Stefan Metzmacher [Fri, 1 Aug 2008 15:21:57 +0000 (17:21 +0200)]
heimdal: add missing file heimdal/lib/gssapi/mech/gss_pseudo_random.c
metze
(This used to be commit
3bd7e68a5cfe80733782367e327b570d04b21586)
Stefan Metzmacher [Fri, 1 Aug 2008 09:17:48 +0000 (11:17 +0200)]
build with the new heimdal version
(This used to be commit
3817d653faecb70bfafb850fe7d6e83aaed7e6d1)
Stefan Metzmacher [Fri, 1 Aug 2008 05:08:51 +0000 (07:08 +0200)]
heimdal: update to lorikeet-heimdal rev 801
metze
(This used to be commit
d6c54a66fb23c784ef221a3c1cf766b72bdb5a0b)
Stefan Metzmacher [Fri, 1 Aug 2008 09:16:14 +0000 (11:16 +0200)]
build: allow flex-2.34 together with bison-2.3
metze
(This used to be commit
8bd30a7b4392642ef5184f959d801716d2db20b2)
Stefan Metzmacher [Fri, 1 Aug 2008 14:10:06 +0000 (16:10 +0200)]
auth/ntlmssp: don't crash when the backend give no challenge
metze
(This used to be commit
c01fee80a79cd9e0f7bb295333bb03bd37328d05)
Stefan Metzmacher [Fri, 1 Aug 2008 13:53:01 +0000 (15:53 +0200)]
auth_server: fix the logic of server_get_challenge()
metze
(This used to be commit
699e3cdb52acdf2524347d8c053730306c579dd9)
Stefan Metzmacher [Fri, 1 Aug 2008 13:19:27 +0000 (15:19 +0200)]
auth_server: fix segfault reported by Julien Kerihuel <j.kerihuel@openchange.org>
metze
(This used to be commit
c2cc8ef943e8c2e02edb1eb20214de245cc6914c)
Stefan Metzmacher [Fri, 1 Aug 2008 07:20:46 +0000 (09:20 +0200)]
Revert "Start implementind domain trusts in our KDC."
This reverts commit
736ce50afd9da9b5fbc3db777fd5341dfa4b721a.
This breaks the build...
metze
(This used to be commit
afd07073b9caa4b5f7d2ad747e79afaec4203506)
Andrew Bartlett [Thu, 31 Jul 2008 13:17:20 +0000 (23:17 +1000)]
Update to a working trustAuthIncoming and trustAuthOutgoing parser.
This is based on the docs, as well as testing against a domain trust
in windows.
Clearly it needs to be more general - perhaps a non IDL parser?
Andrew Bartlett
(This used to be commit
816bb64a56a75d1eb5e879b4abf211af27243686)
Andrew Bartlett [Thu, 31 Jul 2008 11:23:48 +0000 (21:23 +1000)]
Print trustAuthOutgoing and trustAuthIncoming in RPC-DSSYNC
(This used to be commit
6673a6e62399c4956a44a06685aa91ce8145b92a)
Andrew Bartlett [Thu, 31 Jul 2008 00:51:59 +0000 (10:51 +1000)]
Use the cldap reply to avoid segfaulting in RPC-DSSYNC
Also don't fail the test if the server does not implement the NT4
changelog.
Andrew Bartlett
(This used to be commit
514d88580bee3bb17f1032262f5518e3ab2a349a)
Andrew Bartlett [Wed, 30 Jul 2008 23:07:57 +0000 (09:07 +1000)]
Don't fail if the domain has a trust already.
Andrew Bartlett
(This used to be commit
c2df7ffa6d67dd9381d10397c679746547cd5e17)
Andrew Bartlett [Wed, 30 Jul 2008 21:48:16 +0000 (07:48 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local
(This used to be commit
15d0951b74b46763024560f9cd012338473c5bc3)
Andrew Bartlett [Wed, 30 Jul 2008 21:47:01 +0000 (07:47 +1000)]
Start implementind domain trusts in our KDC.
