Andrew Tridgell [Thu, 3 Feb 2011 02:03:18 +0000 (13:03 +1100)]
waf: samba deps generation depends on EXTRA_INCLUDES
Volker Lendecke [Sun, 6 Feb 2011 19:42:52 +0000 (20:42 +0100)]
s3: Make "endpoint_table" static
Andreas, this is only used in srv_epmapper right now. Make public again when
this will be used somewhere else.
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Sun Feb 6 21:33:04 CET 2011 on sn-devel-104
Volker Lendecke [Sun, 6 Feb 2011 18:56:22 +0000 (19:56 +0100)]
s3: Use the right credentials in check_netlogond_security
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Sun Feb 6 20:43:03 CET 2011 on sn-devel-104
Volker Lendecke [Sun, 6 Feb 2011 18:10:40 +0000 (19:10 +0100)]
s3: Only build auth_netlogond for the developer build
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Sun Feb 6 19:55:49 CET 2011 on sn-devel-104
Volker Lendecke [Sun, 6 Feb 2011 16:53:37 +0000 (17:53 +0100)]
s3: Add primary group in pdb_ads_enum_group_memberships
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Sun Feb 6 18:41:08 CET 2011 on sn-devel-104
Volker Lendecke [Sun, 6 Feb 2011 14:50:04 +0000 (15:50 +0100)]
s3: Fix auth_netlogond to cope with netlogon_creds_CredentialState
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Sun Feb 6 17:30:48 CET 2011 on sn-devel-104
Volker Lendecke [Sun, 6 Feb 2011 14:33:26 +0000 (15:33 +0100)]
s3: Fix a potential memleak in secrets_fetch_trusted_domain_password
Volker Lendecke [Sat, 5 Feb 2011 13:42:01 +0000 (14:42 +0100)]
s3: Fetch the machinepw via ldapi in pdb_ads
Volker Lendecke [Sun, 6 Feb 2011 09:15:50 +0000 (10:15 +0100)]
s3: In pdb_ads, cope with artificial samu structs
Volker Lendecke [Sat, 5 Feb 2011 13:41:52 +0000 (14:41 +0100)]
s3: Use strlcpy in pdb_ads_connect
Volker Lendecke [Thu, 3 Feb 2011 20:47:42 +0000 (21:47 +0100)]
s3: Fix some nonempty blank lines
Matthieu Patou [Sun, 25 Jul 2010 23:01:03 +0000 (03:01 +0400)]
s4 torture: add new rpc torture tests for backup key remote protocol
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Sat Feb 5 13:01:42 CET 2011 on sn-devel-104
Stefan Metzmacher [Sat, 5 Feb 2011 11:14:55 +0000 (12:14 +0100)]
s4:selftest: skip samba4.rpc.backupkey for now
metze
Stefan Metzmacher [Sat, 5 Feb 2011 08:54:40 +0000 (09:54 +0100)]
s3:Makefile.in: use waf directly to build smbtorture4 and ndrdump4
metze
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Sat Feb 5 11:53:05 CET 2011 on sn-devel-104
Jeremy Allison [Sat, 5 Feb 2011 01:48:10 +0000 (17:48 -0800)]
Fix try_chown code. Use new vfs_chown_fsp() which always trys fd first.
Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Sat Feb 5 03:33:59 CET 2011 on sn-devel-104
Jeremy Allison [Fri, 4 Feb 2011 23:32:09 +0000 (15:32 -0800)]
Move the "oplock file with byte range locks" check to the correct place, where we're making oplock decisions.
Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Sat Feb 5 01:18:14 CET 2011 on sn-devel-104
Günther Deschner [Fri, 7 Jan 2011 16:28:29 +0000 (17:28 +0100)]
s3-winbindd: let winbind try to use samlogon validation level 6. (bug #7945)
The benefit of this that it makes us more robust to secure channel resets
triggered from tools outside the winbind process. Long term we need to have a
shared tdb secure channel store though as well.
Guenther
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Fri Feb 4 18:11:04 CET 2011 on sn-devel-104
Günther Deschner [Tue, 11 Jan 2011 14:08:41 +0000 (15:08 +0100)]
s3-auth: add copy_netr_SamBaseInfo().
