Andrew Tridgell [Tue, 4 Jan 2005 23:26:12 +0000 (23:26 +0000)]
r4519: added the enum print function in ndr_basic.c
Andrew Tridgell [Tue, 4 Jan 2005 23:25:25 +0000 (23:25 +0000)]
r4518: added proper support for "typedef enum" in pidl. We can now use enums as types in switch
statements and variable types, and the value will be printed with its string name and value
Tim Potter [Tue, 4 Jan 2005 23:15:33 +0000 (23:15 +0000)]
r4517: Revert previous commit about giving arrays of scalars their own subtree.
Generate code to display using proto_tree_add_bytes() instead.
Simo Sorce [Tue, 4 Jan 2005 15:18:50 +0000 (15:18 +0000)]
r4513: add experimental modification attribute checking
still not complete but works with add and replace, not tested with delete
lot of duplicated code to remove
Tim Potter [Tue, 4 Jan 2005 06:35:53 +0000 (06:35 +0000)]
r4512: Give arrays of scalar types their own subtree.
Tim Potter [Tue, 4 Jan 2005 05:21:24 +0000 (05:21 +0000)]
r4511: Remove a crapload of dead code.
Andrew Bartlett [Tue, 4 Jan 2005 03:06:23 +0000 (03:06 +0000)]
r4510: Some more tests for RPC-NETLOGON, checking the idea that we could
combine the NTLM and LMv2 responses, for maximum compatability from a
client perspective, allowing access to servers that require NTLMv2, as
well as those that don't support it.
Currently, this is unfortunetly not possible against Win2k3 (and Samba
is being coded to match that behaviour at this point).
Andrew Bartlett
Tim Potter [Mon, 3 Jan 2005 23:28:45 +0000 (23:28 +0000)]
r4509: Add missing cr.
Stefan Metzmacher [Mon, 3 Jan 2005 14:45:17 +0000 (14:45 +0000)]
r4508: - simplify the code and allocate only in one place
- the ZERO_STRUCT(r->out) is useless and wrong if we would have a [ref,out] parameter
also note the r->out is already initialized by the pidl generated code
metze
Stefan Metzmacher [Mon, 3 Jan 2005 14:42:59 +0000 (14:42 +0000)]
r4507: this default is unnneded because the switch level is in the r->in
metze
Stefan Metzmacher [Mon, 3 Jan 2005 14:38:05 +0000 (14:38 +0000)]
r4506: fix compiler warnings
metze
Simo Sorce [Mon, 3 Jan 2005 14:05:47 +0000 (14:05 +0000)]
r4505: Add a first very basic schema module
To use it you should provide a schema.ldb file where the schema is stored
and load the module in the ldb you want to have schema check activated
more info soon.
currently schema checks are performed only on new object creation not on modifications
Simo.
Andrew Bartlett [Mon, 3 Jan 2005 09:00:37 +0000 (09:00 +0000)]
r4504: Setting
.enabled = True
on modules we know are good (and we want on be default) seems neater.
Andrew Bartlett
Simo Sorce [Mon, 3 Jan 2005 08:59:00 +0000 (08:59 +0000)]
r4503: add an error reporting function (fixes)
Simo Sorce [Mon, 3 Jan 2005 08:52:39 +0000 (08:52 +0000)]
r4502: add an error reporting function
Andrew Tridgell [Mon, 3 Jan 2005 07:57:05 +0000 (07:57 +0000)]
r4501: when copying files it is common for clients to copy the ACL. When the
ACL is the default ACL this menas the copied file would have an xattr
but the original would not. Avoid this by checking if the ACL being
set is the original ACL, and avoid the copy.
Andrew Bartlett [Mon, 3 Jan 2005 07:08:14 +0000 (07:08 +0000)]
r4500: Allow GENSEC modules to be disabled by setting a flag on their module
definition, not by hardcoded reference in loadparm.c
Andrew Bartlett
Andrew Bartlett [Mon, 3 Jan 2005 06:23:02 +0000 (06:23 +0000)]
r4499: Almost make our Samba4 server pass the RPC-SAMLOGON torture test.
