summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2009-07-01use a talloc_reparent in a very ugly wayAndrew Tridgell1-2/+11
this works around some terrible use of talloc in the libnet code
2009-07-01use the new talloc_reparent in two placesAndrew Tridgell2-2/+2
2009-07-01changes to remove the ambiguity in talloc_free() and talloc_steal() Andrew Tridgell2-26/+109
These changes follow from the discussions on samba-technical. The changes are in several parts, and stem from the inherent ambiguity that was in talloc_free() and talloc_steal() when the pointer that is being changes has more than one parent, via references. The changes are: 1) when you call talloc_free() on a pointer with more than one parent the free will fail, and talloc will log an error to stderr like this: ERROR: talloc_free with references at some/foo.c:123 reference at other/bar.c:201 reference at other/foobar.c:641 2) Similarly, when you call talloc_steal() on a pointer with more than one parent, the steal will fail and talloc will log an error to stderr like this: ERROR: talloc_steal with references at some/foo.c:123 reference at other/bar.c:201 3) A new function talloc_reparent() has been added to change a parent in a controlled fashion. You need to supply both the old parent and the new parent. It handles the case whether either the old parent was a normal parent or a reference The use of stderr in the logging is ugly (and potentially dangerous), and will be removed in a future patch. We'll need to add a debug registration function to talloc.
2009-07-01gensec_start now steals the auth_contextAndrew Tridgell1-1/+3
2009-07-01A rather strange varient of talloc_unlinkAndrew Tridgell1-1/+1
A dcerpc request may have a reference from a still completing async callback, but we now consider the request to be complete. We want to lose the main parent, leaving just the reference, if any.
2009-07-01another case that should use py_talloc_referenceAndrew Tridgell1-1/+1
2009-07-01use py_talloc_reference instead of py_talloc_importAndrew Tridgell1-1/+1
This is one of the few cases where we want the object to be owned by both the python object and C code
2009-07-01py_talloc_import now uses a steal, so this free is incorrectAndrew Tridgell1-1/+0
2009-07-01fixed use of reference in pytallocAndrew Tridgell2-3/+24
The previous code caused memory leaks, and also caused situations where talloc_free could be called on pointers with multiple parents The new approach is to have two functions: py_talloc_import : steals the pointer, so it becomes wholly owned by the python object py_talloc_reference: uses a reference, so it is owned by both python and C
2009-07-01use a talloc_unlink() as ops may have a referenceAndrew Tridgell1-1/+1
2009-07-01fixed the reference to the global_schemaAndrew Tridgell1-2/+3
2009-07-01removed a redundent talloc_stealAndrew Tridgell1-2/+0
2009-07-01fixed the use of talloc_steal in ntlmssp_server Andrew Tridgell1-3/+2
The previous use of talloc_steal could cause a steal of a pointer that had references. This ensures that doesn't happen
2009-07-01fixed rpc smb code to not reply on talloc_free being a function pointerAndrew Tridgell2-2/+13
The upcoming talloc_free/talloc_reference changes change talloc_free to be a macro. These two bits of code relied on it being a function pointer
2009-07-01[SAMBA 4 directory] Corrects the "systemFlags" attributesMatthias Dieter Wallnöfer7-32/+39
Set the values like Windows Server 2003 R2.
2009-07-01[SAMBA 4 directory] Adds the complete "objectclass path" to our self-created ↵Matthias Dieter Wallnöfer1-0/+4
DC object Found after some comparisons against Windows Server 2003 R2.
2009-07-01[SAMBA 4 directory] Adds the object version and "systemFlags" attribute to ↵Matthias Dieter Wallnöfer1-0/+2
the display specifiers The object version showed up in the Windows 2003 Server R2 AD. The "systemFlags" attribute has been set to the right value.
2009-06-30s3 docs: Add documentation for 'kerberos method' and 'dedicated keytab file' ↵Tim Prouty2-0/+54
parameters
2009-06-30Fix bug #6496 - MS-DFS: cannot follow multibyte char link name.SATOH Fumiyasu2-15/+39
consumed_ucs is the number of bytes of the UCS2 path consumed not counting any terminating null. We need to convert back to unix charset and count again to get the number of bytes consumed from the incoming path.
