sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
Code
69,075 Commits 60 Branches 1,144 Tags 452 MiB
5e8cb67605
Commit Graph

735 Commits

Author SHA1 Message Date
Andrew Tridgell
5e8cb67605 s4-provision: fixed eadb automatic and manual setting in provision 
we should not set posix:eadb in lp in the acl native test code

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-11-26 03:08:21 +01:00
Andrew Bartlett
5d65025fde s4-setup correct the require BIND version for Dynamic DNS 2010-11-24 17:48:04 +11:00
Matthias Dieter Wallnöfer
d218472310 s4:provision_rootdse_add.ldif - add all possible LDAP policy values but outcommented for the moment 
It would be nice if someone could activate them as needed.

Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org>
Autobuild-Date: Sun Nov 21 14:41:53 CET 2010 on sn-devel-104
 2010-11-21 14:41:53 +01:00
Andrew Tridgell
1645190b1c s4-provision: don't test for xattrs if posix:eadb is set 
when it is set in smb.conf or on the command line, obey the setting
and don't try to test for system xattr support
 2010-11-17 23:55:39 +11:00
Andrew Tridgell
333975d84f s4-provision: setup posix:eadb using lp.set() 
this allows it to override a setting made during the automatic testing
of xattr support
 2010-11-17 23:55:39 +11:00
Andrew Tridgell
d7ea449049 s4-provision: don't try to autodetect xattr is posix:eadb is set 
when posix:eadb is set then we know we should be using an eadb
 2010-11-17 23:55:39 +11:00
Andrew Tridgell
1887ce87e4 s4-provision: use the command line lp in provision 
this ensures that provision options are stored in the generated
smb.conf
 2010-11-17 23:55:38 +11:00
Andrew Bartlett
ebd8e66ed0 samba-tool Add test for --store-plaintext 
Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Tue Nov 16 06:29:04 UTC 2010 on sn-devel-104
 2010-11-16 06:29:04 +00:00
Matthias Dieter Wallnöfer
3c8283da41 s4:provision_self_join.ldif - the object SID in AD is called "objectSid" 
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org>
Autobuild-Date: Tue Nov  9 13:18:29 UTC 2010 on sn-devel-104
 2010-11-09 13:18:29 +00:00
Matthias Dieter Wallnöfer
bd5039546e s4:provision - switch to "clearTextPassword" for setting passwords 
This is the default password set/change attribute for s4 specific purposes
(otherwise in respect to Windows it's "unicodePwd"). We move away from
"userPassword" since on Windows it's not activated by default - and s4 will
follow soon.
 2010-11-09 13:22:00 +01:00
Matthias Dieter Wallnöfer
05d7524736 s4:setup/spn_update_list - the DNS SPN is only used in DNS mode 
Not all DCs are automatically DNS servers.

Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org>
Autobuild-Date: Mon Nov  1 12:20:36 UTC 2010 on sn-devel-104
 2010-11-01 12:20:36 +00:00
Matthias Dieter Wallnöfer
7578e04fb8 s4:provision - adapt the "provision" so that SIDs are only set on entry creation 
SID modifications are denied.
 2010-11-01 12:25:24 +01:00
Matthias Dieter Wallnöfer
572774a7a0 s4:provision - remove the "servicePrincipalName" creation on the DC object 
This is now done by the "samba_spnupdate" script.
 2010-10-31 18:44:07 +00:00
Matthias Dieter Wallnöfer
01e7cc607c s4:setup/spn_update_list - reorder and update with other SPNs 2010-10-31 18:44:06 +00:00
Kai Blin
b73a05e4e1 s4 net: rename to samba-tool in order to not clash with s3 net 
Autobuild-User: Kai Blin <kai@samba.org>
Autobuild-Date: Thu Oct 28 07:25:16 UTC 2010 on sn-devel-104
 2010-10-28 07:25:16 +00:00
Matthias Dieter Wallnöfer
8c4d023cc9 s4:setup/schema_samba4.ldif - this control isn't used anymore 
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org>
Autobuild-Date: Wed Oct 27 16:32:28 UTC 2010 on sn-devel-104
 2010-10-27 16:32:28 +00:00
Matthias Dieter Wallnöfer
6e407a3c1c s4:provision_*_references.ldif - "add" and do not "replace" the "wellKnownObjects" 
This is the correct AD operation in this case. Multi-valued replaces are
generally denied most of the time.
 2010-10-25 12:51:52 +02:00
Matthias Dieter Wallnöfer
8b9a08e10f s4:provision.py - add the correct "CN=Sites" security descriptor 
This should help to fix bug #7403.

Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org>
Autobuild-Date: Sat Oct 23 20:16:59 UTC 2010 on sn-devel-104
 2010-10-23 20:16:59 +00:00
Matthias Dieter Wallnöfer
f9a6ff482c s4/ldb:introduce the LDB_CONTROL_PROVISION_OID control 
This control is exactly thought for the actions which previously were performed
using the RELAX one.

We agreed that the RELAX control will only remain for interactions with OpenLDAP.
 2010-10-23 16:37:29 +02:00
Matthias Dieter Wallnöfer
89c42a96fc ldb:rename LDB_CONTROL_BYPASSOPERATIONAL_OID into LDB_CONTROL_BYPASS_OPERATIONAL_OID 
It's nicer to have this consistent with "BYPASS_PASSWORD_HASH".
 2010-10-23 16:37:29 +02:00
Andrew Bartlett
f9c7365e53 s4-provisionbackend Allow a fixed URI to be specified for LDAP backend 
This is added to make the 'existing' LDAP backend class more useful,
and to allow debuging of our OpenLDAP backend class with wireshark, by
forcing the traffic over loopback TCP, which is much easier to sniff.

Andrew Bartlett
 2010-10-19 18:57:06 +11:00
Andrew Bartlett
ce01e36d8c s4-openldap-backend Don't set 'dbnosync' on cn=config 
This isn't valid in current OpenLDAP versions.

Andrew Bartlett
 2010-10-18 11:13:04 +00:00
Andrew Bartlett
ba9e787c7d s4-provision Use --ldap-backend-nosync rather than just --nosync 
For some reason we had both options, and --ldap-backend-nosync is
the better name.

Andrew Bartlett
 2010-10-18 11:13:04 +00:00
Matthias Dieter Wallnöfer
5cb99aa81a s4:setup/provision_self_join.ldif - let the samldb LDB module fill in "isCriticalSystemObject" 
It recognizes it now automatically.
 2010-10-13 13:35:21 +00:00
Matthieu Patou
6633a7b379 unit tests: do some cleanup after tests 
fix

Autobuild-User: Matthieu Patou <mat@samba.org>
Autobuild-Date: Mon Oct 11 14:29:10 UTC 2010 on sn-devel-104
 2010-10-11 14:29:10 +00:00
Andrew Tridgell
c24240bcd2 waf: fixed some python3.x portability issues 
these have crept into the tree over time. Maybe we should add testing
of a range of python versions to autobuild?
 2010-10-06 11:13:05 +00:00
Matthias Dieter Wallnöfer
0fb9671a01 s4:setup/provision_rootdse_add.ldif - provide informations in the right order 
Doesn't change much - but nicer to read.

Btw: is the testdata/samba3 stuff still needed ("provision_samba3sam.ldif"...)?
It seems a bit outdated.
 2010-10-05 16:06:05 +00:00
Wilco Baan Hofman
927e4db090 Fix .reg file format parsing. 
* multiline data
 * doublequoted value name
 * handle windows format CRLF

Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
 2010-10-03 15:31:37 +02:00
Matthias Dieter Wallnöfer
a01467913a s4:schema_samba4.ldif - update allocated controls list 
This needs always to be done after a control allocation otherwise we end up in
double-allocations and unexpected behaviour.
 2010-10-03 12:05:13 +02:00
Jelmer Vernooij
fbee3586fd selftest: Let selftest provide the tempdir, rather than creating it as sideeffect of tests.py. 2010-10-01 01:31:06 +00:00
Andrew Tridgell
cc288603ce s4-provision: simplify our generated krb5.conf 
we don't want to force the KDC to be ourselves, we should
be using DNS to find a live KDC. Also remove some other options and
allow the krb5 lib to use defaults.