I just need to fix a couple of NTLMv2 issues before we can fully pass,
and put this in test_rpc.sh, as a 'should pass' test.
Andrew Bartlett
Andrew Tridgell [Mon, 3 Jan 2005 02:53:06 +0000 (02:53 +0000)]
r4498: arrgh, really fix the typo this time
Andrew Tridgell [Mon, 3 Jan 2005 02:47:00 +0000 (02:47 +0000)]
r4497: fixed a typo
Andrew Tridgell [Mon, 3 Jan 2005 02:26:14 +0000 (02:26 +0000)]
r4496: expanded info on testing your filesystem for xattr support
Tim Potter [Mon, 3 Jan 2005 00:26:50 +0000 (00:26 +0000)]
r4495: Some more regexps for handling stuff in the lsa and samr pipes -
various types of arrays and relative structures.
Andrew Bartlett [Sun, 2 Jan 2005 23:53:14 +0000 (23:53 +0000)]
r4494: Allow gensec_gssapi to use the SPNEGO mech provided by Heimdal (off by
default at this point), and include the GSSAPI OIDs in our source, per
advice by lha that this is easier than getting the includes right.
Andrew Bartlett
Andrew Tridgell [Sun, 2 Jan 2005 23:48:07 +0000 (23:48 +0000)]
r4493: change name of README.gcov so it doesn't get deleted by "make clean" :-)
Andrew Tridgell [Sun, 2 Jan 2005 23:44:08 +0000 (23:44 +0000)]
r4492: r.in.info is a pointer that needs to be allocated before use
Andrew Tridgell [Sun, 2 Jan 2005 23:36:02 +0000 (23:36 +0000)]
r4491: don't dereference q1.out.sam unless we know it is not NULL
Andrew Tridgell [Sun, 2 Jan 2005 23:31:12 +0000 (23:31 +0000)]
r4490: when implementing one rpc server call in terms of another call, you
must zero r.out before making the 2nd call if the 2nd call has any
non-ref out parameters. This is needed for the case where the 2nd call
fails, and the 1st call would then fill in its out fields based on
uninitialised memory.
Tim Potter [Sun, 2 Jan 2005 23:25:25 +0000 (23:25 +0000)]
r4489: Remove an obsolete file.
Andrew Tridgell [Sun, 2 Jan 2005 23:09:11 +0000 (23:09 +0000)]
r4488: removed an unused variable
Andrew Tridgell [Sun, 2 Jan 2005 23:05:27 +0000 (23:05 +0000)]
r4487: fixed the use of ldb_msg_add_*() in the samr password backend
Andrew Tridgell [Sun, 2 Jan 2005 23:03:50 +0000 (23:03 +0000)]
r4486: fixed some memory leaks in the new ldb code, by ensuring that memory is always
allocated as a child of the right context
Stefan Metzmacher [Sun, 2 Jan 2005 16:25:30 +0000 (16:25 +0000)]
r4485: remove unused TODO comment we already handle the DS_ROLE_STANDALONE_SERVER case
correct
metze
Stefan Metzmacher [Sun, 2 Jan 2005 16:24:05 +0000 (16:24 +0000)]
r4484: - use the nTMixedDomain attribute to check if our domain is mixed mode or not
metze
Stefan Metzmacher [Sun, 2 Jan 2005 16:11:59 +0000 (16:11 +0000)]
r4483: - rename same structs, enums and uninons of the dssetup pipe
to match the style we are using in other pipes
- first fillin local vars and only set the out parameter on success
- for the server code only to the samdb lookup when it's needed
NOTE: the DsRoleGetPrimaryDomainInformation() code with DS_ROLE_MEMBER_SERVER
is not tested yet, does someone has a w2k3 member server to test with?
