14 years agor3996: add some comments
Stefan Metzmacher [Mon, 29 Nov 2004 10:54:52 +0000 (10:54 +0000)]
r3996: add some comments

(This used to be commit 87a92d3d5c7c2ab0bc07a9fb101022b3db1d637b)

14 years agor3995: improved the default ACL mapping from unix perms
Andrew Tridgell [Mon, 29 Nov 2004 06:42:02 +0000 (06:42 +0000)]
r3995: improved the default ACL mapping from unix perms
(This used to be commit 01e89697fe837ee76fedda149e1e2b389a7d3889)

14 years agor3994: - removed the unused reference count code in lsa server
Andrew Tridgell [Mon, 29 Nov 2004 06:19:50 +0000 (06:19 +0000)]
r3994: - removed the unused reference count code in lsa server

- fixed the sid_index field in lsa LookupSids and LookupNames
(This used to be commit 677f701e71609d82376b1ea2fa9ebc3521896671)

14 years agor3993: use distinctive fnums in the ipc backend, to make monitoring sniffs easier
Andrew Tridgell [Mon, 29 Nov 2004 06:18:58 +0000 (06:18 +0000)]
r3993: use distinctive fnums in the ipc backend, to make monitoring sniffs easier
(This used to be commit 54209ed05686a442156f7927c58d8656aa5e4900)

14 years agor3992: provide hooks for lsa to lookup sids allocated using the linear id->sid mapping
Andrew Tridgell [Mon, 29 Nov 2004 04:24:50 +0000 (04:24 +0000)]
r3992: provide hooks for lsa to lookup sids allocated using the linear id->sid mapping
(This used to be commit e61140510905b6bbe57ad35dad8e4dd68d1f6bd8)

14 years agor3991: for uid->sid and gid->sid to be efficient we need to index on unixID
Andrew Tridgell [Mon, 29 Nov 2004 03:23:31 +0000 (03:23 +0000)]
r3991: for uid->sid and gid->sid to be efficient we need to index on unixID
and unixName in samdb.
(This used to be commit 5c966821e2eced9a1b34a5274cc317eab1a44eaf)

14 years agor3990: take advantage of the uid->sid and gid->sid code to create a much
Andrew Tridgell [Mon, 29 Nov 2004 03:22:44 +0000 (03:22 +0000)]
r3990: take advantage of the uid->sid and gid->sid code to create a much
better default NT ACL in pvfs
(This used to be commit 9ff6ecbdb6c08528193f7958d7ea7d9a8df6defd)

14 years agor3989: added a linear algorithmic mapping for uid->sid and gid->sid within
Andrew Tridgell [Mon, 29 Nov 2004 03:21:46 +0000 (03:21 +0000)]
r3989: added a linear algorithmic mapping for uid->sid and gid->sid within
our local domain. Note that this linear mapping does not suffer from
the "foreign sid" problems of the linear mappings we have previously
rejected for the sid->uid problem.

the mapping allows for 1 billion automatically allocated users or
groups for the local domain.
(This used to be commit 8f573439753e2a425305936107442c85cffb9369)

14 years agor3988: made dom_sid_add_rid() allocate the new sid with proper parent/child talloc
Andrew Tridgell [Mon, 29 Nov 2004 03:19:28 +0000 (03:19 +0000)]
r3988: made dom_sid_add_rid() allocate the new sid with proper parent/child talloc
(This used to be commit 5db0eb1fe3abb5150bef27bfed4b7da723e4a287)

14 years agor3984: success full parse the repsFrom/repsTo LDAP fields
Stefan Metzmacher [Sat, 27 Nov 2004 15:10:57 +0000 (15:10 +0000)]
r3984: success full parse the repsFrom/repsTo LDAP fields

(This used to be commit 56c66f4a090b1efca011fc2fc9880c4d93da164c)

14 years agor3983: posix:fakeoplocks should default to False, not True !
Andrew Tridgell [Sat, 27 Nov 2004 00:28:03 +0000 (00:28 +0000)]
r3983: posix:fakeoplocks should default to False, not True !
(This used to be commit 052d91c59f177851b5e0e53c8a033bdd28702f64)

14 years agor3982: split out the sid -> uid/gid mapping routines into a ntvfs_sidmap
Andrew Tridgell [Sat, 27 Nov 2004 00:24:36 +0000 (00:24 +0000)]
r3982: split out the sid -> uid/gid mapping routines into a ntvfs_sidmap
subsystem. This is in preparation for adding better default ACL
generation in pvfs, which will require uid/gid -> sid mapping.
(This used to be commit b31108e49247495d98cf7c12ee303b12a9e44e92)

14 years agor3981: Use correct access-mask when querying aliases.
Günther Deschner [Fri, 26 Nov 2004 16:50:29 +0000 (16:50 +0000)]
r3981: Use correct access-mask when querying aliases.