Andrew Bartlett
(This used to be commit
736ce50afd9da9b5fbc3db777fd5341dfa4b721a)
Andrew Bartlett [Wed, 30 Jul 2008 21:45:30 +0000 (07:45 +1000)]
Update trustAuthInOutBlob in line with MS-ADTS 7.1.6.8.1
(This used to be commit
26c2a34dec26890230dfa86827804d8160061ce5)
Jelmer Vernooij [Wed, 30 Jul 2008 11:29:29 +0000 (13:29 +0200)]
Be more pythonic.
(This used to be commit
20d40e31942f96ca9d077e57c6dd4c1d38f79b4b)
Stefan Metzmacher [Mon, 28 Jul 2008 15:59:17 +0000 (17:59 +0200)]
Revert "gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes keys work"
This reverts commit
73964f069056f46f2f27fc690e42e5c91ae1fe19.
This breaks more than it gains:-( It seems to break the ncacn_np session key
metze
(This used to be commit
9678085f75b6cb0ed068e22f3d9f94247b200ce2)
Stefan Metzmacher [Mon, 28 Jul 2008 14:40:21 +0000 (16:40 +0200)]
rpc_server: remove unused variable
metze
(This used to be commit
c2186d5d60aa2b57ecafaa57f9fd41f2a6717046)
Stefan Metzmacher [Mon, 28 Jul 2008 14:11:30 +0000 (16:11 +0200)]
gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes keys work
SMB signing with aes doesn't work, but still works with
arcfour-hmac-md5, des-cbc-md5 and des-cbc-crc.
metze
(This used to be commit
73964f069056f46f2f27fc690e42e5c91ae1fe19)
Stefan Metzmacher [Mon, 28 Jul 2008 13:49:46 +0000 (15:49 +0200)]
libcli/smb2: the session key for SMB2 signing is truncated to 16 bytes
To make that work (as a client) with aes128 and aes256 krb5 keys
we need to use gsskrb5_get_subkey().
metze
(This used to be commit
0c6d988f2083067e1ac7b07a492f88cefd3ba906)
Stefan Metzmacher [Mon, 9 Jun 2008 19:57:05 +0000 (21:57 +0200)]
smb2srv: sign SMB2 Logoff replies
metze
(This used to be commit
2844e361730a6bc640ea89d0e10059deca1ca867)
Stefan Metzmacher [Mon, 9 Jun 2008 19:45:19 +0000 (21:45 +0200)]
smb2srv: correctly hold the signing state per session
metze
(This used to be commit
5b3ba3f3556e8031133128853cd2324ee3852aa1)
Stefan Metzmacher [Mon, 9 Jun 2008 19:57:41 +0000 (21:57 +0200)]
libcli/smb2: fix per session signing state
metze
(This used to be commit
8bc12dc77a59e792830d96e84a4e8d1b2c651505)
Stefan Metzmacher [Mon, 9 Jun 2008 19:41:55 +0000 (21:41 +0200)]
SMB2-CONNECT: remove reference to req->session before calling smb2_logoff_recv() on the invalid session
metze
(This used to be commit
93203e8e318dd10b9e7096e586187eb271d42134)
Stefan Metzmacher [Mon, 9 Jun 2008 19:41:06 +0000 (21:41 +0200)]
libcli/smb2: sign SMB2 Logoff requests
metze
(This used to be commit
35ee165b146b9157b0cff49e1139a0cb37d98926)
Andrew Bartlett [Mon, 28 Jul 2008 10:51:02 +0000 (20:51 +1000)]
We don't use EXTENSIBLEOBJECT any more.
(This used to be commit
4b137085c8b89773d4639372bbffd516a41dfc8f)
Andrew Bartlett [Mon, 28 Jul 2008 10:26:14 +0000 (20:26 +1000)]
Make it even clearer what to do next in the LDAP backend setup
(This used to be commit
bace931ad674b5071d53bf9c99c383f1d8957e1b)
Andrew Bartlett [Mon, 28 Jul 2008 10:18:17 +0000 (20:18 +1000)]
Always print the slapd startup command
(This used to be commit
b1d05e7d14c65133e8ab0ff9d41a26fa7e3d41d3)
Andrew Bartlett [Mon, 28 Jul 2008 08:39:37 +0000 (18:39 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-abartlet
(This used to be commit
486891bb5167034e54b7477ba09e8f5f914b93e4)
Stefan Metzmacher [Mon, 28 Jul 2008 07:29:42 +0000 (09:29 +0200)]
auth/credentials: explain why we need to the enctypes for the gssapi layer
metze
(This used to be commit
88970c4d4192635544cf63e79e929e9bb05ecb5f)
Andrew Bartlett [Sun, 27 Jul 2008 22:04:43 +0000 (08:04 +1000)]
Remove unused variable
(This used to be commit
31a303c099e26423160010c48b305434d4cbea25)
Andrew Bartlett [Sun, 27 Jul 2008 22:04:15 +0000 (08:04 +1000)]
Remove unused function and make sensitive directories private.
