summaryrefslogtreecommitdiff
path: root/source3/utils
AgeCommit message (Collapse)AuthorFilesLines
2010-09-23s3-dsgetdcname: always pass in messaging context.Günther Deschner4-1/+10
Volker, please check. Guenther
2010-09-23s3-build: fix the build of split_tokens.Günther Deschner1-0/+1
Guenther
2010-09-22s3-registry: fix some c++ build warnings.Günther Deschner1-1/+1
Guenther
2010-09-22s3:net: add subcommand net registry deletekey_recursiveMichael Adam1-3/+28
to delete a key including subkeys
2010-09-22s3:registry: remove unneeded TALLOC_CTX argument from reg_deletekey_recursiveMichael Adam1-1/+1
2010-09-22s3-net: add command rpc registry importGregor Beck1-0/+296
Signed-off-by: Michael Adam <obnox@samba.org>
2010-09-22s3-net: add command rpc registry exportGregor Beck1-2/+268
Signed-off-by: Michael Adam <obnox@samba.org>
2010-09-22s3-net: add command registry convertGregor Beck1-0/+61
Signed-off-by: Michael Adam <obnox@samba.org>
2010-09-22s3-net: add command registry exportGregor Beck1-0/+113
Signed-off-by: Michael Adam <obnox@samba.org>
2010-09-22s3-net: add command registry importGregor Beck1-0/+203
Signed-off-by: Michael Adam <obnox@samba.org>
2010-09-22s3-net: let rpccli_winreg_Connect optionally return WERRORGregor Beck1-9/+9
Signed-off-by: Michael Adam <obnox@samba.org>
2010-09-21s3:registry: move regio.h from include/ to registry/Michael Adam2-2/+2
2010-09-21s3:registry: move prototypes from reg_init_basic.c to their own header.Michael Adam1-0/+1
2010-09-21s3:registry: move the reg_api prototypes to their own header.Michael Adam1-0/+1
2010-09-20s3-util: use shared dom_sid_dup.Günther Deschner1-2/+2
Guenther
2010-09-20s3-util_sid: use shared dom_sid_compare_auth and dom_sid_equal_X functions.Günther Deschner5-12/+17
Guenther
2010-09-20s3-build: only include smbldap.h where needed.Günther Deschner1-0/+1
Guenther
2010-09-16s3: Add the PAC info3 struct to the netsamlogon_cache in ntlm_authVolker Lendecke1-0/+4
2010-09-16s3: Correctly unwrap the krb ticket in gss-spnegoVolker Lendecke1-1/+52
2010-09-16s3: Fall back to raw NTLMSSP for the gss-spnego protocolVolker Lendecke1-0/+25
This is to handle the mod_auth_ntlm_winbind protocol sending "Negotiate" to IE, which sends raw NTLMSSP instead of a SPNEGO wrapped NTLMSSP blob.
2010-09-16s3: Split off output generation from manage_squid_ntlmssp_requestVolker Lendecke1-17/+41
2010-09-16s3: Wrap the ntlm_auth loop with a talloc_stackframeVolker Lendecke1-0/+2
2010-09-16libcli/auth/ntlmssp Be clear about talloc parents for session keysAndrew Bartlett1-5/+7
The previous API was not clear as to who owned the returned session key. This fixes a valgrind-found use-after-free in the NTLMSSP key derivation code, and avoids making allocations - we steal and zero instead. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-15s3: Fix some debug msgs in ntlm_authVolker Lendecke1-8/+8
2010-09-13s3: Remove some unnecessary if-statementsVolker Lendecke1-10/+5
2010-09-13ntlm_auth: Fix a valgrind errorVolker Lendecke1-1/+1
2010-09-13s3: Fix a typoVolker Lendecke1-1/+1
2010-09-13s3: Fix a typo (authentictaion->authentication)Volker Lendecke1-1/+3
2010-09-11s3-privs Hide the bitmap-based grant_privilege and revoke_privilegeAndrew Bartlett1-7/+6
The new wrappers avoid anything but the core privileges code dealing with the bitmap values directly. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-privs Make privilege_enum_sids() take an LUID, not a bitmapAndrew Bartlett1-3/+5
This moves one more privileges call away from direct bitmap manipuation. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-privs Remove a pointer from grant_privilege()Andrew Bartlett1-1/+1
Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-privs Remove a pointer indirection from revoke_privilege()Andrew Bartlett1-1/+1
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11libcli/security Don't export privs[] as a global variableAndrew Bartlett1-4/+2
Instead, provide access functions for the LSA and net sam callers for the information they need. They still only enumerate the first 8 privileges that have traditionally been exposed. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3:auth Remove NT_USER_TOKENAndrew Bartlett3-12/+12
The all UPPER case typedef is no longer the preferred Samba style and this makes it easier to see that this is the IDL-derivied structure Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-auth Change struct nt_user_token -> struct security_tokenAndrew Bartlett2-5/+5
This common structure is defined in security.idl Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-privs Further changes to remove SE_PRIVAndrew Bartlett1-3/+3
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-10Check all SMB_MALLOC returns correctly. Found by Andreas Moroder ↵Jeremy Allison1-0/+3
<andreas.moroder@gmx.net>. Jeremy
2010-09-09s3-utils: remove unused variable in smbget.Günther Deschner1-1/+0
Guenther
2010-09-08s3: use time_mono throughout in smbgetBjörn Jacke1-6/+5
2010-08-31s3: use monotonic clock for time deltas in smbgetBjörn Jacke1-2/+5
2010-08-31s3-auth Rename NT_USER_TOKEN user_sids -> sidsAndrew Bartlett2-13/+13
This is closer to the struct security_token from security.idl
2010-08-28s3: Remove the dependency of g_lock on procid_selfVolker Lendecke2-2/+2
procid_self() references global vars, don't depend on them unnecessarily
2010-08-26s3-build: use dbwrap.h only where needed.Günther Deschner5-0/+5
Guenther
2010-08-26s3-build: only include krb5 environment variables where required.Günther Deschner1-0/+1
Guenther
2010-08-26s3-idmap: only include idmap headers where needed.Günther Deschner1-0/+1
Guenther
2010-08-26s3-build: only include "fake_file.h" where needed.Günther Deschner1-0/+1
Guenther
2010-08-26s3-build: only include nsswitch header where needed.Günther Deschner2-0/+2
Guenther
2010-08-25s3-lsa: separate out init_lsa headers.Günther Deschner3-0/+3
Guenther
2010-08-14s3:net: remove the "net idmap secret alloc" functionality.Michael Adam1-39/+18
This is now not available any more, since allocation is moved below the id mapping layer. The functionality could be reintroduced on a per domain basis as an e.g "net idmap secret <domain> alloc" command.
2010-08-14s3:net: rewrite "net idmap restore" using dbwrapMichael Adam1-52/+130
This removes the use of libwbclient from "net idmap". This detects the idmap backend from the current smb.conf and stores the id mapping tables in the corresponding data bases. Currently, only tdb and tdb2 backends are supported. Support for the ldap backend may be implemented later.