(This used to be commit 5dde59be0995b9893ef476b06c259776c1115ae7)

14 years agor3980: added server side support for lsa_LookupNames() and lsa_LookupNames2()
Andrew Tridgell [Fri, 26 Nov 2004 13:02:58 +0000 (13:02 +0000)]
r3980: added server side support for lsa_LookupNames() and lsa_LookupNames2()
(This used to be commit da12780bd98e566af13fe97ce5e84fe829a0fbd5)

14 years agor3979: added server side code for lsa_LookupSids2() and fixed authority_name
Andrew Tridgell [Fri, 26 Nov 2004 12:30:39 +0000 (12:30 +0000)]
r3979: added server side code for lsa_LookupSids2() and fixed authority_name
return code to include our own domain.

editing of ACLs via the w2k3 GUI works nicely (and faster) with these changes
(This used to be commit a3f7f34b3965ddbd89b06334e03d2e1bb6aa364b)

14 years agor3978: added IDL and test code for lsa_LookupSids2() and lsa_LookupNames2()
Andrew Tridgell [Fri, 26 Nov 2004 06:33:38 +0000 (06:33 +0000)]
r3978: added IDL and test code for lsa_LookupSids2() and lsa_LookupNames2()
(This used to be commit 9da455ed56ebc167f295b231c2730e3ff9c94617)

14 years agor3977: fixed the lmPwdHash change in the rpc server (we were not fetching the
Andrew Tridgell [Fri, 26 Nov 2004 05:58:03 +0000 (05:58 +0000)]
r3977: fixed the lmPwdHash change in the rpc server (we were not fetching the
lm hash from the samdb, and thus not checking the verifier)

fixed the client side to calculate the lm verifier based on the nt
hash, not the lm hash (confirmed using w2k3)
(This used to be commit 27e7fb3bafe4649359e2e68169b6f10fd4d2cc70)

14 years agor3976: changed NBENCH to use the same recording method as the latest dbench,
Andrew Tridgell [Thu, 25 Nov 2004 23:05:43 +0000 (23:05 +0000)]
r3976: changed NBENCH to use the same recording method as the latest dbench,
where the warmup phase continues until all clients have done some file
IO. This gives more repeatable results when under high load
(This used to be commit aca0658f6dfe8b7c90afcac87e8cc68965a4288d)

14 years agor3975: added LFN filesystem attribute bit definition from ethereal
Andrew Tridgell [Thu, 25 Nov 2004 21:01:54 +0000 (21:01 +0000)]
r3975: added LFN filesystem attribute bit definition from ethereal

apologies for not committing this earlier
(This used to be commit 0950681091ab99f0e79048a9c1db57d057a96e66)

14 years agor3972: use GUID_* naming context and move GUID_* functions to one place
Stefan Metzmacher [Thu, 25 Nov 2004 20:03:46 +0000 (20:03 +0000)]
r3972: use GUID_* naming context and move GUID_* functions to one place

(This used to be commit 523e6acf4fec5d4946fa7c0c89f40d7d712c9f3a)

14 years agor3971: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 20:01:47 +0000 (20:01 +0000)]
r3971: fix compiler warnings

(This used to be commit 234166606dc86b9e98226cff94b3869ec173671e)

14 years agor3970: fix compiler warning
Stefan Metzmacher [Thu, 25 Nov 2004 19:59:08 +0000 (19:59 +0000)]
r3970: fix compiler warning

(This used to be commit 1f03d797129c87f231a4f464432475a5c2f91d35)

14 years agor3969: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 19:31:53 +0000 (19:31 +0000)]
r3969: fix compiler warnings

(This used to be commit 7d24b98f3ff55049a7c0d430c15e0a060b4aa2d3)

14 years agor3968: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 19:27:17 +0000 (19:27 +0000)]
r3968: fix compiler warnings

(This used to be commit 6440476f7f2fd5776ec4a21240e7482603000d19)

14 years agor3967: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 19:21:55 +0000 (19:21 +0000)]
r3967: fix compiler warnings

(This used to be commit 3f2c3ce2f0d11ea9f3c058690e0bb14d590c714c)

14 years agor3966: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 19:13:41 +0000 (19:13 +0000)]
r3966: fix compiler warnings

(This used to be commit 531c4654e0c2e8d150f8337cb84a6746fc1abee9)

14 years agor3965: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 19:12:16 +0000 (19:12 +0000)]
r3965: fix compiler warnings

(This used to be commit 0614fa3b168265e69a611936dd7c1f7a078e53dd)

