summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2009-10-16s3: fixed krb5 build problem on ubuntu karmicAndrew Tridgell2-0/+13
Karmic has MIT krb5 1.7-beta3, which has the symbol krb5_auth_con_set_req_cksumtype but no prototype for it. See also http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=531635
2009-10-16s4-pvfs: fixed mask handling for SEC_FLAG_MAXIMUM_ALLOWEDAndrew Tridgell1-2/+2
This matches the sec_access_check() code
2009-10-16s4-torture: take privileges into account in BASE-MAXIMUM_ALLOWEDAndrew Tridgell1-10/+48
The correct answer depends on the users privileges.
2009-10-16idl: added bit definition for privilege masksAndrew Tridgell2-0/+19
When you have backup or restore privileges, you automatically get extra access bits in ACL interpretation. This adds definitions for the bits you get.
2009-10-15s4:dcerpc_server - Read the generic session key out from ↵Matthias Dieter Wallnöfer1-5/+2
"dcerpc_generic_session_key" I don't think that this code needs to exist identically on the server and on the client side. This patch leaves it on the client side (dcerpc lib) and calls it from the server.
2009-10-15s3-spnego: fix memleak in spnego_parse_auth().Günther Deschner1-1/+5
Guenther
2009-10-15s3-spnego: Fix Bug #6815. Windows 2008 R2 SPNEGO negTokenTarg parsing failure.Günther Deschner2-20/+15
When parsing a SPNEGO session setup retry (falling back from KRB5 to NTLMSSP), we failed to parse the ASN1_ENUMERATED negResult in the negTokenTarg, thus failing spnego_parse_auth() completely. By just using the shared spnego/asn1 code, we get the parsing the correct way. Guenther
2009-10-15s4:w32err_code.py script - put it under "scripting/bin"Matthias Dieter Wallnöfer1-0/+0
I think this is a better location for this script. Since the subdirectory "script" of "source4" contains only scripts for "make install" and "make uninstall".
2009-10-15s3/docs: Add missing meta data to man ldbrename.Karolin Seeger1-0/+3
Avoid warnings. Karolin
2009-10-15s4-smb: fill in fnum as well for root_fidAndrew Tridgell2-1/+3
This helps with the CIFS NTVFS backend, but doesn't solve all problems
2009-10-15s4-selftest: mark some CIFS backend tests as known failAndrew Tridgell1-0/+4
The CIFS passthru NTVFS doesn't handle some options yet (eg. root_fid)
2009-10-15s4-smbserver: fixed root_fid in nttrans createAndrew Tridgell1-1/+1
2009-10-15s4-libcli: fixed structure element bug in ntcreatexreadxAndrew Tridgell1-1/+1
This one didn't matter until the root_fid changed the alignment of the two structures.
2009-10-15s4-torture: catch bad command line optionsAndrew Tridgell1-0/+3
It is annoying when you mistype a command line option and aren't told.
2009-10-15s4-pvfs: implement root_fid support in posix backendAndrew Tridgell1-0/+15
Construct the filename from the old handle and the new name.
2009-10-15s4-smb: declare root_fid as a file handleAndrew Tridgell29-139/+139
In order to implement root_fid in the s4 SMB server we need to declare it as a handle type, just as for other fnum values in SMB. This required some extensive (but simple) changes in many bits of code.
2009-10-15s4-pvfs: fixed handling of SEC_FLAG_MAXIMUM_ALLOWEDAndrew Tridgell1-1/+1
The CREATEX_ACCESS test shows that this is used as a bit test, not a equality test
2009-10-15s4-ldaptest: "testgroup" is a bit too commonAndrew Tridgell1-2/+2
This failed on one of my test boxes that has a group called "testgroup". using "testgroupXX" should be a bit better.
2009-10-15s4:ntlmssp server - use also here the new "lp_dnsdomain()" callMatthias Dieter Wallnöfer1-2/+1
2009-10-15s4:auth/credentials/credentials - fix uninitalised pointersMatthias Dieter Wallnöfer1-7/+35
This should fix bug #6755.
2009-10-15s3: fix outdated proto.h causing build error on AIXBjörn Jacke1-1/+1
Matthias, please check!
2009-10-15s4-ldap: test the rDN size limitAndrew Tridgell1-0/+25
2009-10-15s4-dsdb: implement limit on rDN lengthAndrew Tridgell1-3/+11
w2k8 imposes a limit of 64 characters on the rDN
2009-10-15s4-ldb: removed incorrect rDN length testAndrew Tridgell1-13/+0
This is a property of AD, not ldb, so should be in our ldb modules.
