summaryrefslogtreecommitdiff
path: root/source4/nbt_server/dgram/netlogon.c
AgeCommit message (Collapse)AuthorFilesLines
2009-06-01fix uninitialised use of samctxAndrew Tridgell1-0/+2
2009-05-26Don't use crossRef records to find our own domainAndrew Bartlett1-16/+5
A single AD server can only host a single domain, so don't stuff about with looking up our crossRef record in the cn=Partitions container. We instead trust that lp_realm() and lp_workgroup() works correctly. Andrew Bartlett
2009-02-02s4:dgram: s/private/private_dataStefan Metzmacher1-1/+1
metze
2008-10-20Make sure prototypes are always included, make some functions static andJelmer Vernooij1-0/+1
remove some unused functions.
2008-10-11Fix include paths to new location of libutil.Jelmer Vernooij1-1/+1
2008-10-02The IRIX compiler does not like embedded unnamed unionsVolker Lendecke1-2/+2
2008-06-30Rework samdb handling for 'netlogon' packets.Andrew Bartlett1-10/+2
Don't reopen the samdb for every netlogon packet, and use the system_session(), as we must access data not available to anonymous. Perhaps we should consider a 'authenticated but not system' token, if we want more control on this. Andrew Bartlett (This used to be commit d10c9b71ea7f2670c4ea5ec569bcb7f49ec41362)
2008-05-21Extend the 'netlogon' CLDAP and NBT implementation.Andrew Bartlett1-1/+1
This now handles checking if the user exists, including validating the ACB mask on the user. This would be a nasty security hole, if Kerberos did not already expose this information anonymously... Andrew Bartlett (This used to be commit 441b286c00f9a7743cdefeb243545bdbd2c94c5e)
2008-05-21Further tests show NTLOGON and NETLOGON to be identical.Andrew Bartlett1-5/+0
I can't tell the difference between the NTLOGON and NETLOGON behaviour on these pipes, and this 'exception' turned out to be alignment dependent, not pipe dependent. Andrew Bartlett (This used to be commit bf1b99aff2a8feaee5f57c7530bc81d447e5d765)
2008-05-20Revert addition of 'mailslot' parameter.Andrew Bartlett1-6/+3
It turns out that the mailslot name (and a useful private prointer) is provided in the struct dgram_mailslot_handler. Andrew Bartlett (This used to be commit e17804b8857fdb3c182c5e886323b9d6c194c2ff)
2008-05-17Handle netbios domains in the CLDAP server too.Andrew Bartlett1-3/+14
This commit also fixes a number of issues found by the NBT-DGRAM and LDAP-CLDAP tests. Andrew Bartlett (This used to be commit 8f99a4b94e95f8bde0f80f92d4e57020c62cfaab)
2008-05-17Show that the NTLOGON and NETLOGON mailslots are *very* similar.Andrew Bartlett1-104/+44
Rework the mailslot infrustructure to cope, passing down the mailslot name so that we can implement both in the same callback function. Andrew Bartlett (This used to be commit 89fdd77891529aa74bb920994b8b5959aae8ac2d)
2008-04-17Specify event_context to ldb_wrap_connect explicitly.Jelmer Vernooij1-2/+2
(This used to be commit b4e1ae07a284c044704322446c94351c2decff91)
2007-12-21r26313: Fix more uses of static loadparm.Jelmer Vernooij1-10/+11
(This used to be commit 6fd0d9d3b75546d08c24c513e05b1843d5777608)
2007-12-21r26310: Remove more uses of global_loadparm.Jelmer Vernooij1-0/+2
(This used to be commit 9d806da113b5f0688b6193dfdee9b8765e18b38f)
2007-12-21r26260: Store loadparm context in gensec context.Jelmer Vernooij1-2/+2
(This used to be commit b9e3a4862e267be39d603fed8207a237c3d72081)
2007-12-21r26227: Make loadparm_context part of a server task, move loadparm_contexts ↵Jelmer Vernooij1-2/+2
further up the call stack. (This used to be commit 0721a07aada6a1fae6dcbd610b8783df57d7bbad)
2007-12-21r26003: Split up DB_WRAP, as first step in an attempt to sanitize dependencies.Jelmer Vernooij1-1/+1
(This used to be commit 56dfcb4f2f8e74c9d8b2fe3a0df043781188a555)
2007-10-10r25546: Convert to standard bool type.Jelmer Vernooij1-2/+2
(This used to be commit ac83dbf199fd442fc994d43a6e5e9fda8d4c88b6)
2007-10-10r25398: Parse loadparm context to all lp_*() functions.Jelmer Vernooij1-6/+9
(This used to be commit 3fcc960839c6e5ca4de2c3c042f12f369ac5f238)
2007-10-10r25026: Move param/param.h out of includes.hJelmer Vernooij1-0/+1
(This used to be commit abe8349f9b4387961ff3665d8c589d61cd2edf31)