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-28 19:25:51 -07:00
Andrew Tridgell
c7f6ab890e s4-provision: fixed the authority response for our SOA record 
some clients rely on this being the hostname, not the domain

Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Tue Sep 28 06:39:19 UTC 2010 on sn-devel-104
 2010-09-28 06:39:19 +00:00
Matthieu Patou
a8f8f277ff s4 provision: start with gpo of version 0 and be consistent between different policies 2010-09-26 06:22:43 +04:00
Andrew Tridgell
e8fec1d3c6 s4-dns: the DNS/${HOSTNAME} SPN should be on the DNS account only 2010-09-26 01:21:50 +00:00
Andrew Tridgell
b8444b64a3 s4-provision: switch to dns-HOSTNAME instead of dns 
We now use a host specific account name for the DNS account, which is
the account used for dynamic DNS updates. We also setup the
servicePrincipalName for automatic update, and add both DNS/${DNSDOMAIN}
and DNS/${DNSNAME} for compatibility with both the old and new SPNs

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-26 01:21:49 +00:00
Andrew Bartlett
c9b19d9b69 s4-kerberos Rework keytab handling to export servicePrincipalName entries 
This creates keytab entries with all the servicePrincipalNames listed
in the secrets.ldb entry.

Andrew Bartlett
 2010-09-24 15:07:56 +10:00
Matthias Dieter Wallnöfer
76c346dfc1 s4:provision - rootdse - remove static "ldapServiceName" attribute 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-09-24 09:25:43 +10:00
Matthias Dieter Wallnöfer
ccc67a03d6 s4:provision - rootdse - remove static "dnsHostName" attribute 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-09-24 09:25:43 +10:00
Matthias Dieter Wallnöfer
5f60f5e5e7 s4:provision - rootdse - remove the static attribute "serverName" 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-09-24 09:25:43 +10:00
Matthias Dieter Wallnöfer
4fd8ce42ce s4:setup/provision_self_join.ldif - now the samldb LDB module detects automatically that this is a DC account 2010-09-12 19:23:06 +02:00
Stefan Metzmacher
0ad2890c4e s4:provision: remember the setup directory if it wasn't the default 
This fixes make test without a make install.

metze
 2010-09-10 17:21:31 +02:00
Andrew Bartlett
22d5a96550 s4-setup Make krb5.conf use DNS by default 
We set up our DNS pretty well these days, and I think the previous setting
was only there because Andrew Kroeger copied this out of our selftest code
in bf3f3af926.

Andrew Bartlett
 2010-09-09 21:39:24 +10:00
Jelmer Vernooij
3c58fb27b0 setup: Use standard octal ints rather than harcoding. 2010-09-08 22:11:55 +02:00
Matthieu Patou
2cadfe8f2a unit tests: debug to ease locating pb, remove dir if exists to avoid error 2010-08-19 15:59:05 +04:00
Matthias Dieter Wallnöfer
bbb9dc806e s4:DSDB - rename the "DSDB_CONTROL_PASSWORD_CHANGE_OLD_PW_CHECKED_OID" 
Rename it to "DSDB_CONTROL_PASSWORD_CHANGE_OID". This control will afterwards
contain a record with the specified old password as NT and/or LM hash.
 2010-08-17 18:45:32 +02:00
Stefan Metzmacher
76e5d41d6a s4:blackbox/newuser: use test specific user names 
As this test doesn't delete the user accounts at the end,
we should use test specific user names. That lowers the
chance of conflicts with other tests.

metze
 2010-07-31 11:35:31 +02:00
Matthieu Patou
d861ebbd81 s4 dsdb: create a new control: changereplmetadata 
This control is designed to allow replmetadata to be specified

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-15 22:08:20 +10:00
Stefan Metzmacher
23f810041b s4:provision: remove --policy-guid and --policy-guid-dc cmdline options 
metze
 2010-07-10 11:18:19 +02:00
Matthieu Patou
e962e7e956 s4 unittests: remove the provision directory before (re)generating 2010-07-10 11:18:18 +02:00
Matthieu Patou
cad04dabbb s4 net: Add spn module to list/add/remove spn on objects 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2010-07-10 11:18:17 +02:00