Andrew Tridgell [Wed, 14 Apr 2010 13:37:47 +0000 (23:37 +1000)]
build: try to honor MAKEFLAGS from make
This means "make -j" and "make -k" now do roughly what is expected
make -j will use the number of CPUs on the system, regardless of the
number after the -j (as MAKEFLAGS doesn't contain that value).
make -k will will continue on errors
Jeremy Allison [Wed, 14 Apr 2010 02:12:43 +0000 (19:12 -0700)]
Don't set "requested_posix_capabilities" in the sync code, already done in the async.
Jeremy.
Jeremy Allison [Wed, 14 Apr 2010 01:42:24 +0000 (18:42 -0700)]
Add basic DFS tests.
Jeremy.
Jeremy Allison [Wed, 14 Apr 2010 01:41:14 +0000 (18:41 -0700)]
Split out the client unix capabilities to those the server offered, and those the client asked for.
This fixes a bug when using encrypted transport and DFS links. Found
by my basic DFS torture test, which I'll check in next. Testing *rocks* :-).
Jeremy.
Andrew Bartlett [Tue, 13 Apr 2010 02:00:06 +0000 (12:00 +1000)]
s4:auth Change auth_generate_session_info to take an auth context
The auth context was in the past only for NTLM authentication, but we
need a SAM, an event context and and loadparm context for calculating
the local groups too, so re-use that infrustructure we already have in
place.
However, to avoid problems where we may not have an auth_context (in
torture tests, for example), allow a simpler 'session_info' to be
generated, by passing this via an indirection in gensec and an
generate_session_info() function pointer in the struct auth_context.
In the smb_server (for old-style session setups) we need to change the
async context to a new 'struct sesssetup_context'. This allows us to
use the auth_context in processing the authentication reply .
Andrew Bartlett
Andrew Bartlett [Tue, 13 Apr 2010 08:24:43 +0000 (18:24 +1000)]
s4:auth Allow the simple 'struct auth_session_info' generator for all users
This code isn't ideal, but it is better than needing to consult the
main SamDB in things like a torture test.
Andrew Bartlett
Volker Lendecke [Sun, 11 Apr 2010 13:27:49 +0000 (15:27 +0200)]
s3-winbind: Authenticate SAM users
Karolin Seeger [Tue, 13 Apr 2010 18:09:13 +0000 (20:09 +0200)]
s4-heimdal: Fix typo in comment.
Karolin
Karolin Seeger [Tue, 13 Apr 2010 18:08:22 +0000 (20:08 +0200)]
s3-winbindd: Fix typo in comment.
Karolin
Karolin Seeger [Tue, 13 Apr 2010 18:07:11 +0000 (20:07 +0200)]
examples: Fix typo in comment.
Karolin
Karolin Seeger [Tue, 13 Apr 2010 18:06:14 +0000 (20:06 +0200)]
s3-docs: Fix typo in man idmap_ad.
Karolin
Stefan Metzmacher [Tue, 13 Apr 2010 07:07:21 +0000 (09:07 +0200)]
s4:librpc/rpc: the python bindings should use !NT_STATUS_IS_OK instead of NT_STATUS_IS_ERR
Everything but NT_STATUS_OK is an error here.
metze
Stefan Metzmacher [Tue, 13 Apr 2010 07:06:38 +0000 (09:06 +0200)]
s4:librpc/rpc: make PyErr_SetDCERPCStatus() static
metze
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 13:45:29 +0000 (15:45 +0200)]
s4:"samdb_server_site_name" uses - proof for out of memory
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 13:40:43 +0000 (15:40 +0200)]
s4:samdb_server_site_name - fix indentation
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 13:29:12 +0000 (15:29 +0200)]
s4:fill_netlogon_samlogon_reponse - fix a typo
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 07:53:28 +0000 (09:53 +0200)]
s4:torture/netlogon - enhance test for "dcesrv_netr_DsRGetDCNameEx2"
Test for right domainname handling.
Matthias Dieter Wallnöfer [Mon, 12 Apr 2010 16:00:49 +0000 (18:00 +0200)]
s4:dcesrv_netr_DsRGetDCNameEx2 - provide a much better implementation
On the base of the "fill_netlogon_samlogon_response" call.
This removes duplicated code.
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 13:18:02 +0000 (15:18 +0200)]
s4:fill_netlogon_samlogon_response - some rework of the detection code
To make it compatible by the use of the "dcesrv_netr_DsRGetDCName*" calls.
