sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-13 13:18:06 +03:00
Code
77,392 Commits 60 Branches 1,145 Tags 452 MiB
9318e00a1f
Commit Graph

77392 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Amitay Isaacs
9318e00a1f dsdb: Fix the password expiry calculation 
As per Section 3.1.1.4.5.26 [MS-ADTS.pdf], password is expired if

  pwdLastSet = null, or
  pwdLastSet = 0, or
  (maxPwdAge != 0x8000000000000000 and (ST - pwdLastSet) > maxPwdAge)
 2011-11-18 14:38:28 +11:00
Amitay Isaacs
d0e9f22654 s3-passdb_test: Policy values are converted to signed integer 
No need to check value for 0xffffffff (4294967295).
 2011-11-18 14:38:28 +11:00
Amitay Isaacs
244ecc844d s4-s3-upgrade: Add --verbose option to print extra details 2011-11-18 14:38:28 +11:00
Andrew Bartlett
f93ec5a027 s4-auth log details about any token we fail to convert to a unix token 
Now that entries are being added into the idmap DB from Samba3, and
may be UID or GID but not BOTH, failures are more likely.

Andrew Bartlett
 2011-11-18 14:38:28 +11:00
Amitay Isaacs
e6c77f523b s4-s3-upgrade: Fix idmap types ID_TYPE_UID/ID_TYPE_GID instead of UID/GID 2011-11-18 14:38:28 +11:00
Amitay Isaacs
6a2a2dfa5f samba-tool: Fix the domain account policy max_pwd_age calculation 
Windows sets maxPwdAge to -0x8000000000000000 when maximum password
age is set to 0 days.
 2011-11-18 14:38:27 +11:00
Amitay Isaacs
c48a2aa438 s4-s3-upgrade: Fix the minimum and maximum password age calculation 
Windows sets maxPwdAge to -0x8000000000000000 when maximum password age
is set to 0 days.
 2011-11-18 14:38:27 +11:00
Andrew Bartlett
e80dbdcab1 s4-s3-upgrade now look for -1 as the special 'not set' value 
this is possible because we know the py_passdb will always set -1
here, not passing though 0xFFFFFFFF.

Andrew Bartlett
 2011-11-18 14:38:27 +11:00
Karolin Seeger
32e825d60d s3/packaging: Fix rpm build issues on RHEL. 
Fix bug #7705 (RHEL samba.spec broken - and fix).
Based on patches of Jason Haar and Daniël van Eeden. Thanks a lot!

Karolin

Autobuild-User: Karolin Seeger <kseeger@samba.org>
Autobuild-Date: Thu Nov 17 23:05:28 CET 2011 on sn-devel-104
 2011-11-17 23:05:27 +01:00
Kai Blin
468fa95df2 s4 dns: Reduce test output noise by upping log level for dns_name_packet logging 
Autobuild-User: Kai Blin <kai@samba.org>
Autobuild-Date: Thu Nov 17 20:10:05 CET 2011 on sn-devel-104
 2011-11-17 20:10:05 +01:00
Kai Blin
e5ebda4156 s4 dns: Add a first test case 2011-11-17 15:25:58 +01:00
Kai Blin
ef4bda5c76 s4 dns: Turn on internal DNS server during testing 2011-11-17 08:42:45 +01:00
Amitay Isaacs
bd8aafc530 socket_wrapper: Added python interface to socket_wrapper 
The socket_wrapper does not support setting blocking flag or
timeouts on the sockets.

To use socket module in python, use

from samba import socket

Signed-off-by: Kai Blin <kai@samba.org>
 2011-11-17 08:42:45 +01:00
Jelmer Vernooij
f7c8af7599 samba.tests.dsdb: Import TestCase from samba.tests. 
Autobuild-User: Jelmer Vernooij <jelmer@samba.org>
Autobuild-Date: Thu Nov 17 08:36:17 CET 2011 on sn-devel-104
 2011-11-17 08:36:17 +01:00
Jelmer Vernooij
1214e5f23d samba.tests: Make sure testtools is available before importing it. 2011-11-17 07:02:15 +01:00
Richard Sharpe
f50aa988c2 Improve configure.in so it can be used outside the Samba source tree. 
Autobuild-User: Richard Sharpe <sharpe@samba.org>
Autobuild-Date: Thu Nov 17 07:00:38 CET 2011 on sn-devel-104
 2011-11-17 07:00:38 +01:00
Amitay Isaacs
3a0f7b89d5 ldb: Add handy macros for reporting error inside ldb module 
Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>

Autobuild-User: Amitay Isaacs <amitay@samba.org>
Autobuild-Date: Thu Nov 17 05:24:46 CET 2011 on sn-devel-104
 2011-11-17 05:24:46 +01:00
Amitay Isaacs
3bb5af5244 s4-dsdb: Remove unsed variable 2011-11-17 03:49:07 +01:00
Günther Deschner
8a4c8e3f85 s3-smbldap: move ldap_open_with_timeout out of smb_ldap.h to ads where it lives. 
Guenther

Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Thu Nov 17 03:47:53 CET 2011 on sn-devel-104
 2011-11-17 03:47:53 +01:00
Günther Deschner
8eb0747c1a s3-smbldap: remove duplicate LDAP_OPT_SUCCESS define. 
Guenther
 2011-11-17 02:11:46 +01:00
Günther Deschner
21691b38bc s3-winbindd: no need to globally include ldap headers in winbindd. 
Guenther
 2011-11-17 02:11:46 +01:00
Günther Deschner
7de6e6fbc7 s3-smbldap: include talloc.h and tevent.h in smbldap.h 
Guenther
 2011-11-17 02:11:46 +01:00
Günther Deschner
667f8a244d s3-param: loadparm has no dependency to smbldap. 
Guenther
 2011-11-17 02:11:46 +01:00
Günther Deschner
f9df88eca7 s3-smbldap: improve smbldap.h readability and rearrange some defines. 
Guenther
 2011-11-17 02:11:46 +01:00
Günther Deschner
7d71747897 s3-smbldap: remove duplicate prototype. 
Guenther
 2011-11-17 02:11:46 +01:00
Andrew Bartlett
2de232ae2a s3-nmbd Remove AD netlogon response from s3 nmbd server 
I do not want users with misconfigurations to have nmbd respond
with this partially correct packet.  For example, it hardcodes
the site as Default-First-Site-Name.

