sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-02-21 01:59:07 +03:00
Code
64,817 Commits 62 Branches 1,152 Tags
Commit Graph

23684 Commits

Author SHA1 Message Date
Nadezhda Ivanova
d35e9008a7 s4: Added acl search tests for anonymous connection. 
The tests make sure that we comply with dsHeuristics setting and
restrict anonymous access to rootDSE. They will be enabled when the
implementation is pushed. tests are verified against win2k8.
 2010-07-14 14:44:46 +03:00
Nadezhda Ivanova
ee56f74cae Fixed system_session_anon to actually make an anonymous session 
It seems that because the flag is false, this always used the supplied credentials
rhather than establish anonymous connection.
 2010-07-14 10:30:40 +03:00
Günther Deschner
595c5a2498 s4-smbtorture: add very simple RPC-BIND testsuite. 
Guenther
 2010-07-14 01:34:48 +02:00
Günther Deschner
14cf257969 s4-smbtorture: rename rpc/bind.c to rpc/multi_bind.c. 
Guenther
 2010-07-14 01:34:28 +02:00
Nadezhda Ivanova
0b2d965e4b s4: Reorganized dsHeuristics reset so the code can be reused 
Moved the setting of dsHeuristics to a method as soon we will have to set other
values as well in different tests
 2010-07-13 17:15:54 +03:00
Simo Sorce
e340aa40d1 dcerpc: move dcerpc_pull_auth_trailer into a the common dcerpc_util.c file 
Signed-off-by: Günther Deschner <gd@samba.org>
 2010-07-13 14:44:10 +02:00
Günther Deschner
716f9d6847 s4-dcerpc: move some util functions up to main librpc directory. 
Guenther

Signed-off-by: Simo Sorce <idra@samba.org>
Signed-off-by: Günther Deschner <gd@samba.org>
 2010-07-13 14:44:09 +02:00
Stefan Metzmacher
23f810041b s4:provision: remove --policy-guid and --policy-guid-dc cmdline options 
metze
 2010-07-10 11:18:19 +02:00
Stefan Metzmacher
800c7af0c9 s4:provision: also use fixed GUID names of the default group policies for domain and domain controllers in tests 
metze
 2010-07-10 11:18:19 +02:00
Matthieu Patou
f16007430a s4 provision: use correct GUID for default policies 
The value of GUID for policy is not random for default policies, it is
described here ("How Core Group Policy Works"):
http://technet.microsoft.com/en-us/library/cc784268%28WS.10%29.aspx
at paragraph System\Policies Container.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2010-07-10 11:18:18 +02:00
Matthieu Patou
e962e7e956 s4 unittests: remove the provision directory before (re)generating 2010-07-10 11:18:18 +02:00
Matthieu Patou
cad04dabbb s4 net: Add spn module to list/add/remove spn on objects 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2010-07-10 11:18:17 +02:00
Stefan Metzmacher
80f9ad4074 s4:winbind: let WBSRV_SAMBA3_SET_STRING() initialize the whole buffer 
We should not send uninitialized bytes to the winbind pipe,
this makes also makes valgrind very unhappy.

metze
 2010-07-10 09:35:03 +02:00
Stefan Metzmacher
751a26214e s4:wb_cmd_list_groups: also handle NT_STATUS_NO_MORE_ENTRIES 
metze
 2010-07-10 09:35:03 +02:00
Stefan Metzmacher
c7a30c6b17 s4:wb_cmd_list_users: also handle NT_STATUS_NO_MORE_ENTRIES 
metze
 2010-07-10 09:35:02 +02:00
Stefan Metzmacher
1ea4215e56 s4:libnet_GroupList: allocate children strings on the correct talloc parent 
Otherwise the _recv() function won't move the children strings to the
callers memory context and let the callers crash.

metze
 2010-07-10 09:35:02 +02:00
Stefan Metzmacher
35c554bef0 s4:libnet_UserList: allocate children strings on the correct talloc parent 
Otherwise the _recv() function won't move the children strings to the
callers memory context and let the callers crash.

