sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-27 03:21:53 +03:00
Code
58,748 Commits 60 Branches 1,144 Tags 452 MiB
50b7a3233f
Commit Graph

58748 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Volker Lendecke
50b7a3233f s3: Remove unused samr_make_sam_obj_sd 2010-01-10 20:56:16 +01:00
Volker Lendecke
081573091b s3: Remove the typedef for "auth_serversupplied_info" 2010-01-10 20:56:16 +01:00
Volker Lendecke
9bb4766bba s3: Remove the typedef for "auth_usersupplied_info" 2010-01-10 20:56:16 +01:00
Volker Lendecke
6f0e7b9465 s3: Trim libnss_wins.so 2010-01-10 13:37:40 +01:00
Volker Lendecke
0f9268bde9 s3: Trim down some utilities a bit 2010-01-10 13:28:08 +01:00
Matthias Dieter Wallnöfer
61dfd3dc1d s4:provision_users.ldif - Remove foreign security principal S-1-5-17 for now 
This belongs to the AD IIS stuff where I don't know yet if we should import it.
 2010-01-10 11:07:16 +01:00
Matthias Dieter Wallnöfer
5c174c68cc s4:provision_users.ldif - Import all essential groups for Windows Server 2008 mode 
Additionally I had to fix some bugs (especially wrong "groupTypes") and
reordered the objects using the SID (this is easier when enhancing the file).
 2010-01-10 10:50:46 +01:00
Andrew Tridgell
a3e089db19 s4-ldb: display security descriptors with correct SDL for known SIDs 
This makes it much easier to compare SDs
 2010-01-10 13:23:38 +11:00
Andrew Tridgell
d5091a1dd9 s4-dsdb: added samdb_domain_sid_cache_only() 2010-01-10 13:23:37 +11:00
Volker Lendecke
fd92db55eb s3: Remove a pointless "else" branch from add_ccache_to_list() 2010-01-09 20:37:40 +01:00
Volker Lendecke
fc1757369f s3: Slightly simplify winbindd_store_creds 2010-01-09 20:37:39 +01:00
Volker Lendecke
43c841b6bd s3: Fix a segfault in winbindd_dual_ccache_ntlm_auth() 
ntlmssp_update allocates the reply_blob as a child of ntlmssp_state. This means
with ntlmss_end() it will be gone. winbindd_dual_ccache_ntlm_auth used the blob
after the ntlmssp_end().
 2010-01-09 20:37:39 +01:00
Andrew Tridgell
c03a101e6d s4-drs: instanceType is always sent, regardless of UDV values 2010-01-09 22:08:36 +11:00
Andrew Tridgell
a894eeab77 s4-debug: lower the verbosity of a couple of common log messages 2010-01-09 21:59:34 +11:00
Andrew Tridgell
93fefefea8 s4-samldb: fixed primaryGroupID when promoting a machine to a DC 
The machine gets a primaryGroupID of DOMAIN_RID_DCS. This is done
without changing the member attributes of its groups.
 2010-01-09 21:59:33 +11:00
Andrew Tridgell
8a09dc1266 s4-schema: fixed the SDDL for the schema root security descriptor 
This was preventing a DCPROMO client from allowing outgoing
replication
 2010-01-09 21:59:33 +11:00
Andrew Tridgell
45f49d0a58 s4-drs: add a local UDV entry even when no replUpToDateVector present on NC 
This allows us to filter correctly for a NC that we have created but
not pulled from anyone.
 2010-01-09 21:59:33 +11:00
Andrew Tridgell
b37bec8e06 s4-drs: give DN of failed replication partition 2010-01-09 21:59:32 +11:00
Andrew Tridgell
04e82370db s4-drs: base is_nc_prefix on instanceType 
for extended operations comparing to the ncRoot_dn is not correct
 2010-01-09 18:56:30 +11:00
Andrew Tridgell
67d8518f2c s4-drs: having no SPNs to change is not an error 2010-01-09 18:56:30 +11:00
Andrew Tridgell
ba745a4356 s4-drs: fixed writespn to ignore add/delete errors 
When a SPN is added and already exists, it is ignored. Similarly, when
a SPN is deleted and doesn't exist, it is ignored.
 2010-01-09 18:56:30 +11:00
Andrew Tridgell
8c2d7ae19e s4-dsdb: added samdb_ldb_val_case_cmp() 2010-01-09 18:56:29 +11:00
Andrew Tridgell
acf33e0d58 s4-drs: moved the DsWriteAccountSpn call to its own file 2010-01-09 18:56:29 +11:00
Andrew Tridgell
8ccedc3ac7 s4-libnet: dsdb_wellknown_dn() in vampire code 2010-01-09 18:56:29 +11:00
Andrew Tridgell
1158c13861 s4-drs: need to set the getncchanges extended_ret on success too 2010-01-09 18:56:29 +11:00
Andrew Tridgell
7010fad4ea s4-drs: calculate and send a uptodateness_vector with replication requests 
This stops us getting objects changes twice if they came via an
indirect path.
 2010-01-09 18:56:29 +11:00
Andrew Tridgell
39730ac302 s4-drs: be less verbose when we filter objects by UDV 2010-01-09 18:56:28 +11:00
Andrew Tridgell
349f7ba09c s4-drs: added filtering by udv in getncchanges 
When a client supplied an uptodateness_vector, we can use it to filter
what objects we return. This greatly reduces the amount of replication
traffic between DCs.
 2010-01-09 13:11:27 +11:00
Andrew Tridgell
b0090d01e0 s4-idl: give a enum for attribute cn and a 'NONE' attribute 
The 'NONE' attribute has value 0xFFFFFFFF. Adding this ensures the
compiler will complain if it is set to use 16 bit enums. We rely on
being able to store 32 bits in an attid enum.
 2010-01-09 13:10:28 +11:00
Andrew Tridgell
9e6eb22f7f s4-drs: fixed the NC in the getncchanges RID alloc reply 
the search happens on a different DN to the NC of the request, but the
reply is with the original NC
 2010-01-09 10:15:14 +11:00
Andrew Tridgell
273a4d9803 s4-debug: removed debug_ctx(). It didn't catch on :-) 
There was only one user, which isn't worth it for the overhead.
 2010-01-09 10:15:13 +11:00
Andrew Tridgell
651ddb720a s4-messaging: remove only usage of debug_ctx() 2010-01-09 10:15:13 +11:00
Andrew Tridgell
6a36799d30 s4-messaging: fixed a memory leak in messaging_path() 
It is a bit convoluted to fix, as cluster_id_string() may return a
const string.
 2010-01-09 10:15:12 +11:00
Andrew Tridgell
196cb6b359 s4-drs: fixed usage of ldb_dn_new() 2010-01-09 10:15:12 +11:00
Andrew Tridgell
39a4e2a38d s4-ldb: validate the type of the ldb argument to ldb_dn_new() 
It has been a common bug to get the first two arguments the wrong way
around
 2010-01-09 10:15:12 +11:00
Simo Sorce
7eee8e053b Fix comment 2010-01-08 17:01:02 -05:00
Jeremy Allison
d7713d11a6 Re-fix bug 5202 - cannot change ACLs on writable file with "dos filemode=yes" 
This bug re-occurred for 3.3.x and above.

