogtreecommitdiff
path: root/source3/rpc_server/srv_pipe.c
AgeCommit message (Collapse)AuthorFilesLines
2010-07-14s3:auth Change auth_ntlmssp_server_info API to return NTSTATUSAndrew Bartlett1-3/+4
This fixes a bug where register_existing_vuid() could be called with a NULL server_info if the alloction failed. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-07-13s3-dcerpc: Use dcerpc_push_ncacn_packet() in api_pipe_alter_context()Simo Sorce1-104/+76
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: Use dcerpc_push_dcerpc_auth() for spnego auth continuations.Simo Sorce1-41/+32
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dceprc: Use dcerpc_push_ncacn_packet() in api_pipe_bind_req()Simo Sorce1-111/+89
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: Use a DATA_BLOB in bind processing and avoid one mem copySimo Sorce1-105/+52
Also move dcerpc_push_dcerpc_auth() invocation in api_pipe_bind_req() to simplify the workflow. Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: Rearrange api_pipe_bind_req() to do checks before allocating memorySimo Sorce1-30/+27
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: fix dcerpc_push_ncacn_packet, pass arg by addressSimo Sorce1-2/+2
There is no need to copy the whole structure twice by passing it in by value. Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: pass the packet to setup_bind_nack()Simo Sorce1-6/+6
Allows to not rely on p->call_id but use the value directly from the request packet header. Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: Remove unused functionsSimo Sorce1-274/+0
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: Use dcerpc_pull_ncacn_packet() to unmarshall dceprc requestsSimo Sorce1-178/+97
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dceprc: Store opnum in its own variableSimo Sorce1-4/+4
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dceprc use a DATA_BLOB to hold the curren pdu in pipes_structSimo Sorce1-1/+1
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: use dceprc_push_ncacn_packet_header in create_next_pdu_noauth()Simo Sorce1-17/+23
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: Use dcerpc_push_ncacn_packet_header() in create_next_pdu_schannel()Simo Sorce1-15/+27
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: use dcerpc_push_ncacn_packet_header() in create_next_pdu_ntlmssp()Simo Sorce1-21/+26
Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-13s3-dcerpc: Use dcerpc_set_frag_length()Simo Sorce1-4/+5
Automatically calculate the fragment length where possible. Signed-off-by: Günther Deschner <gd@samba.org>
2010-07-08s3-dcerpc: Use dcerpc_pull_dcerpc_auth in api_pipe_bind_auth3()Simo Sorce1-19/+13
2010-07-08s3-dcerpc: Use dcerpc_auth in api_pipe_bind_req()Simo Sorce1-82/+85
2010-07-08s3:dcerpc Use prs_parse_dcerpc_bindSimo Sorce1-27/+36
2010-07-08s3:rpc user idl define dcerpc_ctx_list instead of custom RPC_CONTEXTSimo Sorce1-9/+13
2010-07-07s3-dcerpc: use dcerpc_push_ncacn_packet() for setup_fault_pdu().Günther Deschner1-28/+18
Guenther Signed-off-by: Simo Sorce <idra@samba.org>
2010-07-07s3-dcerpc: use dcerpc_push_ncacn_packet() for setup_bind_nak().Günther Deschner1-14/+16
Guenther Signed-off-by: Simo Sorce <idra@samba.org>
2010-07-01s3:auth Fix switch statement referencing a uninitialized variableSimo Sorce1-1/+1
Looking at the original commit (9a747d500fad699038ecf75615c680a9fd9e4cc7) this seem the right solution. Andrew please check.
2010-06-16Remove an unused chunk of code (will make it easier to talloc'ize prs_XXX).Jeremy Allison1-49/+0
Jeremy.
