summaryrefslogtreecommitdiff
path: root/source4/librpc
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r1742: Add the IDispatch interfaceJelmer Vernooij2-36/+108
(This used to be commit 798017bd10338a3a53aa5616a5eeb1146b24180f)
2007-10-10r1736: - Pidl updates:Jelmer Vernooij5-23/+83
- Support for "object oriented" interfaces in pidl - Support for inherited interfaces in pidl - Simplification of the support for properties on an interface - Start on dcom rpc torture tests (This used to be commit 45c3d0036b8510102816f9cdff9210098259cc5f)
2007-10-10r1711: Add ServerAlive2Jelmer Vernooij1-0/+6
(This used to be commit fe6f82f3d9146c1fc9efb3b47a9e63361b62be14)
2007-10-10r1708: fix jelmers bugs:-)Stefan Metzmacher1-0/+1
metze (This used to be commit ea076556602b81d33b4165f8a17bce1e127fb37f)
2007-10-10r1706: More IDL pipesJelmer Vernooij2-0/+32
(This used to be commit fbbb020ea6a7cd8e7192b67ef8b45dbbc8474399)
2007-10-10r1703: - Lots of RPC updates, adding new pipes and protocols.Jelmer Vernooij9-40/+795
- More updates/fixes to the ethereal parser generator (This used to be commit 547f860285b117e291bf3dbaca0707dc268b214e)
2007-10-10r1679: fix add the extrasids and resource group array inStefan Metzmacher1-5/+12
the EXTRA_SIDS idl isn't verified to be correct yet metze (This used to be commit 43fd611593af030a3d86d2640be6b1de959939c7)
2007-10-10r1677: security descriptors are always little-endian, regardless of DCE/RPCAndrew Tridgell1-1/+1
level byte order flags (This used to be commit a9c46aefaf4b53329eaf1a8e0446e74c4d1c750c)
2007-10-10r1675: netlogon deltas IDL update from Richard RenardAndrew Tridgell1-4/+5
(This used to be commit ae49221301215a6aa12666f2ea336a42120459c5)
2007-10-10r1673: using the new [relative] pidl handling, the PAC decode is now much closerAndrew Tridgell1-54/+17
(This used to be commit c33bf6f935025b5623f21cca50664ba70f886b49)
2007-10-10r1671: make [relative] pointers in idl much more generic, treating them justAndrew Tridgell1-3/+1
like normal pointers in most cases. This means we can now support relative pointers to unions, builtin types etc, whereas we could only previously support relative pointers to structures. metze needs this for the PAC decoding. (This used to be commit 0d063725e12f51375b7d0be55a19072a9a54e7e6)
2007-10-10r1657: fixed the string types of two strings in svcctl.Andrew Tridgell1-2/+2
we still need to fix the handling of subcontexts (This used to be commit 589c5e394ca1c7ef29f2a0f755a5f932ce60dde5)
2007-10-10r1654: rename cli_ -> smbcli_Stefan Metzmacher2-16/+16
rename CLI_ -> SMBCLI_ metze (This used to be commit 8441750fd9427dd6fe477f27e603821b4026f038)
2007-10-10r1648: the endpoints for the DRSUAPI pipe areStefan Metzmacher1-1/+1
lsass,protected_storage not drsuapi:-) metze (This used to be commit a60ce66a01ff7528778dfded43d2a6e893acc5e2)
2007-10-10r1645: added a debug when a RPC fault is receivedAndrew Tridgell1-0/+1
(This used to be commit cb1830909952dd0d0fed2090e820f1ee2552a7a2)
2007-10-10r1644: changed the way [relative] pointers work in pidl, making them muchAndrew Tridgell1-0/+12
simpler. This doesn't appear to hurt any of the existing uses of [relative], but fixes its use for svcctl that jelmer is working on. (This used to be commit 573f56a44785526d15c0179c5bbdab4c8b9461f1)
2007-10-10r1641: Finish IDL for EnumServicesStatusJelmer Vernooij1-1/+1
(This used to be commit c395652aa033502e4e0944b8031c869f479c888a)
2007-10-10r1617: Start working on the svcctl pipeJelmer Vernooij2-0/+162
(This used to be commit 518ff5f505446fee623365fd5bdfc75c0cb93d2a)
2007-10-10r1558: the unknown_time is the same as the logon_time in the PAC_LOGON_INFOStefan Metzmacher1-3/+3
the account_name is a 'nstring' metze (This used to be commit bb906e5e9e566e7ed931436956ba8323503875f9)
2007-10-10r1552: commit the first version of the pidl generated krb5 PAC parserStefan Metzmacher2-0/+154
NOTE: there a lot of work todo, maybe we need to extent pidl metze (This used to be commit b94a09d461291d9dd47c5859537d6025f02a80ff)
2007-10-10r1545: add some comments and move a transport function to the transport sectionStefan Metzmacher1-5/+8
metze (This used to be commit 7d5ca8cc7cdeef0fc9307f8f98366958aa4ce3c2)
2007-10-10r1543: add srvsvc_NetRemoteTOD idl and torture testsStefan Metzmacher1-1/+21
metze (This used to be commit 3f2b77d7ec024f54dc478522d85278ced8fce617)
2007-10-10r1525: share info level 1004 is invalid,Stefan Metzmacher1-4/+9
but is not the same as the default case metze (This used to be commit 5fe88379ad2de0a346bb7155e74eb00cfa3ef44c)
2007-10-10r1524: add some commentsStefan Metzmacher1-1/+13
metze (This used to be commit f5240737629ccd57693f8fb162ba7baca53a4672)
