sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-02-01 05:47:28 +03:00
Code
67,312 Commits 60 Branches 1,146 Tags
Commit Graph

24502 Commits

Author SHA1 Message Date
Jelmer Vernooij
b4a5ece84a ldb: Fix path to alternative buildtools. 2010-09-28 09:16:03 +02:00
Jelmer Vernooij
0688c5b2f1 samba4: Don't update Makefile/configure from autogen.sh. 2010-09-28 09:12:42 +02:00
Jelmer Vernooij
63928c82c1 ldb/tevent: Fix detection of waf paths. 2010-09-28 09:12:41 +02:00
Jelmer Vernooij
85443e0850 ldb: Update autogen-waf.sh to no longer overwrite existing files. 2010-09-28 09:12:40 +02:00
Jelmer Vernooij
72a41cc820 ldb: Remove samba-specific targets from Makefile. 2010-09-28 09:12:40 +02:00
Jelmer Vernooij
78b4b21b40 ldb: Bump version because of addition of ldb_req_location. 2010-09-28 09:12:40 +02:00
Andrew Tridgell
c12f1a1e91 s4-selftest: added a --fail-immediately option to s4 test 
this can be used to force an immediate test failure on the first
failed test case. You can also use:
 
  make test FAIL_IMMEDIATELY=1
 2010-09-28 09:12:39 +02:00
Andrew Tridgell
c7f6ab890e s4-provision: fixed the authority response for our SOA record 
some clients rely on this being the hostname, not the domain

Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Tue Sep 28 06:39:19 UTC 2010 on sn-devel-104
 2010-09-28 06:39:19 +00:00
Andrew Tridgell
0bbbfa04f6 s4-dns: implemented RODC DNS update in dns update task 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-27 22:55:05 -07:00
Andrew Tridgell
c4d2b6fbc2 s4-netlogon: added RODC DNS update call fwded to dnsupdate task 
when we get a netlogon RODC DNS update, we send it to the dnsupdate
task
 2010-09-27 22:55:05 -07:00
Andrew Tridgell
6237d56027 s4-dns: added --update-list option to samba_dnsupdate 
this allows us to use it for RODC netlogon updates
 2010-09-27 22:55:05 -07:00
Andrew Tridgell
bc47af50eb s4-kdc: added ifdef guards in kdc.h 
this prevents too much recursion in the compiler preprocessor
 2010-09-27 22:55:04 -07:00
Andrew Tridgell
1587b46fa0 s4-ldb: removed an unused variable 2010-09-27 22:55:04 -07:00
Andrew Tridgell
17aa2b3294 s4-kcc: fixed a incorrect context to kcctpl_get_all_bridgehead_dcs 2010-09-27 22:55:04 -07:00
Andrew Tridgell
e313667983 s4-dsdb: added samdb_find_site_for_computer() and samdb_find_ntdsguid_for_computer() 
these will be used by the new RODC dns update code

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-27 22:55:04 -07:00
Andrew Tridgell
c972790249 s4-auth: removed unused variable dom_sid 2010-09-27 22:55:04 -07:00
Stefan Metzmacher
491102c1ce s4:gensec_tstream: remove plain socket handling 
metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Tue Sep 28 04:54:24 UTC 2010 on sn-devel-104
 2010-09-28 04:54:24 +00:00
Stefan Metzmacher
ca360fba10 s4:lib/tls: add gnutls backend for tstream 
metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Tue Sep 28 02:29:42 UTC 2010 on sn-devel-104
 2010-09-28 02:29:42 +00:00
Stefan Metzmacher
381f0fcd19 s4:gensec: add gensec_create_tstream() 
Based on the initial patch from Andreas Schneider <asn@redhat.com>.

metze
 2010-09-28 03:48:11 +02:00
Stefan Metzmacher
d6c48b4a5f s4:wrepl_server: use SOCKET_FLAG_NOCLOSE instead of a dup() 
The key thing is that we might have to turn the incomming
connection into a outgoing connection.

This change makes sense anyway, because we donate the fd to
tstream.

metze
 2010-09-28 03:48:10 +02:00
Stefan Metzmacher
9d8b886b3e s4:rpc_server: use SOCKET_FLAG_NOCLOSE to avoid calling close() on the socket fd twice. 
metze
 2010-09-28 03:48:10 +02:00
Andrew Tridgell
6676142347 s4-ildap: two more places that need talloc_reparent() 
these contexts can have references

Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Tue Sep 28 00:04:03 UTC 2010 on sn-devel-104
 2010-09-28 00:04:03 +00:00
Andrew Tridgell
396cdd6343 s4-kcc: don't print "Testing kcctpl_create_intersite_connections" 
log level 0 is excessive for this!
 2010-09-27 23:18:23 +00:00
Andrew Tridgell
8e1a3c8cca s4-drs: make getncchanges debug less verbose 
quieten make test a little
 2010-09-27 23:18:23 +00:00
Andrew Tridgell
8edf3d7131 s4-dns: avoid search domains expansion in DNS resolver 
add a '.' if the name contains a '.' already, but not at the end
 2010-09-27 23:18:23 +00:00
Andrew Tridgell
43d0c2e9ea heimdal: avoid DNS search domain expansion 
When you have a domain search list in resolv.conf, and one of the DNS
servers for a searched domain is uncontactable then we would timeout
resolving DNS names.

