Stefan Metzmacher [Thu, 19 Jan 2006 23:04:14 +0000 (23:04 +0000)]
r13044: I finally understand that the [charset()] and [string] properties
are independent...
fix some warnings
metze
(This used to be commit
6ae621437cdfd9ca5beac1d056f60d875a057b22)
Stefan Metzmacher [Thu, 19 Jan 2006 16:34:05 +0000 (16:34 +0000)]
r13037: fill in the corrent maxVersion in table replies
metze
(This used to be commit
165538245b0772c4618895779cd468feac8494c0)
Stefan Metzmacher [Thu, 19 Jan 2006 13:01:12 +0000 (13:01 +0000)]
r13035: active,special group replicas are overwritten by tombstone,special group replicas
metze
(This used to be commit
cf669e4b2a4dcfb080cbb01a108797acad802f36)
Andrew Bartlett [Thu, 19 Jan 2006 10:28:11 +0000 (10:28 +0000)]
r13034: A couple of clarifications on the release notes.
We still need a lot of work here.
Andrew Bartlett
(This used to be commit
c975469f893f67a57fe9a333421ff83f9c365bc0)
Andrew Bartlett [Thu, 19 Jan 2006 10:26:00 +0000 (10:26 +0000)]
r13033: Thankyou very much to Brad Henry for fixing up many aspects of the
release notes. I will answer some questions and clarify some points
in the next commit.
Andrew Bartlett
(This used to be commit
d01c4dd84895efdde6043b63dd377fe441366094)
Andrew Bartlett [Thu, 19 Jan 2006 07:09:52 +0000 (07:09 +0000)]
r13031: A first stab at some release notes. Much work needed.
Andrew Bartlett
(This used to be commit
8ff6461e050077f2a94b1daad2c30b291b3e2a29)
Andrew Bartlett [Wed, 18 Jan 2006 21:52:19 +0000 (21:52 +0000)]
r13019: Again protect us against format string mismatches, with the new split
out proto headers.
The reason this is done in this way is that the attribute must be on
the prototype, not the actual function defintion. Hence the macros
which expand to nothing in the C file, but expand to an __attribute__
in the prototype header.
Andrew Bartlett
(This used to be commit
a88933668f908a398bb0d8bc7dc39c96cee40de6)
Andrew Bartlett [Wed, 18 Jan 2006 21:41:24 +0000 (21:41 +0000)]
r13018: Fix (correct) warning about mixing C/js interface function types. I
don't use the arguments, but you must connect as the right type
anyway.
Andrew Bartlett
(This used to be commit
f50186e9306714b25ae8f92eff9a3e95ad706274)
Stefan Metzmacher [Wed, 18 Jan 2006 16:36:53 +0000 (16:36 +0000)]
r13007: let our winsclient code register multihomed records with
our winsserver and don't defend our local name against
our own register packets...
this won gave quite confusing logmessages...
metze
(This used to be commit
31ce24d7b1d2945c45c4f5d6376d5041df8b6982)
Stefan Metzmacher [Wed, 18 Jan 2006 16:32:24 +0000 (16:32 +0000)]
r13006: always debug the unicast and broadcast address
metze
(This used to be commit
f7481a4c8c9933e8a9ccfe10ca8e15afad717d99)
Stefan Metzmacher [Wed, 18 Jan 2006 16:27:29 +0000 (16:27 +0000)]
r13005: - use nbtd:max_refresh_time=12345 also for name refresh with a wins server
metze
(This used to be commit
5e3639edaf551068466caaf48faa9b2bbfed1041)
Stefan Metzmacher [Wed, 18 Jan 2006 16:20:33 +0000 (16:20 +0000)]
r13004: fix compiler warnings
metze
(This used to be commit
833efdf8a943b210ba8e5b219dc754260001bedb)
Stefan Metzmacher [Wed, 18 Jan 2006 16:05:27 +0000 (16:05 +0000)]
r13002: fix compiler warning
metze
(This used to be commit
3365ad950b1ffdbcff9e6c7fc8525988d1621938)
Stefan Metzmacher [Wed, 18 Jan 2006 16:01:13 +0000 (16:01 +0000)]
r13001: fix compiler warnings
metze
(This used to be commit
32cfd7c8df0fb0fe1da8a4d3acabbaa111326352)
Stefan Metzmacher [Wed, 18 Jan 2006 15:51:50 +0000 (15:51 +0000)]
r13000: fix compiler warnings
metze
(This used to be commit
880dd3538ef54af100a715acb72cc16b9947b617)
Stefan Metzmacher [Wed, 18 Jan 2006 15:46:00 +0000 (15:46 +0000)]
r12999: fix compiler warnings
metze
(This used to be commit
ec30a40f042016bc167382b63bd284f656ed7cb1)
Andrew Bartlett [Wed, 18 Jan 2006 12:06:36 +0000 (12:06 +0000)]
r12998: A big update to samldb.c
This updates the module to handle both SID allocation and nextRid
updating while importing users. (As imported users already have a
SID, so don't go via the allocation step). We also ensure that SIDs
in the database are unquie at create time.
