summaryrefslogtreecommitdiff
path: root/source4/cldap_server/netlogon.c
AgeCommit message (Collapse)AuthorFilesLines
2011-05-08s4-interfaces Rename interfaces code so not to conflict with source3/Andrew Bartlett1-3/+3
The iface_count, iface_n_bcast, and load_interfaces functions conflicted with functions of the same name in source3, so the source4 functions were renamed. Hopefully we can actually wrap one around the other in future. Andrew Bartlett
2011-02-28Fix some typesJelmer Vernooij1-1/+1
Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Mon Feb 28 23:30:06 CET 2011 on sn-devel-104
2011-02-24build: moved libds/common/flag_mapping.c into a common subsystemAndrew Tridgell1-0/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-02-10ldb: use #include <ldb.h> for ldbAndrew Tridgell1-2/+2
thi ensures we are using the header corresponding to the version of ldb we're linking against. Otherwise we could use the system ldb for link and the in-tree one for include Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-09-15s4-netlogon: fixed logic for setting DS_SERVER_WRITABLEAndrew Tridgell1-1/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-09-15s4-cldap: don't set the writable bit when we are a RODCAndrew Tridgell1-2/+6
when we are a RODC, don't respond with the writable bit in the server type response of netlogon requests Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-09-13s4:cosmetic - the SID attribute is called objectSid - not objectSIDMatthias Dieter Wallnöfer1-1/+1
2010-07-16s4-loadparm: 2nd half of lp_ to lpcfg_ conversionAndrew Tridgell1-10/+10
this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-05-18Finish removal of iconv_convenience in public API's.Jelmer Vernooij1-7/+3
2010-04-27s4:cldap_server/netlogon.c - handle the domain SID correctlyMatthias Dieter Wallnöfer1-7/+21
2010-04-27nbt: samlogon/netlogon structures - unify denominationsMatthias Dieter Wallnöfer1-3/+3
2010-04-27s4:fill_netlogon_samlogon_response - reorder assign operations (to be ↵Matthias Dieter Wallnöfer1-5/+4
consistent)
2010-04-27s4:fill_netlogon_samlogon_response - use "lp_workgroup" for the short ↵Matthias Dieter Wallnöfer1-1/+1
netbios domainname This call is only for the DC mode.
2010-04-28s4-netlogon: fixed getDcNameEx2 for blank inputsAndrew Tridgell1-4/+21
w2k8r2 returns the local DC information on no inputs for getDcNameEx2. This is needed for starting dsa.msc (ADUC) on Win7. CDLAP on the same call returns an error. This uses a parameter fill_on_blank_request to distinguish the two cases.
2010-04-27s4:cldap_server: allow src_address = NULL in fill_netlogon_samlogon_response()Stefan Metzmacher1-2/+10
If we don't have the client address, we assume it's a local call, maybe ncalrpc. metze
2010-04-27s4:CLDAP server - make use of the new "samdb_client_site_name" callMatthias Dieter Wallnöfer1-2/+3
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-04-22s4-cldap: we should set the w2k8 flags even if not the PDC emulatorAndrew Tridgell1-3/+4
these two tests are independent Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-04-13s4:"samdb_server_site_name" uses - proof for out of memoryMatthias Dieter Wallnöfer1-1/+3
2010-04-13s4:fill_netlogon_samlogon_reponse - fix a typoMatthias Dieter Wallnöfer1-1/+1
2010-04-13s4:fill_netlogon_samlogon_response - some rework of the detection codeMatthias Dieter Wallnöfer1-16/+26
To make it compatible by the use of the "dcesrv_netr_DsRGetDCName*" calls. Some result checks were redundant so I removed them. In other cases I added debug outputs. Sometimes the debug messages were misleading.
2010-04-13s4:CLDAP - "fill_netlogon_samlogon_reponse" - check for out of memoryMatthias Dieter Wallnöfer1-1/+4
2010-04-13s4:use "samdb_forest_name" for the forest DNS domainname lookupMatthias Dieter Wallnöfer1-2/+4
2010-04-13Revert "s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functions"Matthias Dieter Wallnöfer1-1/+1
We should use the "ldb_get_*_basedn" calls since they are available in the LDB library.
2010-04-12s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functionsMatthias Dieter Wallnöfer1-1/+1
Purely cosmetic change.
2010-02-25s4:cldap_server - make it "signed-safe"Matthias Dieter Wallnöfer1-1/+1
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2009-12-10s4-server: use GUID_to_ndr_blob() in cldap and smb serversAndrew Tridgell1-5/+3
2009-12-09s4-dsdb: added dsdb_functional_level() helper functionAndrew Tridgell1-3/+1
2009-10-18s4:sites - get the server site (name) from DSDBMatthias Dieter Wallnöfer1-2/+2
2009-10-14s4: Changes the old occurences of "lp_realm" in "lp_dnsdomain" where neededMatthias Dieter Wallnöfer1-7/+5
For KERBEROS applications the realm should be upcase (function "lp_realm") but for DNS ones it should be used lowcase (function "lp_dnsdomain"). This patch implements the use of both in the right way.
