summaryrefslogtreecommitdiff
path: root/source3/rpc_server
AgeCommit message (Collapse)AuthorFilesLines
2011-07-20s3-auth Remove seperate guest booleanAndrew Bartlett2-2/+3
Instead, we base our guest calculations on the presence or absense of the authenticated users group in the token, ensuring that we have only one canonical source of this important piece of authorization data Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-rpc_server remove per-element copies of auth_session_infoAndrew Bartlett2-44/+4
This is not required any more now that they are the same structure, and shows the value in having a common structure across the codebase. In particular, now any additional state that needs to be added to the auth_session_info will be transparently available across the named pipe proxy, without a need to modify the mapping layer. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-auth Use the common auth_session_infoAndrew Bartlett16-95/+95
This patch finally has the same structure being used to describe the authorization data of a user across the whole codebase. This will allow of our session handling to be accomplished with common code. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-auth use auth_user_info not netr_SamInfo3 in auth3_session_infoAndrew Bartlett5-67/+37
This makes auth3_session_info identical to auth_session_info The logic to convert the info3 to a struct auth_user_info is essentially moved up the stack from the named pipe proxy in source3/rpc_server to create_local_token(). Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-rpc_server read and write the unix_token and unix_info across named_pipe_authAndrew Bartlett2-27/+42
This ensures that the exact same token is used on both sides of the pipe, when a full token is passed (ie, source3 to source3, but not yet source4 to to source3 as the unix info isn't calculated there yet). If we do not have unix_token, we fall back to the old behaviour and go via create_local_token(). (However, in this case the security_token is now overwritten, as it is better to have it match the rest of the session_info create_local_token() builds). Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-auth Use system boolean in auth_user_info_unixAndrew Bartlett1-1/+1
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-auth Use guest boolean in auth_user_info_unixAndrew Bartlett2-2/+2
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-auth Use struct auth_user_info_unix for unix_name and sanitized_usernameAndrew Bartlett1-1/+1
This is closer to the layout of struct auth_session_info in auth.idl Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-auth Use *unix_token rather than utok in struct auth3_session_infoAndrew Bartlett6-42/+42
This brings this structure one step closer to the struct auth_session_info. A few SMB_ASSERT calls are added in some key places to ensure that this pointer is initialised, to make tracing any bugs here easier in future. NOTE: Many of the users of this structure should be reviewed, as unix and NT access checks are mixed in a way that should just be done using the NT ACL. This patch has not changed this behaviour however. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-auth Use struct auth3_session_info outside the auth subsystemAndrew Bartlett16-98/+98
This seperation between the structure used inside the auth modules and in the wider codebase allows for a gradual migration from struct auth_serversupplied_info -> struct auth_session_info (from auth.idl) The idea here is that we keep a clear seperation between the structure before and after the local groups, local user lookup and the session key modifications have been processed, as the lack of this seperation has caused issues in the past. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20Add my copyrightAndrew Bartlett2-0/+2
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-18s3-rpc_server: Fixed segfaults in rpc daemons.Andreas Schneider3-3/+8
Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Mon Jul 18 14:01:02 CEST 2011 on sn-devel-104
2011-07-15lsa: lsa_CreateTrustedDomainEx takes lsa_TrustDomainInfoAuthInfo, notGünther Deschner1-1/+4
lsa_TrustDomainInfoAuthInfoInternal. Guenther
2011-07-15lsa: rename auth info argument in lsa_CreateTrustedDomainEx2Günther Deschner1-5/+5
Guenther
2011-07-14s3-rpc_server: Pass event and messaging context to accept function.Andreas Schneider1-5/+14
Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Thu Jul 14 17:22:16 CEST 2011 on sn-devel-104
2011-07-14s3-librpc: Pass messaging context to dcerpc register functions.Andreas Schneider1-0/+1
2011-07-13s3-epmapper: Fix adding tcpip endpoints.Andreas Schneider1-0/+8
Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Wed Jul 13 15:22:11 CEST 2011 on sn-devel-104
2011-07-08s3-waf: split out LIBCLI_WINREG_INTERNAL as LIBCLI_WINREG was pulling in rpc ↵Günther Deschner1-3/+3
server code in undesired places. Andreas, please check. Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Fri Jul 8 18:34:44 CEST 2011 on sn-devel-104
2011-07-07s3-printing: safe a ton of roundtrips by reusing existing winreg ↵Günther Deschner1-148/+191
binding_handles. Guenther Pair-Programmed-With: David Disseldorp <ddiss@suse.de>
2011-07-07s3-printing: use winreg_internal functions.Günther Deschner1-73/+73
Guenther Pair-Programmed-With: David Disseldorp <ddiss@suse.de>
2011-07-07s3-printing: add winreg_internal functions.Günther Deschner3-1/+540
Guenther Pair-Programmed-With: David Disseldorp <ddiss@suse.de>
2011-07-07s3-printing: add winreg_printer_binding_handle and remove most of ↵Günther Deschner2-4772/+12
srv_spoolss_util.c. Guenther Pair-Programmed-With: David Disseldorp <ddiss@suse.de>
