Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-03-22 | s4:lsa Functions to set Domain Trust Information | Simo Sorce | 1 | -7/+592 | |
2010-03-22 | s4:lsa move code to add trusted domain user into its own function | Simo Sorce | 1 | -72/+101 | |
2010-03-22 | s4:lsa Abstract crypto (un)wrapping in separate functions | Simo Sorce | 1 | -81/+89 | |
2010-03-22 | s4:WINREG RPC - add also here a "W_ERROR_HAVE_NO_MEMORY" | Matthias Dieter Wallnöfer | 1 | -0/+1 | |
2010-03-22 | s4:registry - adaptions for "add memory contexts for delete value/key functions" | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
2010-03-21 | s4:WINREG RPC server - don't check for the "name" size in "EnumValue" | Matthias Dieter Wallnöfer | 1 | -5/+0 | |
This isn't needed at all since: 1.) a new name object is created and sent back to the client 2.) the "size" seems to be the size of the "name" pointer. On my test with the "regedt32" program this has always been "4". | |||||
2010-03-21 | s4:WINREG RPC - we support only non-volatile keys | Matthias Dieter Wallnöfer | 1 | -0/+5 | |
2010-03-21 | s4:WINREG RPC - specify the performed create action for "CreateKey" | Matthias Dieter Wallnöfer | 1 | -1/+10 | |
To make the WINREG RPC testsuite happy. | |||||
2010-03-16 | s4-lsa: fix dcesrv_lsa_lsaRSetForestTrustInformation server stub. | Günther Deschner | 1 | -3/+3 | |
Guenther Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-03-16 | s4:idl change level to type in lsa_ForestTrustRecord. | Simo Sorce | 1 | -2/+2 | |
2010-03-16 | s4:dsdb Change dsdb_get_schema() callers to use new talloc argument | Andrew Bartlett | 1 | -2/+2 | |
This choses an appropriate talloc context to attach the schema too, long enough lived to ensure it does not go away before the operation compleates. Andrew Bartlett | |||||
2010-03-12 | s4:rpc_server/spoolss: make use of dcerpc_binding_handle stubs | Stefan Metzmacher | 1 | -1/+1 | |
metze | |||||
2010-03-11 | s4-winreg: continue processing in WERR_MORE_DATA case in ↵ | Günther Deschner | 1 | -1/+1 | |
dcesrv_winreg_QueryValue(). Matthias, please check. Guenther | |||||
2010-03-11 | s4:rpc_server/drsuapi: don't reset [out,ref] pointer to NULL in ↵ | Stefan Metzmacher | 1 | -1/+0 | |
dcesrv_drsuapi_DsRemoveDSServer() metze | |||||
2010-03-11 | s4/rpc_server Don't segfault over replPropertyMetaData contents | Andrew Bartlett | 1 | -0/+7 | |
The replPropertyMetaData may contain attrid values that we don't yet have in the local schema. We need to deal with this - it is a serious error, but we should not segfault. Andrew Bartlett | |||||
2010-03-10 | s4:winreg RPC - fix up the "QueryValue" call to work against the enhanced ↵ | Matthias Dieter Wallnöfer | 1 | -7/+11 | |
torture test Found out by gd's updated torture test. | |||||
2010-03-10 | s4:rpc_server/wkssvc: don't reset [out,ref] pointer to 0 | Stefan Metzmacher | 1 | -6/+0 | |
r->out.total_entries = 0; should be *r->out.total_entries = 0; Otherwise we fail to marshall the reponse or crash if we run with log level = 10 and trigger the ndr_print functions. All out elements are already setup and initialized by the pidl generated code. metze | |||||
2010-03-10 | s4:rpc_server/wkssvc: remove unneeded talloc_reference() | Stefan Metzmacher | 1 | -4/+2 | |
metze | |||||
2010-03-10 | s4:rpc_server/wkssvc: avoid ZERO_STRUCT(r->out) and use already allocated ↵ | Stefan Metzmacher | 1 | -4/+0 | |
[out,ref] memory metze | |||||
2010-03-10 | s4:rpc_server/srvsvc: remove unused ZERO_STRUCT(r->out); | Stefan Metzmacher | 1 | -2/+0 | |
Here it doesn't matter, but it's a bad example for other code as it might reset the [out,ref] pointers which are already generated by the pidl generated code. metze | |||||
2010-03-10 | s4-spoolss: remove unsed iconv handle from dcesrv_spoolss_GetPrinterData(). | Günther Deschner | 1 | -1/+0 | |
Guenther | |||||
2010-03-10 | s4:winreg RPC - don't crash when incoming data wasn't correctly specified | Matthias Dieter Wallnöfer | 1 | -2/+8 | |
Also found by the WINREG torture test enhancements by gd. | |||||
2010-03-09 | s4:netlogon RPC - "LogonGetDomainInfo" - make the call compatible with >= ↵ | Matthias Dieter Wallnöfer | 1 | -23/+62 | |
Windows 2008 Add more security checks and other corrections to imitate Windows Server >= 2008. | |||||
2010-03-06 | s4:lsa RPC - fix up "gendb_*" result codes | Matthias Dieter Wallnöfer | 2 | -33/+34 | |
Make the resultcodes consistent: that means: result < 0 -> NT_STATUS_INTERNAL_DB_CORRUPTION since our DB had a critical error result >= 0 -> depends on the function usage. I tried to let the logic always as it was before. | |||||
2010-03-06 | s4:lsa RPC - Change some counters to be "unsigned" where needed | Matthias Dieter Wallnöfer | 2 | -21/+24 | |
The "count" size specifiers I typed "uint32_t" since they're often returned as an "uint32_t" (consider the IDL file). LDB counters need to be "signed" if they count till a limit of a "gendb*" call or "unsigned" if they count directly the number of objects. | |||||
2010-03-06 | s4:samr RPC - Change some counters to be "unsigned" where needed | Matthias Dieter Wallnöfer | 1 | -9/+14 | |
