14 years agor655: Fix if() logic
Jelmer Vernooij [Wed, 12 May 2004 16:13:32 +0000 (16:13 +0000)]
r655: Fix if() logic
(This used to be commit 09096cfc3e1b35b4ac944cf84bfdec6ee44e06bf)

14 years agor649: return unknown interface when the client not yet
Stefan Metzmacher [Tue, 11 May 2004 15:39:23 +0000 (15:39 +0000)]
r649: return unknown interface when the client not yet
binds succesful to an interface

(This used to be commit c39e450702cfa2b577c64e14ba1428fd95db7ade)

14 years agor644: add SPNEGO auth type
Stefan Metzmacher [Tue, 11 May 2004 00:43:46 +0000 (00:43 +0000)]
r644: add SPNEGO auth type

(This used to be commit 75bca5dcfa68de0d18a144a221260d2f728e0bfc)

14 years agor641: readd 'use dump;'
Stefan Metzmacher [Mon, 10 May 2004 23:23:43 +0000 (23:23 +0000)]
r641: readd 'use dump;'

(This used to be commit 8e2c08f8c7f9481d64b87e7d45e98bc48661efbb)

14 years agor638: remove unused dependency to Data::Dumper and dump
Stefan Metzmacher [Mon, 10 May 2004 22:46:48 +0000 (22:46 +0000)]
r638: remove unused dependency to Data::Dumper and dump
(fix some  build farm hosts)

(This used to be commit 8735a393c19711cc0f0cf392684d523b1abd2878)

14 years agor627: remove the precompiled header when we call make clean or make proto
Stefan Metzmacher [Mon, 10 May 2004 12:38:08 +0000 (12:38 +0000)]
r627: remove the precompiled header when we call make clean or make proto

(This used to be commit e37238a7c7c69e3dfcda319752e13131207d59e4)

14 years agor626: make the code a bit more readable
Stefan Metzmacher [Mon, 10 May 2004 12:37:06 +0000 (12:37 +0000)]
r626: make the code a bit more readable

(This used to be commit 81b94718e4145a53947d401c4b4b88b71c71e4a4)

14 years agor625: - handle passwords longer than length 14 (thanks to abartlet for pointing...
Andrew Tridgell [Mon, 10 May 2004 12:05:54 +0000 (12:05 +0000)]
r625:  - handle passwords longer than length 14 (thanks to abartlet for pointing out the bug)

 - delete unicodePwd if not storing a plaintext password
(This used to be commit 6c3f22a685c55f183f4e0e4303e3d9990f4b39b5)

14 years agor624: all templates should be in class Template
Andrew Tridgell [Mon, 10 May 2004 12:03:38 +0000 (12:03 +0000)]
r624: all templates should be in class Template
(This used to be commit 0431d309037e97456895095f8e0a44b71de1454e)

14 years agor623: setUserInfo level 24 (password set) now works in the SAMR server. This includes all
Andrew Tridgell [Mon, 10 May 2004 11:23:50 +0000 (11:23 +0000)]
r623: setUserInfo level 24 (password set) now works in the SAMR server. This includes all
of the password complexity, password history and other password restrictions.
(This used to be commit cb070b9084d95cf5178edbef951b75eab62b7220)

14 years agor622: removed some unused functions to make smbd compile again after
Andrew Tridgell [Mon, 10 May 2004 08:58:42 +0000 (08:58 +0000)]
r622: removed some unused functions to make smbd compile again after
andrew's recent chainsaw job :)
(This used to be commit 20166f4e19a599a85dfff045a738309d191db9e7)

14 years agor620: Remove more ununsed code.
Andrew Bartlett [Sun, 9 May 2004 23:05:37 +0000 (23:05 +0000)]
r620: Remove more ununsed code.

Andrew Bartlett
(This used to be commit 795ace17a8905f495e9e191ffbd559927894941b)

14 years agor619: Remove more code that is no longer called.
Andrew Bartlett [Sun, 9 May 2004 22:50:31 +0000 (22:50 +0000)]
r619: Remove more code that is no longer called.

Andrew Bartlett
(This used to be commit 4e614cbe922ddc591b17b2357e17eff8ce1d546c)

14 years agor617: Sync some minor updates with repository:
Tim Potter [Sun, 9 May 2004 22:35:00 +0000 (22:35 +0000)]
r617: Sync some minor updates with repository:

  - start handing idl string types
  - comments
  - generate field types
  - code to select field types and bases
(This used to be commit 3d4148c07c46d5d99bd91e1985540cc4e59db2bc)

14 years agor615: Implement samr_OpenGroup, samr_QueryGroupInfo, samr_SetGroupInfo,
Volker Lendecke [Sun, 9 May 2004 15:39:12 +0000 (15:39 +0000)]
r615: Implement samr_OpenGroup, samr_QueryGroupInfo, samr_SetGroupInfo,

I've added the hidden attribute numMembers that must be maintained by
Add/DelGroupMember for the GroupInfoAll query.

