Andrew Tridgell [Sat, 19 Sep 2009 19:41:00 +0000 (12:41 -0700)]
tdb: increase minor version
we depend on reads in transactions for s4 replication
Andrew Tridgell [Sat, 19 Sep 2009 19:28:32 +0000 (12:28 -0700)]
s4-smbd: removed unnecessary includes
Andrew Tridgell [Sat, 19 Sep 2009 19:28:02 +0000 (12:28 -0700)]
s4-scripts: make minimal_includes handle our -I overrides
Andrew Tridgell [Sat, 19 Sep 2009 18:49:33 +0000 (11:49 -0700)]
s4-smbd: minimise includes in smbd/ and smb_server
Andrew Tridgell [Sat, 19 Sep 2009 18:47:12 +0000 (11:47 -0700)]
s4-testparm: fixed -v option
never pass a bool pointer to popt
Andrew Tridgell [Sat, 19 Sep 2009 18:38:04 +0000 (11:38 -0700)]
s4-rpc_server: removed remaining unnecessary #includes
Andrew Tridgell [Sat, 19 Sep 2009 18:33:39 +0000 (11:33 -0700)]
s4-rpc: remove some unnecessary #include lines
I should remember to run script/minimal_includes.pl more often
Matthias Dieter Wallnöfer [Sat, 19 Sep 2009 19:57:41 +0000 (21:57 +0200)]
s4:samdb.py - further rework
- I added a comment to the "new user" operation to point out that this works
only on s4, since we add also ID mapping entries for winbind there
- The "new user" operation adds now the password through the "set password"
operation which I find better due to the re-use principle
- Remove the word "DC" after "SAMBA 4" in the comment over the "set password"
operation since this note and operation applies also to s4 in standalone mode
Andrew Tridgell [Sat, 19 Sep 2009 18:06:46 +0000 (11:06 -0700)]
pidl: update expected output for NDR64 changes
Andrew Tridgell [Sat, 19 Sep 2009 15:25:41 +0000 (08:25 -0700)]
s4-netlogon: implement dcesrv_netr_DsRAddressToSitenamesExW
We don't implement sites properly at the moment so we just return
Default-First-Site-Name
Andrew Tridgell [Sat, 19 Sep 2009 15:23:03 +0000 (08:23 -0700)]
s4-resolve: fixed a crash bug on timeout
We were creating the name resolution context as a child of lp_ctx,
which meant when we gave up on a connection the timer on name
resolution kept running, and when it timed out the callback crashed as
the socket was already removed.
Andrew Tridgell [Sat, 19 Sep 2009 05:58:03 +0000 (22:58 -0700)]
s4-pipes: convert pipe names to lowercase and validate
clients may provide arbitrary names, but we only want lowercase alnum
names
Andrew Tridgell [Sat, 19 Sep 2009 01:05:55 +0000 (18:05 -0700)]
s4-server: kill main daemon if a task fails to initialise
When one of our core tasks fails to initialise it can now ask for the
server as a whole to die, rather than limping along in a degraded
state.
Andrew Tridgell [Sat, 19 Sep 2009 01:04:15 +0000 (18:04 -0700)]
s4-kdc: ignore unknown keytypes
don't fail hdb operations if one of the key types is unknown
Andrew Tridgell [Fri, 18 Sep 2009 21:12:02 +0000 (14:12 -0700)]
Merge branch 'master' of /home/tridge/samba/git/combined
Andrew Tridgell [Fri, 18 Sep 2009 21:10:42 +0000 (14:10 -0700)]
s4-drs: cope with dupliate linked attributes
With a w2k8-R2 DC, we sometimes get linked attribute updates via DRS
which are duplicates of entries that we already have. We need to cope
with this by using a remove/add pair in the ldb_modify() to avoid a
"entry already exists" error
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 19:06:19 +0000 (21:06 +0200)]
s4:provision_configuration - "sPNMappings": "http" missed on regeneration
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 18:57:57 +0000 (20:57 +0200)]
s4/provision_configuration - re-add the "sPNMappings"
Accidentally removed by a previous commit.
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 18:40:57 +0000 (20:40 +0200)]
s4:scripts - Cleans also the rest under the "setup" directory up
- I removed also the "-H" parameter since those scripts are all thought for the
use on a local s4 domain controller. Another reason is also the bind as SYSTEM
account which itself is only possible on local binds.
Günther Deschner [Thu, 17 Sep 2009 07:42:49 +0000 (09:42 +0200)]
s3-rpc_client: fix non initialized structure in rpccli_lsa_lookup_sids_noalloc.