14 years agor3964: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 19:02:42 +0000 (19:02 +0000)]
r3964: fix compiler warnings

(This used to be commit f34171bbb3185aa5bc79915c060e09a36179307c)

14 years agor3963: fix conpiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 19:01:35 +0000 (19:01 +0000)]
r3963: fix conpiler warnings

(This used to be commit 1239076ef77a2970e806f00e262e910777b40692)

14 years agor3962: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 18:25:22 +0000 (18:25 +0000)]
r3962: fix compiler warnings

(This used to be commit 3bfb732187211d450db842a7533e4c7e915b6ce4)

14 years agor3961: - fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 18:23:58 +0000 (18:23 +0000)]
r3961: - fix compiler warnings
- remove unused typedef

(This used to be commit 19613122a5222b152044b1f86136496b95d4a3e3)

14 years agor3960: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 18:02:35 +0000 (18:02 +0000)]
r3960: fix compiler warnings

(This used to be commit 54d5b418a75d421a9c6c09bc084454f11e9b7b44)

14 years agor3959: fix compiler warnings
Stefan Metzmacher [Thu, 25 Nov 2004 18:01:40 +0000 (18:01 +0000)]
r3959: fix compiler warnings

(This used to be commit e28351f710525ca9863210974544a8b1a537e63a)

14 years agor3958: fix the build for now
Stefan Metzmacher [Thu, 25 Nov 2004 17:57:33 +0000 (17:57 +0000)]
r3958: fix the build for now

tridge: please fix that!

(This used to be commit 45401b757e13036b9e8bffce3e7c3695a6da1e9b)

14 years agor3957: fix compiler warning
Stefan Metzmacher [Thu, 25 Nov 2004 17:56:20 +0000 (17:56 +0000)]
r3957: fix compiler warning

(This used to be commit a6fb416f519688cb012dc9098306bbe5b7950e1d)

14 years agor3956: start to decode the repsFrom and repsTo fileds but not ready
Stefan Metzmacher [Thu, 25 Nov 2004 11:20:09 +0000 (11:20 +0000)]
r3956: start to decode the repsFrom and repsTo fileds but not ready

(This used to be commit 44f168c44de908fdf38b39aae8bf10e80206410a)

14 years agor3953: the lm verifier key in passwoed ChangePasswordUser3 is based on the nt
Andrew Tridgell [Thu, 25 Nov 2004 04:01:31 +0000 (04:01 +0000)]
r3953: the lm verifier key in passwoed ChangePasswordUser3 is based on the nt
hash, not the lm hash
(This used to be commit 8d4f0dc7d0745fc86fd43205b21d846acdc1d8c7)

14 years agor3952: added validation of the lm and nt verifiers to our server side password change...
Andrew Tridgell [Thu, 25 Nov 2004 01:13:44 +0000 (01:13 +0000)]
r3952: added validation of the lm and nt verifiers to our server side password change code.
(This used to be commit f70e8f02d6164046781a5d63fa5c0b86b8ab8df9)

14 years agor3945: expanded the BASE-PROPERTIES test to print a nicely formatted list of
Andrew Tridgell [Wed, 24 Nov 2004 22:26:19 +0000 (22:26 +0000)]
r3945: expanded the BASE-PROPERTIES test to print a nicely formatted list of
the capabilities and filesystem attribute bits of the server.
(This used to be commit 9debe2938194d686eb9ef46f7e10010490f2a624)

14 years agor3942: decode the 'replUpToDateVector' blob
Stefan Metzmacher [Wed, 24 Nov 2004 14:33:40 +0000 (14:33 +0000)]
r3942: decode the 'replUpToDateVector' blob

(This used to be commit 42b9f0bd476f2175e856ea8f79577eb9eda905e2)

14 years agor3941: make sure we don't keep pounding on a ncacn_ip_tcp connection after it is...
Andrew Tridgell [Wed, 24 Nov 2004 11:24:33 +0000 (11:24 +0000)]
r3941: make sure we don't keep pounding on a ncacn_ip_tcp connection after it is dead
(This used to be commit f0263672fd1eb79bfa3a94663de1cea996c92880)

14 years agor3939: - added "posix:fakeoplocks" option for testing with oplocks forced on
Andrew Tridgell [Wed, 24 Nov 2004 06:09:14 +0000 (06:09 +0000)]
r3939: - added "posix:fakeoplocks" option for testing with oplocks forced on

- added support for sticky write times after a setfileinfo, by using a
  write_time field in the DosAttrib xattr structure.
(This used to be commit 4a52fae82d8305e999f94f1947daa21dab54cdfd)