2009-10-15s4-ldb: removed bugus RDN length checkAndrew Tridgell1-5/+0
This isn't the rDN !
2009-10-15s4-script: flush DNS after adding new addressesAndrew Tridgell1-0/+1
2009-10-15s4-devel: for devel scripts its better to use bin/ than $PREFIX/binAndrew Tridgell2-6/+7
This avoids having to do make install after each change when using the drs devel scripts
2009-10-15s4-drs: support DRSUAPI_DRS_ADD_REF flagAndrew Tridgell1-5/+29
The DRSUAPI_DRS_ADD_REF flag tells the DRS server to run an UpdateRefs call on behalf of the client after the DsGetNCChanges call. The lack of support for this option may explain why the repsTo attribute was not being created for w2k8-r2 replication partners.
2009-10-15s4-drs: implement more of DsUpdateRefsAndrew Tridgell2-27/+63
The DsUpdateRefs calls takes a set of flags that indicates if the server should ignore specific add/delete error codes. This patch also exposes the core UpdateRefs call into a public function, so that it can be called from DsGetNCChanges
2009-10-15ldb: fixed display of replUpToDateVectorAndrew Tridgell1-1/+1
2009-10-15drs: improved error checkingAndrew Tridgell1-16/+49
Check the validity of the requested options in DsGetNCChanges
2009-10-15s4-dsdb: added samdb_rodc() and samdb_ntds_options()Andrew Tridgell2-1/+51
Later we will need to make samdb_rodc() look in the database, but for now we should at least have the function in a central place
2009-10-15libds: added nTDSDSA options flagsAndrew Tridgell1-0/+7
2009-10-15idl: added WSPP DrsOptions bit namesAndrew Tridgell4-0/+122
This should make it much easier to work through the logic in MS-DRSR
2009-10-14Fix the build, missing ->.Jeremy Allison2-3/+3
Jeremy.
2009-10-14Final part of fix for bug 6793 - winbindd crash with "INTERNAL ERROR: Signal 6"Jeremy Allison1-0/+2
Don't use mapped_user uninitialized. Jeremy.
2009-10-14s3:winbind: Fix a double-freeVolker Lendecke1-1/+0
Part of a fix for bug #6793.
2009-10-14s3:winbind: Fix bug 6793 -- segfault in winbindd_pam_authVolker Lendecke1-7/+6
2009-10-14s3-build: we need to have talloc 2.0.1 when building with external talloc.Günther Deschner1-1/+1
2.0.0 did not got the exports right. This and the 2.0.1 talloc fixes resolve bug #6808. Guenther
2009-10-14talloc: Fix exports and increment talloc versionSimo Sorce3-37/+40
2009-10-14talloc: Make abi checks in release scriptSimo Sorce1-0/+10
Make always sure the exports and signature files are up to date before shipping a release.
2009-10-14talloc: Move release script under /script tooSimo Sorce1-0/+0
2009-10-14talloc: Change the way mksysms workSimo Sorce3-36/+29
Make sure we always have a sorted (per file) export file. This way we can directly compare the real export and the check file w/o having to further sort things. Also return error code from abi_checks.sh if warnings were reported
2009-10-14s3-passdb: missed two prototypes while moving to enum netr_SchannelType.Günther Deschner1-2/+4
Guenther
2009-10-14s4:torture cldap test - Add checks for the right forest DNS nameMatthias Dieter Wallnöfer1-1/+6
2009-10-14s4:password_hash - load the domain parameters from the "loadparm context"Matthias Dieter Wallnöfer1-42/+11
And don't cut them out from the DNS hostname.
2009-10-14s4:torture - fix up "ldap_basic" testMatthias Dieter Wallnöfer1-5/+6
2009-10-14s4: Changes the old occurences of "lp_realm" in "lp_dnsdomain" where neededMatthias Dieter Wallnöfer15-49/+43
For KERBEROS applications the realm should be upcase (function "lp_realm") but for DNS ones it should be used lowcase (function "lp_dnsdomain"). This patch implements the use of both in the right way.
2009-10-14s4:loadparm - adapt "realm" handlingMatthias Dieter Wallnöfer2-3/+24
Change "lp_realm" behaviour to return the realm always upcased and add a function "lp_dnsdomain" which returns it always lowcased.
2009-10-15s3: Fix reference to freed memory in pam_winbind.Bo Yang1-2/+3
Signed-off-by: Bo Yang <boyang@samba.org>