sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-28 07:21:54 +03:00
Code
58,738 Commits 60 Branches 1,144 Tags 452 MiB
fc1757369f
Commit Graph

58738 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Volker Lendecke
fc1757369f s3: Slightly simplify winbindd_store_creds 2010-01-09 20:37:39 +01:00
Volker Lendecke
43c841b6bd s3: Fix a segfault in winbindd_dual_ccache_ntlm_auth() 
ntlmssp_update allocates the reply_blob as a child of ntlmssp_state. This means
with ntlmss_end() it will be gone. winbindd_dual_ccache_ntlm_auth used the blob
after the ntlmssp_end().
 2010-01-09 20:37:39 +01:00
Andrew Tridgell
c03a101e6d s4-drs: instanceType is always sent, regardless of UDV values 2010-01-09 22:08:36 +11:00
Andrew Tridgell
a894eeab77 s4-debug: lower the verbosity of a couple of common log messages 2010-01-09 21:59:34 +11:00
Andrew Tridgell
93fefefea8 s4-samldb: fixed primaryGroupID when promoting a machine to a DC 
The machine gets a primaryGroupID of DOMAIN_RID_DCS. This is done
without changing the member attributes of its groups.
 2010-01-09 21:59:33 +11:00
Andrew Tridgell
8a09dc1266 s4-schema: fixed the SDDL for the schema root security descriptor 
This was preventing a DCPROMO client from allowing outgoing
replication
 2010-01-09 21:59:33 +11:00
Andrew Tridgell
45f49d0a58 s4-drs: add a local UDV entry even when no replUpToDateVector present on NC 
This allows us to filter correctly for a NC that we have created but
not pulled from anyone.
 2010-01-09 21:59:33 +11:00
Andrew Tridgell
b37bec8e06 s4-drs: give DN of failed replication partition 2010-01-09 21:59:32 +11:00
Andrew Tridgell
04e82370db s4-drs: base is_nc_prefix on instanceType 
for extended operations comparing to the ncRoot_dn is not correct
 2010-01-09 18:56:30 +11:00
Andrew Tridgell
67d8518f2c s4-drs: having no SPNs to change is not an error 2010-01-09 18:56:30 +11:00
Andrew Tridgell
ba745a4356 s4-drs: fixed writespn to ignore add/delete errors 
When a SPN is added and already exists, it is ignored. Similarly, when
a SPN is deleted and doesn't exist, it is ignored.
 2010-01-09 18:56:30 +11:00
Andrew Tridgell
8c2d7ae19e s4-dsdb: added samdb_ldb_val_case_cmp() 2010-01-09 18:56:29 +11:00
Andrew Tridgell
acf33e0d58 s4-drs: moved the DsWriteAccountSpn call to its own file 2010-01-09 18:56:29 +11:00
Andrew Tridgell
8ccedc3ac7 s4-libnet: dsdb_wellknown_dn() in vampire code 2010-01-09 18:56:29 +11:00
Andrew Tridgell
1158c13861 s4-drs: need to set the getncchanges extended_ret on success too 2010-01-09 18:56:29 +11:00
Andrew Tridgell
7010fad4ea s4-drs: calculate and send a uptodateness_vector with replication requests 
This stops us getting objects changes twice if they came via an
indirect path.
 2010-01-09 18:56:29 +11:00
Andrew Tridgell
39730ac302 s4-drs: be less verbose when we filter objects by UDV 2010-01-09 18:56:28 +11:00
Andrew Tridgell
349f7ba09c s4-drs: added filtering by udv in getncchanges 
When a client supplied an uptodateness_vector, we can use it to filter
what objects we return. This greatly reduces the amount of replication
traffic between DCs.
 2010-01-09 13:11:27 +11:00
Andrew Tridgell
b0090d01e0 s4-idl: give a enum for attribute cn and a 'NONE' attribute 
The 'NONE' attribute has value 0xFFFFFFFF. Adding this ensures the
compiler will complain if it is set to use 16 bit enums. We rely on
being able to store 32 bits in an attid enum.
 2010-01-09 13:10:28 +11:00
Andrew Tridgell
9e6eb22f7f s4-drs: fixed the NC in the getncchanges RID alloc reply 
the search happens on a different DN to the NC of the request, but the
reply is with the original NC
 2010-01-09 10:15:14 +11:00
Andrew Tridgell
273a4d9803 s4-debug: removed debug_ctx(). It didn't catch on :-) 
There was only one user, which isn't worth it for the overhead.
 2010-01-09 10:15:13 +11:00
Andrew Tridgell
651ddb720a s4-messaging: remove only usage of debug_ctx() 2010-01-09 10:15:13 +11:00
Andrew Tridgell
6a36799d30 s4-messaging: fixed a memory leak in messaging_path() 
It is a bit convoluted to fix, as cluster_id_string() may return a
const string.
 2010-01-09 10:15:12 +11:00
Andrew Tridgell
196cb6b359 s4-drs: fixed usage of ldb_dn_new() 2010-01-09 10:15:12 +11:00
Andrew Tridgell
39a4e2a38d s4-ldb: validate the type of the ldb argument to ldb_dn_new() 
It has been a common bug to get the first two arguments the wrong way
around
 2010-01-09 10:15:12 +11:00
Simo Sorce
7eee8e053b Fix comment 2010-01-08 17:01:02 -05:00
Jeremy Allison
d7713d11a6 Re-fix bug 5202 - cannot change ACLs on writable file with "dos filemode=yes" 
This bug re-occurred for 3.3.x and above.

