Andrew Tridgell [Wed, 16 Dec 2009 06:14:26 +0000 (17:14 +1100)]
s4-dsdb: repl_meta_data now replaces objectguid in all cases
We don't want to be debugging two different code paths through the ldb
module stack, so better to always do the work of repl_meta_data, even
for a standalone server
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Wed, 16 Dec 2009 01:01:51 +0000 (12:01 +1100)]
s4-dsdb: add a comment on the use of ldb_rename()
We need to use ldb_rename() and not dsdb_module_rename() here as we
need the rename to be processed by the current module
Andrew Tridgell [Wed, 16 Dec 2009 00:34:58 +0000 (11:34 +1100)]
s4-dsdb: linked_attributes_modify no longer handles modifies
This functionality has moved into repl_meta_data
Andrew Tridgell [Wed, 16 Dec 2009 00:34:33 +0000 (11:34 +1100)]
s4-dsdb: added support for backlinks in repl_meta_data
backlinks need more careful handling now that we store the additional
meta data for deleted links. It is easier to handle this in
repl_meta_data than in linked_attributes.
Eventually linked_attributes will disappear, with the functionality
moved into repl_meta_data.
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Mon, 14 Dec 2009 10:54:41 +0000 (21:54 +1100)]
s4-dsdb: implemeneted replmd_modify_la_replace()
We now have the core code for handling storage of linked attribute
meta-data with local modifies
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Thu, 10 Dec 2009 12:49:02 +0000 (23:49 +1100)]
s4-dsdb: add a TODO item for linked attributes in extended_dn_out
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Thu, 10 Dec 2009 12:48:30 +0000 (23:48 +1100)]
s4-dsdb: add support for storing linked attribute meta data in extended DNs
When in functional levels above w2k, we need to store much richer meta
data about linkked attributes. We also need to keep deleted linked
attributes around to allow the deletion to be propogated to other DCs.
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Jelmer Vernooij [Fri, 1 Jan 2010 17:32:37 +0000 (18:32 +0100)]
heimdal_build: Explicitly specify 'YES' when enabling external
libraries.
Jelmer Vernooij [Fri, 1 Jan 2010 17:31:44 +0000 (18:31 +0100)]
s4/build: Indicate whether Samba4 is being built against the system
Heimdal.
Andrew Tridgell [Thu, 31 Dec 2009 05:53:14 +0000 (16:53 +1100)]
s4-net: fixed finddcs to use empty SID instead of NULL sid (NDR error)
Andrew Tridgell [Thu, 31 Dec 2009 05:52:49 +0000 (16:52 +1100)]
s4-testpasswords: fixed CONFIG and quoting
Need to pass correct config file to tests
Andrew Tridgell [Thu, 31 Dec 2009 05:52:15 +0000 (16:52 +1100)]
s4-net: fixed pwsettings command
Don't override user settings with current settings
Jelmer Vernooij [Wed, 30 Dec 2009 20:59:50 +0000 (21:59 +0100)]
py/security: Add test for dom_sid.split.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 20:48:42 +0000 (21:48 +0100)]
samba: Fix whitespace, remove pointless 'pass' statement.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 20:46:32 +0000 (21:46 +0100)]
pyldb: Add dom_sid.split in favor of less powerful dom_sid_to_rid().
