sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-11-23 20:23:50 +03:00
Code Activity
12,207 Commits 64 Branches 1,179 Tags
06eb2faebb331e9385f39b27e82e399d34b8b938
Commit Graph

427 Commits

Author SHA1 Message Date
Jelmer Vernooij
7f451cbb8d r21541: Export mgmt, samr and atsvc for use in samba-gtk. 2007-10-10 14:48:55 -05:00
Stefan Metzmacher
8ddfbbcb93 r21538: this looks better... 
metze
 2007-10-10 14:48:54 -05:00
Stefan Metzmacher
5071af332c r21516: - use the same assoc_group_id, for all 3 drsuapi connection 
- use the PFC_CONC_MPX flag for the 3rd connection
- to DsGetNCChanges requests on the 3rd connection with the bind handle
  from the 2nd connection to match w2k3

metze
 2007-10-10 14:48:48 -05:00
Stefan Metzmacher
dc4242c09c r21362: rename: 
"ntPwdHash" => "unicodePwd"
"lmPwdHash" => "dBCSPwd"
"sambaLMPwdHistory" => "lmPwdHistory"
"sambaNTPwdHistory" => "ntPwdHistory"

Note: you need to reprovision after this change!

metze
 2007-10-10 14:48:20 -05:00
Stefan Metzmacher
8711d01ffd r21300: let the caller decide if it wants rid decrypted hashes or not 
metze
 2007-10-10 14:48:05 -05:00
Stefan Metzmacher
91de959173 r21295: pass down the gensec session key to the store_chunk hook 
metze
 2007-10-10 14:48:03 -05:00
Stefan Metzmacher
d399739820 r21293: store the gensec session key for each drsuapi connection 
metze
 2007-10-10 14:48:02 -05:00
Stefan Metzmacher
5065a9b5ff r21292: add become_dc:print = yes option to dump out the drsuapi traffic 
metze
 2007-10-10 14:48:02 -05:00
Andrew Bartlett
9e15a51579 r21255: Add a debugging option to avoid rid decryption in the samsync output. 
Andrew Bartlett
 2007-10-10 14:44:55 -05:00
Andrew Bartlett
d3fbc089f4 r21175: Fix the kerberos keytab update code to handle deletes. 
Fix the join code to know that the ldb layer handles the keytab update.

Andrew Bartlett
 2007-10-10 14:44:42 -05:00
Volker Lendecke
3f41a4b014 r21141: Attempt to fix the build 2007-10-10 14:44:33 -05:00
Andrew Bartlett
4195839d1a r20964: Show the domain name we figured out, rather than a null pointer (in 
some error cases)

Andrew Bartlett
 2007-10-10 14:44:04 -05:00
Stefan Metzmacher
df8e97014b r20714: we can use talloc_asprintf_append() again, because strupper_talloc() 
creates string with the correct memory size without padding zero bytes
at the end

metze
 2007-10-10 14:40:30 -05:00
Stefan Metzmacher
05da114ea8 r20708: fix crash bug! we can't use stack memory for async requests... 
jelmer: please take more care when you fix pidl warnings:-)

metze
 2007-10-10 14:40:29 -05:00
Jelmer Vernooij
1afcf85067 r20676: Add ref pointer to fix warning. 2007-10-10 14:40:19 -05:00
Stefan Metzmacher
1748af20b1 r20570: use talloc_asprintf() instead of talloc_asprintf_append() 
because talloc_asprintf_append() doesn't work like talloc_append_string()
which uses strlen() on the old string instead of (tc->size - 1)

This matter in this case because strlower_talloc() over allocates

tridge: how should we fix this in lib/talloc/?

metze
 2007-10-10 14:37:03 -05:00
Stefan Metzmacher
d47c81923d r20504: we handle the attribute values always as DATA_BLOB's and 
don't need the union with the attribute id as switch anymore

metze
 2007-10-10 14:36:01 -05:00
Stefan Metzmacher
4c2addf2dd r20484: get rid of the special case for DN strings 
metze
 2007-10-10 14:35:59 -05:00
Stefan Metzmacher
13ccd405b5 r20476: get rid of extra case for uint32 values 
metze
 2007-10-10 14:35:57 -05:00
Stefan Metzmacher
b7ab1c0039 r20475: remove special case for GUID values 
metze
 2007-10-10 14:35:56 -05:00
Stefan Metzmacher
c72f5a16b4 r20418: start to get step by step rid of the union for the attribute 
specific attribute values.