2007-10-10r1509: in order to interoperate with NT3.1 we need to ignore extra data at ↵Andrew Tridgell1-3/+7
the end of RPC PDUs. It turns out that NT3.1 adds junk onto the end of every PDU. (This used to be commit a4a89cffd85c213a4d751c24ccda438e44df4d2e)
2007-10-10r1498: (merge from 3.0)Andrew Bartlett1-1/+1
Rework our random number generation system. On systems with /dev/urandom, this avoids a change to secrets.tdb for every fork(). For other systems, we now only re-seed after a fork, and on startup. No need to do it per-operation. This removes the 'need_reseed' parameter from generate_random_buffer(). This also requires that we start the secrets subsystem, as that is where the reseed value is stored, for systems without /dev/urandom. In order to aviod identical streams in forked children, the random state is re-initialised after the fork(), at the same point were we do that to the tdbs. Andrew Bartlett (This used to be commit b97d3cb2efd68310b1aea8a3ac40a64979c8cdae)
2007-10-10r1482: today I saw DCERPC_AUTH_TYPE 16(0x10)Stefan Metzmacher1-0/+4
and it seems to be raw krb5, but I need to do some tests metze (This used to be commit 01612927902ed5e4d0109fec453307cdcb95336f)
2007-10-10r1481: add idl file and torture test dummiesStefan Metzmacher2-0/+118
for DRSUapi (the Active Directory Replication Protocol) I'll try to fill the idl file as part of a study project together with some other students... metze (This used to be commit 3fc9abcad712c4cc5c9879df0acaa5a19a3d8718)
2007-10-10r1475: More kerberos workAndrew Bartlett1-0/+7
- We can now connect to hosts that follow the SPNEGO RFC, and *do not* give us their principal name in the mechListMIC. - The client code now remembers the hostname it connects to - We now kinit for a user, if there is not valid ticket already - Re-introduce clock skew compensation TODO: - See if the username in the ccache matches the username specified - Use a private ccache, rather then the global one, for a 'new' kinit - Determine 'default' usernames. - The default for Krb5 is the one in the ccache, then $USER - For NTLMSSP, it's just $USER Andrew Bartlett (This used to be commit de5da669397db4ac87c6da08d3533ca3030da2b0)
2007-10-10r1419: spnego inside of dcerpc using alter_context/alter_context_respStefan Metzmacher6-11/+170
instead of auth3 metze (This used to be commit 19b0567ee533744a0f2778bf8549636a25d96526)
2007-10-10r1354: Make it clear that the first gensec_update takes a NULL data_blob.Andrew Bartlett1-2/+3
Andrew Bartlett (This used to be commit 842a5dfc1f313b771fef14a484be6eea8c6eedf8)
2007-10-10r1351: add derpc spengo wrapperStefan Metzmacher2-0/+80
not yet used and not working because of bugs in the gensec spnego code metze (This used to be commit b9795ed5735ad88a2ba9608d3d8804edf77e4cd4)
2007-10-10r1294: A nice, large, commit...Andrew Bartlett7-137/+377
This implements gensec for Samba's server side, and brings gensec up to the standards of a full subsystem. This means that use of the subsystem is by gensec_* functions, not function pointers in structures (this is internal). This causes changes in all the existing gensec users. Our RPC server no longer contains it's own generalised security scheme, and now calls gensec directly. Gensec has also taken over the role of auth/auth_ntlmssp.c An important part of gensec, is the output of the 'session_info' struct. This is now reference counted, so that we can correctly free it when a pipe is closed, no matter if it was inherited, or created by per-pipe authentication. The schannel code is reworked, to be in the same file for client and server. ntlm_auth is reworked to use gensec. The major problem with this code is the way it relies on subsystem auto-initialisation. The primary reason for this commit now.is to allow these problems to be looked at, and fixed. There are problems with the new code: - I've tested it with smbtorture, but currently don't have VMware and valgrind working (this I'll fix soon). - The SPNEGO code is client-only at this point. - We still do not do kerberos. Andrew Bartlett (This used to be commit 07fd885fd488fd1051eacc905a2d4962f8a018ec)
2007-10-10r1275: Make spoolss_PrinterInfo2 and spoolss_PrinterInfo5 public so we canTim Potter1-2/+2
use them in the enumprinters server code. (This used to be commit 5fcba0aa2019e489e3936ec13dd11a5e8d74ba9f)
2007-10-10r1274: revert -r 1239 as discussed with abartletStefan Metzmacher1-301/+0
metze (This used to be commit 52e2d038252bd745d53c687d266ad3ad62efa6fc)
2007-10-10r1269: Add a 'base' field to the ndr_ofs_list structure which is the base toTim Potter2-1/+5