Furthermore, at allocation time, we double-check the SID isn't already
in use, and that we don't create a foriegnSecurityPrincipal for a
'local' sid.
Also create random samAccountName entries for users without one (we
were setting $000000-
000000000000).
We may want to seperate the uniqueness code from the rest of samldb,
and into a module with the objectguid code, which needs similar
checks. These checks also need to apply to modification, or those
modifications denied outright.
Also update part of the testsuite to validate this.
Andrew Bartlett
(This used to be commit
7a9c8eee4bea88f5f0bb7c62f701476384b7dc84)
Andrew Bartlett [Wed, 18 Jan 2006 11:25:30 +0000 (11:25 +0000)]
r12997: Feed the right event context to libnet in ejsnet and the auth code.
This should give better behaviour in SWAT.
Fix authentication as Samba, rather than System, users in SWAT.
Andrew Bartlett
(This used to be commit
498d72c4ad4d57d10f43ca58830d6ee8292a55f4)
Andrew Bartlett [Wed, 18 Jan 2006 11:22:30 +0000 (11:22 +0000)]
r12996: Restrict this search to domain objects.
Andrew Bartlett
(This used to be commit
4d69eae382a789910d24ecadfb08b8d95a3c04b0)
Andrew Bartlett [Wed, 18 Jan 2006 11:21:52 +0000 (11:21 +0000)]
r12995: Don't allow overrides on "name" from above, as it can't be correct.
Andrew Bartlett
(This used to be commit
4a50bf95b93310f640a4ba28990f054e85215551)
Simo Sorce [Wed, 18 Jan 2006 04:36:30 +0000 (04:36 +0000)]
r12989: move the control parsing and handleng functions to cmdline.c
so that they can be used by the other ldb tools as well
(This used to be commit
c12b3c5cb46d428f815c623efacff8edebb6f6e3)
Simo Sorce [Wed, 18 Jan 2006 03:10:52 +0000 (03:10 +0000)]
r12988: delete an ancient file that misteriously survived till now.
(This used to be commit
7b9b1ced7d36a1adf8d86b3b434c9e5d4bdfab87)
Stefan Metzmacher [Tue, 17 Jan 2006 18:56:04 +0000 (18:56 +0000)]
r12984: add parse code and ldbsearch cmdline code for
NOTIFICATION LDAP Controls
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/ldap/ldap/ldap_server_notification_oid.asp
this doesn't work yet, but it shows that we need to extend ldb to correctly
handle async requests...
metze
(This used to be commit
1fe67189490c9faf499b68a28071a6294a53db0e)
Stefan Metzmacher [Tue, 17 Jan 2006 17:23:11 +0000 (17:23 +0000)]
r12983: - fix using a DIRSYNC cookie from the command line
- also w2k doesn't work correct with max_attrs = 0, so we should use
a high number, with this I'm getting the same results from w2k and w2k3
metze
(This used to be commit
ce9f086c3c1a65bf1b4c843ec44e8817d9361182)
Stefan Metzmacher [Tue, 17 Jan 2006 17:15:07 +0000 (17:15 +0000)]
r12982: fix parsing of LDAP DIRSYNC cookies
metze
(This used to be commit
31d2bf3ca15842ff3f7a74aa35e3753fadba6177)
Andrew Bartlett [Tue, 17 Jan 2006 10:27:18 +0000 (10:27 +0000)]
r12979: Grr, I forgot to commit this file (from Brad Henry's libnet_site
patch) before the power went out :-)
Andrew Bartlett
(This used to be commit
352d6493bbb9591aebb32a0c22124b61da959666)
Simo Sorce [Tue, 17 Jan 2006 04:04:57 +0000 (04:04 +0000)]
r12977: Some code to implement the client side of the Dirsync control
Still investigating how it works.