14 years agor3938: cleaned some old stuff out of loadparm
Andrew Tridgell [Wed, 24 Nov 2004 06:07:19 +0000 (06:07 +0000)]
r3938: cleaned some old stuff out of loadparm
(This used to be commit f280770c8184465c364f497b8931e9753f97e970)

14 years agor3927: add idl file for NDR encoded LDAP attributes used for the directory service
Stefan Metzmacher [Tue, 23 Nov 2004 17:38:32 +0000 (17:38 +0000)]
r3927: add idl file for NDR encoded LDAP attributes used for the directory service

(This used to be commit 07803f28863db72a7691766da912878459eec70a)

14 years agor3926: fix compiler warnings
Stefan Metzmacher [Tue, 23 Nov 2004 17:35:37 +0000 (17:35 +0000)]
r3926: fix compiler warnings

(This used to be commit a9cbaa3cff470f58031972d53ecb6f5856b187e0)

14 years agor3922: Add yet another NETLOGON RPC. This is another varient of SamLogon,
Andrew Bartlett [Tue, 23 Nov 2004 12:34:11 +0000 (12:34 +0000)]
r3922: Add yet another NETLOGON RPC.  This is another varient of SamLogon,
that works only on SCHANNEL secured connections (as it needs the
implicit credentials).

Fix some of the IDL.

Andrew Bartlett
(This used to be commit 90cd7b34cc18e758e939e0183281b7a517d728f0)

14 years agor3921: Cross-test SIDs in RPC-SAMSYNC, fix the build.
Andrew Bartlett [Tue, 23 Nov 2004 11:02:27 +0000 (11:02 +0000)]
r3921: Cross-test SIDs in RPC-SAMSYNC, fix the build.

Andrew Bartlett
(This used to be commit 49c794a6b215f81fd0dba0e7f6812c647b3d91c7)

14 years agor3920: - it seem that we need to send a magic bind_guid in DsBind()
Stefan Metzmacher [Tue, 23 Nov 2004 08:57:42 +0000 (08:57 +0000)]
r3920: - it seem that we need to send a magic bind_guid in DsBind()
  to make DsWriteAccountSpn() work

- add idl and torture test for DsWriteAccountSpn()

(This used to be commit 625826ad9050c68407ae5e8abfee13699986303c)

14 years agor3919: Add more info levels to the QueryTrustedDomainInfo structures, with
Andrew Bartlett [Tue, 23 Nov 2004 03:11:38 +0000 (03:11 +0000)]
r3919: Add more info levels to the QueryTrustedDomainInfo structures, with
names and other assistance from the ethereal sources.

More work needs to be done to validate some of the levels, which do
not appear in the query - perhaps they are modification levels.

Andrew Bartlett
(This used to be commit 63635533693fa364b0c697a3fe1010b3eb8b17d3)

14 years agor3917: A few more LSA RPCs found in my wanderings (for trusted domains, these
Andrew Bartlett [Tue, 23 Nov 2004 00:31:00 +0000 (00:31 +0000)]
r3917: A few more LSA RPCs found in my wanderings (for trusted domains, these
seem to be 'shortcut' RPCs, that just avoid an open/query pair).

Rename a few others to give us a slightly sensible pattern.

Andrew Bartlett
(This used to be commit d6a7ab57e74ab89dd163d5f9f5f901e586b0aad4)

14 years agor3916: w2k3 does not check the max_setup count in nttrans requests
Andrew Tridgell [Tue, 23 Nov 2004 00:09:23 +0000 (00:09 +0000)]
r3916: w2k3 does not check the max_setup count in nttrans requests
(This used to be commit 671a864d8f3548b052ffa33fa8fb0bbf3a0e3970)

14 years agor3915: a few updates to the DsCrackNames() torture test
Stefan Metzmacher [Mon, 22 Nov 2004 17:30:32 +0000 (17:30 +0000)]
r3915: a few updates to the DsCrackNames() torture test

(This used to be commit 62d26e0b91703d667e94d016e7943b6883130579)

14 years agor3914: add idl, torture test and simple server for netr_DrsGetDCNameEx2()
Stefan Metzmacher [Mon, 22 Nov 2004 17:14:57 +0000 (17:14 +0000)]
r3914: add idl, torture test and simple server for netr_DrsGetDCNameEx2()

(This used to be commit 1ffabbaa667c7dec6657ec523f92f072a2a47a95)

14 years agor3913: fix the build
Stefan Metzmacher [Mon, 22 Nov 2004 17:08:25 +0000 (17:08 +0000)]
r3913: fix the build

(This used to be commit ba67e98835095e940c23d095422e0cd72e105aee)

14 years agor3910: add some error codes
Stefan Metzmacher [Mon, 22 Nov 2004 14:28:09 +0000 (14:28 +0000)]
r3910: add some error codes

(This used to be commit 64570b7a4734ec1cc56a07e6bd9b20a155a876c0)

14 years agor3909: Fix cross-reference test for trusted domains.
Andrew Bartlett [Mon, 22 Nov 2004 12:34:34 +0000 (12:34 +0000)]
r3909: Fix cross-reference test for trusted domains.

