Andrew Bartlett [Sun, 26 Sep 2010 02:34:58 +0000 (12:34 +1000)]
s4-kerberos Don't segfault if the password isn't specified in keytab generation
Andrew Bartlett
Autobuild-User: Andrew Bartlett <abartlet@samba.org>
Autobuild-Date: Sun Sep 26 03:29:34 UTC 2010 on sn-devel-104
Matthieu Patou [Sun, 26 Sep 2010 00:58:37 +0000 (04:58 +0400)]
upgradeprovision: fix a typo
Matthieu Patou [Sun, 26 Sep 2010 00:57:04 +0000 (04:57 +0400)]
upgradeprovision: Fix a bug with renamed entries
The SD was not refetched for renamed entries, resulting with a try to
add an additional SD when there was already one.
Matthieu Patou [Sat, 25 Sep 2010 03:36:12 +0000 (07:36 +0400)]
upgradeprovision: fix a bug with not updated links
Matthieu Patou [Tue, 7 Sep 2010 13:57:52 +0000 (17:57 +0400)]
s4 provision: start with gpo of version 0 and be consistent between different policies
Matthieu Patou [Sat, 18 Sep 2010 04:15:36 +0000 (08:15 +0400)]
s4 upgradeprovision: fix a bug with empty reference objects
Thanks to lukas@eecs.qmul.ac.uk for poiting it to me
Matthieu Patou [Tue, 7 Sep 2010 13:50:39 +0000 (17:50 +0400)]
s4 upgradeprovision: Copy versionNumber if not present it helps to make gpo valid
Matthieu Patou [Tue, 7 Sep 2010 13:45:55 +0000 (17:45 +0400)]
s4 provision: Make GPO folder group writable
The group of this folder is domain administrator and it seems sensible
that all domain administrators have the right to modify the gpo (they
have it at the NT ACLs level ...)
Volker Lendecke [Sat, 25 Sep 2010 23:31:18 +0000 (16:31 -0700)]
s3: Remove talloc_autofree_context() from change_to_guest()
pass is freed at the exit of this routine
Volker Lendecke [Sat, 25 Sep 2010 23:30:06 +0000 (16:30 -0700)]
s3: Remove talloc_autofree_context() from swat
In both cases, pass is freed immediately
Volker Lendecke [Sat, 25 Sep 2010 23:28:21 +0000 (16:28 -0700)]
s3: Remove talloc_autofree_context() from smbpasswd
In both cases, pwd is freed immediately
Volker Lendecke [Sat, 25 Sep 2010 23:27:04 +0000 (16:27 -0700)]
s3: Remove talloc_autofree_context() from net_sam_provision()
Volker Lendecke [Sat, 25 Sep 2010 23:24:16 +0000 (16:24 -0700)]
s3: Remove talloc_autofree_context() from lookup_unix_user_name()
pwd is freed in this routine immediately
Volker Lendecke [Sat, 25 Sep 2010 23:23:11 +0000 (16:23 -0700)]
s3: Remove talloc_autofree_context() from pdb_init_ads()
Volker Lendecke [Sat, 25 Sep 2010 23:20:11 +0000 (16:20 -0700)]
s3: Remove two talloc_autofree_context() calls
Both allocated blobs are freed in their routines
Volker Lendecke [Sat, 25 Sep 2010 23:02:04 +0000 (16:02 -0700)]
s3: Remove talloc_autofree_context() from serverid_db()
If we needed an explicit tdb_close() in the destructor, we'd be hosed
long ago.
