summaryrefslogtreecommitdiffstats
path: root/source4/rpc_server
Commit message (Collapse)AuthorAgeFilesLines
* s4: Changes the old occurences of "lp_realm" in "lp_dnsdomain" where neededMatthias Dieter Wallnöfer2009-10-143-9/+11
| | | | | | For KERBEROS applications the realm should be upcase (function "lp_realm") but for DNS ones it should be used lowcase (function "lp_dnsdomain"). This patch implements the use of both in the right way.
* s4:dcesrv_samr - add another constantMatthias Dieter Wallnöfer2009-10-131-1/+1
|
* s4:dcesrv_samr - prevent "ldb_modify" on a possibly empty messageMatthias Dieter Wallnöfer2009-10-131-8/+10
| | | | | | In this code part under certain circumstances we can end up with an empty message. Since our new behaviour denies them (like the real AD) we need to bypass them on LDB modify calls.
* s4:dcesrv_samr - Add additional "talloc_free"sMatthias Dieter Wallnöfer2009-10-131-0/+4
|
* s4:dcesrv_samr - CosmeticsMatthias Dieter Wallnöfer2009-10-131-23/+31
| | | | Make more use of constants and add some braces around "if" blocks
* s4-repl: check that a DsGetNCChanges is a continuation, and fix sortingAndrew Tridgell2009-10-132-4/+17
| | | | | | | | | | | | | When we indicate that a getncchanges request is not complete, we set the more_data flag to true in the response. The client usually then asks for the next block of data. If the client decides it wants to skip that replication and do a different replication then we need to make sure that the next call is in fact a continuation of the existing call, and not a new call. This relies on returning the results sorted by uSNChanged, as the client uses the tmp_highest_usn in each result to see if progress is being made.
* s4-drs: make DsBind a bit less verboseAndrew Tridgell2009-10-121-1/+1
|
* s3/s4 - Adapt the IDL changes on various locationsMatthias Dieter Wallnöfer2009-10-081-19/+20
|
* s4-drs: added some debug lines to DsAddEntry()Andrew Tridgell2009-10-061-0/+3
|
* s4-drs: take advantage of system session auth in dsbindAndrew Tridgell2009-10-062-41/+21
| | | | | Now that the bind opens samdb with the right credentials, we no longer need the re-open in updaterefs and getncchanges
* s4-drs: fixed error message for drs_security_level_checkAndrew Tridgell2009-10-061-1/+3
|
* s4-drs: open samdb with system credentials when authorisedAndrew Tridgell2009-10-061-1/+14
| | | | | | When a DC connects to DRS, open the samdb with system session credentials, so that we don't have to re-open it each time on other calls.
* s4: fix various warnings (not "const" related ones)Matthias Dieter Wallnöfer2009-10-021-2/+2
|
* s4/srvsvc: deactivate a "ntvfs_connect" with a wrong parameterMatthias Dieter Wallnöfer2009-10-021-1/+3
| | | | | | In the srvsvc code for s4 (NTVFS module) there exists a call to "ntvfs_connect" which is performed with a totally wrong argument. Since I'm not able to fix this, I commented it out and added a "FIXME" comment.
* s4-samr: fake up a samr_ValidatePassword responseAndrew Tridgell2009-10-021-1/+5
| | | | mdw is working on the correct call to check the password strength
* ds-flags: use the new name DS_DNS_FOREST_ROOTAndrew Tridgell2009-10-021-1/+1
| | | | | Update to use the new DS_DNS_FOREST_ROOT name, which makes it clearer what this bit means (according to MS-ADTS doc)
* s4-drs: removed debug code that replicated a maximum of 10 objects at a timeAndrew Tridgell2009-09-281-2/+1
|
* s4-drsuapi: state variable for getncchangesAndrew Tridgell2009-09-281-0/+1
|
* s4-dsruapi: plugfest updatesAndrew Tridgell2009-09-281-77/+144
| | | | | | | | | | | - always fetch parentGUID from databases, don't rely on parentGUID in attributes - re-fetch nc root mesages to avoid the problem of dual messages for roots - support returning messages a chunk at a time, using max_object_count from request
* s4-drsutil: allow NULL filterAndrew Tridgell2009-09-281-5/+0
|
* rpc_server: Fix warnings.Jelmer Vernooij2009-09-271-0/+2
|
* s4-drs: el may not be a talloc pointerAndrew Tridgell2009-09-241-1/+1
| | | | Use msg->elements for the new element values
* s4-drs: include deleted objects in getncchanges replyAndrew Tridgell2009-09-241-1/+6
| | | | | Even though we don't create deleted objects ourselves yet, we need to pass along deleted objects we receive from other replication partners
* s4: Handle DRSUAPI_DS_REPLICA_NEIGHBOUR_SPECIAL_SECRET_PROCESSING in ↵Anatoliy Atanasov2009-09-233-4/+46
| | | | | | | | | | getncchanges When this flag is specified in the request these attributes are treated as secret: currentValue, dBCSPwd, initialAuthIncoming, initialAuthOutgoing, lmPwdHistory, ntPwdHistory, priorValue, supplementalCredentials, trustAuthIncoming, trustAuthOutgoing, unicodePwd Their value is changed to NULL and the meta_data.originating_change_time to 0
* s4: Handle DRSUAPI_DS_REPLICA_NEIGHBOUR_ASYNC_REP in getncchangesAnatoliy Atanasov2009-09-231-1/+7
| | | | | When this flag is specified in the request we should return for ncRoot only and so scope of search is LDB_SCOPE_BASE.