Some result checks were redundant so I removed them. In other cases I added
debug outputs. Sometimes the debug messages were misleading.
Andrew Tridgell [Tue, 13 Apr 2010 11:40:59 +0000 (21:40 +1000)]
s4: prevent the autoconf build from removing source4/librpc/gen_ndr/README
Andrew Tridgell [Tue, 13 Apr 2010 11:33:04 +0000 (21:33 +1000)]
s4-waf: don't try to use the system lib for the library build
when building library FOO, don't try to find the system library FOO
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Tue, 13 Apr 2010 11:20:52 +0000 (21:20 +1000)]
tevent-waf: added man page and pkgconfig file
this allows libtevent to build under rpmbuild
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Volker Lendecke [Tue, 13 Apr 2010 10:09:21 +0000 (12:09 +0200)]
libwbclient: Re-Fix a bug that was fixed with
e5741e27c4c
> r21878: Fix a bug with smbd serving a windows terminal server: If winbind
> decides smbd to be idle it might happen that smbd needs to do a winbind
> operation (for example sid2name) as non-root. This then fails to get the
> privileged pipe. When later on on the same connection another authentication
> request comes in, we try to do the CRAP auth via the non-privileged pipe.
>
> This adds a winbindd_priv_request_response() request that kills the existing
> winbind pipe connection if it's not privileged.
The fix for this was lost during the conversion to libwbclient.
Thanks to Ira Cooper <samba@ira.wakeful.net> for pointing this out!
Volker
Volker Lendecke [Tue, 13 Apr 2010 10:27:18 +0000 (12:27 +0200)]
libwbclient: Remove a pointless variable
Stefan Metzmacher [Tue, 13 Apr 2010 10:56:19 +0000 (12:56 +0200)]
buildtools/wafsamba: make sure CHECK_FUNC() and CHECK_VARIABLE() work with -O3 in the CFLAGS
'CFLAGS="-O3" waf configure' was not detecting dlopen() needs -ldl.
metze
Andrew Tridgell [Tue, 13 Apr 2010 10:13:00 +0000 (20:13 +1000)]
tdb-waf: added build of manpages and config options for RPM build
Building a RPM from the fedora spec file now works with minimal changes
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Tue, 13 Apr 2010 09:46:29 +0000 (19:46 +1000)]
talloc-waf: the talloc1-compat lib depends on talloc
It is a library linked to another library, not a 2nd copy of talloc.c
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Tue, 13 Apr 2010 09:45:38 +0000 (19:45 +1000)]
build: for unbundled libraries install devel link too
We need a symlink libFOO.so -> libFOO.so.x.y as a
development symlink
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Stefan Metzmacher [Tue, 13 Apr 2010 08:09:18 +0000 (10:09 +0200)]
testprogs/blackbox/test_kinit: reorder arguments to "net time" to fix make test
metze
Stefan Metzmacher [Tue, 13 Apr 2010 07:38:42 +0000 (09:38 +0200)]
s4:tortore/rpc/spoolss: some compilers don't like .foo.bar = 5
metze
Andrew Tridgell [Tue, 13 Apr 2010 07:32:14 +0000 (17:32 +1000)]
talloc-waf: added the manpage generation and talloc1-compat generation
this allows the RPM spec file to be used with only a tiny mod (using
autogen-waf.sh instead of autogen.sh and using ln -sf for the library
links instead of ln -s)
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Tue, 13 Apr 2010 07:27:52 +0000 (17:27 +1000)]
build: added autoconf compatible configure options
This adds --build, --host, --program-prefix and
--disable-dependency-tracking. All we do with them is check them for sanity
and throw an error if (for example) the user tries a cross-compile using
these options
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 07:25:26 +0000 (09:25 +0200)]
s4:CLDAP - "fill_netlogon_samlogon_reponse" - check for out of memory
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 07:18:33 +0000 (09:18 +0200)]
s4:acl/descriptor LDB module - distinguish between root and default basedn
The first is the forest base DN, the second the domain base DN. At the moment
we assume that they are both the same but it hasn't to be so.
Nadia, I would invite you to fix the outstanding parts regarding this (I added
comments).
