summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2010-06-28s4/dsdb: Fixed partition_search() not to pass special DN's to LDAP backend.Endi S. Dewata1-6/+8
Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2010-06-28s4/auth: Fixed authsam_expand_nested_groups() to find entry SID if not ↵Endi S. Dewata1-1/+8
available in the DN. Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2010-06-28s3: Make some routines static in smbldapVolker Lendecke2-4/+2
2010-06-28s4:repl_meta_data LDB module - fix counter typeMatthias Dieter Wallnöfer1-1/+1
2010-06-28s4:acl LDB module - fix counter typeMatthias Dieter Wallnöfer1-1/+2
2010-06-28s4:dcesrv_drsuapi.c - fix a counter variableMatthias Dieter Wallnöfer1-2/+1
2010-06-28s4:selftest - also "rpc.samr.users.privileges" does work nowMatthias Dieter Wallnöfer1-1/+0
2010-06-28s4:lsa RPC server - Fix up "dcesrv_lsa_DeleteObject"Matthias Dieter Wallnöfer1-3/+6
- Return always "NT_STATUS_OK" on success - Remove "talloc_free"s on handles since the frees are automatically performed by the DCE/RPC server code
2010-06-28s4:knownfail - "pwdLastSet" test does work nowMatthias Dieter Wallnöfer1-1/+0
2010-06-28s4:torture/rpc/samr.c - test_SetPassword_LastSet - introduce the delays also ↵Matthias Dieter Wallnöfer1-1/+2
for s4
2010-06-28s4:torture - SAMR password tests - activate support for password sets on ↵Matthias Dieter Wallnöfer1-22/+17
level "18" and "21"
2010-06-28s4:selftest - activate the lanman password changesMatthias Dieter Wallnöfer1-0/+1
This is needed for a working "OemChangePasswordUser2" operation.
2010-06-28s4:dcesrv_samr_SetUserInfo - implement right "pwdLastSet" behaviourMatthias Dieter Wallnöfer1-1/+72
Behaviour as the torture SAMR passwords tests show.
2010-06-28s4:dcesrv_samr_SetUserInfo - deny operations when "fields_present" is 0Matthias Dieter Wallnöfer1-0/+9
Taken from s3
2010-06-28s4:dcesrv_samr_SetUserInfo - port the "SAMR_FIELD_LAST_PWD_CHANGE" check ↵Matthias Dieter Wallnöfer1-0/+8
from s3 to s4
2010-06-28s4:dcesrv_samr_SetUserInfo - implement password set level 21Matthias Dieter Wallnöfer1-0/+33
2010-06-28s4:dcesrv_samr_SetUserInfo - implement case 18 which allows to reset the ↵Matthias Dieter Wallnöfer1-0/+10
user password
2010-06-28s4:OemChangePasswordUser2 - return "NT_STATUS_WRONG_PASSWORD" when we ↵Matthias Dieter Wallnöfer1-1/+1
haven't activated the the lanman auth This is what s3 does.
2010-06-28s4:samr_password.c - add a function which sets the password through ↵Matthias Dieter Wallnöfer1-0/+48
encrypted password hashes Used for password sets on "samr_SetUserInfo" level 18 and 21.
2010-06-28s4-smbtorture: fix typo.Günther Deschner1-1/+1
Not my day... Guenther
2010-06-28s4:torture/rpc/samr.c - test_SetPassword_LastSet - fix "pwdLastSet" testMatthias Dieter Wallnöfer1-33/+31
- Remove superflous checks (on level 18, 24, 26 we do always have "pwdLastSet" resets if "password_expired" > 0) - Fixed some bugs Signed-off-by: Günther Deschner <gd@samba.org>
2010-06-28s4-smbtorture: add trustDomainPasswords blob test to LOCAL-NDR testsuite.Günther Deschner1-0/+64
Our parsing of this struct is incorrect atm. and apparently also causes the s4 server to crash. Thanks to Sumit Bose <sbose@redhat.com> for providing the auth data retrieved from a w2k3 domain.msc operation. Guenther
2010-06-28s3-registry: missed one perflib keyname delimiter.Günther Deschner1-1/+1
Guenther
2010-06-28s3: More cleanup in winbindd_ads.c:query_userVolker Lendecke1-13/+10
We can't ads_msgfree after the ads struct has been killed. Do early returns.
