summaryrefslogtreecommitdiff
path: root/source4/torture/rpc/samsync.c
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r4683: fix the buildStefan Metzmacher1-1/+1
metze (This used to be commit b020dbec89a85619ae3ee12f4dd0e3828d30ba04)
2007-10-10r4682: A LDB-based secrets implementation in Samba4.Andrew Bartlett1-3/+9
This uses LDB (a local secrets.ldb and the global samdb) to fill out the secrets from an LSA perspective. Some small changes to come, but the bulk of the work is now done. A re-provision is required after this change. Andrew Bartlett (This used to be commit ded33033521a6a1c7ea80758c5c5aeeebb182a51)
2007-10-10r4673: Fix the IDL for the QuerySecret LSA call.Andrew Bartlett1-6/+65
This call uses a new IDL type, NTTIME_hyper. This is 8-byte aligned, as the name suggests. Expand the QuerySecret LSA calls in RPC-SAMLOGON and RPC-LSA, to validate the behaviour of times, and of the old secrets. Thanks to tridge for spotting the use of HYPER! Andrew Bartlett (This used to be commit 1fed79cb0f2ae7940639d08ef99576559d4cd06e)
2007-10-10r4616: the first phase in the addition of proper support forAndrew Tridgell1-2/+3
dcerpc_alter_context and multiple context_ids in the dcerpc client library. This stage does the following: - split "struct dcerpc_pipe" into two parts, the main part being "struct dcerpc_connection", which contains all the parts not dependent on the context, and "struct dcerpc_pipe" which has the context dependent part. This is similar to the layering in libcli_*() for SMB - disable the current dcerpc_alter code. I've used a #warning until i get the 2nd phase finished. I don't know how portable #warning is, but it won't be long before I add full alter context support anyway, so it won't last long - cleanup the allocation of dcerpc_pipe structures. The previous code was quite awkward. (This used to be commit 4004c69937be7e5dae56f9567ca607f982d395d3)
2007-10-10r4591: - converted the other _p talloc functions to not need _pAndrew Tridgell1-1/+1
- added #if TALLOC_DEPRECATED around the _p functions - fixes the code that broke from the above while doing this I fixed quite a number of places that were incorrectly using the non type-safe talloc functions to use the type safe ones. Some were even doing multiplies for array allocation, which is potentially unsafe. (This used to be commit 6e7754abd0c225527fb38363996a6e241b87b37e)
2007-10-10r4590: Make RPC-SAMSYNC pass againt Win2k3.Andrew Bartlett1-4/+9
Andrew Bartlett (This used to be commit 7bb00a80ac55252b8c05b33fd576b8606470e9be)
2007-10-10r4549: got rid of a lot more uses of plain talloc(), instead usingAndrew Tridgell1-2/+2
talloc_size() or talloc_array_p() where appropriate. also fixed a memory leak in pvfs_copy_file() (failed to free a memory context) (This used to be commit 89b74b53546e1570b11b3702f40bee58aed8c503)
2007-10-10r4532: - rename bitmap -> bitsStefan Metzmacher1-1/+1
the next commit is support for typedef bitmap {...}; in pidl metze (This used to be commit bd06a85cb747aea29a400050cb9d25a3240ef1cc)
2007-10-10r4035: more effort on consistent naming of the access mask bits.Andrew Tridgell1-9/+9
This removes the duplicate named SEC_RIGHTS_MAXIMUM_ALLOWED and SEC_RIGHTS_FULL_CONTROL, which are just other names for SEC_FLAG_MAXIMUM_ALLOWED and SEC_RIGHTS_FILE_ALL. The latter names match the new naming conventions in security.idl Also added names for the generic->specific mappings for files are directories (This used to be commit 17a4e0b3aca227b40957ed1e0c57e498debc6ddf)
2007-10-10r4003: run successful against a nt4 sp6 pdc with one nt4 sp6 trust and a ↵Stefan Metzmacher1-6/+19
w2k3 trust metze (This used to be commit 5101cd51a24fdcda8dd8fc4da446782948290f9b)
2007-10-10r4002: NT 4.0 sp6a can't do schannel 128Stefan Metzmacher1-2/+2
metze (This used to be commit c04a77ed6945db0292434fb5461a884708a9ebf2)
2007-10-10r3921: Cross-test SIDs in RPC-SAMSYNC, fix the build.Andrew Bartlett1-4/+14
Andrew Bartlett (This used to be commit 49c794a6b215f81fd0dba0e7f6812c647b3d91c7)