metze
Stefan Metzmacher [Sun, 2 Jan 2005 16:06:21 +0000 (16:06 +0000)]
r4482: in ads mixed mode there are also only one PDC and multiple BDC's
metze
Andrew Tridgell [Sun, 2 Jan 2005 13:04:32 +0000 (13:04 +0000)]
r4481: get rid of the last leak
Andrew Tridgell [Sun, 2 Jan 2005 12:56:21 +0000 (12:56 +0000)]
r4480: autofree the dcom proxy tables
Andrew Tridgell [Sun, 2 Jan 2005 12:55:33 +0000 (12:55 +0000)]
r4479: added the function talloc_autofree_context() which returns a talloc context that
will automatically be freed on program exit. This is useful for reducing
clutter in leak reports
Andrew Tridgell [Sun, 2 Jan 2005 09:46:59 +0000 (09:46 +0000)]
r4477: expanded the test suite to increase code coverage a lot
Andrew Tridgell [Sun, 2 Jan 2005 08:53:58 +0000 (08:53 +0000)]
r4476: added a little gcov howto for ldb
Andrew Tridgell [Sun, 2 Jan 2005 07:51:13 +0000 (07:51 +0000)]
r4475: fixed smbd to work with the small changes in the ldb API (the most important
change was in the ldb_msg_add_*() routines, which now use the msg as a context,
and thus it needs to be a talloc ptr)
Andrew Tridgell [Sun, 2 Jan 2005 07:49:29 +0000 (07:49 +0000)]
r4474: - converted ldb to use talloc internally
- added gcov flags to Makefile.ldb
- expanded ldb test suite to get more coverage
Andrew Tridgell [Sun, 2 Jan 2005 07:47:34 +0000 (07:47 +0000)]
r4473: - moved talloc into its own lib/talloc/ area
- added gcov flags to Makefile.talloc
- expanded talloc testsuite to add a test for realloc with a child ptr
- fixed a bug in talloc_realloc() with realloc of a ptr that has child ptrs
Andrew Tridgell [Sun, 2 Jan 2005 04:21:32 +0000 (04:21 +0000)]
r4472: improve the discard_const() macro for standalone build of talloc
Tim Potter [Sun, 2 Jan 2005 03:24:57 +0000 (03:24 +0000)]
r4471: Running 'make eparser_idl' doesn't need --header anymore.
Andrew Bartlett [Sun, 2 Jan 2005 03:10:28 +0000 (03:10 +0000)]
r4470: Try not to have GSSAPI built unless we detected krb5. We should split
these tests out a bit, but for now it's an indicator we can use.
Andrew Bartlett
Tim Potter [Sun, 2 Jan 2005 00:00:43 +0000 (00:00 +0000)]
r4469: Version n + 1 of the pidl ethereal parser generator. This version is
based on the idea of manipulating the .c and .h files generated by
parser.pm with perl regexps and glueing it all together to make an
ethereal plugin.
I thought this was a pretty crazy idea to start off with but it has
turned out to be not as complicated as I thought and has the huge advantage
of not duplicating any of the difficult code in parser.pm.
Tim Potter [Sat, 1 Jan 2005 23:18:59 +0000 (23:18 +0000)]
r4468: Don't be a slacker and leave out parameter names when generating
prototypes for ndr push/pull/print functions.
Andrew Tridgell [Sat, 1 Jan 2005 05:08:41 +0000 (05:08 +0000)]
r4467: - tdb standalone build doesn't need -DSTANDALONE any more
- fixed standalone build
Andrew Tridgell [Sat, 1 Jan 2005 05:06:22 +0000 (05:06 +0000)]
r4466: rather than defining "STANDALONE" for building tdb, ldb and talloc
outside the tree, instead defined _SAMBA_BUILD_ inside the Samba
build. This makes it easier to pull code out of Samba for external
use.
Andrew Tridgell [Sat, 1 Jan 2005 04:40:11 +0000 (04:40 +0000)]
r4465: remove unused file
Andrew Tridgell [Sat, 1 Jan 2005 04:25:46 +0000 (04:25 +0000)]
r4464: added pvfs backend support for the special CREATOR_OWNER and CREATOR_GROUP inheritance rules
Andrew Tridgell [Sat, 1 Jan 2005 03:46:55 +0000 (03:46 +0000)]
r4463: added testing of the special SID_CREATOR_OWNER inheritance rules
Andrew Tridgell [Sat, 1 Jan 2005 01:40:45 +0000 (01:40 +0000)]
r4462: - enable DSSETUP on ncalrpc
- add DSSETUP to the list of tests run in test_rpc.sh
Andrew Tridgell [Sat, 1 Jan 2005 01:32:01 +0000 (01:32 +0000)]
r4461: finished the remaining information levels in the DSSETUP pipe. The pipe is now complete!
