Stefan Metzmacher [Thu, 30 Jul 2009 06:29:28 +0000 (08:29 +0200)]
util/asn1: fix potential memory leak in asn1_write_OID()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 08:38:04 +0000 (10:38 +0200)]
s4:auth: make sure we have elements returned at all in authsam_expand_nested_groups()
metze
Matthias Dieter Wallnöfer [Fri, 17 Jul 2009 01:28:58 +0000 (18:28 -0700)]
s4: Patch to implement nested group and privileges
This patch adds a function "authsam_expand_nested_groups" (calculation of rights
through expanding groups of a certain SID) which basically collects all
memberships through "memberOf" attributes. It works with either user or group SIDs.
For avoiding loops it tests on each call if the SID hasn't been added yet (through
the helper function "sids_contains_sid").
The function itself is called by "authsam_make_server_info".
Rusty Russell [Thu, 30 Jul 2009 02:22:39 +0000 (11:52 +0930)]
tdb: don't alter tdb->flags in tdb_reopen_all()
The flags are user-visible, via tdb_get_flags/add_flags/remove_flags.
Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Rusty Russell [Thu, 30 Jul 2009 02:22:08 +0000 (11:52 +0930)]
tdb: Reimplementation of Metze's "lib/tdb: if we know pwrite and pread are thread/fork safe tdb_reopen_all() should be a noop".
This version just wraps the reopen code, so we still re-grab the lock and do
the normal sanity checks.
The reason we do this at all is to avoid global fd limits, see:
http://forums.fedoraforum.org/showthread.php?t=210393
Note also that this whole reopen concept is fundamentally racy: if the parent
goes away before the child calls tdb_reopen_all, the database can be left
without an active lock and another TDB_CLEAR_IF_FIRST opener will clear it.
A fork_with_tdbs() wrapper could use a pipe to solve this, but it's hardly
elegant (what if there are other independent things which have similar needs?).
Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Rusty Russell [Thu, 30 Jul 2009 02:21:28 +0000 (11:51 +0930)]
tdb: Revert "lib/tdb: if we know pwrite and pread are thread/fork safe tdb_reopen_all() should be a noop"
This reverts commit
e17df483fbedb81aededdef5fbb6ae1d034bc2dd.
tdb_reopen_all also restores the active lock, required for TDB_CLEAR_IF_FIRST.
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Stefan Metzmacher [Thu, 30 Jul 2009 06:36:03 +0000 (08:36 +0200)]
.gitignore: ignore more generated files
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:27:54 +0000 (09:27 +0200)]
winsif.idl: add definition of winsif_WinsDoScanvengingNew()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:27:39 +0000 (09:27 +0200)]
winsif.idl: add definition of winsif_WinsStatusWHdl()
metze
Stefan Metzmacher [Wed, 29 Jul 2009 13:39:14 +0000 (15:39 +0200)]
winsif.idl: add definition of winsif_WinsStatusNew()
metze
Stefan Metzmacher [Tue, 28 Jul 2009 15:12:05 +0000 (17:12 +0200)]
winsif.idl: add definition of winsif_WinsGetDbRecsByName()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:26:30 +0000 (09:26 +0200)]
winsif.idl: add definition of winsif_WinsGetBrowserNames()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:26:03 +0000 (09:26 +0200)]
winsif.idl: add definition of winsif_WinsSetFlags()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:25:45 +0000 (09:25 +0200)]
winsif.idl: add definition of winsif_WinsDeleteWins()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:25:28 +0000 (09:25 +0200)]
winsif.idl: add definition of winsif_WinsGetBrowserNames_Old()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:25:10 +0000 (09:25 +0200)]
winsif.idl: add definition of winsif_WinsGetNameAndAdd()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:24:53 +0000 (09:24 +0200)]
winsif.idl: add definition of winsif_WinsWorkerThreadUpdate()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:24:23 +0000 (09:24 +0200)]