Simo.
(This used to be commit
bebd403523e581606505e05e7cb621efbc22fa36)
Andrew Bartlett [Tue, 17 Jan 2006 03:44:37 +0000 (03:44 +0000)]
r12976: Patch from Brad Henry <j0j0@riod.ca>:
This patch pulls the AD site name generation and site join code from
libnet/libnet_join.c and puts it into a new file, libnet/libnet_site.c.
This way, a common means for site name, configuration dn and server dn
generation exists so it doesn't need to be rewritten in new code (such
as the future libnet_leave for example).
I've made a couple of changes, but nothing dramatic. Nice work Brad!
Andrew Bartlett
(This used to be commit
45f67b3f6d506cc8cb9922184a8c0c9b59a8f702)
James Peach [Tue, 17 Jan 2006 01:18:27 +0000 (01:18 +0000)]
r12972: Use single quotes in the showflags and showlayout targets to stop the
shell interpreting the expanded make variables.
(This used to be commit
ae7541a377eb9bd4a5b8b2bd779811e354f80d4a)
Tim Potter [Mon, 16 Jan 2006 23:42:07 +0000 (23:42 +0000)]
r12971: Fix spelling.
(This used to be commit
e9ec3a379c45ea210a810b1cb5d65b966b7319cc)
Stefan Metzmacher [Mon, 16 Jan 2006 15:23:06 +0000 (15:23 +0000)]
r12959: hopefully fix bug #3365 this time
metze
(This used to be commit
8fc2b68aa8d1a6bb3a828b3a1ab5f2a4f354f6f7)
Stefan Metzmacher [Mon, 16 Jan 2006 14:01:34 +0000 (14:01 +0000)]
r12958: don't bind to '255.255.255.255'
fix bug #3411
metze
(This used to be commit
2cb587c779b5f70e4818fa57fcb2b8ee4a2a276b)
Stefan Metzmacher [Sun, 15 Jan 2006 19:04:51 +0000 (19:04 +0000)]
r12948: fix compiler warning
metze
(This used to be commit
157fd2734dfb9b3ac6f6c5ad60bbbd7a50998453)
Andrew Tridgell [Sun, 15 Jan 2006 16:24:55 +0000 (16:24 +0000)]
r12947: added some error checking that I stumbled across while testing domain migration
(This used to be commit
c7951d17b1c4f53dd710d6a0fcf87ce678be3ff1)
Andrew Bartlett [Sun, 15 Jan 2006 09:03:28 +0000 (09:03 +0000)]
r12945: Try to move closer to getting Samba3 import working again.
There still a few things to work out
Andrew Bartlett
(This used to be commit
701558b5fe917555416eb0d100ef756f8ef7cf65)
Andrew Bartlett [Sun, 15 Jan 2006 07:02:34 +0000 (07:02 +0000)]
r12944: Update scripts in setup to match changes in the provision.js
DNS is now done as a seperate step, to assist in migrations.
Andrew Bartlett
(This used to be commit
916607d1d08b6a41c375766a69fd609989e35bed)
Andrew Bartlett [Sun, 15 Jan 2006 06:59:56 +0000 (06:59 +0000)]
r12943: Generate a SID for the domain join account using the modules, rather
than a hardcoded SID.
Fix the samldb module to return the what *was* the nextrid, rather
than the new nextrid (that is for next time).
Andrew Bartlett
(This used to be commit
ffe9042e15cebbc7ff1bac90ec39835753d6caa7)
Simo Sorce [Sun, 15 Jan 2006 06:43:43 +0000 (06:43 +0000)]
r12942: this way is better
(This used to be commit
982576d2489c9ac3f7d854f598a64a8c4d91a485)
Simo Sorce [Sun, 15 Jan 2006 06:12:29 +0000 (06:12 +0000)]
r12941: Add Attribute Scoped Search control
want to see what it does ?
do aq make test and try:
./bin/ldbsearch -H st/private/sam.ldb --controls=asq:1:member -s base -b 'CN=Administrators,CN=Builtin,DC=samba,DC=example,DC=com' 'objectclass=*'
have fun.
simo.
