summaryrefslogtreecommitdiff
path: root/source4/torture/rpc/samr.c
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r10703: Add a new user account, change the password and test it in the ↵Andrew Bartlett1-10/+10
SAMLOGON test. The semantics for the user account are very odd, the old password is still valid, but the session keys appear to be blanked out. Andrew Bartlett (This used to be commit bbfaf4821d81116efa91313655acb75d6f577953)
2007-10-10r8823: I don't know why I added this test, it appears bogus.Andrew Bartlett1-1/+0
Andrew Bartlett (This used to be commit 640c086f8e5fe37bbd151a045d0fa20088cbda02)
2007-10-10r8235: fix the buildStefan Metzmacher1-1/+1
metze (This used to be commit 5933b00461e6e7c7f0ab60d61f9be215aa68c317)
2007-10-10r8232: remove samr_String and netr_String as they are the same as lsa_StringStefan Metzmacher1-35/+35
metze (This used to be commit e601042c07d7b6eed0dc34e5b136d9266b8a0f81)
2007-10-10r7686: Check for a type of invalid account name.Andrew Bartlett1-0/+1
Andrew Bartlett (This used to be commit 7520879bb08d191f0ab97508f14f525886b1b48b)
2007-10-10r7528: cleaned up the QueryDisplayInfo_continue testAndrew Tridgell1-4/+2
(This used to be commit a977dcef030605d0be1b7ce2a6500b202e35eaac)
2007-10-10r7507: fixed the problem with users being shown too many times in aclAndrew Tridgell1-0/+45
editors, and added a test for it. (This used to be commit 9e428881f6fc0a422ac9011d847e8f692284397a)
2007-10-10r6325: Rename aliasname -> alias_name in CreateDomAlias function.Tim Potter1-4/+4
(This used to be commit 63dfa9b80649928baf72687381fcfb6dd4d20032)
2007-10-10r5976: SIDs can't have more then 5 subauths (caught by [validate] andJelmer Vernooij1-1/+1
range()) (This used to be commit ec1eaa274b997197ca6996457229c802f1b76d56)
2007-10-10r5941: Commit this patch much earlier than I would normally prefer, but ↵Andrew Bartlett1-23/+36
metze needs a working tree... The main volume of this patch was what I started working on today: - Cleans up memory handling around DCE/RPC pipes, to have a parent talloc context. - Uses sepereate inner loops for some of the DCE/RPC tests The other and more important part of this patch fixes issues surrounding the new credentials framwork: This makes the struct cli_credentials always a talloc() structure, rather than on the stack. Parts of the cli_credentials code already assumed this. There were other issues, particularly in the DCERPC over SMB handling, as well as little things that had to be tidied up before test_w2k3.sh would start to pass. Andrew Bartlett (This used to be commit 0453f9d05d2e336fba1f85dbf2718d01fa2bf778)
2007-10-10r5879: Rename SAMR_FIELD_WORKSTATION to SAMR_FIELD_WORKSTATIONS - it is a list.Andrew Bartlett1-1/+2
Andrew Bartlett (This used to be commit 7822101cb5213f192f3195648970784a9de4fac4)
2007-10-10r5783: Test renaming of accounts in the RPC-SAMR test, and add support intoAndrew Bartlett1-14/+34
the SAMR server. Andrew Bartlett (This used to be commit fd748f9d2f8f354f76587d92b94de83bffe1c6dc)
2007-10-10r5364: Rename string fields called 'domain' and 'name' to be 'domain_name'.Tim Potter1-12/+12
(This used to be commit 6749b9404d4e9876ecd964e038c608f05d2c0b69)
2007-10-10r5298: - got rid of pstring.h from includes.h. This at least makes it a bitAndrew Tridgell1-3/+3
less likely that anyone will use pstring for new code - got rid of winbind_client.h from includes.h. This one triggered a huge change, as winbind_client.h was including system/filesys.h and defining the old uint32 and uint16 types, as well as its own pstring and fstring. (This used to be commit 9db6c79e902ec538108d6b7d3324039aabe1704f)
2007-10-10r5037: got rid of all of the TALLOC_DEPRECATED stuff. My apologies for theAndrew Tridgell1-5/+5
large commit. I thought this was worthwhile to get done for consistency. (This used to be commit ec32b22ed5ec224f6324f5e069d15e92e38e15c0)
