1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
Commit Graph

62684 Commits

Author SHA1 Message Date
Matthias Dieter Wallnöfer
82bedb5cb4 README.Coding - cosmetic changes
- Fix typos
- Wrap lines
- Remove trailing whitespaces
- use ":" instead of "::" - one colon should in all cases be enough
2010-05-11 15:00:40 +02:00
Kai Blin
eda5888492 build: skip missing executables in testwaf.sh 2010-05-11 14:49:28 +02:00
Günther Deschner
2eab1d7fdc tdb: remove unused variable in tdb_new_database().
Guenther
2010-05-11 13:41:17 +02:00
Anatoliy Atanasov
7200c25646 Revert "s4-rodc: Fix provision warnings by creating ntds objectGUID in provision"
This reverts commit c3cbb846d0.
The fix is not correct, we should cache a bool to answer amIRODC
2010-05-11 12:54:18 +03:00
Stefan Metzmacher
8489934ce3 Revert "s4:password_hash LDB module - don't break the provision"
This reverts commit 6276343ce1.

This is not needed anymore.

metze
2010-05-11 08:38:26 +02:00
Stefan Metzmacher
ad5b9ae8dc Revert "s4:password hash LDB module - check that password hashes are != NULL before copying them"
This reverts commit fa87027592.

This check is done one level above now.

metze
2010-05-11 08:38:02 +02:00
Stefan Metzmacher
8ff38004e8 s4:dsdb/password_hash: only try to handle a hash in the unicodePwd field if it's given
Sorry, I removed this logic while cleaning up indentation levels...

metze
2010-05-11 08:37:03 +02:00
Stefan Metzmacher
b8c414b35f README.Coding: fix good example
metze
2010-05-11 08:03:56 +02:00
Günther Deschner
9e643f0784 s4-smbtorture: fix smbcli_rap_netuserpasswordset2().
Guenther
2010-05-11 00:58:57 +02:00
Günther Deschner
36b0fed567 s4-smbtorture: fix smbcli_rap_netoemchangepassword.
Guenther
2010-05-11 00:58:57 +02:00
Günther Deschner
fc6a22983b s4-smbtorture: correctly fill in trans.in.data in rap_cli_do_call().
Guenther
2010-05-11 00:58:56 +02:00
Matthias Dieter Wallnöfer
56421886de s4:password_hash LDB module - we might not have a cleartext password at all
When we don't have the cleartext of the new password then don't check it
using "samdb_check_password".
2010-05-10 23:50:03 +02:00
Jeremy Allison
ae9fe3cc8e SMB2 always have level2 oplock capability. Correct mapping from break messages to SMB2 oplock levels.
Jeremy.
2010-05-10 14:23:44 -07:00
Jeremy Allison
a776933de6 Stop us crashing in SMB2-OPLOCK test. Don't allow more than one outstanding immediate event.
Jeremy.
2010-05-10 13:58:41 -07:00
Kamen Mazdrashki
983606dbe0 s4/tort: Add test for comparing special DNs 2010-05-10 23:45:20 +03:00
Kamen Mazdrashki
1f3faea046 s4/dn: handle case 'base' dn has no components
This could if the 'base' dn is special for example.
2010-05-10 23:45:20 +03:00
Günther Deschner
7cf1a2986f s4-smbtorture: add smbcli_rap_netoemchangepassword().
Guenther
2010-05-10 21:30:27 +02:00
Günther Deschner
732a132c4f rap: add rap_NetOEMChangePassword() to IDL.
Guenther
2010-05-10 21:30:27 +02:00
Jeremy Allison
0085a3bd2e Fix the processing of unlocks followed by locks. We now pass SMB2-LOCK test.
Jeremy.
2010-05-10 11:29:34 -07:00
Jeremy Allison
a9a3c83b41 Fix more of the SMB2-LOCK tests. Correctly unlock locks on error.
Jeremy.
2010-05-10 11:09:41 -07:00
Matthias Dieter Wallnöfer
4f25baecc1 s4:password_hash LDB module - quiet a warning 2010-05-10 20:04:37 +02:00
Matthias Dieter Wallnöfer
fa87027592 s4:password hash LDB module - check that password hashes are != NULL before copying them 2010-05-10 20:02:21 +02:00
Matthias Dieter Wallnöfer
6276343ce1 s4:password_hash LDB module - don't break the provision
This is to don't break the provision process at the moment. We need to find
a better solution.
2010-05-10 19:51:31 +02:00
Matthias Dieter Wallnöfer
6131caad8f s4:passwords.py - add a python unittest for additional testing of my passwords work
This performs checks on direct password changes over LDB/LDAP. Indirect
password changes over the RPCs are already tested by some torture suite (SAMR
passwords). So no need to do this again here.
2010-05-10 19:12:27 +02:00
Matthias Dieter Wallnöfer
029351571a s4:samdb_set_password - adapt it for the user password change handling
Make use of the new "change old password checked" control.
2010-05-10 19:12:26 +02:00
Matthias Dieter Wallnöfer
6e8098b261 s4:samdb_set_password/samdb_set_password_sid - Rework
Adapt the two functions for the restructured "password_hash" module. This
means that basically all checks are now performed in the mentioned module.

