summaryrefslogtreecommitdiff
path: root/source4/include
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r7690: Move the NT hash generation into the credentials system, rather thanAndrew Bartlett1-0/+2
in all the callers. This also allows us to be more flexible in the type of password we store. Andrew Bartlett (This used to be commit 00b8588c68526e1d86fda0bd81c0b86f690b62c3)
2007-10-10r7688: Fix the internal heimdal build - push one #define back toAndrew Bartlett1-1/+0
heimdal_build/config.h Andrew Bartlett (This used to be commit 337cb20ac45c95b8a6d0c90dfef4bdac591ba39a)
2007-10-10r7683: The other file from the last commit. And it's ↵Andrew Bartlett1-1/+107
include/system/kerberos.h that I'm putting the #defines in... Andrew Bartlett (This used to be commit 31f7ec38e63fc86ad7c756de47414152d2809c8f)
2007-10-10r7681: This #define is unused.Andrew Bartlett1-1/+0
Andrew Bartlett (This used to be commit 2a22f413c9704dbfc3befb819d4183523f75d393)
2007-10-10r7668: - setup HAVE_ILDAP to enable the ildap backend in ldbAndrew Tridgell1-0/+3
- fixed a bug in socket_connect_ev() (This used to be commit 3f77b879a035929a843e02b798d54eba6625bde7)
2007-10-10r7643: This patch adds a new NTPTR subsystem:Stefan Metzmacher1-0/+35
- this is an abstraction layer for print services, like out NTVFS subsystem for file services - all protocol specific details are still in rpc_server/spoolss/ - like the stupid in and out Buffer handling - checking of the r->in.server_name - ... - this subsystem can have multiple implementation selected by the "ntptr providor" global-section parameter - I currently added a "simple_ldb" backend, that stores Printers, Forms, Ports, Monitors, ... in the spoolss.db, and does no real printing this backend is basicly for testing, how the spoolss protocol works - the interface is just a prototype and will be changed a bit the next days or weeks, till the simple_ldb backend can handle all calls that are used by normal w2k3/xp clients - I'll also make the api async, as the ntvfs api this will make things like the RemoteFindFirstPrinterChangeNotifyEx(), that opens a connection back to the client, easier to implement, as we should not block the whole smbd for that - the idea is to later implement a "unix" backend that works like the current samba3 code - and maybe some embedded print server vendors can write there own backend that can directly talk to a printer without having cups or something like this - the default settings are (it currently makes no sense to change them :-): ntptr providor = simple_ldb spoolss database = $private_dir/spoolss.db metze (This used to be commit 455b5536d41bc31ebef8290812f45d4a38afa8e9)
2007-10-10r7626: a new ldap client library. Main features are:Andrew Tridgell2-0/+8
- hooked into events system, so requests can be truly async and won't interfere with other processing happening at the same time - uses NTSTATUS codes for errors (previously errors were mostly ignored). In a similar fashion to the DOS error handling, I have reserved a range of the NTSTATUS code 32 bit space for LDAP error codes, so a function can return a LDAP error code in a NTSTATUS - much cleaner packet handling (This used to be commit 2e3c660b2fc20e046d82bf1cc296422b6e7dfad0)
2007-10-10r7596: next step in ldap cleanup. I'm aiming to get rid of the cut&pastedAndrew Tridgell1-0/+4
ldif parsing code in libcli/ldap/ldap_ldif.c, and instead use the ldb ldif code. To do that I have changed the ldap code to use 'struct ldb_message_element' instead of 'struct ldap_attribute'. They are essentially the same structure anyway, so by making them really the same it will be much easier to use the ldb code in libcli/ldap/ I have also made 'struct ldb_val' the same as a DATA_BLOB, which will simplify data handling in quite a few places (I haven't yet removed all the code that maps between these two, that will come later) (This used to be commit 87fc3073392236221a3a6b933284e9e477c24ae5)