Matthias Dieter Wallnöfer [Mon, 12 Apr 2010 13:02:10 +0000 (15:02 +0200)]
s4:use "samdb_forest_name" for the forest DNS domainname lookup
Matthias Dieter Wallnöfer [Mon, 12 Apr 2010 12:15:34 +0000 (14:15 +0200)]
s4:dsdb/common/util.c - add a call which determines centrally the forest DNS domainname
Volker Lendecke [Fri, 9 Apr 2010 15:19:13 +0000 (17:19 +0200)]
s3: Cache the username map in gencache
This is for uses with a heavy-weight username map script
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 06:57:07 +0000 (08:57 +0200)]
s4:remove "samdb_root_dn", "samdb_base_dn", "samdb_config_dn" and "samdb_schema_dn"
They aren't needed anymore.
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 06:41:10 +0000 (08:41 +0200)]
Revert "s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functions"
We should use the "ldb_get_*_basedn" calls since they are available in the LDB
library.
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 06:24:09 +0000 (08:24 +0200)]
s4:objectclass LDB module - remove a unneeded newline
Jeremy Allison [Tue, 13 Apr 2010 04:40:28 +0000 (21:40 -0700)]
Move to using 64-bit mid values in our internal open file database.
This will allow us to share logic much easier between SMB1 and SMB2
servers.
Jeremy
Andrew Tridgell [Tue, 13 Apr 2010 03:44:28 +0000 (13:44 +1000)]
build: cope with spaces in options passed to ./configure
Andrew Tridgell [Tue, 13 Apr 2010 02:41:26 +0000 (12:41 +1000)]
build: allow cross-builds to use shared libraries
Andrew Tridgell [Tue, 13 Apr 2010 01:45:38 +0000 (11:45 +1000)]
s4-tevent: up tevent version number
tevent now has tevent_re_initialise() which is needed for the s4 build
Andrew Tridgell [Tue, 13 Apr 2010 01:41:13 +0000 (11:41 +1000)]
build: check the type of implied dependencies
an implied dependency needs to be a library or module
Andrew Tridgell [Tue, 13 Apr 2010 01:27:24 +0000 (11:27 +1000)]
build: fixed a typo that prevented --bundled-libraries from working correctly
Jelmer noticed that --minimum-library-version=talloc:2.0.1 --bundled-libraries=!tevent
didn't do the right thing.
Andrew Tridgell [Mon, 12 Apr 2010 23:33:18 +0000 (09:33 +1000)]
build: cope with existing binaries in bin/ left over from the old build
Volker Lendecke [Mon, 12 Apr 2010 19:31:33 +0000 (21:31 +0200)]
s3: Apply some const
Matthias Dieter Wallnöfer [Mon, 12 Apr 2010 12:49:14 +0000 (14:49 +0200)]
s3/s4:netlogon IDL - fix up "struct netr_SamInfo6" regarding the "forest" attribute
According to MS-NRPC 2.2.1.4.13 this should be the DNS domainname, not the
forest one.
Matthias Dieter Wallnöfer [Mon, 12 Apr 2010 12:34:28 +0000 (14:34 +0200)]
s4:auth/auth_sam_reply.c - fix counter types
Matthias Dieter Wallnöfer [Mon, 12 Apr 2010 11:43:43 +0000 (13:43 +0200)]
s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functions
Purely cosmetic change.
Matthias Dieter Wallnöfer [Mon, 12 Apr 2010 11:40:44 +0000 (13:40 +0200)]
s4:torture/ldap/ldap_sort.c - There should be used the "base_dn" not the "root_dn" for the sort test
The (forest) "root_dn" hasn't always to be the same as the (domain) "base_dn"!
Jelmer Vernooij [Mon, 12 Apr 2010 14:11:31 +0000 (16:11 +0200)]
selftest: Cope with strict.
Stefan Metzmacher [Mon, 12 Apr 2010 11:44:19 +0000 (13:44 +0200)]
s4:tortore/rpc/spoolss.c: fix declaration after code warning
metze
Andrew Tridgell [Mon, 12 Apr 2010 12:56:44 +0000 (22:56 +1000)]
s4-ldb: enable waf build of ldb without ldap backend
this is useful for cross-compilation testing, where getting all the
ldap deps installed can be hard
Andrew Tridgell [Mon, 12 Apr 2010 12:06:51 +0000 (22:06 +1000)]
build: added cross-compilation configure options
this enables use of a cross-compilation emulator, so configure tests
run on an emulator of the target platform
Nadezhda Ivanova [Mon, 12 Apr 2010 13:05:37 +0000 (16:05 +0300)]
Fixed a problem with provision missing the default_dir/etc directory.