Volker Lendecke [Sat, 25 Sep 2010 22:59:06 +0000 (15:59 -0700)]
s3: Remove talloc_autofree_context() from serverid_parent_init()
Volker Lendecke [Sat, 25 Sep 2010 22:56:33 +0000 (15:56 -0700)]
s3: Remove talloc_autofree_context() from messaging_tdb_parent_init()
Volker Lendecke [Sat, 25 Sep 2010 22:50:33 +0000 (15:50 -0700)]
s3: Remove talloc_autofree_context() from ctdb_read_req()
Volker Lendecke [Sat, 25 Sep 2010 22:46:36 +0000 (15:46 -0700)]
s3: Remove talloc_autofree_context() from get_root_nt_token()
The memcache_add_talloc() later on steals it anyway
Matthieu Patou [Sat, 25 Sep 2010 17:13:07 +0000 (21:13 +0400)]
upgradeprovision: use the same case for hostname in reference provision as in the current provision
Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Sun Sep 26 01:21:52 UTC 2010 on sn-devel-104
Andrew Tridgell [Sun, 26 Sep 2010 00:35:55 +0000 (17:35 -0700)]
autobuild: added --retry option
this allows the build to auto retry if master changes
Andrew Tridgell [Sat, 25 Sep 2010 07:07:57 +0000 (00:07 -0700)]
s4-dns: the DNS/${HOSTNAME} SPN should be on the DNS account only
Andrew Tridgell [Sat, 25 Sep 2010 06:25:49 +0000 (23:25 -0700)]
s4-provision: switch to dns-HOSTNAME instead of dns
We now use a host specific account name for the DNS account, which is
the account used for dynamic DNS updates. We also setup the
servicePrincipalName for automatic update, and add both DNS/${DNSDOMAIN}
and DNS/${DNSNAME} for compatibility with both the old and new SPNs
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Sat, 25 Sep 2010 23:32:55 +0000 (16:32 -0700)]
autobuild: enable ccache
Andrew Tridgell [Sat, 25 Sep 2010 23:18:00 +0000 (16:18 -0700)]
autobuild: added --fix-whitespace option
Andrew Tridgell [Sat, 25 Sep 2010 22:53:32 +0000 (15:53 -0700)]
autobuild: added --rebase-master and --push-master
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Andrew Tridgell [Sat, 25 Sep 2010 22:30:13 +0000 (15:30 -0700)]
autobuild: added a EDITOR script to mark successful autobuilds
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Andrew Tridgell [Sat, 25 Sep 2010 21:09:11 +0000 (14:09 -0700)]
autobuild: added --rebase option
this allows you to rebase on a URL before starting
Andrew Tridgell [Sat, 25 Sep 2010 19:51:51 +0000 (12:51 -0700)]
script: added autobuild.py automatic build test script
this can be used to run all tests in parallel, in free git clones
Kamen Mazdrashki [Sat, 25 Sep 2010 23:13:39 +0000 (02:13 +0300)]
s4-possibleinferiors.py: Fix usage of 'paged_search' module for remote LDB connections
Kamen Mazdrashki [Sat, 25 Sep 2010 21:21:19 +0000 (00:21 +0300)]
s4-fsmo.py: Fix usage of 'paged_search' module for remote LDB connections
Kamen Mazdrashki [Sat, 25 Sep 2010 21:20:20 +0000 (00:20 +0300)]
s4-delete_object.py: Fix usage of 'paged_search' module for remote LDB connections
Kamen Mazdrashki [Sat, 25 Sep 2010 21:18:35 +0000 (00:18 +0300)]
s4-sec_descriptor.py: Fix usage of 'paged_search' module for remote LDB connections
Kamen Mazdrashki [Sat, 25 Sep 2010 21:13:39 +0000 (00:13 +0300)]
s4-ldap_schema.py: Remove unused LDB connection to GC port
Kamen Mazdrashki [Sat, 25 Sep 2010 21:11:08 +0000 (00:11 +0300)]
s4-dsdb_schema_info.py: Fix usage of 'paged_search' module for remote LDB connections
Kamen Mazdrashki [Sat, 25 Sep 2010 21:10:24 +0000 (00:10 +0300)]
s4-ldapcmp: Fix usage of 'paged_search' module for remote LDB connections
Kamen Mazdrashki [Sat, 25 Sep 2010 23:25:03 +0000 (02:25 +0300)]
s4-ldapcmp: Extend ldapcmp to be able to compare more than one context at a time
If no arguments given, ldapcmp will compare all NCs
Volker Lendecke [Sat, 25 Sep 2010 22:40:54 +0000 (15:40 -0700)]
s3: Avoid an explicit ZERO_STRUCT
Volker Lendecke [Sat, 25 Sep 2010 22:35:44 +0000 (15:35 -0700)]
s3: Lift talloc_autofree_context() from make_auth_context_fixed()
Volker Lendecke [Sat, 25 Sep 2010 22:31:29 +0000 (15:31 -0700)]
s3: Lift talloc_autofree_context() from make_auth_context_subsystem()
Volker Lendecke [Sat, 25 Sep 2010 21:51:45 +0000 (14:51 -0700)]
s3: Lift talloc_autofree_context() from make_auth_context_text_list()
Volker Lendecke [Sat, 25 Sep 2010 21:50:46 +0000 (14:50 -0700)]
s3: Lift talloc_autofree_context() from make_auth_context()
Volker Lendecke [Sat, 25 Sep 2010 21:47:42 +0000 (14:47 -0700)]
s3: Fix a memleak in make_new_server_info_system()
Volker Lendecke [Sat, 25 Sep 2010 21:47:31 +0000 (14:47 -0700)]
s3: Remove talloc_autofree_context() from init_system_info()
Volker Lendecke [Sat, 25 Sep 2010 22:44:55 +0000 (15:44 -0700)]
s3: Fix a typo
Volker Lendecke [Sat, 25 Sep 2010 21:59:42 +0000 (14:59 -0700)]
s3: Fix some 64-bit warnings
Jelmer Vernooij [Fri, 24 Sep 2010 00:40:35 +0000 (17:40 -0700)]
pyteven: Fix build warnings.
