Andrew Bartlett [Fri, 8 Aug 2008 04:04:08 +0000 (14:04 +1000)]
Clarify comment
(This used to be commit
580cce9de38ddd9d59b272b58caadce528321d09)
Andrew Bartlett [Fri, 8 Aug 2008 00:32:21 +0000 (10:32 +1000)]
We can't use ndr_pull_struct_blob_all in combinatin with relative pointers
(This used to be commit
d0a128f35b259d4891edc68fc24aa04a6da7aab7)
Stefan Metzmacher [Tue, 29 Jul 2008 20:06:18 +0000 (20:06 +0000)]
lib: prepare the build of zlib
metze
(This used to be commit
159df68c04c9ae437ab48991154e91161ef72754)
Stefan Metzmacher [Thu, 7 Aug 2008 16:20:11 +0000 (16:20 +0000)]
zlib: add inflateReset2()...
metze
(This used to be commit
2a4fb661d7e3d601a5eb9ccecb4d4f2b07073097)
Stefan Metzmacher [Tue, 29 Jul 2008 20:01:23 +0000 (20:01 +0000)]
import of zlib-1.2.3
We want to use zlib for the mszip ndr (de)compression
later, we'll need to add some new functions to zlib.
metze
(This used to be commit
65c9e91a1bb24851a030a304d011558562cc50d6)
Stefan Metzmacher [Thu, 7 Aug 2008 17:15:30 +0000 (19:15 +0200)]
drsuapi: fix callers after idl change
metze
(This used to be commit
7dee6fb62d5adbd2eaaaf4d8ba9e87a72ef9f94b)
Stefan Metzmacher [Thu, 7 Aug 2008 16:15:26 +0000 (16:15 +0000)]
drsuapi.idl: directly use mszip in level 2
This fixes the push because the switch_level doesn't work
otherwise because the pointer is the same as for
the outer switch_level.
metze
(This used to be commit
a4c81ee68c91b2d7a9abe668e8b23246c5c9b00d)
Stefan Metzmacher [Wed, 6 Aug 2008 20:28:04 +0000 (22:28 +0200)]
rpc_server: add support for DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN
you need "dcesrv:header signing=yes" to enable it.
metze
(This used to be commit
bde2496e6b7034c99243b22434a97aebeb8f75b9)
Stefan Metzmacher [Wed, 6 Aug 2008 19:35:07 +0000 (21:35 +0200)]
librpc/rpc: add support DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN
You can trigger it like this:
ncacn_ip_tcp:172.31.9.234[sign,hdrsign]
or
ncacn_ip_tcp:172.31.9.234[seal,hdrsign]
metze
(This used to be commit
54f1fca582b1474693b5ee11b7b847086d27f75f)
Stefan Metzmacher [Wed, 6 Aug 2008 19:34:00 +0000 (21:34 +0200)]
librpc/rpc: pass struct dcerpc_pipe to dcerpc_auth3()
metze
(This used to be commit
60b3523da485d845b1d930d990688d8434d39ef3)
Stefan Metzmacher [Wed, 6 Aug 2008 19:30:17 +0000 (21:30 +0200)]
gensec_gssapi: add support for GENSEC_FEATURE_SIGN_PKT_HEADER
This only works for sign/verify_packet() yet,
seal/unseal_packet() doesn't work yet...
metze
(This used to be commit
c62e5d23a69789d23516a6d150fd3b756e270998)
Stefan Metzmacher [Wed, 6 Aug 2008 19:26:20 +0000 (21:26 +0200)]
gensec: add GENSEC_FEATURE_SIGN_PKT_HEADER flag
metze
(This used to be commit
d7dfdbaf34843cb6783d8e686e659c53c5ac27ef)
Jelmer Vernooij [Fri, 1 Aug 2008 19:36:49 +0000 (21:36 +0200)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into manpage
(This used to be commit
8e201ecf3e86c3c8865c7276fad8dad07106efaf)
Jelmer Vernooij [Fri, 1 Aug 2008 19:12:37 +0000 (21:12 +0200)]
Add helper object Hostconfig to make it easier to get to e.g. the
SAM database.