start with ntSecurityDescriptor

metze
 2007-10-10 14:30:33 -05:00
Andrew Bartlett
77169958fc r20397: Another user of the DsCrackNames call needs a rename following IDL clarification. 
Andrew Bartlett
 2007-10-10 14:30:22 -05:00
Rafal Szczesniak
f79dcd41e7 r20328: use prereq function instead of local implementation. 
rafal
 2007-10-10 14:29:41 -05:00
Andrew Bartlett
7a7f1a9764 r20294: Without this we don't do the ADS join against Win2k3 SP1 
Andrew Bartlett
 2007-10-10 14:29:33 -05:00
Stefan Metzmacher
aba497f2fd r20293: implement store chunk hook for libnet_BecomeDC() 
metze
 2007-10-10 14:29:33 -05:00
Stefan Metzmacher
5cb5986067 r20292: set ntds_dn_str if DsAddEntry() was successful 
metze
 2007-10-10 14:29:33 -05:00
Stefan Metzmacher
07f1075d46 r20291: implement prepare_db hook of libnet_BecomeDC() 
metze
 2007-10-10 14:29:32 -05:00
Stefan Metzmacher
15157bf5b9 r20285: pass more info to check_options hook and move behavior versions etc. 
to the domain and forest structures

metze
 2007-10-10 14:29:32 -05:00
Stefan Metzmacher
fc9669e2a0 r20283: pass in callbacks to libnet_BecomeDC() from the caller 
and implement the check_options call

metze
 2007-10-10 14:29:31 -05:00
Stefan Metzmacher
9b5116be2e r20282: prepare callback infrastructure to check if the forest/domain 
behaviors and the schema version is what the caller expects.
also a callback prepares the new database and commits chunks
to the partitions

metze
 2007-10-10 14:29:31 -05:00
Stefan Metzmacher
aa720a1531 r20251: I found out that the oid-prefix to uint32-id-prefix mapping is transferred 
in replication replies, but I don't know the exact encoding.

for example the oids are transferred as:

2.5.4			=> uint8_t v[] = { 0x55, 0x04 };
2.5.5			=> uint8_t v[] = { 0x55, 0x05 };
2.5.6			=> uint8_t v[] = { 0x55, 0x06 };
2.5.18			=> uint8_t v[] = { 0x55, 0x12 };
2.5.20			=> uint8_t v[] = { 0x55, 0x14 };
2.5.21			=> uint8_t v[] = { 0x55, 0x15 };
1.2.840.113556.1.2	=> uint8_t v[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x14, 0x01, 0x02 };
1.2.840.113556.1.3	=> uint8_t v[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x14, 0x01, 0x03 };
1.2.840.113556.1.4	=> uint8_t v[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x14, 0x01, 0x04 };
1.2.840.113556.1.5	=> uint8_t v[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x14, 0x01, 0x05 };
1.2.840.113556.1.5.7000	=> uint8_t v[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x14, 0x01, 0x05, 0xb6, 0x58 };
1.2.840.113549.1.9	=> uint8_t v[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x0d, 0x01, 0x09 };
2.16.840.1.113730.3	=> uint8_t v[] = { 0x60, 0x86, 0x48, 0x01, 0x86, 0xf8, 0x42, 0x03 };
2.16.840.1.113730.3.1	=> uint8_t v[] = { 0x60, 0x86, 0x48, 0x01, 0x86, 0xf8, 0x42, 0x03, 0x01 };
2.16.840.1.113730.3.2	=> uint8_t v[] = { 0x60, 0x86, 0x48, 0x01, 0x86, 0xf8, 0x42, 0x03, 0x02 };
0.9.2342.19200300.100.1	=> uint8_t v[] = { 0x09, 0x92, 0x26, 0x89, 0x93, 0xf2, 0x2c, 0x64, 0x01 };
0.9.2342.19200300.100.4	=> uint8_t v[] = { 0x09, 0x92, 0x26, 0x89, 0x93, 0xf2, 0x2c, 0x64, 0x04 };
1.3.6.1.4.1.250.1	=> uint8_t v[] = { 0x2b, 0x06, 0x01, 0x04, 0x01, 0x81, 0x7a, 0x01 };
1.3.6.1.4.1.1466.101.119=> uint8_t v[] = { 0x2b, 0x06, 0x01, 0x04, 0x01, 0x8b, 0x3a, 0x65, 0x77 };

if someone knows how the encoding works, please tell me:-)
I assume some ASN.1 encoding...

