summaryrefslogtreecommitdiff
path: root/source4/torture/rpc/samr.c
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r3074: Add in a new 'field present' flag samr.idl for the Account FlagsAndrew Bartlett1-43/+192
field. Add torture test for setting this feild - including all the odd cases (not all the flags 'stick', and not others cannot be removed). Seperate the two 'password change' flags, and test them both in the torture code. Check that the password did change after every password set call. Andrew Bartlett (This used to be commit 3759128bd33b802d5213d50ba25f7c7d11cfe1d7)
2007-10-10r2910: I noticed that the samr torture test was doing its own DOS->UNIXAndrew Tridgell1-10/+1
string conversion. For RPC, all string conversions are supposed to be done by the NDR layer, using string flags set in the IDL. The reason this wasn't working is that I had been too lazy to do the STR_ASCII string types properly at the NDR layer when initially writing ndr_basic.c. This commit fixes the ndr_basic code properly to do all ASCII varients, by re-using the non-ascii code and a "byte_mul" local variable. I have also removed the manual string conversion in the SAMR torture test code. (This used to be commit aad0e7e9d890bb56447f1f933b8f2bb78a3ee269)
2007-10-10r2833: - added a call to SamrQueryGroupMember for every group, and fix theAndrew Tridgell1-1/+25
IDL so this works (the previous IDL was bogus) - changed a hyper to uint64 after looking at output on cascade on sparc (This used to be commit db1ed5675a5271085ea0b89dd634b037ee710178)
2007-10-10r2710: continue with the new style of providing a parent context wheneverAndrew Tridgell1-6/+34
possible to a structure creation routine. This makes for much easier global cleanup. (This used to be commit e14ee428ec357fab76a960387a9820a673786e27)
2007-10-10r2676: add a test of the reference counting logic in the SAMR server into theAndrew Tridgell1-86/+31
RPC-SAMR torture test. This closes the samr connection before working on a open domain handle. The server is supposed to know that the open domain handle still holds a reference to the connection, so the connection remains valid even though it has been closed. (This used to be commit f31e5d56e364ce8ab76fdb20b30e179b458b2ffa)
2007-10-10r2547: Another place to use convert_string_talloc().Andrew Bartlett1-7/+5
Andrew Bartlett (This used to be commit 4904d814c0efd870ac42c790028a8448984e4749)
2007-10-10r2501: The AddMemberToAlias test doesn't need a domain_handle.Tim Potter1-5/+2
(This used to be commit 90a9e754db91647607eef3a2ccb08d3651fca9df)
2007-10-10r2489: Rename account_flags in EnumDomainAliases() to acct_flags.Tim Potter1-1/+1
(This used to be commit a0e571a9ddc01b8e90a93d591aec4b10c9926818)
2007-10-10r2458: Rename policy handle parameters for the SAMR pipe. Parameters nowTim Potter1-114/+114
have the handle type implied by the parameter name. There are four types of handle: connect, domain, user and group handles. The various samr_Connect functions return a connect handle, and the samr_OpenFoo functions return a foo handle. There is one exception - the samr_{Get,Set}Security function can take any type of handle. Fix up all C callers. (This used to be commit 32f0f3154a8eb63de83145cbc8806b8906ccdc3e)
2007-10-10r2273: disable the async samr tests unless -X option is used, as windowsAndrew Tridgell1-0/+5
fails this and it kills the pipe, so we can't run the rest of the test (This used to be commit bdb49f01b75aa5b3a458ee4629e867bee1d03358)
2007-10-10r2107: added a SAMR async test - this one seems to workAndrew Tridgell1-0/+43
(This used to be commit 306eb848654e0cadb0ebe10c29420fc0c30a64c4)
2007-10-10r1758: Move and enhance the add_string_to_array function as per volker job ↵Simo Sorce1-15/+0
on trunk (This used to be commit 606caddeb95382287fa41a5017ca473d0301be6b)
2007-10-10r1646: disable testing of group rename in the RPC-SAMR test, as it leaves theAndrew Tridgell1-0/+6