(This used to be commit 945d7478605c1bd67e4162ebb0635ab7da11faaf)

14 years agor614: Clean out the POSIX assumptions from the Samba4 auth subsystem.
Andrew Bartlett [Sun, 9 May 2004 13:42:02 +0000 (13:42 +0000)]
r614: Clean out the POSIX assumptions from the Samba4 auth subsystem.

This removes the code that tried to lookup posix groups, as well as
the code that was tied to the SAM_ACCOUNT.

This should make auth_ldb much easier to write :-)

Andrew Bartlett
(This used to be commit e096ee2112adecaa69b6b3eb155a4e8f80dfc0f7)

14 years agor613: Fix the RPC-SAMR torture test, for my session_key changes.
Andrew Bartlett [Sun, 9 May 2004 13:37:17 +0000 (13:37 +0000)]
r613: Fix the RPC-SAMR torture test, for my session_key changes.

Andrew Bartlett
(This used to be commit a04b074c049db832f4c02a35d951d40875fce6d1)

14 years agor612: fixed a timezone call typo noticed by abartlet
Andrew Tridgell [Sun, 9 May 2004 13:26:34 +0000 (13:26 +0000)]
r612: fixed a timezone call typo noticed by abartlet
(This used to be commit 329c5ccd74680381b30c4a2235010c766ac46ecc)

14 years agor611: Fix breakage from my last commit:
Andrew Bartlett [Sun, 9 May 2004 13:07:23 +0000 (13:07 +0000)]
r611: Fix breakage from my last commit:

Now that all session keys are DATA_BLOBs, fix the callers.

This assumes some things about the behaviour of certain crypto
algorithms, without the ability to test it on session keys != 16 bytes
in length.  We will just need to retest when we get the KRB5 support
in (DES keys are 8 bytes).

Andrew Bartlett
(This used to be commit e4355a7ec1eba92bdecef8cc478272897276dbae)

14 years agor610: - Merge the Samba3 'ntlm_auth --diagnostics' testsuite to Samba4.
Andrew Bartlett [Sun, 9 May 2004 12:42:18 +0000 (12:42 +0000)]
r610:  - Merge the Samba3 'ntlm_auth --diagnostics' testsuite to Samba4.
  - This required using NETLOGON_NEG_AUTH2_FLAGS for the
    SetupCredentials2 negotiation flags, which is what Samba3 does,
    because otherwise the server uses different crypto.
  - This tests the returned session keys, which we decrypt.

 - Update the Samba4 notion of a 'session key' to be a DATA_BLOB in
   most places.

 - Fix session key code to return NT_STATUS_NO_SESSION_KEY if none is

 - Remove a useless argument to SMBsesskeygen_ntv1

 - move netr_CredentialState from the .idl to the new credentials.h

Andrew Bartlett
(This used to be commit 44f8b5b53e6abd4de8a676f78d729988fadff320)

14 years agor609: allow ldbedit to take a list of attributes to edit, just like
Andrew Tridgell [Sun, 9 May 2004 12:37:35 +0000 (12:37 +0000)]
r609: allow ldbedit to take a list of attributes to edit, just like
ldbsearch. This allows you to edit the description of all users using
something like:

  ldbedit 'objectclass=user' description

and not get overwhelmed with fields. It also allows you to edit HIDDEN attributes
by specifying them explicitly
(This used to be commit dd83d39de23cdf8c574005829972dae8dc6bee6a)

14 years agor608: - a couple of very minor fixes to the CreateGroup code
Andrew Tridgell [Sun, 9 May 2004 12:32:25 +0000 (12:32 +0000)]
r608: - a couple of very minor fixes to the CreateGroup code

- added samr_GetUserPwInfo() samr server call
(This used to be commit 0250f5d6aaf4f9325ace707c69f5e24bcd7a0ed9)

14 years agor607: When our code is looking for an 'empty' data blob
Andrew Bartlett [Sun, 9 May 2004 12:30:33 +0000 (12:30 +0000)]
r607: When our code is looking for an 'empty' data blob
some of it tests the .length, other code checks the

Ensure that we always NULL the .data, so that talloc-based
blobs behave just like their direct malloc equivalents.

Andrew Bartlett
(This used to be commit 64121aa1a9d037d3969f24be62f4521611c89888)

14 years agor606: added a HIDDEN attribute on fields in ldb (in @ATTRIBUTES). This allows you...
Andrew Tridgell [Sun, 9 May 2004 12:30:30 +0000 (12:30 +0000)]
r606: added a HIDDEN attribute on fields in ldb (in @ATTRIBUTES). This allows you to mark
an attribute as only appearing in searches that explicitly name it. It will be used
for attributes like nTSecurityDescriptor
(This used to be commit f5cd3d733b71368ea652f8a4d653d87f45ff983f)

14 years agor605: Implement CreateDomainGroup, essentially cut&paste from CreateUser2.
Volker Lendecke [Sun, 9 May 2004 11:21:46 +0000 (11:21 +0000)]
r605: Implement CreateDomainGroup, essentially cut&paste from CreateUser2.

