summaryrefslogtreecommitdiff
path: root/librpc
AgeCommit message (Collapse)AuthorFilesLines
2015-01-12CVE-2014-8143:dsdb-samldb: Check for extended access rights before we allow ↵Andrew Bartlett1-3/+10
changes to userAccountControl This requires an additional control to be used in the LSA server to add domain trust account objects. Bug: https://bugzilla.samba.org/show_bug.cgi?id=10993 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2015-01-11librpc/ndr_drsuapi: Allow ndrdump to dump dsinfo52 blobsMatthieu Patou1-0/+34
Change-Id: I6968b25c67587296b928b2193a9d48093c69c01a Signed-off-by: Matthieu Patou <mat@matws.net> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> (cherry picked from commit 1ac96a416d7d6db2476f56129166fd9e018e7306) The last 6 patches address BUG: https://bugzilla.samba.org/show_bug.cgi?id=11006 'domain join' fails - 'drsuapi.DsBindInfoFallBack' has no attribute 'supported_extensions'.
2015-01-11idl:drsuapi: Manage all possible lengths of drsuapi_DsBindInfoSamuel Cabrero1-0/+21
Signed-off-by: Samuel Cabrero <scabrero@zentyal.com> Reviewed-by: Kamen Mazdrashki <kamenim@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Kamen Mazdrashki <kamenim@samba.org> (cherry picked from commit d747372d28273542298f86530e715e8faaf907f2)
2015-01-11librpc-idl: change the drsuapi_DsBindInfoCtr so that it match what is on the ↵Matthieu Patou2-9/+204
wire both in NDR32 and NDR64. Previous implementation had a problem with NDR64 with uint32 and uint3264 being in the wrong order Signed-off-by: Matthieu Patou <mat@matws.net> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Wed Oct 30 10:16:02 CET 2013 on sn-devel-104 (cherry picked from commit 8dc931bafca00c1c61a4366ffb6cfa72a98bb412)
2015-01-11librpc-idl: replace int32 by uint32 as the values are always > 0Stefan Metzmacher1-2/+2
Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> (cherry picked from commit 1e2e421632c275f8cf7529935f72ef3639ddea14)
2015-01-11librpc-idl: replace int32 by the enumeration as it's the type that we use in ↵Matthieu Patou1-10/+10
union's switch drsuapi_DsGetDCInfoCtrLevels Signed-off-by: Matthieu Patou <mat@matws.net> Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> (cherry picked from commit 568bf16dfadb4bd3003ed18b19098a3d1473f2fe)
2015-01-11drsuapi.idl: change the range for attribute values to 26214400 bytes.Stefan Metzmacher1-1/+1
This matches the IDL from [MS-DRSR]. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Matthieu Patou <mat@matws.net> (cherry picked from commit 51d8eba8417c58c2ade30d58a838441008209542)
2014-09-01security.idl: add SMB_SUPPORTED_SECINFO_FLAGSStefan Metzmacher1-0/+18
A SMB server should only care about specific SECINFO flags and ignore others e.g. SECINFO_PROTECTED_DACL. Bug: https://bugzilla.samba.org/show_bug.cgi?id=10773 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2014-04-03lsa.idl: define lsa.ForestTrustCollisionInfo and ForestTrustCollisionRecord ↵Alexander Bokovoy1-2/+2
as public structs For Python bindings PIDL wants the struct to be defined as public if we want to use __ndr_print/pack/unpack. Define the [public] attribute to ForestTrustCollisionInfo/Record to allow easier debugging when there is collision in establishing a trust. This change does not affect C code as NDR functions are always generated, only not exposed in Python bindings. https://bugzilla.samba.org/show_bug.cgi?id=10504 Signed-off-by: Alexander Bokovoy <ab@samba.org> Reviewed-by: Jelmer Vernooij <jelmer@samba.org> Autobuild-User(master): Alexander Bokovoy <ab@samba.org> Autobuild-Date(master): Mon Mar 24 12:44:50 CET 2014 on sn-devel-104 (cherry picked from commit 59767911bded48388c27d5f9cd2ff1346a1c01a6) Autobuild-User(v4-1-test): Karolin Seeger <kseeger@samba.org> Autobuild-Date(v4-1-test): Thu Apr 3 14:37:06 CEST 2014 on sn-devel-104
2014-02-21librpc/nbt: increase MAX_COMPONENTS limit for nbt_names.Günther Deschner1-1/+1
domains with more then 10 subdomains are not so uncommon. https://bugzilla.samba.org/show_bug.cgi?id=10439 Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Günther Deschner <gd@samba.org> Autobuild-Date(master): Thu Feb 13 16:30:50 CET 2014 on sn-devel-104 (cherry picked from commit 4e05bad0d18e351cb2a2db74860e77adea727c79) Signed-off-by: Andreas Schneider <asn@samba.org> Autobuild-User(v4-1-test): Karolin Seeger <kseeger@samba.org> Autobuild-Date(v4-1-test): Fri Feb 21 13:19:27 CET 2014 on sn-devel-104
