summaryrefslogtreecommitdiff
path: root/source4/librpc/rpc
AgeCommit message (Collapse)AuthorFilesLines
2013-08-05s4:librpc: fix netlogon connections against servers without AES supportStefan Metzmacher1-2/+6
LogonGetCapabilities() only works on the credential chain if the server supports AES, so we need to work on a temporary copy until we know the server replied a valid return authenticator. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2013-08-05libcli/auth: also set secure channel type in netlogon_creds_client_init().Günther Deschner1-0/+1
Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2013-07-17Fix bug 10025 - Lack of Sanity Checking in calls to malloc()/calloc().Bill Parker1-0/+3
In reviewing various files in Samba-4.0.7, I found a number of instances where malloc()/calloc() were called without the checking the return value for a value of NULL, which would indicate failure. (NB. The changes needed to ccan, iniparser, popt and heimdal will be reported upstream, not patched inside Samba). Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Simo Source <idra@samba.org>
2012-12-21s4-librpc: Remove dead code in smb_send_request().Andreas Schneider1-4/+0
If trigger_read we return earlier. Found by Coverity. Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
2012-11-01s4-librpc: set error code to LOGON_FAILURE on RPC fault with access deniedAndrew Tridgell1-2/+7
this allows the client code to trigger a retry with a new password callback for NTLM connections Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2012-11-01s4-librpc: try a 2nd logon for more error casesAndrew Tridgell1-3/+10
not all servers give LOGON_FAILURE on authentication failures, so we need to do the retry with a new ticket on a wider range of error types Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2012-11-01s4-librpc: use cli_credentials_failed_kerberos_login to cope with stale ticketsAndrew Tridgell1-1/+15
This allows our RPC client code to cope with a kerberos server changing password while we have a valid service ticket Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2012-08-25s4:librpc/rpc: don't do async requests if gensec doesn't support async ↵Stefan Metzmacher1-0/+32
replies (bug #9097) metze
2012-08-25s4:librpc/rpc: also call dcerpc_schedule_io_trigger() after bind and ↵Stefan Metzmacher1-0/+7
alter_context responses metze
2012-08-25s4:librpc/rpc: use dcerpc_req_dequeue() in dcerpc_request_recv_data()Stefan Metzmacher1-1/+1
metze
2012-08-25s4:librpc/rpc: use talloc_zero for 'struct rpc_request'Stefan Metzmacher1-11/+1
metze
2012-08-17s4: Fix returns in py_check_dcerpc_typeVolker Lendecke1-2/+2
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2012-08-01s4:librpc/dcerpc_smb2: sync smb2_session_key() with smb_session_key()Stefan Metzmacher1-0/+2
metze
2012-08-01s4:librpc/dcerpc_smb: make use of smbXcli_session_application_key()Stefan Metzmacher1-4/+15
metze
2012-08-01s4:librpc/dcerpc_smb2: make use of smbXcli_session_application_key()Stefan Metzmacher1-1/+1
metze
2012-07-29s4-librpc: Fix private context for dcerpc_connect_timeout_handlerAndrew Bartlett1-4/+4
This was incorrect in 02a356ea775a3ba589cb50af3c861ab86aaffa0b. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sun Jul 29 14:54:33 CEST 2012 on sn-devel-104
2012-07-18s4-librpc: Ensure we do not call call the decrpc timeout handler during ↵Andrew Bartlett3-5/+39
gensec_update() This avoids a situation where we could destroy pointers on the stack due to a nested event loop. This is certainly not a final, generic solution, but it is a minimal change while we work to make gensec and gensec_gssapi async. Andrew Bartlett
2012-07-17s4-librpc: Add capabilities check for AES encrypted connections.Andreas Schneider1-1/+110
Signed-off-by: Günther Deschner <gd@samba.org>
2012-07-17s4:librpc/rpc: add DCERPC_SCHANNEL_AES supportStefan Metzmacher1-2/+15
metze Signed-off-by: Günther Deschner <gd@samba.org>
2012-07-17s4:librpc/rpc/dcerpc_schannel: just append NETLOGON_NEG_RODC_PASSTHROUGH as rodcStefan Metzmacher1-4/+5
The RODC stuff doesn't depend on the schannel algorithm. metze Signed-off-by: Günther Deschner <gd@samba.org>
2012-07-17s4:librpc/rpc/dcerpc_schannel: rework downgrade logicStefan Metzmacher1-5/+38
metze Signed-off-by: Günther Deschner <gd@samba.org>
2012-04-27s4:librpc: create a binding on the pipe if necessary in ↵Stefan Metzmacher1-0/+15
dcerpc_pipe_open_smb2_send() Pair-Programmed-With: Michael Adam <obnox@samba.org>
2012-04-23s4:librpc/rpc: directly return after composite_error()Stefan Metzmacher1-1/+1
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Mon Apr 23 12:17:08 CEST 2012 on sn-devel-104
2012-04-03s4:librpc/rpc: also parse ncacn_packet pdus with LIBNDR_FLAG_OBJECT_PRESENTStefan Metzmacher1-0/+4
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Tue Apr 3 23:06:31 CEST 2012 on sn-devel-104
2012-04-03s4:librpc/rpc: don't mix up paylod ndr flags with the dcerpc layerStefan Metzmacher1-1/+1
If the transfer syntax is NDR64, it's only for the payload not for the dcerpc pdus. metze
2012-03-20libndr: Rename ndr64_transfer_syntax and null_ndr_syntax_id so they have a ↵Jelmer Vernooij2-5/+4
ndr_ prefix. This makes the NDR namespace a bit clearer, in preparation of ABI checking.