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 20:06:21 +0000 (21:06 +0100)]
net: Support 'super' commands implemented in Python.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 19:40:11 +0000 (20:40 +0100)]
net: Move 'newuser' to 'net newuser'
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 19:10:34 +0000 (20:10 +0100)]
net: Fix tests and documentation of setexpiry.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 19:00:12 +0000 (20:00 +0100)]
net: Move setexpiry to 'net setexpiry'
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 18:53:05 +0000 (19:53 +0100)]
net: Move 'setpassword' to 'net setpassword'.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 17:01:24 +0000 (18:01 +0100)]
net: Allow Python commands to return None instead of 0.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 16:58:30 +0000 (17:58 +0100)]
blackbox.passwords: Use convenience variable for net.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 13:55:49 +0000 (14:55 +0100)]
Fix commands in password tests.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jelmer Vernooij [Wed, 30 Dec 2009 13:55:07 +0000 (14:55 +0100)]
net: Allow python subcommands to provide commands that are not recognized by
net itself.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Jim McDonough [Wed, 30 Dec 2009 20:04:55 +0000 (15:04 -0500)]
Prevent NULL dereference if group has no members
Matthias Dieter Wallnöfer [Wed, 30 Dec 2009 11:39:55 +0000 (12:39 +0100)]
s4:lib/registry/util.c - Reintroduce "FIXME"s
Jelmer suggested to put them in again.
André Hentschel [Mon, 28 Dec 2009 01:58:40 +0000 (02:58 +0100)]
net: Add some German translation
Signed-off-by: Kai Blin <kai@samba.org>
Stefan Metzmacher [Tue, 29 Dec 2009 15:14:05 +0000 (16:14 +0100)]
s4:ntlmssp: remove mem_ctx from check_password() callback to match s3
metze
Stefan Metzmacher [Tue, 29 Dec 2009 15:10:57 +0000 (16:10 +0100)]
s4:ntlmssp_server: always call ntlmssp_server_postauth() and decide there if it's a noop
metze
Stefan Metzmacher [Tue, 29 Dec 2009 15:07:16 +0000 (16:07 +0100)]
s4:ntlmssp_server: don't use a mem_ctx for ntlmssp_server_auth()
metze
Stefan Metzmacher [Tue, 29 Dec 2009 15:02:00 +0000 (16:02 +0100)]
s4:ntlmssp_server: don't use mem_ctx in auth_ntlmssp_check_password()
metze
Stefan Metzmacher [Tue, 29 Dec 2009 14:54:59 +0000 (15:54 +0100)]
s4:ntlmssp_server: clear session key in ntlmssp_server_preauth()
metze
Stefan Metzmacher [Tue, 29 Dec 2009 11:58:44 +0000 (12:58 +0100)]
s4:ntlmssp: use data_blob_null in ntlmssp_server_auth()
metze
Stefan Metzmacher [Tue, 29 Dec 2009 12:53:44 +0000 (13:53 +0100)]
s4:ntlmssp_server: remove unused variable
metze
Stefan Metzmacher [Tue, 29 Dec 2009 09:44:19 +0000 (10:44 +0100)]
s4:auth/ntlmssp: let get_challenge() return a NTSTATUS and fill a stack buffer
metze
Stefan Metzmacher [Tue, 29 Dec 2009 10:57:28 +0000 (11:57 +0100)]
s3:ntlmssp: change get_challange() to return NTSTATUS
metze
Jelmer Vernooij [Tue, 29 Dec 2009 15:08:44 +0000 (16:08 +0100)]
dsdb: Fix dependencies when building against system ldb.
Jelmer Vernooij [Tue, 29 Dec 2009 15:08:17 +0000 (16:08 +0100)]
net: Make arguments available to python commands as sys.argv.
Jelmer Vernooij [Tue, 29 Dec 2009 15:07:54 +0000 (16:07 +0100)]
python: When updating sys.path to include the Samba python path, avoid throwing away the changes made by site.py.
Jelmer Vernooij [Mon, 28 Dec 2009 20:07:25 +0000 (21:07 +0100)]
s4/net: Allow options before arguments for Python commands.
Jelmer Vernooij [Mon, 28 Dec 2009 19:37:48 +0000 (20:37 +0100)]
s4/net: Pass all arguments through to the Python commands.
Jelmer Vernooij [Mon, 28 Dec 2009 15:48:07 +0000 (16:48 +0100)]
s4/net: Add domainlevel subcommand.
Jelmer Vernooij [Mon, 28 Dec 2009 15:06:04 +0000 (16:06 +0100)]
s4/net: Use d_printf consistently when reporting errors.