Guenther
Günther Deschner [Fri, 18 Sep 2009 19:27:55 +0000 (21:27 +0200)]
s3-smbd: fix get_ea_names_from_file() and check for pnames pointer.
This fixes smbd from crashing all the time.
Jeremy, Volker, please check.
Guenther
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 18:22:03 +0000 (20:22 +0200)]
s4:various scripts under "setup" - Unification
- This unified the shape of those four scripts (comments, command sequence, call
of SamDB)
- To consider the samdb.py changes regarding the filter: there is now always the
possibility either to specify the username or the search filter
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 18:21:29 +0000 (20:21 +0200)]
s4:domainlevel/pwsettings - Remove unused import
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 18:16:05 +0000 (20:16 +0200)]
s4:samdb.py - Unification of the interfaces
- When a user account is requested by a call always the search filter will be
passed as argument. This helps us to unify the API
- Add/fix some comments; in particular new comments inform the developer which
requirements exist if he wants to use calls which manipulate the
"userPassword" attribute (On s4 no problem - but on certain domain levels on
Windows Server)
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 18:15:12 +0000 (20:15 +0200)]
s4:minschema/fullschema - add correct header comments
Stefan Metzmacher [Fri, 18 Sep 2009 09:32:46 +0000 (11:32 +0200)]
s4:rpc_server: remove some now unused code
metze
Stefan Metzmacher [Tue, 11 Aug 2009 12:50:36 +0000 (14:50 +0200)]
s4:ntvfs_ipc: add real named pipe support
We now open a named via the named_pipe_auth
code and process IO via the tstream interface.
This means we support byte mode and message mode
named pipes.
We also correctly issue NT_STATUS_PIPE_BUSY
when a smb_trans request comes in and a read or smb_trans
is already pending.
We also have support for async dcerpc over ncacn_np now,
and we now can remove the ncacn_np specific hacks from the
rpc_server/ code.
metze
Stefan Metzmacher [Fri, 1 May 2009 16:19:34 +0000 (18:19 +0200)]
s4:torture: the spoolss notify test should listen on the ncacn_np endpoint
metze
Stefan Metzmacher [Fri, 1 May 2009 16:17:10 +0000 (18:17 +0200)]
s4:rpc_server: export dcesrv_add_ep() so that torture tests can use it
metze
Stefan Metzmacher [Thu, 17 Sep 2009 16:43:41 +0000 (18:43 +0200)]
libcli/named_pipe_auth: pass gssapi delegated credentials through the named pipe
metze
Stefan Metzmacher [Thu, 17 Sep 2009 16:41:00 +0000 (18:41 +0200)]
s4:service_named_pipe: accept delegated credentials
metze
Stefan Metzmacher [Thu, 17 Sep 2009 16:33:21 +0000 (18:33 +0200)]
librpc: rerun 'make idl'
metze
Stefan Metzmacher [Thu, 17 Sep 2009 16:26:57 +0000 (18:26 +0200)]
named_pipe_auth.idl: add infrastructure to pass delegated credentials
metze
Stefan Metzmacher [Fri, 1 May 2009 16:20:53 +0000 (18:20 +0200)]
s4:torture: don't use 'pipe' as variable name it's a system call
metze
Stefan Metzmacher [Fri, 18 Sep 2009 00:44:49 +0000 (02:44 +0200)]
s4:heimdal/gssapi/krb5: set cred_handle in _gsskrb5_import_cred
metze
Andrew Tridgell [Fri, 18 Sep 2009 18:22:32 +0000 (11:22 -0700)]
Merge branch 'master' of /home/tridge/samba/git/combined
Volker Lendecke [Fri, 18 Sep 2009 18:20:07 +0000 (20:20 +0200)]
s3: Fix Coverity ID 581 -- NEGATIVE_RETURNS
Volker Lendecke [Fri, 18 Sep 2009 16:27:16 +0000 (18:27 +0200)]
s3:smbstatus: Fix bug 6703, allow smbstatus as non-root
We only require a ctdb connection when clustering is enabled. This limits the
restriction for only-root smbstatus to the clustering case.
Volker Lendecke [Fri, 18 Sep 2009 16:10:54 +0000 (18:10 +0200)]
s3:smbstatus: Fix some nonempty blank lines
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 15:53:23 +0000 (17:53 +0200)]
s4:domainlevel - fix indentations
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 15:34:02 +0000 (17:34 +0200)]
s4:domainlevel - Add a script which allows raising the domain/forest level
This simple script allows raising the domain and/or forest level for s4.
