summaryrefslogtreecommitdiff
path: root/source4/librpc/idl
AgeCommit message (Collapse)AuthorFilesLines
2008-09-09drsblobs.idl: add parser for ExtendedErrorInfo see [MS-EERR]: ExtendedError ↵Stefan Metzmacher1-4/+72
Remote Data Structure metze (This used to be commit 3edbbb12bda8e19a9f5a72849bc79e0fad7976f8)
2008-09-08More work towards trusted domains support in Samba4's LSAAndrew Bartlett1-3/+3
Make 'lsar_CreateTrustedDomain' consistant with lsar_CreateTrustedDomainEx{,2} by renaming handle -> policy_handle Implement LSA server logic to create the cn=users trust account for incoming trusts. Andrew Bartlett (This used to be commit d87b655e20b7c38756774cec2e5898af38c46786)
2008-09-04More work to implement LSA CreateTrustedDomainEx2Andrew Bartlett2-8/+26
We still don't get the format inside the encrypted blob correct however. Andrew Bartlett (This used to be commit 99a3abda09716c064b3e9a37c4a79a8f62444eca)
2008-09-03Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-abartletAndrew Bartlett2-1/+18
(This used to be commit 9590805bcbdd1924eda5a69978ffac7ec7603451)
2008-09-03Implement NETLOGON PAC verfication on the server-sideAndrew Bartlett2-1/+18
This is implemented by means of a message to the KDC, to avoid having to link most of the KDC into netlogon. Andrew Bartlett (This used to be commit 82fcd7941f5c54da2d994c8bd99dd8d86299a296)
2008-09-02Share IDL between the LSA and drsblob representations of trustsAndrew Bartlett2-41/+51
(This used to be commit e5520706c88911c66b3ce5817e371900212ca083)
2008-08-29It turns out that the Netlogon PAC verification is encrypted.Andrew Bartlett2-2/+9
This test now passes against Win2k3, and a implementation in the Samba4 server should follow shortly. Andrew Bartlett (This used to be commit c6b8ba893dd3ed90bca32c0ae89fd33be729c238)
2008-08-28Further rework the RPC-PAC test.Andrew Bartlett1-1/+1
This would seem to match the documentation requirements for the PAC verfication over NETLOGON, but I can't get Win2k3 to accept it so far. Andrew Bartlett (This used to be commit acfa87f3411a61bdd9066fbbba2bcfbe2a60cbbe)
2008-08-27Add a test to explore Netlogon PAC validationAndrew Bartlett2-5/+27
However, I have still not figured out this protocol yet, and the docs are rather unclear... :-( Andrew Bartlett (This used to be commit d878643071a1477435a267e2944461d367cdfa79)
2008-08-26Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into pac-verifyAndrew Bartlett7-68/+131
(This used to be commit b706708210a05d6f10474a3cd2bbc550704d4356)
2008-08-26Update RPC-LSA to (almost) pass against Windows 2008.Andrew Bartlett2-27/+92
(This used to be commit a17cb558c23142e522de3ed56d65c7694477395f)
2008-08-25Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-localAndrew Bartlett3-14/+24
(This used to be commit a555334db67527b57bc6172e3d08f65caf1e6760)
2008-08-22Merge commit 'origin/v4-0-test' into v4-0-testAndrew Tridgell1-6/+6
(This used to be commit 93cf0b3c7e6d8a4758c44519de51e51be89f76c7)
2008-08-22Merge branch 'abartlet-4-0-local' into v4-0-testAndrew Tridgell1-1/+7
(This used to be commit 469fac2669991b130dec219e1a109a8b2ce224be)
2008-08-21drsuapi.idl: use hand written push functions for the compressed blobsStefan Metzmacher1-6/+6
This isn't really the final solution, as we compress the data twice, but it works. metze (This used to be commit 6da1d41173a7b82412fcebdd751eade51cf82b2a)
2008-08-20krb5pac.idl: make use of subcontext(0xFFFFFC01) to handle the type ↵Stefan Metzmacher1-5/+1
Serialization header Now we should be able to handle bigendian PAC_LOGON_INFO buffers. metze (This used to be commit adbff0b0f92aa0742a8293071776b388879cbd8e)
2008-08-20drsuapi.idl: readd type serialization headers to compressed DsGetNCChangesCtr*Stefan Metzmacher1-4/+12