Andrew Bartlett
(This used to be commit f2c86e619440c715499a28da5bfe22272458f0af)

14 years agor3908: We know that this field is a flag of some kind, and matches the output on...
Andrew Bartlett [Mon, 22 Nov 2004 12:01:14 +0000 (12:01 +0000)]
r3908: We know that this field is a flag of some kind, and matches the output on LSA.

Andrew Bartlett
(This used to be commit e3dce0f5be9d43d84d60e8402344dadd079f1e47)

14 years agor3907: * Rename lsa_Name to lsa_String
Andrew Bartlett [Mon, 22 Nov 2004 11:59:59 +0000 (11:59 +0000)]
r3907: * Rename lsa_Name to lsa_String

* Add new IDL to LSA, to query information about trusted domains (for
  cross-check with SamSync).

Andrew Bartlett
(This used to be commit 174c0778421b5154ff2ba809688ea6ef38a1478b)

14 years agor3906: fix compiler warnings
Stefan Metzmacher [Mon, 22 Nov 2004 10:59:46 +0000 (10:59 +0000)]
r3906: fix compiler warnings

(This used to be commit df924e18220aedbfbfae569e1fb37da652914c0b)

14 years agor3905: (oops, missing file: samsync.c)
Andrew Bartlett [Mon, 22 Nov 2004 08:50:20 +0000 (08:50 +0000)]
r3905: (oops, missing file: samsync.c)

* Add new LSA calls to open trusted domains

* Add new tests for ACCOUNTs in SamSync

* Clean up names in NETLOGON and LSA

* Verify Security Descriptors against LSA, as well as SamR

Andrew Bartlett
(This used to be commit ed838beddb3cb7b0015313a310303f831ed4f11b)

14 years agor3904: * Add new LSA calls to open trusted domains
Andrew Bartlett [Mon, 22 Nov 2004 08:47:47 +0000 (08:47 +0000)]
r3904: * Add new LSA calls to open trusted domains

* Add new tests for ACCOUNTs in SamSync

* Clean up names in NETLOGON and LSA

* Verify Security Descriptors against LSA, as well as SamR

Andrew Bartlett
(This used to be commit 7094502fe0346255a89667f702289b4c8dc9fa08)

14 years agor3903: better fix for -r 3902
Stefan Metzmacher [Mon, 22 Nov 2004 08:31:36 +0000 (08:31 +0000)]
r3903: better fix for -r 3902
(not introduce new warnings:-)

(This used to be commit 36b11992dc3b08914db24ec23f10cc8b3eb55320)

14 years agor3902: fix compiler warnings
Stefan Metzmacher [Mon, 22 Nov 2004 08:15:27 +0000 (08:15 +0000)]
r3902: fix compiler warnings

(This used to be commit ce7686ac3e15b0d52ef01bd8bd773641c8ce2e35)

14 years agor3901: fix compiler warnings
Stefan Metzmacher [Mon, 22 Nov 2004 07:59:14 +0000 (07:59 +0000)]
r3901: fix compiler warnings

(This used to be commit efe840c8b0dd599d205068a4946ef587d542f2a5)

14 years agor3900: fix compiler warning
Stefan Metzmacher [Mon, 22 Nov 2004 07:56:13 +0000 (07:56 +0000)]
r3900: fix compiler warning

(This used to be commit f2ff50dfc40f7bf329ab83eefcc2cff9e575a84e)

14 years agor3899: fix compiler warnings
Stefan Metzmacher [Mon, 22 Nov 2004 07:54:16 +0000 (07:54 +0000)]
r3899: fix compiler warnings

(This used to be commit b1b47bda0177c42687b9c291e4e28ae123fb4eac)

14 years agor3898: Work towards local/server DCOM support, start working
Jelmer Vernooij [Sun, 21 Nov 2004 17:47:09 +0000 (17:47 +0000)]
r3898: Work towards local/server DCOM support, start working
on Simple example server side implementation
(This used to be commit 98afb504d95ccca4d6ec48273e10b52ccfa26ad0)

14 years agor3897: add a locking infrastructure
Simo Sorce [Sun, 21 Nov 2004 15:51:54 +0000 (15:51 +0000)]
r3897: add a locking infrastructure
(This used to be commit a99c0adb09e2bc77b876d23cb2d0711ccffd83ca)

