summaryrefslogtreecommitdiffstats
path: root/libcli/security
Commit message (Collapse)AuthorAgeFilesLines
...
* s4: Remove the old perl/m4/make/mk-based build system.Jelmer Vernooij2010-10-311-5/+0
| | | | | | | | The new waf-based build system now has all the same functionality, and the old build system has been broken for quite some time. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sun Oct 31 02:01:44 UTC 2010 on sn-devel-104
* waf: Remove lib prefix from libraries manually.Jelmer Vernooij2010-10-261-1/+1
|
* s4: Drop duplicate 'lib' prefix for private libraries.Jelmer Vernooij2010-10-261-1/+1
|
* libcli/security Remove unused sec_acl_equal()Andrew Bartlett2010-10-242-47/+0
| | | | | | | | | | | This was orphaned by changing sec_desc_equal() to the stricter security_descriptor_equal() by f4195183a47b0e7c8bc9644d62b123f7880f3fcd in 2009. (The difference here was that sec_acl_equal allowed for equivilent ordering. I've checked the callers, and this function is only used to skip actual ACL sets, or to reference a cache, so this seems Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Oct 24 22:21:23 UTC 2010 on sn-devel-104
* s4: Rename LIBSECURITY{_SESSION,} to libsecurity{_session,}Jelmer Vernooij2010-10-241-1/+1
|
* create_descriptor.c - fix commentMatthias Dieter Wallnöfer2010-10-231-1/+1
| | | | | | | The location in MS-DTYPE changed. Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Oct 23 21:33:46 UTC 2010 on sn-devel-104
* Fix const warning. Allocate off NULL as we always talloc_free().Jeremy Allison2010-10-221-1/+1
|
* libcli: LIBSECURITY depends on NDR_SECURITYAndrew Tridgell2010-10-211-1/+1
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* libcli: make the LIBSECURITY subsystem into a private libraryAndrew Tridgell2010-10-211-4/+5
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* Now we have SeSystemSecurity, remove the source3-only #ifdef.Jeremy Allison2010-10-211-2/+0
| | | | | | | Jeremy. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Oct 21 01:35:00 UTC 2010 on sn-devel-104
* Add code to implement SeSecurityPrivilege in net rpc rights, and in theJeremy Allison2010-10-211-6/+3
| | | | | | | | | open and get/set NT security descriptor code. Jeremy. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Oct 21 00:15:57 UTC 2010 on sn-devel-104
* libcli/security/access_check.c - fix a memory leakMatthias Dieter Wallnöfer2010-10-201-7/+12
|
* Fix shadow warning for "access" variable.Jeremy Allison2010-10-191-3/+3
| | | | | Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Oct 19 22:53:38 UTC 2010 on sn-devel-104
* security: ensure the merge of libcli/security doesn't change s3 behaviourAndrew Tridgell2010-10-141-0/+5
| | | | | | | | | | | | | Jeremy, you put a #if 0 around this logic in this commit: 8344e945 (Jeremy Allison 2008-10-31 10:51:45 -0700 181) is this still needed? Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Oct 14 03:16:41 UTC 2010 on sn-devel-104
* libcli/security Use static SIDs rather than parsing from stringsAndrew Bartlett2010-10-142-5/+6
| | | | | | | | This should make the security_token_is_*() calls a little faster. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/auth Merge source4/libcli/security and util_sid.c into the common codeAndrew Bartlett2010-10-1410-9/+1139
| | | | | | | | | This should ensure we only have one copy of these core functions in the tree. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Define traditional constants in terms of IDL macrosAndrew Bartlett2010-10-141-0/+64
| | | | | | | | | | | The source3/ code uses these constants in a lot of places, and it will take time and care to rename them, if that is desired. Linking the macros here will at least allow common code to use the IDL based macros, and preserve a documentary link between the constants (other than just their value) Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Move source3/lib/util_seaccess.c into the common codeAndrew Bartlett2010-10-143-0/+306
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Provide a common, top level libcli/security/security.hAndrew Bartlett2010-10-125-7/+52
| | | | | | | | | | | | | | This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
* libcli/security Add debug class to security_token_debug() et alAndrew Bartlett2010-10-124-16/+18
| | | | | | This will allow it to replace functions in source3 that use debug classes. Andrew Bartlett
* libcli/security Move most of security_token.c to common code.Andrew Bartlett2010-10-123-1/+203
| | | | | | The source4-specific session_info functions have been left in session.c Andrew Bartlett
* libsecurity-common: Add missing dependency on libndr.Jelmer Vernooij2010-10-111-1/+1
|
* Add some const. Needed for my SD work.Jeremy Allison2010-10-082-14/+14
| | | | Jeremy
* libcli: add dom_sid_compare_domain()Günther Deschner2010-09-202-0/+20
| | | | Guenther
* Fix string_to_sid() to allow non '\0' termination of the string - allowsJeremy Allison2010-09-141-11/+6
| | | | | | string_to_sid() to be used in formatted strings like FOO/S-1-5-XXXX-YYYY/BAR. Jeremy.
