summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2010-11-10s4-pydsdb-py_samdb_ntds_objectGUID(): Avoid potential memory leakKamen Mazdrashki1-7/+6
in case py_ldb is not a valid LDB
2010-11-10s4-pydsdb-py_dsdb_get_oid_from_attid(): Avoid potential memory leakKamen Mazdrashki1-2/+2
in case py_ldb is not a valid LDB
2010-11-10s4-pydsdb.c: Fix small memory leak in py_samdb_set_domain_sid()Kamen Mazdrashki1-0/+1
2010-11-10s4/syntax: Add tests for DN+String and DN+BinaryAnatoliy Atanasov1-0/+420
These tests aim to verify the behavior for 2.5.5.7 and 2.5.5.14 syntaxes. Autobuild-User: Anatoliy Atanasov <anatoliy@samba.org> Autobuild-Date: Wed Nov 10 06:57:04 UTC 2010 on sn-devel-104
2010-11-10Fix memleak I accidently introduced when reading from tdb.Jeremy Allison1-0/+1
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Nov 10 01:56:21 UTC 2010 on sn-devel-104
2010-11-10Fix bug 7781 - Samba transforms ShareName to lowercase (sharename) when ↵Jeremy Allison12-110/+195
adding new share via MMC Change the find_service() interface to not depend on fstring, and create a useable talloc-based interface. Jeremy.
2010-11-10Ensure we check the return from make_user_info before dereferencing the ↵Jeremy Allison1-2/+2
value returned by it. Jeremy.
2010-11-10Remove fstring from map_username. Create a more sane interface than the ↵Jeremy Allison10-101/+208
called-parameter-is-modified. Jeremy.
2010-11-10s3/vfs_time_audit: use monotonic clock for time deltasBjörn Jacke1-334/+445
Autobuild-User: Björn Jacke <bjacke@samba.org> Autobuild-Date: Wed Nov 10 01:13:22 UTC 2010 on sn-devel-104
2010-11-09s4: point to the wiki howto for s4Andrew Tridgell1-214/+4
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Tue Nov 9 23:38:28 UTC 2010 on sn-devel-104
2010-11-10s4-join: raise mininum password length to 32 in new join codeAndrew Tridgell1-1/+1
2010-11-09s4:dsdb/operational.c: use DSDB_SECRET_ATTRIBUTES_EX()Stefan Metzmacher1-5/+2
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Tue Nov 9 22:43:44 UTC 2010 on sn-devel-104
2010-11-09s4:dsdb/common: add DSDB_SECRET_ATTRIBUTES_EX()Stefan Metzmacher1-11/+14
metze
2010-11-09s4:dsdb/local_password: use DSDB_SECRET_ATTRIBUTESStefan Metzmacher1-7/+3
metze
2010-11-09s4:dsdb/schema/schema_filtered.c: make never_in_filtered_attrs static constStefan Metzmacher1-1/+2
metze
2010-11-09s4:dsdb/schema/schema_filtered.c: use DSDB_SECRET_ATTRIBUTESStefan Metzmacher1-11/+1
metze
2010-11-09s4:rpc_server/drsuapi: don't ask for constructed "distinguishedName" if we ↵Stefan Metzmacher1-1/+0
don't use it metze
2010-11-09s4:rpc_server/drsuapi: make msg_attrs static constStefan Metzmacher1-1/+3
metze
2010-11-09s4:rpc_server/drsuapi: let dcesrv_drsuapi_DsGetNCChanges() use ↵Stefan Metzmacher1-5/+1
DSDB_SECRET_ATTRIBUTES We should replicate all secret attributes back to other DCs. metze
2010-11-09s4:dsdb/common: create a DSDB_SECRET_ATTRIBUTES define with all secret ↵Stefan Metzmacher2-12/+15
attributes We should have them just in one place, so that we don't forget some of them. metze
2010-11-09s3: Quieten a bogus error messageVolker Lendecke1-3/+1
This happens if you set "auth methods = winbind" without a fallback method. The return NT_STATUS_LOGON_FAILURE; is not strictly require here, because we fall through to the equivalent statement a few lines down, but it makes the code a bit clearer IMO. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Nov 9 20:15:59 UTC 2010 on sn-devel-104
2010-11-09s3: Package autorid moduleVolker Lendecke1-0/+1
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Nov 9 16:21:48 UTC 2010 on sn-devel-104
2010-11-09raw.h is only needed in the S4 buildVolker Lendecke1-0/+2
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Nov 9 14:49:14 UTC 2010 on sn-devel-104
2010-11-09s4:provision_self_join.ldif - the object SID in AD is called "objectSid"Matthias Dieter Wallnöfer1-1/+1
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Tue Nov 9 13:18:29 UTC 2010 on sn-devel-104
2010-11-09s4:provision.py - strip trailing whitespacesMatthias Dieter Wallnöfer1-106/+106
2010-11-09s4:provision - switch to "clearTextPassword" for setting passwordsMatthias Dieter Wallnöfer4-8/+8
This is the default password set/change attribute for s4 specific purposes (otherwise in respect to Windows it's "unicodePwd"). We move away from "userPassword" since on Windows it's not activated by default - and s4 will follow soon.