Avoid this by adding a '.' to the hostname if the hostname already has
a '.' in it, which we assume to mean it is fully qualified.
 2010-09-27 23:18:23 +00:00
Günther Deschner
93d7230d25 s4-smbtorture: rework spoolss_EnumPrintProcDataTypes test. 
Guenther
 2010-09-28 01:17:13 +02:00
Günther Deschner
a335848a88 s4-smbtorture: rework test_EnumPrintProcessors to let it test more combinations. 
Guenther
 2010-09-28 01:17:09 +02:00
Andrew Tridgell
7fbe700753 s4-ildap: fixed a talloc_steal with references error 
We need talloc_reparent() instead

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>

Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Mon Sep 27 20:38:00 UTC 2010 on sn-devel-104
 2010-09-27 20:38:00 +00:00
Nadezhda Ivanova
aeedd29d39 s4-ldb: Added ldb_request_replace_control 
It is the same as ldb_request_add_control, except it will replace
an existing control.

Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Mon Sep 27 19:00:38 UTC 2010 on sn-devel-104
 2010-09-27 19:00:38 +00:00
Anatoliy Atanasov
2cf0525b23 s4/irpc: Add security token to the binding handle when doing irp call forwarding 2010-09-27 09:59:21 -07:00
Anatoliy Atanasov
ed7bbc993d s4/irpc: Add function to add security token to the binding handle 2010-09-27 09:59:21 -07:00
Stefan Metzmacher
d9d4ded71a s4:irpc: optionaly pass the security_token via IRPC requests. 
metze
 2010-09-27 09:59:21 -07:00
Stefan Metzmacher
b32625b79f s4:torture/ldap: close connections with an UnbindRequest 
metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Mon Sep 27 07:14:23 UTC 2010 on sn-devel-104
 2010-09-27 07:14:23 +00:00
Stefan Metzmacher
b1ffacb437 LDAP-BASIC: test AbandonRequest 
metze
 2010-09-27 08:24:36 +02:00
Stefan Metzmacher
b65a164f3e s4:libcli/ldap: fix sending oneway requests 
metze
 2010-09-27 08:24:36 +02:00
Günther Deschner
f2310cacde waf: add more NDR subsystems for shared IDL files. 
Guenther
 2010-09-27 07:12:09 +02:00
Günther Deschner
611c8310ab s4-waf: remove NDR-SRVSVC alias. 
Thanks tridge, this was driving me nuts...

Guenther
 2010-09-27 07:12:08 +02:00
Günther Deschner
d834671f68 s4-smbtorture: remove unneeded dcerpc_mgmt alias. 
Guenther
 2010-09-27 07:12:08 +02:00
Andrew Tridgell
785410c493 s4-drs: fixed comment in getncchanges code 
Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Mon Sep 27 04:54:43 UTC 2010 on sn-devel-104
 2010-09-27 04:54:43 +00:00
Andrew Tridgell
06274bd870 s4-gensec: fixed a valgrind error in gensec 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-26 21:12:09 -07:00
Andrew Tridgell
a40dcd161c s4-dns: use the generated krb5.conf in samba_dnsupdate 
this gives one less thing that an admin can get wrong

Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Mon Sep 27 02:35:29 UTC 2010 on sn-devel-104
 2010-09-27 02:35:29 +00:00
Andrew Tridgell
93be0d6178 s4-provision: fixed the generation of the krb5.conf for vampire 
we need a correct krb5.conf for nsupdate from bind9
 2010-09-27 01:53:45 +00:00
Nadezhda Ivanova
99ac4e92ff s4-ldbmodules: Added new module aclread to handle access checks on LDAP search 
It is currently enabled only if the request comes from the LDAP server, and is
disabled  by default. Use acl:search=true in smb.conf to enable it.
It filters out all objects the user is not allowed to see, and all attributes
the user does not have RP on. Extended access not supported yet.
 2010-09-26 15:36:09 -07:00
Nadezhda Ivanova
93ba17285d s4-tests: Added tests for search checks on attributes 
The ACL reach tests are in the knowfail because aclread module is not
enabled by default
 2010-09-26 15:36:09 -07:00
Nadezhda Ivanova
3e08965369 s4-tests: Removed search tests with anonymous credentials as they fail againts Windows 
These tests will fail in make test as well if the acl_read module is enabled.
 2010-09-26 15:36:09 -07:00
Nadezhda Ivanova
dc9991ab0e s4-dsdb: Added a function to check access on a particular object by its guid 
Similar to dsdb_check_access_on_dn, only it searches by guid.
 2010-09-26 15:36:09 -07:00
Nadezhda Ivanova
4d3f528411 s4-dsdb: A helper to determine if an attribute is part of the search filter 2010-09-26 15:36:09 -07:00
Nadezhda Ivanova
b77edca7f8 s4-dsdb: Moved some helper functions to a separate file 
We need these to be accessible to the aclread module as well.
 2010-09-26 15:36:09 -07:00
Nadezhda Ivanova
3d0e36bc87 s4-ldap: Added a control to apply the access checks on read via LDAP 2010-09-26 15:36:09 -07:00