The reason is that to change a NT ACL we now have to open the file requesting
WRITE_DAC and WRITE_OWNER access. The mapping from POSIX "w" to NT permissions
in posix_acls doesn't add these bits when "dos filemode = yes", so even though
the permission or owner change would be allowed by the POSIX ACL code, the
NTCreateX call fails with ACCESS_DENIED now we always check NT permissions
first.

Added in the mapping from "w" to WRITE_DAC and WRITE_OWNER access.

Jeremy.
 2010-01-08 10:17:46 -08:00
Matthias Dieter Wallnöfer
fca0c4de2a s4:provision_self_join.ldif - Adapt comment after implementation of distributed RIDs 2010-01-08 18:18:21 +01:00
Andreas Schneider
0588f34467 s4-kdc: Migrate tcp connections to tsocket. 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2010-01-08 14:38:35 +01:00
Stefan Metzmacher
42c34cdafa s4:kdc: use LIBSAMBA_TSOCKET 
metze
 2010-01-08 14:36:49 +01:00
Stefan Metzmacher
d97562b382 s4:kdc: the ->process function returns "bool" 
metze
 2010-01-08 14:36:49 +01:00
Stefan Metzmacher
bbaec01b37 libcli/util: add tstream_read_pdu_blob_send/recv 
This will take the some full_request callback function
as the Samba4 packet code.

metze
 2010-01-08 14:36:43 +01:00
Günther Deschner
1bc953088f s3-time: fix build warnings after we moved to shared time functions. 
Bjoern, please check.

Guenther
 2010-01-08 12:35:25 +01:00
Günther Deschner
9bdd3d6c1b s3-docs: mention -K option in pdbedit manpage. 
Guenther
 2010-01-08 12:35:18 +01:00
Andrew Tridgell
8d87c0a0c3 s4-drs: added two more SPNs in addentry 
w2k8r2 wants these after a DCPROMO

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:54 +11:00
Andrew Tridgell
ad11deb9bd s4-schema: fixes for W2K8-R2 schema 
The schema from WSPP had a number of typos that prevented it from
working. These changes allow it to work with Samba, and allow w2k8r2
to run DCPROMO against Samba successfully

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:54 +11:00
Andrew Tridgell
ebec49965b s4-schema: added msDS-NcType to schema container 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:53 +11:00
Andrew Tridgell
ce21151d22 s4-schema: fixed attributes of aggregate schema 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:53 +11:00
Andrew Tridgell
38909a4ae5 s4-schema: switch to W2K8-R2 schema 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:53 +11:00
Andrew Tridgell
d371b0eabe s4-schema: added adminDisplayName and adminDescription 
These are missing from the WSPP schemas

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:53 +11:00