(This used to be commit 59241c0c9aa2d64d66eb04e81aa5500681604061)

14 years agor604: Better dumping of in,out,ref properties.
Tim Potter [Sun, 9 May 2004 10:55:54 +0000 (10:55 +0000)]
r604: Better dumping of in,out,ref properties.
(This used to be commit 209f5a25a950e8780e9512b71fbb12b1cdbe1a17)

14 years agor602: Autogenerated packet-dcerpc-samr.c now compiles!
Tim Potter [Sun, 9 May 2004 10:03:55 +0000 (10:03 +0000)]
r602: Autogenerated packet-dcerpc-samr.c now compiles!
(This used to be commit 0c1069b56e7c80e2b428f6a6b550eacd5ac3d762)

14 years agor601: added the server code for all the samr_SetUserInfo and samr_QueryUserInfo level...
Andrew Tridgell [Sun, 9 May 2004 09:39:47 +0000 (09:39 +0000)]
r601: added the server code for all the samr_SetUserInfo and samr_QueryUserInfo levels except for the password
set levels.

This means that a large part of the RPC-SAMR torture test now runs correctly against Samba4
(This used to be commit ec0a51898f543578e755207d81ed5c1524861c64)

14 years agor600: Get rid of trailing whitespace which freaks out emacs' fontification.
Tim Potter [Sun, 9 May 2004 07:10:12 +0000 (07:10 +0000)]
r600: Get rid of trailing whitespace which freaks out emacs' fontification.
(This used to be commit d0383e9a7a0a5bee9a52ddc81d5f89c9f01c269b)

14 years agor597: Start generating parser code - only supports uint16, uint32 and policy
Tim Potter [Sun, 9 May 2004 01:26:26 +0000 (01:26 +0000)]
r597: Start generating parser code - only supports uint16, uint32 and policy
handle types.
(This used to be commit 1e02ccd94edc87f4107d21f7f778f1a88c9e197d)

14 years agor596: log all ldb searches at level 4 in samdb
Andrew Tridgell [Sun, 9 May 2004 00:42:35 +0000 (00:42 +0000)]
r596: log all ldb searches at level 4 in samdb
(This used to be commit defaf0d817a7c207da59692245aa65bc30c9bd19)

14 years agor595: nicer handling on max_size multiplier
Andrew Tridgell [Sun, 9 May 2004 00:42:09 +0000 (00:42 +0000)]
r595: nicer handling on max_size multiplier
(This used to be commit 994baba7ebc267cb3051109aee022d71472aa6b6)

14 years agor594: - make sure all users in the domain have the same base sid!
Andrew Tridgell [Sun, 9 May 2004 00:41:32 +0000 (00:41 +0000)]
r594:  - make sure all users in the domain have the same base sid!

 - added proper ldap time construction to provisioning
(This used to be commit 0f12584b4b1b90aa20c6a4a5199829b5beba2a1d)

14 years agor593: add a constant for the records size multiplier for max_size in samr_EnumDomainUsers
Andrew Tridgell [Sun, 9 May 2004 00:40:45 +0000 (00:40 +0000)]
r593: add a constant for the records size multiplier for max_size in samr_EnumDomainUsers
(This used to be commit 252b11112ce22152de3d53d0ba657879346ff243)

14 years agor591: don't need to init non-ref out ptrs (thanks to abartlet for spotting this)
Andrew Tridgell [Sun, 9 May 2004 00:39:39 +0000 (00:39 +0000)]
r591: don't need to init non-ref out ptrs (thanks to abartlet for spotting this)
(This used to be commit 3ac0cff83752b98ee7b8af7f4f9a33ffe9ae05e7)

14 years agor589: Fix IDL dump module so --dump and --diff options to pidl.pl work
Tim Potter [Sat, 8 May 2004 23:51:23 +0000 (23:51 +0000)]
r589: Fix IDL dump module so --dump and --diff options to pidl.pl work
again.  Still a few problems left though.
(This used to be commit e921a5879f8a5a867dce61e684a0010a5dab9472)

14 years agor587: added server code for samr_EnumDomainUsers, and started adding
Andrew Tridgell [Sat, 8 May 2004 14:42:45 +0000 (14:42 +0000)]
r587: added server code for samr_EnumDomainUsers, and started adding
samr_SetUserInfo and samr_QueryUserInfo
(This used to be commit e0db9659a85b59e52fbe033a94b411d6c64d9f9c)

14 years agor586: removed --clientfns from build_idl.sh (tim removed that code from pidl)
Andrew Tridgell [Sat, 8 May 2004 07:12:04 +0000 (07:12 +0000)]
r586: removed --clientfns from build_idl.sh (tim removed that code from pidl)
(This used to be commit d1dcde1d913803a44b07a1937262ae627680072c)

14 years agor583: fixed two bugs in the handling of index entry deletion
Andrew Tridgell [Sat, 8 May 2004 03:44:47 +0000 (03:44 +0000)]
r583: fixed two bugs in the handling of index entry deletion
(This used to be commit 7b5f3370e6c078bf506ac3eb24fb330d4aee7688)

