sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-26 10:04:02 +03:00
Code
77,610 Commits 60 Branches 1,146 Tags
Commit Graph

77610 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Stefan Metzmacher
524d06615f smb1cli_trans: return the status from the server if possible 
metze
 2011-11-29 16:00:08 +01:00
Stefan Metzmacher
f0d8038ed8 smbXcli: rebuild smb1.recv_iov array if we expect more than one response 
metze
 2011-11-29 16:00:07 +01:00
Stefan Metzmacher
8c7e7ee91b smbXcli: allow up to 10 iovec elements for the bytes in smb1cli_req_create() 
The smb1cli_trans_* code uses up to 6 elements, which was too much for
the current limit of 5.

metze
 2011-11-29 16:00:07 +01:00
Stefan Metzmacher
3453665bcb smbXcli: s/smb2cli_writev_done/smb2cli_req_writev_done 
This is a better name and it matches smb1cli_req_writev_done

metze
 2011-11-29 16:00:07 +01:00
Stefan Metzmacher
c9ca3bb492 smbXcli: call tevent_queue_stop() for the outgoing queue on disconnect 
metze
 2011-11-29 16:00:07 +01:00
Stefan Metzmacher
91cb09fa0c smbXcli: use talloc_stackframe() instead of talloc_tos() in smb1cli_conn_signv() 
metze
 2011-11-29 16:00:07 +01:00
Stefan Metzmacher
9f6454af39 libcli/smb: remove unused smb_signing_set_bsrspyl() prototype 
metze
 2011-11-29 16:00:07 +01:00
Günther Deschner
023558aa90 s3-passdb: make pdb_password_change_time_max static. 
Guenther

Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Tue Nov 29 15:16:51 CET 2011 on sn-devel-104
 2011-11-29 15:16:51 +01:00
Günther Deschner
158f6d8f68 s3-rpcclient: add tool to call lsa_SetInformationTrustedDomain. 
"lsasettrustdominfo S-1-5-21-123456-123456-123456 13 1"

currently you only can set the encryption type field.

Guenther
 2011-11-29 13:15:39 +01:00
Volker Lendecke
165d5bf490 s3: Remove some false/superfluous translations 
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Tue Nov 29 12:39:45 CET 2011 on sn-devel-104
 2011-11-29 12:39:45 +01:00
Stefan Metzmacher
b94b7a2fe1 selftest/Samba4: pass '--machinepass' to 'samba-tool domain join' 
metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Tue Nov 29 11:00:42 CET 2011 on sn-devel-104
 2011-11-29 11:00:42 +01:00
Stefan Metzmacher
f9f261cb60 s4:python: add --machinepass option to 'samba-tool domain join' 
metze
 2011-11-29 09:21:25 +01:00
Stefan Metzmacher
4edbc719e5 s4:python/samba/join.py: add optional 'machinepass' parameter to join_*() 
metze
 2011-11-29 09:21:25 +01:00
Stefan Metzmacher
948f091a22 s4:python/samba/join.py: add optional 'machinepass' parameter to class dc_join 
metze
 2011-11-29 09:21:25 +01:00
Stefan Metzmacher
f8fbc4163b s4:py_net: add optional 'machinepass' parameter to py_net_join_member() 
metze
 2011-11-29 09:21:25 +01:00
Stefan Metzmacher
fe69c589e8 s4:libnet: make it possible to join with a given machine password 
metze
 2011-11-29 09:21:25 +01:00
Stefan Metzmacher
677f5246f1 s4:libnet/py_net: ZERO_STRUCT() struct libnet_Join_member in py_net_join_member() 
metze
 2011-11-29 09:21:25 +01:00
Stefan Metzmacher
1764607150 s4:torture/rpc: use talloc_zero() in torture_join_domain() 
metze
 2011-11-29 09:21:25 +01:00
Stefan Metzmacher
5baa44345f s4:libnet: use talloc_zero(struct libnet_JoinDomain) in libnet_Join_member() 
metze
 2011-11-29 09:21:25 +01:00
Andrew Bartlett
2bff209128 s4-samba-tool: Add --principal argument to samba-tool domain exportkeytab 
This allows only a particular principal to be exported to the keytab.
This is useful when setting up unix servers in a Samba controlled
domain.