2010-06-28s3: Fix a valgrind errorVolker Lendecke1-2/+1
nss_get_info_cached does not necessarily fill in gid
2010-06-28s3: Re-arrange winbindd_ads.c:query_userVolker Lendecke1-23/+24
We can't access the LDAP message after nss_get_info_cached has potentially destroyed the ads_struct
2010-06-28s3: free -> SAFE_FREEVolker Lendecke1-1/+1
2010-06-28s3: Do an early TALLOC_FREEVolker Lendecke1-2/+5
2010-06-28s3-registry: fix printing keyname delimiter.Günther Deschner1-8/+8
Guenther
2010-06-28s3-registry: fix perfmon keyname delimiter.Günther Deschner1-2/+2
Guenther
2010-06-28s3-net: Make sure that the data blob is initialized.Andreas Schneider1-0/+2
Found by clang-analyzer.
2010-06-28s3-eventlog: Fixed the keyname delimiter for the registry key.Andreas Schneider1-1/+1
2010-06-28s3-registry: Fixed keyname delimiter in KEY_CURRENT_VERSION_NORM.Andreas Schneider1-1/+1
2010-06-28s3-smbd: Make sure that status is initialized when used.Andreas Schneider1-1/+1
Found by clang-analyzer.
2010-06-28s3-lanman: Make sure count is not used uninitialized if we jump to out.Andreas Schneider1-1/+1
Found by clang-analyzer.
2010-06-28s3-vfs: Make sure that retval isn't used uninitialized.Andreas Schneider1-1/+1
Found by clang-analyzer.
2010-06-28s3-passdb: Make sure dn is initialized and don't free it.Andreas Schneider1-3/+1
dn is just a pointer to a memory which hasn't been duplicated. Found by clang-analyzer.
2010-06-28s3-passdb: Make sure we don't call free on a garbage pointer.Andreas Schneider1-1/+1
Found by clang-analyzer.
2010-06-28s3-lanman: Make sure that job_info is not undefined.Andreas Schneider1-1/+1
Found by clang-analyzer.
2010-06-28s3-nmbd: Leave the sync function if there are no syncs.Andreas Schneider1-0/+5
Found by clang-analyzer.
2010-06-28s3-libsmb: Make sure that finfo is initialized.Andreas Schneider1-0/+2
Found by clang-analyzer.
2010-06-28s3-eventlog: make sure _eventlog_OpenEventLogW fails when we cannot open the ↵Günther Deschner1-1/+4
registry key. Guenther
2010-06-28s3: Fix some valgrind errorsVolker Lendecke1-19/+36
Essentially the same change as 15297ee, this time for the client side. Günther, Andrew B, please check! Thanks, Volker
2010-06-28s3-passdb: Make sure that we don't assign garbage.Andreas Schneider1-1/+1
2010-06-28librpc: Use switch in GUID_from_data_blob().Andreas Schneider1-7/+16
2010-06-28nss_wrapper: Fixed a possible NULL pointer problem.Andreas Schneider1-1/+1
2010-06-28s4:ldap_server: don't start if we can't bind to port 389Stefan Metzmacher1-1/+4
metze
2010-06-28Implementation of self membership validated right.Nadezhda Ivanova3-6/+234
When this right is granted, the user can add or remove themselves from a group even if they dont have write property right.
2010-06-28s4/test: Run DrsDeleteObjectTestCase as part of S4 testingKamen Mazdrashki1-0/+3
I put this test in the end of the list of tests as it runs with 'vampire_dc' environment running. Currently there are tests that are failing when we have 2 DCs constantly replicating in the test environment (this, of course, should be fixed in the near future)
2010-06-28s4/drs: re-implement 'renaming' object replicationKamen Mazdrashki1-18/+53
We should rename objects only after we make sure, that changes on the partner DC are newer than what we have. This fixes a bug, when we have following situation with 2 DCs: - we have an object O on the two DCs - we rename (delete) object O on DC1 - DC1 replicates from DC2 In the above scenario, object O will be renamed back to its original name (i.e. it will be restored). Now, we check that DC2 state is older than what we have, so nothing happens with object's DN.