(This used to be commit
be75b2a36ee49f66ada3ec3ababa82d74085d559)
Stefan Metzmacher [Fri, 1 Aug 2008 16:15:11 +0000 (18:15 +0200)]
heimdal: add experimental --enable-external-heimdal
This should only be used for testing and when you're
absolutly sure the installed heimdal libraries
support the features we need.
(E.g. heimdal-1.2 or lower should NOT work)
metze
(This used to be commit
66b76b018d6048cec63a75b24ec4c099f6a2eb8c)
Stefan Metzmacher [Fri, 1 Aug 2008 17:30:16 +0000 (19:30 +0200)]
libreplace: include <krb5.h> and <com_err.h> and no heimdal specific headers
metze
(This used to be commit
cffed8e19e22a1fa7b7a322b153df5d54e4c3be2)
Stefan Metzmacher [Fri, 1 Aug 2008 17:29:08 +0000 (19:29 +0200)]
auth/kerberos: remove dependencies to internal heimdal
metze
(This used to be commit
ed0fc19ac6a1194e6fd9a6534cbf7453fa870066)
Stefan Metzmacher [Fri, 1 Aug 2008 17:24:09 +0000 (19:24 +0200)]
heimdal_build/internal: add some useful defines
metze
(This used to be commit
b9727d612bd2e9cf67ca2d4a9c60dc13d4bed5be)
Stefan Metzmacher [Fri, 1 Aug 2008 18:27:38 +0000 (20:27 +0200)]
heimdal: fix dependency
metze
(This used to be commit
9e8b95dc8d577ea33504f0fb463d4648393e045b)
Stefan Metzmacher [Fri, 1 Aug 2008 17:23:29 +0000 (19:23 +0200)]
lib/crypto: remove dependency to internal heimdal
metze
(This used to be commit
9138fc6639fae7a5567c395254277199c89b0dcb)
Stefan Metzmacher [Fri, 1 Aug 2008 18:15:52 +0000 (20:15 +0200)]
build: remove warning about missing generated include file
metze
(This used to be commit
495d068df55a94d48f2a4d2e7f2060fb42f66dbd)
Jelmer Vernooij [Fri, 1 Aug 2008 19:00:09 +0000 (21:00 +0200)]
Use new style python classes.
(This used to be commit
2a39aae0cef310a79427feb1b85f6794ea36849a)
Jelmer Vernooij [Fri, 1 Aug 2008 18:47:22 +0000 (20:47 +0200)]
Move domain DN determination out of newuser function.
(This used to be commit
cbac27e6faa99ebaa3e6d653017c968db836560a)
Jelmer Vernooij [Fri, 1 Aug 2008 18:47:03 +0000 (20:47 +0200)]
Actually fix missing substitution variables.
(This used to be commit
783412ecb27d646b171993da0ac2f11a821901d3)
Jelmer Vernooij [Fri, 1 Aug 2008 18:17:56 +0000 (20:17 +0200)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into manpage
(This used to be commit
c87a8ba1fef1ba508ad6527d0bae4bcdd5b3cb69)
Jelmer Vernooij [Fri, 1 Aug 2008 18:17:29 +0000 (20:17 +0200)]
Fix some forgotten substitute variables in provision, add check to prevent this sort of regression in the future.