14 years agor3896: Correct header files in rpc server templates plus
Jelmer Vernooij [Sat, 20 Nov 2004 23:35:28 +0000 (23:35 +0000)]
r3896: Correct header files in rpc server templates plus
some other minor fixes
(This used to be commit 9fca748fe3c12af83a006f1d0821aa560d08fc95)

14 years agor3891: Add rot (Running Object Table) interface
Jelmer Vernooij [Sat, 20 Nov 2004 18:51:58 +0000 (18:51 +0000)]
r3891: Add rot (Running Object Table) interface
(This used to be commit 4840eaeed3cfd72026babb382f26929c29702713)

14 years agor3888: Just proving :-) to tridge that a Setfileinfo with a modified
Jeremy Allison [Sat, 20 Nov 2004 02:33:12 +0000 (02:33 +0000)]
r3888: Just proving :-) to tridge that a Setfileinfo with a modified
write time is sticky, and causes any subsequent writes not to update
the last write time. Added write that extends the file followed by
fnum specific smbflush. It stays the same time :-).
(This used to be commit a2ea2166dcb7044d7b9e53417e53febea2f81e20)

14 years agor3887: Much better understanding of delayed write time, and the interaction
Jeremy Allison [Sat, 20 Nov 2004 01:51:32 +0000 (01:51 +0000)]
r3887: Much better understanding of delayed write time, and the interaction
with setfileinfo modifying the write time. I have some ideas on how
to emulate this in the Samba server now but the commented case will
be very hard...
(This used to be commit c9211d084719a16f671b315a9c0bc6ed59fa8c8e)

14 years agor3886: Trying to understand delayed file write update times. Added another
Jeremy Allison [Sat, 20 Nov 2004 01:09:25 +0000 (01:09 +0000)]
r3886: Trying to understand delayed file write update times. Added another
test that uses 2 connections and queries the time via pathinfo, not fileinfo.
MSDN states : "When writing to a file, the last write time is not fully updated
until all handles used for writing have been closed." - but this is obviously
untrue. W2K3 seems to use a 2 second granularity for this. Next I'll try using
SetFileTime equivalent to see if this takes the same time to take effect.
(This used to be commit 2e47e241f98c3dba8be346cea726def38399eb97)

14 years agor3885: Add security descriptor comparison to our RPC-SAMSYNC test. We now
Andrew Bartlett [Sat, 20 Nov 2004 00:29:04 +0000 (00:29 +0000)]
r3885: Add security descriptor comparison to our RPC-SAMSYNC test.  We now
verify that the security descriptor found in the SamSync is the same
as what is available over SAMR.

Unfortunately, the administrator seems unable to retrieve the SACL on
the security descriptor, so I've added a new function to compare with
a mask.

Andrew Bartlett
(This used to be commit 39ae5e1dac31a22086be50fb23261e02be877f3f)

14 years agor3881: Split up the LIBNDR_GEN subsystem into NDR_* and RPC_NDR_* subsystems.
Jelmer Vernooij [Fri, 19 Nov 2004 20:21:13 +0000 (20:21 +0000)]
r3881: Split up the LIBNDR_GEN subsystem into NDR_* and RPC_NDR_* subsystems.
This reduces the total size of the samba binaries from 119 Mb to 73 Mb.
Next step will be to have the build system obtain some of this information
by itself, so that we don't have to write ~10 lines per interface manually.
(This used to be commit 16d905f6b0cbec591eebc44ee2ac9516a5730378)

14 years agor3876: fix compiler warnings
Stefan Metzmacher [Fri, 19 Nov 2004 15:43:35 +0000 (15:43 +0000)]
r3876: fix compiler warnings

(This used to be commit 9ad3837dbad6dbf5ee0122be2bbffac325ece9be)

14 years agor3870: Delete wrappers for tdb_lockkeys() and tdb_unlockkeys().
Tim Potter [Fri, 19 Nov 2004 02:57:35 +0000 (02:57 +0000)]
r3870: Delete wrappers for tdb_lockkeys() and tdb_unlockkeys().
(This used to be commit 5af52c559e731d55ccd019a2b06f486a2f86e6ce)

14 years agor3869: in the NDR encoded replPropertyMetaData attribute in ADS
Stefan Metzmacher [Fri, 19 Nov 2004 02:35:48 +0000 (02:35 +0000)]
r3869: in the NDR encoded replPropertyMetaData attribute in ADS
I see a new 64 bit time field which are seconds since 1601,

this will be mapped to NTTIME by th eparsing code

+#define NTTIME_1sec NTTIME

(This used to be commit db35f3b0f99943311ff8b797e8336616dab28220)