14 years agor582: added the LMSessKey in SamInfo and SamInfo2, thanks to work by abartlet
Andrew Tridgell [Sat, 8 May 2004 02:48:24 +0000 (02:48 +0000)]
r582: added the LMSessKey in SamInfo and SamInfo2, thanks to work by abartlet

added test code for SamLogon validation level 2 and 3, so we test both
SamInfo and SamInfo2
(This used to be commit 321dbb61cc0743379ceb6b8fff6a0ca37f308bc2)

14 years agor578: initial server side implementation of samr_CreateUser(),
Andrew Tridgell [Sat, 8 May 2004 00:02:31 +0000 (00:02 +0000)]
r578: initial server side implementation of samr_CreateUser(),
samr_CreateUser2(), samr_LookupNames(), samr_OpenUser(),
and samr_DeleteUser()

this uses a user template in the SAM db, of objectclass "userTemplate"
and dn CN=TemplateUser,CN=Templates,$BASEDN. Using a template allows
an admin to add any default user attributes that they might want to
the user template and all new users will receive those attributes.
(This used to be commit 10b6e0011b5952c98432dc2d4b2058ac89a9cc2d)

14 years agor577: extended the LookupNames test to check for correct handling of unmapped names
Andrew Tridgell [Fri, 7 May 2004 23:57:35 +0000 (23:57 +0000)]
r577: extended the LookupNames test to check for correct handling of unmapped names
(This used to be commit e3b31625f476cb1b8a4d5003dee2c574582c9b46)

14 years agor576: added a ldap_timestring() function (needed for fields like whenChanged in SAM db)
Andrew Tridgell [Fri, 7 May 2004 23:56:57 +0000 (23:56 +0000)]
r576: added a ldap_timestring() function (needed for fields like whenChanged in SAM db)
(This used to be commit b2a63555189fea41184a2cac796945bca4e98995)

14 years agor575: moved the SID_NAME_USE enum into samr.idl
Andrew Tridgell [Fri, 7 May 2004 23:55:52 +0000 (23:55 +0000)]
r575: moved the SID_NAME_USE enum into samr.idl
(This used to be commit 2cb06b39d91ef18b21c18e9376ccbd8076aeecf8)

14 years agor574: - another attempt at const cleanliness in ldb
Andrew Tridgell [Fri, 7 May 2004 23:54:41 +0000 (23:54 +0000)]
r574:  - another attempt at const cleanliness in ldb

 - fixed a problem with searching for values containing an '=' sign

 - fixed the semantics of attempting an attribute deletion on an attribute that doesn't exist.

 - added some more ldb_msg_*() utilities
(This used to be commit 62b4ec367d170330d837b0f1fe5cd13205a53b59)

14 years agor550: Remove clientfns.pm module - it was a bad idea.
Tim Potter [Fri, 7 May 2004 11:57:31 +0000 (11:57 +0000)]
r550: Remove clientfns.pm module - it was a bad idea.

Start to resurrect eparser.pm for auto-generating ethereal dissectors
for rpc.
(This used to be commit 993a18dd35fb0b09c088eb2bb38d3e14ff755130)

14 years agor549: added support for DOS error codes in NTSTATUS returns. This uses a
Andrew Tridgell [Fri, 7 May 2004 11:56:13 +0000 (11:56 +0000)]
r549: added support for DOS error codes in NTSTATUS returns. This uses a
range of NTSTATUS codes that are normally invalid to prevent conflicts
with real error codes.

use the new DOS facility to fix the ERRbaduid return that volker found
(This used to be commit 10fdfb52398857b604fff9684ee65a96d970bdaa)

14 years agor514: added a context pointer to the samdb interface, as suggested by
Andrew Tridgell [Thu, 6 May 2004 12:42:42 +0000 (12:42 +0000)]
r514: added a context pointer to the samdb interface, as suggested by
metze. Also added a reference count so that a client can close the
connection handle and still used a derived domain handle.
(This used to be commit b1cd98188d6f1f8236f5dbc7a3605a39ae27fb73)

14 years agor513: added a generic ldb debug system to allow the Samba debug functions to
Andrew Tridgell [Thu, 6 May 2004 09:55:05 +0000 (09:55 +0000)]
r513: added a generic ldb debug system to allow the Samba debug functions to
be cleanly interfaced to ldb
(This used to be commit 74b89d5f960d6b936751e3f057b4540eb80b79cd)

14 years agor511: fix some const handling
Andrew Tridgell [Thu, 6 May 2004 07:33:28 +0000 (07:33 +0000)]
r511: fix some const handling
(This used to be commit be94cc4032b23fd99823902ddcd1472a72314a88)

14 years agor510: converted the samdb code to give ldb a talloc context rather than letting ldb...
Andrew Tridgell [Thu, 6 May 2004 07:32:51 +0000 (07:32 +0000)]
r510: converted the samdb code to give ldb a talloc context rather than letting ldb use malloc
(This used to be commit a3edd4bca8769cd804a5908286c7a18ca5c8fa00)