* libcli/security Use sid_append_rid() in dom_sid_append_rid()Andrew Bartlett2010-09-141-5/+5
| | | | | | | This ensures that the maximum number of sub-authorities is respected, otherwise we may run off the end of the array. Andrew Bartlett
* libcli/security Merge source3/ string_to_sid() to common codeAndrew Bartlett2010-09-141-37/+92
| | | | | | | | The source3 code repsects the limit of a maximum of 15 subauths, while the source4 code does not, creating a security issue as we parse string-form SIDs from clients. Andrew Bartlett
* libcli/privileges Fix commentAndrew Bartlett2010-09-111-1/+1
|
* s4-privs Seperate rights and privilegesAndrew Bartlett2010-09-112-14/+60
| | | | | | | | | These are related, but slightly different concepts. The biggest difference is that rights are not enumerated as a system-wide list. This moves the rights to security.idl due to dependencies. Andrew Bartlett
* libcli/security Remove unused SE_NONE defineAndrew Bartlett2010-09-111-1/+0
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Move 'private' privileges functions to another headerAndrew Bartlett2010-09-113-24/+42
| | | | | | | | | These functions work on the bitmap, and are only exposed because the source3/ privileges storage uses the bitmap in account_policy.tdb Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Remove 'always true' return from se_priv_put_all_privilegesAndrew Bartlett2010-09-112-3/+2
| | | | | | Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* privileges: privilege luids are not all below 64Andrew Tridgell2010-09-111-3/+0
| | | | | | the ones brought across from s3 have higher values Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* libcli/security Make sec_privilege_from_index() return SEC_PRIV_INVALID on ↵Andrew Bartlett2010-09-111-1/+1
| | | | | | | | | | failure This is clearer and more consistent than using a magic -1 return Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Remove unused declarations from privileges.hAndrew Bartlett2010-09-111-51/+1
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Expose sec_privilege_mask()Andrew Bartlett2010-09-112-1/+6
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security make sec_privilege_id() return SEC_PRIV_INVALID on failure.Andrew Bartlett2010-09-111-1/+1
| | | | | | Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Remove unused functions and constants.Andrew Bartlett2010-09-112-242/+14
| | | | | | | | All the callers to these functions have been removed or reworked. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Rename all privilege bitmaps constantsAndrew Bartlett2010-09-111-28/+28
| | | | | | | | | The idea here to to make it very clear how they differ from the enumerated LUID values. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Remove luid_to_se_priv() and luid_to_privilege_name()Andrew Bartlett2010-09-111-43/+4
| | | | | | | | These functions duplicate other functions in the merged code. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Improve dump of privileges: Just walk the tableAndrew Bartlett2010-09-111-5/+4
| | | | | | | | | This removes some logic recently added that was just too smart - it is easier to just walk the table and do a bit match here. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-privs Remove pointer indirection from se_priv_to_privilege_set()Andrew Bartlett2010-09-112-3/+3
| | | | | | Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Don't export privs[] as a global variableAndrew Bartlett2010-09-112-41/+27
| | | | | | | | | | | | Instead, provide access functions for the LSA and net sam callers for the information they need. They still only enumerate the first 8 privileges that have traditionally been exposed. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Merge privilege lists from source3 and source4Andrew Bartlett2010-09-111-169/+126
| | | | | | | | | The LSA enumeration in source3 will not show the new privileges, but otherwise, they are now in common, and can be set by name. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Return number of entries in the old source3 listAndrew Bartlett2010-09-111-3/+4
| | | | | | | | | This ensures there isn't a behaviour change when the source3 list is combined with the longer source4 list. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/privileges Simplify get_privilege_luid() to return just the enumAndrew Bartlett2010-09-112-9/+4
| | | | | | | | | As Samba only deals with the lower 32 bits of the LUID, just return those and let the LSA layer deal with the upper 0 bits. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Don't memcpy a uint64_t value, just assign it.Andrew Bartlett2010-09-111-1/+1
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Use ARRAY_SIZE() consistantly.Andrew Bartlett2010-09-111-15/+16
| | | | | | | | | This avoids the use of SE_END, and has all callers walking the array using the same termination condition. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Fix and clarify privilege manipulation function commentsAndrew Bartlett2010-09-111-9/+9
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Make the two privileges tables share a common struct definitionAndrew Bartlett2010-09-112-27/+22
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
generated by cgit (git 2.34.1) at 2025-09-04 16:58:47 +0000