2010-11-09s4-test: make sure the selftest prefix existsAndrew Tridgell1-0/+3
Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Tue Nov 9 00:05:22 UTC 2010 on sn-devel-104
2010-11-08s4-drs: reduce verbosity of dreplsrv_out_connection_attachAndrew Tridgell1-2/+2
2010-11-08heimdal: fixed a shadowed variable warning for error_messageAndrew Tridgell1-23/+23
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-11-08s4-attid: Uppercase ATTID type constantsKamen Mazdrashki3-10/+10
Thanks Metze for noting this! Autobuild-User: Kamen Mazdrashki <kamenim@samba.org> Autobuild-Date: Mon Nov 8 23:06:41 UTC 2010 on sn-devel-104
2010-11-08s4-test: Initial implementation for Schema replication black box testKamen Mazdrashki1-0/+174
2010-11-08Second part of fix for bug #7777 - When requesting lookups for BUILTIN sids, ↵Jeremy Allison1-1/+3
winbindd allocates new uids/gids in error. Ensure we return after calling passdb for SID lookups for which we are authoritative. Jeremy. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Mon Nov 8 22:24:34 UTC 2010 on sn-devel-104
2010-11-08Ensure we always have a mapped group for "Domain Users".Jeremy Allison1-1/+6
Needed for DC tests to pass with bugfix for bug #7777. Jeremy.
2010-11-08First part of fix for bug #7777 - When requesting lookups for BUILTIN sids, ↵Jeremy Allison1-0/+10
winbindd allocates new uids/gids in error. Ensure idmap_init_passdb_domain() correctly initialized the default domain first. Jeremy.
2010-11-08s3/configure: fix typo and warningBjörn Jacke1-1/+1
Autobuild-User: Björn Jacke <bjacke@samba.org> Autobuild-Date: Mon Nov 8 20:58:20 UTC 2010 on sn-devel-104
2010-11-08s4:password_hash LDB module - introduce a "userPassword" flag which ↵Matthias Dieter Wallnöfer1-15/+37
enables/disables the two "userPassword" behaviours - Enabled: "userPassword" password change behaviour (will later be linked to the "dSHeuristics") - Disabled: "userPassword" plain attribute behaviour (default) Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Mon Nov 8 15:28:06 UTC 2010 on sn-devel-104
2010-11-08s4:pyldb.c - fix "py_ldb_contains" according to the comment by JelmerMatthias Dieter Wallnöfer1-4/+2
2010-11-08s3-waf: add idmap_autorid to the build.Günther Deschner2-1/+10
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Mon Nov 8 14:17:27 UTC 2010 on sn-devel-104
2010-11-08s3: Fix an uninitialized variableVolker Lendecke1-0/+1
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon Nov 8 13:22:06 UTC 2010 on sn-devel-104
2010-11-08s3: Build idmap_autorid by defaultVolker Lendecke1-0/+1
2010-11-08s3:idmap: add a new ID mapping module autoridChristian Ambach4-0/+610
This is an initial implementation of the idmap_autorid module. It works similar to the idmap_rid module but requires less configuration. It will automatically pick ranges for each domain, so you do not have to bother any more about adding an idmap configuration for all of the domains in the forest. This is very easy to use and to configure and much more deterministic and faster than idmap_tdb, the typical choice of Samba users up to now.
2010-11-08s3:winbind add wcache_tdc_fetch_domainbysidChristian Ambach2-0/+53
add a function to lookup a domain in the winbind cache by domain SID
2010-11-08s3: Put some parentheses around conditionalsVolker Lendecke1-2/+2
2010-11-08s3: Consistently use stdbool types in new codeVolker Lendecke1-11/+11
2010-11-08s3:winbind add timeouts to winbind cacheChristian Ambach1-14/+57
This adds a timeout value to cache entries and the NDR records in the winbind cache. The previous approach of just comparing the sequence number has some issues, e.g. when retrying a wbinfo -n operation for a user in a not yet trusted domain was always failing even after the trusted domain was added. The new approach compares sequence number and timeout value to determine if a cache entry is still valid or not. I increased the cache version number so an old cache will be wiped automatically after upgrade.
2010-11-08s4:passwords.py - test empty password attributes behaviourMatthias Dieter Wallnöfer1-1/+154
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Mon Nov 8 12:09:56 UTC 2010 on sn-devel-104
2010-11-08s4:password_hash LDB module - deleting password attributes is a little more ↵Matthias Dieter Wallnöfer1-6/+6
complicated
2010-11-08s4:samdb_msg_find_old_and_new_ldb_val - reworkMatthias Dieter Wallnöfer2-10/+38
- don't crash when no values where specified - return ERR_CONSTRAINT_VIOLATION on malformed messages - only check for flags when we are involved in a LDB modify operation
2010-11-08s4:password_hash LDB module - clear the fact that a delete of password ↵Matthias Dieter Wallnöfer1-1/+1
attributes isn't possible
2010-11-08s4:acl LDB module - define the delete passwords special case a bit betterMatthias Dieter Wallnöfer1-3/+4