(This used to be commit
900f4fd3435aacc3351f30afb77d3488d2cb4804)
Stefan Metzmacher [Sat, 14 Jan 2006 10:11:04 +0000 (10:11 +0000)]
r12934: do somemore debugging of the received browse packets,
(so I may learn about the protocol, while watching the debug output)
metze
(This used to be commit
40d7033a1472e5f6b7760984b7d2b6b7db2db860)
Stefan Metzmacher [Sat, 14 Jan 2006 10:06:18 +0000 (10:06 +0000)]
r12933: fix parsing of browse packets based on the infos on ubiqx.org/cifs/Browsing.html
metze
(This used to be commit
811683e5561a70c8f97f325a8a786d4aac17a564)
Stefan Metzmacher [Sat, 14 Jan 2006 10:03:18 +0000 (10:03 +0000)]
r12932: export function prototypes
metze
(This used to be commit
8208a4abf0cacb9ee3496611f121c095b5d1bcca)
Andrew Bartlett [Sat, 14 Jan 2006 07:46:04 +0000 (07:46 +0000)]
r12931: Remove some prefixes. We have:
Login failed: Login Failed: Logon failure - please try again
In SWAT currently...
Andrew Bartlett
(This used to be commit
51eded818093320e7d6b9e95ad11fa21a81c3f93)
Andrew Bartlett [Sat, 14 Jan 2006 07:27:01 +0000 (07:27 +0000)]
r12930: Fix ADS join: I wasn't filling in the flag 'realm' variable any more.
Andrew Bartlett
(This used to be commit
5c5a2974c94ae6b929ada7aaa2cd12a15b7468b8)
Andrew Bartlett [Sat, 14 Jan 2006 07:24:15 +0000 (07:24 +0000)]
r12929: Fix more implict global and shadowing variables.
Andrew Bartlett
(This used to be commit
def31956181833db4c8e5079b745ca60fdf35136)
Andrew Bartlett [Sat, 14 Jan 2006 06:17:24 +0000 (06:17 +0000)]
r12928: This patch improves the interaction between the vampire and provsion code.
Previously, we had to know (or guess) the host and domain guid at the
provision stage. Now we query the database post-provision, to extract
the values and fill in the zone file.
This allows us to generate a correct zone file in the Windows migration case.
In an effort to make SWAT easier to use, I have removed and renamed
some of the provision options.
I have also fixed a nasty issue in my js code. I had implictly
declared a global variable of the name 'join', with disasterious
results for any subsequent user of the string utility function:
esp exception - ASSERT at lib/appweb/ejs/ejsParser.c:2064, 0
Backtrace:
[ 0] substitute_var:20 -> list[i] = join("", list2)
[ 1] setup_file:9 -> data = substitute_var(data, subobj)
Andrew Bartlett
(This used to be commit
a38ceefd11f8b748f30383ef36a4752f178bfca1)
Andrew Bartlett [Sat, 14 Jan 2006 01:43:21 +0000 (01:43 +0000)]
r12927: Fix typo.
(This used to be commit
01e98966ca955e86ec46f8bce3892899e2717df9)
Andrew Bartlett [Sat, 14 Jan 2006 01:29:38 +0000 (01:29 +0000)]
r12926: Syncronsise GUIDs on users and domains from the server. These also
appear in DNS, so need to match.
Andrew Bartlett
(This used to be commit
d092b0493d7c61112ef132c8fb259c15f189c5f6)
Simo Sorce [Sat, 14 Jan 2006 01:06:16 +0000 (01:06 +0000)]
r12925: implement client side of ASQ control
(This used to be commit
dd386bdc6ca6fe0b25705d5a375d29e6940b437f)
Andrew Bartlett [Fri, 13 Jan 2006 23:08:20 +0000 (23:08 +0000)]
r12919: Ensure we never 'extend' the session key length, or fill in past the
length of the (possibly null) pointer.
In reality this should come to us either 16 or 0 bytes in length, but
this is the safest test.
This is bug 3401 in Samba3, thanks to Yau Lam Yiu <yiuext at cs.ust.hk>
Andrew Bartlett
(This used to be commit
f3aa702944ed7086d93bf05075f910e7e4617d9c)
Andrew Bartlett [Fri, 13 Jan 2006 22:55:23 +0000 (22:55 +0000)]
r12918: Don't tell the user the difference between 'no such user' and 'wrong
password'.