2007-10-10r7527: - added a ldb_search_bytree() interface, which takes a ldb_parse_treeAndrew Tridgell1-0/+1
instead of a search expression. This allows our ldap server to pass its ASN.1 parsed search expressions straight to ldb, instead of going via strings. - updated all the ldb modules code to handle the new interface - got rid of the separate ldb_parse.h now that the ldb_parse structures are exposed externally - moved to C99 structure initialisation in ldb - switched ldap server to using ldb_search_bytree() (This used to be commit 96620ab2ee5d440bbbc51c1bc0cad9977770f897)
2007-10-10r7525: Unify lp_load(), load_interfaces and logging setup into popt().Andrew Bartlett1-1/+1
There is now a new --debug-stderr option to enable debug to STDERR. popt isn't perfect, but the callbacks are used in all the main Samba binaries, and should be used in the rest. This avoids duplicated code, and ensures every binary is setup correctly. This also ensures the setup happens early enough to have -s function, and have a correct impact on the credentials code. (Fixing a bug that frustrated tridge earlier today). The only 'subtle' aspect of all this is that I'm pretty sure that the SAMBA_COMMON popt code must be above the CREDENTIALS code, in the popt tables. Andrew Bartlett (This used to be commit 50f3c2b3a22971f40e0d3a88127b5120bfc47591)
2007-10-10r7490: Rename functions and prefices s/rpc_composite/libnet_rpc/Rafal Szczesniak1-4/+4
This makes more clear where the functions belong to. Also the rule will be that lowercased function names are not part of "official" libnet API (though it doesn't mean one absolutely cannot use them). rafal (This used to be commit f6ef7b882acc6ee07422944a417a8d9013c9d8d2)
2007-10-10r7379: Simplify CreateUser function and io structure. Also, implementingRafal Szczesniak1-1/+1
it based on composite functions. Moving to fully async CreateUser on the way... rafal (This used to be commit 240409bc3cfa1426db15fc0537fcf0841f51ede0)
2007-10-10r7352: the internal heimdal build change. This changes quite a few things:Andrew Tridgell2-113/+8
- if you want kerberos now, you need to unpack a lorikeet heimdal tree in source/heimdal/. If source/heimdal/ does not exist at configure time then all kerberos features are disabled. You cannot use an external kerberos library for now. That may change later. - moved lib/replace/ config stuff to lib/replace/ and create a lib/replace/replace.h. That allows the heimdal build to use our portability layer, and prevenets duplicate definitions of functions like strlcat() - if you do enable heimdal, then you will need to do 'make HEIMDAL_EXTERNAL' before you build Samba. That should be fixed once I explain the problem to jelmer (the problem is the inability to set a depend without also dragging in the object list of the dependency. We need this for building the heimdal asn1 compiler and et compiler. - disabled all of the m4 checks for external kerberos libraries. I left them in place in auth/kerberos/, but disabled it in configure.in some of the heimdal_build/ code is still very rough, for example I don't correctly detect the correct awk, flex, bison replacements for heimdal_build/build_external.sh. I expect to fix that stuff up over the next few days. (This used to be commit d4648249b2c7fc8b5e7c0fc8d8f92ae043b5691f)
2007-10-10r7328: fix GetPrinterData and SetPrinterData, with zero length subcontextsStefan Metzmacher1-0/+2
metze (This used to be commit 73d597bacf83492ed3da2307dd6785548b903b39)
2007-10-10r7294: implemented the irpc messaging system. This is the core of theAndrew Tridgell1-0/+1