(This used to be commit
a461118f3b668779f907c4d77cebe1e76fa4e39f)
Stefan Metzmacher [Fri, 1 Aug 2008 15:24:24 +0000 (17:24 +0200)]
kdc: use mostly only public kerberos headers
We shoule avoid using the private heimdal function
_krb5_principalname2krb5_principal()
metze
(This used to be commit
10db07c69addce6e90851fb55738d5f9e142946b)
Stefan Metzmacher [Fri, 1 Aug 2008 14:59:40 +0000 (16:59 +0200)]
auth/kerberos: we don't need to include heimdal private headers
metze
(This used to be commit
6ec3887aee9bbb9c182ab966d37212edeaa16b5a)
Stefan Metzmacher [Fri, 1 Aug 2008 14:58:01 +0000 (16:58 +0200)]
gensec_gssapi: include <gssapi/gssapi.h>
metze
(This used to be commit
49e01d00bded74190c8e3049ac5883fe211e86fd)
Stefan Metzmacher [Fri, 1 Aug 2008 14:57:00 +0000 (16:57 +0200)]
heimdal_build: we should only use PRIVATE_DEPENDENCIES
metze
(This used to be commit
694f5124a523538117bf5d35be1a2d4f275ad0c2)
Stefan Metzmacher [Fri, 1 Aug 2008 14:53:52 +0000 (16:53 +0200)]
build: autogenerate heimdal basics
metze
(This used to be commit
f19d2182b802a49449cbb9e4e6334f223ceb284d)
Stefan Metzmacher [Fri, 1 Aug 2008 14:52:12 +0000 (16:52 +0200)]
build: autogenarate VPATH by configure
metze
(This used to be commit
16147753adcdbdc0ee9faa16fafb1c74240a6858)
Stefan Metzmacher [Fri, 1 Aug 2008 15:49:07 +0000 (17:49 +0200)]
heimdal: add missing files
metze
(This used to be commit
b395cd7acdb3ca5b25368fbbad0606efe4699d04)
Stefan Metzmacher [Fri, 1 Aug 2008 15:22:54 +0000 (17:22 +0200)]
auth_server: set the workstation name
metze
(This used to be commit
6d640ee4b84c72f6c2da0ee047c9bac916bf3e57)
Stefan Metzmacher [Fri, 1 Aug 2008 15:21:57 +0000 (17:21 +0200)]
heimdal: add missing file heimdal/lib/gssapi/mech/gss_pseudo_random.c
metze
(This used to be commit
3bd7e68a5cfe80733782367e327b570d04b21586)
Stefan Metzmacher [Fri, 1 Aug 2008 09:17:48 +0000 (11:17 +0200)]
build with the new heimdal version
(This used to be commit
3817d653faecb70bfafb850fe7d6e83aaed7e6d1)
Stefan Metzmacher [Fri, 1 Aug 2008 05:08:51 +0000 (07:08 +0200)]
heimdal: update to lorikeet-heimdal rev 801
metze
(This used to be commit
d6c54a66fb23c784ef221a3c1cf766b72bdb5a0b)
Stefan Metzmacher [Fri, 1 Aug 2008 09:16:14 +0000 (11:16 +0200)]
build: allow flex-2.34 together with bison-2.3
metze
(This used to be commit
8bd30a7b4392642ef5184f959d801716d2db20b2)
Stefan Metzmacher [Fri, 1 Aug 2008 14:10:06 +0000 (16:10 +0200)]
auth/ntlmssp: don't crash when the backend give no challenge
metze
(This used to be commit
c01fee80a79cd9e0f7bb295333bb03bd37328d05)
Stefan Metzmacher [Fri, 1 Aug 2008 13:53:01 +0000 (15:53 +0200)]
auth_server: fix the logic of server_get_challenge()
metze
(This used to be commit
699e3cdb52acdf2524347d8c053730306c579dd9)
Stefan Metzmacher [Fri, 1 Aug 2008 13:19:27 +0000 (15:19 +0200)]
auth_server: fix segfault reported by Julien Kerihuel <j.kerihuel@openchange.org>
metze
(This used to be commit
c2cc8ef943e8c2e02edb1eb20214de245cc6914c)
Stefan Metzmacher [Fri, 1 Aug 2008 07:20:46 +0000 (09:20 +0200)]
Revert "Start implementind domain trusts in our KDC."
This reverts commit
736ce50afd9da9b5fbc3db777fd5341dfa4b721a.
This breaks the build...
metze
(This used to be commit
afd07073b9caa4b5f7d2ad747e79afaec4203506)
Andrew Bartlett [Thu, 31 Jul 2008 13:17:20 +0000 (23:17 +1000)]
Update to a working trustAuthIncoming and trustAuthOutgoing parser.
This is based on the docs, as well as testing against a domain trust
in windows.
Clearly it needs to be more general - perhaps a non IDL parser?
