Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2009-10-18 | s4:dcerpc_netlogon - unify the two workstation object lookups (DNS hostname ↵ | Matthias Dieter Wallnöfer | 1 | -20/+26 | |
and supported encryption types) This is simply for better performance (no functional change). | |||||
2009-10-18 | s4:ldb_msg - Use LDB constants on results | Matthias Dieter Wallnöfer | 1 | -5/+7 | |
2009-10-18 | s4:ldb_ldap - Fix intendation | Matthias Dieter Wallnöfer | 1 | -8/+8 | |
2009-10-18 | s4-test: the ldap secdesc test is expected to fail for now | Andrew Tridgell | 1 | -0/+1 | |
Nadya, if this is not correct and you think this should be passing already the please let me know. When I looked over it, it doesn't look like it has a chance of passing until your acl module is in place and enabled by default. | |||||
2009-10-18 | s4-test: SMB2 oplocks in s4 are a mess | Andrew Tridgell | 1 | -0/+1 | |
I don't have time to fix these right now, and as we don't advertise SMB2 by default I'll mark it as a known failure till we start enabling SMB2 by default. | |||||
2009-10-18 | s4: spelling error | Andrew Tridgell | 1 | -1/+1 | |
2009-10-18 | s4-torture: fixed the streams tests for Samba4 | Andrew Tridgell | 2 | -40/+46 | |
In some cases we were not doing streams tests on s4 that we should. In others, we were calling tests that are known to fail on s4. Some of those are a bit puzzling. | |||||
2009-10-18 | s4-streams: fixed handling of stream rename and overwrite | Andrew Tridgell | 3 | -9/+21 | |
2009-10-18 | s4-pvfs: rename with full name gives SHARING_VIOLATION | Andrew Tridgell | 1 | -1/+3 | |
2009-10-18 | s4-pvfs: when reporting the file name, don't include the :$DATA suffix | Andrew Tridgell | 1 | -0/+10 | |
2009-10-18 | s4-pvfs: the STREAM_INFORMATION calls don't need any access flags | Andrew Tridgell | 1 | -0/+5 | |
2009-10-18 | s4-pvfs: fixed update of stream sizes | Andrew Tridgell | 1 | -1/+1 | |
The data_blob_free() was changing the size we set the stream to | |||||
2009-10-17 | Fix posix_unlink test. Was doing grep without quotes around the | Jeremy Allison | 1 | -3/+4 | |
target string. Jeremy. | |||||
2009-10-18 | s4-pvfs: more fixes for ACLs on file creation | Andrew Tridgell | 1 | -11/+12 | |
The passed in SD is not used to limit the access mask allowed on file create. | |||||
2009-10-18 | s4-smb2: fixed SMB2 find commands | Andrew Tridgell | 1 | -2/+2 | |
The change to check for invalid \ prefix on SMB2 paths broke the internal SMB2 code. | |||||
2009-10-18 | s4-pvfs: change the handling of access checking on create | Andrew Tridgell | 4 | -60/+124 | |
Previously when a file was created, we produces the resulting access mask based on an ACL check against the parent. This change means we now calculate the inherited ACL much earlier, and produce the resulting access mask from that ACL, or the user supplied ACL. | |||||
2009-10-18 | smb2-torture: samba4 allows SEC_FLAG_SECURITY to be used with privileges | Andrew Tridgell | 1 | -0/+2 | |
2009-10-18 | s4: fixed howto for new binary name | Andrew Tridgell | 1 | -5/+5 | |
2009-10-17 | Fix the smbtorture4 build. root_fid is a "union smb_handle". tridge | Jeremy Allison | 1 | -1/+1 | |
please check. Jeremy. | |||||
2009-10-17 | Trying to find out why the posix_unlink test build farm is still failing even | Jeremy Allison | 1 | -1/+1 | |
though we're now successfully deleting the symlink. Jeremy. | |||||
2009-10-17 | Merge branch 'master' of ssh://jra@git.samba.org/data/git/samba | Jeremy Allison | 580 | -34455/+38776 | |
2009-10-17 | s3:winbind: Move fillup_pw_field() as static to wb_fill_pwent.c | Volker Lendecke | 3 | -47/+47 | |
2009-10-17 | s4-smbserver: removed bogus initialisation of two union arms | Andrew Tridgell | 2 | -2/+0 | |
Thanks to Metze for spotting this. | |||||
2009-10-17 | s4-pvfs: when uwrap is enabled, ignore chown errors | Andrew Tridgell | 1 | -0/+3 | |
chown is expected to fail under uwrap | |||||
2009-10-17 | s4-torture: fixed the default ACL for s4 | Andrew Tridgell | 1 | -13/+41 | |
