summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2009-11-12s4:dsdb/schema Allow a schema set when bound against a remote LDAP serverAndrew Bartlett1-3/+3
2009-11-12s4:ldb Don't segfault if we somehow get an unknown extended dn elementAndrew Bartlett1-0/+8
2009-11-12s4:ldb Change ldb_request_add_control to the normal 'for loop' patternAndrew Bartlett1-2/+1
2009-11-12s4:torture Convert RPC-DSSYNC test to use LDB rather than raw LDAPAndrew Bartlett1-49/+28
(This should make it easier to do more 'compare DRS with LDAP' operations, as LDB is an easier interface to program.) Andrew Bartlett
2009-11-12NET-API-BECOME-DC: resolve the host name to an address before callingStefan Metzmacher1-2/+16
libnet_BecomeDC and libnet_UnbecomeDC() We're supposed to pass in source_dsa_address... metze
2009-11-12s4:dsdb Add expected value tests for most DRS syntax conversionsAndrew Bartlett4-8/+159
I've left out those for which I could not find an expected value in my default Windows 2003 server's database, and the values that rely on the current prefix map at the time. Andrew Bartlett
2009-11-12s4:Fix regression in dsdb_dn code - all parses of the DN would be rejectedAndrew Bartlett1-2/+6
This is most likely the cause of the DRS replication failures I observed with my changes. Andrew Bartlett
2009-11-12s4:provision Add C binding to get at the generate schemaAndrew Bartlett3-0/+86
This will allow us to do local tests against that schema
2009-11-12s4:provision Remove unused 'sambadn' parameterAndrew Bartlett2-10/+4
2009-11-12s4:dsdb/repl Split the 'convert' or 'commit' stages in the DRS importAndrew Bartlett4-95/+125
This will allow us in future to do tests on the LDB values we generate from the DRS replication. Andrew Bartlett
2009-11-12s4:dsdb/schema Simplify schema loading from ldb messagesAndrew Bartlett3-115/+83
It turns out that we always add the class/attribute to the schema.
2009-11-12s4:vampire Print error message when we fail on the CLDAP pingAndrew Bartlett1-2/+7
Andrew Bartlett
2009-11-12s4:dsdb Cosmetic fixes found by metze in review of dsdb_dn changesAndrew Bartlett3-30/+38
These changes include reworking the code to call ldb_module_get_ctx() less often (avoid the function calls, particularly during the step into a complex function). Andrew Bartlett
2009-11-12s4:dsdb Ensure we allow 'odd' lengths for DN+StringAndrew Bartlett1-5/+5
(Found in a code review by metze) Andrew Bartlett
2009-11-12s4:ldb Add Well Known GUID (WKGUID) tests to ldap.pyAndrew Bartlett1-0/+17
2009-11-12s4:dsdb Add extensive tests for the behaviour of dsdb_dnAndrew Bartlett3-2/+363
2009-11-12s4:ldb Remove DN+Binary code from the core ldb_dnAndrew Bartlett1-256/+6
This is now in dsdb_dn. Removing this to a specific wrapper avoids a number of bugs where Binary DNs were being handled incorrectly. This reverts much of tridge's commit fd22e0304782e20b9bbb29464b6c745d409ff4c6 Andrew Bartlett
2009-11-12s4:dsdb Use new dsdb_dn code in LDB modules and Samba4 schemaAndrew Bartlett4-64/+99
This converts the code from using the binary DN code in ldb_dn to using a special Samba-specfic wrapper around ldb_dn. We also use the dsdb_dn code for DN+Binary and DN+String comparisons (changed from treating them as Binary blobs) Andrew Bartlett
2009-11-12s4:ldb-samba Use new ldb_any_comparison helper function in ldb-sambaAndrew Bartlett1-41/+5
2009-11-12s4:dsdb Add new dsdb_dn to handle DN+Binary and DN+StringAndrew Bartlett4-1/+343
This aims to replace (and is based on) the code in ldb_dn.c. It is however much stricter in the DNs it will accept. Andrew Bartlett
2009-11-12s4:ldb Add a helper function for 'canonicalise' both strings base comparesAndrew Bartlett2-0/+33
This will help simplify boilerplate comparison functions where we don't have a shortcut way to compare. Andrew Bartlett
2009-11-12lib/util Split data_blob_hex_string() into upper and lowerAndrew Bartlett11-16/+39
Rather than have a repeat of the bugs we found at the plugfest where hexidecimal strings must be in upper or lower case in particular places, ensure that each caller chooses which case they want. This reverts most of the callers back to upper case, as things were before tridge's patch. The critical call in the extended DN code is of course handled in lower case. Andrew Bartlett
2009-11-11Second part of bugfix for 6865 - acl_xattr module: Has dependency that ↵Jeremy Allison5-16/+17
inherit acls = yes or xattrs are removed. We also need dos filemode = true set as well. Jeremy.
2009-11-11Fix bug 6878 - Cannot change ACL's inherit flag.Jeremy Allison1-44/+108
Based on a patch submitted by Tsukasa Hamano <hamano@osstech.co.jp>, this is a change in the POSIX ACL mapping to deal with the lossy mapping for directory ACE entries: We have a lossy mapping: directory ACE entries CREATOR_OWNER ------\ (map to) +---> SMB_ACL_USER_OBJ owning sid ------/ CREATOR_GROUP ------\ (map to) +---> SMB_ACL_GROUP_OBJ primary group sid --/ on set. And on read of a directory ACL SMB_ACL_USER_OBJ ----> CREATOR_OWNER SMB_ACL_GROUP_OBJ ---> CREATOR_GROUP. Deal with this on set by duplicating owning sid and primary group sid ACE entries into the directory ACL. Jeremy.