metze (This used to be commit 4e6937816f1563686d04da4ab00a46d4461401b9)
2008-08-20Add extra bits to our 'netlogon' response in CLDAP and NBT.Matthias Dieter Wallnöfer1-1/+7
I've studied now the netlogon attribute from the CLDAP request and have compared them with the table presented in the WSPP docs (http://msdn.microsoft.com/en-us/library/cc201036.aspx). The first two bytes seem to be correct, but that the third and fourth one is completely clear with SAMBA 4. Signed-off-by: Andrew Bartlett <abartlet@samba.org> (This used to be commit 3024a43c25e3ec9821d94a27d5cf738890b1b8f3)
2008-08-15Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-localAndrew Bartlett1-1/+5
(This used to be commit b337369d5c86b37d93ee1c62880068e14d6c09f6)
2008-08-14cope with arbitrary unknown pac buffer types, so when MS adds Andrew Tridgell1-1/+5
a new one we don't break our server (This used to be commit 5e08b285319e35afd3a9a6e6f5f59145350f2d80)
2008-08-13Rework the trustAuthInOutBlob with the help of a hand parser.Andrew Bartlett1-25/+8
This produces a C structure that is sane, while still parsing the wire blobs (as far as I can tell). Andrew Bartlett (This used to be commit b5dbe815e5dd3f865c7735bc76e02017a869f09b)
2008-08-12Add GenericInfo level for SamLogon calls from the WSPP IDL.Andrew Bartlett1-14/+33
Andrew Bartlett (This used to be commit ea58b650a81b48b0477edbcda1e4e26a3b2a9b9e)
2008-08-11dcerpc.idl: remove used DCERPC_MAX_SIGN_SIZEStefan Metzmacher1-1/+0
metze (This used to be commit 54b873e49ff363609632fa2862208bf6b4c1b6ed)
2008-08-11dcerpc.idl: add DCERPC_AUTH_TRAILER_LENGTHStefan Metzmacher1-0/+2
metze (This used to be commit ce36448d74b0c6cdf8928e10c088bf0248a95cf7)
2008-08-07drsuapi.idl: directly use mszip in level 2Stefan Metzmacher1-7/+1
This fixes the push because the switch_level doesn't work otherwise because the pointer is the same as for the outer switch_level. metze (This used to be commit a4c81ee68c91b2d7a9abe668e8b23246c5c9b00d)
2008-07-31Update to a working trustAuthIncoming and trustAuthOutgoing parser.Andrew Bartlett1-4/+25
This is based on the docs, as well as testing against a domain trust in windows. Clearly it needs to be more general - perhaps a non IDL parser? Andrew Bartlett (This used to be commit 816bb64a56a75d1eb5e879b4abf211af27243686)
2008-07-31Update trustAuthInOutBlob in line with MS-ADTS 7.1.6.8.1Andrew Bartlett1-39/+51
(This used to be commit 26c2a34dec26890230dfa86827804d8160061ce5)
2008-07-26dcerpc.idl: add DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN flagStefan Metzmacher1-0/+1
metze (This used to be commit 131a1cfdc9a1228d9263c77bcd31b05d2946fd50)
2008-07-24drsblobs.idl: unify the Primary:Kerberos and Primary:Kerberos-Newer-Keys structsStefan Metzmacher1-29/+18
metze (This used to be commit 4b79a7678571ac2f7d5f827913fdcb419f5d2e20)
2008-07-24drsblobs.idl: give some unknowns a meaningStefan Metzmacher1-9/+11
metze (This used to be commit 231e6f5ab2dc8a3e991a9872be252cffff6f14c6)
2008-07-23drsblobs.idl: add idl for Primary:Kerberos-Newer-Keys blob in ↵Stefan Metzmacher1-0/+37
supplementalCredentials metze (This used to be commit 97b7901afbccc9647ad2958d4cf12300de2655d1)
2008-07-23drsblobs.idl: fix unknowns in package_PrimaryKerberos idlStefan Metzmacher1-6/+8
metze (This used to be commit da9ceb2bf17f964334d9317829d40483e2c04b10)
2008-07-23drsblobs.idl: fix idl for supplementalCredentialsSubBlobStefan Metzmacher1-3/+8
metze (This used to be commit 24c5b10136f6e640832193aaf9e6d7e865c288bc)
2008-07-23drsblobs.idl: rename unknown1 -> reservedStefan Metzmacher1-1/+1
metze (This used to be commit 9a70b2237d4fdd523edfbca0329ad35e71faf998)
2008-07-22drsuapi.idl: change the u1 field in DsBindInfo* to "pid".Michael Adam1-4/+4
