summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2009-07-16Replace more long-lived contexts with talloc_autofree_context().Jeremy Allison2-2/+2
Jeremy.
2009-07-16Replace short-lived NULL talloc contexts with talloc_tos().Jeremy Allison3-22/+22
Jeremy.
2009-07-16Remove an unused talloc context.Jeremy Allison1-8/+2
Jeremy.
2009-07-17Revert "s4:heimdal_build: predefine GSSAPI_DEPRECATED depending on the ↵Andrew Bartlett1-8/+0
compiler version" This is now handled correctly in the newly imported Heimdal This reverts commit 4a754d029b0eb229b23980aa4a80dae2b485a302.
2009-07-17s4:heimdal: import lorikeet-heimdal-200907162216 (commit ↵Andrew Bartlett6-23/+60
d09910d6803aad96b52ee626327ee55b14ea0de8) This includes in particular changes to the KDC to resolve bug 6272, originally by Matthieu Patou <mat+Informatique.Samba@matws.net>. We need to sort the AuthorizationData elements to put the PAC first, or else WinXP breaks when browsed from Win2k8. Andrew Bartlett
2009-07-17s4:kdc Rework KDC to pull in less attributes for krbtgt lookupsAndrew Bartlett3-31/+62
Each attribute we request from LDB comes with a small cost, so don't lookup any more than we must for the (very) frequent krbtgt lookup case. Similarly, we don't need to build a PAC for a server (as a target), so don't ask for the PAC attributes here either. Andrew Bartlett
2009-07-17s4:kdc rename functions from LDB_ to hdb_samba4Andrew Bartlett1-71/+71
The LDB_ prefix is misleading, and stomps on the LDB namespace. This is a Samba4 hdb module, and not something generic. Andrew Bartlett
2009-07-17Revert "fix LSA-PRIVILEGES"Günther Deschner1-3/+2
This reverts commit 0d9fdbceedddb08dbea8ed84e06a218d3ec562f4.
2009-07-17Revert "fix LSA-TRUSTED-DOMAINS"Günther Deschner1-3/+2
This reverts commit 3c9b26276083002124674678ac757e859fb6b20e.
2009-07-17s4-smbtorture: use secinfo flags instead of numbers in lsa test.Günther Deschner1-1/+3
Guenther
2009-07-17s3-lsa: Fix pointless check for sec_info flags in _lsa_QuerySecurity().Günther Deschner1-13/+3
Guenther
2009-07-17s3-lsa: implement _lsa_LookupPrivName().Günther Deschner1-6/+45
Guenther
2009-07-17s3-lsa: implement _lsa_EnumAccountsWithUserRight().Günther Deschner1-6/+57
Guenther
2009-07-16Tidyup prompted by #6554 - Wrong deallocation in sam_account_ok.Jeremy Allison1-2/+3
Jeremy.
2009-07-16s4:heimdal_build: predefine GSSAPI_DEPRECATED depending on the compiler versionStefan Metzmacher1-0/+8
Otherwise heimdal/lib/gssapi/gssapi/gssapi.h will just define it to __attribute__ ((deprecated)) which is not supported by all compilers we care about. This should fix the build on Tru64 metze
2009-07-16s4:heimdal_build: try to fix the build on systems without ifaddrs.hStefan Metzmacher2-0/+10
metze
2009-07-16tevent: try to fix the build on QNX qnx18 6.4.1 it doesn't have SA_RESTART ↵Stefan Metzmacher1-1/+11
defined metze
2009-07-16s4:heimdal_build: tell heimdal we have inet_aton()Stefan Metzmacher1-0/+4
This should fix problems on Solaris. metze
2009-07-16s4-smbtorture: use torture_comment in RPC-LSA tests.Günther Deschner1-204/+204
Guenther
2009-07-16fix LSA-PRIVILEGESGünther Deschner1-2/+3
2009-07-16fix LSA-TRUSTED-DOMAINSGünther Deschner1-2/+3
2009-07-16s4-smbtorture: move all privilege tests to RPC-LSA-PRIVILEGES.Günther Deschner2-12/+54
Guenther
2009-07-16s4-smbtorture: move all trusted domain tests to RPC-LSA-TRUSTED-DOMAINS.Günther Deschner2-7/+49
Guenther
2009-07-16s4:heimdal_build: try to fix the build on SolarisStefan Metzmacher1-0/+1
The problem seems to be #define flock rk_flock heimdal/../heimdal_build/replace.c: In function `rk_flock': heimdal/../heimdal_build/replace.c:64: error: storage size of 'lock' isn't known heimdal/../heimdal_build/replace.c:64: warning: unused variable `lock' metze
2009-07-16tsocket: rename sa_len => sa_socklen, because sa_len is a macro on some ↵Stefan Metzmacher1-21/+21
platforms metze
2009-07-16s4:kdc Initialise new hdb function pointers.Andrew Bartlett1-0/+3
Soon we will add implementations for these.