If nmbd wishes to return this information, it would need to query
the AD database using the same APIs that the source4/ nbt server
does.

Andrew Bartlett

Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Thu Nov 17 02:10:54 CET 2011 on sn-devel-104
 2011-11-17 02:10:54 +01:00
Andrew Bartlett
47d34997e8 s4-s3-upgrade Test getdomainsid as well 2011-11-17 00:34:09 +01:00
Andrew Bartlett
87bbe1be5f s3-net Do not look for a local SID when we are a DC 
If we are actually a DC, then the only SID we have is the domain SID,
and looking for it under the local name fails if we are a Samba4 AD DC.

Andrew Bartlett
 2011-11-17 00:34:09 +01:00
Andrew Bartlett
cd23028ed0 lib/param simplify server role values specified in smb.conf 
The pdc/bdc split is only in smb.conf for Samba3 DCs, and so is
too confusing to document in this paramter.  It will be clearer
to sort out "domain master" into a "pdc emulator" paramter
to conver this distinction.

Andrew Bartlett
 2011-11-17 00:34:09 +01:00
Andrew Bartlett
afcd3c625d docs: Add documentation for server role 2011-11-17 00:34:09 +01:00
Andrew Bartlett
a01a186a6c libds: Make server role values explicit for easier debugging 2011-11-17 00:34:09 +01:00
Andrew Bartlett
eb4fa13fd9 param: use lp_is_security_and_server_role_valid() 
This also permits a few more valid combinations, due to the layer at which this is
being used.

Andrew Bartlett
 2011-11-17 00:34:09 +01:00
Amitay Isaacs
e743fbc26e param: Check if server role and security parameters are conflicting 2011-11-17 00:34:09 +01:00
Andrew Bartlett
ea7cb8ccb7 lib/param: Add tests for security= behaviour now it operates with server role 
Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:09 +01:00
Andrew Bartlett
3ac3de73b4 param: Connect lp_security to the lib/param code to allow tests 
Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:09 +01:00
Andrew Bartlett
29cd8ae6fd s4-provision permit server role to be the ROLE_ strings from s3 
Also convert between the aliases in one single place.

Andrew Bartlett

Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:09 +01:00
Andrew Bartlett
31ba7af757 param: Add tests for automatic server role guessing 
Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:09 +01:00
Amitay Isaacs
42406d63a4 py-param: Add python interface to get server_role 2011-11-17 00:34:09 +01:00
Andrew Bartlett
15b8cfcd83 param: Move enum values into a common (included) .c file 
This #include hack is required as it is not possible to declare a
compile-time sized array in a header file.

Andrew Bartlett

Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:09 +01:00
Andrew Bartlett
1f96a59dda param: move server role helpers into loadparm.h 
Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:08 +01:00
Andrew Bartlett
b8c119f3ba s4-s3-upgrade Add test of net getlocalsid after the upgrade 
Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:08 +01:00
Andrew Bartlett
9524e2fce1 param: calculate server role from security, and security from server role 
This allows smb.conf files from either the samba3 or samba4 tradition
to come to the same value of server role, using the information in the
smb.conf file.

This is important so that tools like 'net getlocalsid' work against a
Samba4 AD installation (yes, users have tried this).

Andrew Bartlett

Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:08 +01:00
Andrew Bartlett
f099feaa01 s3-param remove lp_domain_logons(), always use IS_DC 
This makes the code internally consistant.

Andrew Bartlett

Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:08 +01:00
Andrew Bartlett
df9a1ea6cb param: make server role list common and include auto (for the new default) 
Pair-Programmed-With: Amitay Isaacs <amitay@samba.org>
 2011-11-17 00:34:08 +01:00
Amitay Isaacs
299ed45670 roles: Add ROLE_AUTO to indicate that the server role is calculated 2011-11-17 00:34:08 +01:00
Amitay Isaacs
d97acc8fb9 s3-param: Add "server role" as global parameter 
This will help extracting server role processing code in common
library.
 2011-11-17 00:34:08 +01:00
Amitay Isaacs
7b175e875e param: Add "domain logons" and "domain master" parameters 
This makes parsing of config files with s3 loadparm code and s4 loadparm
code consistent.
 2011-11-17 00:34:08 +01:00
Björn Baumbach
948e010f20 s3-libsmb/passchange.c: remove some cli_nt_error() calls 
Signed-off-by: Stefan Metzmacher <metze@samba.org>

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Wed Nov 16 20:36:11 CET 2011 on sn-devel-104
 2011-11-16 20:36:10 +01:00
Björn Baumbach
aef5fcbfc7 s3-winbindd/winbindd_cm.c: remove cli_nt_error() 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-16 19:02:12 +01:00
Björn Baumbach
6003debf7e s3-libsmb/clidfs.c: remove cli_nt_error() 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-11-16 19:02:12 +01:00