2013-12-05CVE-2013-4408:librpc: check for invalid frag_len within ↵Stefan Metzmacher1-0/+9
dcerpc_read_ncacn_packet_next_vector() We should do this explicit instead of relying on tstream_readv_pdu_ask_for_next_vector() to catch the overflow. Bug: https://bugzilla.samba.org/show_bug.cgi?id=10185 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-12-05CVE-2013-4408:librpc: check for invalid frag_len within ↵Stefan Metzmacher1-0/+5
dcerpc_read_ncacn_packet_done() Bug: https://bugzilla.samba.org/show_bug.cgi?id=10185 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-10-07Revert "Support UPN_DNS_INFO in the PAC"Stefan Metzmacher1-9/+7
This reverts commit a6be8a97f705247c1b1cbb0595887d8924740a71. We fail (often) to parse a krb5pac type 12 buffer due to the incomplete change which came in via a6be8a97f705247c1b1cbb0595887d8924740a71. This change came into master and has only been released in RCs so no regression to published 4.0.x releases. We should revert this for 4.1 for now until we can make it work in all cases (see work on this in https://git.samba.org/?p=gd/samba/.git;a=shortlog;h=refs/heads/master-krb5pac_type12). Without this revert the entire PAC parsing may fail which can effect serious implications (krb5 smb session setup not working). Bug: https://bugzilla.samba.org/show_bug.cgi?id=10178 Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Thu Oct 3 17:08:46 CEST 2013 on sn-devel-104 (cherry picked from commit 8b51eabf319689d45ce1f8492c4372b49eecb794)
2013-08-05security.idl: add new security_secinfo bitsGregor Beck1-0/+3
[MS-DTYP].pdf 2.4.7 Signed-off-by: Gregor Beck <gbeck@sernet.de>
2013-06-14librpc: Shorten dcerpc_binding_handle_call a bitVolker Lendecke1-13/+6
... saves 200 bytes on 64 bit Linux with -O3 Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Fri Jun 14 22:27:43 CEST 2013 on sn-devel-104
2013-06-14librpc: Use tevent_req_poll_ntstatusVolker Lendecke1-2/+1
Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-06-12Fix bug #9932 - Currently the maximum number of aces in an SD is limited to ↵Partha Sarathi1-1/+1
1000, but Microsoft supports around 1800. Issue description: I was trying to add maximum number of aces on Microsoft share, where I was able to add nearly 1800 aces on a file/folder SD. But Samba does not support adding 1800 aces to SD instead it limited to 1000. Expected behavior: Ideally SAMBA should also support as like Windows to compare with Windows standard. Set to 2000 until we add EA limits in the server. Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Jun 12 02:52:36 CEST 2013 on sn-devel-104
2013-06-11librpc: Fix some "ignored asprint result" warningsVolker Lendecke1-18/+9
While there, it removes some alloc/free calls Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-05-28build: Remove unused build_idl.shAndrew Bartlett1-67/+0
Reviewed-by: Jelmer Vernooij <jelmer@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-26idl: Add DNS HINFO record supportKai Blin1-0/+8
Not sure if we need this, bug samba.org specifies it, so this can cause ANY queries against samba.org to fail. Signed-off-by: Kai Blin <kai@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Sun May 26 20:05:38 CEST 2013 on sn-devel-104
2013-05-26idl: Add DNS RP record support as per RFC 1183Kai Blin1-0/+7
Not sure if we need this, but samba.org specifies it, so this could cause ANY queries against samba.org to fail. Signed-off-by: Kai Blin <kai@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
2013-05-26idl: Add support for parsing OPT recordsKai Blin1-0/+8
Signed-off-by: Kai Blin <kai@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
2013-05-20spoolss: fill in IDL for spoolss_DeletePrintProcessor.Günther Deschner1-1/+4
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20s4-torture: add ndr test for spoolss_RpcSetJobNamedProperty.Günther Deschner1-1/+1
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20s4-torture: add ndr test for spoolss_GetCorePrinterDrivers.Günther Deschner1-1/+1