14 years agor509: fixed a memory handling bug that affects ldb with memory pools that
Andrew Tridgell [Thu, 6 May 2004 07:30:51 +0000 (07:30 +0000)]
r509: fixed a memory handling bug that affects ldb with memory pools that
change with each request
(This used to be commit 18695cefa16b867427e3ca2fb0d787d850ea25c3)

14 years agor508: fixed a place where we used free() on memory from a talloc(). The new
Andrew Tridgell [Thu, 6 May 2004 05:57:33 +0000 (05:57 +0000)]
r508: fixed a place where we used free() on memory from a talloc(). The new
talloc code catches errors like this.
(This used to be commit 22aa425c96030f55f6202bca1e1a876b0bc03f03)

14 years agor507: the new ldb code will use talloc_free() a lot, so I have made
Andrew Tridgell [Thu, 6 May 2004 05:53:35 +0000 (05:53 +0000)]
r507: the new ldb code will use talloc_free() a lot, so I have made
talloc_free() O(1) in preparation. This also halves the number of
malloc() calls and increases our internal consistency checking,
without breaking valgrind testing.
(This used to be commit 2331d4e76e40ff08215853f747f7063213ac92ce)

14 years agor506: got rid of unused function secrets_get_trusted_domains()
Andrew Tridgell [Thu, 6 May 2004 05:51:51 +0000 (05:51 +0000)]
r506: got rid of unused function secrets_get_trusted_domains()
(This used to be commit bb74a94e2610620987a44ab7289115a8ee361529)

14 years agor504: fixed a bad call to list_union()
Andrew Tridgell [Thu, 6 May 2004 04:45:29 +0000 (04:45 +0000)]
r504: fixed a bad call to list_union()
(This used to be commit 4404056cd5fd65d72a38ea474fe330281b3ee19e)

14 years agor503: we don't need to include ldb_parse.h any more
Andrew Tridgell [Thu, 6 May 2004 04:41:28 +0000 (04:41 +0000)]
r503: we don't need to include ldb_parse.h any more
(This used to be commit 85e57684b4dc4edcfd6d4cd1492d63810f8ce211)

14 years agor502: modified ldb to allow the use of an external pool memory
Andrew Tridgell [Thu, 6 May 2004 04:40:15 +0000 (04:40 +0000)]
r502: modified ldb to allow the use of an external pool memory
allocator. The way to use this is to call ldb_set_alloc() with a
function pointer to whatever memory allocator you like. It includes a
context pointer to allow for pool based allocators.
(This used to be commit 3955c482e6c2c9e975a4bb809ec8cb6068e48e34)

14 years agor491: regtree and gregedit also depend on LIBCMDLINE (popt stuff)
Stefan Metzmacher [Wed, 5 May 2004 10:29:25 +0000 (10:29 +0000)]
r491: regtree and gregedit also depend on LIBCMDLINE (popt stuff)

(This used to be commit ace939a5882bd35295246b5816a3344f70d20e29)

14 years agor490: - expanded the test suite to test modify and delete operations
Andrew Tridgell [Wed, 5 May 2004 04:27:29 +0000 (04:27 +0000)]
r490: - expanded the test suite to test modify and delete operations

- made yet another attempt to make ldb const clean.

- "make test" now runs both the tdb and ldap backend tests, and run the ldbtest utility
  with and without indexing

- added prototypes in ldb.h for ldb_msg_*() public functions
(This used to be commit 01e87406768cb5a98ac8530a2f361a4987a36cd3)

14 years agor476: i forgot the argument to get_time_zone()
Andrew Tridgell [Tue, 4 May 2004 22:53:47 +0000 (22:53 +0000)]
r476: i forgot the argument to get_time_zone()
(This used to be commit 34ff18839c97dbb77c76097b4484ebec398da192)

14 years agor469: considerably improved the ChangePasswordUser3() IDL thanks to an idea from...
Andrew Tridgell [Tue, 4 May 2004 13:42:32 +0000 (13:42 +0000)]
r469: considerably improved the ChangePasswordUser3() IDL thanks to an idea from abartlet
(This used to be commit 5f30c3b077b59fc7ec40644e3af7236292100c6b)

14 years agor468: fixed timegm() on broken systems
Andrew Tridgell [Tue, 4 May 2004 13:41:08 +0000 (13:41 +0000)]
r468: fixed timegm() on broken systems
(This used to be commit a3d639d04ff25deabd299ea24917adde9192ed38)

14 years agor467: hopefully get the buildfarm compiling fine now...
Stefan Metzmacher [Tue, 4 May 2004 13:18:29 +0000 (13:18 +0000)]
r467: hopefully get the buildfarm compiling fine now...