2009-06-30s3-netlogon: remove unneeded fstrings from netlogon server.Günther Deschner1-22/+12
Guenther
2009-06-30umount.cifs: don't build it by defaultJeff Layton2-9/+47
Now that the sanity checks for mount.cifs default to matching the behavior of /bin/mount, then there is virtually no need for umount.cifs. The only exception is when someone enables the loose setuid behavior in mount.cifs. If an unprivileged user mounts a share that isn't in /etc/fstab, then /bin/mount won't allow that user to unmount it. In that situation, umount.cifs will be necessary to allow unmounting the share. Signed-off-by: Jeff Layton <jlayton@samba.org> Acked-by: Steve French <smfrench@us.ibm.com>
2009-06-30Fix bug #6431 - local groups from 3.0 setups no longer found.Volker Lendecke1-8/+8
Search for groups without group suffix, group suffix is only used for new entries.
2009-06-30s3-spoolss: Bug #6512. Fix support for enumerating user forms.Günther Deschner1-5/+5
Found while testing Xerox WorkCentre 133 PCL driver, now also tested with torture test. Guenther
2009-06-30s4-smbtorture: Test for newly added form with enum call in RPC-SPOOLSS.Günther Deschner1-0/+45
Guenther
2009-06-30s4-smbtorture: remove trailing whitespace from RPC-SPOOLSS.Günther Deschner1-98/+98
Guenther
2009-06-30Rework the kerberos-notes.txt in order and formatDon Davis1-0/+803
This reworks the notes file to be less stream-of-consciousness and more task for porting, with a very particular focus on a potential port of Samba4 to use MIT Kerberos. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2009-06-30s4:ldb Allow rootdse module to build without ldb_private.hAndrew Bartlett3-2/+4
It seems quite reasonable to allow modules to re-initialise the set of cached DNs on the ldb context. Andrew Bartlett
2009-06-30s4: dsdb Avoid using the internal ldb_private.h headerAndrew Bartlett5-118/+122
This job is not complete (the partition module remains a unfinished task), but now we do use the private ldb headers much less. Andrew Bartlett
2009-06-30s4:heimdal Allow KRB5_NT_ENTERPRISE names in all DB lookupsAndrew Bartlett5-24/+35
The previous code only allowed an KRB5_NT_ENTERPRISE name (an e-mail list user principal name) in an AS-REQ. Evidence from the wild (Win2k8 reportadely) indicates that this is instead valid for all types of requests. While this is now handled in heimdal/kdc/misc.c, a flag is now defined in Heimdal's hdb so that we can take over this handling in future (once we start using a system Heimdal, and if we find out there is more to be done here). Andrew Bartlett
2009-06-30s4:kdc Only get the lp_ctx once for a LDB_fetch()Andrew Bartlett1-11/+18
2009-06-30Rework hdb-samba4 to remove useless abstractions.Andrew Bartlett1-84/+44
The function LDB_lookup_principal() has been eliminated, and it's contents spread back to it's callers. Removing the abstraction makes the code clearer. Also ensure we never pass unescaped user input to a LDB search function. Andrew Bartlett
2009-06-30s4:dsdb Explain the parsing steps for userPrincipalName cracknames callsAndrew Bartlett1-0/+4
2009-06-29s4-smbtorture: use torture_comment & torture_warning in RPC samr tests.Günther Deschner1-205/+206
Guenther
2009-06-29s3:build: check for external liblua, link lua statically if using internal libMichael Adam2-14/+42
So liblua is treated the same way as libtalloc and libtdb. Michael
2009-06-29s4-smbtorture: correctly test comment behaviour in RPC-SAMR-USERS against s3.Günther Deschner1-7/+4
Guenther
2009-06-29s3-pdb_tdb: give 'unknown_str' the proper name 'comment' and set comment in ↵Günther Deschner1-10/+15