(This used to be commit
e23333d16397606d38e90684d2d916b5b967cde4)
Andrew Bartlett [Sun, 27 Jul 2008 22:02:18 +0000 (08:02 +1000)]
Fix warnings in new prefixMap code
(This used to be commit
b8770a4fd8408473593fa4c6600bce056183958d)
Jelmer Vernooij [Sun, 27 Jul 2008 17:57:27 +0000 (19:57 +0200)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into manpage
(This used to be commit
7e90cc197c4fb2884f368cd72f391d0d8016fb96)
Jelmer Vernooij [Sun, 27 Jul 2008 17:56:20 +0000 (19:56 +0200)]
Fix location of manpages.
(This used to be commit
6f5b4ef1d0380d265ce27c882072c759ce19c7c3)
Stefan Metzmacher [Fri, 25 Jul 2008 16:26:31 +0000 (18:26 +0200)]
gensec_gssapi: add support for signing RPC messages
metze
(This used to be commit
dc2847c0acb0adaede4db72a7517046b93221162)
Stefan Metzmacher [Fri, 25 Jul 2008 14:02:29 +0000 (16:02 +0200)]
lib/ldb/tools: allow -W and --realm when build from samba4
metze
(This used to be commit
0aa6d63ec571b0ca05fbfe14d2b4e9ba3e1082e9)
Stefan Metzmacher [Fri, 25 Jul 2008 14:00:50 +0000 (16:00 +0200)]
auth/credentials: use the same enctypes when getting a TGT and a TGS
metze
(This used to be commit
9fc5750156467f579ea8d7755987d091f5b579c2)
Stefan Metzmacher [Thu, 24 Jul 2008 08:00:20 +0000 (10:00 +0200)]
dsdb: add a comment about the parameter to DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID
metze
(This used to be commit
2f06fbe06be2e1b77ea013ddba853ce819e58e88)
Stefan Metzmacher [Thu, 24 Jul 2008 07:55:53 +0000 (09:55 +0200)]
dsdb/schema: make more clear where we create the value for the new prefix mapping
metze
(This used to be commit
c92eb8b776c17f12622837daeb1786862f380269)
Stefan Metzmacher [Thu, 24 Jul 2008 07:53:29 +0000 (09:53 +0200)]
dsdb/schema: dsdb_write_prefixes_to_ldb() should do the reverse of dsdb_read_prefixes_to_ldb()
metze
(This used to be commit
34ea9d4a0b1270a27412bf939d7e897a5d68d0a6)
Stefan Metzmacher [Fri, 25 Jul 2008 19:26:28 +0000 (21:26 +0200)]
dcerpc.idl: add DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN flag
metze
(This used to be commit
131a1cfdc9a1228d9263c77bcd31b05d2946fd50)
Stefan Metzmacher [Sat, 26 Jul 2008 18:38:20 +0000 (20:38 +0200)]
mamachinepw: add better error handling
metze
(This used to be commit
7ac424137f62ceacf44e477f4e3805267013005b)
Volker Lendecke [Mon, 19 May 2008 21:06:42 +0000 (23:06 +0200)]
Add "mymachinepw" to fetch our machine password out of secrets.ldb
(This used to be commit
4fbe16deb0e06e145f643568a699b80b431d4f42)
Stefan Metzmacher [Wed, 14 May 2008 07:47:18 +0000 (09:47 +0200)]
smbtorture: add --extra-user option
This can we used to pass additional credentials to torture tests
(it can be used multiple times.
metze
(This used to be commit
4d80dbfac27659046e0986a2af3d06999e2cb2f2)
Brad Hards [Fri, 25 Jul 2008 07:43:21 +0000 (17:43 +1000)]
Define HAVE_ASM_BYTEORDER at all times
(This used to be commit
396ea14732d667960091f4a2570341059914ecb6)
Andrew Bartlett [Fri, 25 Jul 2008 04:15:22 +0000 (14:15 +1000)]
Per feedback, remove epoch and ldconfig requires.