2007-10-10r4532: - rename bitmap -> bitsStefan Metzmacher1-6/+6
the next commit is support for typedef bitmap {...}; in pidl metze (This used to be commit bd06a85cb747aea29a400050cb9d25a3240ef1cc)
2007-10-10r4492: r.in.info is a pointer that needs to be allocated before useAndrew Tridgell1-0/+1
(This used to be commit f830adc54ada7f38f964a6ccb5270d2791325dd5)
2007-10-10r4491: don't dereference q1.out.sam unless we know it is not NULLAndrew Tridgell1-1/+1
(This used to be commit 77e14c28584c5917f22672b304cb0f8e37e883fd)
2007-10-10r4422: make lp_set_cmdline("torture:dangerous", "Yes") a bool parameterStefan Metzmacher1-3/+3
metze (This used to be commit 19482a2245abbf9154423ca8997957b56333fba2)
2007-10-10r4375: Implement samr_OpenAlias, samr_QueryAliasInfo and samr_SetAliasInfo. ↵Volker Lendecke1-2/+2
Fix IDL for samr_SetAliasInfo. Volker (This used to be commit d70e2371903fb21e24ab2e23d04ee4b0b2ef55e5)
2007-10-10r4052: fixed a bunch of code to use the type safe _p allocation macrosAndrew Tridgell1-2/+2
(This used to be commit 80d15fa3402a9d1183467463f6b21c0b674bc442)
2007-10-10r4035: more effort on consistent naming of the access mask bits.Andrew Tridgell1-16/+16
This removes the duplicate named SEC_RIGHTS_MAXIMUM_ALLOWED and SEC_RIGHTS_FULL_CONTROL, which are just other names for SEC_FLAG_MAXIMUM_ALLOWED and SEC_RIGHTS_FILE_ALL. The latter names match the new naming conventions in security.idl Also added names for the generic->specific mappings for files are directories (This used to be commit 17a4e0b3aca227b40957ed1e0c57e498debc6ddf)
2007-10-10r4011: get rid of rpc_secdes.h and replace it with a single sane set ofAndrew Tridgell1-1/+1
definitions for security access masks, in security.idl The previous definitions were inconsistently named, and contained many duplicate and misleading entries. I kept finding myself tripping up while using them. (This used to be commit 01c0fa722f80ceeb3f81f01987de95f365a2ed3d)
2007-10-10r3977: fixed the lmPwdHash change in the rpc server (we were not fetching theAndrew Tridgell1-2/+2
lm hash from the samdb, and thus not checking the verifier) fixed the client side to calculate the lm verifier based on the nt hash, not the lm hash (confirmed using w2k3) (This used to be commit 27e7fb3bafe4649359e2e68169b6f10fd4d2cc70)
2007-10-10r3804: Add more comparison tests in RPC-SAMSYNC.Andrew Bartlett1-8/+8
This compares values for the domain and for secrets. We still have some problems we need to sort out for secrets. Also rename a number of structures in samr.idl and netlogon.idl, to better express their consistancy. Andrew Bartlett (This used to be commit 3f52fa3a42b030c9aef21c8bd88aad87a0aae078)
2007-10-10r3724: Rename a number of structures, for better consistance between SAMR andAndrew Bartlett1-114/+114
NETLOGON. In particular, rename samr_Name to samr_String - given that many strings in this pipe are not 'names', the previous was just confusing. (I look forward to PIDL turning these into simple char * some day...). Also export out a few changes from testjoin.c to allow for how I have written the new RPC-SAMSYNC test. Andrew Bartlett (This used to be commit 9cd666bcfb1fc752a4717010a7c4f05131dc728e)
2007-10-10r3462: separate out the crypto includesAndrew Tridgell1-0/+1
(This used to be commit 3f75117db921e493bb77a5dc14b8ce91a6288f30)
2007-10-10r3428: switched to using minimal includes for the auto-generated RPC code.Andrew Tridgell1-0/+2
The thing that finally convinced me that minimal includes was worth pursuing for rpc was a compiler (tcc) that failed to build Samba due to reaching internal limits of the size of include files. Also the fact that includes.h.gch was 16MB, which really seems excessive. This patch brings it back to 12M, which is still too large, but better. Note that this patch speeds up compile times for both the pch and non-pch case. This change also includes the addition iof a "depends()" option in our IDL files, allowing you to specify that one IDL file depends on another. This capability was needed for the auto-includes generation. (This used to be commit b8f5fa8ac8e8725f3d321004f0aedf4246fc6b49)