winsif.idl: add definition of winsif_WinsResetCounters()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:24:02 +0000 (09:24 +0200)]
winsif.idl: add definition of winsif_WinsSetPriorityClass()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:23:46 +0000 (09:23 +0200)]
winsif.idl: add definition of winsif_WinsPullRange()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:23:25 +0000 (09:23 +0200)]
winsif.idl: add definition of winsif_WinsDelDbRecs()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:23:06 +0000 (09:23 +0200)]
winsif.idl: add definition of winsif_WinsBackup()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:22:48 +0000 (09:22 +0200)]
winsif.idl: add definition of winsif_WinsTerm()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:22:18 +0000 (09:22 +0200)]
winsif.idl: add definition of winsif_WinsGetDbRecs()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:21:38 +0000 (09:21 +0200)]
winsif.idl: add definition of winsif_WinsDoScavenging()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 07:20:52 +0000 (09:20 +0200)]
winsif.idl: add definition of winsif_WinsDoStaticInit()
metze
Stefan Metzmacher [Wed, 29 Jul 2009 13:44:06 +0000 (15:44 +0200)]
winsif.idl: add definition of winsif_WinsTrigger()
metze
Stefan Metzmacher [Wed, 29 Jul 2009 13:38:01 +0000 (15:38 +0200)]
winsif.idl: add definition of winsif_WinsStatus()
metze
Stefan Metzmacher [Wed, 29 Jul 2009 13:35:45 +0000 (15:35 +0200)]
winsif.idl: add definition of WinsRecordAction()
metze
Stefan Metzmacher [Tue, 28 Jul 2009 12:04:50 +0000 (14:04 +0200)]
winsif.idl: add missing function calls
metze
Stefan Metzmacher [Tue, 28 Jul 2009 12:07:59 +0000 (14:07 +0200)]
s4:librpc: rename wins.idl => winsif.idl
metze
Stefan Metzmacher [Thu, 30 Jul 2009 16:56:42 +0000 (18:56 +0200)]
librpc: rerun "make idl"
metze
Stefan Metzmacher [Thu, 30 Jul 2009 14:05:52 +0000 (16:05 +0200)]
pidl:Samba3/ClientNDR: add support tevent_req based _send/recv() client functions
metze
Stefan Metzmacher [Thu, 30 Jul 2009 13:29:02 +0000 (15:29 +0200)]
pidl:Samba3/ClientNDR: rename ParseFunction => ParseFunctionSync and add ParseFunction as glue
This prepares the following ParseFunctionAsync* commits.
metze
Stefan Metzmacher [Thu, 30 Jul 2009 13:14:25 +0000 (15:14 +0200)]
pidl:Samba3/ClientNDR: allow passing optional variable prefixes to ParseOutputArgument()
metze
Stefan Metzmacher [Fri, 31 Jul 2009 06:58:36 +0000 (08:58 +0200)]
pidl/Samba4.pm: allow an optional prefix passed to DeclLong()
metze
Stefan Metzmacher [Thu, 30 Jul 2009 12:31:55 +0000 (14:31 +0200)]
s3:rpc_client: add dispatch_send/recv() to struct rpc_pipe_client
metze
Yannick Bergeron [Thu, 30 Jul 2009 23:31:24 +0000 (19:31 -0400)]
Increase the max_grp value to 128 (AIX NGROUPS_MAX value) instead of 32 to allow AIX to call sys_getgrouplist only once
Stefan Metzmacher [Fri, 31 Jul 2009 08:14:09 +0000 (10:14 +0200)]
pidl:Samba4/Python: fix mapType() => mapTypeName()
This tries to fix commit
8eff9f9a3167eb0c2a4c00edf5a4cdbbc06c4dfd.
The problem was:
Undefined subroutine &Parse::Pidl::Samba4::Python::mapType called at /home/metze/master4/pidl/lib/Parse/Pidl/Samba4/Python.pm line 848.
Jelmer: please check this.
metze
Jeremy Allison [Thu, 30 Jul 2009 21:27:32 +0000 (14:27 -0700)]
Tidy up treatment of ctime.
Jeremy.
Jeremy Allison [Thu, 30 Jul 2009 20:19:26 +0000 (13:19 -0700)]
Fix bug #6529 - Offline files conflict with Vista and Office 2003.
We need to send a notify message when a timestamp is changed that
can't be reflected in the underlying POSIX filesystem.
Jeremy.
Jeremy Allison [Thu, 30 Jul 2009 20:16:40 +0000 (13:16 -0700)]
Remove the extraneous logic in smb_set_info_standard - we
do the time twiddling logic at the smb_set_file_time level.
Jeremy.