See https://bugzilla.redhat.com/show_bug.cgi?id=453083
(This used to be commit
97d02730e8fde56de27aeb51612a4777c2953c9f)
Andrew Bartlett [Fri, 25 Jul 2008 04:11:18 +0000 (14:11 +1000)]
Make a new define to ensure the accoc_group_id we use is always in common.
(This used to be commit
b62490e3e21b606b66e0737a403b0d170b64cddd)
Andrew Bartlett [Fri, 25 Jul 2008 01:58:51 +0000 (11:58 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local
(This used to be commit
b12dd8ee5443ebfc204d1684f541d68ffb351197)
Andrew Bartlett [Fri, 25 Jul 2008 01:58:24 +0000 (11:58 +1000)]
Try to avoid a memory leak if we re-set the global schema
However, try also not to pull a schema out from under a running ldb
session.
Andrew Bartlett
(This used to be commit
7cf9b9dd0bb35835a7c6e9897ea99951a33c63c7)
Andrew Bartlett [Thu, 24 Jul 2008 22:45:16 +0000 (08:45 +1000)]
Complain if we are told to use an ldap backend, without the type
(This used to be commit
e9c3c9ad8289ee48efa998ab6b486250dcd40b52)
Andrew Bartlett [Thu, 24 Jul 2008 22:44:00 +0000 (08:44 +1000)]
Clarify how we are doing the 'this is a rootdse query' check.
(This used to be commit
8dfba3160cc4bc518f3ad8570d104e5baae784ca)
Stefan Metzmacher [Thu, 24 Jul 2008 06:23:15 +0000 (08:23 +0200)]
hdb-ldb: fix the callers after drsblobs.idl changes
metze
(This used to be commit
1223cd17c79d130b46b0e0ccb0f6011c92441173)
Stefan Metzmacher [Thu, 24 Jul 2008 06:22:23 +0000 (08:22 +0200)]
password_hash: fix the callers after drsblobs.idl changes
metze
(This used to be commit
fac7c79afae05a88ecc2a63c8eb9f2fd53ab7ce6)
Stefan Metzmacher [Thu, 24 Jul 2008 06:20:06 +0000 (08:20 +0200)]
drsblobs.idl: unify the Primary:Kerberos and Primary:Kerberos-Newer-Keys structs
metze
(This used to be commit
4b79a7678571ac2f7d5f827913fdcb419f5d2e20)
Stefan Metzmacher [Thu, 24 Jul 2008 05:53:55 +0000 (07:53 +0200)]
drsblobs.idl: give some unknowns a meaning
metze
(This used to be commit
231e6f5ab2dc8a3e991a9872be252cffff6f14c6)
Andrew Tridgell [Thu, 24 Jul 2008 04:26:30 +0000 (14:26 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into v4-0-test
(This used to be commit
24309dbf4d9622fcfafa29ef98bc0459fdaa814b)
Andrew Tridgell [Thu, 24 Jul 2008 04:21:52 +0000 (14:21 +1000)]
we can't query the ACL on a new file till it exists!
(This used to be commit
4f6646f06988b1fb8be9e0c8ae833bb9792184af)
Andrew Tridgell [Thu, 24 Jul 2008 04:21:31 +0000 (14:21 +1000)]
initialise query_maximal_access here too
(This used to be commit
4b3af09450cf33c6785a3d8fddddc68047f2e388)
Andrew Tridgell [Thu, 24 Jul 2008 04:20:02 +0000 (14:20 +1000)]
make sure we initialise query_maximal_access
(This used to be commit
036f73d39a7ef882fd76afcd3c11eef483f6c308)
Andrew Tridgell [Thu, 24 Jul 2008 04:19:49 +0000 (14:19 +1000)]
fixed spelling error
(This used to be commit
341f64834e13cdbc7d4742a4652ae39b70a4231f)
Anatoliy Atanasov [Mon, 21 Jul 2008 14:04:49 +0000 (17:04 +0300)]
dsdb_create_prefix_mapping() implementation checks for existing prefix maping in ldb.
if one not found it creates a mapping for it and updates the prefixMap schema attribute in ldb.