I integrated also the basic checks (since we don't perform them in LDB yet):
e.g. the forest level can't be higher than the domain level(s).
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 15:33:24 +0000 (17:33 +0200)]
s4:pwsettings - Simplify the error handling a bit
Matthieu Patou [Fri, 18 Sep 2009 11:55:57 +0000 (15:55 +0400)]
python: create a script for reorgnizing an LDB file.
This script helps to reclaim waisted place.
Matthias Dieter Wallnöfer [Fri, 18 Sep 2009 14:21:29 +0000 (16:21 +0200)]
s4:provision - Bump down the domain and forest level to Windows 2000
- The DC level we keep on Windows Server 2008 R2 (we should call ourself
always the newest server type)
- The domain/forest level we set to the minimum (Windows 2000 native) to
allow all AD DC types (from Windows 2000 on) in our domain - the NT4 "mixed"
mode isn't supported by us (discussed on mailing list) -> "nTMixedDomain" is
set always to 0
- I'll add a script which allows to bump the DC level (basically sets the
"msDS-Behaviour-Version" attributes on the "Partitions/Configuration/DC" and
on the "DC" object)
Andrew Tridgell [Thu, 17 Sep 2009 23:42:11 +0000 (16:42 -0700)]
talloc: don't crash if f is NULL in talloc_report_*
It's annoying when you use
p talloc_report_full(ctx, fopen("/tmp/xx","w"))
in gdb, and if you don't have write permission on the file then
you get a segv.
Andrew Tridgell [Thu, 17 Sep 2009 23:02:14 +0000 (16:02 -0700)]
s3-rpc: samba3 needs the DCERPC_NDR64 define
Andrew Tridgell [Thu, 17 Sep 2009 22:15:58 +0000 (15:15 -0700)]
s4-sam: add a note about the solaris client
Andrew Tridgell [Thu, 17 Sep 2009 22:15:36 +0000 (15:15 -0700)]
ndrdump: fixed help
Andrew Tridgell [Thu, 17 Sep 2009 22:15:24 +0000 (15:15 -0700)]
ndr: num_auths is an array size, thus a uint3264
Andrew Tridgell [Thu, 17 Sep 2009 22:14:31 +0000 (15:14 -0700)]
ndr: split out ndr enum functions
This allows for easier implementation of the NDR32/NDR64 split
Andrew Tridgell [Thu, 17 Sep 2009 16:59:50 +0000 (09:59 -0700)]
idl: recompile our IDL
The NDR64 change affects every IDL file
Andrew Tridgell [Thu, 17 Sep 2009 16:10:21 +0000 (09:10 -0700)]
s4-pidl: add support for NDR64
Added support for NDR64 to the samba4 pidl generator
Andrew Tridgell [Thu, 17 Sep 2009 16:09:48 +0000 (09:09 -0700)]
s4-rpc: added NDR64 support
This adds support for the nd464 binding string option
Andrew Tridgell [Thu, 17 Sep 2009 16:08:47 +0000 (09:08 -0700)]
ndr: added support for NDR64
This adds NDR64 support for the push functions in libndr
Andrew Tridgell [Thu, 17 Sep 2009 16:07:44 +0000 (09:07 -0700)]
util: use likely/unlikely for NT_STATUS_* macros
Andrew Tridgell [Thu, 17 Sep 2009 16:07:17 +0000 (09:07 -0700)]
libreplace: added likely()/unlikely() macros for gcc
These macros allow the compile to better optimise code that has a lot
of if statements. I particularly want to use this for our low level
generated NDR code.