The only glitch is that I am returning DS_ROLE_MEMBER_SERVER when I
should be returning DS_ROLE_PRIMARY_DC. This is needed for the moment
or ACL editing doesn't work from w2k3. Once we have some more ADS
calls we should be able to fix this.
Andrew Bartlett [Sat, 1 Jan 2005 00:19:08 +0000 (00:19 +0000)]
r4460: Add a new GENSEC module: gensec_gssapi
(disabled by default, set parametric option: gensec:gssapi=yes to enable).
This module backs directly onto GSSAPI, and allows us to sign and seal
GSSAPI/Krb5 connections in particular. This avoids me reinventing the
entire GSSAPI wheel.
Currently a lot of things are left as default - we will soon start
specifiying OIDs as well as passwords (it uses the keytab only at the
moment). Tested with our LDAP-* torture tests against Win2k3.
My hope is to use this module to access the new SPNEGO implementation
in Heimdal, to avoid having to standards-verify our own.
Andrew Bartlett
Andrew Bartlett [Fri, 31 Dec 2004 22:45:11 +0000 (22:45 +0000)]
r4459: GENSEC refinements:
In developing a GSSAPI plugin for GENSEC, it became clear that the API
needed to change:
- GSSAPI exposes only a wrap() and unwrap() interface, and determines
the location of the signature itself.
- The 'have feature' API did not correctly function in the recursive
SPNEGO environment.
As such, NTLMSSP has been updated to support these methods.
The LDAP client and server have been updated to use the new wrap() and
unwrap() methods, and now pass the LDAP-* tests in our smbtorture.
(Unfortunely I still get valgrind warnings, in the code that was
previously unreachable).
Andrew Bartlett
Jelmer Vernooij [Fri, 31 Dec 2004 22:38:00 +0000 (22:38 +0000)]
r4458: Create ncalrpc directory with 0755 rather then 0700 so non-root users
can use ncalrpc as well.
Jelmer Vernooij [Fri, 31 Dec 2004 22:12:44 +0000 (22:12 +0000)]
r4457: Fix IDL + add torture test for InqObject
Volker Lendecke [Fri, 31 Dec 2004 17:56:05 +0000 (17:56 +0000)]
r4456: NT4 usrmgr.exe asks for 4096 accounts, allow twice that.
Volker
Andrew Tridgell [Fri, 31 Dec 2004 13:28:31 +0000 (13:28 +0000)]
r4455: LSADS was a duplicate of DSSETUP, and is now gone
Andrew Tridgell [Fri, 31 Dec 2004 13:23:37 +0000 (13:23 +0000)]
r4454: This is the patch I use to Samba3 nmbd to allow a WinXP box
to join a Samba4 domain. It is hard-coded for my GUID, so
you will need to edit it to suit.
I'm committing this so others can experiment. Obviously
what we really need is a new nmbd in Samba4.
Andrew Tridgell [Fri, 31 Dec 2004 12:10:35 +0000 (12:10 +0000)]
r4453: use lp_server_role(), which currently returns 3, for the dssetup
role. The value '5', which is what my w2k3 DC returns, doesn't
work. I'm not sure why this is.
with this change the GUI ACL editor from w2k3 works properly, with
either server role in the HKLM registry.
Andrew Tridgell [Fri, 31 Dec 2004 11:37:26 +0000 (11:37 +0000)]
r4452: the beginnings of a dssetup rpc server.