Jeremy Allison [Thu, 30 Jul 2009 20:13:23 +0000 (13:13 -0700)]
SMB_INFO_STANDARD is not a valid info level on set,
and was being read incorrectly anyway. Remove.
Jeremy.
Rusty Russell [Thu, 30 Jul 2009 20:10:33 +0000 (13:10 -0700)]
realloc() has that horrible overloaded free semantic when size is 0:
current code does a free of the old record in this case, then fail.
Rusty Russell [Thu, 30 Jul 2009 20:09:33 +0000 (13:09 -0700)]
If the record is at the end of the database, pretending it has length 1
might take us out-of-bounds. Only pretend to be length 1 for the malloc.
Jelmer Vernooij [Thu, 30 Jul 2009 18:28:29 +0000 (20:28 +0200)]
python: Cope with the dom_sid2 alias in pidl's python generating code.
This fixes some problems in the samr Python bindings that pidl was
(correctly) warning about.
Jelmer Vernooij [Thu, 30 Jul 2009 18:04:42 +0000 (20:04 +0200)]
DCE/RPC(Python): Rename py_talloc_import to py_talloc_steal.
Use py_talloc_reference in DCE/RPC code, fixes
access to SAMR pipe.
Jelmer Vernooij [Thu, 30 Jul 2009 10:29:21 +0000 (12:29 +0200)]
Remove RFC's from the release tarballs to make the lives of the Debian
maintainers of Samba4 a bit easier.
Kai Blin [Thu, 30 Jul 2009 10:18:36 +0000 (12:18 +0200)]
s3 po: Regenerate msg files.
Kai Blin [Thu, 30 Jul 2009 10:17:46 +0000 (12:17 +0200)]
s3 net: i18n support for net lua
Kai Blin [Thu, 30 Jul 2009 10:10:56 +0000 (12:10 +0200)]
s3 net: i18n support for net lookup
Kai Blin [Thu, 30 Jul 2009 10:07:31 +0000 (12:07 +0200)]
s3 net: i18n for net join
Kai Blin [Thu, 30 Jul 2009 10:04:53 +0000 (12:04 +0200)]
s3 net: i18n support for net idmap
Kai Blin [Thu, 30 Jul 2009 09:53:59 +0000 (11:53 +0200)]
s3 po: Make adding translated files less tedious
Kai Blin [Thu, 30 Jul 2009 09:30:33 +0000 (11:30 +0200)]
s3 net: i18n support for net help
Kai Blin [Thu, 30 Jul 2009 09:25:37 +0000 (11:25 +0200)]
s3 net: Remove uid==0 check from net groupmap
Kai Blin [Thu, 30 Jul 2009 09:16:32 +0000 (11:16 +0200)]
s3 net: i18n support for net group and net groupmap
Kai Blin [Thu, 30 Jul 2009 07:35:42 +0000 (09:35 +0200)]
s3 net: i18n support for net file
Kai Blin [Thu, 30 Jul 2009 07:14:45 +0000 (09:14 +0200)]
s3 net: i18n for net eventlog
Kai Blin [Thu, 30 Jul 2009 07:10:03 +0000 (09:10 +0200)]
s3 net: i18n support for net dom
Kai Blin [Thu, 30 Jul 2009 07:00:31 +0000 (09:00 +0200)]
s3 net: i18n support for net conf
Kai Blin [Wed, 29 Jul 2009 22:00:09 +0000 (00:00 +0200)]
s3 po: Update msg files
Kai Blin [Wed, 29 Jul 2009 21:59:39 +0000 (23:59 +0200)]
s3 net: i18n support for net cache
Kai Blin [Wed, 29 Jul 2009 21:50:11 +0000 (23:50 +0200)]
s3 net: Correct path for net_ads_gpo.c
Kai Blin [Wed, 29 Jul 2009 21:45:41 +0000 (23:45 +0200)]
s3 net: i18n for net ads gpo
Kai Blin [Wed, 29 Jul 2009 21:29:31 +0000 (23:29 +0200)]
s3: Update i18n files
Kai Blin [Wed, 29 Jul 2009 21:28:01 +0000 (23:28 +0200)]
s3 net: i18n support for net ads
Kai Blin [Wed, 29 Jul 2009 18:07:47 +0000 (20:07 +0200)]
s3 net: Initial top level support.