Volker Lendecke [Fri, 9 Apr 2010 12:30:54 +0000 (14:30 +0200)]
s3: Little refactoring: Factor out skip_space
Volker Lendecke [Fri, 9 Apr 2010 12:28:44 +0000 (14:28 +0200)]
s3: Remove a bogus 0-check, "isspace" can not return true for \0
Volker Lendecke [Mon, 12 Apr 2010 08:34:29 +0000 (10:34 +0200)]
s3: Cache the result of the username map script
Stefan Metzmacher [Mon, 12 Apr 2010 10:49:58 +0000 (12:49 +0200)]
Remove unused pcp/ directory.
metze
Stefan Metzmacher [Mon, 12 Apr 2010 10:49:19 +0000 (12:49 +0200)]
Remove unused swat2 code
metze
Stefan Metzmacher [Mon, 12 Apr 2010 08:55:32 +0000 (10:55 +0200)]
s4:heimdal_build/wscript_build: avoid global deps for hostcc stuff
metze
Stefan Metzmacher [Mon, 12 Apr 2010 08:55:02 +0000 (10:55 +0200)]
lib/replace/wscript: avoid global deps for LIBREPLACE_HOSTCC
metze
Stefan Metzmacher [Mon, 12 Apr 2010 08:16:54 +0000 (10:16 +0200)]
wafsamba: don't add global dependencies to hostcc targets
metze
Stefan Metzmacher [Mon, 12 Apr 2010 07:47:49 +0000 (09:47 +0200)]
lib/replace/wscript: inline LIBREPLACE_EXT into 'replace' as the autoconf system does
metze
Stefan Metzmacher [Mon, 12 Apr 2010 07:44:47 +0000 (09:44 +0200)]
s4:param/wscript_build: 'dl' is provides via 'replace'
metze
Stefan Metzmacher [Mon, 12 Apr 2010 07:43:54 +0000 (09:43 +0200)]
lib/nss_wrapper/wscript_build: 'replace' already includes 'dl'
metze
Stefan Metzmacher [Mon, 12 Apr 2010 07:41:19 +0000 (09:41 +0200)]
lib/replace/wscript: add dependency to 'dl'
metze
Stefan Metzmacher [Mon, 12 Apr 2010 07:34:39 +0000 (09:34 +0200)]
s4:heimdal_build/wscript: rename HEIMDAL_ROKEN_H => HEIMDAL_ROKEN_HOSTCC
metze
Stefan Metzmacher [Mon, 12 Apr 2010 07:33:42 +0000 (09:33 +0200)]
lib/replace/wscript: rename LIBREPLACE_H => LIBREPLACE_HOSTCC
metze
Stefan Metzmacher [Mon, 12 Apr 2010 07:30:12 +0000 (09:30 +0200)]
wafsamba: allow passing 'use_hostcc' to SAMBA_SUBSYSTEM()
metze
Andrew Tridgell [Mon, 12 Apr 2010 08:39:50 +0000 (18:39 +1000)]
s4-ldb: fixed a crash bug for non-UTF8 strings
when one of the strings was not valid UTF8, we would try to
dereference NULL
Kai Blin [Mon, 5 Apr 2010 22:28:05 +0000 (00:28 +0200)]
build: Add an always parameter to CHECK_DECLS
Kai Blin [Sun, 11 Apr 2010 19:59:43 +0000 (21:59 +0200)]
s3-waf: Correctly create symlink if SAMBA_BINARY targets are not in the current diectory
Many thanks to ita for pointing out the fix.
Andrew Tridgell [Mon, 12 Apr 2010 06:21:21 +0000 (00:21 -0600)]
build: allow target upgrades from EMPTY to SYSLIB
A library may be initially set as empty if it wasn't needed for a list
of functions in CHECK_FUNCS_IN(). A later check may require the
library.
Pair-Programmed-With: Kai Blin <kai@samba.org>
Andrew Tridgell [Mon, 12 Apr 2010 07:46:01 +0000 (17:46 +1000)]
s4-waf: move the KRB5_DEPRECATED check into lib/replace
this needs to be with the krb5.h check for the source3 build
Stefan Metzmacher [Sun, 11 Apr 2010 17:24:46 +0000 (19:24 +0200)]
s4-waf: inline LIBREPLACE_NETWORK into 'replace'
metze
Stefan Metzmacher [Mon, 12 Apr 2010 07:12:29 +0000 (09:12 +0200)]
lib/replace/wscript: rename REPLACE_H_SOURCE => REPLACE_HOSTCC_SOURCE
metze
Stefan Metzmacher [Mon, 12 Apr 2010 06:29:53 +0000 (08:29 +0200)]
lib/replace/wscript: implement the same getpass detection logic as the autoconf version
metze
Stefan Metzmacher [Sun, 11 Apr 2010 17:16:32 +0000 (19:16 +0200)]
lib/replace/wscript: inline LIBREPLACE_GETPASS into 'replace'
metze
Kamen Mazdrashki [Mon, 12 Apr 2010 00:45:12 +0000 (03:45 +0300)]
s4/libnet: Allocate mem in supplied mem_ctx
In this case, 'libnet_Vampire *r' may not be a pointer to
a talloced memory.