2007-10-10r3324: made the smbtorture code completely warning freeAndrew Tridgell1-1/+1
(This used to be commit 7067bb9b52223cafa28470f264f0b60646a07a01)
2007-10-10r3074: Add in a new 'field present' flag samr.idl for the Account FlagsAndrew Bartlett1-43/+192
field. Add torture test for setting this feild - including all the odd cases (not all the flags 'stick', and not others cannot be removed). Seperate the two 'password change' flags, and test them both in the torture code. Check that the password did change after every password set call. Andrew Bartlett (This used to be commit 3759128bd33b802d5213d50ba25f7c7d11cfe1d7)
2007-10-10r2910: I noticed that the samr torture test was doing its own DOS->UNIXAndrew Tridgell1-10/+1
string conversion. For RPC, all string conversions are supposed to be done by the NDR layer, using string flags set in the IDL. The reason this wasn't working is that I had been too lazy to do the STR_ASCII string types properly at the NDR layer when initially writing ndr_basic.c. This commit fixes the ndr_basic code properly to do all ASCII varients, by re-using the non-ascii code and a "byte_mul" local variable. I have also removed the manual string conversion in the SAMR torture test code. (This used to be commit aad0e7e9d890bb56447f1f933b8f2bb78a3ee269)
2007-10-10r2833: - added a call to SamrQueryGroupMember for every group, and fix theAndrew Tridgell1-1/+25
IDL so this works (the previous IDL was bogus) - changed a hyper to uint64 after looking at output on cascade on sparc (This used to be commit db1ed5675a5271085ea0b89dd634b037ee710178)
2007-10-10r2710: continue with the new style of providing a parent context wheneverAndrew Tridgell1-6/+34
possible to a structure creation routine. This makes for much easier global cleanup. (This used to be commit e14ee428ec357fab76a960387a9820a673786e27)
2007-10-10r2676: add a test of the reference counting logic in the SAMR server into theAndrew Tridgell1-86/+31
RPC-SAMR torture test. This closes the samr connection before working on a open domain handle. The server is supposed to know that the open domain handle still holds a reference to the connection, so the connection remains valid even though it has been closed. (This used to be commit f31e5d56e364ce8ab76fdb20b30e179b458b2ffa)
2007-10-10r2547: Another place to use convert_string_talloc().Andrew Bartlett1-7/+5
Andrew Bartlett (This used to be commit 4904d814c0efd870ac42c790028a8448984e4749)
2007-10-10r2501: The AddMemberToAlias test doesn't need a domain_handle.Tim Potter1-5/+2
(This used to be commit 90a9e754db91647607eef3a2ccb08d3651fca9df)
2007-10-10r2489: Rename account_flags in EnumDomainAliases() to acct_flags.Tim Potter1-1/+1
(This used to be commit a0e571a9ddc01b8e90a93d591aec4b10c9926818)
2007-10-10r2458: Rename policy handle parameters for the SAMR pipe. Parameters nowTim Potter1-114/+114
have the handle type implied by the parameter name. There are four types of handle: connect, domain, user and group handles. The various samr_Connect functions return a connect handle, and the samr_OpenFoo functions return a foo handle. There is one exception - the samr_{Get,Set}Security function can take any type of handle. Fix up all C callers. (This used to be commit 32f0f3154a8eb63de83145cbc8806b8906ccdc3e)
2007-10-10r2273: disable the async samr tests unless -X option is used, as windowsAndrew Tridgell1-0/+5
fails this and it kills the pipe, so we can't run the rest of the test (This used to be commit bdb49f01b75aa5b3a458ee4629e867bee1d03358)
2007-10-10r2107: added a SAMR async test - this one seems to workAndrew Tridgell1-0/+43