2012-03-16Remove more unnecessary shebang lines in python files.Jelmer Vernooij1-2/+0
Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Fri Mar 16 02:48:52 CET 2012 on sn-devel-104
2012-03-15s4:librpc/rpc: avoid an unused talloc_reference() from dcerpc_request_send()Stefan Metzmacher1-4/+1
metze
2012-03-15s4:librpc/rpc: pass a mem_ctx to dcerpc_request_send()Stefan Metzmacher1-4/+7
metze
2012-03-15s4:librpc/rpc: use tevent_req_defer_callback() in dcerpc_alter_context_*Stefan Metzmacher1-0/+29
metze
2012-03-15s4:librpc/rpc: use tevent_req_defer_callback() in dcerpc_bind_*Stefan Metzmacher1-0/+29
metze
2012-03-15s4:librpc/rpc: convert dcerpc_alter_context_send/recv to tevent_reqStefan Metzmacher2-114/+161
Many thanks to Andrew Bartlett <abartlet@samba.org> for the debugging, which lead to the following line: talloc_steal(state, raw_packet->data); metze
2012-03-15s4:librpc/rpc: convert dcerpc_bind_send/recv to tevent_reqStefan Metzmacher2-111/+169
Many thanks to Andrew Bartlett <abartlet@samba.org> for the debugging, which lead to the following line: talloc_steal(state, raw_packet->data); metze
2012-03-15s4:librpc/rpc: also notify requests which are not shipped about a dead ↵Stefan Metzmacher1-0/+11
connection metze
2012-03-15s4:librpc/rpc: ship requests via an immediate eventStefan Metzmacher2-7/+56
Deep inside dcerpc_ship_next_request() some code path could trigger dcerpc_connection_dead(), which means it's not safe to do any processing after calling dcerpc_ship_next_request(). metze
2012-03-15s4:librpc/rpc: if the connecion is dead we're doneStefan Metzmacher1-0/+1
There's no point in doing anymore processing, it can just lead to crashes. metze
2012-03-15s4:librpc/rpc: if the connection is dead we don't want to be called recursivly.Stefan Metzmacher1-0/+2
metze
2012-03-09s4-librpc: Remove unused new_evAndrew Bartlett1-3/+0
Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri Mar 9 07:18:45 CET 2012 on sn-devel-104
2012-03-07s4:librpc/rpc: make dcerpc_bh_raw_call_* more robust against disconnects and ↵Stefan Metzmacher1-0/+15
timeouts Using tevent_req_defer_callback() should make the situation a bit better, until we have a common robust low level dcerpc library. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Mar 7 18:44:24 CET 2012 on sn-devel-104
2012-03-07s4:librpc/rpc: make dcerpc_bh_is_connected() more robustStefan Metzmacher1-0/+8
metze
2012-02-28s4:libcli:smb2: add a previous session argument to smb2_connect_send()Michael Adam1-0/+1
2012-02-27s4:librpc/dcerpc_smb2: make use of smb2cli_session_application_key()Stefan Metzmacher1-2/+13
metze
2012-01-04s4:pyrpc: add 'user_session_key' getter to the connection objectStefan Metzmacher1-0/+44
This gets the session key from gensec for usage in DRSUAPI. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Jan 4 22:31:52 CET 2012 on sn-devel-104
2011-12-22s4-librpc: Fix netlogon schannel client connect.Andreas Schneider1-0/+2
As a client we request as much flags as possible. The server checks which flags it supports and returns the same negotiation flags or less. So we need to store the negotiate flags from the server. We need them later if we have to call netr_LogonGetCapabilities.
2011-12-14s4-librpc: Fix NETLOGON credential chain with Windows 2008.Andreas Schneider1-9/+40
Windows Server 2008 returns NT_STATUS_DOWNGRADE_DETECTED if you call netrServerAuthenticate2 during a domain join without setting the strong keys flag (128bit crypto). Only for NT4 we need to do a downgrade to the returned negotiate flags. See also 0970369ca0cb9ae465cff40e5c75739824daf1d0.
2011-11-30s4:libcli/raw: implement on top of smbXcli_conn/reqStefan Metzmacher1-4/+6
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Nov 30 15:13:36 CET 2011 on sn-devel-104
2011-11-24s4:libcli/smb2: implement on top of smbXcli_conn/reqStefan Metzmacher1-2/+3
metze
2011-11-11s4-librpc: do not limit to the first IP when trying to do a rpc connectionMatthieu Patou1-7/+25
The function continue_ip_resolve_name was calling resolve_name_recv which returns only the first IP for a given hostname. Instead we use resolve_name_multiple_recv which returns all the IP for a given hostname. This kind of problem can occur if a host has more than 1 IP but is listenning only on 1.
2011-10-28s4:librpc/dcerpc_smb2: fix smb2_write_callback()Stefan Metzmacher1-5/+9
The should use smb2_write_recv() to get the result. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Oct 28 09:55:48 CEST 2011 on sn-devel-104
2011-10-28s4:librpc/dcerpc_smb: fix smb_write_callback()Stefan Metzmacher1-5/+10
The should use smb_raw_write_recv() to get the result. metze
generated by cgit (git 2.34.1) at 2024-11-03 09:05:18 +0000