2009-10-02s4-cldap: match w2k8-r2 for cldap netlogon bitsAndrew Tridgell1-10/+17
Windows does not set the 3 high bits, which is strange given their meaning. I've submitted a CAR on this.
2009-09-23s4-cldap: return domainFunctionality from SAMAndrew Tridgell1-0/+5
2009-07-13libds: merge the UF<->ACB flag mapping functions.Günther Deschner1-1/+1
Guenther
2009-05-26Don't use crossRef records to find our own domainAndrew Bartlett1-96/+20
A single AD server can only host a single domain, so don't stuff about with looking up our crossRef record in the cn=Partitions container. We instead trust that lp_realm() and lp_workgroup() works correctly. Andrew Bartlett
2009-03-19s4:cldap: rewrite the cldap library based on tsocketStefan Metzmacher1-11/+12
metze
2009-02-02s4:cldap: s/private/private_dataStefan Metzmacher1-1/+1
metze
2008-10-15idl: finally fully share nbt.idl in s3 and s4.Günther Deschner1-3/+3
Guenther
2008-10-14Sync with Samba 3.Jelmer Vernooij1-1/+1
2008-10-03Merge commit 'master/master'Andrew Tridgell1-40/+40
2008-10-02fixed the sense of ldb base dn comparisons in two places, and use aAndrew Tridgell1-1/+1
direct comparison instead of a sub-tree comparison in another this fixes basedn searches on the global catalog port
2008-10-02The IRIX compiler does not like embedded unnamed unionsVolker Lendecke1-40/+40
2008-09-23Merge ldb_search() and ldb_search_exp_fmt() into a simgle function.Simo Sorce1-24/+20
The previous ldb_search() interface made it way too easy to leak results, and being able to use a printf-like expression turns to be really useful.
2008-08-22fixed the DomainDNS searches in the netlogon codeAndrew Tridgell1-2/+2
(This used to be commit 7dce38f9897df02073132f18b1021e0d0636590c)
2008-08-21Validate input in the CLDAP and DGRAM 'netlogon' responder.Andrew Bartlett1-7/+37
(This used to be commit 682ca3cae1d5e796bc58142f79c99d43742ac85c)
2008-08-20Add extra bits to our 'netlogon' response in CLDAP and NBT.Matthias Dieter Wallnöfer1-1/+7
I've studied now the netlogon attribute from the CLDAP request and have compared them with the table presented in the WSPP docs (http://msdn.microsoft.com/en-us/library/cc201036.aspx). The first two bytes seem to be correct, but that the third and fourth one is completely clear with SAMBA 4. Signed-off-by: Andrew Bartlett <abartlet@samba.org> (This used to be commit 3024a43c25e3ec9821d94a27d5cf738890b1b8f3)
2008-05-21Fix creation of sockaddr in netlogon datagram generator.Andrew Bartlett1-1/+1
The previous code sent uninitialised data, and was the wrong length. Andrew Bartlett (This used to be commit 8e070293cfd522b7464be5bc4d8045572d6d996c)
2008-05-21Extend the 'netlogon' CLDAP and NBT implementation.Andrew Bartlett1-10/+50
This now handles checking if the user exists, including validating the ACB mask on the user. This would be a nasty security hole, if Kerberos did not already expose this information anonymously... Andrew Bartlett (This used to be commit 441b286c00f9a7743cdefeb243545bdbd2c94c5e)
2008-05-17Handle netbios domains in the CLDAP server too.Andrew Bartlett1-8/+64
This commit also fixes a number of issues found by the NBT-DGRAM and LDAP-CLDAP tests. Andrew Bartlett (This used to be commit 8f99a4b94e95f8bde0f80f92d4e57020c62cfaab)
2008-05-17Convert the CLDAP server to use the new netlogon structures.Andrew Bartlett1-95/+98
This also makes the CLDAP server the place where we create the NETLOGON SAMLOGON replies, regardless of protocol (NBT mailslots or CLDAP). Andrew Bartlett (This used to be commit 8b00a9429470c9ad3646255c340e6a963bd226bd)
2008-04-14Remove prototypes from build.h in preparation of removing build.hJelmer Vernooij1-1/+1
altogether. (This used to be commit dbeab2a9cdee4e5f69afeb2603ba29cbed56debd)
2008-01-06r26681: Use fewer magic numbers.Andrew Bartlett1-2/+2
Andrew Bartlett (This used to be commit 16edbe1d607390227652ee97a000da98c696c735)