Andrew Bartlett
(This used to be commit
e13cb0ab175069eb670c8b2f57379ababacfcce3)
Simo Sorce [Fri, 13 Jan 2006 22:48:08 +0000 (22:48 +0000)]
r12917: fix decoding of ldap controls
some more work on timeouts
(This used to be commit
a7e2fe3cb33be2effff7eb764047567f2da3cd55)
Stefan Metzmacher [Fri, 13 Jan 2006 17:32:43 +0000 (17:32 +0000)]
r12911: try to fix bug #3365
metze
(This used to be commit
e70ca698cea901a66f7201c16bb3ba1faa7e7289)
Stefan Metzmacher [Fri, 13 Jan 2006 17:07:28 +0000 (17:07 +0000)]
r12910: fix bug #3069
metze
(This used to be commit
1768a698a461bfb8aeaa8f28efaab4ad300823a2)
Stefan Metzmacher [Fri, 13 Jan 2006 16:58:04 +0000 (16:58 +0000)]
r12909: add an ldb module for the wins.ldb,
it currently doesn't do much, but it's later
prevent adding corrupted records via ldbedit,
and will take care of the versionID counter
metze
(This used to be commit
a6f279bc43c74cf4dc116cb6ba99f1aed13a4de9)
Stefan Metzmacher [Fri, 13 Jan 2006 16:49:00 +0000 (16:49 +0000)]
r12908: use '_' also for indication we want to ask for the localmaster browser,
as '-' make problems with popt
metze
(This used to be commit
d300d56fb724642887c9b43058ef858298846288)
Stefan Metzmacher [Fri, 13 Jan 2006 16:44:32 +0000 (16:44 +0000)]
r12907: skip some tests for make quicktest in NBT-WINSREPLICATION
metze
(This used to be commit
b206c5e87c791ac8f2ecf5b7ef6b2622ad735f54)
Stefan Metzmacher [Fri, 13 Jan 2006 16:27:47 +0000 (16:27 +0000)]
r12906: return the correct nb_flags
metze
(This used to be commit
c52436108d1628feb50c9bf720ae30c4dc469b34)
Simo Sorce [Fri, 13 Jan 2006 15:40:15 +0000 (15:40 +0000)]
r12905: add some ldap policies
not yet enforced except for the initial connection timeout
(This used to be commit
fa1ae9a44b0321b8e458bcb7fd1dcc9475b9bad3)
Andrew Bartlett [Fri, 13 Jan 2006 12:52:56 +0000 (12:52 +0000)]
r12903: Factor out a new routine libnet_RpcConnectDCInfo, to both connect to
the remote sever, and to query it for domain information.
Provide and use this information in the SamSync/Vampire callbacks, to allow a
parallel connection to LDAP, if we are talking to AD. This allows us
to get at some important attributes not exposed in the old protocol.
With this, we are able to do a all-GUI vampire of a AD domain from
SWAT, including getting all the SIDs, servicePrincipalNames and the
like correct.
Andrew Bartlett
(This used to be commit
918358cee0b4a1b2c9bc9e68d9d53428a634281e)
Andrew Bartlett [Fri, 13 Jan 2006 12:48:53 +0000 (12:48 +0000)]
r12902: Fix 'make quicktest'.
Andrew Bartlett
(This used to be commit
c2eca05074ee7af6e3ddffc25dac5a939bdd7e9a)
Stefan Metzmacher [Fri, 13 Jan 2006 10:37:14 +0000 (10:37 +0000)]
r12899: - fix warnings on AIX
- fix compilation of auth/kerberos/krb5_init_context.c on AIX
metze
(This used to be commit
0e1ad08a8515056f4ed0923889bef04d85b84964)
Stefan Metzmacher [Fri, 13 Jan 2006 10:26:47 +0000 (10:26 +0000)]
r12898: prepare the 'wins hook' feature, but we only debug out a 'TODO: run script ...'
metze
(This used to be commit
d28c8ce66db61cff193ac06e8e5d7d6aa5059e9e)
Stefan Metzmacher [Fri, 13 Jan 2006 08:38:11 +0000 (08:38 +0000)]
r12897: make it possible to use nosync transaction to speed things up,
(just for testing)
metze
(This used to be commit
677c1aa4663e9e5f0729a312152565a6740dbab2)
Stefan Metzmacher [Fri, 13 Jan 2006 08:22:21 +0000 (08:22 +0000)]
r12896: IRIX make will fallback to gmake with this,
as normal IRIX make doesn't support shell commands or functions
in $(FOO) variables
metze
(This used to be commit
de7b0b2dc9616c007916cce9d69051f76d4fd559)
Andrew Bartlett [Fri, 13 Jan 2006 04:49:49 +0000 (04:49 +0000)]
r12895: Error strings save lives.
err, they save time at least. The correct use of an error string in
this case quickly pinpoited an overzealous check, and saved me hours
of painful debugging.
