summaryrefslogtreecommitdiff
path: root/source3/rpc_server
AgeCommit message (Collapse)AuthorFilesLines
2012-01-18s3-librpc Remove layer around struct gensec_securityAndrew Bartlett1-2/+2
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-18s3-librpc: Simplify SPNEGO code now that all mechs use a struct gensec_securityAndrew Bartlett2-16/+4
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-18s3-librpc Call SPENGO/GSSAPI via the auth_generic layer and gensecAndrew Bartlett2-104/+25
This simplifies a lot of code, as we know we are always dealing with a struct gensec_security, and allows the gensec module being used to implement GSSAPI to be swapped for AD-server operation. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-18s3-librpc Call GSSAPI via the auth_generic layer and gensecAndrew Bartlett1-72/+4
This simplifies a lot of code, as we know we are always dealing with a struct gensec_security, and allows the gensec module being used to implement GSSAPI to be swapped when required for AD-server operation. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-11spoolss: fix DPD_DELETE_ALL_FILES error returnDavid Disseldorp1-2/+1
If DeletePrinterDriverEx is called with DPD_DELETE_ALL_FILES and files assigned to the to-be-deleted driver overlap with other drivers then an error is returned. Change the error code here to match Windows 2k8r2. Signed-off-by: David Disseldorp <ddiss@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org>
2012-01-05s3-auth Remove ntlmssp_wrap.h which is no longer requiredAndrew Bartlett1-1/+0
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-05s3-auth use gensec directly rather than via auth_generic_stateAndrew Bartlett1-32/+24
This is possible because the s3 gensec modules are started as normal gensec modules, so we do not need a wrapper any more. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-05s3-auth Add TALLOC_CTX * to auth_generic_prepare()Andrew Bartlett1-2/+2
This makes the long term owner of this memory more clear. So far only the clear cases have been moved from NULL however. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server: Rework pipe_ntlmssp_auth_bind() to be genericAndrew Bartlett3-25/+63
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server: Allow gensec mechanisms to return NT_STATUS_OKAndrew Bartlett1-2/+2
If a kerberos mechanism is added, then it can return OK after just one packet. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server: rename pipe_ntlmssp_verify_final() to ↵Andrew Bartlett1-3/+3
pipe_auth_generic_verify_final() Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server: Rename dcesrv_ntlmssp.[ch] to dcesrv_auth_generic.[ch]Andrew Bartlett5-4/+4
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server rename NTLMSSP functions to auth_generic..()Andrew Bartlett4-11/+11
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server rename ntlmssp_server_auth_start() -> auth_generic_server_start()Andrew Bartlett4-5/+9
By adding an OID parameter we can make this routine generic to any gensec module that may be made available. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server remove unused headerAndrew Bartlett1-1/+0
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server request both sign and seal for clarityAndrew Bartlett1-1/+1
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-auth remove auth_ntlmssp_start(), call auth_generic_start() directlyAndrew Bartlett1-2/+2
This makes it clear that this can support more than just NTLMSSP. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-auth rename auth_ntlmssp_prepare() -> auth_generic_prepare()Andrew Bartlett1-2/+2
This function handles more than NTLMSSP now, at least when we are an AD DC and so changing the name may avoid some confusion in the future. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-auth rename auth_ntlmssp_state -> auth_generic_stateAndrew Bartlett1-1/+1
This structure handles more than NTLMSSP now, at least when we are an AD DC and so changing the name may avoid some confusion in the future. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server request the DCE_STYLE feature in ntlmssp_server_auth_startAndrew Bartlett1-0/+4
This is not used or honoured by NTLMSSP, but I hope to make this routine more generic in the future. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-netlogon: use dsgetdcname() instead of get_dc_name()Sumit Bose1-2/+7
Sometimes the domain parameter might not contain the NetBIOS name of the remote domain but the DNS name. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Thu Dec 22 19:21:21 CET 2011 on sn-devel-104
2011-12-22s3-netlogon: Add support to authenticate trusted domains.Sumit Bose1-0/+13
2011-12-22s3-rpc_server: Pass in our flags to netlogon_creds_server_init().Stefan Metzmacher1-1/+1
metze
2011-12-22s3-netlogon: Add support for LogonGetCapabilities.Stefan Metzmacher1-1/+21
This is also needed to support AES. metze
2011-12-22s3-rpc_server: Add my copyright for my previous work hereAndrew Bartlett1-0/+1
Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Thu Dec 22 09:02:57 CET 2011 on sn-devel-104
2011-12-22s3-rpc_server: Remove old commentAndrew Bartlett1-5/+0
2011-12-22s3-rpc: added "rpc_server:default" config optionAndrew Tridgell1-4/+12
