summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2011-09-01s3:registry: change regdb_store_values_internal() from bool to NTSTATUS ↵Michael Adam1-11/+15
return code
2011-09-01s3:registry: use the regdb_trans_do wrapper instead of using dbwrap_trans_do ↵Michael Adam1-18/+18
directly in the registry db code. This verifies the regdb format version number before the corresponding write operations.
2011-09-01s3:registry: add regdb_trans_do(): a transaction wrapper that will check the ↵Michael Adam1-0/+42
regdb version If the version has changed since initialization, the write will fail with ACCESS_DENIED.
2011-09-01s3:registry: drop log level of unknown regdb version message in regdb_init() ↵Michael Adam1-1/+1
to 0
2011-09-01Fix bug 8433, segfault in iconv.cVolker Lendecke1-1/+0
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Thu Sep 1 18:25:34 CEST 2011 on sn-devel-104
2011-09-01s3-rpc_server: Add missing rng_fault_state in epmapper.Andreas Schneider1-0/+2
We need to raise an exception so we need to set the rng_fault_state for epm_Insert and epm_Delete if someone connects over a transport other than NCALRPC. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Thu Sep 1 15:59:50 CEST 2011 on sn-devel-104
2011-09-01s3-rpc_server: Handle services with multiple pipe names.Andreas Schneider2-4/+10
The configuration should only use the default pipe name to configure all of them correctly.
2011-09-01ldb: make the 'spy' code more paranoidAndrew Tridgell2-10/+12
the spy code in ldb_tdb was added a while ago to overcome a memory hierarchy problem with async ldb errors. Recently we started to get valgrind errors related to the order of free in the spy code. This patch ensures that we don't try to use a freed spy pointer. This prevents the valgrind errors, although I suspect that the memory hierarchy we have here is more complex than it needs to be Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Sep 1 08:54:23 CEST 2011 on sn-devel-104
2011-09-01s4-services: disable the web server by defaultAndrew Tridgell1-1/+1
the web server is not being actively maintained, and is causing problems with memory errors (as shown by valgrind). It is better to disable this until it can get some TLC Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-09-01ldb: fixed ldbsearch when no baseDN specified and cross-ncs is usedAndrew Tridgell1-4/+24
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-09-01pyldb: added OID_COMPARATOR constantsAndrew Tridgell2-10/+12
This also changes the other constants to remove the LDB_ prefix, which is redundent Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-09-01wintest: update snapshotsAndrew Bartlett1-5/+5
2011-08-31Fix bug 8429 - Compound SMB2 requests on an IPC connection can corrupt the ↵Jeremy Allison1-12/+17
reply stream. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Aug 31 21:18:11 CEST 2011 on sn-devel-104
2011-08-31Based on metze's fix for Bug 8407 - SMB2 server can return requests ↵Jeremy Allison2-2/+39
out-of-order when processing a compound request. (cherry picked from commit 19db1c98c6ba3cb5e883e16e865c44900ce17444)
2011-08-31s3:smb2_server: keep compound_related on struct smbd_smb2_requestStefan Metzmacher2-4/+4
metze (cherry picked from commit cda93f04eb4e7e975b192a5fd33275ec638140ac)
2011-08-31s3-waf: fix unresolved symbols in the group policy client side extensions ↵Günther Deschner1-1/+1
subsystem. Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Aug 31 19:48:39 CEST 2011 on sn-devel-104
2011-08-31s3-waf: convert libgpo into a private library.Günther Deschner1-5/+6
Guenther
2011-08-31s3-waf: allow undefined symbols in idmap_rid module.Günther Deschner1-0/+1
Guenther
2011-08-31s3: Fix bug 8334, do not fork the echo handler for smb2Volker Lendecke1-1/+2
If a smb1 negprot negotiated smb2 we forked the echo responder. This will eventually lead to a panic from [2011/08/30 10:33:29.212578, 0, pid=3846917] smbd/smb2_server.c:243(smbd_smb2_request_create) Invalid SMB packet: first request: 0x0009 because from the echo responder we always read using the normal smb1 protocol handling routine. If that is a bit down the smb2 stream, we get a non-negprot packet and panic. BTW, the echo responder is not required for smb2 anyway, Microsoft confirmed that it probes the server liveness using TCP keepalives and not smb2 echo requests. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Wed Aug 31 17:58:48 CEST 2011 on sn-devel-104
2011-08-31s3-rpc_server: Disable epmapper by default.Andreas Schneider1-2/+2
We need more testing in the real world. We need to be sure that if a Windows client can access port 135 it doesn't require that a service is available via ncacn_ip_tcp. If possible please enable it using the following smb.conf options for testing: rpc_daemon:epmd = fork rpc_server:epmapper = external Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Wed Aug 31 16:29:20 CEST 2011 on sn-devel-104
2011-08-31docs: Add documentation for the rpc_daemon parametric option.Simo Sorce1-0/+69
2011-08-31doc: Reflect the latest changes to the rpc_server option.Andreas Schneider1-18/+66
bug #8425.
