Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-06-28 | s4:dcesrv_drsuapi.c - fix a counter variable | Matthias Dieter Wallnöfer | 1 | -2/+1 | |
2010-06-28 | s4:lsa RPC server - Fix up "dcesrv_lsa_DeleteObject" | Matthias Dieter Wallnöfer | 1 | -3/+6 | |
- Return always "NT_STATUS_OK" on success - Remove "talloc_free"s on handles since the frees are automatically performed by the DCE/RPC server code | |||||
2010-06-28 | s4:dcesrv_samr_SetUserInfo - implement right "pwdLastSet" behaviour | Matthias Dieter Wallnöfer | 1 | -1/+72 | |
Behaviour as the torture SAMR passwords tests show. | |||||
2010-06-28 | s4:dcesrv_samr_SetUserInfo - deny operations when "fields_present" is 0 | Matthias Dieter Wallnöfer | 1 | -0/+9 | |
Taken from s3 | |||||
2010-06-28 | s4:dcesrv_samr_SetUserInfo - port the "SAMR_FIELD_LAST_PWD_CHANGE" check ↵ | Matthias Dieter Wallnöfer | 1 | -0/+8 | |
from s3 to s4 | |||||
2010-06-28 | s4:dcesrv_samr_SetUserInfo - implement password set level 21 | Matthias Dieter Wallnöfer | 1 | -0/+33 | |
2010-06-28 | s4:dcesrv_samr_SetUserInfo - implement case 18 which allows to reset the ↵ | Matthias Dieter Wallnöfer | 1 | -0/+10 | |
user password | |||||
2010-06-28 | s4:OemChangePasswordUser2 - return "NT_STATUS_WRONG_PASSWORD" when we ↵ | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
haven't activated the the lanman auth This is what s3 does. | |||||
2010-06-28 | s4:samr_password.c - add a function which sets the password through ↵ | Matthias Dieter Wallnöfer | 1 | -0/+48 | |
encrypted password hashes Used for password sets on "samr_SetUserInfo" level 18 and 21. | |||||
2010-06-26 | s4:rpc_server/srvsvc/dcesrv_srvsvc.c - remove unreachable code | Matthias Dieter Wallnöfer | 1 | -36/+0 | |
2010-06-26 | s4:rpc_server/wkssvc/dcesrv_wkssvc.c - remove unreachable code | Matthias Dieter Wallnöfer | 1 | -4/+0 | |
2010-06-26 | s4:rpc_server/lsa/dcesrv_lsa.c - remove unreachable code | Matthias Dieter Wallnöfer | 1 | -2/+0 | |
2010-06-26 | s4:lsa/lsa_lookup.c - use a better type for the "rtype" of the wellknown SIDs | Matthias Dieter Wallnöfer | 1 | -3/+4 | |
To suppress warnings on Solaris 10 | |||||
2010-06-26 | s4:rpc_server/drsuapi/drsutil.c - remove unreachable code | Matthias Dieter Wallnöfer | 1 | -1/+0 | |
2010-06-26 | s4:rpc_server/dcesrv_auth.c - remove unreachable code | Matthias Dieter Wallnöfer | 1 | -2/+0 | |
2010-06-22 | s4:samr RPC server - make use of LDB constants in macros | Matthias Dieter Wallnöfer | 1 | -7/+7 | |
2010-06-20 | s4:samr RPC server - fix Solaris build warning | Matthias Dieter Wallnöfer | 1 | -3/+3 | |
2010-06-20 | s4:registry RPC server - quite some build warnings on Solaris | Matthias Dieter Wallnöfer | 1 | -4/+4 | |
2010-06-20 | s4:lsa_lookup.c - fix type argument | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2010-06-20 | s4:rpc_server/service_rpc.c - fix warnings on Solaris | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
2010-06-20 | s4:rpc_server/service_rpc.c - deactivate the 0-length struct | Matthias Dieter Wallnöfer | 1 | -0/+2 | |
This should fix the build on Solaris | |||||
2010-06-18 | s4:dcesrv_netr_DsRAddressToSitenamesExW - fix the detection of the address ↵ | Matthias Dieter Wallnöfer | 1 | -2/+3 | |