group in a state where it can't be deleted via samr, which breaks repeated runs of the test. (This used to be commit bcad9efd728983c2d8932ef93eebd3d0c6d4d085)
2007-10-10r1510: add a commented out routine I used to test password change on NT3.Andrew Tridgell1-0/+61
(This used to be commit fb5796b0dccf7cd518db03e6456d986f17e50345)
2007-10-10r1498: (merge from 3.0)Andrew Bartlett1-2/+2
Rework our random number generation system. On systems with /dev/urandom, this avoids a change to secrets.tdb for every fork(). For other systems, we now only re-seed after a fork, and on startup. No need to do it per-operation. This removes the 'need_reseed' parameter from generate_random_buffer(). This also requires that we start the secrets subsystem, as that is where the reseed value is stored, for systems without /dev/urandom. In order to aviod identical streams in forked children, the random state is re-initialised after the fork(), at the same point were we do that to the tdbs. Andrew Bartlett (This used to be commit b97d3cb2efd68310b1aea8a3ac40a64979c8cdae)
2007-10-10r1062: fix typo, found by valgrindStefan Metzmacher1-1/+1
metze (This used to be commit f65cba9047c6a206e5aaade15b157e07fe4c8bd2)
2007-10-10r1025: Rename (across the samr and netlogon pipes, so far)Andrew Bartlett1-27/+27
pwd -> password passwd -> password username -> account_name Also work on consistant structure feild names between these two pipes, and fix up some callers to use samr_Password for the netlogon credential code. Andrew Bartlett (This used to be commit 4e35418c2776f7b79be5b358ffd077754685d1ac)
2007-10-10r1009: Make all users of NT and LM passwords use the samr_Password structure.Andrew Bartlett1-5/+5
This includes the netlogon pipe, for the machine account password change system. Andrew Bartlett (This used to be commit 49d545a82057ee8b60d50aa55e908efe59875150)
2007-10-10r995: - renamed many of our crypto routines to use the industry standardAndrew Tridgell1-9/+9
names rather than our crazy naming scheme. So DES is now called des_crypt() rather than smbhash() - added the code from the solution of the ADS crypto challenge that allows Samba to correctly handle a 128 bit session key in all of the netr_ServerAuthenticateX() varients. A huge thanks to Luke Howard from PADL for solving this one! - restructured the server side rpc authentication to allow for other than NTLMSSP sign and seal. This commit just adds the structure, the next commit will add schannel server side support. - added 128 bit session key support to our client side code, and testing against w2k3 with smbtorture. Works well. (This used to be commit 729b2f41c924a0b435d44a14209e6dacc2304cee)
2007-10-10r963: Tridge, according to ethereal this is an 'Acct Ctrl' field. My tests alsoVolker Lendecke1-1/+1
indicate this although I could not find any consistent pattern. I found this as 'net rpc group list local' in Samba3 sets this to 250 and only gets a fixed, but incomplete list of groups out of W2k3. I tried to correlate the results I got from w2k3 with the LDAP contents of the corresponding entries, but I could not find anything. Ethereal only decodes the lower byte, but to get all it seems necessary to have 0xffff here. If you have time, could you might want to spend some of it decoding the bits for SAMR completeness.... Volker (This used to be commit 74e59c45603a9f897a24e37fc7626cf8ffc81403)
2007-10-10r943: change samba4 to use 'uint8_t' instead of 'unsigned char'Stefan Metzmacher1-2/+2
metze (This used to be commit b5378803fdcb3b3afe7c2932a38828e83470f61a)
2007-10-10r937: - added a simple QuerySecurity implementation in samr serverAndrew Tridgell1-0/+4
- moved some sec desc defines into misc.idl - fixed pw_len field in UserInfo26 - made some pipes available on TCP - added netr_DsrEnumerateDomainTrusts() to netlogon - added templates for remaining netlogon IDL calls (from ethereal) - added a unistr_noterm vs unistr error detector in ndr basic decoder - added torture test for netr_DsrEnumerateDomainTrusts() (This used to be commit ae5a5113fb83640dcb9ae4642c1b9eaf28487956)