2007-10-10r3917: A few more LSA RPCs found in my wanderings (for trusted domains, theseAndrew Bartlett1-2/+2
seem to be 'shortcut' RPCs, that just avoid an open/query pair). Rename a few others to give us a slightly sensible pattern. Andrew Bartlett (This used to be commit d6a7ab57e74ab89dd163d5f9f5f901e586b0aad4)
2007-10-10r3909: Fix cross-reference test for trusted domains.Andrew Bartlett1-4/+4
Andrew Bartlett (This used to be commit f2c86e619440c715499a28da5bfe22272458f0af)
2007-10-10r3907: * Rename lsa_Name to lsa_StringAndrew Bartlett1-2/+20
* Add new IDL to LSA, to query information about trusted domains (for cross-check with SamSync). Andrew Bartlett (This used to be commit 174c0778421b5154ff2ba809688ea6ef38a1478b)
2007-10-10r3905: (oops, missing file: samsync.c)Andrew Bartlett1-32/+207
* Add new LSA calls to open trusted domains * Add new tests for ACCOUNTs in SamSync * Clean up names in NETLOGON and LSA * Verify Security Descriptors against LSA, as well as SamR Andrew Bartlett (This used to be commit ed838beddb3cb7b0015313a310303f831ed4f11b)
2007-10-10r3885: Add security descriptor comparison to our RPC-SAMSYNC test. We nowAndrew Bartlett1-0/+46
verify that the security descriptor found in the SamSync is the same as what is available over SAMR. Unfortunately, the administrator seems unable to retrieve the SACL on the security descriptor, so I've added a new function to compare with a mask. Andrew Bartlett (This used to be commit 39ae5e1dac31a22086be50fb23261e02be877f3f)
2007-10-10r3810: create a LIB_SECURITY subsystemStefan Metzmacher1-1/+1
- move dom_sid, security_descriptor, security_* funtions to one place and rename some of them metze (This used to be commit b620bdd672cfdf0e009492e648b0709e6b6d8596)
2007-10-10r3808: Put these in the same order as the IDL, to make it easier to spot ↵Andrew Bartlett1-8/+8
what's unimplemetned (tests of the group members) Andrew Bartlett (This used to be commit 3b81305e2b7ee3e6acabcd8b0e9ed121d4b08840)
2007-10-10r3807: Cross-check the basic attributes for groups and aliases in RPC-SAMSYNC.Andrew Bartlett1-6/+111
Andrew Bartlett (This used to be commit 90398fda41dd15480899e3628df186eb02fdc139)
2007-10-10r3805: Fix the LSA portions of the RPC-SAMSYNC test - I was not using the LSAAndrew Bartlett1-3/+1
secrets interface correctly. (New interface added). Andrew Bartlett (This used to be commit 994ac7f031e2b2d528595a4a0a446d92074d6ecf)
2007-10-10r3804: Add more comparison tests in RPC-SAMSYNC.Andrew Bartlett1-34/+220
This compares values for the domain and for secrets. We still have some problems we need to sort out for secrets. Also rename a number of structures in samr.idl and netlogon.idl, to better express their consistancy. Andrew Bartlett (This used to be commit 3f52fa3a42b030c9aef21c8bd88aad87a0aae078)
2007-10-10r3725: The new RPC-SAMSYNC test, complete with SAMR comparisons. This isAndrew Bartlett1-136/+372
certainly not complete, we need to verify all incoming data, not just accounts. This needs to be exercised against some 'intersting' users, but for now it shows that the IDL is already very accurate, particularly after the previous commits cleanups of names. Also commit the changes to keep RPC-LOGIN building. Andrew Bartlett (This used to be commit 87ec6834bc75012527454abc0e854b1cf2120088)
2007-10-10r3716: Improvements in the RPC-SAMSYNC tests:Andrew Bartlett1-7/+162
We now (for the first time) start to parse the 'user sensitive info' field, which reveals the user's NT and LM passwords from Win2k3. Using this, the 'validate samsync against netlogon' portion of the tests works for accounts. Trusted domains and secrets are now retreived, but like users, require further cross-validation work. Andrew Bartlett (This used to be commit c1d3794cad8b001661b48ecb05df5c38a69be92c)
2007-10-10r3687: Gaah - I forgot to add the new file for the RPC-SAMSYNC test...Andrew Bartlett1-0/+423
See -r 3686 Andrew Bartlett (This used to be commit ab12134286267299c0bf60d03407429bb7de593f)