Based on a request by Gémes Géza <geza@kzsdabas.hu>

Andrew Bartlett

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Tue Nov 29 09:20:55 CET 2011 on sn-devel-104
 2011-11-29 09:20:54 +01:00
Amitay Isaacs
8eef716598 s4-provision: Fix the security ace for DnsAdmins group on DNS records 
Find the objectSid for DnsAdmins group and use that instead of a fixed sid.

Autobuild-User: Amitay Isaacs <amitay@samba.org>
Autobuild-Date: Tue Nov 29 07:38:06 CET 2011 on sn-devel-104
 2011-11-29 07:38:05 +01:00
Amitay Isaacs
2e4bf8bfcd s4-repl: Check if GC SPN exists before using it for replication 
Sometimes windows DC will set up dNSHostname before setting up
GC SPN and that causes replication errors since samba tries to
use GC SPN, which does not yet exist locally.

Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>
 2011-11-29 16:00:36 +11:00
Amitay Isaacs
1e935d1bdc s4-provision: Make BIND9_DLZ as the default backend for DNS 2011-11-29 16:00:36 +11:00
Amitay Isaacs
7ac5c5061e dlz_bind9: Added access check to verify dynamic update 
This creates session info from kerberos ticket and verifies if
the signer has write access to a particular DN corresponding
to the name in dynamic update.

Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>
 2011-11-29 16:00:36 +11:00
Amitay Isaacs
dcc5a7e1f2 dlz_bind9: Use the sam database in dns/ as default 
This change is introduced to access samdb copy directly, rather
than over ildap. The advantage is that the samba server does not
need to be running for bind9 to start.
 2011-11-29 16:00:36 +11:00
Amitay Isaacs
341979cc9a s4-provision: Create a samdb copy for access by dlz_bind9 module 
This creates a copy of rootdse, configuration and schema partitions
for dlz_bind9 use in dns/ directory.  Since dlz_bind9 requires write
access to DNS partitions (DomainDnsZones and ForestDnsZones), those
partitions are hard-linked (or symlinked) to the actual partitions.
An empty domain partition is created so samdb layer can work.
 2011-11-29 16:00:36 +11:00
Amitay Isaacs
6822eae323 s4-provision: Extract security descriptors in separate file 
Need to use domain security descriptor from sambadns.py also.
 2011-11-29 16:00:36 +11:00
Amitay Isaacs
5184fc8893 s4-test: Remove metadata and ldb.d directory on clean up 
When using partitions, metadata.tdb automatically gets created in
${prefix}ldb.d/ directory. To correctly clean up check if metadata.tdb
exists, then remove metadata.tdb and directory.
 2011-11-29 16:00:36 +11:00
Amitay Isaacs
13545d781b s4-samdb: seqence_number() operation must be in a transaction 2011-11-29 16:00:36 +11:00
Amitay Isaacs
49926a2ac6 s4-dsdb: Added metadata to partition module for global sequence number 
This adds support for global sequence number which is independent of
partition information.

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-11-29 16:00:35 +11:00
Amitay Isaacs
349c54528b s4-dsdb: use dsdb_module_extended instead of duplicate code 
Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-11-29 16:00:35 +11:00
Amitay Isaacs
422fcbbe72 s4-dsdb: Return ldb_result context in dsdb_module_extended 
The result of the extended operation is now available in the calling
routine.

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-11-29 16:00:35 +11:00
Amitay Isaacs
c199b35dd4 s4-dsdb: Remove LDB_SEQ_HIGHEST_TIMESTAMP sequence number support 
This was a hack for LDAP backends to store a sequence number as a
timestamp. It is still supported in standalone ldb tdb backend.