which the offset applies to. In an array of structures containing relative members, the offset applies to the start of the array element being marshalled. Previously, there was no way to access the relevant structure start as by the time we have hit buffers, the head of the offset list will be the last structure being marshalled. Interestingly enough, this makes relstrs go away. I think we thought they were a special case in samba 3 but it turns out they are just regular relative elements in the idl. This makes spoolss a lot simpler than I thought it would be. I've run the samr and lsa tests and this doesn't seem to break anything. It looks like security descriptors are the only structures that contain relative members. Oh yeah, this will probably require a 'make clean && make' otherwise you will get bizzare errors. (This used to be commit d379dcdfd5f41e7cf7668354c3011b8ace190953)
2007-10-10r1264: Make sure to initialize ofs_list when creating new ndr_{push,pull}Tim Potter1-0/+2
structures. (This used to be commit 6a39b17f6d8776ae695dc5c6caa0990ab2733e3c)
2007-10-10r1239: move the old msrpc_<gen|parse>() functions to ↵Stefan Metzmacher1-0/+301
ndr_<push|pull>_format_blob() simular to ndr_<push|pull>_struct_blob() metze (This used to be commit b25dd341e0febd550a2936ca484b6fecce2ff8c2)
2007-10-10r1206: Give the spoolss pipe an endpoint.Tim Potter1-1/+2
Make PrinterInfo1 struct public so we can call the push function in spoolss_EnumPrinters(). (This used to be commit f4309f3ced337cf5d968f62e80adee1eb75201af)
2007-10-10r1200: Add 'gensec', our generic security layer.Andrew Bartlett6-319/+162
This layer is used for DCERPC security, as well as ntlm_auth at this time. It expect things like SASL and the CIFS layer to use it as well. The particular purpose of this layer is to introduce SPENGO, which needs generic access to the actual implementation mechanisms. Schannel, due to it's 'interesting' setup properties is in GENSEC, but is only in the RPC code. Andrew Bartlett (This used to be commit 902af49006fb8cfecaadd3cc0c10e2e542083fb1)
2007-10-10r1150: - fixed interactive sam logon in the rpc serverAndrew Tridgell1-11/+9
- added a torture test for interactive login in smbtorture These changes allow winxp to perform an interactive login (a login on the winxp console) against a Samba4 DC. Our netlogon server code is still filling in many of the fields incorrectly, but it fills in enough that winxp can login. (This used to be commit db9ea488b047b5f0f7538fd75fb7dde8277eb06b)
2007-10-10r1144: added logon level 5 for sam logonAndrew Tridgell1-0/+1
(This used to be commit eb13fc6c3b482d49a2cfaf13d290f1e54a2f1865)
2007-10-10r1141: - consolidated the netr_SamInfo structures using a netr_SamBaseInfoAndrew Tridgell1-56/+9
structure (andrew, this is the type of structure consolidation I think you were asking about. It's possible here in NDR as it isn't in the top level fn code) - added validation level 6 in sam logon With these changes I can successfully authentication smbclient to a winxp server, with the winxp server using a Samba4 ADS DC for account auth (This used to be commit 705205083a6e2430c420f44436a1d1ff8826bc73)
2007-10-10r1140: added IDL and test code for validation level 6 in sam logonAndrew Tridgell1-16/+40
(This used to be commit c8541098436d2cd83538375889560405ecb50034)
2007-10-10r1139: added IDL and server code for netr_LogonSamLogonWithFlags()Andrew Tridgell1-1/+14
(This used to be commit 4eac7340d8d7a109bed8fe7bb7cf663d6e7f0a56)
2007-10-10r1136: - added IDL for netr_LogonGetDomainInfo()Andrew Tridgell2-1/+101
- added workstation to auth_session_info in rpc servers - added session key fetch hook in crypto backends in dcesrv - store and fetch seed as well as a session key in schannel ldb - when a client uses schannel to setup a netlogon pipe connection we also need to setup the credentials from the schannel negotiation so credentials chaining works - added server side netr_LogonGetDomainInfo() call (This used to be commit a35459387de3b6a422c5af6f658338fc7e4314b0)
2007-10-10r1133: - add ndr_pull_ptr() as a separate call instead of ndr_pull_uint32()Andrew Tridgell1-0/+10
(useful for debugging IDL) - fixed a couple of places that auto-generate incorrect printf style arguments for ndr_pull_error() (This used to be commit ad3324a79ce030df4c5ed46408e662b46588f89f)
2007-10-10r1132: add a PRINTF_ATTRIBUTE to ndr_pull_error() to catch printf style ↵Andrew Tridgell1-1/+2
coding errors (This used to be commit f0940f19129f0f2eccc3bb5130b8d2dd0b60f83f)
2007-10-10r1077: fix segfault in schannel over ncacn_ip_tcpStefan Metzmacher2-13/+15
metze (This used to be commit 9e9a52692ebe9d47f1a08740ea1dcb8f46041211)
2007-10-10r1068: make the dcerpc client side auth/crypto code much more genericStefan Metzmacher6-282/+370
metze (This used to be commit 1706ff88a72c6578a109c2cf24f2f009812c3892)