Jelmer Vernooij [Fri, 24 Sep 2010 00:29:53 +0000 (17:29 -0700)]
Check in configure/Makefile for those projects that have waf as primary build system.
Jelmer Vernooij [Fri, 24 Sep 2010 00:13:56 +0000 (17:13 -0700)]
pytevent: Add more tests.
Jelmer Vernooij [Thu, 23 Sep 2010 23:50:36 +0000 (16:50 -0700)]
pytevent: Fill in client side fnuctions.
Jelmer Vernooij [Thu, 23 Sep 2010 22:14:57 +0000 (15:14 -0700)]
selftest: If a testsuite is killed by a signal, let selftest die.
Jelmer Vernooij [Thu, 23 Sep 2010 21:28:02 +0000 (14:28 -0700)]
tevent: Add infrastructure for python bindings.
Jelmer Vernooij [Thu, 23 Sep 2010 21:01:02 +0000 (14:01 -0700)]
tevent: Switch to using waf by default.
Volker Lendecke [Sat, 25 Sep 2010 17:56:58 +0000 (10:56 -0700)]
s3: Fix bug 7470
S_IREAD and S_IWRITE are not standard.
Thanks to Joachim Schmitz <schmitz@hp.com> for reporting!
Andrew Tridgell [Fri, 24 Sep 2010 19:50:13 +0000 (12:50 -0700)]
ldb: mark the location of a lot more ldb requests
Andrew Tridgell [Fri, 24 Sep 2010 19:09:26 +0000 (12:09 -0700)]
s4-dsdb: added tagging of requests in dsdb modules
this allows you to call dsdb_req_chain_debug() in gdb or when writing
debug code to see the request chain
Andrew Tridgell [Fri, 24 Sep 2010 19:07:16 +0000 (12:07 -0700)]
ldb: added request location tracking
this is used to help debug async ldb requests. The ldb request handle
now contains a location string and the parent request pointer. This
allows us to print a backtrace of ldb requests in the dsdb modules.
Andrew Tridgell [Fri, 24 Sep 2010 17:05:07 +0000 (10:05 -0700)]
s4-repl: make getncchanges a bit less verbose
this should reduce some of the clutter in make test
Andrew Tridgell [Fri, 24 Sep 2010 02:51:36 +0000 (19:51 -0700)]
s4-net: added --ipaddress option to net commands
this allows override of server IP address, bypassing NBT or DNS name
resolution of DCs
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Andrew Tridgell [Fri, 24 Sep 2010 02:52:19 +0000 (19:52 -0700)]
s4-pynet: added server keyword to Net() initialisation
this sets up server_address in the libnet context
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Andrew Tridgell [Fri, 24 Sep 2010 02:50:00 +0000 (19:50 -0700)]
s4-libnet: added server_address option in libnet context
this is used by libnet_LookupDCs
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Andrew Tridgell [Fri, 24 Sep 2010 02:49:12 +0000 (19:49 -0700)]
s4-finddcs: allow override of server IP address
this will be used to implement --ipaddress option to net commands
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Andrew Tridgell [Fri, 24 Sep 2010 02:48:03 +0000 (19:48 -0700)]
s4-repl: don't store repsFrom on DNs other than NC heads
we don't want a refsFrom on the Rid Manage$ DN
Pair-Programmed-With: Anatoliy Atanasov <anatoliy.atanasov@postpath.com>
Andrew Tridgell [Fri, 24 Sep 2010 02:46:27 +0000 (19:46 -0700)]
s4-pycredentials: avoid a tallloc_free on ref
with the new py object structure, we need to unlink not free
Andrew Tridgell [Thu, 23 Sep 2010 22:40:20 +0000 (15:40 -0700)]
s4-repl: use namingContexts from rootDSE to initialise partition list
this is preferable to looking for the hasMasterNCs attribute on
nTDSDSA objects.