Guenther
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Stefan Metzmacher [Fri, 4 Feb 2011 11:54:36 +0000 (12:54 +0100)]
s3:lib/addrchange: set ctx->sock to -1 after close
The makes the code more consistent with similar destructors.
metze
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Fri Feb 4 15:52:55 CET 2011 on sn-devel-104
Stefan Metzmacher [Fri, 4 Feb 2011 11:53:38 +0000 (12:53 +0100)]
s3:lib/addrchange: remove unused pointer
metze
Stefan Metzmacher [Fri, 4 Feb 2011 11:32:41 +0000 (12:32 +0100)]
s3:lib/addrchange: let addrchange_done() retry and ignore unknown message types
Messages like RTM_NEWLINK should be just ignored.
metze
Stefan Metzmacher [Fri, 4 Feb 2011 11:29:42 +0000 (12:29 +0100)]
s3:winbindd: fix segfaults on addrchange errors and make DEBUG() statements more usefull
metze
Stefan Metzmacher [Thu, 3 Feb 2011 15:11:32 +0000 (16:11 +0100)]
s3:rpc_server/netlogon: reject validation level 6 without ads support
metze
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Fri Feb 4 10:06:26 CET 2011 on sn-devel-104
Andrew Tridgell [Fri, 4 Feb 2011 05:04:30 +0000 (16:04 +1100)]
charcnv: removed call to setlocale() (bug 7519)
We don't need this setlocale() call, and it can break applications
that use our libraries
Thanks to Milan Crha for pointing this out
Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Fri Feb 4 06:51:01 CET 2011 on sn-devel-104
Stefan Metzmacher [Wed, 2 Feb 2011 09:40:06 +0000 (10:40 +0100)]
replace: Try to fix broken sys/capabilites.h on Linux.
As this is more or less a broken header we need to include linux/types.h
before sys/capabilities.h to avoid redefinitions.
Systems like ClearOS 5.2 need linux/types.h very early.
metze
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Thu Feb 3 05:26:12 CET 2011 on sn-devel-104
Stefan Metzmacher [Thu, 3 Feb 2011 02:32:21 +0000 (03:32 +0100)]
Revert "replace: Try to fix broken sys/capabilites.h on Linux."
This reverts commit
c2207e9b2cdec9cd4c32184c668a2c469edb7148.
This still doesn't build for me on ClearOS 5.2.
metze
Stefan Metzmacher [Thu, 3 Feb 2011 01:11:41 +0000 (02:11 +0100)]
s3:libnet_dssync_passdb: remove useless DEBUG statements
metze
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Thu Feb 3 04:20:54 CET 2011 on sn-devel-104
Jeremy Allison [Thu, 3 Feb 2011 01:47:19 +0000 (17:47 -0800)]
Fix value overflow (one too many 'f's ).
Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Thu Feb 3 03:35:32 CET 2011 on sn-devel-104
Stefan Metzmacher [Wed, 2 Feb 2011 22:41:17 +0000 (23:41 +0100)]
s3:lib: allow_trailing_dollar should only allow '$'
metze
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Thu Feb 3 00:33:48 CET 2011 on sn-devel-104
Jeremy Allison [Wed, 2 Feb 2011 20:20:18 +0000 (12:20 -0800)]
Fix a couple of missing checks on talloc returns.
Autobuild-User: Jeremy Allison <jra@samba.org>
Autobuild-Date: Wed Feb 2 22:23:46 CET 2011 on sn-devel-104
Günther Deschner [Wed, 2 Feb 2011 17:51:45 +0000 (18:51 +0100)]
s3-waf: no need to call pidl with --samba3-ndr-client anymore.
Guenther
Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb 2 21:38:23 CET 2011 on sn-devel-104
Günther Deschner [Wed, 2 Feb 2011 17:53:54 +0000 (18:53 +0100)]
s3-build: remove --samba3-ndr-client from build_idl.sh script.
Guenther
Günther Deschner [Tue, 18 Jan 2011 17:07:04 +0000 (18:07 +0100)]
s3-waf: remove RPCCLI_LSA subsystem.
Guenther
Günther Deschner [Tue, 18 Jan 2011 17:06:52 +0000 (18:06 +0100)]
s3-build: remove RPCCLI_LSA subsystem.
Guenther
Günther Deschner [Tue, 18 Jan 2011 17:05:49 +0000 (18:05 +0100)]
s3-winbind: prefer dcerpc_lsa_X functions in winbindd/winbindd_rpc.c.
Guenther
Günther Deschner [Tue, 18 Jan 2011 17:02:27 +0000 (18:02 +0100)]
s3-winbind: prefer dcerpc_lsa_X functions in winbindd/winbindd_samr.c.