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-11-29 16:00:35 +11:00
Volker Lendecke
5c53926fa7 s3: Use tevent_req_simple_recv_ntstatus 
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Mon Nov 28 17:14:27 CET 2011 on sn-devel-104
 2011-11-28 17:14:27 +01:00
Volker Lendecke
7491bd78d6 Fix Coverity ID 2638: OVERRUN_STATIC 2011-11-28 14:52:32 +01:00
Volker Lendecke
f094cc3ade Fix Coverity ID 2639: UNUSED_VALUE 2011-11-28 14:52:31 +01:00
Volker Lendecke
0d4fc19ac7 s3: Fix a crash in group_mapping.ldb->tdb conversion 
When we find a group_mapping.ldb entry without a comment, the upgrade code
would have crashed with a NULL dereference

Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Mon Nov 28 12:24:08 CET 2011 on sn-devel-104
 2011-11-28 12:24:08 +01:00
Matthias Dieter Wallnöfer
0e526062a4 s4:torture/ldap/cldap.c - remove the "test_cldap_netlogon_flag_ds_dns_forest" test 
The test is wrong since the DNS_* (DS_DNS_CONTROLLER, DS_DNS_DOMAIN,
DS_DNS_FOREST_ROOT) flags are never set on the plain CLDAP pipe. They
get added only over the DsRGetDCName* calls over NETLOGON RPC.

Signed-off-by: Stefan Metzmacher <metze@samba.org>

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Sun Nov 27 16:23:27 CET 2011 on sn-devel-104
 2011-11-27 16:23:27 +01:00
Matthias Dieter Wallnöfer
6b63d7e618 s4:selftest/test_samba_tool.sh - add a basic unit test for the new "domain info" command 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-27 12:51:57 +01:00
Matthias Dieter Wallnöfer
f57f009bc6 samba-tool: domain info - add basic exception handling 
It is nicer to get an error message rather than a stacktrace on wrong IP
addresses.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-27 12:51:57 +01:00
Matthieu Patou
08ca7d1634 samba-tool: add a domain info command to get basic info 
Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-27 12:51:56 +01:00
Matthias Dieter Wallnöfer
521c708fe4 s4:netlogon RPC server - DsRGetDcNameEx - set the DNS name flags correctly 
The rules are explained in MS-NRPC 2.2.1.2.1.

Patch inspired by Matthieu Patou.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-27 12:51:54 +01:00
Matthieu Patou
1770dafafd s4-netlogon: return WERR_NO_SUCH_DOMAIN instead of WERR_DS_UNAVAILABLE if we are unable to translate the domain to a dn 
Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-27 12:50:49 +01:00
Matthias Dieter Wallnöfer
b89374934f s4:cldap_server/netlogon.c - DS_SERVER_CLOSEST handling 
DS_SERVER_CLOSEST is only set when the client and server site coincide.

MS-NRPC 2.2.1.2.1

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-27 12:50:48 +01:00
Matthias Dieter Wallnöfer
fc26e29f8e s4:netcmd/common.py: add a "netcmd" function to do a cldap netlogon request 
This is useful for a new "samba-tool domain info" command.

Patch inspired by Matthieu Patou.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-27 12:50:06 +01:00
Matthias Dieter Wallnöfer
179bf9b51c s4:libnet/py_net.c: "py_net_finddc" - add an "address" parameter 
This is useful for a new "samba-tool domain info" command.

Patch inspired by Matthieu Patou.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-26 10:34:58 +01:00
Matthias Dieter Wallnöfer
dec1435a42 s4:libnet/py_net.c - initialise optional keyword arguments 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-26 10:32:59 +01:00
Matthias Dieter Wallnöfer
ad19aa6331 s4:libcli/finddcs_cldap.c - let "finddcs_cldap" work either with the IP address or the domain name 
This will be useful for a new "samba-tool domain info" command.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-26 10:26:52 +01:00
Matthieu Patou
9e6c88bda5 smbtorture: avoid sigsev if the password is not correct 
Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-26 10:17:39 +01:00
Matthias Dieter Wallnöfer
83c039378b s4:update_keytab LDB module - no need to filter for the DN 
We launch a search request with base scope on exactly the same DN (see
downwards).

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-26 10:17:18 +01:00