Andrew Bartlett
(This used to be commit
816bb64a56a75d1eb5e879b4abf211af27243686)
Andrew Bartlett [Thu, 31 Jul 2008 11:23:48 +0000 (21:23 +1000)]
Print trustAuthOutgoing and trustAuthIncoming in RPC-DSSYNC
(This used to be commit
6673a6e62399c4956a44a06685aa91ce8145b92a)
Andrew Bartlett [Thu, 31 Jul 2008 00:51:59 +0000 (10:51 +1000)]
Use the cldap reply to avoid segfaulting in RPC-DSSYNC
Also don't fail the test if the server does not implement the NT4
changelog.
Andrew Bartlett
(This used to be commit
514d88580bee3bb17f1032262f5518e3ab2a349a)
Andrew Bartlett [Wed, 30 Jul 2008 23:07:57 +0000 (09:07 +1000)]
Don't fail if the domain has a trust already.
Andrew Bartlett
(This used to be commit
c2df7ffa6d67dd9381d10397c679746547cd5e17)
Andrew Bartlett [Wed, 30 Jul 2008 21:48:16 +0000 (07:48 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local
(This used to be commit
15d0951b74b46763024560f9cd012338473c5bc3)
Andrew Bartlett [Wed, 30 Jul 2008 21:47:01 +0000 (07:47 +1000)]
Start implementind domain trusts in our KDC.
Andrew Bartlett
(This used to be commit
736ce50afd9da9b5fbc3db777fd5341dfa4b721a)
Andrew Bartlett [Wed, 30 Jul 2008 21:45:30 +0000 (07:45 +1000)]
Update trustAuthInOutBlob in line with MS-ADTS 7.1.6.8.1
(This used to be commit
26c2a34dec26890230dfa86827804d8160061ce5)
Jelmer Vernooij [Wed, 30 Jul 2008 11:29:29 +0000 (13:29 +0200)]
Be more pythonic.
(This used to be commit
20d40e31942f96ca9d077e57c6dd4c1d38f79b4b)
Stefan Metzmacher [Mon, 28 Jul 2008 15:59:17 +0000 (17:59 +0200)]
Revert "gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes keys work"
This reverts commit
73964f069056f46f2f27fc690e42e5c91ae1fe19.
This breaks more than it gains:-( It seems to break the ncacn_np session key
metze
(This used to be commit
9678085f75b6cb0ed068e22f3d9f94247b200ce2)
Stefan Metzmacher [Mon, 28 Jul 2008 14:40:21 +0000 (16:40 +0200)]
rpc_server: remove unused variable
metze
(This used to be commit
c2186d5d60aa2b57ecafaa57f9fd41f2a6717046)
Stefan Metzmacher [Mon, 28 Jul 2008 14:11:30 +0000 (16:11 +0200)]
gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes keys work
SMB signing with aes doesn't work, but still works with
arcfour-hmac-md5, des-cbc-md5 and des-cbc-crc.
metze
(This used to be commit
73964f069056f46f2f27fc690e42e5c91ae1fe19)
Stefan Metzmacher [Mon, 28 Jul 2008 13:49:46 +0000 (15:49 +0200)]
libcli/smb2: the session key for SMB2 signing is truncated to 16 bytes
To make that work (as a client) with aes128 and aes256 krb5 keys
we need to use gsskrb5_get_subkey().
metze
(This used to be commit
0c6d988f2083067e1ac7b07a492f88cefd3ba906)
Stefan Metzmacher [Mon, 9 Jun 2008 19:57:05 +0000 (21:57 +0200)]
smb2srv: sign SMB2 Logoff replies
metze
(This used to be commit
2844e361730a6bc640ea89d0e10059deca1ca867)
Stefan Metzmacher [Mon, 9 Jun 2008 19:45:19 +0000 (21:45 +0200)]
smb2srv: correctly hold the signing state per session
metze
(This used to be commit
5b3ba3f3556e8031133128853cd2324ee3852aa1)
Stefan Metzmacher [Mon, 9 Jun 2008 19:57:41 +0000 (21:57 +0200)]
libcli/smb2: fix per session signing state
metze
(This used to be commit
8bc12dc77a59e792830d96e84a4e8d1b2c651505)
Stefan Metzmacher [Mon, 9 Jun 2008 19:41:55 +0000 (21:41 +0200)]
SMB2-CONNECT: remove reference to req->session before calling smb2_logoff_recv() on the invalid session
metze
(This used to be commit
93203e8e318dd10b9e7096e586187eb271d42134)
Stefan Metzmacher [Mon, 9 Jun 2008 19:41:06 +0000 (21:41 +0200)]
libcli/smb2: sign SMB2 Logoff requests
metze
(This used to be commit
35ee165b146b9157b0cff49e1139a0cb37d98926)
Andrew Bartlett [Mon, 28 Jul 2008 10:51:02 +0000 (20:51 +1000)]
We don't use EXTENSIBLEOBJECT any more.