Volker Lendecke [Fri, 18 Sep 2009 01:42:23 +0000 (03:42 +0200)]
s3:smbd: Attempt to fix the build on HP/UX
Volker Lendecke [Fri, 18 Sep 2009 01:34:55 +0000 (03:34 +0200)]
s3:smbd: Fix an inappropriate pointer return in a bool fn
Volker Lendecke [Fri, 18 Sep 2009 01:28:51 +0000 (03:28 +0200)]
s3:winbind: Fix some enum type mismatches found by the Solaris compiler
Andrew Tridgell [Thu, 17 Sep 2009 22:24:20 +0000 (15:24 -0700)]
Merge branch 'master' of /home/tridge/samba/git/combined
Andrew Tridgell [Thu, 17 Sep 2009 22:16:21 +0000 (15:16 -0700)]
idl: regenerate IDL for NDR64 changes
Andrew Tridgell [Thu, 17 Sep 2009 22:15:58 +0000 (15:15 -0700)]
s4-sam: add a note about the solaris client
Andrew Tridgell [Thu, 17 Sep 2009 22:15:36 +0000 (15:15 -0700)]
ndrdump: fixed help
Andrew Tridgell [Thu, 17 Sep 2009 22:15:24 +0000 (15:15 -0700)]
ndr: num_auths is an array size, thus a uint3264
Andrew Tridgell [Thu, 17 Sep 2009 22:14:31 +0000 (15:14 -0700)]
ndr: split out ndr enum functions
This allows for easier implementation of the NDR32/NDR64 split
Andrew Tridgell [Thu, 17 Sep 2009 16:59:50 +0000 (09:59 -0700)]
idl: recompile our IDL
The NDR64 change affects every IDL file
Andrew Tridgell [Thu, 17 Sep 2009 16:10:21 +0000 (09:10 -0700)]
s4-pidl: add support for NDR64
Added support for NDR64 to the samba4 pidl generator
Andrew Tridgell [Thu, 17 Sep 2009 16:09:48 +0000 (09:09 -0700)]
s4-rpc: added NDR64 support
This adds support for the nd464 binding string option
Andrew Tridgell [Thu, 17 Sep 2009 16:08:47 +0000 (09:08 -0700)]
ndr: added support for NDR64
This adds NDR64 support for the push functions in libndr
Andrew Tridgell [Thu, 17 Sep 2009 16:07:44 +0000 (09:07 -0700)]
util: use likely/unlikely for NT_STATUS_* macros
Andrew Tridgell [Thu, 17 Sep 2009 16:07:17 +0000 (09:07 -0700)]
libreplace: added likely()/unlikely() macros for gcc
These macros allow the compile to better optimise code that has a lot
of if statements. I particularly want to use this for our low level
generated NDR code.
Matthias Dieter Wallnöfer [Thu, 17 Sep 2009 19:19:24 +0000 (21:19 +0200)]
s4:provision - Some rework (continuation)
- Fix up "servicePrincipalNames" attributes on the DC object
- Add some informative comments (most in "provision_self_join.ldif")
- Add also comments where objects are missing which we may add later when we
support the feature (mainly for FRS)
- Add "domain updates" objects also under "CN=Configuration" (they exist twice)
- Add the default services under "Services" to allow interoperability with some
MS client tools
- Smaller changes
Björn Jacke [Thu, 17 Sep 2009 19:04:52 +0000 (21:04 +0200)]
s3: build with pam support when possible
Jeremy Allison [Thu, 17 Sep 2009 18:28:37 +0000 (11:28 -0700)]
Re-generated idl files with () for enum values.
Jeremy.
Jeremy Allison [Thu, 17 Sep 2009 18:27:51 +0000 (11:27 -0700)]
Ensure we enclose the enum values in brackets to make the cast work.
Jeremy.
Jeremy Allison [Thu, 17 Sep 2009 18:16:54 +0000 (11:16 -0700)]
Check in modified generated files for systems where pidl can't run.
Jeremy.
Jeremy Allison [Thu, 17 Sep 2009 18:11:23 +0000 (11:11 -0700)]
Merge branch 'master' of ssh://jra@git.samba.org/data/git/samba
Jeremy Allison [Thu, 17 Sep 2009 18:08:42 +0000 (11:08 -0700)]
Fix the problem with pidl generating invalid C for enums. According
to the C standard an enum is guarenteed to be an (int), which means
for 4 byte ints specifying a type of 0x80000000 is an invalid value.
The Solaris compiler complains about this. Fix by adding an (int)
cast in front of the value generation.
Jeremy.
Kouhei Sutou [Thu, 13 Aug 2009 06:12:01 +0000 (15:12 +0900)]
spnego: Support ASN.1 BIT STRING and use it in SPNEGO.
Signed-off-by: Günther Deschner <gd@samba.org>
Matthieu Patou [Thu, 17 Sep 2009 15:56:02 +0000 (19:56 +0400)]
pyldb: Don't segfault when invalid type is specified to as_sddl and from_sddl.