2007-10-10r917: - added the start of a LSA server to samba4.Andrew Tridgell1-5/+6
- added start of QueryDomainInfo in samr server "net rpc info" from samba3 now works against a samba4 server. I suspect join will work fairly soon. (This used to be commit 0a2c6a1062d0e364356853001f5f39bdb542f453)
2007-10-10r902: added torture tests for sending rubbish in the domain name field of ↵Andrew Tridgell1-2/+29
GetDomPwInfo (This used to be commit 00096609978e829b5da36040c15afa087e71eaa5)
2007-10-10r890: convert samba4 to use [u]int8_t instead of [u]int8Stefan Metzmacher1-10/+10
metze (This used to be commit 2986c5f08c8f0c26a2ea7b6ce20aae025183109f)
2007-10-10r889: convert samba4 to use [u]int16_t instead of [u]int16Stefan Metzmacher1-17/+17
metze (This used to be commit af6f1f8a01bebbecd99bc8c066519e89966e65e3)
2007-10-10r884: convert samba4 to use [u]int32_t instead of [u]int32Stefan Metzmacher1-31/+31
metze (This used to be commit 0e5517d937a2eb7cf707991d1c7498c1ab456095)
2007-10-10r873: converted samba4 to use real 64 bit integers instead ofAndrew Tridgell1-2/+2
structures. This was suggested by metze recently. I checked on the build farm and all the machines we have support 64 bit ints, and support the LL suffix for 64 bit constants. I suspect some won't support strtoll() and related functions, so we will probably need replacements for those. (This used to be commit 9a9244a1c66654c12abe4379661cba83a73c4c21)
2007-10-10r743: Start on a NETLOGON server in Samba4.Andrew Bartlett1-2/+2
Currently this only authentiates the machine, not real users. As a consequence of running the Samba4 NETLOGON test against Samba4, I found a number of issues in the SAMR server, which I have addressed. There are more templates in the provison.ldif for this reason. I also added some debug to our credentials code, and fixed some bugs in the auth_sam module. The static buffer in generate_random_string() bit me badly, so I removed it in favor of a talloc based system. Andrew Bartlett (This used to be commit 94624e519b66def97758b8a48a01ffe9029176f0)
2007-10-10r623: setUserInfo level 24 (password set) now works in the SAMR server. This ↵Andrew Tridgell1-1/+2
includes all of the password complexity, password history and other password restrictions. (This used to be commit cb070b9084d95cf5178edbef951b75eab62b7220)
2007-10-10r615: Implement samr_OpenGroup, samr_QueryGroupInfo, samr_SetGroupInfo,Volker Lendecke1-0/+4
samr_DeleteDomainGroup. I've added the hidden attribute numMembers that must be maintained by Add/DelGroupMember for the GroupInfoAll query. Volker (This used to be commit 945d7478605c1bd67e4162ebb0635ab7da11faaf)
2007-10-10r613: Fix the RPC-SAMR torture test, for my session_key changes.Andrew Bartlett1-16/+18
Andrew Bartlett (This used to be commit a04b074c049db832f4c02a35d951d40875fce6d1)
2007-10-10r577: extended the LookupNames test to check for correct handling of ↵Andrew Tridgell1-5/+21
unmapped names (This used to be commit e3b31625f476cb1b8a4d5003dee2c574582c9b46)
2007-10-10r457: added some more samr tests to help me work out the right error codesAndrew Tridgell1-1/+27
in our new samr server (This used to be commit 0f2503111498e809237e0155962db55dfde8cbfb)
2007-10-10r420: added nicer names for the field bits in userinfo21Andrew Tridgell1-13/+129
added tests for the level 23 and 25 password change methods (This used to be commit d49f7a6a0d1895de3d654a5b46c6aec3a57fde76)
2007-10-10r389: added a test for set user info level 26 (set password extended)Andrew Tridgell1-1/+56
thanks to Luke Howard for this test (This used to be commit 891653e7d40f581016085e2c32e2802eea7e7ade)
2007-10-10r372: automatically create a fake BDC machine account and delete itAndrew Tridgell1-3/+3
afterwards for the RPC-NETLOGON test. This makes it much simpler to run the test and also means that it doesn't distrurb any existing domain join you might have. (This used to be commit feac996794d5cc16e3612fb2901668a9b1e1d274)