2010-06-08Revert "s3:auth Change auth_ntlmssp_server_info API to return NTSTATUS"Volker Lendecke1-4/+3
This reverts commit edba46ce94c335411ab337eeb4ef6f88fb3aae80. Conflicts: source3/auth/auth_ntlmssp.c
2010-06-07s3:auth add hooks to indicate if signing or sealing is desired with NTLMSSPAndrew Bartlett1-0/+21
This allows the right hooks to be called in GENSEC when s3compat implements the auth_ntlmssp interface. Otherwise, we can't do the signing or sealing as we have not negoitated it's use. Andrew Bartlett
2010-06-07s3:auth Change auth_ntlmssp_server_info API to return NTSTATUSAndrew Bartlett1-3/+4
It's nicer to have an NTSTATUS return, and in s3compat there may be a reason other than 'no memory' why this can fail. Andrew Bartlett
2010-06-04s3-rpc: Seperate rpc_srv_register for plain connection.Andreas Schneider1-125/+32
This will make it possible to create plain rpc named pipe connnections. Reviewed-by: Simo Sorce <idra@samba.org>
2010-05-31s3:ntlmssp Use a TALLOC_CTX for ntlmssp_sign_packet() and ntlmssp_seal_packet()Andrew Bartlett1-7/+9
This ensures the results can't be easily left to leak. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31ntlmssp: Make the ntlmssp.h from source3/ a common headerAndrew Bartlett1-1/+1
The code is not yet in common, but I hope to fix that soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31s3:auth Remove AUTH_NTLMSSP_STATE typedef.Andrew Bartlett1-7/+7
typedefs are no longer preferred Samba style. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31s3:auth Make AUTH_NTLMSSP_STATE a private structure.Andrew Bartlett1-26/+27
This makes it a little easier for it to writen in terms of GENSEC in future. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-18s3: Remove use of iconv_convenience.Jelmer Vernooij1-5/+4
2010-03-24s3:ntlmssp: use client.netbios_name instead of workstationStefan Metzmacher1-1/+2
metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-04srv_pipe.c doesn't reference current_user anymore. Remove it.Jeremy Allison1-2/+0
Jeremy.
2010-02-23schannel_tdb: make code compilable in both treesSimo Sorce1-1/+1
2010-02-23s3:schannel streamline interfaceSimo Sorce1-1/+1
Make calling schannel much easier by removing the need to explicitly open the database. Let the abstraction do it instead.
2010-02-18More fixes for bug #7146 - Samba miss-parses authenticated RPC packets.Jeremy Allison1-16/+31
Alignment space calculations are tricky :-). Jeremy.
2010-02-18More fixes for bug #7146 - Samba miss-parses authenticated RPC packets.Jeremy Allison1-14/+16
Ensure we calculate the space correctly (including the ss_padding_len) when constructing reply packets. Jeremy.
2010-02-17Fix bug #7146 - Samba miss-parses authenticated RPC packets.Jeremy Allison1-120/+311
Parts of the Samba RPC client and server code misinterpret authenticated packets. DCE authenticated packets actually look like this : +--------------------------+ |header | | ... frag_len (packet len)| | ... auth_len | +--------------------------+ | | | Data payload | ... .... | | +--------------------------+ | | | auth_pad_len bytes | +--------------------------+ | | | Auth footer | | auth_pad_len value | +--------------------------+ | | | Auth payload | | (auth_len bytes long) | +--------------------------+ That's right. The pad bytes come *before* the footer specifying how many pad bytes there are. In order to read this you must seek to the end of the packet and subtract the auth_len (in the packet header) and the auth footer length (a known value). The client and server code gets this right (mostly) in 3.0.x -> 3.4.x so long as the pad alignment is on an 8 byte boundary (there are some special cases in the code for this). Tridge discovered there are some (DRS replication) cases where on 64-bit machines where the pad alignment is on a 16-byte boundary. This breaks the existing S3 hand-optimized rpc code. This patch removes all the special cases in client and server code, and allows the pad alignment for generated packets to be specified by changing a constant in include/local.h (this doesn't affect received packets, the new code always handles them correctly whatever pad alignment is used). This patch also works correctly with rpcclient using sign+seal from the 3.4.x and 3.3.x builds (testing with 3.0.x and 3.2.x to follow) so even as a server it should still work with older libsmbclient and winbindd code. Jeremy
2009-12-22s3:ntlmssp: only include ntlmssp.h where actually neededAndrew Bartlett1-0/+1
Andrew Bartlett
2009-11-26s3-rpc: running minimal_includes.pl on rpc_client and rpc_server.Günther Deschner1-2/+0
Guenther
2009-11-08Revert "s3: Consolidate getting the name out of a pipes_struct"Volker Lendecke1-15/+29
This reverts commit 9621306351cdb469ef393a6d8cbeea456bc4bd9f.
2009-11-08Revert "s3: Do not reference ndr_table when calling rpc_srv_register"Volker Lendecke1-7/+2
This reverts commit 494b2aff8826947e3bd556aecb175746163da485.
2009-11-08s3: Do not reference ndr_table when calling rpc_srv_registerVolker Lendecke1-2/+7
2009-11-08s3: Consolidate getting the name out of a pipes_structVolker Lendecke1-29/+15
2009-11-07s3: get_pipe_name_from_iface -> get_pipe_name_from_syntaxVolker Lendecke1-17/+27
2009-10-13s3:rpc: Fix is_known_pipename for dynamically loaded pipesVolker Lendecke1-1/+22
2009-09-17spnego: share spnego_parse.Günther Deschner1-0/+1
Guenther
2009-09-16libcli/auth: rewrite schannel sign/seal code to be more genericStefan Metzmacher1-17/+27
This prepares support for HMAC-SHA256/AES. metze