Guenther
Günther Deschner [Tue, 18 Jan 2011 16:54:24 +0000 (17:54 +0100)]
s3-winbind: prefer dcerpc_lsa_X functions in winbindd/winbind_cm.c
Guenther
Günther Deschner [Wed, 2 Feb 2011 17:50:39 +0000 (18:50 +0100)]
s3-epmap: use correct dcerpc client header in dcerpc_ep.c
Guenther
Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb 2 19:50:02 CET 2011 on sn-devel-104
Günther Deschner [Tue, 18 Jan 2011 16:25:02 +0000 (17:25 +0100)]
s3-net: prefer dcerpc_lsa_X functions in "net rpc".
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:46:39 +0000 (16:46 +0100)]
s3-net: prefer dcerpc_lsa_X functions in "net rpc rights".
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:37:05 +0000 (16:37 +0100)]
s3-net: use status variable in "net rpc rights".
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:35:14 +0000 (16:35 +0100)]
s3-net: prefer dcerpc_lsa_X functions in net_util.c
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:24:12 +0000 (16:24 +0100)]
s3-net: prefer dcerpc_lsa_X functions in "net rpc join".
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:21:24 +0000 (16:21 +0100)]
s3-net: prefer dcerpc_lsa_X functions in "net rpc audit".
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:14:35 +0000 (16:14 +0100)]
s3-net: use status variable in "net rpc audit".
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:29:16 +0000 (16:29 +0100)]
s3-rpcclient: prefer dcerpc_lsa_X functions.
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:11:46 +0000 (16:11 +0100)]
s3-rpcclient: prefer dcerpc_lsa_X functions.
Guenther
Günther Deschner [Tue, 18 Jan 2011 15:08:05 +0000 (16:08 +0100)]
s3-rpcclient: prefer dcerpc_lsa_X functions.
Guenther
Günther Deschner [Tue, 18 Jan 2011 14:42:47 +0000 (15:42 +0100)]
s3-rpcclient: use status variable.
Guenther
Günther Deschner [Tue, 18 Jan 2011 13:59:20 +0000 (14:59 +0100)]
s3-libsmb: prefer dcerpc_lsa_X functions.
Guenther
Günther Deschner [Tue, 18 Jan 2011 13:55:48 +0000 (14:55 +0100)]
s3-libnet: prefer dcerpc_lsa_X functions.
Guenther
Günther Deschner [Tue, 18 Jan 2011 13:48:58 +0000 (14:48 +0100)]
s3-libnetapi: prefer dcerpc_lsa_X functions.
Guenther
Günther Deschner [Tue, 18 Jan 2011 13:41:22 +0000 (14:41 +0100)]
s3-waf: remove RPCCLI_SAMR subsystem.
Guenther
Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb 2 18:54:38 CET 2011 on sn-devel-104
Günther Deschner [Tue, 18 Jan 2011 13:41:07 +0000 (14:41 +0100)]
s3-build: remove RPCCLI_SAMR subsytem.
Guenther
Günther Deschner [Tue, 18 Jan 2011 13:24:56 +0000 (14:24 +0100)]
s3-net: prefer dcerpc_samr_X functions in net_rpc_join_newstyle.
Guenther
Günther Deschner [Tue, 18 Jan 2011 13:13:23 +0000 (14:13 +0100)]
s3-net: use status variable in net_rpc_join_newstyle.
Guenther
Günther Deschner [Wed, 2 Feb 2011 16:01:08 +0000 (17:01 +0100)]
s3-waf: fix the build after libnet changes.
Guenther
Volker Lendecke [Wed, 2 Feb 2011 16:24:13 +0000 (17:24 +0100)]
s3: Fix a typo
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Wed Feb 2 18:10:45 CET 2011 on sn-devel-104
Günther Deschner [Wed, 2 Feb 2011 15:17:12 +0000 (16:17 +0100)]
s3-waf: fix the build after epmapper changes.
Andreas, please check.
Guenther
Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb 2 17:14:40 CET 2011 on sn-devel-104
Stefan Metzmacher [Wed, 5 Jan 2011 15:56:14 +0000 (16:56 +0100)]
s3-dssync-passdb: implement accounts, aliases and groups
metze
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Wed Feb 2 16:30:26 CET 2011 on sn-devel-104
Günther Deschner [Fri, 21 Nov 2008 23:35:20 +0000 (00:35 +0100)]
s3-dssync-passdb: fill in passdb_process_objects
Guenther
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Günther Deschner [Fri, 21 Nov 2008 22:59:55 +0000 (23:59 +0100)]
s3-dssync-passdb: fill in passdb_finish.