Jelmer Vernooij [Mon, 28 Dec 2009 15:05:04 +0000 (16:05 +0100)]
Use CommandError exception to deal with problems during net commands.
Jelmer Vernooij [Mon, 28 Dec 2009 15:04:19 +0000 (16:04 +0100)]
s4/net: Make pwsettings a net subcommand.
Jelmer Vernooij [Mon, 28 Dec 2009 13:17:25 +0000 (14:17 +0100)]
netcmd: Add some basic tests.
Jelmer Vernooij [Mon, 28 Dec 2009 12:53:18 +0000 (13:53 +0100)]
s4/net: Support parsing arguments in Python commands.
Jelmer Vernooij [Mon, 28 Dec 2009 00:21:27 +0000 (01:21 +0100)]
net: Support usage/help of subcommands implemented in Python.
Jelmer Vernooij [Mon, 28 Dec 2009 00:04:33 +0000 (01:04 +0100)]
net: Support implementing subcommands in python.
Stefan Metzmacher [Tue, 29 Dec 2009 10:50:46 +0000 (11:50 +0100)]
s4:auth: add auth_get_server_info_principal() prototype to auth.h
metze
Stefan Metzmacher [Tue, 29 Dec 2009 10:40:09 +0000 (11:40 +0100)]
s4:auth: make auth_challenge_may_be_modified() public
metze
Stefan Metzmacher [Tue, 29 Dec 2009 10:51:37 +0000 (11:51 +0100)]
s4:auth: remove autogenerated auth/ntlm/auth_proto.h
metze
Stefan Metzmacher [Thu, 24 Dec 2009 21:42:03 +0000 (22:42 +0100)]
s3:ntlmssp: remove unused p24 variable from ntlmssp_sign_init()
metze
Stefan Metzmacher [Thu, 24 Dec 2009 21:30:42 +0000 (22:30 +0100)]
s3:ntlmssp: move some indentation in ntlmssp_sign.c
metze
Stefan Metzmacher [Thu, 24 Dec 2009 21:07:19 +0000 (22:07 +0100)]
s3:ntlmssp: remove unused ntlmssp_stored_response()
metze
Stefan Metzmacher [Thu, 24 Dec 2009 21:00:08 +0000 (22:00 +0100)]
s3:ntlmssp: remove unused ref_count from ntlmssp_state
metze
Stefan Metzmacher [Thu, 24 Dec 2009 20:55:50 +0000 (21:55 +0100)]
s3:ntlmssp: fix whitespace in ntlmssp.h
metze
Stefan Metzmacher [Thu, 24 Dec 2009 20:52:42 +0000 (21:52 +0100)]
s3:ntlmssp: fix spelling
metze
Stefan Metzmacher [Thu, 24 Dec 2009 20:51:11 +0000 (21:51 +0100)]
s3:ntlmssp: rename NTLM_MESSAGE_TYPE into ntlmssp_message_type
metze
Stefan Metzmacher [Thu, 24 Dec 2009 20:47:53 +0000 (21:47 +0100)]
s4:ntlmssp: fix whitespaces in ntlmssp.h
metze
Volker Lendecke [Mon, 28 Dec 2009 22:35:25 +0000 (23:35 +0100)]
s3: Check for lp_winbind_trusted_domains_only in wb_gettoken()
This avoids one walk of the domain list
Volker Lendecke [Mon, 28 Dec 2009 22:14:43 +0000 (23:14 +0100)]
s3: Move a lp_winbind_trusted_domains_only() check to wb_getgrsid()
winbindd_getgrgid was not protected by this.