Andrew Bartlett
(This used to be commit
26946c90e87a94453a5ad3e9e26ef19b36656237)
Andrew Bartlett [Fri, 13 Jan 2006 04:36:58 +0000 (04:36 +0000)]
r12894: Add more detail to error messages.
Andrew Bartlett
(This used to be commit
31fd39f356c9bc40827b22c0cdb622044d896a85)
Andrew Bartlett [Fri, 13 Jan 2006 04:30:18 +0000 (04:30 +0000)]
r12893: Filling in *error_string is critical for SWAT, as the errors otherwise
do not propogate back to the user, they just end up in the logfile.
Andrew Bartlett
(This used to be commit
7c9f8e524bf7f030c56ed42ee7e3a25563a34db4)
Andrew Bartlett [Fri, 13 Jan 2006 03:39:49 +0000 (03:39 +0000)]
r12892: Add a 'Migrate from Windows' page to our installation section in SWAT.
Doing this required reworking ejsnet, particularly so it could take a
set of credentials, not just a username and password argument.
This required fixing the ejsnet.js test script, which now adds and
deletes a user, and is run from 'make test'. This should prevent it
being broken again.
Deleting a user from ejsnet required that the matching backend be
added to libnet, hooking fortunetly onto already existing code for the
actual deletion.
The js credentials interface now handles the 'set machine account' flag.
New functions have been added to provision.js to wrap the basic
operations (so we can write a command line version, as well as the web
based version).
Andrew Bartlett
(This used to be commit
a5e7c17c348c45e61699cc1626a0d5eae2df4636)
Andrew Bartlett [Fri, 13 Jan 2006 03:34:00 +0000 (03:34 +0000)]
r12891: We no longer manually set the 'name' attribute.
Andrew Bartlett
(This used to be commit
7b169aad3f94f1695b1f99cc91ff928cb2ca0389)
Andrew Bartlett [Fri, 13 Jan 2006 02:59:08 +0000 (02:59 +0000)]
r12887: Add the icon from samba.org to SWAT.
Andrew Bartlett
(This used to be commit
630b4b4dc516fc28c74f815a0c1fb467ec576029)
Andrew Bartlett [Fri, 13 Jan 2006 02:58:35 +0000 (02:58 +0000)]
r12886: Rename 'secure_channel_type' parameter to domain join as 'join_type'.
Andrew Bartlett
(This used to be commit
a3b3e09a9acc66dff7baf1a4ba0ea913bccdbd7d)
Andrew Bartlett [Fri, 13 Jan 2006 02:01:15 +0000 (02:01 +0000)]
r12883: Fix the build...
Andrew Bartlett
(This used to be commit
8f7d14048fe29fd2c8b3e3c7aa73b4a854615016)
Andrew Bartlett [Fri, 13 Jan 2006 00:55:30 +0000 (00:55 +0000)]
r12882: Allow the netbios name to be specified at all times.
Andrew Bartlett
(This used to be commit
f4f4dcf217314980aa114d61a1546d2c18b55baa)
Andrew Bartlett [Fri, 13 Jan 2006 00:54:53 +0000 (00:54 +0000)]
r12881: Hard-coded defaults are silly. We have smb.conf for a reason.
Andrew Bartlett
(This used to be commit
c9402f9227a02ff0ee77f264f79ef47207ad50ef)
Simo Sorce [Fri, 13 Jan 2006 00:38:35 +0000 (00:38 +0000)]
r12880: Remove ldap partitions useless now and probably we
will not use it anyway as we plan to support
partitions in ldb directly like with rootdse
Merge ldap_simple_ldb into ldap_backend, it is
not simple anymore and makes no sense to have
it separated now that ldap partitions are gone
Initial attempt at working to some limit to avoid DOSs
for the ldap server.
Simo.
(This used to be commit
97bff3e049eba48019f2b0f3eb5a19e32fef2e23)
Andrew Bartlett [Thu, 12 Jan 2006 21:51:02 +0000 (21:51 +0000)]
r12874: Try to give the startup a few more seconds, so that hosts with
gnutls-devel installed do not miss the first test.
Andrew Bartlett
(This used to be commit
6e17864c5d2ffc6b4e532e693426574fc57741bf)
Andrew Bartlett [Thu, 12 Jan 2006 21:42:59 +0000 (21:42 +0000)]
r12873: Fix valgrind-found uninitialised value.