Guenther
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Günther Deschner [Fri, 21 Nov 2008 22:58:42 +0000 (23:58 +0100)]
s3-dssync-passdb: fill in passdb_startup.
Guenther
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Günther Deschner [Fri, 21 Nov 2008 22:48:45 +0000 (23:48 +0100)]
s3-dssync-passdb: add basic routines and net function.
Guenther
Stefan Metzmacher [Tue, 4 Jan 2011 12:02:35 +0000 (13:02 +0100)]
s3:net: make some net_rpc_samsync.c functions static
metze
Stefan Metzmacher [Tue, 4 Jan 2011 07:50:20 +0000 (08:50 +0100)]
s3:net: "net rpc vampire" is an alias for "net rpc vampire passdb"
The should use exactly the same code path for both.
metze
Stefan Metzmacher [Thu, 13 Jan 2011 16:18:24 +0000 (17:18 +0100)]
s3:libnet: add 'process_links' to dssync_ops
This allows the backend to handle linked attributes.
metze
Stefan Metzmacher [Fri, 21 Jan 2011 10:55:10 +0000 (11:55 +0100)]
s3:groupdb: allow machine accounts as members.
metze
Stefan Metzmacher [Tue, 1 Feb 2011 17:46:57 +0000 (18:46 +0100)]
s3:winbindd: catch lookup_names/sids schannel errors over ncacn_ip_tcp (bug #7944)
If winbindd connects to a domain controller it doesn't establish the lsa
connection over ncacn_ip_tcp direct. This happens only on demand.
If someone does a 'net rpc testjoin' and then a
wbinfo -n DOMAIN\\administrator, we'll get DCERPC faults with
ACCESS_DENIED/SEC_PKG_ERROR, because winbindd's in memory copy
of the schannel session key is invalidated.
This problem can also happen on other calls, but the
lookup_names/sids calls on thet lsa ncacn_ip_tcp connection
are the most important ones.
The long term fix is to store the schannel client state in a
tdb, but for now it's enough to catch the error and invalidate
the all connections to the dc and reestablish the schannel
session key.
The fix for bug 7568 (commit
be396411a4e1f3a174f8a44b6c062d834135e70a)
made this worse, as it assumes winbindd's in memory session key is
always the current one.
metze
Günther Deschner [Wed, 2 Feb 2011 11:50:42 +0000 (12:50 +0100)]
s3: Remove superfluous ;
Guenther
Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb 2 15:44:21 CET 2011 on sn-devel-104
Günther Deschner [Wed, 2 Feb 2011 11:43:59 +0000 (12:43 +0100)]
nsswitch: remove unused code from wbinfo.c
Guenther
Volker Lendecke [Wed, 2 Feb 2011 12:34:53 +0000 (13:34 +0100)]
s3: Fix a typo
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Wed Feb 2 14:58:52 CET 2011 on sn-devel-104
Günther Deschner [Tue, 18 Jan 2011 13:06:48 +0000 (14:06 +0100)]
s3-winbind: prefer dcerpc_samr_X functions in winbindd/winbindd_msrpc.c.
Guenther
Autobuild-User: Günther Deschner <gd@samba.org>
Autobuild-Date: Wed Feb 2 14:14:43 CET 2011 on sn-devel-104
Günther Deschner [Tue, 18 Jan 2011 12:56:26 +0000 (13:56 +0100)]
s3-winbind: prefer dcerpc_samr_X functions in winbindd/winbindd_pam.c.
Guenther
Günther Deschner [Tue, 18 Jan 2011 12:07:18 +0000 (13:07 +0100)]
s3-winbind: prefer dcerpc_samr_X functions in winbindd/winbindd_rpc.c.
Guenther
Günther Deschner [Tue, 18 Jan 2011 11:43:02 +0000 (12:43 +0100)]
s3-winbind: prefer dcerpc_samr_X functions in winbindd/winbindd_samr.c.
Guenther
Günther Deschner [Tue, 18 Jan 2011 11:42:00 +0000 (12:42 +0100)]
s3-winbind: prefer dcerpc_samr_X functions in invalidate_cm_connection.
Guenther
Günther Deschner [Tue, 18 Jan 2011 11:40:47 +0000 (12:40 +0100)]
s3-winbind: prefer dcerpc_samr_X functions in cm_connect_sam.