14 years agor3861: - Put ndr and rpc client code in seperate files
Jelmer Vernooij [Thu, 18 Nov 2004 20:53:23 +0000 (20:53 +0000)]
r3861: - Put ndr and rpc client code in seperate files
- Add some const
(This used to be commit a00bda88e1b6abdc36e5aa8c2a35f64855f67c96)

14 years agor3838: use "security.NTACL" instead of "security.NTAcl" for the xattr name for ACLs
Andrew Tridgell [Thu, 18 Nov 2004 05:35:48 +0000 (05:35 +0000)]
r3838: use "security.NTACL" instead of "security.NTAcl" for the xattr name for ACLs
(This used to be commit db72290bbe87644a89385c465855629a1f881e4f)

14 years agor3837: added support for LsaLookupSids in the LSA rpc server. This allows the GUI...
Andrew Tridgell [Thu, 18 Nov 2004 05:17:24 +0000 (05:17 +0000)]
r3837: added support for LsaLookupSids in the LSA rpc server. This allows the GUI ACL editor on w2k to
correctly display names instead of SIDs.
(This used to be commit fdaa753578c7b80806d4040ed131f87ddbf988e0)

14 years agor3836: - fixed the handling of NT_STATUS_BUFFER_TOO_SMALL in nttrans server
Andrew Tridgell [Thu, 18 Nov 2004 04:19:26 +0000 (04:19 +0000)]
r3836: - fixed the handling of NT_STATUS_BUFFER_TOO_SMALL in nttrans server

- fixed revision number on default DACL

- fixed DACL_PRESENT bit in acl query

with these fixes cacls.exe and the GUI ACL editor in w2k both work
against pvfs. The GUI editor is slow as it times out looking up the
SID -> name mappings.
(This used to be commit 4468018cb63fd884920c2b0f5235bded50c6b5db)

14 years agor3835: - added testing of setting an initial ACL on a file using NTTRANS create
Andrew Tridgell [Thu, 18 Nov 2004 03:59:24 +0000 (03:59 +0000)]
r3835: - added testing of setting an initial ACL on a file using NTTRANS create

- added support for initial ACLs in pvfs backend
(This used to be commit 05ee9179f74d243aa22fa00be7873c5db76a8ad1)

14 years agor3834: - fixed XATTR_NTACL_NAME
Andrew Tridgell [Thu, 18 Nov 2004 03:45:06 +0000 (03:45 +0000)]
r3834: - fixed XATTR_NTACL_NAME

- pvfs now passes RAW-ACLS
(This used to be commit 2e19edaa4ebc96b3e95e0b55c4fae8eaefd642b2)

14 years agor3833: NTACL is a better xattr name than DosAcl (tpot suggested this)
Andrew Tridgell [Thu, 18 Nov 2004 03:41:50 +0000 (03:41 +0000)]
r3833: NTACL is a better xattr name than DosAcl (tpot suggested this)
(This used to be commit 17911eea5995c12a2300dd3928612c77f8f0883e)

14 years agor3832: added NT ACL query/set to the posix NTVFS backend. The default ACL is
Andrew Tridgell [Thu, 18 Nov 2004 03:31:35 +0000 (03:31 +0000)]
r3832: added NT ACL query/set to the posix NTVFS backend. The default ACL is
based on the current nttoken, which is completely wrong, but works as a start.

The ACL is stored in the xattr system.DosAcl, using a NDR encoded IDL
union with a version number to allow for future expansion.

pvfs does not yet check the ACL for file access. At the moment the ACL
is just query/set.

We also need to do some RPC work to allow the windows ACL editor to be
used. At the moment is queries the ACL fine, but displays an error
when it fails to map the SIDs via rpc.
(This used to be commit 3a1f20d874ab2d8b2a2f2485b7a705847abf1263)

14 years agor3831: added nttrans server code for query/set security descriptor. This
Andrew Tridgell [Thu, 18 Nov 2004 02:06:11 +0000 (02:06 +0000)]
r3831: added nttrans server code for query/set security descriptor. This
means ACLs now can be set/fetched from the CIFS NTVFS backend.
(This used to be commit f49c636e10f1e4bba506baadb67a0e288f1717c4)

14 years agor3830: unified the query/set security descriptor code with the rest of the
Andrew Tridgell [Thu, 18 Nov 2004 01:41:43 +0000 (01:41 +0000)]
r3830: unified the query/set security descriptor code with the rest of the
queryfileinfo/setfileinfo logic, so querying/setting a security
descriptor is treated as just another file query/set operation.