Andrew Tridgell [Fri, 31 Dec 2004 10:49:35 +0000 (10:49 +0000)]
r4451: added initial RPC-DSSETUP torture test. It works for level1 of
ds_RolerGetPrimaryDomainInformation()
Andrew Tridgell [Fri, 31 Dec 2004 10:47:04 +0000 (10:47 +0000)]
r4450: the beginnings of IDL for the dssetup pipe. I need this pipe for ACL editing from w2k3
when we present ourselves as a DC in the registry
Andrew Tridgell [Fri, 31 Dec 2004 10:45:48 +0000 (10:45 +0000)]
r4449: fixed the helpstring for LSA IDL
Andrew Tridgell [Fri, 31 Dec 2004 08:56:32 +0000 (08:56 +0000)]
r4448: - fixed access_mask checking on acl set
- honor the change ownership requests of acl set, changing the underlying
unix owner/group
- fix the access mask on file create with SEC_FLAG_MAXIMUM_ALLOWED
Andrew Tridgell [Fri, 31 Dec 2004 08:54:59 +0000 (08:54 +0000)]
r4447: implement server side of lsa_LookupSids3() and lsa_LookupNames3()
Andrew Tridgell [Fri, 31 Dec 2004 08:54:07 +0000 (08:54 +0000)]
r4446: attempt to fix the build - andrew, can you check I've done this right?
Andrew Tridgell [Fri, 31 Dec 2004 08:44:08 +0000 (08:44 +0000)]
r4445: put the unlink test in a subdirectory, and ensure it cleans up
Andrew Tridgell [Fri, 31 Dec 2004 08:43:34 +0000 (08:43 +0000)]
r4444: - initialise registry:HKEY_LOCAL_MACHINE to a reasonable default (where
provision.pl suggests hklm.ldb be put)
- fix the globals init not to wipe parametic values after initialising
them (this bug prevented default values for parametric parameters)
Andrew Tridgell [Fri, 31 Dec 2004 07:53:42 +0000 (07:53 +0000)]
r4443: test lsa_LookupNames3() even when lsa_LookupSids3() fails
Andrew Tridgell [Fri, 31 Dec 2004 07:52:54 +0000 (07:52 +0000)]
r4442: fix lsa_TranslatedSid3 (its a dom_sid2 not a dom_sid)
Andrew Bartlett [Fri, 31 Dec 2004 07:43:08 +0000 (07:43 +0000)]
r4441: gensec_krb5 update:
- Use more of the clikrb5.c wrapper calls
- Don't use the session keytab if we kinit for the user.
Andrew Bartlett
Stefan Metzmacher [Fri, 31 Dec 2004 07:42:57 +0000 (07:42 +0000)]
r4440: - add a start of srvsvc_NetShareCheck() server code
- filterout hidden shares in NetShareEnum()
- get max_connections right
metze
Stefan Metzmacher [Fri, 31 Dec 2004 07:40:14 +0000 (07:40 +0000)]
r4439: unlimited connections is -1
metze
Stefan Metzmacher [Fri, 31 Dec 2004 07:35:14 +0000 (07:35 +0000)]
r4438: the ADMIN$ share is a diskshare but hidden
metze
Andrew Tridgell [Fri, 31 Dec 2004 07:26:26 +0000 (07:26 +0000)]
r4437: added IDL and test code for lsa_LookupSids3() and lsa_LookupNames3().
For some reason I am getting ACCESS_DENIED from w2k3 on
lsa_LookupSids3(). I will investigate.
