summaryrefslogtreecommitdiff
path: root/source4/cldap_server
AgeCommit message (Collapse)AuthorFilesLines
2010-05-18Finish removal of iconv_convenience in public API's.Jelmer Vernooij1-7/+3
2010-04-27s4:cldap_server/netlogon.c - handle the domain SID correctlyMatthias Dieter Wallnöfer1-7/+21
2010-04-27nbt: samlogon/netlogon structures - unify denominationsMatthias Dieter Wallnöfer1-3/+3
2010-04-27s4:fill_netlogon_samlogon_response - reorder assign operations (to be ↵Matthias Dieter Wallnöfer1-5/+4
consistent)
2010-04-27s4:fill_netlogon_samlogon_response - use "lp_workgroup" for the short ↵Matthias Dieter Wallnöfer1-1/+1
netbios domainname This call is only for the DC mode.
2010-04-28s4-netlogon: fixed getDcNameEx2 for blank inputsAndrew Tridgell2-5/+23
w2k8r2 returns the local DC information on no inputs for getDcNameEx2. This is needed for starting dsa.msc (ADUC) on Win7. CDLAP on the same call returns an error. This uses a parameter fill_on_blank_request to distinguish the two cases.
2010-04-27s4:cldap_server: allow src_address = NULL in fill_netlogon_samlogon_response()Stefan Metzmacher1-2/+10
If we don't have the client address, we assume it's a local call, maybe ncalrpc. metze
2010-04-27s4:CLDAP server - make use of the new "samdb_client_site_name" callMatthias Dieter Wallnöfer1-2/+3
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-04-22s4-cldap: we should set the w2k8 flags even if not the PDC emulatorAndrew Tridgell1-3/+4
these two tests are independent Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-04-13s4:"samdb_server_site_name" uses - proof for out of memoryMatthias Dieter Wallnöfer1-1/+3
2010-04-13s4:fill_netlogon_samlogon_reponse - fix a typoMatthias Dieter Wallnöfer1-1/+1
2010-04-13s4:dcesrv_netr_DsRGetDCNameEx2 - provide a much better implementationMatthias Dieter Wallnöfer1-0/+14
On the base of the "fill_netlogon_samlogon_response" call. This removes duplicated code.
2010-04-13s4:fill_netlogon_samlogon_response - some rework of the detection codeMatthias Dieter Wallnöfer1-16/+26
To make it compatible by the use of the "dcesrv_netr_DsRGetDCName*" calls. Some result checks were redundant so I removed them. In other cases I added debug outputs. Sometimes the debug messages were misleading.
2010-04-13s4:CLDAP - "fill_netlogon_samlogon_reponse" - check for out of memoryMatthias Dieter Wallnöfer1-1/+4
2010-04-13s4:use "samdb_forest_name" for the forest DNS domainname lookupMatthias Dieter Wallnöfer1-2/+4
2010-04-13Revert "s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functions"Matthias Dieter Wallnöfer1-1/+1
We should use the "ldb_get_*_basedn" calls since they are available in the LDB library.
2010-04-12s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functionsMatthias Dieter Wallnöfer1-1/+1
Purely cosmetic change.
2010-04-06s4-waf: removed the AUTOGENERATED markersAndrew Tridgell1-4/+0
we won't be using the mk -> wscript generator again
2010-04-06s4-waf: mark the wscript files as python so vim/emacs knows how to highlight ↵Andrew Tridgell1-0/+2
them
2010-04-06build: commit all the waf build files in the treeAndrew Tridgell1-0/+18
2010-02-25s4:cldap_server - make it "signed-safe"Matthias Dieter Wallnöfer2-2/+2
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2009-12-10s4-server: use GUID_to_ndr_blob() in cldap and smb serversAndrew Tridgell1-5/+3
2009-12-09s4-dsdb: added dsdb_functional_level() helper functionAndrew Tridgell1-3/+1
2009-10-23s4-dsdb: create a static system_session contextAndrew Tridgell1-1/+1
This patch adds a system_session cache, preventing us from having to recreate it on every ldb open, and allowing us to detect when the same session is being used in ldb_wrap
2009-10-18s4:sites - get the server site (name) from DSDBMatthias Dieter Wallnöfer1-2/+2
2009-10-14s4: Changes the old occurences of "lp_realm" in "lp_dnsdomain" where neededMatthias Dieter Wallnöfer1-7/+5
For KERBEROS applications the realm should be upcase (function "lp_realm") but for DNS ones it should be used lowcase (function "lp_dnsdomain"). This patch implements the use of both in the right way.
