sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-27 14:04:05 +03:00
Code
67,494 Commits 60 Branches 1,146 Tags
Commit Graph

67494 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jelmer Vernooij
e36f726281 subunit: Import new upstream snapshot (adds subunit_progress()) 2010-09-30 09:29:42 +02:00
Jelmer Vernooij
41182200a3 testtools: Import new upstream snapshot. 2010-09-30 09:18:01 +02:00
Andrew Tridgell
1a9f5b45f8 s4-drepl: don't call UpdateRefs on a RODC 
we use the ADD_REF bit in getncchanges instead

Pair-Programmed-With: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2010-09-29 22:12:57 -07:00
Andrew Tridgell
287e35f4cf s4-drepl: fixed the checking of replica_flags in the drepl server 
we were incorrectly avoiding a getncchanges when WRIT_REP was not set

Pair-Programmed-With: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2010-09-29 22:12:57 -07:00
Andrew Tridgell
4d551753d6 s4-kcc: fixed the replica_flags in repsFrom in the kcc 
if our calculated replica_flags doesn't match the ones in our repsFrom
then update it

Pair-Programmed-With: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2010-09-29 22:12:57 -07:00
Andrew Tridgell
d690622f37 idl-drsuapi: fixed another replica_flags that should use the bitmap 
Pair-Programmed-With: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2010-09-29 22:12:57 -07:00
Andrew Tridgell
92586abac0 s4-dns: send A record updates via TKEY 2010-09-30 00:59:16 +00:00
Günther Deschner
c82d6c0b96 s3-spoolss: make sure to exit early and with the appropriate error code in 
_spoolss_GetPrinterDriver2.

Guenther
 2010-09-30 02:59:36 +02:00
Günther Deschner
575ae3ed72 spoolss: use the correct flags for spoolss_PrinterInfo1 struct. 
Guenther
 2010-09-30 02:59:35 +02:00
Günther Deschner
3797d48b76 s3-spoolss: Fix servername/printername handling which turns out to be very important to get right. 
Guenther
 2010-09-30 02:59:35 +02:00
Günther Deschner
156ab4ec10 s4-smbtorture: add new EnumPrinters test to test printername/servername 
behaviour in EnumPrinter and GetPrinter calls.

Guenther
 2010-09-30 02:59:35 +02:00
Andrew Tridgell
1f3f75f747 s4-samldb: also set a password on the krbtgt_NNNN account 
when we setup the krbtgt_NNNN account using the DCPROMO_OID control,
we also need to set an initial password for this account

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-29 16:36:23 -07:00
Andrew Tridgell
768df75ed9 s4-devel: added new options to getncchanges script 
added --pas, --dest-dsa and --replica-flags options

Pair-Programmed-With: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2010-09-29 16:36:22 -07:00
Andrew Tridgell
1ec5f5c09c s4-drs: implement PAS checks and access checks for getncchanges 
This implements partial attribute set checking on getncchanges. If the
client sends a partial_attribute_set then we only return the specified 
attributes.

This also implements access checking on the NC root for the access
right GUIDs for requests with and without reveal secrets 

Pair-Programmed-With: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
 2010-09-29 16:36:22 -07:00
Andrew Tridgell
eebe5e1251 s4-drs: added drs_security_access_check_nc_root() 
this checks securiity on the NC root of the specified naming context
 2010-09-29 16:36:22 -07:00
Andrew Tridgell
3b52b6249b util: added BINARY_ARRAY_SEARCH_V() 
this is used to search an array of values
 2010-09-29 16:36:22 -07:00
Andrew Tridgell
44c891a35a s4-sam: added DOMAIN_RID_ENTERPRISE_READONLY_DCS for RODCs in the PAC 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-29 09:49:16 -07:00
Andrew Tridgell
9a58cd12b4 libds: added more UF_ -> ACB_ flags mappings 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
 2010-09-29 09:49:16 -07:00
Stefan Metzmacher
77d959fb15 midltests: add midltests-pipe-sync-ndr32-downgrade-02.idl 
metze
 2010-09-29 10:49:41 +02:00
Stefan Metzmacher
45e3e54e08 midltests: support for fragmented RPC traffic 
metze
 2010-09-29 10:49:40 +02:00
Stefan Metzmacher
6c0a4b6477 midltests: print out the alloc_hint for requests and responses 
metze
 2010-09-29 10:49:40 +02:00
Stefan Metzmacher
25e19287f0 midltests: improve NDR64 downgrade 
metze
 2010-09-29 10:49:39 +02:00
Stefan Metzmacher
437db14522 midltests: revert to a simple default midltests.idl 
metze
 2010-09-29 10:49:39 +02:00
Günther Deschner
9dcd5e6c8f s3-waf: add basic make test infrastructure, not able to test yet. 
Guenther
 2010-09-29 08:54:00 +02:00
Günther Deschner
bea8035c22 s3-waf: clean up socket-wrapper and nss-wrapper a little. 
Guenther
 2010-09-29 08:49:39 +02:00
Günther Deschner
292801bdf3 s3-waf: add vlp binary. 
Guenther
 2010-09-29 08:48:49 +02:00
Andrew Tridgell
31310826e0 s4-spnupdate: when we are a RODC we need to use the WriteSPN DRS call 
we can't do SPN updates via sam writes and replication, as the sam is
read-only
 2010-09-29 03:55:04 +00:00
Andrew Tridgell
739a4e4e23 s4-drsutils: expose DsBind() call in drs_utils.py 
this will be used by samba_spnupdate
 2010-09-29 03:55:04 +00:00
Andrew Tridgell
06022dad70 s4-kerberos: use TZ=GMT when we are invoking krb5 code in helpers 
Our helper scripts can fail on Fedora with the PDT timezone (Western
USA). This is the same issue we found with Heimdal earlier today, the
24 second difference between GMT and UTC, but this time in MIT
Kerberos as linked into bind9.