2007-10-10r24246: Avoid the annoying 'probable memory leak in ldb' messages, by fixingAndrew Bartlett1-5/+5
some issues in the NBT server (this was a false positive, but easily worked around) and DRSUAPI server. We should take care not to use the ldb_context as a talloc pool, and to always ensure that any results from ldb_search() are moved off that pool with talloc_steal or talloc_free(). To work around the issue in provision, for which I can find no fault (other than a lot of work being done in provision), I've moved the detector trigger to 400 additional blocks. This fixes Bug #4810 by <mwallnoefer@yahoo.de> Andrew Bartlett (This used to be commit 42bcf856203ae3cf43130519904828a143ac8d18)
2007-10-10r23792: convert Samba4 to GPLv3Andrew Tridgell1-3/+2
There are still a few tidyups of old FSF addresses to come (in both s3 and s4). More commits soon. (This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
2007-10-10r19832: better prototypes for the linearization functions:Simo Sorce1-1/+1
- ldb_dn_get_linearized returns a const string - ldb_dn_alloc_linearized allocs astring with the linearized dn (This used to be commit 3929c086d5d0b3f08b1c4f2f3f9602c3f4a9a4bd)
2007-10-10r19831: Big ldb_dn optimization and interfaces enhancement patchSimo Sorce1-3/+3
This patch changes a lot of the code in ldb_dn.c, and also removes and add a number of manipulation functions around. The aim is to avoid validating a dn if not necessary as the validation code is necessarily slow. This is mainly to speed up internal operations where input is not user generated and so we can assume the DNs need no validation. The code is designed to keep the data as a string if possible. The code is not yet 100% perfect, but pass all the tests so far. A memleak is certainly present, I'll work on that next. Simo. (This used to be commit a580c871d3784602a9cce32d33419e63c8236e63)
2007-10-10r19699: - use better names for the site stringsStefan Metzmacher1-2/+2
- use the client_site when creating the server object metze (This used to be commit b02d0e1be343c7d609715237dc842702b6fbe231)
2007-10-10r18434: Fix typo...Andrew Bartlett1-1/+1
(This used to be commit 4f235b88aa0ce6c684bf203ea3cbc81e91a3cd3e)
2007-10-10r18433: Make sure to search below the partitions baseDN for the netbios name.Andrew Bartlett1-1/+4
I think we should have a helper function for this search, we do it too often... Andrew Bartlett (This used to be commit 09327baa0ded3a98398b266c960f827b29021d91)
2007-10-10r17824: add a wrapper for the common partitions_basedn calculationAndrew Tridgell1-1/+3
(This used to be commit 09007b0907662a0d147e8eb21d5bdfc90dbffefc)
2007-10-10r17634: Kill off another case where we used dnsDomain, and point it again atAndrew Bartlett1-5/+5
dnsRoot. Fix to read the nETBIOSName from the correct result. Andrew Bartlett (This used to be commit dc37c48724115940094a0f6003ee2f74fe81d102)
2007-10-10r16239: Search for the domain in the correct partition, so this will work withAndrew Bartlett1-1/+2
LDAP backends. Andrew Bartlett (This used to be commit 270a77bfff65c9e1d5d7c535338f9b9b86d53fa3)
2007-10-10r14709: allways use the unicast socket of the interface, when reply to DGRAMStefan Metzmacher1-7/+11
requests... this fixes a bug where I thought windows would try KRB5 via broadcast... metze (This used to be commit 0e7b224294ce6a3b5bbdc284181ab496a5a0c058)
2007-10-10r14464: Don't include ndr_BASENAME.h files unless strictly required, insteadJelmer Vernooij1-0/+1
try to include just the BASENAME.h files (containing only structs) (This used to be commit 3dd477ca5147f28a962b8437e2611a8222d706bd)
2007-10-10r13924: Split more prototypes out of include/proto.h + initial work on headerJelmer Vernooij1-0/+1
file dependencies (This used to be commit 122835876748a3eaf5e8d31ad1abddab9acb8781)
2007-10-10r13807: print out the netbios name the packet is forStefan Metzmacher1-2/+3
metze (This used to be commit e73cc5060c4cf4ac286c407fb8a323ce6be6b79c)
2007-10-10r12804: This patch reworks the Samba4 sockets layer to use a socket_addressAndrew Bartlett1-4/+9