family in a better way Obviously the last attempt wasn't enough. Now we do really only read the first byte in the address buffer which on little endian transmission does always contain the address family (MS-NRPC 2.2.1.2.4.1). This should now be working platform-independently. | |||||
2010-06-16 | s4:dcesrv_netr_DsRAddressToSitenamesExW - fix the read of the IP packet version | Matthias Dieter Wallnöfer | 1 | -3/+4 | |
This should make it clearer by the use of the standardised "sa_family_t" type and hopefully fixes the problems on platforms other than Linux (NetBSD in the buildfarm for example). | |||||
2010-06-14 | s4:SAMR server - cosmetic fix | Matthias Dieter Wallnöfer | 1 | -1/+2 | |
2010-06-14 | s4:SAMR server - on alias search operations do never use the domain DN as ↵ | Matthias Dieter Wallnöfer | 1 | -10/+7 | |
base dn Aliases (especially in the "builtin" domain) are often domain-independant. | |||||
2010-06-12 | s4:dcesrv_samr_GetGroupsForUser - return error code if a SID wasn't found | Matthias Dieter Wallnöfer | 1 | -2/+1 | |
This shouldn't happen since SIDs are mandatory for security objects | |||||
2010-06-12 | s4:dcesrv_samr_QueryGroupMember/GetMembersInAlias - unify the structure | Matthias Dieter Wallnöfer | 1 | -30/+32 | |
Mostly cosmetic fixes | |||||
2010-06-12 | s4:dcesrv_samr_GetAliasMembership - provide a correct implementation | Matthias Dieter Wallnöfer | 1 | -31/+31 | |
We could also have no valid SID specified at all and also then we have to return an empty array with "NT_STATUS_OK". This shows the torture testsuite. | |||||
2010-06-12 | s4:dcesrv_samr_EnumDomainGroups/Aliases - when we don't get a SID then the ↵ | Matthias Dieter Wallnöfer | 1 | -4/+6 | |
database is corrupted Group/User/Alias entries do always have a SID (it's a mandatory attribute in the SAM directory)! | |||||
2010-06-12 | s4:dcesrv_samr_QueryAliasInfo - return "NT_STATUS_NO_SUCH_ALIAS" when it ↵ | Matthias Dieter Wallnöfer | 1 | -1/+4 | |
wasn't found | |||||
2010-06-12 | s4:dcesrv_samr_QueryGroupInfo - make it more like "QueryAliasInfo" | Matthias Dieter Wallnöfer | 1 | -14/+7 | |
2010-06-12 | s4:dcesrv_samr_QueryUserInfo - minor fixes | Matthias Dieter Wallnöfer | 1 | -1/+4 | |
Return "NT_STATUS_NO_SUCH_USER" when user account doesn't exist. | |||||
2010-06-12 | s4:dcesrv_samr_QueryDomainInfo - allocate the "info" structure only when ↵ | Matthias Dieter Wallnöfer | 1 | -7/+9 | |
really needed That means the allocation should move after the lookup (as it is on "QueryUserInfo"). Return "NT_STATUS_NO_SUCH_DOMAIN" on an invalid domain. | |||||
2010-06-12 | s4:dcesrv_samr_EnumDomainGroups - mostly small fixes | Matthias Dieter Wallnöfer | 1 | -3/+7 | |
2010-06-12 | s4:dcesrv_samr_EnumDomainAliases - return an empty array also when no entry ↵ | Matthias Dieter Wallnöfer | 1 | -3/+0 | |
was returned | |||||
2010-06-12 | s4:dcesrv_samr_EnumDomainAliases - mostly small fixes | Matthias Dieter Wallnöfer | 1 | -7/+10 | |
The biggest change consists in the implementation of the Windows Server return size formula MIN(*r->out.num_entries, 1+(r->in.max_size/SAMR_ENUM_USERS_MULTIPLIER). | |||||