Tim Prouty [Wed, 29 Jul 2009 17:12:11 +0000 (10:12 -0700)]
s3: Attempt to fix hpuxacl module
Michael Adam [Wed, 29 Jul 2009 13:21:49 +0000 (15:21 +0200)]
s3:passdb: use transaction_wrapped write in tdbsam_new_rid()
Now all tdb writes in passdb use transactions.
Michael
Michael Adam [Wed, 29 Jul 2009 13:15:54 +0000 (15:15 +0200)]
s3:secrets: use transaction wrapped store in get rand seed.
Now secrets.tdb is only writen with transactions.
Michael
Michael Adam [Wed, 29 Jul 2009 13:14:57 +0000 (15:14 +0200)]
s3:dbwrap: add dbwrap_trans_change_int32_atomic()
A transaction wrapper for dbwrap_change_int32_atomic().
Michael
Michael Adam [Wed, 29 Jul 2009 13:12:39 +0000 (15:12 +0200)]
s3:dbwrap: export logic of dbwrap_change_int32_atomic into an action function
to prepare for adding a transaction wrapper to dbwrap_change_int32_atomic()
Michael
Michael Adam [Wed, 29 Jul 2009 13:08:06 +0000 (15:08 +0200)]
s3:dbwrap: change dbwrap_change_int32_atomic() to take int32_t, not int32
Michael
Michael Adam [Wed, 29 Jul 2009 12:56:32 +0000 (14:56 +0200)]
s3:winbind: use transaction store in idmap_tdb_set_hwm() to store new hwm.
Btw, the previous code must have failed to warn when exceeding the high_hwm,
because it overwrote hwm with the return value of the dbwrap_store_uint32(),
which does not return the hwm but 0 or -1, depending on success.
Michael
Michael Adam [Wed, 29 Jul 2009 12:45:31 +0000 (14:45 +0200)]
s3:winbind: fix typo in debug message in idmap_tdb.
Michael
Michael Adam [Wed, 29 Jul 2009 12:43:14 +0000 (14:43 +0200)]
s3:winbind: fix typo in debugmessage of idmap_tdb
Michael
Michael Adam [Wed, 29 Jul 2009 12:39:30 +0000 (14:39 +0200)]
s3:winbind: use transaction in idmap_tdb2_allocate_id_action().
This uses the new dbwrap_trans_change_uint32_atomic()
instead of dbwrap_change_uint32_atomic().
Now all db write operations in idmap_tdb2.c are using
transactions.
Michael
Michael Adam [Wed, 29 Jul 2009 12:37:39 +0000 (14:37 +0200)]
s3:dbwrap: add dbwrap_trans_change_uint32_atomic()
A transaction wrapper for dbwrap_change_uint32_atomic().
Michael
Michael Adam [Wed, 29 Jul 2009 12:32:31 +0000 (14:32 +0200)]
s3:dbwrap: export logic of dbwrap_change_uint32_atomic into an action function
to prepare for adding a transaction wrapper to dbwrap_change_uint32_atomic()
Michael
Michael Adam [Wed, 29 Jul 2009 12:26:26 +0000 (14:26 +0200)]
s3:dbwrap: untangle assignment and check in dbwrap_change_int32_atomic()
Michael
Michael Adam [Wed, 29 Jul 2009 12:25:29 +0000 (14:25 +0200)]
s3:dbwrap: untangle assignemend and check in dbwrap_change_uint32_atomic()
Michael
Michael Adam [Wed, 29 Jul 2009 12:23:26 +0000 (14:23 +0200)]
s3:dbwrap: don't leak in dbwrap_change_int32_atomic().
Michael
Michael Adam [Wed, 29 Jul 2009 12:22:37 +0000 (14:22 +0200)]
s3:dbwrap: don't leak in dbwrap_change_uint32_atomic()
Michael
Michael Adam [Wed, 29 Jul 2009 12:21:03 +0000 (14:21 +0200)]
s3:dbwrap: change dbwrap_change_int32_atomic() to return NTSTATUS not int32.
Michael
Michael Adam [Wed, 29 Jul 2009 12:16:11 +0000 (14:16 +0200)]
s3:dbwrap: change dbwrap_change_uint32_atomic() to return NTSTATUS not uint32_t.