* s4: Handle DRSUAPI_DS_REPLICA_NEIGHBOUR_FULL_SYNC_PACKET in getncchangesAnatoliy Atanasov2009-09-231-0/+6
| | | | | When this flag is specified in the request we shouldn't use the uptodateness vector in the request.
* s4: Handle DRSUAPI_DS_REPLICA_NEIGHBOUR_CRITICAL_ONLY req in getncchangesAnatoliy Atanasov2009-09-233-10/+15
|
* s4-drs: fill in more guids and SIDs, plus filter rDNAndrew Tridgell2009-09-231-3/+48
| | | | | | In DsGetNCChanges we need to fill in the parentGUID and objectGUID of each object, plus we need to filter out the rDN from the meta data, and always send the instanceType
* s4-drsserver: fixed addition of sort controlAndrew Tridgell2009-09-231-5/+7
|
* s4-netlogon: always set the dNSHostName in GetDomainInfoAndrew Tridgell2009-09-231-3/+7
| | | | This seems to be what w2k8 does
* s4-netlogon: make GetDomainInfo response match w2k8Andrew Tridgell2009-09-231-13/+21
|
* s4-drsserver: sort by DN to give tree orderAndrew Tridgell2009-09-223-8/+29
| | | | | This might help the windows client with ordered requests. Later we need to support the "ancestors" mode flag.
* s4-ldb: added a bunch more debug for DC joinAndrew Tridgell2009-09-221-0/+6
| | | | | These additional debug messages were added to help us track down w2k8->s4 domain join
* s4-rpcserver: added support for shared handlesAndrew Tridgell2009-09-223-6/+49
| | | | | | | | This supports shared RPC handles across connections on all RPC interfaces. It turns out that w2k3 and w2k8 don't actually support this on all pipes. We need to test which pipes we should enable this on.
* s4-lsa: added support for QuerySecurity on LSAAndrew Tridgell2009-09-221-2/+85
| | | | This follows the sd pattern from samba3
* s4-rpcserver: added shared association groupsAndrew Tridgell2009-09-223-34/+111
| | | | | | This patch allows us to share association groups and their rpc handles between connections. This is needed for some DRSUAPI behaviour when recent windows clients connect.
* s4-rpcserver: run all RPC operations in a single taskAndrew Tridgell2009-09-221-1/+8
| | | | | | This will make it much easier to implement shared handles with association groups. It also means we can shared the ldb between RPC connections.
* s4-rpc: remove two unused functionsAndrew Tridgell2009-09-221-32/+3
|
* s4-drs: security checking on DRS needs to default to onAndrew Tridgell2009-09-191-1/+2
|
* s4-repl: need param.h for lp_parm_boolAndrew Tridgell2009-09-191-0/+1
|
* Move replmd_drsuapi_DsReplicaCursor2_compare to a common place.Anatoliy Atanasov2009-09-191-7/+1
|
* Add drs_security_level_check for dcesrv calls security checksAnatoliy Atanasov2009-09-196-20/+36
| | | | | | There is also an option to disable the security check by specifying in the smb.conf file: drs:disable_sec_check = true
* more include minimisationAndrew Tridgell2009-09-1912-41/+0
|
* s4-rpc_server: removed remaining unnecessary #includesAndrew Tridgell2009-09-194-5/+2
|
* s4-rpc: remove some unnecessary #include linesAndrew Tridgell2009-09-194-8/+0
| | | | I should remember to run script/minimal_includes.pl more often
* s4-netlogon: implement dcesrv_netr_DsRAddressToSitenamesExWAndrew Tridgell2009-09-191-2/+24
| | | | | We don't implement sites properly at the moment so we just return Default-First-Site-Name
* s4-server: kill main daemon if a task fails to initialiseAndrew Tridgell2009-09-181-1/+1
| | | | | | When one of our core tasks fails to initialise it can now ask for the server as a whole to die, rather than limping along in a degraded state.
* s4:rpc_server: remove some now unused codeStefan Metzmacher2009-09-182-199/+0
| | | | metze
* s4:rpc_server: export dcesrv_add_ep() so that torture tests can use itStefan Metzmacher2009-09-182-5/+9
| | | | metze
* idl: added DsExecuteKCC IDLAndrew Tridgell2009-09-171-3/+3
|
generated by cgit (git 2.34.1) at 2025-10-03 23:06:18 +0000