passdb. pdb_{get,set}_comment were already existing in the API but were never used. Guenther
2009-06-29s3:pdb_ads: we need to make the fd for tldap/tsocket non-blockingStefan Metzmacher1-0/+2
metze
2009-06-29s3:fix build of old linux quota system and other unixes' quota implementationMichael Adam1-14/+14
By fixing the use of struct stat_ex. Michael
2009-06-29s3:lib/sysquotas: fix usage of SMB_STRUCT_STAT (struct stat_ex).Michael Adam1-3/+3
This fixes the build with quotas / configure time detection of sys_quota interface. Michael
2009-06-29lib/util: fix building tevent_ntstatus without config.hMichael Adam1-1/+0
(when called from places with "#define NO_CONFIG_H" set, such as configure) Michael
2009-06-29tsocket/bsd: also ask for TEVENT_FD_READ when we want to write into a stream ↵Stefan Metzmacher1-2/+9
socket Otherwise we would not notice a broken connection. metze
2009-06-29tsocket/bsd: more correctly check if the cached tevent_fd is still validStefan Metzmacher1-4/+12
I some cases the pointer value of tevent_context is the same again, if we do something like: ev1 = tevent_context_init(); ... fde = tevent_add_fd(ev1, fd, TEVENT_FD_READ...); ... talloc_free(ev1); ... ev2 = tevent_context_init(); if (ev1 == ev2) { /* this can happen! */ } if (tevent_fd_get_flags(fde) == 0) { /* this is always true */ } But the "talloc_free(ev1)" will set fde->event_ctx to NULL and tevent_fd_get_flags() will always return 0. metze
2009-06-29s3-selftest: add RPC-SAMR-MACHINE-AUTH to list of test to run against s3.Günther Deschner1-2/+3
Guenther
2009-06-29s4-smbtorture: add RPC-SAMR-MACHINE-AUTH test.Günther Deschner2-1/+486
This test talks to a DC as a joined workstation member - in the same way winbindd does, in particular the calls used in this test's query pattern will all request for SEC_FLAG_MAXIMUM_ALLOWED access_mask (which pretty much all of samba's client code does as well). In fact this test verifies that winbind can correctly talk to a samba dc using samr dcerpc calls. Guenther
2009-06-29s4-smbtorture: add torture_suite_add_machine_workstation_rpc_iface_tcase.Günther Deschner5-10/+65
Unlike torture_suite_add_machine_bdc_rpc_iface_tcase() which joins as a BDC (ACB_SRVTRUST) this joins as a member workstation (ACB_WSTRUST). Guenther
2009-06-29mount.cifs: don't pass text ro/rw options to kernelJeff Layton1-0/+2
/bin/mount strips off the ro/rw options after setting the MS_RDONLY flag appropriately. Make mount.cifs do the same thing. Signed-off-by: Jeff Layton <jlayton@samba.org>
2009-06-29Fix ndrdump to use a common setup_logging() APIAndrew Bartlett5-2/+29
By adding a new common setup_logging_stdout() API, we no longer need to abuse the ABI compatability between the different setup_logging() calls in Samba3 and Samba4's DEBUG() subsystems. The revert of 49a6d757b4d944cd22c91b2838beb83f04fbe1e9 works with this to fix bug 6211. Andrew Bartlett
2009-06-29Revert "s4:debug: make setup_logging() a bit more compatible with samba3"Andrew Bartlett1-1/+1
The problem is that the enum was previously a 'rachet', that is, it would only reset to a level higher than it was previouly set to. Changing the order broke file-based logging for our production sites. This reverts commit 49a6d757b4d944cd22c91b2838beb83f04fbe1e9.
2009-06-29Adds the impersonation level in ntcreatex requests to SAMBA 3 misc torture testMatthias Dieter Wallnöfer1-0/+4
Specifies the impersonation level according to the reporter commit in bug #6283
2009-06-29Fix bug 6514: net gives unhelpful "lp_load failed" when it's missing smb.confDavid Markey1-1/+1