Volker Lendecke [Mon, 28 Dec 2009 14:51:36 +0000 (15:51 +0100)]
s3: Pass netr_DomainTrustList instead of names and sids through (*trusted_domains)
Volker Lendecke [Mon, 28 Dec 2009 14:27:42 +0000 (15:27 +0100)]
s3: Simplify winbindd_ads.c:trusted_domains()
No real code change, this just removes an indentation by turning
if ( NT_STATUS_IS_OK(result) && trusts.count) {
into
if (!NT_STATUS_IS_OK(result)) {
return result;
}
if (trusts.count == 0) {
return NT_STATUS_OK;
}
Volker Lendecke [Mon, 28 Dec 2009 13:56:58 +0000 (14:56 +0100)]
s3: Remove some unused code
Watch the #if 0 -- we never stored this in the cache anymore
Volker Lendecke [Mon, 28 Dec 2009 12:49:01 +0000 (13:49 +0100)]
s3: Simplify winbindd_list_trusted_domains() slightly
Volker Lendecke [Mon, 28 Dec 2009 09:57:01 +0000 (10:57 +0100)]
s3: Simplify "setup_domain_child" slightly
Jelmer Vernooij [Sun, 27 Dec 2009 16:30:59 +0000 (17:30 +0100)]
python: Remove sys.path line rather than updating it when installing to python system path.
Volker Lendecke [Sat, 26 Dec 2009 17:00:32 +0000 (18:00 +0100)]
s3:winbind Make the normal client exit message a bit more understandable
Volker Lendecke [Sat, 26 Dec 2009 14:20:22 +0000 (15:20 +0100)]
s3: Fix a typo found by Matthias Dieter Wallnöfer <mdw@samba.org> -- thanks :-)
Volker Lendecke [Thu, 24 Dec 2009 11:56:09 +0000 (12:56 +0100)]
s3: Fix a bogus uninitialized variable warning
Volker Lendecke [Thu, 24 Dec 2009 11:52:24 +0000 (12:52 +0100)]
s3: Replace IS_DOMAIN_OFFLINE by a function
Volker Lendecke [Wed, 23 Dec 2009 14:22:09 +0000 (15:22 +0100)]
s3: Fix some nonempty blank lines
Volker Lendecke [Thu, 24 Dec 2009 11:52:00 +0000 (12:52 +0100)]
s3: winbindd_cli_state->getgrent_state is no longer used
Volker Lendecke [Thu, 24 Dec 2009 11:51:09 +0000 (12:51 +0100)]
s3: getgrent_state has been replaced by grent_state
Jelmer Vernooij [Fri, 25 Dec 2009 13:48:45 +0000 (14:48 +0100)]
py_net/libnet: Remove C++-style comments, add more error checking, move
initialization of dcerpc subsystem to libnet.
Kamen Mazdrashki [Thu, 24 Dec 2009 03:50:58 +0000 (05:50 +0200)]
s4-libnet: Simple test for net.SetPassword() python binding
Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
Kamen Mazdrashki [Thu, 24 Dec 2009 03:43:21 +0000 (05:43 +0200)]
s4-libnet: Python binding for libnet_SetPassword()
Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
Kamen Mazdrashki [Thu, 24 Dec 2009 02:08:12 +0000 (04:08 +0200)]
s4-net: Fix 'talloc_free with references ...' error
Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
Stefan Metzmacher [Wed, 23 Dec 2009 08:09:37 +0000 (09:09 +0100)]
s4:auth: change auth_check_password_send/recv to tevent_req
metze
Stefan Metzmacher [Tue, 22 Dec 2009 15:24:44 +0000 (16:24 +0100)]
s4:gensec: change gensec_update_send/recv to tevent_req
metze
Stefan Metzmacher [Wed, 23 Dec 2009 10:16:32 +0000 (11:16 +0100)]
s4:kdc: use the remote and local address from the stream_connection struct
metze
Stefan Metzmacher [Wed, 23 Dec 2009 10:48:06 +0000 (11:48 +0100)]
s4:smbd: hold tsocket_addresses on the stream_connection
metze
Stefan Metzmacher [Wed, 23 Dec 2009 09:19:43 +0000 (10:19 +0100)]
s4:smb_server: fix mixing socket_address and tsocket_address
metze
Stefan Metzmacher [Wed, 23 Dec 2009 09:43:05 +0000 (10:43 +0100)]
s4:lib/socket: add socket_get_{remote|local}_addr() to get a tsocket_address instead of a socket_address
metze
Stefan Metzmacher [Wed, 23 Dec 2009 08:38:21 +0000 (09:38 +0100)]
s4:lib/socket: add helpers functions to convert between socket_address and tsocket_address
metze
Stefan Metzmacher [Wed, 23 Dec 2009 18:34:32 +0000 (19:34 +0100)]
tsocket: only copy the specific part of sockaddr*
This makes sure we fill the unspefic bytes with 0
and have zero termination for sockaddr_un.