By forcing TZ=GMT in these scripts we avoid the problem

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-29 03:55:04 +00:00
Nadezhda Ivanova
3b0d6fda38 s4-rodc: RODC should not accept requests for role transfer 
A RODC cannot assume a role, and unwillingToPerform must be
returned if such request is sent via LDAP
 2010-09-29 03:09:15 +00:00
Andrew Tridgell
cc288603ce s4-provision: simplify our generated krb5.conf 
we don't want to force the KDC to be ourselves, we should
be using DNS to find a live KDC. Also remove some other options and
allow the krb5 lib to use defaults.

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-28 19:25:51 -07:00
Andrew Tridgell
4e0a3ea705 s4-kdc: RODC DCs should be able to produce forwardable tickets 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-28 19:25:51 -07:00
Andrew Tridgell
04e3e27fd1 heimdal: fixed timegm UTC/GMT bug 
This was a wonderful bug!

On some Fedora systems, but not on Ubuntu, there is a difference
between UTC and GMT. Heimdal replaced timegm() with _der_timegm()
which did not account for that difference (which is 24 seconds at the
moment). This led to a mutual authentication failure.

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-28 19:25:51 -07:00
Andrew Tridgell
dacfe67a0e s4-sam: fixed termination of krbtgt_attrs (comma and NULL) 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-28 19:25:51 -07:00
Andrew Tridgell
c83775d524 ldb-dn: don't crash on NULL in ldb_binary_encode_string() 
Thanks to Nadya for finding this one!
 2010-09-28 19:25:51 -07:00
Andrew Bartlett
3d4576b170 s4-kdc Ensure that an RODC may act as a server (needed to fill 
the krbtgt role).

Andrew Bartlett
 2010-09-28 19:25:50 -07:00
Andrew Bartlett
f84bdf91d8 heimdal Use a seperate krb5_auth_context for the delegated credentials 
If we re-use this context, we overwrite the timestamp while talking
to the KDC and fail the mutual authentiation with the target server.

Andrew Bartlett
 2010-09-28 19:25:50 -07:00
Stefan Metzmacher
e2c305deb1 midltests/todo: add some random idl files I had tested month ago 
metze
 2010-09-29 03:08:25 +02:00
Stefan Metzmacher
ad99711f49 midltests: add midltests-pipe-sync-ndr32-downgrade-01.idl example 
metze
 2010-09-29 03:08:25 +02:00
Stefan Metzmacher
c5e221c5f8 midltests: add some usefull defines to midltests.idl 
metze
 2010-09-29 03:08:24 +02:00
Stefan Metzmacher
06108687e8 midltests: make it possible to allow downgrades to NDR32 
metze
 2010-09-29 03:08:24 +02:00
Stefan Metzmacher
115ad60125 midltests: add a midltests_tcp.exe tool 
This uses a man in the middle approach in order to dump the
request and response pdus.

It also tests NDR32 and NDR64.

metze
 2010-09-29 01:42:28 +02:00
Stefan Metzmacher
cf4e57281b midltests: move the current implementation to midltests_simple.exe 
metze
 2010-09-29 01:42:27 +02:00
Stefan Metzmacher
d8a0436fb4 testprogs/win32: add vs2010-metze.cmd 
metze
 2010-09-29 01:42:26 +02:00
Günther Deschner
ec33a87d58 s3-printing: skip metadata entry when traversing printerlist. 
We were creating a new printer (with a very broken name) out of the
lasttimestamp entry all the time.

Simo, please check.

Guenther
 2010-09-29 01:23:54 +02:00
Stefan Metzmacher
fcee50b9c9 pidl: add support for pointers in typedefs 
metze
 2010-09-28 23:06:52 +02:00
Stefan Metzmacher
d4636c47c7 pidl:NDR/Parser: remove unused code for array element index 
metze
 2010-09-28 23:06:51 +02:00
Stefan Metzmacher
7fff22c29d pidl:NDR/Parser: simplify logic in ParseMemCtxPullFlags() 
metze
 2010-09-28 23:06:49 +02:00
Stefan Metzmacher
3fa29cdd94 pidl:NDR/Client: make the generated code look a bit nicer 
metze
 2010-09-28 23:06:48 +02:00
Stefan Metzmacher
bffa192bfe librpc/ndr: remove 'async' from ndr_interface_call 
metze
 2010-09-28 23:06:47 +02:00