Michael
Michael Adam [Wed, 29 Jul 2009 11:43:29 +0000 (13:43 +0200)]
s3:winbind: in idmap_tdb2_sid_to_id(), use transaction wrapped stores.
When a mapping is not found, then the idmap script is called (if defined).
When this gives a reply for the desired sid, this reply is stored in the db.
This patch wraps theses two store operations into a transaction by re-using
the idmap_tdb2_set_mapping_action() function previously defined
for idmap_tdb2_set_mapping().
Michael
Michael Adam [Wed, 29 Jul 2009 11:36:18 +0000 (13:36 +0200)]
s3:winbind: in idmap_tdb2_id_to_sid(), use transaction wrapped stores.
When a mapping is not found, then the idmap script is called (if defined).
When this gives a reply for the desired id, this reply is stored in the db.
This patch wraps theses two store operations into a transaction by re-using
the idmap_tdb2_set_mapping_action() function previously defined
for idmap_tdb2_set_mapping().
Michael
Michael Adam [Tue, 28 Jul 2009 14:53:37 +0000 (16:53 +0200)]
s3:winbind: use transaction wrapper in idmap_tdb2_allocate_id()
Michael
Michael Adam [Tue, 28 Jul 2009 11:31:09 +0000 (13:31 +0200)]
s3:winbind: use transaction wrapper in idmap_tdb2_set_mapping()
Michael
Volker Lendecke [Tue, 30 Jun 2009 12:26:32 +0000 (14:26 +0200)]
shadow_copy2: The system getrealfilename() can't deal with a 0-length fname
This fixes viewing the content of snapshots in the share root directory. We
have to treat the filename that *just* consists of "@GMT-YYYY.MM.DD-HH.MM.SS"
like the share root, which is the current working directory.
Volker Lendecke [Wed, 29 Jul 2009 08:30:52 +0000 (04:30 -0400)]
Fix unqualified "net join"
Kai, please check!
Thanks,
Volker
Jeremy Allison [Wed, 29 Jul 2009 01:02:10 +0000 (18:02 -0700)]
(Hopefully) fix the problem Kai reported with
net ads leave and IPv6. Ensure all DC lookups
prefer IPv4.
Jeremy.
Andrew Bartlett [Tue, 28 Jul 2009 23:29:50 +0000 (09:29 +1000)]
s4:samba3sam Remove extra newlines that broke samba3sam test
The python ldif parser was changed to be stricter (perhaps too
strict), and the extra newlines broke it.
The problem was masked earlier because errors parsing the LDIF were
considered to be 'end of file', and so no error was raised.
Andrew Bartlett
Andrew Bartlett [Tue, 28 Jul 2009 23:07:49 +0000 (09:07 +1000)]
s4:provision We no longer add krbtgt or kpasswd account into secrets.ldb
Volker Lendecke [Tue, 28 Jul 2009 21:17:07 +0000 (17:17 -0400)]
Remove a duplicate prototype
Jeremy Allison [Tue, 28 Jul 2009 18:51:58 +0000 (11:51 -0700)]
Added prefer_ipv4 bool parameter to resolve_name().
W2K3 DC's can have IPv6 addresses but won't serve
krb5/ldap or cldap on those addresses. Make sure when
we're asking for DC's we prefer IPv4.
If you have an IPv6-only network this prioritizing code
will be a no-op. And if you have a mixed network then you
need to prioritize IPv4 due to W2K3 DC's.
Jeremy.
Karolin Seeger [Tue, 28 Jul 2009 11:22:35 +0000 (13:22 +0200)]
release-scripts: Remove RFCs in source4/.
Remove RFCs as they are non-free content (with a strict interpretation of
the DFSG). Addresse Debian bug #538034.
Karolin
Ronnie Sahlberg [Tue, 28 Jul 2009 08:24:27 +0000 (18:24 +1000)]
pidl: import a patch to pidl made in the wireshark reporitory.
Original commit message in wireshark SVN (rev 28961):
====
From Kovarththanan Rajaratnam:
More "Cleanup header_field_info definitions"
====
Signed-off-by: Ronnie Sahlberg <ronniesahlberg@gmail.com>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Stefan Metzmacher [Tue, 28 Jul 2009 06:17:25 +0000 (08:17 +0200)]
s4:gensec/spnego: only generate the mechListMic when the server expects it
This fixes the ntvfs.cifs tests.
metze