Andrew Tridgell [Thu, 23 Sep 2010 22:39:37 +0000 (15:39 -0700)]
s4-repl: force on WRIT_REP when we are a writable replica
this ensures we always mark ourselves as writeable when we are not
an RODC
Andrew Tridgell [Thu, 23 Sep 2010 22:38:07 +0000 (15:38 -0700)]
s4-repl: use dreplsrv_partition_source_dsa_by_guid to find source dsa
this avoids a list walk in the calling code
Andrew Tridgell [Thu, 23 Sep 2010 22:33:36 +0000 (15:33 -0700)]
torture: fixed a valgrind error in SMB2-CREATE
the lock structure had uninitialised elements, so we sent a random
length.
This also adds a 1 byte write, so there is real data that is being
truncated with the 2nd open
Nadezhda Ivanova [Sat, 25 Sep 2010 17:19:11 +0000 (10:19 -0700)]
s4-dsdb: Fixed a call to the wrong ops function in dsdb_module_search_dn.
Günther Deschner [Sat, 25 Sep 2010 06:50:23 +0000 (23:50 -0700)]
s3-waf: fix debug2html.
Guenther
Günther Deschner [Sat, 25 Sep 2010 06:37:43 +0000 (23:37 -0700)]
s3-waf: add missing idmap module objectfiles.
Guenther
Günther Deschner [Sat, 25 Sep 2010 05:14:22 +0000 (22:14 -0700)]
s3-waf: convert DISPLAY_SEC into a subsystem.
Guenther
Günther Deschner [Sat, 25 Sep 2010 04:52:07 +0000 (21:52 -0700)]
s3-waf: fix libnetapi and libaddns unresolved symbols.
Guenther
Günther Deschner [Sat, 25 Sep 2010 04:46:39 +0000 (21:46 -0700)]
s3-waf: install header files for our libraries.
Guenther
Günther Deschner [Sat, 25 Sep 2010 00:06:16 +0000 (17:06 -0700)]
s3-waf: convert LIBEVENTLOG into a subsystem.
Guenther
Günther Deschner [Sat, 25 Sep 2010 00:05:44 +0000 (17:05 -0700)]
s4-waf: add NDR_EVENTLOG.
Guenther
Günther Deschner [Sat, 25 Sep 2010 00:18:03 +0000 (17:18 -0700)]
s4-waf: rename subsystem NDR_LSAPRC to NDR_LSA.
Guenther
Günther Deschner [Fri, 24 Sep 2010 23:45:41 +0000 (16:45 -0700)]
s3-waf: convert LIBNET et al into subsystems.
Guenther
Günther Deschner [Fri, 24 Sep 2010 23:13:55 +0000 (16:13 -0700)]
s3-waf: convert PASSWD_UTIL into a subsystem.
Guenther
Volker Lendecke [Fri, 24 Sep 2010 17:20:06 +0000 (19:20 +0200)]
talloc: Add a warning about talloc_autofree_context() and dlclose()
Günther Deschner [Fri, 24 Sep 2010 19:42:05 +0000 (12:42 -0700)]
s3-waf: convert READLINE into a subsystem.
Guenther
Günther Deschner [Fri, 24 Sep 2010 19:27:57 +0000 (12:27 -0700)]
s3-waf: convert PROFILE into a subsystem.