Guenther
Günther Deschner [Tue, 18 Jan 2011 11:25:10 +0000 (12:25 +0100)]
s3-winbind: use status variable name in cm_connect_sam.
Guenther
Andreas Schneider [Mon, 4 Oct 2010 16:32:35 +0000 (18:32 +0200)]
s3-selftest: Enable RPC-EPMAPPER tests.
Autobuild-User: Andreas Schneider <asn@cryptomilk.org>
Autobuild-Date: Wed Feb 2 13:28:41 CET 2011 on sn-devel-104
Andreas Schneider [Thu, 20 Jan 2011 14:37:46 +0000 (15:37 +0100)]
s3-smbd: Disable the endpoint mapper by default.
Andreas Schneider [Wed, 5 Jan 2011 16:16:46 +0000 (17:16 +0100)]
s3-smbd: Added a function to setup rpc services.
Move the complete setup of the rpc service to its own file and use
callbacks to register at the endpoint mapper.
Andreas Schneider [Tue, 4 Jan 2011 08:52:57 +0000 (09:52 +0100)]
s3-rpc_server: Only allow registering endpoints on priviledged pipes.
Andreas Schneider [Thu, 16 Sep 2010 08:48:33 +0000 (10:48 +0200)]
s3-librpc: Added dcerpc_binding_vector_create function.
Andreas Schneider [Thu, 2 Sep 2010 14:24:26 +0000 (16:24 +0200)]
s3-librpc: Added dcerpc register endpoint functions.
Andreas Schneider [Tue, 18 Jan 2011 08:48:35 +0000 (09:48 +0100)]
s3-epmapper: Commented unimplemented functions.
Andreas Schneider [Tue, 21 Dec 2010 18:38:40 +0000 (19:38 +0100)]
s3-epmapper: Improved the epm_Map function.
Andreas Schneider [Tue, 5 Oct 2010 09:56:47 +0000 (11:56 +0200)]
s3-epmapper: Implemented epm_Lookup.
Andreas Schneider [Mon, 11 Oct 2010 09:42:26 +0000 (11:42 +0200)]
s3-epmapper: Implemented epm_LookupHandleFree.
Andreas Schneider [Mon, 11 Oct 2010 15:22:22 +0000 (17:22 +0200)]
s3-epmapper: Added arg to match uuid in build_ep_list().
Andreas Schneider [Mon, 4 Oct 2010 15:58:33 +0000 (17:58 +0200)]
s3-epmapper: Added epm_Map function from Samba4.
Andreas Schneider [Tue, 5 Oct 2010 09:45:41 +0000 (11:45 +0200)]
s3-epmapper: Added epm_Delete function.
Andreas Schneider [Thu, 16 Sep 2010 08:50:25 +0000 (10:50 +0200)]
s3-epmapper: Added epm_Insert function.
Andreas Schneider [Mon, 4 Oct 2010 13:56:49 +0000 (15:56 +0200)]
s3-epmapper: Added a endpoint mapper skeleton.
Stefan Metzmacher [Tue, 1 Feb 2011 12:04:48 +0000 (13:04 +0100)]
s4:torture/rpc/netlogon: add invalid level tests for netr_LogonControl2
metze
Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Wed Feb 2 12:43:32 CET 2011 on sn-devel-104
Stefan Metzmacher [Tue, 1 Feb 2011 12:03:49 +0000 (13:03 +0100)]
s4:torture/rpc/netlogon: improve comments in test_LogonControl2()
metze
Stefan Metzmacher [Tue, 1 Feb 2011 11:44:59 +0000 (12:44 +0100)]
s4:torture/rpc/netlogon: test invalid netr_LogonControl() level
metze
Stefan Metzmacher [Tue, 1 Feb 2011 07:32:40 +0000 (08:32 +0100)]
s4:torture/rpc/netlogon: test invalid LogonSamLogon levels
This proves that the invalid parameter/info class checks
need to be done before the credential chain checks.
metze
Stefan Metzmacher [Tue, 1 Feb 2011 09:52:33 +0000 (10:52 +0100)]
s4:torture/rpc/netlogon: test validation levels 2 and 3
metze
Stefan Metzmacher [Tue, 1 Feb 2011 11:42:45 +0000 (12:42 +0100)]
netlogon.idl: remove pointless union arms of netr_DELTA_UNION
These were just padding, which was needed as we didn't have
'ms_union' support.
metze