2009-11-11mount.cifs: get rid of CONST_DISCARDJeff Layton1-4/+3
Apparently, we need to strip the "const" attribute off of the mnt_fstype before passing it to addmntent to prevent a (somewhat bogus) compiler warning. Rather than just stripping off the "const" attribute, clarify the code by declaring a new non-const char pointer that points to the same string. We can also use that same pointer in the mount(2) call too. Signed-off-by: Jeff Layton <jlayton@redhat.com> Acked-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2009-11-11s3/docs: Document "enable spoolss".Karolin Seeger1-0/+10
Karolin
2009-11-11s3:vfs_fs_capabilities: fix a debug messageMichael Adam1-1/+1
Michael
2009-11-11* install setup/display-specifiers files which are needed by provision scriptTAKEDA Yasuma1-0/+2
Signed-off-by: TAKEDA Yasuma <yasuma@osstech.co.jp>
2009-11-10s3: Convert libsmb/cli_message to the async APIVolker Lendecke3-142/+372
2009-11-10s4:dcesrv_samr - Add more checks for invalid levelsMatthias Dieter Wallnöfer1-3/+27
Add more checks on valid levels, mark unimplemented ones as "UNSUPPORTED" and otherwise as "INVALID_INFO_CLASS" to be safe.
2009-11-10Fixes for some tests not eorking against Windows or Samba.Nadezhda Ivanova1-12/+8
2009-11-10s3-rpc_client: make sure cli_rpc_pipe_open_schannel() does not always return ↵Günther Deschner1-1/+3
NT_STATUS_OK. Guenther
2009-11-10s3-samr: implement _samr_ValidatePassword().Günther Deschner1-10/+118
Guenther
2009-11-10s3-chgpasswd: split out a check_password_complexity() function.Günther Deschner2-22/+45
Guenther
2009-11-10s4-smbtorture: strip trailing whitespace in RPC-SAMR.Günther Deschner1-2/+2
Guenther
2009-11-10README.Coding: Fix typos.Matt Kraai1-7/+7
2009-11-09Fix bug 6880 - cannot list workgroup serversJeremy Allison1-5/+14
reported by Alban Browaeys <prahal@yahoo.com> with fix. Revert 2e989bab0764c298a2530a2d4c8690258eba210c with extra comments - this broke workgroup enumeration. Jeremy.
2009-11-09s3-netlogon: enable RPC-NETLOGON-ADMIN test against s3.Günther Deschner2-5/+25
Guenther
2009-11-09s4-smbtorture: re-arrange netlogon LogonControl test.Günther Deschner2-13/+65
The LogonControl tests now are split out to a new RPC-NETLOGON-ADMIN test that tests the behaviour of that call when called by user, dc or workstation. Guenther
2009-11-09s3: Try to avoid dns searches with an empty siteVolker Lendecke1-1/+1
2009-11-09s3-param: fix set_inherit_acls().Günther Deschner1-0/+2
Jeremy, please check. Guenther
2009-11-09pidl: Fix selftest after s3 code changedVolker Lendecke1-59/+27
2009-11-09s4-samdb: remove the rDN size constraint of 64Andrew Tridgell2-4/+14
This size constraint is not correct in it's current form, as windows does send us rDN values for CN with lengths longer than 64. Once we know how this constraint really works we can add it back in.
2009-11-09s4-hdb: go back to a separate samdb for the KDCAndrew Tridgell1-1/+16
The change to use a common system_session broke replication as the KDC forces CRED_DONT_USE_KERBEROS on session->credentials, which is shared with other parts of the system. This should be fixed once we confirm whether the ldap backend actually relies on CRED_DONT_USE_KERBEROS
2009-11-08Revert "s3: Do not directly reference the ndr_table_* in rpcclient"Volker Lendecke19-662/+203
This reverts commit 70c698fd547c4bc19cf77693608bbb34acac40b5.
2009-11-08Revert "s3: Do not reference ndr_table_<pipe> in the cli_ routines directly"Volker Lendecke56-1404/+1379
This reverts commit daa964013bc5d036f4da571ce22c0052ef40943a.
2009-11-08Revert "s3: Consolidate getting the name out of a pipes_struct"Volker Lendecke4-39/+60
This reverts commit 9621306351cdb469ef393a6d8cbeea456bc4bd9f.
2009-11-08Revert "s3: Do not reference the ndr_tables in the server calls directly"Volker Lendecke21-655/+646
This reverts commit 98fb71782e05ae72cd6abeb38b6e0b96a50c1761.
2009-11-08Revert "s3: Do not reference ndr_table when calling rpc_srv_register"Volker Lendecke20-27/+23
This reverts commit 494b2aff8826947e3bd556aecb175746163da485.
2009-11-08Revert "s3: Make run_rpc_command take strings instead of a ndr_interface_table"Volker Lendecke11-261/+176
This reverts commit 53f2a1595e76db9fe1b42db65b51895b73365993.