2010-06-12 | s4:dcesrv_samr_EnumDomainUsers - make this call look more similar to ↵ | Matthias Dieter Wallnöfer | 1 | -23/+28 | |
"EnumDomainGroups" and "EnumDomainAliases" That means that the lookup is now also done by "samdb_search_domain" to be more consistent. | |||||
2010-06-10 | s4:dcesrv_samr_Add/DeleteAliasMember - provide better NTSTATUS return codes ↵ | Matthias Dieter Wallnöfer | 1 | -6/+19 | |
when something didn't work | |||||
2010-06-10 | s4:dcesrv_samr_GetAliasMembership - fix type of counter variables | Matthias Dieter Wallnöfer | 1 | -1/+2 | |
2010-06-10 | s4:dcesrv_samr_DeleteAliasMember - add more braces to fit better the coding ↵ | Matthias Dieter Wallnöfer | 1 | -4/+6 | |
styles | |||||
2010-06-10 | s4:dcesrv_samr_AddAliasMembership - Merge the two error blocks into one | Matthias Dieter Wallnöfer | 1 | -6/+3 | |
2010-06-10 | s4:dcesrv_samr_Add/DelGroupMember - remove the account type check | Matthias Dieter Wallnöfer | 1 | -11/+10 | |
MS-SAMR 3.1.5.8 speaks from accounts which are not necessarely only users. | |||||
2010-06-10 | s4:dcesrv_samr_AddGroupMember - also the error code ↵ | Matthias Dieter Wallnöfer | 1 | -0/+1 | |
"LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS" is allowed This is returned when the group is the primary group of the specified entry. | |||||
2010-05-31 | s3/s4:netrEnumerateTrustedDomains - this call returns a "NTSTATUS" result | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
See MS-NRPC 3.5.5.6.3. | |||||
2010-05-31 | s4:dcesrv_netr_DsrEnumerateDomainTrusts - fix an integer type | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2010-05-30 | Revert "s4:rpc_server/dcesrv_auth.c - Fix a RPC issue in conjunction with ↵ | Matthias Dieter Wallnöfer | 1 | -12/+2 | |
Windows 2000" This reverts commit 1cf5be39e30f9478606a5525eb7beeb21ee83c24. My fix approach isn't such appreciated therefore revert this. | |||||
2010-05-30 | s4:rpc_server/dcesrv_auth.c - Fix a RPC issue in conjunction with Windows 2000 | Matthias Dieter Wallnöfer | 1 | -2/+12 | |
Windows 2000 does strictly request header signing on some requests also if the server doesn't provide it. But there is a small trick (don't reset the actual session info) to make these special RPC operations work without a full header signing implementation. This fixes for example the list of domain groups in local groups when displayed sing the local user/group management tool. And this should finally fix bug #7113. The patch was inspired by another one by tridge and abartlet: http://gitweb.samba.org/samba.git/?p=tridge/samba.git;a=commitdiff;h=2dc19e2878371264606575d3fc09176776be7729 | |||||
2010-05-26 | s4:smbd: Use tstream_npa_accept_existing to accept named pipe connections | Simo Sorce | 1 | -14/+14 | |
Pair-programmed-with: Stefan Metzmacher <metze@samba.org> | |||||
2010-05-24 | s4:dsdb_enum_group_mem - use "unsigned" counters | Matthias Dieter Wallnöfer | 1 | -5/+3 | |
"size_t" counters aren't really needed here (we don't check data lengths). And we save the result in a certain "num_sids" variable which is of type "unsigned". | |||||
2010-05-24 | s4:idmap Adjust code to new idmap structure names and layout. | Andrew Bartlett | 1 | -16/+12 | |
Andrew Bartlett |