management system I proposed on samba-technical a couple of days ago. Essentially it is a very lightweight way for any code in Samba to make IDL based rpc calls to anywhere else in the code, without the client or server having to go to the trouble of setting up a full rpc service. It can be used with any of our existing IDL, but I expect it will mostly be used for a new set of Samba specific management calls. The LOCAL-IRPC torture test demonstrates how it can be used by calling the echo_AddOne() call over this transport. (This used to be commit 3d589a09954eb8b318f567e1150b0c27412fb942)
2007-10-10r7276: - moved static tdb function ltdb_dn_fold() into common/ so that it can beDerrell Lipman1-1/+1
called from multiple backends. (ldb_sqlite3 needs it too.) Added parameter for a callback function that determines whether an attribute needs case folding. - begin to prepare for sqlite3 in build process - work-in-progress updates, on ldb_sqlite3 (This used to be commit a80bced0b96ffb655559a43cf7f4d7a34deb5a7d)
2007-10-10r7253: Fix build.Tim Potter1-1/+1
(This used to be commit 54ff16b9a198237999cedd973cced70a62f03418)
2007-10-10r7251: Initial work on composite domain open call.Rafal Szczesniak1-1/+2
rafal (This used to be commit be3b283b20af0b17d8c9711f362b63b881ffbc1c)
2007-10-10r7248: Remove enum that is causing trouble on AIXJelmer Vernooij1-11/+9
(This used to be commit 512536c9165eb4a630c8bf4e43e71def26006047)
2007-10-10r7221: Add the start of a KDC service (to be built on a 'libkdc' from a to beAndrew Bartlett1-0/+2
included Heimdal) to Samba4. Andrew Bartlett (This used to be commit 51ba3ea60c265b837821b6c3e031dfe229c10d6a)
2007-10-10r7183: add some forward declarations ...Stefan Metzmacher1-0/+7
metze (This used to be commit e9f30ad69800a9858676c467f7f12aceff693358)
2007-10-10r7002: added support for getting at loadparm config parameters via lpGet() ↵Andrew Tridgell1-0/+1
in esp scripts lpGet takes 4 forms v = lpGet("type:parm"); gets a parametric variable v = lpGet("share", "type:parm"); gets a parametric variable on a share v = lpGet("parm"); gets a global variable v = lpGet("share", "parm"); gets a share variable in all cases a ejs object of the appropriate type for the variable is returned. This commit also adds the function typeof() which returns the type of an object (This used to be commit 5537a0d38d4805cbc2dad0d6f76db15173b1fd60)
2007-10-10r6982: install the swat pages with 'make installswat'Andrew Tridgell1-0/+1
(This used to be commit 31543e1eae03d22343ea8c970494af36eb07b41f)
2007-10-10r6981: first version of the builtin web server for Samba4Andrew Tridgell1-0/+1
This includes an embedded server side scripting system called 'esp' (see http://www.appwebserver.org/products/esp/esp.html) and javascript based scripting language called 'esj' (see http://www.appwebserver.org/products/ejs/ejs.html) The justification for including this scripting language is that it should make it much easier to write a high quality web interface for Samba4. The scripting language can call into any Samba4 library code (so for example it will be able to make ldb and loadparm calls), plus it provides easy support for forms, cookies, sessions etc. There is still quite a bit more work to do on the web server, but there is enough here now for people to look at and comment. I will be committing some sample web pages that test esp functionality shortly. (This used to be commit 26f0ba92c0c565ac9e4cb5a079d795d4262497dd)
2007-10-10r6963: Further definitions for share manipulation code. Untested.Rafal Szczesniak1-1/+3
Original patch provided by Gregory Leocadie <gleocadie@idealx.com> rafal (This used to be commit eb83a8210a939a0512f505a283148898ba6eceb1)
2007-10-10r6879: Another attempt at including the 'right' kerberos headers onAndrew Bartlett1-9/+12
dual-install systems. Andrew Bartlett (This used to be commit efc24f1a4592270634dca253689c1b54e154d8b8)
2007-10-10r6811: Another attempt at better kerberos/gssapi headers.Andrew Bartlett1-5/+7