(This used to be commit d15f0e18bb43608c611cfe78fc79db9ee10e1eb2)

14 years agor466: implemented samr_OpenDomain() and samr_GetDomPwInfo() server side calls
Andrew Tridgell [Tue, 4 May 2004 07:53:06 +0000 (07:53 +0000)]
r466: implemented samr_OpenDomain() and samr_GetDomPwInfo() server side calls

if you take a look at samr_GetDomPwInfo() then you will get a fairly good idea
of what I am planning for the database oriented SAMR server implementation.
(This used to be commit bba0044a514cf86cbcf14bc82dd6c49808c22dab)

14 years agor465: we need common.h in two more rpc server pipes
Andrew Tridgell [Tue, 4 May 2004 06:11:47 +0000 (06:11 +0000)]
r465: we need common.h in two more rpc server pipes
(This used to be commit d96b68169a5ab46cc0550732d4fe94af75e06fd6)

14 years agor464: a big improvement to the API for writing server-side RPC
Andrew Tridgell [Tue, 4 May 2004 06:07:52 +0000 (06:07 +0000)]
r464: a big improvement to the API for writing server-side RPC
servers. Previously the server pipe code needed to return the RPC
level status (nearly always "OK") and separately set the function call
return using r->out.result. All the programmers writing servers
(metze, jelmer and me) were often getting this wrong, by doing things
like "return NT_STATUS_NO_MEMORY" which was really quite meaningless
as there is no code like that at the dcerpc level.

I have now modified pidl to generate the necessary boilerplate so that
just returning the status you want from the function will work. So for
a NTSTATUS function you return NT_STATUS_XXX and from a WERROR
function you return WERR_XXX. If you really want to generate a DCERPC
level fault rather than just a return value in your function then you
should use the DCESRV_FAULT() macro which will correctly generate a
fault for you.

As a side effect, this also adds automatic type checking of all of our
server side rpc functions, which was impossible with the old API. When
I changed the API I found and fixed quite a few functions with the
wrong type information, so this is definately useful.

I have also changed the server side template generation to generate a
DCERPC "operation range error" by default when you have not yet filled
in a server side function. This allows us to correctly implement
functions in any order in our rpc pipe servers and give the client the
right information about the fault.
(This used to be commit a4df5c7cf88891a78d82c8d6d7f058d8485e73f0)

14 years agor463: build ldb with debugging when standalone
Andrew Tridgell [Tue, 4 May 2004 05:58:52 +0000 (05:58 +0000)]
r463: build ldb with debugging when standalone
(This used to be commit 77269e7ad6f569585d5fad37ee63169c4eee3f01)

14 years agor462: added an explanation about the rather complex ltdb_key() function
Andrew Tridgell [Tue, 4 May 2004 05:58:22 +0000 (05:58 +0000)]
r462: added an explanation about the rather complex ltdb_key() function
(This used to be commit 894e44022d16d9ff43f421fb15495845710000ab)

14 years agor459: added an initial provision.ldif - this is temporary, and needs to be
Andrew Tridgell [Mon, 3 May 2004 14:59:23 +0000 (14:59 +0000)]
r459: added an initial provision.ldif - this is temporary, and needs to be
replaced with a more sophisticated provisioning system
(This used to be commit 86604bef236568028e84e6b1e8d935c3cfd70112)

14 years agor458: this is the (very primitive) beginnings of a SAMR server for
Andrew Tridgell [Mon, 3 May 2004 14:58:08 +0000 (14:58 +0000)]
r458: this is the (very primitive) beginnings of a SAMR server for
Samba4. I'm committing this now so I can get comments on the approach.

Note that you need to do something like this to initialise the SAM db:

 edit script/provision.pl
 script/provision.pl > provision.ldif.out
 bin/ldbadd /path/to/private/sam.ldb provision.ldif.out
(This used to be commit e2002e40a5abe0cd33a2056b1da8ba5732f9021f)

14 years agor457: added some more samr tests to help me work out the right error codes
Andrew Tridgell [Mon, 3 May 2004 14:54:47 +0000 (14:54 +0000)]
r457: added some more samr tests to help me work out the right error codes
in our new samr server
(This used to be commit 0f2503111498e809237e0155962db55dfde8cbfb)

14 years agor456: - added -i option to ldbsearch
Andrew Tridgell [Mon, 3 May 2004 14:51:26 +0000 (14:51 +0000)]
r456:  - added -i option to ldbsearch

 - fixed sorting bug in ldb index handing
(This used to be commit cdd48e2b9b3ca6be5503eec401e09db162408ac8)

14 years agor454: allow a non-URL form of a filename to be used in ldb_connect(). This
Andrew Tridgell [Mon, 3 May 2004 09:34:18 +0000 (09:34 +0000)]
r454: allow a non-URL form of a filename to be used in ldb_connect(). This
makes it a little easier to work with the ldb tools
(This used to be commit 03df31cef025b2087531579437d6bae1ec36e82f)

14 years agor453: added a comment about indexing on objectclass
Andrew Tridgell [Mon, 3 May 2004 04:25:48 +0000 (04:25 +0000)]
r453: added a comment about indexing on objectclass
(its usually a bad idea)
(This used to be commit f88760c3cc81324d3d339702b411603139af6224)

14 years agor452: move from first-fit to best-fit in tdb record allocation. For a
Andrew Tridgell [Mon, 3 May 2004 04:24:30 +0000 (04:24 +0000)]
r452: move from first-fit to best-fit in tdb record allocation. For a
situation where we are continually increasing the size of a record
(such as ldb index records) this reduces the resulting tdb size by a
factor of over 100x, due to reductions in fragmentation. It appears to
have no noticable effect on the speed in other cases.
(This used to be commit b61d7f8bbc0c01d648ce204ffb6ea657e0b04c03)

14 years agor451: More NTLMSSP work.
Andrew Bartlett [Sun, 2 May 2004 12:42:01 +0000 (12:42 +0000)]
r451: More NTLMSSP work.