(This used to be commit
4b137085c8b89773d4639372bbffd516a41dfc8f)
Andrew Bartlett [Mon, 28 Jul 2008 10:26:14 +0000 (20:26 +1000)]
Make it even clearer what to do next in the LDAP backend setup
(This used to be commit
bace931ad674b5071d53bf9c99c383f1d8957e1b)
Andrew Bartlett [Mon, 28 Jul 2008 10:18:17 +0000 (20:18 +1000)]
Always print the slapd startup command
(This used to be commit
b1d05e7d14c65133e8ab0ff9d41a26fa7e3d41d3)
Andrew Bartlett [Mon, 28 Jul 2008 08:39:37 +0000 (18:39 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-abartlet
(This used to be commit
486891bb5167034e54b7477ba09e8f5f914b93e4)
Stefan Metzmacher [Mon, 28 Jul 2008 07:29:42 +0000 (09:29 +0200)]
auth/credentials: explain why we need to the enctypes for the gssapi layer
metze
(This used to be commit
88970c4d4192635544cf63e79e929e9bb05ecb5f)
Andrew Bartlett [Sun, 27 Jul 2008 22:04:43 +0000 (08:04 +1000)]
Remove unused variable
(This used to be commit
31a303c099e26423160010c48b305434d4cbea25)
Andrew Bartlett [Sun, 27 Jul 2008 22:04:15 +0000 (08:04 +1000)]
Remove unused function and make sensitive directories private.
(This used to be commit
e23333d16397606d38e90684d2d916b5b967cde4)
Andrew Bartlett [Sun, 27 Jul 2008 22:02:18 +0000 (08:02 +1000)]
Fix warnings in new prefixMap code
(This used to be commit
b8770a4fd8408473593fa4c6600bce056183958d)
Jelmer Vernooij [Sun, 27 Jul 2008 17:57:27 +0000 (19:57 +0200)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into manpage
(This used to be commit
7e90cc197c4fb2884f368cd72f391d0d8016fb96)
Jelmer Vernooij [Sun, 27 Jul 2008 17:56:20 +0000 (19:56 +0200)]
Fix location of manpages.
(This used to be commit
6f5b4ef1d0380d265ce27c882072c759ce19c7c3)
Stefan Metzmacher [Fri, 25 Jul 2008 16:26:31 +0000 (18:26 +0200)]
gensec_gssapi: add support for signing RPC messages
metze
(This used to be commit
dc2847c0acb0adaede4db72a7517046b93221162)
Stefan Metzmacher [Fri, 25 Jul 2008 14:02:29 +0000 (16:02 +0200)]
lib/ldb/tools: allow -W and --realm when build from samba4
metze
(This used to be commit
0aa6d63ec571b0ca05fbfe14d2b4e9ba3e1082e9)
Stefan Metzmacher [Fri, 25 Jul 2008 14:00:50 +0000 (16:00 +0200)]
auth/credentials: use the same enctypes when getting a TGT and a TGS
metze
(This used to be commit
9fc5750156467f579ea8d7755987d091f5b579c2)
Stefan Metzmacher [Thu, 24 Jul 2008 08:00:20 +0000 (10:00 +0200)]
dsdb: add a comment about the parameter to DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID
metze
(This used to be commit
2f06fbe06be2e1b77ea013ddba853ce819e58e88)
Stefan Metzmacher [Thu, 24 Jul 2008 07:55:53 +0000 (09:55 +0200)]