metze
 2007-10-10 14:29:27 -05:00
Stefan Metzmacher
c02048f480 r20225: we can't use composite_error() in a _recv() function, as that would 
trigger the caller to call the _recv() function again and will be an endless
loop.

this is just a fix the to prevent this, and use a more usefull error code
than NT_STATUS_UNSUCCESSFUL

I think we should move the checks about valid responses into the function
which receives the the response (here continue_name_found()),
so that the _recv() function only needs to transfer the output vars to the caller
without any logic to analyse the network response.

metze
 2007-10-10 14:29:25 -05:00
Rafal Szczesniak
0eb605cf42 r20222: return status unsuccessful when null pointers are returned 
from lookup call.

rafal
 2007-10-10 14:29:24 -05:00
Stefan Metzmacher
a77e1bd1b4 r20205: remove unused var 
metze
 2007-10-10 14:29:22 -05:00
Stefan Metzmacher
a816c2973a r20204: use symbolic constant 
metze
 2007-10-10 14:29:22 -05:00
Stefan Metzmacher
1f67433914 r20182: make the composite api usage more consistant (only cosmetic change) 
metze
 2007-10-10 14:29:18 -05:00
Rafal Szczesniak
2d046cc0df r20177: return the actual function status code. 
rafal
 2007-10-10 14:29:18 -05:00
Stefan Metzmacher
b9901d5f8c r20166: we have a dom_sid_add_rid() function that adds the rid after allocating 
enough memory for the new sub_auth element.

the old version wrote behind the buffer.

also make the output sid a pointer.

metze
 2007-10-10 14:29:17 -05:00
Rafal Szczesniak
0c37360577 r20162: Always return some error string. 
rafal
 2007-10-10 14:29:16 -05:00
Rafal Szczesniak
9f5f9ee9b4 r20161: Prevent potential segfault in case account is unknown. 
rafal
 2007-10-10 14:29:16 -05:00
Stefan Metzmacher
9c3267e17f r20142: only the DDNS updates are missing for the full libnet_BecomeDC(), 
but that's not needed untill we can support the DsGetNCChanges()
in the server...

metze
 2007-10-10 14:29:14 -05:00
Rafal Szczesniak
0b82b9dba1 r20138: return the proper status for the other functions as well. 
rafal
 2007-10-10 14:29:13 -05:00
Rafal Szczesniak
e635f5aeaf r20137: return the proper status. 
rafal
 2007-10-10 14:29:13 -05:00
Andrew Bartlett
5b32f102af r20113: Update the DRSUAPI CrackNames test to explore a few more cases, and in 
particular to verify more expected results.

Also return more details from the join process.  Now we also return
the machine account's GUID.

Andrew Bartlett
 2007-10-10 14:29:08 -05:00
Stefan Metzmacher
d295239861 r20109: let libnet_BecomeDC() work against w2k servers 
metze
 2007-10-10 14:29:08 -05:00
Stefan Metzmacher
d70140ed07 r20105: remove useless comments 
metze
 2007-10-10 14:29:07 -05:00
Rafal Szczesniak
1f3fd5f854 r20103: Change the returned type of prerequisite checking functions, 
as metze once suggested.

rafal
 2007-10-10 14:29:06 -05:00
Andrew Bartlett
924af98ffa r20102: Do not reference remote_ldb before we initialise it. This should fix 
up many of the build farm failures.

Andrew Bartlett
 2007-10-10 14:29:06 -05:00
Andrew Bartlett
d1b1a4c059 r20099: Add some comments, and correct others. 
Andrew Bartlett
 2007-10-10 14:29:05 -05:00
Stefan Metzmacher
b0ee130892 r20095: make a complete copy of the binding string 
metze
 2007-10-10 14:29:05 -05:00