2011-07-07s3-printing: move driver_info_ctr_to_info8 to init_spoolss.hGünther Deschner1-0/+1
Guenther Pair-Programmed-With: David Disseldorp <ddiss@suse.de>
2011-07-07s3-printing: move os2 related functions to printing/nt_printing_os2.c.Günther Deschner1-0/+1
Guenther Pair-Programmed-With: David Disseldorp <ddiss@suse.de>
2011-07-07s3-waf: Fix linking bugs causing segfaults.Andreas Schneider1-1/+1
As auth_util.c is linked several times the static variables have different address on different calls. This leads to segfaults. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Thu Jul 7 16:50:05 CEST 2011 on sn-devel-104
2011-07-05s3: Remove some unused variablesVolker Lendecke1-4/+0
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Jul 5 18:40:11 CEST 2011 on sn-devel-104
2011-07-05s3: Return "granted" from share_access_checkVolker Lendecke1-2/+2
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-07-04s3: Fix an enum/int mixupVolker Lendecke1-9/+10
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon Jul 4 18:47:59 CEST 2011 on sn-devel-104
2011-07-04s3-samr Send IP address only to PAM remote hostname hook on password setAndrew Bartlett1-44/+12
The previous behaviour was to attempt to do a reverse hostname lookup, where enabled. This new behaviour matches the new behaviour in the modules called by auth stack. Andrew Bartlett
2011-07-04s3-rpc_server: Remove client_id and server_id from pipes struct.Andreas Schneider2-60/+0
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-epmapper: Replace server_id in the epmapper.Andreas Schneider1-4/+17
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-spoolss: Replace client_id in the spoolss server.Andreas Schneider1-8/+63
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-samr: Replace client_id in samr server.Andreas Schneider1-7/+72
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-rpc_server: Replace client_id in dcerpc gssapi server.Andreas Schneider3-8/+27
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-rpc_server: Remove unused client_id in srv_pipe.c.Andreas Schneider1-3/+0
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-auth: Pass the remote_address down to user_info.Andreas Schneider1-0/+2
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-auth: Added remote_address to ntlmssp server.Andreas Schneider5-2/+21
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-rpc_server: Migrate rpc function to tsocket_address.Andreas Schneider7-40/+93
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-04s3-rpc_server: Add local and remote address to pipes struct.Andreas Schneider1-30/+43
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-07-02param: Finish conversion from lp_wins_support() -> lp_we_are_a_wins_server()Andrew Bartlett1-1/+1
Jermey started this in 1997 with 0aa493cc0303aa4177f289b9e4c797c8fa180672 (avoiding the duplicate function makes it easier to generate the struct loadparm_globals). Andrew Bartlett
2011-07-01s3-printing: split out printing migration code into a smaller library.Günther Deschner1-1/+1
Guenther
2011-06-28s3-waf: add some missing tdb dependencies.Günther Deschner1-1/+1
Guenther
2011-06-23s3-param Remove 'announce version' parameterAndrew Bartlett2-10/+10
The only users I can find of this on the internet involve confused users, and our own documentation recommends never setting this. Don't confuse our users any longer. Andrew Bartlett
2011-06-21s3-spoolss: Fix some valgrind warnings.Andreas Schneider2-8/+8
These are in/out values and need to be initialized. Signed-off-by: Günther Deschner <gd@samba.org> Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Tue Jun 21 18:58:30 CEST 2011 on sn-devel-104
2011-06-21lib/util Remove samba-util-common!Andrew Bartlett1-12/+12
All of this code is now in common, so we don't need the second '-common' library any more! Andrew Bartlett
2011-06-20tdb_traverse/tdb_traverse_read: check returns for negative, not -1.Rusty Russell1-1/+1
TDB2 returns a negative error number on failure. This is compatible if we always check for < 0 instead of == -1. Also, there's no tdb_traverse_read in TDB2: we don't try to make traverse reliable any more, so there are no write locks anyway. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2011-06-16s3:rpc_server/svcctl: fix valgrind bug in _svcctl_QueryServiceObjectSecurity()Stefan Metzmacher1-1/+1
r->out.buffer needs to stay in its size, as it will be marshalled completely. As it's preallocated and initialized with zeros, we just need to copy the payload into it, even if it's smaller than the offered buffer size. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Jun 16 14:15:47 CEST 2011 on sn-devel-104
2011-06-16s3:rpc_server/svcctl: fix valgrind bugs in _svcctl_QueryServiceConfig2W()Stefan Metzmacher1-9/+5
r->out.buffer needs to stay in its size, as it will be marshalled completely. As it's preallocated and initialized with zeros, we just need to copy the payload into it. If we always marshall the return buffer, we already have the needed buffer size and don't need to call ndr_size_* functions. metze
2011-06-16s3:rpc_server/svcctl: don't allocate return values on a temporary stackframeStefan Metzmacher1-5/+3
And always initialize the whole return structure. This caused samba3.posix_s3.rpc.svcctl to be flakey. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Jun 16 11:34:34 CEST 2011 on sn-devel-104
2011-06-09s3-param Remove special case for global_myname(), rename to lp_netbios_name()Andrew Bartlett7-26/+26
There is no reason this can't be a normal constant string in the loadparm system, now that we have lp_set_cmdline() to handle overrides correctly. Andrew Bartlett