dsdb/schema: make more clear where we create the value for the new prefix mapping
metze
(This used to be commit
c92eb8b776c17f12622837daeb1786862f380269)
Stefan Metzmacher [Thu, 24 Jul 2008 07:53:29 +0000 (09:53 +0200)]
dsdb/schema: dsdb_write_prefixes_to_ldb() should do the reverse of dsdb_read_prefixes_to_ldb()
metze
(This used to be commit
34ea9d4a0b1270a27412bf939d7e897a5d68d0a6)
Stefan Metzmacher [Fri, 25 Jul 2008 19:26:28 +0000 (21:26 +0200)]
dcerpc.idl: add DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN flag
metze
(This used to be commit
131a1cfdc9a1228d9263c77bcd31b05d2946fd50)
Stefan Metzmacher [Sat, 26 Jul 2008 18:38:20 +0000 (20:38 +0200)]
mamachinepw: add better error handling
metze
(This used to be commit
7ac424137f62ceacf44e477f4e3805267013005b)
Volker Lendecke [Mon, 19 May 2008 21:06:42 +0000 (23:06 +0200)]
Add "mymachinepw" to fetch our machine password out of secrets.ldb
(This used to be commit
4fbe16deb0e06e145f643568a699b80b431d4f42)
Stefan Metzmacher [Wed, 14 May 2008 07:47:18 +0000 (09:47 +0200)]
smbtorture: add --extra-user option
This can we used to pass additional credentials to torture tests
(it can be used multiple times.
metze
(This used to be commit
4d80dbfac27659046e0986a2af3d06999e2cb2f2)
Brad Hards [Fri, 25 Jul 2008 07:43:21 +0000 (17:43 +1000)]
Define HAVE_ASM_BYTEORDER at all times
(This used to be commit
396ea14732d667960091f4a2570341059914ecb6)
Andrew Bartlett [Fri, 25 Jul 2008 04:15:22 +0000 (14:15 +1000)]
Per feedback, remove epoch and ldconfig requires.
See https://bugzilla.redhat.com/show_bug.cgi?id=453083
(This used to be commit
97d02730e8fde56de27aeb51612a4777c2953c9f)
Andrew Bartlett [Fri, 25 Jul 2008 04:11:18 +0000 (14:11 +1000)]
Make a new define to ensure the accoc_group_id we use is always in common.
(This used to be commit
b62490e3e21b606b66e0737a403b0d170b64cddd)
Andrew Bartlett [Fri, 25 Jul 2008 01:58:51 +0000 (11:58 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local
(This used to be commit
b12dd8ee5443ebfc204d1684f541d68ffb351197)
Andrew Bartlett [Fri, 25 Jul 2008 01:58:24 +0000 (11:58 +1000)]
Try to avoid a memory leak if we re-set the global schema
However, try also not to pull a schema out from under a running ldb
session.
Andrew Bartlett
(This used to be commit
7cf9b9dd0bb35835a7c6e9897ea99951a33c63c7)
Andrew Bartlett [Thu, 24 Jul 2008 22:45:16 +0000 (08:45 +1000)]
Complain if we are told to use an ldap backend, without the type
(This used to be commit
e9c3c9ad8289ee48efa998ab6b486250dcd40b52)
Andrew Bartlett [Thu, 24 Jul 2008 22:44:00 +0000 (08:44 +1000)]
Clarify how we are doing the 'this is a rootdse query' check.