Kamen Mazdrashki [Mon, 12 Apr 2010 00:33:33 +0000 (03:33 +0300)]
s4/py_net: Source code formatting fix
Andrew Tridgell [Mon, 12 Apr 2010 01:12:22 +0000 (11:12 +1000)]
build: use a common autogen-waf.sh for all builds
the symlink will get updated with the right target when waf dist is
used in each directory
Andrew Tridgell [Mon, 12 Apr 2010 01:09:44 +0000 (11:09 +1000)]
build: cope with symlinks between build components in waf dist
This will allow us to have autogen-waf.sh be a symlink to
../buildtools/scripts/autogen-waf.sh in each library.
That will prevent people from updating only the script in source4/,
and forgetting to udpate the scripts in the other libs, as happened
with commit
f3f82496
Jelmer Vernooij [Mon, 12 Apr 2010 00:55:27 +0000 (02:55 +0200)]
s4-net: Add definition of outf.
Andrew Tridgell [Sun, 11 Apr 2010 23:49:56 +0000 (09:49 +1000)]
build: added --minimum-library-version configure option
this allows the packager to override the default choice of system
library version
Kamen Mazdrashki [Sun, 11 Apr 2010 15:43:56 +0000 (18:43 +0300)]
s4: fix a typo
Kamen Mazdrashki [Sun, 11 Apr 2010 14:27:30 +0000 (17:27 +0300)]
s4/libnet: handle errors returned for DsAddEntry_v3 properly
It turns out ms-docs are little bit misleading - in case of
no error, r->out.ctr->ctr3.err_data is not NULL, but
error information (r->out.ctr->ctr3.err_data->v1.info) is NULL!
Kamen Mazdrashki [Sun, 11 Apr 2010 14:24:32 +0000 (17:24 +0300)]
s4/libnet: Add few new lines in the debug log so it is readable again
Kamen Mazdrashki [Sun, 11 Apr 2010 14:04:21 +0000 (17:04 +0300)]
s4/libnet: Dump DRSUAPI_DIRERR_OK as unexpected
Actually DRSUAPI_DIRERR_OK is not valid error to be returned.
I introduce it in the IDL so that I can use it in enum.
So it should be dumped as Unexpected error code
Volker Lendecke [Sun, 11 Apr 2010 13:25:55 +0000 (15:25 +0200)]
s3: Move serverinfo_to_SamInfoX to auth/server_info.c
Volker Lendecke [Sun, 11 Apr 2010 13:25:06 +0000 (15:25 +0200)]
s3: Move [make|free]_user_info to auth/user_info.c
Volker Lendecke [Sun, 11 Apr 2010 20:41:59 +0000 (22:41 +0200)]
s3: Move make_server_info_sam to auth/server_info_sam.c
Volker Lendecke [Sun, 11 Apr 2010 20:38:33 +0000 (22:38 +0200)]
s3: Move sanitize_username to lib/util_str.c
Volker Lendecke [Sun, 11 Apr 2010 20:37:08 +0000 (22:37 +0200)]
s3: Move make_server_info to auth/server_info.c
Volker Lendecke [Sun, 11 Apr 2010 20:32:36 +0000 (22:32 +0200)]
s3: Move check_sam_security to auth/check_sam.c
Volker Lendecke [Sun, 11 Apr 2010 20:26:46 +0000 (22:26 +0200)]
s3: Make check_sam_security public
Volker Lendecke [Sun, 11 Apr 2010 20:23:08 +0000 (22:23 +0200)]
s3: Replace "auth_context" by "challenge" in need_to_increment_bad_pw_count args
Volker Lendecke [Sun, 11 Apr 2010 12:07:12 +0000 (14:07 +0200)]
s3: Replace "auth_context" by "challenge" in sam_password_ok args