Andrew Bartlett
(This used to be commit
38e8a6477a112faa78e0791d20ce9bd2e68fd619)
Andrew Bartlett [Thu, 12 Jan 2006 21:42:26 +0000 (21:42 +0000)]
r12872: Add some more detail to debug message.
Andrew Bartlett
(This used to be commit
cefba10bd5ed1f6d10a071e4239088d91f661a36)
Andrew Bartlett [Thu, 12 Jan 2006 11:36:16 +0000 (11:36 +0000)]
r12869: I have removed this hack. We now just do the lookups (netbios for now).
Andrew Bartlett
(This used to be commit
18eb3ca7cc1a728b7cc5d7102ca765c323f1a6fe)
Andrew Bartlett [Thu, 12 Jan 2006 09:56:15 +0000 (09:56 +0000)]
r12868: Remove unused code. This has moved to libcli/finddcs.c.
Andrew Bartlett
(This used to be commit
a30a359c45c3dac4b910ec130b73cc01324b399a)
Andrew Bartlett [Thu, 12 Jan 2006 09:54:48 +0000 (09:54 +0000)]
r12867: Remove deleted header.
(This used to be commit
a6833db4e6ab8046c8e7f808dfff90bb0529d2d7)
Andrew Bartlett [Thu, 12 Jan 2006 09:38:35 +0000 (09:38 +0000)]
r12866: This removes the abstraction layer in winbindd intended to deal with
multiple protocols, replacing it with the packet handling subsystem.
We don't have multiple protocols at present, and the abstraction layer
only serves to confuse matters. Also, the new packet subsystem removes
the need to handle partial reads.
We can easily add new protocols from the socket up instead, becaue the
difficult bits are done by the packet layer.
Andrew Bartlett
(This used to be commit
acf9dc8fe9e66f1dd3f18c0245375f502f03a24c)
Andrew Bartlett [Thu, 12 Jan 2006 09:33:49 +0000 (09:33 +0000)]
r12865: Upgrade the librpc and libnet code.
In librpc, always try SMB level authentication, even if trying
schannel, but allow fallback to anonymous. This should better
function with servers that set restrict anonymous.
There are too many parts of Samba that get, parse and modify the
binding parameters. Avoid the extra work, and add a binding element
to the struct dcerpc_pipe
The libnet vampire code has been refactored, to reduce extra layers
and to better conform with the standard argument pattern. Also, take
advantage of the new libnet_Lookup code, so we don't require the silly
'password server' smb.conf parameter.
To better support forcing traffic to be sealed for the vampire
operation, the dcerpc_bind_auth() function now takes an auth level
parameter.
Andrew Bartlett
(This used to be commit
d65b354959842326fdd4bd7eb7fbeea0390f4afa)
Andrew Bartlett [Thu, 12 Jan 2006 08:47:21 +0000 (08:47 +0000)]
r12864: Fix valgrind errors in NET-API-LOOKUP* tests.
Andrew Bartlett
(This used to be commit
21f87f87a9b79da4463bddc993df502beae50a16)
Andrew Bartlett [Thu, 12 Jan 2006 07:13:36 +0000 (07:13 +0000)]
r12863: As lha suggested to me a while back, it appears that the
gsskrb5_get_initiator_subkey() routine is bougs. We can indeed use
gss_krb5_get_subkey().
This is fortunate, as there was a segfault bug in 'initiator' version.
Andrew Bartlett
(This used to be commit
ec11870ca1f9231dd3eeae792fc3268b31477e11)
Andrew Bartlett [Thu, 12 Jan 2006 06:44:28 +0000 (06:44 +0000)]
r12862: Need to trim spaces off the end of the node status reply.
Andrew Bartlett
(This used to be commit
3e90e7edfa7d343a6b6bf073b8f4d018e3b463d0)
Andrew Bartlett [Thu, 12 Jan 2006 03:30:20 +0000 (03:30 +0000)]
r12861: Cope when we are not supplied the messaging context. This is just
another case where we have to fallback to the node status request.
Andrew Bartlett
(This used to be commit
181064dbcf102de80937fc30b3d3ba5114194a72)
Andrew Bartlett [Thu, 12 Jan 2006 03:07:04 +0000 (03:07 +0000)]
r12860: Remove unused function. (we handle this in the password_hash module).