Fix bug #6723
Matthias Dieter Wallnöfer [Thu, 17 Sep 2009 16:37:46 +0000 (18:37 +0200)]
s4:descriptor module - Revert and const fixups
- Revert a change introduced by me since I didn't understood the meaning of the
version check
- Added some "const" to suppress compiler warnings
Matthias Dieter Wallnöfer [Thu, 17 Sep 2009 16:17:55 +0000 (18:17 +0200)]
s4:descriptor - cosmetic
Matthias Dieter Wallnöfer [Thu, 17 Sep 2009 16:05:58 +0000 (18:05 +0200)]
s4:libnet_become_dc - Fix some uninitialised variables
Matthias Dieter Wallnöfer [Thu, 17 Sep 2009 14:00:55 +0000 (16:00 +0200)]
s4:provision - Some rework
- Add/change "wellKnownObjects" attributes
- Order entries in "provision_basedn_modify.ldif"
- Add/change "delete entries" object under BASEDN and CONFIGDN
- Fix default version number of "Default domain policy" group policy
- Add "domain updates" objects for interoperability with MS AD maintaining tools
- Show version number in the "oEMInformation" attribute (suggested by ekacnet)
- Smaller fixups
Jeremy Allison [Thu, 17 Sep 2009 17:04:19 +0000 (10:04 -0700)]
void functions can't return a value. Found by the Solaris compiler.
Jeremy.
Jeremy Allison [Thu, 17 Sep 2009 17:03:14 +0000 (10:03 -0700)]
void functions can't return a value. Found by the Solaris compiler.
Jeremy.
Jeremy Allison [Thu, 17 Sep 2009 17:00:31 +0000 (10:00 -0700)]
void functions can't return a value. Found by the Solaris compiler.
Jeremy.
Jeremy Allison [Thu, 17 Sep 2009 16:29:07 +0000 (09:29 -0700)]
We now pass the Microsoft SMB2 fileio test with EA's and streams...
Jeremy.
Jeremy Allison [Thu, 17 Sep 2009 16:25:25 +0000 (09:25 -0700)]
Remove ununsed variable warning.
Jeremy.
Matthias Dieter Wallnöfer [Sun, 13 Sep 2009 10:37:41 +0000 (12:37 +0200)]
s4/domain behaviour flags: Fix them up in various locations
Additional notes:
- Bump the level to Windows Server 2008 R2 (we should support always the latest
version - if we provision ourself)
- In "descriptor.c" the check for the "domainFunctionality" level shouldn't be
needed: ACL owner groups (not owner user) are supported since Windows 2000
Server (first AD edition)
- I took the argument from: http://support.microsoft.com/kb/329194
Matthias Dieter Wallnöfer [Wed, 9 Sep 2009 19:24:34 +0000 (21:24 +0200)]
s4/python: flags
- Introduce the "userAccountControl", "groupType" and "sAMAccountType" flags
- Corrects the "domain/forestFunctionality" and "domainControllerFunctionality" flags
Matthias Dieter Wallnöfer [Sun, 13 Sep 2009 09:01:44 +0000 (11:01 +0200)]
libds/common/flags: various
- Reorders the header file to have the order "userAccountFlags", "groupType",
"sAMAccountType" (matches the order in the flag_mapping.c and samldb module)
- Fixes the group account flags properly up
- Fixes the flags for "domain/forestFunctionality" and "domainControllerFunctionality"
up
Andrew Tridgell [Wed, 16 Sep 2009 10:58:21 +0000 (03:58 -0700)]
Merge branch 'master' of /home/tridge/samba/git/combined
Andrew Tridgell [Wed, 16 Sep 2009 10:57:56 +0000 (03:57 -0700)]
s4-repl: raise a debug level
Andrew Tridgell [Wed, 16 Sep 2009 10:43:37 +0000 (03:43 -0700)]
s4-dsdb: treat uSNHighest as 0 if @REPLCHANGED doesn't exist
When a partition is first created it still needs a uSNHighest value
Andrew Tridgell [Wed, 16 Sep 2009 10:58:13 +0000 (03:58 -0700)]
Merge branch 'master' of /home/tridge/samba/git/combined
Andrew Tridgell [Wed, 16 Sep 2009 10:57:56 +0000 (03:57 -0700)]
s4-repl: raise a debug level
Andrew Tridgell [Wed, 16 Sep 2009 10:57:09 +0000 (03:57 -0700)]
Merge branch 'master' of ssh://git.samba.org/data/git/samba
Andrew Tridgell [Wed, 16 Sep 2009 10:56:07 +0000 (03:56 -0700)]
Merge branch 'master' of /home/tridge/samba/git/combined
Andrew Tridgell [Wed, 16 Sep 2009 10:43:37 +0000 (03:43 -0700)]
s4-dsdb: treat uSNHighest as 0 if @REPLCHANGED doesn't exist
When a partition is first created it still needs a uSNHighest value