(This used to be commit
bbe895db7144b192981fad9ab6bbd3ebacb8d299)
Anatoliy Atanasov [Wed, 23 Jul 2008 06:59:17 +0000 (09:59 +0300)]
Handle schema reloading request.
The ldif for that operation looks like this:
dn:
changetype: Modify
add: schemaUpdateNow
schemaUpdateNow: 1
It uses the rootdse's object functional attribute schemaUpdateNow.
In rootdse_modify() this command is being recognized and it is send as extended operation with DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID.
In the partition module its dispatched to the schema_fsmo module.
The request is processed in the schema_fsmo module by schema_fsmo_extended().
(This used to be commit
39f9184ddf215f2b512319211c0a05702218ef87)
Andrew Tridgell [Thu, 24 Jul 2008 01:48:27 +0000 (11:48 +1000)]
fixd a bug in the signal handling code - we could get phantom signals
(signum 64)
(This used to be commit
af7fb2e38ba27cf8058eb1cef1f96bbc7b19849f)
Michael Adam [Wed, 23 Jul 2008 14:23:31 +0000 (16:23 +0200)]
libnet_become_dc: send msDS_Behavior_Version == 3 (win2k8) in DsAddEntry
instead of version 2 (win2k3).
This makes the NET-API-BECOME-DC test work against windows 2003 and 2008.
Michael
(This used to be commit
a7bfa1fb1bc6fb8e412990b7ff4c3ce9bc55099d)
Michael Adam [Wed, 23 Jul 2008 15:54:25 +0000 (17:54 +0200)]
libnet_become_cd: add boolean option "become_dc:force krb5" to control krb5 auth.
This allows controlling whether krb5 auth is forced for the rpc bind in
libnet_become_dc. It defaults to "yes". For Windows 2000, DsGetNCChanges
only krb5 auth works due to a bug in Windows (it returns garbage - a
positive object count is returned along with first object == NULL).
For Windows 2008, on the other hand, krb5 auth does not work currently
due to the lack of support for AES keys. (Metze is working on that.)
Michael
(This used to be commit
af85aad8147b85a0b9ea2ccc66b8f04efdfe5cf3)
Michael Adam [Wed, 23 Jul 2008 13:34:45 +0000 (15:34 +0200)]
drsuapi: always set the pid field of the outgoing DsBindInfo to 0.
This is for debugging and informational purposes only.
The assignment is implementation specific.
(WSPP docs, sec. 5.35).
Michael
(This used to be commit
1f5704e2dee5900e8d1d87699b76f67c0e12854e)
Michael Adam [Wed, 23 Jul 2008 13:21:44 +0000 (15:21 +0200)]
libnet_unbecome_dc: teach unbecomeDC_drsuapi_bind_recv() DsBindInfo48.
..to work agains w2k8.
Michael
(This used to be commit
97e8d5813df19cae294b6de2a880606f0f8c2c59)
Michael Adam [Wed, 23 Jul 2008 13:18:57 +0000 (15:18 +0200)]
libnet_become_cd: teach becomeDC_drsuapi_bind_recv() DsBindInfo48.
To work with w2k8.
Michael
(This used to be commit
7d80fab912576923c7474d77b8ed960b01296914)
Michael Adam [Wed, 23 Jul 2008 12:07:06 +0000 (14:07 +0200)]
dsdb: teach dreplsrv_out_drsuapi_bind_recv() knowledge of DsBindInfo48.
To make it work against w2k8.
Michael
(This used to be commit
a8aea9274170a2b472c45c97a4904bd299d2a92e)
Stefan Metzmacher [Wed, 23 Jul 2008 07:35:19 +0000 (09:35 +0200)]
password_hash: add generation of the Primary:Kerberos-Newer-Keys blob
But it's still of by default until we now what triggers this generation.