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20spoolss: add spoolss_MonitorContainer IDL.Günther Deschner1-0/+21
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20spoolss: make RPC_PrintNamedProperty publicGünther Deschner1-2/+2
Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20spoolss: fill in IDL for JobNamedProperty calls.Günther Deschner1-4/+56
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20spoolss: make more container objects public for iremotewinspool.Günther Deschner1-13/+13
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20spoolss: add idl for spoolss_RpcSendRecvBidiData.Günther Deschner1-1/+70
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20spoolss: add [ms_union] to spoolss.idl where appropriate.Günther Deschner1-9/+9
Normally we would activate [ms_union] for the entire interface but given the fact we use this IDL file also for custom-marshalled structures we would generate union arm alignment also for the custom-marshalled unions where they are inappropriate. Thus, only enable [ms_union] only for unions that are part of the MS-RPRN IDL. Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20spoolss: fix string types in spoolss_JTEXP.Günther Deschner1-3/+3
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-20spoolss: Fix two size elements in the devmode private spoolss_JTEXP struct.Günther Deschner1-2/+2
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org>
2013-05-18librpc: Add NDR_PRINT_DEBUGC to ndr print to a debug classKai Blin4-1/+302
Signed-off-by: Kai Blin <kai@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2013-05-09librpc: Add special owner/group/other constants to nfs4acl.idlAndrew Bartlett1-0/+4
As per nfs4acl-0.9/lib/nfs4acl.c (the package where this structure is originally defined) Andrew Bartlett Reviewed-by: Jeremy Allison <jra@samba.org>
2013-05-09build: Move nfs4acl to the top levelAndrew Bartlett3-1/+48
This is to create IDL-stored NFSv4 ACLs, just as we use for posix ACLs to permit better testing. Andrew Bartlett Reviewed-by: Jeremy Allison <jra@samba.org>
2013-03-15ndr: Pass down string_flags in ndr_pull_ntprinting_printer().Andreas Schneider1-0/+2
Reviewed-by: Günther Deschner <gd@samba.org>
2013-03-15idl: Add flags for strings in ntprinting idl.Andreas Schneider1-27/+42
Reviewed-by: Günther Deschner <gd@samba.org>
2013-03-15ndr: Add ndr_ntprinting_string_flags() function.Andreas Schneider2-0/+17
It defaults to utf8string. Reviewed-by: Günther Deschner <gd@samba.org>
2013-02-22ndrdump: Don't leak plugin handle on error.Andreas Schneider1-0/+1
Reviewed-by: Alexander Bokovoy <ab@samba.org>
2013-02-22ndrdump: Check return value of ndr_pull_init_blob().Andreas Schneider1-0/+12
Reviewed-by: Alexander Bokovoy <ab@samba.org>
2013-02-22librpc: Add NULL check for ndr functions for epm bindings.Andreas Schneider1-1/+6
Reviewed-by: Alexander Bokovoy <ab@samba.org>
2013-02-22ndr: Comparing an array to null is always true.Andreas Schneider1-1/+1
Reviewed-by: Alexander Bokovoy <ab@samba.org>
2013-02-19librpc/rpc: make use of samba_tevent_context_init()Stefan Metzmacher1-2/+2
Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
2013-02-04idl: Provide a common wrapper for the data to hash for a non-POSIX ACLAndrew Bartlett1-0/+12
Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Christian Ambach <ambi@samba.org>
2013-02-01krb5pac: make sure to correctly store the highest relative pointer offset.Günther Deschner1-0/+3
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Günther Deschner <gd@samba.org> Autobuild-Date(master): Fri Feb 1 21:19:28 CET 2013 on sn-devel-104
2013-02-01ndrdump: make sure to deal with the highest relative pointer offset correctly.Günther Deschner1-6/+19
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-01-24spoolss: add UNIVERSAL_FONT_ID_ctr for debugging.Günther Deschner1-0/+5
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2013-01-24spoolss: Add UNIVERSAL_FONT_ID.Günther Deschner1-0/+6
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
2013-01-24spoolss: fill in spoolss_PlayGDIScriptOnPrinterIC IDL.Günther Deschner1-1/+7
Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-22 08:20:27 +0000