s4 returns group and world ACEs in the default acl, based on unix permissions | |||||
2009-10-17 | s4-torture: minor debugging enhancements | Andrew Tridgell | 1 | -3/+3 | |
2009-10-17 | s4-schema: We should not need Samba4TopExtra now | Andrew Tridgell | 1 | -23/+0 | |
The last attribute this contained was 'privilege' which is now gone | |||||
2009-10-17 | s4-pvfs: don't auto-apply privilege bits in unix acl handling either | Andrew Tridgell | 1 | -7/+11 | |
2009-10-17 | s4-acl: SEC_FLAG_MAXIMUM_ALLOWED doesn't auto-apply privilege access masks | Andrew Tridgell | 1 | -6/+2 | |
2009-10-17 | s4-torture: the BASE-CREATEX_ACCESS test is broken for non-administrators | Andrew Tridgell | 1 | -0/+1 | |
See my msg to samba-technical about this test and privilege testing. | |||||
2009-10-17 | s4-torture: cleanup after the MAXIMUM_ALLOWED test | Andrew Tridgell | 1 | -0/+1 | |
2009-10-17 | s4-pvfs: use privileges rather than "uid == 0" in unix access check | Andrew Tridgell | 1 | -6/+12 | |
This makes the unix access check much closer to the full ACL check | |||||
2009-10-17 | s4-security: honor more of the privilege access bits | Andrew Tridgell | 1 | -4/+12 | |
2009-10-17 | s4-torture: add a special check for administrators and privileges | Andrew Tridgell | 4 | -18/+57 | |
lsa privileges calls don't expand groups. darn. | |||||
2009-10-17 | s4-lsasrv: make sure only admins can alter privileges | Andrew Tridgell | 1 | -0/+6 | |
2009-10-17 | s4-provision: added the default privileges db | Andrew Tridgell | 2 | -0/+99 | |
privileges are now stored in a separate database | |||||
2009-10-17 | s4-provision: removed the old privilege attributes | Andrew Tridgell | 2 | -53/+14 | |
Our schema is getting a bit cleaner :-) | |||||
2009-10-17 | s4-torture: show the sid we are basing privilege tests on | Andrew Tridgell | 1 | -2/+6 | |
2009-10-17 | s4-privileges: moved privileges to private/privilege.ldb | Andrew Tridgell | 4 | -38/+70 | |
We were storing privileges in the sam, which was OK when we were a standalone DC, but is no good when we replicate with a windows DC. This moves the privileges to a separate (local) database | |||||
2009-10-17 | added NT_STATUS_NOT_OK_RETURN_AND_FREE() | Andrew Tridgell | 1 | -0/+7 | |
Try to make it a bit easier to avoid leaks in common code | |||||
2009-10-16 | Add comment explaining about symlink following & posix. | Jeremy Allison | 1 | -1/+6 | |
Jeremy. | |||||
2009-10-16 | Last 2 VFS_STAT -> LSTAT fixes I can see in the modules code. | Jeremy Allison | 2 | -2/+14 | |
Jeremy. | |||||
2009-10-16 | Fix one missing STAT -> LSTAT with POSIX pathnames in vfs_xattr_tdb.c. ↵ | Jeremy Allison | 2 | -1/+9 | |
Caught by the torture tester. I love unit tests :-). Jeremy. | |||||
2009-10-16 | s3: build pam_smbpass when possible | Björn Jacke | 1 | -20/+34 | |
2009-10-16 | s3-netlogon: fix updating trust accout passwords with downlevel domains. | Günther Deschner | 1 | -2/+2 | |
When choosing the netlogon password set function, make sure to look at the *negotiated* flags in the cli->dc state, not the ones we start the negotiation with. Guenther | |||||
2009-10-16 | nsswitch: increase libwbclient version after adding wbcChangeTrustCredentials(). | Günther Deschner | 1 | -1/+2 | |
Guenther | |||||
2009-10-16 | s3:packaging: Fix building RHEL packages. | Karolin Seeger | 2 | -6/+23 | |
Fix bug #6721. Thanks to Eero Volotinen <eero.volotinen@medicel.com> for providing the patch! Karolin | |||||
2009-10-16 | s3:srv_samr_nt - another fix for the reject reason | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2009-10-16 | s4-smbtorture: extend netr_LogonControl test in RPC-NETLOGON. | Günther Deschner | 1 | -3/+109 | |
Guenther | |||||
2009-10-16 | s3-netlogon: Fix _netr_ServerPasswordSet2 cleartext blob handling. | Günther Deschner | 1 | -1/+4 | |
Following Andrew's advice, let's straight md4 the plaintext blob and avoid trying to get a paintext string out of the input the client sends. Guenther |