The work here is trying to get the LM_KEY option for NLTMSSP
operating, however until that functions properly, it is now controlled
by some new smb.conf options, defaulting off.

Andrew Bartlett
(This used to be commit c63eb35b45c6db6e4c5302d1832bb5cef49a14f6)

14 years agor448: Fix 'auth' in Samba4, by making 'auth methods' a normal smb.conf
Andrew Bartlett [Sun, 2 May 2004 11:45:01 +0000 (11:45 +0000)]
r448: Fix 'auth' in Samba4, by making 'auth methods' a normal smb.conf
paramter, without special links to other variables.

When we get 'server role' ideas back into Samba4, we can fix this properly.

The default is:

guest, sam_ignoredomain

which is the expected behaviour for a stand-alone server.

Andrew Bartlett
(This used to be commit 56ebc4275fedc8141d43a4ae9a4f4f0e1eccaf49)

14 years agor445: fixed the bind_nak code
Andrew Tridgell [Sun, 2 May 2004 10:07:25 +0000 (10:07 +0000)]
r445: fixed the bind_nak code
(This used to be commit f3799e7720e13e12b59168cf4afbf2dfe87868f7)

14 years agor444: - added the beginnings of a ldb test suite and benchmark
Andrew Tridgell [Sun, 2 May 2004 10:06:45 +0000 (10:06 +0000)]
r444:  - added the beginnings of a ldb test suite and benchmark

 - updated the test slapd config to use bdb and indexing
(This used to be commit 7ad0858c060ee212a33434dc4be75e7a0cd1a0e3)

14 years agor443: Update Samba4 to the auth and NTLMSSP code from Samba3.
Andrew Bartlett [Sun, 2 May 2004 08:45:00 +0000 (08:45 +0000)]
r443: Update Samba4 to the auth and NTLMSSP code from Samba3.

Not all the auth code is merged - only those parts that are actually
being used in Samba4.

There is a lot more work to do in the NTLMSSP area, and I hope to
develop that work here.  There is a start on this here - splitting
NTLMSSP into two parts that my operate in an async fashion (before and
after the actual authentication)

Andrew Bartlett
(This used to be commit 5876c78806e6a6c44613a1354e8d564b427d0c9f)

14 years agor442: fixed some uninitialised variables pointed out by gcc -O3
Andrew Tridgell [Sun, 2 May 2004 05:16:15 +0000 (05:16 +0000)]
r442: fixed some uninitialised variables pointed out by gcc -O3
(This used to be commit ff31cfb941b77e99e648011a6b7639b2a5923a6a)

14 years agor441: added an example of how to use the remote rpc interface
Andrew Tridgell [Sun, 2 May 2004 05:10:40 +0000 (05:10 +0000)]
r441: added an example of how to use the remote rpc interface
(This used to be commit 62f59d1180cb97cbfd6e046072131fc486ade4bd)

14 years agor437: fixed handling of a corner case with multi-valued indexing
Andrew Tridgell [Sat, 1 May 2004 14:04:33 +0000 (14:04 +0000)]
r437: fixed handling of a corner case with multi-valued indexing
(This used to be commit b38612185657512419c4b3dc806cf1183e0db0cb)

14 years agor436: fixed indexing of objectclass with subclasses
Andrew Tridgell [Sat, 1 May 2004 10:39:32 +0000 (10:39 +0000)]
r436: fixed indexing of objectclass with subclasses
(This used to be commit 4d92e6f79f52ec0d580dfda2a91b4afc95838ff4)

14 years agor435: a major upgrade for ldb
Andrew Tridgell [Sat, 1 May 2004 09:45:56 +0000 (09:45 +0000)]
r435: a major upgrade for ldb

 - added the ability to mark record attributes as being CASE_INSENSITIVE, WILDCARD or INTEGER.

 - added the ability to support objectclass subclasses, and to search by a parent class

 - added internal support for case insensitive versus case sensitive
   indexing (not UTF8 compliant yet)

 - cleaned up a number of const warnings

 - added a number of helper functions for fetching integers, strings and doubles

 - added a in-memory cache for important database properties, supported by a
   database sequence number

 - changed some variable names to avoid conflicts with C++
(This used to be commit f2bf06f25c2e6c744817711c7bedbd1d3b52f994)

14 years agor432: fix the linking of the reg* tools
Stefan Metzmacher [Fri, 30 Apr 2004 15:33:30 +0000 (15:33 +0000)]
r432: fix the linking of the reg* tools

(This used to be commit 089f6f063fdd7e54c0a2a95d27bab1813fbc2307)

14 years agor425: add some comments to ugly code parts
Stefan Metzmacher [Fri, 30 Apr 2004 12:52:58 +0000 (12:52 +0000)]
r425: add some comments to ugly code parts

we should take care of 'char *' and 'const char *' and DO NOT mix them!