(This used to be commit 306eb848654e0cadb0ebe10c29420fc0c30a64c4)
2007-10-10r1758: Move and enhance the add_string_to_array function as per volker job ↵Simo Sorce1-15/+0
on trunk (This used to be commit 606caddeb95382287fa41a5017ca473d0301be6b)
2007-10-10r1646: disable testing of group rename in the RPC-SAMR test, as it leaves theAndrew Tridgell1-0/+6
group in a state where it can't be deleted via samr, which breaks repeated runs of the test. (This used to be commit bcad9efd728983c2d8932ef93eebd3d0c6d4d085)
2007-10-10r1510: add a commented out routine I used to test password change on NT3.Andrew Tridgell1-0/+61
(This used to be commit fb5796b0dccf7cd518db03e6456d986f17e50345)
2007-10-10r1498: (merge from 3.0)Andrew Bartlett1-2/+2
Rework our random number generation system. On systems with /dev/urandom, this avoids a change to secrets.tdb for every fork(). For other systems, we now only re-seed after a fork, and on startup. No need to do it per-operation. This removes the 'need_reseed' parameter from generate_random_buffer(). This also requires that we start the secrets subsystem, as that is where the reseed value is stored, for systems without /dev/urandom. In order to aviod identical streams in forked children, the random state is re-initialised after the fork(), at the same point were we do that to the tdbs. Andrew Bartlett (This used to be commit b97d3cb2efd68310b1aea8a3ac40a64979c8cdae)
2007-10-10r1062: fix typo, found by valgrindStefan Metzmacher1-1/+1
metze (This used to be commit f65cba9047c6a206e5aaade15b157e07fe4c8bd2)
2007-10-10r1025: Rename (across the samr and netlogon pipes, so far)Andrew Bartlett1-27/+27
pwd -> password passwd -> password username -> account_name Also work on consistant structure feild names between these two pipes, and fix up some callers to use samr_Password for the netlogon credential code. Andrew Bartlett (This used to be commit 4e35418c2776f7b79be5b358ffd077754685d1ac)
2007-10-10r1009: Make all users of NT and LM passwords use the samr_Password structure.Andrew Bartlett1-5/+5
This includes the netlogon pipe, for the machine account password change system. Andrew Bartlett (This used to be commit 49d545a82057ee8b60d50aa55e908efe59875150)
2007-10-10r995: - renamed many of our crypto routines to use the industry standardAndrew Tridgell1-9/+9
names rather than our crazy naming scheme. So DES is now called des_crypt() rather than smbhash() - added the code from the solution of the ADS crypto challenge that allows Samba to correctly handle a 128 bit session key in all of the netr_ServerAuthenticateX() varients. A huge thanks to Luke Howard from PADL for solving this one! - restructured the server side rpc authentication to allow for other than NTLMSSP sign and seal. This commit just adds the structure, the next commit will add schannel server side support. - added 128 bit session key support to our client side code, and testing against w2k3 with smbtorture. Works well. (This used to be commit 729b2f41c924a0b435d44a14209e6dacc2304cee)
2007-10-10r963: Tridge, according to ethereal this is an 'Acct Ctrl' field. My tests alsoVolker Lendecke1-1/+1
indicate this although I could not find any consistent pattern. I found this as 'net rpc group list local' in Samba3 sets this to 250 and only gets a fixed, but incomplete list of groups out of W2k3. I tried to correlate the results I got from w2k3 with the LDAP contents of the corresponding entries, but I could not find anything. Ethereal only decodes the lower byte, but to get all it seems necessary to have 0xffff here. If you have time, could you might want to spend some of it decoding the bits for SAMR completeness.... Volker (This used to be commit 74e59c45603a9f897a24e37fc7626cf8ffc81403)
2007-10-10r943: change samba4 to use 'uint8_t' instead of 'unsigned char'Stefan Metzmacher1-2/+2
metze (This used to be commit b5378803fdcb3b3afe7c2932a38828e83470f61a)