metze
 2010-07-10 09:35:01 +02:00
Stefan Metzmacher
1caa8b06f7 s4:drepl_notify: hide some bugs from the make test output 
It's useless to get messages like this every few seconds:

dreplsrv_notify: Failed to send DsReplicaSync to
edbf4745-2966-49a7-8653-99200f1c9430._msdcs.samba2003.example.com for
CN=Configuration,DC=samba2003,DC=example,DC=com -
NT_STATUS_OBJECT_NAME_NOT_FOUND : WERR_BADFILE

We have a non bug regarding non-linked DN attributes
and changes of the target DN.

metze
 2010-07-09 16:43:17 +02:00
Stefan Metzmacher
02a627e719 s4:drsuapi: don't return all linked attributes at the same time 
Windows gives them in chunks, but I don't know the correct
rule to calculate the chunk size.

For now I'll use 1500 as the max size.

Windows isn't happy when it gets ~ 100000 linked attributes in one
response. It corrupts its directory index and later moves some objects
to the LostAndFound folder.

metze
 2010-07-09 16:43:17 +02:00
Stefan Metzmacher
9e928995f0 s4:selftest: run RPC-SAMR-LARGE-DC against the vampire_dc to test the rid alloc code 
metze
 2010-07-09 09:27:17 +02:00
Stefan Metzmacher
538bb9b3ec s4:dsdb/repl: expose drsuapi_DsExtendedError to the caller (e.g. the ridalloc client) 
metze
 2010-07-09 09:27:16 +02:00
Stefan Metzmacher
49deed5a77 s4:drepl_out_helpers: don't return NT_STATUS_OK, if an extended operation doesn't return success 
metze
 2010-07-09 09:27:16 +02:00
Stefan Metzmacher
658a0f9ef8 s4:drepl_ridalloc: only ask the rid master for a new rid pool if we need to. 
if we are at least half-exhausted then ask for a new pool.

This fixes a bug where we're sending unintialized alloc_pool
variable as exop->fsmo_info to the rid master and get back
DRSUAPI_EXOP_ERR_PARAM_ERROR.

metze
 2010-07-09 09:27:15 +02:00
Stefan Metzmacher
afba6204a3 s4:dsdb:ridalloc: use ridalloc_ridset_values infrastructure in ridalloc_allocate_rid_pool_fsmo() 
metze
 2010-07-09 09:27:15 +02:00
Stefan Metzmacher
cd8d8dfe14 s4:dsdb:ridalloc: use ridalloc_ridset_values infrastructure in ridalloc_allocate_rid() 
metze
 2010-07-09 09:27:14 +02:00
Stefan Metzmacher
3b8c9276dc s4:dsdb:ridalloc: use ridalloc_ridset_values infrastructure in ridalloc_create_rid_set_ntds() 
metze
 2010-07-09 09:27:14 +02:00
Stefan Metzmacher
12d26d59bd s4:dsdb:ridalloc: add ridalloc_ridset_values infrastructure 
metze
 2010-07-09 09:27:13 +02:00
Stefan Metzmacher
bbed1fdfcd s4:dsdb:ridalloc: use dsdb_module_constrainted_update_uint64() to update rIDAvailablePool 
metze
 2010-07-09 09:27:13 +02:00
Stefan Metzmacher
ad17333114 s4:dsdb:ridalloc.c: fix C++ warning 
metze
 2010-07-09 09:27:12 +02:00
Stefan Metzmacher
217177a4df s4:dsdb: add dsdb_module_constrainted_update_uint32/64() wrapper functions 
metze
 2010-07-09 09:27:12 +02:00
Stefan Metzmacher
65ca5a3542 s4:dsdb: add dsdb_msg_constrainted_update_uint32/64() wrapper functions 
metze
 2010-07-09 09:27:11 +02:00
Stefan Metzmacher
1d6f321a91 s4:dsdb: add dsdb_module_constrainted_update_int32/64() functions 
metze
 2010-07-09 09:27:11 +02:00
Stefan Metzmacher
388e955f28 s4:dsdb: add dsdb_msg_constrainted_update_int32/64() functions 
metze
 2010-07-09 09:27:11 +02:00
Matthias Dieter Wallnöfer
514c596561 ldb:common/ldb_dn.c - "ldb_dn_get_parent" - no need to manipulate the real DN 
Since the parent DN is a duplication of the passed DN parameter.
 2010-07-09 09:02:44 +02:00
Kamen Mazdrashki
6a0d3665e2 s4: fix warning: unused variable ‘i’ 2010-07-09 07:01:26 +03:00
Matthias Dieter Wallnöfer
6b7e436871 s4:acl LDB module - password attributes - check also the "dBCSPwd" attribute 
It's also a possible password change/set attribute candidate.
 2010-07-08 21:52:15 +02:00
Matthias Dieter Wallnöfer
921308f1e8 s4:acl LDB module - move a "mem_ctx" creation to the place where it is actually checked 
Memory allocations and their result checks should be as tight as possible.
 2010-07-08 19:28:44 +02:00
Matthias Dieter Wallnöfer
38896f3362 s4:drsuapi RPC server - "result_site_name" - fix variable denomination 2010-07-08 19:28:44 +02:00
Matthias Dieter Wallnöfer
32a2bbb44b s4:samdb.py - "setpassword" - performs password sets using the "unicodePwd" attribute 
This does work per default on each AD-compatible DC. "userPassword" support on
Windows however has to be activated explicitly by the "dSHeuristics".
 2010-07-08 19:28:43 +02:00
Matthieu Patou
61be498adb s4 upgradeprovision: For SID > 1000 do not copy them, let the system regenerated a new one 
This should avoid colliion with newly added objects that use the same
SID as existing users in the upgraded provision.

Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
 2010-07-08 19:28:42 +02:00
Nadezhda Ivanova
10c60f2372 Added a test to prove by default users can change each other's pass if the old is known 2010-07-08 15:38:16 +03:00
Günther Deschner
b0d69a857c Revert "s4-smbtorture: skip bigendian tests against s3 in RPC-LSA-SECRETS." 
This reverts commit 3587bb63e21c3f033a17bb493dceb64b05fe85d6.
 2010-07-08 10:59:16 +02:00
Andrew Tridgell
41fc0dd0ef s4-net: the net binary depends on the auth subsystem 
This helps with the OpenChange build
 2010-07-08 17:28:44 +10:00
Kamen Mazdrashki
609b865691 s4-dsdb/util: Reorder DSDB_FLAG_* checks 
On good thing about having more clear function interfaces
(and forcing callers to specify clearly what they want)
is that now I can execute following search:
git grep DSDB_FLAG_NEXT_MODULE | wc -l

This showed that DSDB_FLAG_NEXT_MODULE flag is about 6 times
more frequently used than DSDB_FLAG_OWN_MODULE.
So this should reduce branch prediction by six times
in this part of the code, right :)
 2010-07-08 02:38:36 +03:00
Kamen Mazdrashki
0c4bbb7106 s4-dsdb: Implement module switching in dsdb_module_search_dn() 
This allows caller to choose from where to start DN search
 2010-07-08 02:38:36 +03:00
Kamen Mazdrashki
62a0f11dcb s4-source4/dsdb/samdb/ldb_modules/acl.c Use DSDB_FLAG_NEXT_MODULE flag 2010-07-08 02:38:35 +03:00
Kamen Mazdrashki
02f0c6d1eb s4-source4/dsdb/samdb/ldb_modules/linked_attributes.c Use DSDB_FLAG_NEXT_MODULE flag 2010-07-08 02:38:35 +03:00
Kamen Mazdrashki
0d2116a423 s4-source4/dsdb/samdb/ldb_modules/naming_fsmo.c Use DSDB_FLAG_NEXT_MODULE flag 2010-07-08 02:38:35 +03:00
Kamen Mazdrashki
b18ab82604 s4-source4/dsdb/samdb/ldb_modules/operational.c Use DSDB_FLAG_NEXT_MODULE flag 2010-07-08 02:38:34 +03:00
Kamen Mazdrashki
7694b1964f s4-source4/dsdb/samdb/ldb_modules/partition_init.c Use DSDB_FLAG_NEXT_MODULE flag 2010-07-08 02:38:34 +03:00