2011-08-31s3-waf: allow unresolved symbols in some idmap and nss_info modules.Günther Deschner1-0/+7
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Aug 31 14:27:31 CEST 2011 on sn-devel-104
2011-08-31s3-waf: add missing tdb dependency to idmap_tdb2 module.Günther Deschner1-1/+1
Guenther
2011-08-31s3-waf: convert nss_info subsystem into a private library.Günther Deschner1-4/+5
Guenther
2011-08-31s4-smbtorture: For now, skip trusted domain auth validation tests against ↵Günther Deschner1-9/+15
the sambas. Guenther
2011-08-31s4-smbtorture: Add trust password to CreateTrust testSumit Bose1-32/+245
Instead of using empty authinfo and authinfo_internal structures a trust password is added to these structures. After creating the trust the trust account is used to validate that the trust password is set correctly. Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Add _lsa_SetInformationTrustedDomain() and related callsSumit Bose1-21/+312
The following LSA calls are added: - _lsa_SetInformationTrustedDomain() - _lsa_SetTrustedDomainInfo() -_lsa_SetTrustedDomainInfoByName() Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s4-smbtorture: Add tests for lsaQueryTrustedDomainInfoByName() and ↵Sumit Bose1-0/+102
lsaSetTrustedDomainInfoByName() Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Update _lsa_QueryTrustedDomainInfo()Sumit Bose1-8/+63
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-pdb_ipa: Add supprted encryption types to struct pdb_trusted_domainSumit Bose2-0/+24
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-pdb_ipa: Add posix offset to struct pdb_trusted_domainSumit Bose2-0/+23
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-ldap: Add Posix offset and encryption types to LDAP schemaSumit Bose7-6/+43
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-ldap: Add sambaTrustForestTrustInfo to NDS LDAP schema (again)Sumit Bose1-1/+50
The related attributes and objectclass were accidentally remove by commit d4c30a5ffbeab75506bf1ad5d8d5da48e3f4d41c Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Fix access mapping in_lsa_OpenTrustedDomain_base()Sumit Bose1-1/+1
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Fix typo and use right pdb interfaceSumit Bose1-1/+1
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-pdb_ipa: Derive domain GUID from SIDSumit Bose1-2/+23
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3:modules make perfcount_test loadable againChristian Ambach1-1/+1
use expected 'init_samba_module' name for initializer function Autobuild-User: Christian Ambach <ambi@samba.org> Autobuild-Date: Wed Aug 31 11:22:26 CEST 2011 on sn-devel-104
2011-08-31s3:lib S-1-5-9 is "Enterprise Domain Controllers"Christian Ambach1-1/+1
and not ServerLogon
2011-08-31s3:lib remove duplicate entry for "Anonymous Logon"Christian Ambach1-1/+0
2011-08-31s3:lib add S-1-5-17 to well-known SID listChristian Ambach1-0/+1
http://support.microsoft.com/kb/243330/en-us says the name is "This organization", but Windows 2008 says IUSR Picking the Windows 2008 variant as 'This Organization' would be duplicate to S-1-5-15
2011-08-31s3:lib add some more well-known sidsChristian Ambach1-0/+3
add S-1-3-2/Creator Owner Server, S-1-3-3/Creator Group Server and S-1-3-4/Owner Rights to the well-known SID list
2011-08-31s3:lib add new well-known SIDs for BUILTINChristian Ambach1-0/+8
Distributed COM Users, Cryptographic Operators, Event Log Readers and Certificate Service DCOM Access were missing from the BUILTIN well-known SID list
2011-08-31security.idl add new well-known SIDsChristian Ambach1-0/+8
http://support.microsoft.com/kb/243330/en-us lists some new well-known SIDS in the BUILTIN domain
2011-08-31tdb2: add full LGPL headersRusty Russell2-0/+34
This is for SAMBA, so we follow their rules and do full license headers. Two files were missing them. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> (Imported from CCAN commit 58025731) Autobuild-User: Rusty Russell <rusty@rustcorp.com.au> Autobuild-Date: Wed Aug 31 09:52:43 CEST 2011 on sn-devel-104
2011-08-31MAINTAINERS.txt: ping me about CCAN changesRusty Russell1-0/+5
Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> Autobuild-User: Rusty Russell <rusty@rustcorp.com.au> Autobuild-Date: Wed Aug 31 07:58:34 CEST 2011 on sn-devel-104
2011-08-31ccan: fix likely redefinition warnings with --enable-tdb2Rusty Russell1-0/+8
When we do --enable-tdb2, we start clashing with the replace.h version: In file included from ../lib/tdb2/tools/../private.h:25:0, from ../lib/tdb2/tools/tdb2torture.c:60: ../lib/ccan/likely/likely.h:32:0: warning: "likely" redefined ../lib/replace/replace.h:762:0: note: this is the location of the previous definition ../lib/ccan/likely/likely.h:53:0: warning: "unlikely" redefined ../lib/replace/replace.h:765:0: note: this is the location of the previous definition I don't like to #ifndef-protect them in general, since you don't want different parts of the code to silently have different definitions, but it's the simplest fix for now. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2011-08-31tdb2: fix build with --enable-tdb2Rusty Russell1-3/+2
tdb2 doesn't expost tdb_jenkins_hash; go straight to the source in ccan/hash. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2011-08-30smb2_constants: add SMB2_HDR_CREDIT_CHARGEStefan Metzmacher1-1/+2
SMB2_HDR_EPOCH was never used and SMB 2.10 uses it as SMB2_HDR_CREDIT_CHARGE. We keep SMB2_HDR_EPOCH as alias for now, until all callers are fixed. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Tue Aug 30 23:49:56 CEST 2011 on sn-devel-104
2011-08-30s3:include: add CAP_LWIO and CAP_DYNAMIC_REAUTH definesStefan Metzmacher1-0/+2
metze