(This used to be commit
8dfba3160cc4bc518f3ad8570d104e5baae784ca)
Stefan Metzmacher [Thu, 24 Jul 2008 06:23:15 +0000 (08:23 +0200)]
hdb-ldb: fix the callers after drsblobs.idl changes
metze
(This used to be commit
1223cd17c79d130b46b0e0ccb0f6011c92441173)
Stefan Metzmacher [Thu, 24 Jul 2008 06:22:23 +0000 (08:22 +0200)]
password_hash: fix the callers after drsblobs.idl changes
metze
(This used to be commit
fac7c79afae05a88ecc2a63c8eb9f2fd53ab7ce6)
Stefan Metzmacher [Thu, 24 Jul 2008 06:20:06 +0000 (08:20 +0200)]
drsblobs.idl: unify the Primary:Kerberos and Primary:Kerberos-Newer-Keys structs
metze
(This used to be commit
4b79a7678571ac2f7d5f827913fdcb419f5d2e20)
Stefan Metzmacher [Thu, 24 Jul 2008 05:53:55 +0000 (07:53 +0200)]
drsblobs.idl: give some unknowns a meaning
metze
(This used to be commit
231e6f5ab2dc8a3e991a9872be252cffff6f14c6)
Andrew Tridgell [Thu, 24 Jul 2008 04:26:30 +0000 (14:26 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into v4-0-test
(This used to be commit
24309dbf4d9622fcfafa29ef98bc0459fdaa814b)
Andrew Tridgell [Thu, 24 Jul 2008 04:21:52 +0000 (14:21 +1000)]
we can't query the ACL on a new file till it exists!
(This used to be commit
4f6646f06988b1fb8be9e0c8ae833bb9792184af)
Andrew Tridgell [Thu, 24 Jul 2008 04:21:31 +0000 (14:21 +1000)]
initialise query_maximal_access here too
(This used to be commit
4b3af09450cf33c6785a3d8fddddc68047f2e388)
Andrew Tridgell [Thu, 24 Jul 2008 04:20:02 +0000 (14:20 +1000)]
make sure we initialise query_maximal_access
(This used to be commit
036f73d39a7ef882fd76afcd3c11eef483f6c308)
Andrew Tridgell [Thu, 24 Jul 2008 04:19:49 +0000 (14:19 +1000)]
fixed spelling error
(This used to be commit
341f64834e13cdbc7d4742a4652ae39b70a4231f)
Anatoliy Atanasov [Mon, 21 Jul 2008 14:04:49 +0000 (17:04 +0300)]
dsdb_create_prefix_mapping() implementation checks for existing prefix maping in ldb.
if one not found it creates a mapping for it and updates the prefixMap schema attribute in ldb.
(This used to be commit
bbe895db7144b192981fad9ab6bbd3ebacb8d299)
Anatoliy Atanasov [Wed, 23 Jul 2008 06:59:17 +0000 (09:59 +0300)]
Handle schema reloading request.
The ldif for that operation looks like this:
dn:
changetype: Modify
add: schemaUpdateNow
schemaUpdateNow: 1
It uses the rootdse's object functional attribute schemaUpdateNow.
In rootdse_modify() this command is being recognized and it is send as extended operation with DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID.
In the partition module its dispatched to the schema_fsmo module.
The request is processed in the schema_fsmo module by schema_fsmo_extended().
(This used to be commit
39f9184ddf215f2b512319211c0a05702218ef87)
Andrew Tridgell [Thu, 24 Jul 2008 01:48:27 +0000 (11:48 +1000)]
fixd a bug in the signal handling code - we could get phantom signals
(signum 64)
(This used to be commit
af7fb2e38ba27cf8058eb1cef1f96bbc7b19849f)
Michael Adam [Wed, 23 Jul 2008 14:23:31 +0000 (16:23 +0200)]
libnet_become_dc: send msDS_Behavior_Version == 3 (win2k8) in DsAddEntry
instead of version 2 (win2k3).
This makes the NET-API-BECOME-DC test work against windows 2003 and 2008.
Michael
(This used to be commit
a7bfa1fb1bc6fb8e412990b7ff4c3ce9bc55099d)
Michael Adam [Wed, 23 Jul 2008 15:54:25 +0000 (17:54 +0200)]
libnet_become_cd: add boolean option "become_dc:force krb5" to control krb5 auth.
This allows controlling whether krb5 auth is forced for the rpc bind in
libnet_become_dc. It defaults to "yes". For Windows 2000, DsGetNCChanges
only krb5 auth works due to a bug in Windows (it returns garbage - a
positive object count is returned along with first object == NULL).
For Windows 2008, on the other hand, krb5 auth does not work currently
due to the lack of support for AES keys. (Metze is working on that.)
Michael
(This used to be commit
af85aad8147b85a0b9ea2ccc66b8f04efdfe5cf3)