This will allow NTVFS backends to see the query/set security
descriptor operations as RAW_FILEINFO_SEC_DESC and
(This used to be commit f68a6b6b915c37e48c42390c1e74c2d1c2636fa9)

14 years agor3829: added a RAW-ACLS test suite that tests query/set of ACLs on a file
Andrew Tridgell [Thu, 18 Nov 2004 01:02:27 +0000 (01:02 +0000)]
r3829: added a RAW-ACLS test suite that tests query/set of ACLs on a file
(This used to be commit 2ff9816ae0ae41e0e63e4276a70d292888346dc7)

14 years agor3828: added testing of opening an existing file with EAs (the EAs are ignored)
Andrew Tridgell [Wed, 17 Nov 2004 22:13:30 +0000 (22:13 +0000)]
r3828: added testing of opening an existing file with EAs (the EAs are ignored)
(This used to be commit 6d53c6a0aed31c87b47e5248f22b1e5767fad342)

14 years agor3827: fixed copyright notices to remove simo and lkcl who have no code left in this...
Andrew Tridgell [Wed, 17 Nov 2004 22:12:46 +0000 (22:12 +0000)]
r3827: fixed copyright notices to remove simo and lkcl who have no code left in this file
(This used to be commit c75eb859391f747abc3fe513166c9f8d73ca349c)

14 years agor3826: - added testing of ea lists in NTTRANS CREATE
Andrew Tridgell [Wed, 17 Nov 2004 22:00:15 +0000 (22:00 +0000)]
r3826: - added testing of ea lists in NTTRANS CREATE

- fixed push/pull of chained ea lists

- fixed a bug in the nttrans wire encoding
(This used to be commit fcd09224076508f9c10095bf2e2c394232a4d297)

14 years agor3821: added client side code and test code for NTTRANS_CREATE
Andrew Tridgell [Wed, 17 Nov 2004 20:56:26 +0000 (20:56 +0000)]
r3821: added client side code and test code for NTTRANS_CREATE
(This used to be commit 8422789c06c203ea1c4761fecb16f79f99ac479b)

14 years agor3810: create a LIB_SECURITY subsystem
Stefan Metzmacher [Wed, 17 Nov 2004 14:35:29 +0000 (14:35 +0000)]
r3810: create a LIB_SECURITY subsystem

- move dom_sid, security_descriptor, security_* funtions to one place
  and rename some of them

(This used to be commit b620bdd672cfdf0e009492e648b0709e6b6d8596)

14 years agor3809: fix compiler warning
Stefan Metzmacher [Wed, 17 Nov 2004 14:34:02 +0000 (14:34 +0000)]
r3809: fix compiler warning

(This used to be commit 241404474665b870d2dfdb684aa45e2e2716e1fe)

14 years agor3808: Put these in the same order as the IDL, to make it easier to spot what's unimp...
Andrew Bartlett [Wed, 17 Nov 2004 13:47:01 +0000 (13:47 +0000)]
r3808: Put these in the same order as the IDL, to make it easier to spot what's unimplemetned (tests of the group members)

Andrew Bartlett
(This used to be commit 3b81305e2b7ee3e6acabcd8b0e9ed121d4b08840)

14 years agor3807: Cross-check the basic attributes for groups and aliases in RPC-SAMSYNC.
Andrew Bartlett [Wed, 17 Nov 2004 13:39:37 +0000 (13:39 +0000)]
r3807: Cross-check the basic attributes for groups and aliases in RPC-SAMSYNC.

Andrew Bartlett
(This used to be commit 90398fda41dd15480899e3628df186eb02fdc139)

14 years agor3806: added support to smb_server and pvfs for the NTTRANS Create call. This
Andrew Tridgell [Wed, 17 Nov 2004 12:36:14 +0000 (12:36 +0000)]
r3806: added support to smb_server and pvfs for the NTTRANS Create call. This
call has an optional sec_desc and ea_list.
(This used to be commit 8379ad14e3d51a848a99865d9ce8d56a301e8a3c)

14 years agor3805: Fix the LSA portions of the RPC-SAMSYNC test - I was not using the LSA
Andrew Bartlett [Wed, 17 Nov 2004 12:27:16 +0000 (12:27 +0000)]
r3805: Fix the LSA portions of the RPC-SAMSYNC test - I was not using the LSA
secrets interface correctly.  (New interface added).

Andrew Bartlett
(This used to be commit 994ac7f031e2b2d528595a4a0a446d92074d6ecf)

14 years agor3804: Add more comparison tests in RPC-SAMSYNC.
Andrew Bartlett [Wed, 17 Nov 2004 11:56:13 +0000 (11:56 +0000)]
r3804: Add more comparison tests in RPC-SAMSYNC.

This compares values for the domain and for secrets.  We still have
some problems we need to sort out for secrets.

Also rename a number of structures in samr.idl and netlogon.idl, to
better express their consistancy.

Andrew Bartlett
(This used to be commit 3f52fa3a42b030c9aef21c8bd88aad87a0aae078)