Andrew Bartlett (This used to be commit f4b7484516b956baabb3eba3f233da29fc101100)
2007-10-10r6806: Try again to fix the build on various kerberos libs.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 5749b63f171acb99c63bfe24312050b316644082)
2007-10-10r6803: Try to bring in the correct GSSAPI headers for the krb5 mech. ThisAndrew Bartlett1-1/+5
should allow us to ditch the local static storage for OIDs, as well as fix the build on non-heimdal platforms. Andrew Bartlett (This used to be commit a7e2ecfac9aaacd673e3583b62139e4f4e114429)
2007-10-10r6800: A big GENSEC update:Andrew Bartlett1-0/+1
Finally remove the distinction between 'krb5' and 'ms_krb5'. We now don't do kerberos stuff twice on failure. The solution to this is slightly more general than perhaps was really required (as this is a special case), but it works, and I'm happy with the cleanup I achived in the process. All modules have been updated to supply a NULL-terminated list of OIDs. In that process, SPNEGO code has been generalised, as I realised that two of the functions should have been identical in behaviour. Over in the actual modules, I have worked to remove the 'kinit' code from gensec_krb5, and placed it in kerberos/kerberos_util.c. The GSSAPI module has been extended to use this, so no longer requires a manual kinit at the command line. It will soon loose the requirement for a on-disk keytab too. The general kerberos code has also been updated to move from error_message() to our routine which gets the Heimdal error string (which may be much more useful) when available. Andrew Bartlett (This used to be commit 0101728d8e2ed9419eb31fe95047944a718ba135)
2007-10-10r6752: Patch by Steven Edwards to improve portability to mingw32Jelmer Vernooij4-1/+19
(This used to be commit 8d63cd33a223cccb21d808747e9c97da53629fbc)
2007-10-10r6747: first working version of cldapd server. It is missing 'sites' ↵Andrew Tridgell1-0/+1
support, and filling in some of the returned parameters is quite rough, but it seems to work OK (This used to be commit e564e3e596915414fad07c94f7ea8a0d9c3a1140)
2007-10-10r6725: the beginnings of a cldap serverAndrew Tridgell1-0/+2
(This used to be commit e51e0dffa8f8bff9bd1535751e805b548b6c6d7f)
2007-10-10r6615: As usual, I forgot to commit new structure in this file...Rafal Szczesniak1-0/+1
rafal (This used to be commit 3389cfb1354532aad4245b281a5637b58802a276)
2007-10-10r6573: Start on my project to implement an NT4 compatible BDC in Samba4.Andrew Bartlett1-0/+3
This brings in a compatability layer for Samba3 in Samba4 - where we will start to define file formats and similar details. The 'net samdump' command uses 'password server = ' for now, and performs a similar task to Samba3's 'net rpc samsync'. Andrew Bartlett (This used to be commit 550f17f9924fe783917318753de7d1a388423908)
2007-10-10r6565: Cludge, cludge, cludge...Andrew Bartlett3-2/+2
We need to pass the 'secure channel type' to the NETLOGON layer, which must match the account type. (Yes, jelmer objects to this inclusion of the kitchen sink ;-) Andrew Bartlett (This used to be commit 8ee208a926d2b15fdc42753b1f9ee586564c6248)
2007-10-10r6467: keep the compiler quiet with another entry in structs.hAndrew Bartlett1-0/+2
Andrew Bartlett (This used to be commit 106047032fe269f02c8ef71937e9d2e4ae0a4eb7)
2007-10-10r6462: Move the arcfour sbox state into it's own structure, and allocate itAndrew Bartlett1-0/+2
with talloc() for the NTLMSSP system. Andrew Bartlett (This used to be commit 7a93ac49c28d433ccf0f077294f473fe728b9995)
2007-10-10r6414: Added composite user del function. Slightly broken still, but I don'tRafal Szczesniak1-0/+1
want it to hang around not commited. rafal (This used to be commit 98d98b9bc7437e744e1e730fa8005b43fb1b672b)
2007-10-10r6382: New structure for useradd call.Rafal Szczesniak1-0/+1
rafal (This used to be commit 3752122550dcdd1d954c602a28f4b6ad26fe3a0e)