Andrew Bartlett
(This used to be commit
daa4b76800024c1494eeda675c46af3790fac788)
Andrew Bartlett [Thu, 12 Jan 2006 03:06:14 +0000 (03:06 +0000)]
r12859: Make Samba4 match the Samba3 winbindd interface. trunk has moved too
far at this point, and there is no point being in between.
Andrew Bartlett
(This used to be commit
10fb19add65ba534ea7cf3357b02d642e94fe535)
Andrew Bartlett [Thu, 12 Jan 2006 03:02:00 +0000 (03:02 +0000)]
r12858: This moves the libnet_LookupPdc code to use a GetDC request to find
the remote server's name, or in the absence of a local nbt_server to
communicate with (or without root access), a node status request.
The result is that we are in a better position to use kerberos, as well
as to remove the 'password server' mandatory parameter for the samsync
and samdump commands. (I need this to put these into SWAT).
The only problem I have is that I must create a messaging context, which
requires a server ID. As a client process, I don't expect to get
messages, but it is currently required for replies, so I generate a
random() number. We probably need the servers to accept connections on
streamed sockets too, for client-only tasks that want IRPC.
Because I wanted to test this code, I have put the NET-API-* tests into
our test scripts, to ensure they pass and keep passing. They are good
frontends onto the libnet system, and I see no reason not to test them.
In doing so the NET-API-RPCCONNECT test was simplified to take a
binding string on the command line, removing duplicate code, and
testing the combinations in the scripts instead.
(I have done a bit of work on the list shares code in libnet_share.c
to make it pass 'make test')
In the future, I would like to extend the libcli/findds.c code (based
off volker's winbind/wb_async_helpers.c, which is why it shows up a bit
odd in the patch) to handle getting multiple name replies, sending a
getdc request to each in turn.
(posted to samba-technical for review, and I'll happily update with
any comments)
Andrew Bartlett
(This used to be commit
7ccddfd3515fc2c0d6f447c768ccbf7a220c3380)
Stefan Metzmacher [Wed, 11 Jan 2006 20:38:10 +0000 (20:38 +0000)]
r12856: make the logic much more sane
metze
(This used to be commit
ed4a3e53fd71679fbdfc2f2932c1098e03026285)
Jelmer Vernooij [Wed, 11 Jan 2006 18:14:55 +0000 (18:14 +0000)]
r12851: Fix some typos
(This used to be commit
61ae77beecd573809d917dd86d1fac6cc40e967d)
Stefan Metzmacher [Wed, 11 Jan 2006 16:31:57 +0000 (16:31 +0000)]
r12850: - add Doxygen comments to ldb
- 'make doxygen' generated the api documentation under apidocs/
Many thanks to Brad Hards <bradh@frogmouth.net> for the patches!
metze
(This used to be commit
e98d483174c555366e62dd27600e6b242cab7a7f)
Stefan Metzmacher [Wed, 11 Jan 2006 16:29:02 +0000 (16:29 +0000)]
r12849: fix typo
metze
(This used to be commit
552e12c05d10ddad55bfc0997303096055ddecdd)
Stefan Metzmacher [Wed, 11 Jan 2006 16:20:16 +0000 (16:20 +0000)]
r12847: add some ldb examples from Brad Hards (bradh@frogmouth.net)
metze
(This used to be commit
4d32d50ccd8bd0bfb3e2d6f5aee23bce38abbc03)
Stefan Metzmacher [Wed, 11 Jan 2006 16:04:28 +0000 (16:04 +0000)]
r12846: some fixes
metze
(This used to be commit
bf6065b11fd84454f8bc881ff96fb1846a59405b)
Stefan Metzmacher [Wed, 11 Jan 2006 16:00:27 +0000 (16:00 +0000)]
r12845: fix some typos
metze
(This used to be commit
5d0ae1d2aef3fc7ddb4cb9269bb028beeaee6dfb)
Stefan Metzmacher [Wed, 11 Jan 2006 15:07:14 +0000 (15:07 +0000)]
r12844: don't include system headers directly
metze
(This used to be commit
75a98047d6829cadf4b9082bec2733055dad3465)
Stefan Metzmacher [Wed, 11 Jan 2006 15:03:20 +0000 (15:03 +0000)]
r12843: get special objects with ldbsearch -a too, to match ldbedit -a
metze
(This used to be commit
bb68f2e602dbcc94c05b2dd764c163be1e5a583d)