metze
Stefan Metzmacher [Wed, 23 Dec 2009 18:31:41 +0000 (19:31 +0100)]
tsocket: allow AF_UNIX sockaddrs smaller than sizeof(sockaddr_un)
This is needed as getpeername() truncates the length to 2 if the
peer socket has no name.
metze
Volker Lendecke [Thu, 24 Dec 2009 12:51:50 +0000 (13:51 +0100)]
s3: Remove unused delete_negative_conn_cache()
Volker Lendecke [Thu, 24 Dec 2009 12:50:39 +0000 (13:50 +0100)]
s3: Remove unused flush_negative_conn_cache()
Volker Lendecke [Thu, 24 Dec 2009 12:47:35 +0000 (13:47 +0100)]
s3: Remove some unnecessary variables from libsmb/conn_cache.c
Volker Lendecke [Thu, 24 Dec 2009 12:46:16 +0000 (13:46 +0100)]
s3: Fix a comment in conn_cache.c
Volker Lendecke [Thu, 24 Dec 2009 12:40:24 +0000 (13:40 +0100)]
s3: Fix a 64-bit error
Volker Lendecke [Thu, 24 Dec 2009 12:36:00 +0000 (13:36 +0100)]
s3: Remove some pointless SMB_ASSERTs
Volker Lendecke [Thu, 24 Dec 2009 12:14:18 +0000 (13:14 +0100)]
s3: Remove some pointless casts
Jeremy Allison [Thu, 24 Dec 2009 01:19:22 +0000 (17:19 -0800)]
Attempt to fix one of the last two bugs with the full Windows ACL support.
When returning an underlying ACL on a directory, normally on a
POSIX system it has no inheritable entries, which breaks the
Windows ACL when a user does a get/set of a Windows ACL on a
POSIX directory with no existing stored Windows ACL from
the Windows ACL editor. What happens is any new entry added
by the user gets set inheritable, but none of the others
entries are (as returned by default). So any new files then
only inherit the single new ACE entry (the one marked inheritable
by the ACL editor).
Fix this by faking up a default 3 element inheritable ACL that
represents what a user creating a POSIX file or directory will
get by default from the smbd code.
Jeremy.
Jeremy Allison [Thu, 24 Dec 2009 01:17:48 +0000 (17:17 -0800)]
The posix acl version of set_nt_acl() could set the stat_ex
struct in the fsp->fsp_name pointer incorrectly for a directory.
Fix this. Make map_canon_ace_perms() public.
Jeremy.
Simo Sorce [Wed, 23 Dec 2009 20:17:16 +0000 (15:17 -0500)]
s4:cleanups More trailing spaces and tabs
Simo Sorce [Wed, 23 Dec 2009 20:08:02 +0000 (15:08 -0500)]
s4:cleanups remove trailing spaces and tabs
Suresh Jayaraman [Wed, 23 Dec 2009 16:41:39 +0000 (11:41 -0500)]
doc: update mount.cifs man page with nounix option
Change since last post:
- fix build error due to superfluous </para> tag.
- ensure it builds fine.
Also add a section on INODE NUMBERS that discusses inode numbers more
thoroughly and add reference to it in "nounix" and "noserverino"
options.
Thanks to Jeff Layton for explaining those details.
Signed-off-by: Suresh Jayaraman <sjayaraman@suse.de>
Signed-off-by: Jeff Layton <jlayton@redhat.com>