According to the WSPP docs, section 5.35, this is the "process identifyer" of the client. It is meant for informational and debugging purposes only and its assignment is implementation specific. Michael (This used to be commit 579306eb5b58b6c1142b3c489e4bcf6da50810d6)
2008-07-22drsuapi.idl: add drsuapi_SupportedExtensionsExt bitfield.Michael Adam1-1/+6
This knowledge is obtained from the wspp-docs (section 5.35). Michael (This used to be commit f5afb695045b1a2f3b8c00a4d82d40e8e50726c9)
2008-07-22drsuapi.idl: the last 16 bytes in DsBindInfo48 ar the GUID of the config dn.Michael Adam1-1/+2
This bit seems not to be documented in the WSPP docs. Michael (This used to be commit 705f79bd0a5e93daa0cb11b5dcca36e75c75df93)
2008-07-22drsuapi.idl: add drsuapi_DsBindInfo48.Michael Adam1-0/+10
This is necessary to make DsGetNcChanges work with win2008. Michael (This used to be commit dd278b069b8683a0e3721ebb7d0de06d2bc1c86f)
2008-07-21Rename structures to better match the names in the WSPP IDL.Andrew Bartlett2-10/+10
The 'comment' element in a number of domain structures is called oem_information. This was picked up actually because with OpenLDAP doing the schema checking, it noticed that 'comment' was not a valid attribute. The rename tries to keep this consistant in both the LDB mappings and IDL, so we don't make the same mistake in future. This has no real schema impact, as this value isn't actually used for anything, as 'comment' was not used in the provision. Andrew Bartlett (This used to be commit 65dc0d536590d055a5ee775606ac90ee5fcaee9a)
2008-07-16drsuapi.idl: fix unknowns in drsuapi_DsGetNCChangesCtr*Stefan Metzmacher1-7/+27
metze (This used to be commit 9e99e59ca7e56bf74417ec85339e09e86f50d17e)
2008-07-16drsuapi.idl: fix unknowns in drsuapi_DsReplicaObject*Stefan Metzmacher1-2/+8
metze (This used to be commit de2aed042d09ae7a31ddc4cd920c8fcf193ba06a)
2008-07-16drsuapi.idl: fix unknowns in drsuapi_DsReplicaCursor[2]Stefan Metzmacher1-6/+6
metze (This used to be commit a681e55067a83f06e465b81afb2b0b870b674dca)
2008-07-16drsuapi.idl: correctly handle xpress compressed payloadStefan Metzmacher1-4/+4
metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit d9d19eef4f67da89e7d818d23a2372bee6f86dba)
2008-07-09(Hopefully) fix the build by re-adding security.NTACLJeremy Allison1-0/+2
const char. The deletion earlier was a typo. Jeremy. (This used to be commit aa27344b96929c925b30965a1cd20e69c3dbd515)
2008-07-09Add in a version2 of the NT security descriptor storeJeremy Allison1-3/+13
that can store a timestamp along with the SD. Allows us to check for validity against the POSIX st_ctime. Keeps the IDL consistent with Samba3.3 IDL. Jeremy. (This used to be commit 29843a6b339a581de714924219632390b156aa4f)
2008-07-03dcerpc.idl: the signing overhead can be more than 32 bytesStefan Metzmacher1-1/+1
Windows seems to use 64 here, so we do now. Before we got nca_proto_error fault because we send fragments larger than the negotiated max frag size. If the max frag size is 5840, we're sending 5837 bytes when the auth_len is 45 and that matches w2k3 traffic. metze (This used to be commit 351947dba3f7a26ac871d4aa7b6bba4cd472383a)
2008-06-30drsuapi.idl: remove some unknows from DsGetNCChanges()Stefan Metzmacher1-6/+24
metze (This used to be commit 924ef407bd20331cc94f5aeb58f53a5838ae00a4)
2008-06-03opendb: add write time handlingStefan Metzmacher1-0/+2
metze (This used to be commit 3868d8ce630c71e2c70aae442fcdbd68ba1eb708)
2008-05-29Add in an enum for two future NTP signing ops.Andrew Bartlett1-2/+3
I hope to extend this code to handle NTP clients getting authenticated time too. Andrew Bartlett (This used to be commit 1854ab058b42ce4530324cb8f40eb64e6e32267b)
2008-05-29Final fixes to for a functional NTP signing deamon.Andrew Bartlett1-3/+10
Andrew Bartlett (This used to be commit 4dcc0cd06ef2f6c496e2112f6378088a1c27d2f2)