Age | Commit message (Collapse) | Author | Files | Lines |
|
metze
(This used to be commit ee47b404412299ac0e341f0d269adc21a7ebc603)
|
|
- use talloc_parent_chunk() in talloc_parent_name()
- add prototype of talloc_parent_name()
metze
(This used to be commit 85fc18f047cd2132d0c455f739ee76ce5005d7ed)
|
|
simo,tridge: please check this.
found by the IBM checker
metze
(This used to be commit 5ac373c8b853d4527a095111253f3cb10522f5e8)
|
|
metze
(This used to be commit 4c1e4bfeef8d93583b6d4345dbb1b8fa90368308)
|
|
metze
(This used to be commit 6b7eb5d68e769fd5450c5d92c3ece4c471aaeae9)
|
|
metze
(This used to be commit d20d1872d5ed1176928b85ef9811c6a5177d0148)
|
|
to not conflict with the one that maybe added via the @ATTRIBUTES object
this is just to make the test-tdb-feature.sh torture test happy
There's still a bug when a attribute is registered multiple time
without removing old ldb_schema_attribute instances. But this bug
was there before my changes too and was just triggered by my changes
metze
(This used to be commit 70c4a367433f8c54bdd940eb0a6a24ab976a4063)
|
|
metze
(This used to be commit 216713d9a034984ffb40889b42837b91abae862a)
|
|
- fix compilation of the ldb_sqlite3 module
metze
(This used to be commit 39c41be0ac5bfa39c4ff3267b1a8291857e3a034)
|
|
to a ldb_schema_syntax struct.
the default attribute handler is now registered dynamicly as "*"
attribute, instead of having its own code path.
ldb_schema_attribute's can be added to the ldb_schema given a
ldb_schema_syntax struct or the syntax name
we may also need to introduce a ldb_schema_matching_rule,
and add a pointer to a default ldb_schema_matching_rule
in the ldb_schema_syntax.
metze
(This used to be commit b97b8f5dcbce006f005e53ca79df3330e62f117b)
|
|
metze
(This used to be commit 1f67433914bfab83bf1950263809c9e152ad6dcc)
|
|
rafal
(This used to be commit 2d046cc0df820edc141a74e7d204e4fba462e037)
|
|
rafal
(This used to be commit a20b05183d274a3a780ae197dc7014428739cc7a)
|
|
freed just before the function returns.
rafal
(This used to be commit ca8259fd27d1e92bcb650441461afdfd613e93bf)
|
|
metze
(This used to be commit 8dda4342f648aa71878ac9eeb7941710e2813aee)
|
|
metze
(This used to be commit 1e4289fae4fb71725d9c37ed772eab0ff5853e65)
|
|
enough memory for the new sub_auth element.
the old version wrote behind the buffer.
also make the output sid a pointer.
metze
(This used to be commit b9901d5f8c9aa777bafd3a670d27209552bc56b7)
|
|
the crash.
rafal
(This used to be commit 5d7908038b6508f53cc8714f73ae7c5bfc6bce58)
|
|
rafal
(This used to be commit af539fec4acb3ad78b8f0fa4f7c2f4e6cebea0b7)
|
|
rafal
(This used to be commit 0c373605776eb166ffe46db0dd21395efc3bb186)
|
|
rafal
(This used to be commit 9f5f9ee9b4b815715c0b580e21ab0906fa15ae96)
|
|
a distinction between PDC and BDC in the configuration files, only as
an entry in the ldb.
Andrew Bartlett
(This used to be commit dc9eee7cb37e4a6828c2cba23b0d836df9eac7b5)
|
|
way to setup a Samba4 DC is to set 'server role = domain controller'.
We use the fSMORoleOwner attribute in the base DN to determine the PDC.
This patch is quite large, as I have corrected a number of places that
assumed taht we are always the PDC, or that used the smb.conf
lp_server_role() to determine that.
Also included is a warning fix in the SAMR code, where the IDL has
seperated a couple of types for group display enumeration.
We also now use the ldb database to determine if we should run the
global catalog service.
In the near future, I will complete the DRSUAPI
DsGetDomainControllerInfo server-side on the same basis.