Guenther
Günther Deschner [Fri, 24 Sep 2010 19:13:27 +0000 (12:13 -0700)]
s3-waf: convert AFS_SETTOKEN and AFS into subsystems.
Guenther
Günther Deschner [Fri, 24 Sep 2010 19:04:19 +0000 (12:04 -0700)]
s3-waf: let winbind depend on SRV_NDR_WBINT and RPCCLI_NDR_WBINT.
Guenther
Günther Deschner [Fri, 24 Sep 2010 18:43:40 +0000 (11:43 -0700)]
s3-waf: convert LOCKING into a subsystem.
Guenther
Günther Deschner [Fri, 24 Sep 2010 18:28:44 +0000 (11:28 -0700)]
s3-waf: add RPC_NDR_WBINT to librpc/wscript_build.
Guenther
Günther Deschner [Fri, 24 Sep 2010 18:16:53 +0000 (11:16 -0700)]
s3-waf: add autogen-waf.sh to source3.
Guenther
Günther Deschner [Fri, 24 Sep 2010 18:12:39 +0000 (11:12 -0700)]
s3-waf: add wscript_build to s3 librpc dir for NDR_ subsystems.
Guenther
Andrew Bartlett [Fri, 24 Sep 2010 04:17:58 +0000 (14:17 +1000)]
s4-kerberos Rework keytab handling to export servicePrincipalName entries
This creates keytab entries with all the servicePrincipalNames listed
in the secrets.ldb entry.
Andrew Bartlett
Jeremy Allison [Fri, 24 Sep 2010 04:44:24 +0000 (21:44 -0700)]
Fix bug 7694 - Crash bug with invalid SPNEGO token.
Found by the CodeNomicon test suites at the SNIA plugfest.
http://www.codenomicon.com/
If an invalid SPNEGO packet contains no OIDs we crash in the SMB1/SMB2 server
as we indirect the first returned value OIDs[0], which is returned as NULL.
Jeremy.
Günther Deschner [Fri, 24 Sep 2010 01:15:09 +0000 (18:15 -0700)]
s3-waf: add check for seteuid method.
Thanks to Kai and Metze!
Guenther
Günther Deschner [Thu, 23 Sep 2010 23:40:43 +0000 (16:40 -0700)]
s3-waf: fix the build.
Guenther
Günther Deschner [Thu, 23 Sep 2010 23:39:41 +0000 (16:39 -0700)]
s3-waf: add more diroptions.
Guenther
Kai Blin [Thu, 23 Sep 2010 23:29:06 +0000 (16:29 -0700)]
s3 waf: more correctly generate symbols for pdb/vfs/auth/etc. modules
Andrew Bartlett [Thu, 23 Sep 2010 07:32:46 +0000 (17:32 +1000)]
selftest Don't run 'speed' tests for very long
'make test' is too long, and the main thing we need with these
tests is to ensure they don't segfault - there is no need to benchmark
every box in the build farm, and we have no 'fail' metric in any case.
Andrew Bartlett
Andrew Bartlett [Thu, 23 Sep 2010 07:11:24 +0000 (17:11 +1000)]
s4-selftest Run slow tests less often
These tests don't need to be run twice - basic parsing errors that
will show up with the various options will be caught quite well
by other tests.
Andrew Bartlett
Andrew Bartlett [Thu, 23 Sep 2010 07:02:31 +0000 (17:02 +1000)]
s4-libnet_join Use header constant for 'all encryption types' in msDS-SupportedEncryptionTypes
Andrew Bartlett [Thu, 23 Sep 2010 07:01:44 +0000 (17:01 +1000)]
s4-kerberos Move 'set key into keytab' code out of credentials.
This code never really belonged in the credentials layer, and
is easier done with direct access to the ldb_message that is
in secrets.ldb.
Andrew Bartlett
Andrew Bartlett [Thu, 23 Sep 2010 06:54:06 +0000 (16:54 +1000)]
s4-libnet Remove libnet_samdump_keytab() and net samdump keytab
There is a beter implementation of this in Samba3, and this uses
functions in the credentials code that I want to remove.
The same functionality is available by running 'net samsync' and
'net export keytab'. This isn't a DRS-backed utility, it only
used netlogon replication.
Andrew Bartlett