It could be that the value is always generated but the KDC only
uses it when in a specific funtional level, but it could also
be that it's only generated in a specific functional level.
metze
(This used to be commit
08618bbd508ede0bb9e1922fae562cffdca41cbd)
Stefan Metzmacher [Tue, 22 Jul 2008 16:47:27 +0000 (18:47 +0200)]
hdb-ldb: try to find Primary:Kerberos-Newer-Keys and fallback to Primary:Kerberos
Now provide AES tickets if we find the keys in the supplementalCredentials attribute
metze
(This used to be commit
8300259f103f8cfe014988fad0f7ee0d49bb1ac2)
Stefan Metzmacher [Tue, 22 Jul 2008 10:28:07 +0000 (12:28 +0200)]
drsblobs.idl: add idl for Primary:Kerberos-Newer-Keys blob in supplementalCredentials
metze
(This used to be commit
97b7901afbccc9647ad2958d4cf12300de2655d1)
Stefan Metzmacher [Tue, 22 Jul 2008 16:54:21 +0000 (18:54 +0200)]
password_hash: order the supplementalCredentials Packages in the same order like windows
metze
(This used to be commit
ca9cd81a1798fb15195566422b3cad7c282fce89)
Stefan Metzmacher [Tue, 22 Jul 2008 16:27:36 +0000 (18:27 +0200)]
password_hash: split the generation of krb5 keys into a different function
metze
(This used to be commit
4ad73a0bf8952783d3d9a7339c0c4fd8ca28981a)
Stefan Metzmacher [Tue, 22 Jul 2008 16:32:49 +0000 (18:32 +0200)]
password_hash: simplify the logic if we have cleartext we always generate the hashes
metze
(This used to be commit
5edff84429ef0d03b47a438e18861d26c97e17b6)
Stefan Metzmacher [Wed, 23 Jul 2008 08:05:43 +0000 (10:05 +0200)]
password_hash: fix callers after idl change for package_PrimaryKerberos
metze
(This used to be commit
1bf552856f3a930c4716ceb73d9ba9adf7502d3d)
Stefan Metzmacher [Wed, 23 Jul 2008 06:53:34 +0000 (08:53 +0200)]
drsblobs.idl: fix unknowns in package_PrimaryKerberos idl
metze
(This used to be commit
da9ceb2bf17f964334d9317829d40483e2c04b10)
Stefan Metzmacher [Wed, 23 Jul 2008 11:41:51 +0000 (13:41 +0200)]
hdb-ldb: check the SUPPLEMENTAL_CREDENTIALS_SIGNATURE
metze
(This used to be commit
7219740ef434091617c6bb727374251987ff2a62)
Stefan Metzmacher [Wed, 23 Jul 2008 11:31:14 +0000 (13:31 +0200)]
password_hash: check the SUPPLEMENTAL_CREDENTIALS_SIGNATURE
metze
(This used to be commit
19b8c8e37bafab050ab61266c35006efada2947c)
Stefan Metzmacher [Wed, 23 Jul 2008 11:06:32 +0000 (13:06 +0200)]
drsblobs.idl: fix idl for supplementalCredentialsSubBlob
metze
(This used to be commit
24c5b10136f6e640832193aaf9e6d7e865c288bc)
Stefan Metzmacher [Wed, 23 Jul 2008 10:00:42 +0000 (12:00 +0200)]
password_hash: ignore reserved value, but still set it like windows does
metze
(This used to be commit
5b860572686167d0291161f6597f143e538e2f3a)
Stefan Metzmacher [Wed, 23 Jul 2008 11:53:03 +0000 (13:53 +0200)]
drsblobs.idl: rename unknown1 -> reserved
metze
(This used to be commit
9a70b2237d4fdd523edfbca0329ad35e71faf998)
Stefan Metzmacher [Tue, 22 Jul 2008 16:31:45 +0000 (18:31 +0200)]
password_hash: don't add zero padding as w2k8 also don't add it
metze
(This used to be commit
26e9169d454349795ad0bc64d7f65059541ab89e)
Stefan Metzmacher [Tue, 22 Jul 2008 16:46:24 +0000 (18:46 +0200)]
hdb-ldb: fix comment about padding
metze
(This used to be commit
ca28d05b11e602e0f98cda0e02f973562c199dc6)
Stefan Metzmacher [Tue, 22 Jul 2008 16:34:14 +0000 (18:34 +0200)]
hdb-ldb: fix crash bug in the error path
metze
(This used to be commit
ac02d6a0f765e3b66fb6796f129edb1a348ecd84)
Stefan Metzmacher [Tue, 22 Jul 2008 12:06:36 +0000 (14:06 +0200)]
RPC-DSSYNC: print 'supplementalCredentials' more verbosely
metze
(This used to be commit
6a7637b12e4a34915a53e81a0f47571da21fdc5a)
Stefan Metzmacher [Wed, 23 Jul 2008 12:41:16 +0000 (14:41 +0200)]
rpc_server: be more strict with the incoming assoc_group_id
Allow 0 and 0x12345678 only.