Andrew Bartlett
(This used to be commit 67d8365e831adf3eaecd8b34dcc481fc82565893)
|
|
metze
(This used to be commit d2d9842914bb049189f9349ff96b32c088cd02a8)
|
|
libnet_BecomeDC()/libnet_UnbecomeDC()
metze
(This used to be commit 0359d9a00b3e30e2bd67b89d6b11236e5af0106b)
|
|
rafal
(This used to be commit 3cdd43ebcedfa7d1d59bd33b3bfed4e80560ec82)
|
|
but that's not needed untill we can support the DsGetNCChanges()
in the server...
metze
(This used to be commit 9c3267e17f984a0a47abd35cecb56c43cf97efcd)
|
|
instead of hardcoded GENSEC_FEATURE_SEAL.
That means plain LDAP is now the default.
metze
(This used to be commit b69471866c2a6c61002147938f233f2f63963ba4)
|
|
requested it!
this is needed to create plain, singed or sealed LDAP connections.
this should go into lorikeet and main heimdal...
metze
(This used to be commit 75c037cae21714e394a63f2506387e1049eb4406)
|
|
rafal
(This used to be commit 0b82b9dba1f67b1d340b7cf2b35a826135c101d4)
|
|
rafal
(This used to be commit e635f5aeaf7cd722e55bd99e52a8de166ae0ecd5)
|
|
so make it possible to force encryption or signing.
metze
(This used to be commit a91dc4a02a46370c52f59cbd4dea9580fa6efafa)
|
|
the loop entry condition.
Andrew Bartlett
(This used to be commit c1182751313290fc38af5b1c44bc66b5d1654977)
|
|
metze
(This used to be commit 024dacb3b0a32bcaaef0b7a7598070b9034a7648)
|
|
metze
(This used to be commit 53805a8562c59116e458dedd695e061eabf78620)
|
|
metze
(This used to be commit cb89f0b8d5a64433374887bcd44e04ad63e4857e)
|
|
- pass ldb_request to init_lldb_handle()
- remove some useless talloc_get_type() calls
metze
(This used to be commit a7397c4d2bed181c96863e985727c8dad0894df7)
|
|
metze
(This used to be commit 1e3bb180261643900c7bdacef818add5349c7a30)
|
|
metze
(This used to be commit db85b7840c1022665d410516d9a8989474d67a0f)
|
|
- pass down ldb_request
metze
(This used to be commit b0b9e83fed0145bac6058d11e9b1b2c57d091649)
|
|
metze
(This used to be commit cf9aade216930980bf47ea8b97db976c4907cbca)
|
|
also pass ildb instead of module, to avoid multiple talloc_get_type() calls
metze
(This used to be commit 03029d4fed86b1ca5fb19a408312607d8790d110)
|
|
metze
(This used to be commit b85d5cb7a4931d1d43a0ec73f1de1519c720f1af)
|
|
Here is a patch that adds a torture:dc_binding parametric option to
torture_create_testuser in testjoin.c. This patch is used in OpenChange
torture tests when the AD is different from the Exchange Server. This generic
option could also be used for later 'member server' tests in Samba4.
metze
(This used to be commit 9ddabfc60e1a4f5e471991253141ce458c9a683d)
|
|
I've attached the patch which fix this problem. I've only added
DCERPC_NDR_REF_ALLOC to the connection flags. This way it is processed
correctly by ndr_pull_init_flags and added to the ndr flags of the pull
structure.
metze
(This used to be commit ed4c7ce547c61907291d19c172d5eb6f4c4981fe)
|
|
particular to verify more expected results.
Also return more details from the join process. Now we also return
the machine account's GUID.
Andrew Bartlett
(This used to be commit 5b32f102af1fc7acb56bf7eaa40068d60a1ee396)
|
|
metze
(This used to be commit 4daa45f98a3bb6f3c245fe61e05681335ef8b5c6)
|
|
metze
(This used to be commit d295239861a282d06a9a93cdafa4e4d7616928b8)
|
|
to work better against w2k, so we don't get redirected from
1.2.840.113554.1.2.2 to 1.2.840.48018.1.2.2 by a w2k server, causing 2 additional
auth roundtrips.
metze
(This used to be commit fa5c942ee99d3b5779598aa75f71d0317ba3f622)
|
|
negTokenTarg
this happens because we send 1.2.840.113554.1.2.2 before 1.2.840.48018.1.2.2
in the negTokenInit. And w2k's spnego code redirects us to use 1.2.840.48018.1.2.2
and then we start the our spnego engine with 1.2.840.48018.1.2.2 and in the then following
negTokenTarg w2k don't send the supportedMech (which means it aggrees in what we've choosen)
metze
(This used to be commit 5af5488593991ab4a2a8e17d38501ad9ec539020)
|