2007-10-10r6352: Two new composite calls:Alexander Bokovoy1-0/+2
- qfsinfo (query file system information) - appendacl (append an ACL to existing file's security descriptor and get new full ACL) The second one also includes an improvement to security descriptor handling which allows to copy security descriptor. Written by Peter Novodvorsky <peter.novodvorsky@ru.ibm.com> Both functions have corresponding torture tests added. Tested under valgrind and work against Samba 4 and Windows XP. ToDo: document composite call creation process in prog_guide.txt (This used to be commit 441cff62ac75ed16851ce7b8daf9d03eb4c3ec79)
2007-10-10r6342: fixed a bad union assumption that caused ACLs to fail on 64 bit machinesAndrew Tridgell1-4/+2
Thanks to lars and agruen for finding this (This used to be commit 2acc06918574b1178eecf3d61026f84f85bb40e1)
2007-10-10r6271: Don't zero the cli_credentials structure - instead allow valgrind toAndrew Bartlett1-1/+2
track the use of un-initialised values. This change will require a recompile from clean, as the enum describing the status of each element now has a default of CRED_UNINITIALISED. Andrew Bartlett (This used to be commit 83c2eb806d43f588bd06336aa7e2dbdc00dc2c67)
2007-10-10r6247: added the server side code for receiving mailslot requests, andAndrew Tridgell1-0/+2
parsing incoming netlogon requests. No replies are sent yet. (This used to be commit 3b34df6a674cd2aeddc354cdadae3f0e1c000d45)
2007-10-10r6185: added LIBCLI_DGRAM to the list of libs to be built as part of LIBCLIAndrew Tridgell1-0/+2
(This used to be commit 47e1452da08d06b0b9f15545b3b2b0631f15bac2)
2007-10-10r6179: - add new spoolss tests for all spoolss_Enum*() calls which didn't needStefan Metzmacher1-0/+2
a handle as parameter, EnumPorts EnumPrinterDrivers EnumMonitors EnumPrintProcessors EnumPrinters we now do cross checks between the different info levels and sore the results in a global context, so that we later can add cross checks between the different object types - add idl for EnumMonitors and EnumPrintProcessors metze (This used to be commit 92a3721bc7a28d521090b10eb3b1eed089036432)
2007-10-10r6140: - Add configure option for enabling the socket-wrapper library, so itJelmer Vernooij1-1/+1
can be enabled on the buildfarm without requiring --enable-developer - Support tcp and udp being used on the same port - FIx some portability issues (should fix the build on some hosts on the buildfarm) - Ignore setting TCP_NODELAY on (semi-)TCP sockets rather then complain about it not being supported (saves us from a couple of error messages for each connection that is opened) (This used to be commit 443fb7853b8d3cb516c442fdc595038544b75738)
2007-10-10r6139: Move socket_wrapper to a seperate directoryJelmer Vernooij1-1/+1
(This used to be commit a2ef9225f15e369af7b884262b997ab321fd24d6)
2007-10-10r6134: add a new type dom_sid28 which is a 28 byte fixed buffer with a ↵Stefan Metzmacher1-0/+3
dom_sid in it metze (This used to be commit 460d1b089e494efaeb0c8c7fd4601a9ef57123c5)
2007-10-10r6088: Add the socket_wrapper library. This is a very simple library thatJelmer Vernooij1-0/+4
redirects traffic (currently just IP traffic) over unix domain sockets if the SOCKET_WRAPPER_DIR environment variable has been set. Aim is to use this for the Samba4 torture suite on the buildfarm. The socket_wrapper library can only be used if Samba was compiled with --enable-developer. test_rpc.sh passes against a local smbd with SOCKET_WRAPPER_DIR set. (and ethereal showed no traffic whatsoever) Stuff that still needs to be fixed in socketwrapper: - Give ENETUNREACH if target is not localhost - A given port number can only be used for UDP /or/ TCP, not both. - Perhaps allow some calls to circumvent socketwrapper (do we need DNS?) (This used to be commit f8a63a843ccca092d9756b64e09175d37c08550a)