structure that is more generic than just 'IP/port'. It now passes make test, and has been reviewed and updated by metze. (Thankyou *very* much). This passes 'make test' as well as kerberos use (not currently in the testsuite). The original purpose of this patch was to have Samba able to pass a socket address stucture from the BSD layer into the kerberos routines and back again. It also removes nbt_peer_addr, which was being used for a similar purpose. It is a large change, but worthwhile I feel. Andrew Bartlett (This used to be commit 88198c4881d8620a37086f80e4da5a5b71c5bbb2)
2007-10-10r12608: Remove some unused #include lines.Jelmer Vernooij1-2/+0
(This used to be commit 70e7449318aa0e9d2639c76730a7d1683b2f4981)
2007-10-10r12542: Move some more prototypes out to seperate headersJelmer Vernooij1-0/+2
(This used to be commit 0aca5fd5130d980d07398f3291d294202aefe3c2)
2007-10-10r12537: finally found the difference between us and w2k3 that caused w2kAndrew Tridgell1-2/+9
domain joins to be agonisingly slow! The join is now instant, and login is fast too (This used to be commit 1b65713bbc4f44efee24b86900004a222028b733)
2007-10-10r11041: r10358@SERNOX: metze | 2005-09-20 21:40:03 +0200Stefan Metzmacher1-8/+8
fix some missing nbt_peer_socket cases metze (This used to be commit bd25231c57f60296ad954d4f333c14d83781a1d1)
2007-10-10r10810: This adds the hooks required to communicate the current user from theAndrew Bartlett1-2/+2
authenticated session down into LDB. This associates a session info structure with the open LDB, allowing a future ldb_ntacl module to allow/deny operations on that basis. Along the way, I cleaned up a few things, and added new helper functions to assist. In particular the LSA pipe uses simpler queries for some of the setup. In ldap_server, I have removed the 'ldasrv:hacked' module, which hasn't been worked on (other than making it continue to compile) since January, and I think the features of this module are being put into ldb anyway. I have also changed the partitions in ldap_server to be initialised after the connection, with the private pointer used to associate the ldb with the incoming session. Andrew Bartlett (This used to be commit fd7203789a2c0929eecea8125b57b833a67fed71)
2007-10-10r9391: Convert all the code to use struct ldb_dn to ohandle ldap like ↵Simo Sorce1-2/+3
distinguished names Provide more functions to handle DNs in this form (This used to be commit 692e35b7797e39533dd2a1c4b63d9da30f1eb5ba)
2007-10-10r9011: Remove more references to "name" as a netbios name, using theAndrew Bartlett1-10/+41
cross-reference instead. Andrew Bartlett (This used to be commit 0f7b1136f6e0779f28f2132a8606dd64be20c42e)
2007-10-10r7378: Lowercase netbios name when forming the DNS name of the DC in theAndrew Bartlett1-4/+6
NETLOGON reply. Use the kdc server service to determine if we are a kdc (no more krb5:kdc=yes). Andrew Bartlett (This used to be commit fe9cdb063ca183674d0093b43017cc054d7c3f63)
2007-10-10r6904: use "krb5:kdc=yes" in your smb.conf when you have the ↵Stefan Metzmacher1-1/+1
lorikeet-heimdal kdc running metze (This used to be commit fa652919bd6ab58ff15cab239cf88d2359b03d55)
2007-10-10r6618: only print the netlogon packets we receive if it is an unknown packet ↵Andrew Tridgell1-2/+1
type (This used to be commit 8229fe4dd5f4eb89eb19fa02eedc7f00a31b204e)
2007-10-10r6339: set the NBT_SERVER_LDAP and NBT_SERVER_KDC bits based on configAndrew Tridgell1-3/+13
(andrew, please fix the method of sseeing if we do krb5, if you can think of a better one) (This used to be commit 4c2207c946fa7bb6a8ba32ac82256c424b5d0d3c)
2007-10-10r6338: ADS style GETDC response now works well enough that WinXP can joinAndrew Tridgell1-0/+82
Samba4 without Samba3 nmbd (This used to be commit f4d07d7d3b6973b503d8c98f177471dd6cebfa92)
2007-10-10r6320: some minor netlogon datagram fixes - NT4 can now join a Samba4 domain ↵Andrew Tridgell1-0/+1
without Samba3 nmbd (This used to be commit 4507bdc339505e91118d403948946f4a98a4f562)
2007-10-10r6288: the nbt dgram server now responds to GETDC requests. It works with ourAndrew Tridgell1-1/+64
test suite, but doesn't yet seem to satisfy a nt4 client. I'm investigating. (This used to be commit 406217262dff5adb5d0cb0028198e08f66cc85f4)