this allows the config to specify a default behaviour (embedded, external or disabled) for unknown pipes. This is needed to allow the s3 smbd server to redirect unknown pipes to the s4 RPC server when using s3 smbd as a file server for a s4 DC. If rpc_server:default is not specified then this change preserves the old behaviour
2011-12-15s3:smbd: pass smbd_server_connection and a snumused function pointer to ↵Stefan Metzmacher1-1/+11
reload_services() metze
2011-12-15s3:rpc_server/spoolss: remove reload_services check from delete_printer_hook()Stefan Metzmacher1-8/+0
As the spoolss code can run embedded or external relative to the smbd file server process, it's very tricky to verify if a share is still in use. Checking the result of the "deleteprinter command" command should be enough to check for success. We should not return WERR_ACCESS_DENIED if the share is still in use, by the current client, as the primary printer definition is already deleted. metze
2011-12-13s3:smbd/msdfs: enum_msdfs_links() doesn't need a smbd_server_connection anymoreStefan Metzmacher1-2/+1
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Tue Dec 13 17:26:20 CET 2011 on sn-devel-104
2011-12-13s3:smbd: use connections_snum_used() instead of conn_snum_used() for ↵Stefan Metzmacher1-1/+1
load_usershare_shares() Before removing the share security descriptor, we should make sure there're really no active users anymore. metze
2011-12-13s3:param: don't reference conn_snum_used directly in load_usershare_shares()Stefan Metzmacher1-1/+1
This uses the same logic as lp_killunused(). metze
2011-12-13s3:rpc_server/netlogon: remove unused send_sync_message()Stefan Metzmacher1-14/+0
metze
2011-12-12s3: Remove a bunch of calls to procid_self()Volker Lendecke2-3/+2
All callers to messaging_[re]init only used procid_self()
2011-12-12s4-lsarpc handle more info levels in SetInfoTrustedDomain callsAndrew Bartlett1-1/+1
This uses the very helpful conversion functions written for the s3 lsa server and places these in common. Andrew Bartlett
2011-12-02s3: Use autogenerated open_files.idlVolker Lendecke1-0/+1
2011-11-16Fix bug #8561 - Password change settings not fully observed.Jeremy Allison1-1/+1
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Nov 16 00:22:41 CET 2011 on sn-devel-104
2011-11-08s3: Remove two unused variablesVolker Lendecke1-2/+0
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Nov 8 10:14:36 CET 2011 on sn-devel-104
2011-11-04Properly fix bug #8384 - Windows XP clients seem to crash smbd process every ↵Henry Wong1-0/+1
once in a while. Ensure we correctly null out the referenced pointer when we decrease the ref. count. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Fri Nov 4 21:12:13 CET 2011 on sn-devel-104
2011-11-04Fix bug #8562 - talloc: double free error.Jeremy Allison1-2/+9
Ensure we don't access an undefined pointer. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Fri Nov 4 00:09:46 CET 2011 on sn-devel-104
2011-11-02s3-lsa: Let passdb backend handle the DOMAIN$ userSumit Bose1-101/+0
Signed-off-by: Günther Deschner <gd@samba.org>
2011-10-27s3: Include uid_wrapper where it is missing.Andreas Schneider3-0/+3
2011-10-27Include uid_wrapper correctly.Andreas Schneider2-0/+2
2011-10-27s3-netlogon: Fix setting the machinge account password.Andreas Schneider1-0/+4
This bug has been found with uid wrapper.
2011-10-26Second attempt to fix bug #8384 - Windows XP clients seem to crash smbd ↵Jeremy Allison1-1/+1
process every once in a while. Don't just use the first entry in back_channels as a talloc context to allocate a long-lived chan entry on - must be NULL. It's already correctly deleted when the last reference goes away. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Oct 26 02:42:35 CEST 2011 on sn-devel-104
2011-10-24Try and fix bug #8384 - Windows XP clients seem to crash smbd process every ↵Jeremy Allison1-6/+17
once in a while. Remove the copy of the binding handle from struct notify_back_channel, use the direct pointer in struct rpc_pipe_client instead. Ensure we can't call the functions with a NULL binding handle. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Mon Oct 24 22:56:40 CEST 2011 on sn-devel-104
2011-10-24idl: Improve MS-PAC IDLSimo Sorce1-1/+1
Change some misleading variable names to reflect the actual function. Add missing field name/types previously marked as unkown. Signed-off-by: Günther Deschner <gd@samba.org> Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Mon Oct 24 19:19:28 CEST 2011 on sn-devel-104
2011-10-21s3-ntlmssp Remove references to auth_ntlmssp_context from the rpc codeAndrew Bartlett4-42/+40
We always dereferenced auth_ntlmssp_state->gensec_security, so now we do not bother passing around the whole auth_ntlmssp_state. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-21s3-ntlmssp Remove auth_ntlmssp_want_feature()Andrew Bartlett1-2/+2
We now just call the gensec_want_feature() directly. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-21s3-ntlmssp Remove auth_ntlmssp_negotiated_sign() and ↵Andrew Bartlett1-2/+2
auth_ntlmssp_negotiated_seal() We now just call the gensec_have_feature() directly. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>