The reason is that to change a NT ACL we now have to open the file requesting
WRITE_DAC and WRITE_OWNER access. The mapping from POSIX "w" to NT permissions
in posix_acls doesn't add these bits when "dos filemode = yes", so even though
the permission or owner change would be allowed by the POSIX ACL code, the
NTCreateX call fails with ACCESS_DENIED now we always check NT permissions
first.

Added in the mapping from "w" to WRITE_DAC and WRITE_OWNER access.

Jeremy.
 2010-01-08 10:17:46 -08:00
Matthias Dieter Wallnöfer
fca0c4de2a s4:provision_self_join.ldif - Adapt comment after implementation of distributed RIDs 2010-01-08 18:18:21 +01:00
Andreas Schneider
0588f34467 s4-kdc: Migrate tcp connections to tsocket. 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2010-01-08 14:38:35 +01:00
Stefan Metzmacher
42c34cdafa s4:kdc: use LIBSAMBA_TSOCKET 
metze
 2010-01-08 14:36:49 +01:00
Stefan Metzmacher
d97562b382 s4:kdc: the ->process function returns "bool" 
metze
 2010-01-08 14:36:49 +01:00
Stefan Metzmacher
bbaec01b37 libcli/util: add tstream_read_pdu_blob_send/recv 
This will take the some full_request callback function
as the Samba4 packet code.

metze
 2010-01-08 14:36:43 +01:00
Günther Deschner
1bc953088f s3-time: fix build warnings after we moved to shared time functions. 
Bjoern, please check.

Guenther
 2010-01-08 12:35:25 +01:00
Günther Deschner
9bdd3d6c1b s3-docs: mention -K option in pdbedit manpage. 
Guenther
 2010-01-08 12:35:18 +01:00
Andrew Tridgell
8d87c0a0c3 s4-drs: added two more SPNs in addentry 
w2k8r2 wants these after a DCPROMO

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:54 +11:00
Andrew Tridgell
ad11deb9bd s4-schema: fixes for W2K8-R2 schema 
The schema from WSPP had a number of typos that prevented it from
working. These changes allow it to work with Samba, and allow w2k8r2
to run DCPROMO against Samba successfully

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:54 +11:00
Andrew Tridgell
ebec49965b s4-schema: added msDS-NcType to schema container 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:53 +11:00
Andrew Tridgell
ce21151d22 s4-schema: fixed attributes of aggregate schema 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:53 +11:00
Andrew Tridgell
38909a4ae5 s4-schema: switch to W2K8-R2 schema 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:53 +11:00
Andrew Tridgell
d371b0eabe s4-schema: added adminDisplayName and adminDescription 
These are missing from the WSPP schemas

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 18:24:53 +11:00
Andrew Tridgell
c93a182a0d s4-schema: added some debug for bad attributes 2010-01-08 18:24:53 +11:00
Andrew Tridgell
9d296e6776 s4-provision: added W2K8-R2 schema as provided by WSPP 2010-01-08 18:24:52 +11:00
Andrew Tridgell
5ccf8ae373 s4-samba3samtest: we need to force netbios name as well 
needed for when run in CLIENT context
 2010-01-08 13:03:08 +11:00
Andrew Tridgell
dde2b66341 s4-samba3sid: fixed error returns when res->count != 1 and oom 2010-01-08 13:03:08 +11:00
Andrew Tridgell
9aed099362 s4-samba3samtest: force workgroup so the domain is right 
the samba3sid backend looks at lp_sam_name() which is based on the
workgroup
 2010-01-08 13:03:07 +11:00
Andrew Tridgell
f68c43e803 s4-samba3sid: the sambaNextRid attribute is actually the previous RID 
Not well named .... though same mistake that MS made with rIDNextRid
 2010-01-08 13:03:07 +11:00
Andrew Tridgell
d6f92db456 s4-samba3sam: use samba3sid module 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 13:03:07 +11:00
Andrew Tridgell
dd61336165 s4-dsdb: added a samba3sid module 
This module allocates SIDs using the Samba3 algorithm, for use with
the samba3sam module.

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-01-08 13:03:07 +11:00
Andrew Tridgell
66f161dee1 s4-acl: fixed acl.py test to use correct ldif 
same problem as sec_descriptor.py
 2010-01-08 13:03:07 +11:00
Andrew Tridgell
81c0b01585 s4-secdesc: fixed the sec_descriptor.py test 
The test was using a "changetype: add" to try and add a member to a
group, where it should use a "changetype: modify" with a "add: member"

Also fixed the recovery when the test fails part way through (delete
the test users at the start as well as the end)

Nadya, please check!
 2010-01-08 13:03:07 +11:00