Stefan Metzmacher [Fri, 31 Dec 2004 07:22:10 +0000 (07:22 +0000)]
r4436: add one more flag
metze
Stefan Metzmacher [Fri, 31 Dec 2004 07:21:31 +0000 (07:21 +0000)]
r4435: add another error code
metze
Stefan Metzmacher [Fri, 31 Dec 2004 06:19:05 +0000 (06:19 +0000)]
r4434: - fix some NetShare* idl functions
- add torture test for NetShareCheck()
metze
Andrew Tridgell [Fri, 31 Dec 2004 06:08:43 +0000 (06:08 +0000)]
r4433: added the boilerplate for the new w2k3 LSA functions in preparation
for adding LookupSids3 (needed for ACL editing from w2k3)
Stefan Metzmacher [Fri, 31 Dec 2004 05:34:31 +0000 (05:34 +0000)]
r4432: - add srvsvc_NetShareInfo level 1006 and 1501 idl
- implement srvsvc_NetGetShareInfo()
- add more error checks
- bring the rest of the code in the same layout
metze
Stefan Metzmacher [Fri, 31 Dec 2004 04:45:13 +0000 (04:45 +0000)]
r4431: add WERR_NET_NAME_NOT_FOUND
metze
Andrew Tridgell [Fri, 31 Dec 2004 04:17:03 +0000 (04:17 +0000)]
r4430: - fixed the BASE-LOCK* tests to use a subdirectory, and properly setup the directory before each test,
thus avoiding errors due to previous failures
Andrew Tridgell [Fri, 31 Dec 2004 03:55:37 +0000 (03:55 +0000)]
r4429: the owner of a file always gets SEC_STD_DELETE
Andrew Tridgell [Fri, 31 Dec 2004 03:54:49 +0000 (03:54 +0000)]
r4428: use minimum open permissions in the 'acl' command in smbclient, so the user is
not prevented from viewing the acl by other access bits
Andrew Tridgell [Fri, 31 Dec 2004 03:51:42 +0000 (03:51 +0000)]
r4427: - added ldb_msg_*() functions for sorting, comparing and copying messages
- added a ldb_msg_canonicalize() function that fixes a record to not have any duplicate
elements
- changed ldbedit to use ldb_msg_canonicalize(). This fixes a bug when you rename multiple
elements in a record in one edit
Stefan Metzmacher [Fri, 31 Dec 2004 03:32:36 +0000 (03:32 +0000)]
r4426: fix same names
metze
Stefan Metzmacher [Fri, 31 Dec 2004 02:48:11 +0000 (02:48 +0000)]
r4425: - move srvsvc and wkssvc server code to the new W_ERROR_HAVE_NO_MEMORY() macro
- add parameters for
server_info:platform_id = 500 /* this is PLATFORM_ID_NT */
server_info:version_major = 5
server_info:version_minor = 2
- implmented srvsvc_NetSrvGetInfo level 101
- make dcesrv_common_get_server_name() match w2k3
metze
Andrew Tridgell [Fri, 31 Dec 2004 02:18:14 +0000 (02:18 +0000)]
r4424: fixed a simple bug in the '|' handling in indexed ldb searches. I'm
amazed we got along for so long with this bug!
Stefan Metzmacher [Fri, 31 Dec 2004 01:03:57 +0000 (01:03 +0000)]
r4423: give lp_parm_int() and lp_parm_ulong() default values
metze
Stefan Metzmacher [Fri, 31 Dec 2004 01:02:22 +0000 (01:02 +0000)]
r4422: make lp_set_cmdline("torture:dangerous", "Yes") a bool parameter
metze
Stefan Metzmacher [Fri, 31 Dec 2004 00:07:37 +0000 (00:07 +0000)]
r4421: fix typo
metze
Stefan Metzmacher [Thu, 30 Dec 2004 23:51:18 +0000 (23:51 +0000)]
r4420: - add usefull helper macros for allocation failures,
they should be used in mostly all our code after
calling a talloc_* function
- the current NTSTATUS_TALLOC_CHECK() and WERR_TALLOC_CHECK()
should be replaced by this new macros
metze
Stefan Metzmacher [Thu, 30 Dec 2004 20:34:20 +0000 (20:34 +0000)]
r4419: move security_token stuff to the libcli/security/
and debug privileges
metze
Stefan Metzmacher [Thu, 30 Dec 2004 19:55:23 +0000 (19:55 +0000)]
r4418: fix compiler warning and remove unused typedef
metze
Volker Lendecke [Thu, 30 Dec 2004 19:11:25 +0000 (19:11 +0000)]
r4417: Reply to samr_QueryDomainInfo with the same static value as level2 does.
Volker
Volker Lendecke [Thu, 30 Dec 2004 19:08:32 +0000 (19:08 +0000)]
r4416: [in,out] variables do have an r->out component...
Volker