An exception consists in the SAMR password change calls since they need very
precise NTSTATUS return codes on wrong constraints ("samr_password.c") file
2010-05-10 19:07:46 +02:00
Stefan Metzmacher
fc8e3ffb5f s4:password_hash - Implement password restrictions
Based on the Patch from Matthias Dieter Wallnöfer <mwallnoefer@yahoo.de>.

metze
2010-05-10 18:06:54 +02:00
Matthias Dieter Wallnöfer
6a69ec2f5a s4:password_hash - Rework to handle password changes
- Implement the password restrictions as specified in "samdb_set_password"
  (complexity, minimum password length, minimum password age...).
- We support only (administrative) password reset operations at the moment
- Support password (administrative) reset and change operations (consider
  MS-ADTS 3.1.1.3.1.5)
2010-05-10 18:06:24 +02:00
Matthias Dieter Wallnöfer
12c4b09fd5 s4:password_hash - Rework unique value checks
Windows Server performs the constraint checks in a different way than we do.
All testing has been done using "passwords.py".
2010-05-10 17:54:16 +02:00
Matthias Dieter Wallnöfer
3ce4a0c5f2 s4:password_hash - Various (mostly cosmetic) prework
- Enhance comments
- Get some more attributes from the domain and user object (needed later)
- Check for right objectclass on change/set operations (instances of
  "user" and/or "inetOrgPerson") - otherwise forward the request
- (Cosmetic) cleanup in asynchronous results regarding return values
2010-05-10 17:54:15 +02:00
Matthias Dieter Wallnöfer
726fb35f9f s4:dsdb: add new controls
- Add a new control for getting status informations (domain informations,
  password change status) directly from the module
- Add a new control for allowing direct hash changes
- Introduce an addtional control "change_old password checked" for the password
2010-05-10 17:54:15 +02:00
Stefan Metzmacher
1913e03bd4 s4:setup: mark DSDB_CONTROL_DN_STORAGE_FORMAT_OID 1.3.6.1.4.1.7165.4.3.4 as allocated
metze
2010-05-10 17:54:15 +02:00
Zahari Zahariev
658dac9e7e v2 Latest enhancements in ldapcmp tool
- Added support for replicating hosts versus hosts in different domains
- Added switches for the following modes:
  = two - ignores additional attributes that cannot be the same
    in two different provisions (domains)
  = quiet - display nothing, only return code
  = verbose - display all dn objects through compare fase
  = default - display only objects with differences
- Added more placeholders for nETBIOSDomainName and ServerName
2010-05-10 17:24:03 +03:00
Anatoliy Atanasov
c3cbb846d0 s4-rodc: Fix provision warnings by creating ntds objectGUID in provision 2010-05-10 17:24:02 +03:00
Günther Deschner
83736066a3 s3-rpcclient: fix two more invalid typecasts in spoolss commands.
Guenther
2010-05-10 14:51:14 +02:00
Jelmer Vernooij
ed39e9b67f s3: Work around dependency bug in Samba 4 waf build in merged build. 2010-05-10 14:48:41 +02:00
Volker Lendecke
aa8d91ae8e libwbclient: Fix a fd-leak at dlclose-time
__attribute__((destructor)) makes winbind_close_sock() being called at
dlclose() time.

Found while testing apache on Linux with mod_auth_pam.

Other platforms will have to find a different fix. One possibility would be to
always close the socket after each operation, but this badly sucks
performance-wise.
2010-05-10 14:11:14 +02:00
Volker Lendecke
36e736871e s3: Test for "__attribute__((destructor))" 2010-05-10 14:11:14 +02:00
Matthias Dieter Wallnöfer
e2806f9e4d s4:acl ldb module - fix typos 2010-05-10 12:39:44 +02:00
Matthias Dieter Wallnöfer
946993238f s4:dsdb/util.c - Add a new function for retrieving password change attributes
This is needed since we have not only reset operations on password fields
(attributes marked with REPLACE flag) but also change operations which can be
performed by users itself. They have one attribute with the old value marked
with the REMOVE flag and one with the new one marked with the ADD flag.
This function helps to retrieve them (argument "new" is used for the new
password on both reset and change).
2010-05-10 12:20:27 +02:00
Stefan Metzmacher
6ee53309a1 s4:blackbox password tests - more complex passwords 2010-05-10 12:20:26 +02:00
Matthias Dieter Wallnöfer
01347844f5 s4:selftest - change test passwords
The passwords need to be more complex to meet the new complexity criteria.
2010-05-10 12:20:26 +02:00
Stefan Metzmacher
47f74c89c9 s4:selftest: add --socket-wrapper[-keep]-pcap options to "waf test"
metze
2010-05-10 12:20:26 +02:00
Günther Deschner
f754942862 testprogs: update Makefile.mingw (although mingw current cant build it).
Guenther
2010-05-10 11:50:29 +02:00
Günther Deschner
86ec5fe3ee testprogs: update README to reflect the util rename.
Guenther
2010-05-10 11:50:28 +02:00
Günther Deschner
cda0c75e18 testprogs: add readme for testspoolss.exe.
Patch from Kurt Pfeifle <Kurt.Pfeifle@ricoh.de>.

Guenther
2010-05-10 11:50:28 +02:00
Günther Deschner
e94825d159 testprogs: add vcproj and sln files for testspoolss.exe.
Patch from Kurt Pfeifle <Kurt.Pfeifle@ricoh.de>.

Guenther
2010-05-10 11:50:28 +02:00
Günther Deschner
eb28a761e9 testprogs: rename spoolss.exe to testspoolss.exe.
Patch from Kurt Pfeifle <Kurt.Pfeifle@ricoh.de>.

Guenther
2010-05-10 11:50:25 +02:00
Günther Deschner
7887d99a60 s3-net: Fix Bug #7417. 'net rpc user password' can set the wrong password.
Guenther
2010-05-10 10:36:39 +02:00
Andreas Schneider
3addebee34 tevent: Added a description for tevent queue. 2010-05-10 10:28:37 +02:00