This fixes the RPC-HANDLES test.
metze
(This used to be commit
c123e597cc84685abf2b0d3564e1a26d80bbef2f)
Michael Adam [Wed, 23 Jul 2008 09:06:50 +0000 (11:06 +0200)]
smbtorture: add a warning for unknown BindInfo length to the RPC-DSSYNC test
Michael
(This used to be commit
7ee99105ea3a50d8ee2c83ecd39e834ed9efb98c)
Michael Adam [Wed, 23 Jul 2008 09:05:24 +0000 (11:05 +0200)]
smbtorture: add support for the DSBindInfo48 to the RPC-DSSYNC test.
Michael
(This used to be commit
67a99e445871861945fd0a45784cffb358bdccf3)
Stefan Metzmacher [Thu, 17 Jul 2008 11:36:59 +0000 (13:36 +0200)]
libnet/become_dc: add a comment and explain why it's important to specify krb5
metze
(This used to be commit
26d1f9366d8611af1a69095b4cede2d2c95c982d)
Andrew Bartlett [Wed, 23 Jul 2008 06:20:07 +0000 (16:20 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-abartlet
(This used to be commit
ae311d89d2d477b235a6a9294a8bb463ed0a8c05)
Andrew Bartlett [Wed, 23 Jul 2008 06:19:54 +0000 (16:19 +1000)]
The SMB session key must not be more than 16 bytes in SAMR (and
presumably LSA).
Tests show that Vista requires the sesion key to be truncated for a
domain join.
Andrew Bartlett
(This used to be commit
af629a3738298d27eb2dbecf466ceb503cec9638)
Andrew Bartlett [Wed, 23 Jul 2008 06:15:46 +0000 (16:15 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local
(This used to be commit
532ccbbe7aa360440f455dfa136f425b9996e998)
Andrew Bartlett [Wed, 23 Jul 2008 06:15:43 +0000 (16:15 +1000)]
Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-abartlet
(This used to be commit
a93b20b85b7b35965c428f1543cb7bbe96e16d42)
Andrew Bartlett [Wed, 23 Jul 2008 06:14:20 +0000 (16:14 +1000)]
Remove the 'accoc_group_id' check in the RPC server.
This check breaks more than it fixes, and while technically not
correct, is the best solution we have at this time. Otherwise,
SCHANNEL binds from WinXP fail.
Andrew Bartlett
(This used to be commit
f8628fa330abcd50923d995d5bda1f4811582ea9)
Andrew Bartlett [Wed, 23 Jul 2008 03:49:00 +0000 (13:49 +1000)]
Explain where some other OIDs are allocated.
This is an odd place for an OID registry - we perhaps need a central
wiki page.
Andrew Bartlett
(This used to be commit
1c909973977ae117703c1ccf7589acc4625e76e5)
Michael Adam [Tue, 22 Jul 2008 13:35:23 +0000 (15:35 +0200)]
Change occurrences of the u1 member of DsBindInfo* to pid after idl change.
Michael
(This used to be commit
b91bbc5fe4a47e5823be6be5f2f203f1f14105de)
Michael Adam [Tue, 22 Jul 2008 13:33:26 +0000 (15:33 +0200)]
drsuapi.idl: change the u1 field in DsBindInfo* to "pid".
According to the WSPP docs, section 5.35,
this is the "process identifyer" of the client.
It is meant for informational and debugging purposes
only and its assignment is implementation specific.
Michael
(This used to be commit
579306eb5b58b6c1142b3c489e4bcf6da50810d6)
Michael Adam [Tue, 22 Jul 2008 11:07:55 +0000 (13:07 +0200)]
drsuapi.idl: add drsuapi_SupportedExtensionsExt bitfield.
This knowledge is obtained from the wspp-docs (section 5.35).
Michael
(This used to be commit
f5afb695045b1a2f3b8c00a4d82d40e8e50726c9)
git.samba.org / tprouty / samba.git / log