The "count" size specifiers I typed "uint32_t" since they're often returned as an "uint32_t" (consider the IDL file). LDB counters need to be "signed" if they count till a limit of a "gendb*" call or "unsigned" if they count directly the number of objects. | |||||
2010-03-05 | s4:drsuapi RPC - Change also here counters to "unsigned" | Matthias Dieter Wallnöfer | 3 | -7/+8 | |
No need to have "signed" counters at those places. | |||||
2010-03-05 | s4-spoolss: fix dcesrv_spoolss_GetPrinterData build. | Günther Deschner | 1 | -1/+1 | |
really not my day today... Guenther | |||||
2010-03-05 | s4-spoolss: fix spoolss_GetPrinterData implementation after IDL change. | Günther Deschner | 1 | -2/+1 | |
Guenther | |||||
2010-03-05 | s4:dcesrv_samr_AddAliasMember - wrap a long "DEBUG" statement | Matthias Dieter Wallnöfer | 1 | -1/+2 | |
2010-03-03 | s4:srvsvc RPC - "srvsvc_create_ntvfs_connect" | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
Previous commit was incomplete. The "service" parameter in the "tcon" structure should point to "scfg->name". I'm not sure if "share" is right but the first was used before commit f390daef475126b4ff5a3d0ffd2babbd87d4c22b. | |||||
2010-03-03 | s4:srvsvc RPC - fix up the "ntvfs_connect" in "srvsvc_create_ntvfs_connect" | Matthias Dieter Wallnöfer | 1 | -3/+5 | |
This should be the right fix (set the service name in the tcon union to the share name/path). That should be the solution for bug #6784. | |||||
2010-03-03 | s4:dcesrv_samr - Also "OpenGroup" needs to support universal groups | Matthias Dieter Wallnöfer | 1 | -2/+3 | |
2010-03-03 | s4:dcesrv_samr - Fix up "EnumDomainGroups" and "QueryDisplayInfo" calls | Matthias Dieter Wallnöfer | 1 | -3/+6 | |
We need to look for both global and universal group types when querying them. Found by ekacnet (http://lists.samba.org/archive/samba-technical/2010-March/069777.html). | |||||
2010-03-02 | s4:echo RPC - make this one "signed-safe" | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
"i" needs to be unsigned here since it counts until "r->in.len" which itself is unsigned and not signed. | |||||
2010-03-01 | s4:srvsvc RPC - revert one unsigned integer "i" back to signed | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
This is needed since this particular "i" counts until "count" which itself is signed. "count" is set through a signed integer variable parameter from the "share_list_all" call. | |||||
2010-03-01 | s4:rpc_server/remote: do async calls | Stefan Metzmacher | 1 | -6/+42 | |
metze | |||||
2010-03-01 | s4:srvsvc RPC - make this one "signed-safe" | Matthias Dieter Wallnöfer | 1 | -19/+20 | |
2010-03-01 | s4:unixinfo RPC - make this one "signed-safe" | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2010-03-01 | s4:spoolss RPC - make this one "signed-safe" | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2010-03-01 | s4:remote RPC - make this one "signed-safe" | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
2010-03-01 | s4:epmapper RPC - make this one "signed-safe" | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
2010-03-01 | s4/rodc: Implement samdb_rodc with ldb context | Anatoliy Atanasov | 1 | -1/+1 | |
2010-02-26 | s4:dcesrv_samr.c - Remove unused variable | Matthias Dieter Wallnöfer | 1 | -3/+1 | |
2010-02-24 | s4:lsa use the correct way to store a domain sid | Simo Sorce | 1 | -7/+5 | |
Converting the sid to a string and then storing a string does not save the sid in the right format. Causing following retrievals to fail to read back a sid with samdb_result_dom_sid(). | |||||
2010-02-24 | s4:lsa avoid confusing ourselves over sam_ldb | Simo Sorce | 1 | -39/+41 | |
Do not use policy_state->sam_ldb and trusted_domain_state->policy->sam_ldb interchangeably all over the place. Just use sam_ldb everywhere and make the code slightly more readable. | |||||
2010-02-24 | s4:lsa cleanup trailing spaces and tabs | Simo Sorce | 1 | -35/+35 | |
2010-02-24 | s4:netlogon remove wrong ZERO_STRUCT of output | Simo Sorce | 1 | -6/+0 | |
This was causing marshalling faults when we returned errors. | |||||
2010-02-23 | s4:schannel merge code with s3 | Simo Sorce | 1 | -24/+15 | |
After looking at the s4 side of the (s)channel :) I found out that it makes more sense to simply make it use the tdb based code than redo the same changes done to s3 to simplify the interface. Ldb is slow, to the point it needs haks to pre-open the db to speed it up, yet that does not solve the lookup speed, with ldb it is always going to be slower. Looking through the history it is evident that the schannel database doesn't really need greate expanadability. And lookups are always done with a single Key. This seem a perfet fit for tdb while ldb looks unnecessarily complicated. The schannel database is not really a persistent one. It can be discared during an upgrade without causing any real issue. all it contains is temproary session data. | |||||
2010-02-23 | s4:schannel more readable check logic | Simo Sorce | 1 | -12/+44 | |
Make the initial schannel check logic more understandable. Make it easy to define different policies depending on the caller's security requirements (Integrity/Privacy/Both/None) This is the same change applied to s3 |