Jelmer: please fix this

(This used to be commit cd609eb2fe9303825d5562047d57fd553b2601bd)

14 years agor424: let this code compile on every machine hopefully
Stefan Metzmacher [Fri, 30 Apr 2004 12:40:48 +0000 (12:40 +0000)]
r424: let this code compile on every machine hopefully

(This used to be commit 3e911db7c2cbcb38667f06e6b0282bce1b7991cb)

14 years agor420: added nicer names for the field bits in userinfo21
Andrew Tridgell [Fri, 30 Apr 2004 03:57:48 +0000 (03:57 +0000)]
r420: added nicer names for the field bits in userinfo21

added tests for the level 23 and 25 password change methods
(This used to be commit d49f7a6a0d1895de3d654a5b46c6aec3a57fde76)

14 years agor419: Data::Dumper is not portable
Stefan Metzmacher [Fri, 30 Apr 2004 03:12:14 +0000 (03:12 +0000)]
r419: Data::Dumper is not portable

use it only for debugging in a local tree

(This used to be commit 7c53e05b4874143e8e8cd0034ab5a6a986e7994c)

14 years agor412: as we decide to not do 3.0.2a releases anymore,
Stefan Metzmacher [Thu, 29 Apr 2004 21:01:13 +0000 (21:01 +0000)]
r412: as we decide to not do 3.0.2a releases anymore,
remove the generation stuff from VERSION and mkversion.sh

(This used to be commit 6658e75358a82e3e6f104487d8bb19514af4e7a7)

14 years agor411: make swig should not be the first make rule...
Stefan Metzmacher [Thu, 29 Apr 2004 20:57:22 +0000 (20:57 +0000)]
r411: make swig should not be the first make rule...

add make default -> all before

(This used to be commit ddf6a575ff173fcf1e4898fc73459c52f554e043)

14 years agor392: added IDL for 3 more netlogon Delta levels, thanks to a dump from Richard Renard
Andrew Tridgell [Wed, 28 Apr 2004 14:38:42 +0000 (14:38 +0000)]
r392: added IDL for 3 more netlogon Delta levels, thanks to a dump from Richard Renard
(This used to be commit 2d8772ec9607c4e06bbc559b35979e27d4b988d9)

14 years agor390: added my best guess for how session keys are supposed to work when you
Andrew Tridgell [Wed, 28 Apr 2004 13:17:28 +0000 (13:17 +0000)]
r390: added my best guess for how session keys are supposed to work when you
use NTLMSSP sign or seal at the RPC layer

It doesn't work yet, but then again neither does the old code (which
just assumed the SMB session key was used, which of course makes no
sense on a ncacn_ip_tcp connection)
(This used to be commit e8782329269bc78d36d8ca83fb7a4e38b9c6b167)

14 years agor389: added a test for set user info level 26 (set password extended)
Andrew Tridgell [Wed, 28 Apr 2004 13:15:49 +0000 (13:15 +0000)]
r389: added a test for set user info level 26 (set password extended)

thanks to Luke Howard for this test
(This used to be commit 891653e7d40f581016085e2c32e2802eea7e7ade)

14 years agor388: added IDL for 3 more set user info levels (all of which set the
Andrew Tridgell [Wed, 28 Apr 2004 13:13:26 +0000 (13:13 +0000)]
r388: added IDL for 3 more set user info levels (all of which set the
password). That makes 8 ways to change a password just on the SAMR

Thanks to Luke Howard from PADL for this.
(This used to be commit c8a49a7e004468d13f656f67eac4b7b4e1759022)

14 years agor387: more C++ friendly changes
Andrew Tridgell [Wed, 28 Apr 2004 13:06:25 +0000 (13:06 +0000)]
r387: more C++ friendly changes
(This used to be commit ac0c525a8b8a05cc275fb9f4c1dcfd749604c85f)

14 years agor386: Another torture test to survive.
Volker Lendecke [Wed, 28 Apr 2004 12:45:16 +0000 (12:45 +0000)]
r386: Another torture test to survive.

Believe it or not, w2k3 returns ERRSRV:ERRbaduid DOS error code if you pass in
a wrong vuid. We (Samba 3) currently return NT_STATUS_NETWORK_ACCESS_DENIED.

(This used to be commit 37221b81f124887ab3cb652f237067ff4b56151e)

14 years agor383: Scripting extensions using swig. This commit includes only a (LGPL)
Tim Potter [Wed, 28 Apr 2004 10:10:52 +0000 (10:10 +0000)]
r383: Scripting extensions using swig.  This commit includes only a (LGPL)
python interface to tdb and a rudimentary build system.

Configure with --with-python and make swig to build and append
$(builddir)/scripting/swig/python to PYTHONPATH.
(This used to be commit bbc15d6f84b6a247ae87b253752a86a38f1d6798)