2007-10-10r365: improved the IDL for samr_Connect5()Andrew Tridgell1-10/+10
(This used to be commit 4b4f025504cb5b92c8b119259f1df622cd72ec7c)
2007-10-10r364: finally worked out the ancient samr_ChangePasswordUser() interfaceAndrew Tridgell1-22/+21
yay! (This used to be commit 0221566cf5ff7dc5ce0de9af451b935ed8615f4e)
2007-10-10r362: after setting domain info query it again so we can see what attributes ↵Andrew Tridgell1-0/+8
stick (This used to be commit b2ebaf95b75b050ad02ca967867337cd81faa859)
2007-10-10r336: added a -X command line option to smbtorture to enable dangerous orAndrew Tridgell1-4/+68
possibly destructive tests. Use with care! Added IDL and test code for samr_Shutdown() and samr_SetDsrmPassword() (This used to be commit 84de0b7e58c69e0817b9d475de0895a54cc95927)
2007-10-10r335: added much better handling of servers that die unexpectedly during aAndrew Tridgell1-7/+30
request (a dead socket). I discovered this when testing against Sun's PC-NetLink. cleaned up the naming of some of the samr requests add IDL and test code for samr_QueryGroupMember(), samr_SetMemberAttributesOfGroup() and samr_Shutdown(). (actually, I didn't leave the samr_Shutdown() test in, as its fatal to windows servers due to doing exactly what it says it does). (This used to be commit 925bc2622c105dee4ffff809c6c35cd209a839f8)
2007-10-10r326: tweaks to the RPC-SAMR test code to allow win2003 to pass the test ↵Andrew Tridgell1-9/+59
(for example, not filling in extra fields in level21 setuserinfo) (This used to be commit d06ed158f9aef94159bfc09065ca5ad0c4c99de3)
2007-10-10r325: added IDL and test code for samr_ChangePasswordUser3().Andrew Tridgell1-29/+142
Also added much better handling of random password generation in the password change test code (This used to be commit 67ae0b2a9851c1e77fdaa9f317a83bd54950618f)
2007-10-10r307: added IDL and test code for samr_GetDomPwInfo(), samr_SetUserInfo2(),Andrew Tridgell1-3/+83
samr_GetBootKeyInformation() and samr_Connect3() also added some stub IDL for samr_SetBootKeyInformation() although I don't yet have working test code. This one is tricky, as if you get it wrong then the target system won't boot any more :) (This used to be commit 118b6fc292ba3257511b1b83846582013fb59b23)
2007-10-10r305: - added IDL and test code for samr_RidToSid()Andrew Tridgell1-15/+105
- completed the IDL and test code for the various set user password mechanisms in samr. Three password mechanisms are now working, the UserInfo24 method, the OemChangePasswordUser2() method (which only sets the LM password) and the ChangePasswordUser2() method which sets both the LM and NT passwords. - updated some crypto routines to support the password change tests (This used to be commit 051efa2abf9d1fbbf783df411c02f2714027f813)
2007-10-10r275: added IDL and test code for samr_QueryDisplayInfo3(),Andrew Tridgell1-0/+171
samr_AddMultipleMembersToAlias(), samr_RemoveMultipleMembersFromAlias(), samr_OemChangePasswordUser2(), and samr_ChangePasswordUser2() The password change functions don't actually work yet (but should soon). At this stage I have just completed the IDL for them. Next step is to get the hash verifiers right and the torture test should be able to do password changes. (This used to be commit 849d0d314a2add80f2b2be6b503fea05973f998e)
2007-10-10r268: added IDL and test code for samr_QueryDomainInfo2(),Andrew Tridgell1-0/+152
samr_QueryUserInfo2(), samr_QueryDisplayInfo2() and samr_GetDisplayEnumerationIndex2() (This used to be commit fddda52500d482bde79994c14a0a822a1d305ac3)
2007-10-10r267: added IDL and test code for samr_ChangePasswordUser(),Andrew Tridgell1-28/+209
samr_GetDisplayEnumerationIndex(), samr_TestPrivateFunctionsDomain(), samr_TestPrivateFunctionsUser() and samr_RemoveMemberFromForeignDomain() (This used to be commit 53c66708874f9f8e7868530cd2a780160e2eca01)
2007-10-10r259: added samr_DeleteGroupMember() IDL and test codeAndrew Tridgell1-1/+24
(This used to be commit 747351140b839879abe1a79a005d81ca4b35a658)