2009-10-02s4-cldap: match w2k8-r2 for cldap netlogon bitsAndrew Tridgell1-10/+17
Windows does not set the 3 high bits, which is strange given their meaning. I've submitted a CAR on this.
2009-09-23s4-cldap: return domainFunctionality from SAMAndrew Tridgell1-0/+5
2009-09-18s4-server: kill main daemon if a task fails to initialiseAndrew Tridgell1-6/+8
When one of our core tasks fails to initialise it can now ask for the server as a whole to die, rather than limping along in a degraded state.
2009-07-13libds: merge the UF<->ACB flag mapping functions.Günther Deschner1-1/+1
Guenther
2009-06-02Fix more unresolved symbols.Jelmer Vernooij1-6/+12
2009-05-26Don't use crossRef records to find our own domainAndrew Bartlett1-96/+20
A single AD server can only host a single domain, so don't stuff about with looking up our crossRef record in the cn=Partitions container. We instead trust that lp_realm() and lp_workgroup() works correctly. Andrew Bartlett
2009-03-19s4:cldap: rewrite the cldap library based on tsocketStefan Metzmacher3-56/+76
metze
2009-02-02s4:cldap: s/private/private_dataStefan Metzmacher2-2/+2
metze
2008-12-22Fix missing symbols issues when building with shared libraries.Jelmer Vernooij1-1/+1
2008-10-15idl: finally fully share nbt.idl in s3 and s4.Günther Deschner1-3/+3
Guenther
2008-10-14Sync with Samba 3.Jelmer Vernooij1-1/+1
2008-10-03Merge commit 'master/master'Andrew Tridgell1-40/+40
2008-10-02fixed the sense of ldb base dn comparisons in two places, and use aAndrew Tridgell1-1/+1
direct comparison instead of a sub-tree comparison in another this fixes basedn searches on the global catalog port
2008-10-02we need to listen on all interfaces in the CLDAP server as the windowsAndrew Tridgell1-8/+9
CDLAP client ignores replies from the wrong IP
2008-10-02The IRIX compiler does not like embedded unnamed unionsVolker Lendecke1-40/+40
2008-09-29LDB ASYNC: misc changesSimo Sorce1-12/+9
2008-09-24Rename smbd -> samba.Jelmer Vernooij1-1/+1
This reverts commit 05ea5e23cf4e70de0bd658b1c5c0ead133967091. Conflicts: source4/smbd/server.c
2008-09-23Merge ldb_search() and ldb_search_exp_fmt() into a simgle function.Simo Sorce1-24/+20
The previous ldb_search() interface made it way too easy to leak results, and being able to use a printf-like expression turns to be really useful.
2008-08-22fixed the DomainDNS searches in the netlogon codeAndrew Tridgell1-2/+2
(This used to be commit 7dce38f9897df02073132f18b1021e0d0636590c)
2008-08-21Validate input in the CLDAP and DGRAM 'netlogon' responder.Andrew Bartlett1-7/+37
(This used to be commit 682ca3cae1d5e796bc58142f79c99d43742ac85c)
2008-08-20Add extra bits to our 'netlogon' response in CLDAP and NBT.Matthias Dieter Wallnöfer1-1/+7
I've studied now the netlogon attribute from the CLDAP request and have compared them with the table presented in the WSPP docs (http://msdn.microsoft.com/en-us/library/cc201036.aspx). The first two bytes seem to be correct, but that the third and fourth one is completely clear with SAMBA 4. Signed-off-by: Andrew Bartlett <abartlet@samba.org> (This used to be commit 3024a43c25e3ec9821d94a27d5cf738890b1b8f3)
2008-06-30Rework samdb handling for 'netlogon' packets.Andrew Bartlett1-1/+1
Don't reopen the samdb for every netlogon packet, and use the system_session(), as we must access data not available to anonymous. Perhaps we should consider a 'authenticated but not system' token, if we want more control on this. Andrew Bartlett (This used to be commit d10c9b71ea7f2670c4ea5ec569bcb7f49ec41362)
2008-05-21Fix creation of sockaddr in netlogon datagram generator.Andrew Bartlett1-1/+1
The previous code sent uninitialised data, and was the wrong length. Andrew Bartlett (This used to be commit 8e070293cfd522b7464be5bc4d8045572d6d996c)
2008-05-21Extend the 'netlogon' CLDAP and NBT implementation.Andrew Bartlett1-10/+50
This now handles checking if the user exists, including validating the ACB mask on the user. This would be a nasty security hole, if Kerberos did not already expose this information anonymously... Andrew Bartlett (This used to be commit 441b286c00f9a7743cdefeb243545bdbd2c94c5e)