2009-07-16s4:heimdal: import lorikeet-heimdal-200907152325 (commit ↵Andrew Bartlett67-590/+1210
2bef9cd5378c01e9c2a74d6221761883bd11a5c5)
2009-07-16lsa: fix typo in lsa_TrustDomInfoEnum enum in IDL.Günther Deschner4-12/+12
Guenther
2009-07-16s3-ldapsam: bring Fedora DS LDAP schema in line with OpenLDAP schema.Günther Deschner1-0/+8
Guenther
2009-07-16s3-rpc_parse: remove more unused code.Günther Deschner2-334/+0
Guenther
2009-07-16s3-spoolss: make some of the command hooks static.Günther Deschner2-6/+3
Guenther
2009-07-16s4-smbtorture: some work on getprinterdriver and getprinterdriver2 tests.Günther Deschner1-23/+46
Guenther
2009-07-16s4:gensec Rework gensec_krb5 mutual authentication defaultsAndrew Bartlett1-24/+28
When emulating Samba3 (which we do to ensure we don't break compatability), don't do mutual authentication by default, as it breaks the session key with AES and isn't what Samba3 does anyway. Andrew Bartlett
2009-07-16s4:heimdal The implied GSS_C_MUTUAL_FLAG depends on AP_OPTS_MUTUAL_REQUIREDAndrew Bartlett1-1/+4
We had previously assumed it was unconditional. Samba3 didn't mind very much, but Samba4's samba3-like client did, and the behaviour differed to Win2008 behaviour. Andrew Bartlett
2009-07-16s4:gensec Allow mutual auth to be turned off in 'fake_gssapi_krb5'Andrew Bartlett1-5/+15
This allows the older 'like Samba3' GENSEC krb5 implementation to work against Windows 2008. I'm using this to track down interop issues in this area. Andrew Bartlett
2009-07-16s4:dsdb Handle dc/domain/forest functional levels properlyAndrew Bartlett9-21/+174
Rather than have the functional levels scattered in 4 different, unconnected locations, the provision script now sets it, and the rootdse module maintains it's copy only as a cached view onto the original values. We also use the functional level to determine if we should store AES Kerberos keys. Andrew Bartlett
2009-07-16Add a way to set an opaque integer onto a samdbAndrew Bartlett2-0/+67
This will allow us to set some more flags into ldb during the provision.
2009-07-16Add ad-schema/*.txt and utils to the installmisc.shTimur I. Bakeyev1-3/+7
Install other useful scripts from the setup/ directory, not only provisioning ones. Also install setup/ad-schema/*.txt files to the SETUPDIR. These are necessary for 'provision' to work properly.
2009-07-15Fix bug #6551 - win98 clients cannot connect after server upgrade to ↵Jeremy Allison2-0/+3
samba-3.4.0. The values of vuid and tid were not being correctly updated in the struct smb_request when passed to chain_reply inside sessionsetupX and tconX. Jeremy.
2009-07-15s3:smbd: try to fix a compiler warning on i386 : left shift count >= width ↵Stefan Metzmacher1-1/+1
of type metze
2009-07-15s3:libsmb: we need to include "includes.h" as first header to let code build ↵Stefan Metzmacher1-1/+1
on all platforms This should fix the Tru64 build. metze
2009-07-15s3:tldap: fix the build - a void function should not return a valueStefan Metzmacher1-3/+3
metze
2009-07-15Make cli_unlock and cli_unlock64 async. Fix POSIX lock test.Jeremy Allison5-91/+247
Jeremy.
2009-07-15s4:winbind: rename uint => uint32_t as uint isn't portableStefan Metzmacher1-1/+1
metze
2009-07-15s4:libnet: rename uint => uint32_t because uint is not portableStefan Metzmacher4-6/+6
metze
2009-07-15s4:heimdal_build: try to fix the build on SolarisStefan Metzmacher1-3/+1
We need the definition of 'struct flock'. metze
2009-07-15s4:ntvfs/ipc: replace unnesessary talloc_reference() by a simple talloc_strdup()Stefan Metzmacher1-1/+2
metze
2009-07-15s3:ntvfs/posix: avoid unnesessary talloc_reference()Stefan Metzmacher1-1/+4
This caused the panics on the RAW-SETFILEINFO.RENAME test, because we returned an empty strings. The problem was: ERROR: talloc_steal with references at ntvfs/posix/pvfs_setfileinfo.c:215 reference at ntvfs/posix/pvfs_resolve.c:799 metze
2009-07-15s4:heimdal: teach heimdal we have (v)aѕprintf in libreplaceBjörn Jacke1-0/+8
2009-07-15ѕ4:heimdal: teach heimdal that we have strnlen via libreplcaeBjörn Jacke1-0/+4