samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2009-09-17	s4:provision - Some rework (continuation)	Matthias Dieter Wallnöfer	4	-40/+311
	- Fix up "servicePrincipalNames" attributes on the DC object - Add some informative comments (most in "provision_self_join.ldif") - Add also comments where objects are missing which we may add later when we support the feature (mainly for FRS) - Add "domain updates" objects also under "CN=Configuration" (they exist twice) - Add the default services under "Services" to allow interoperability with some MS client tools - Smaller changes
2009-09-17	s3: build with pam support when possible	Björn Jacke	1	-3/+3

2009-09-17	Re-generated idl files with () for enum values.	Jeremy Allison	23	-1014/+1014
	Jeremy.
2009-09-17	Ensure we enclose the enum values in brackets to make the cast work.	Jeremy Allison	1	-0/+2
	Jeremy.
2009-09-17	Check in modified generated files for systems where pidl can't run.	Jeremy Allison	24	-1066/+1068
	Jeremy.
2009-09-17	Merge branch 'master' of ssh://jra@git.samba.org/data/git/samba	Jeremy Allison	6	-12/+61

2009-09-17	Fix the problem with pidl generating invalid C for enums. According	Jeremy Allison	1	-1/+9
	to the C standard an enum is guarenteed to be an (int), which means for 4 byte ints specifying a type of 0x80000000 is an invalid value. The Solaris compiler complains about this. Fix by adding an (int) cast in front of the value generation. Jeremy.
2009-09-17	spnego: Support ASN.1 BIT STRING and use it in SPNEGO.	Kouhei Sutou	6	-12/+61
	Signed-off-by: Günther Deschner <gd@samba.org>
2009-09-17	pyldb: Don't segfault when invalid type is specified to as_sddl and from_sddl.	Matthieu Patou	2	-2/+19
	Fix bug #6723
2009-09-17	s4:descriptor module - Revert and const fixups	Matthias Dieter Wallnöfer	1	-7/+18
	- Revert a change introduced by me since I didn't understood the meaning of the version check - Added some "const" to suppress compiler warnings
2009-09-17	s4:descriptor - cosmetic	Matthias Dieter Wallnöfer	1	-1/+1

2009-09-17	s4:libnet_become_dc - Fix some uninitialised variables	Matthias Dieter Wallnöfer	1	-3/+3

2009-09-17	s4:provision - Some rework	Matthias Dieter Wallnöfer	12	-23610/+23878
	- Add/change "wellKnownObjects" attributes - Order entries in "provision_basedn_modify.ldif" - Add/change "delete entries" object under BASEDN and CONFIGDN - Fix default version number of "Default domain policy" group policy - Add "domain updates" objects for interoperability with MS AD maintaining tools - Show version number in the "oEMInformation" attribute (suggested by ekacnet) - Smaller fixups
2009-09-17	void functions can't return a value. Found by the Solaris compiler.	Jeremy Allison	1	-1/+1
	Jeremy.
2009-09-17	void functions can't return a value. Found by the Solaris compiler.	Jeremy Allison	1	-1/+1
	Jeremy.
2009-09-17	void functions can't return a value. Found by the Solaris compiler.	Jeremy Allison	1	-1/+1
	Jeremy.
2009-09-17	We now pass the Microsoft SMB2 fileio test with EA's and streams...	Jeremy Allison	5	-5/+69
	Jeremy.
2009-09-17	Remove ununsed variable warning.	Jeremy Allison	1	-1/+0
	Jeremy.
2009-09-17	s4/domain behaviour flags: Fix them up in various locations	Matthias Dieter Wallnöfer	4	-16/+10
	Additional notes: - Bump the level to Windows Server 2008 R2 (we should support always the latest version - if we provision ourself) - In "descriptor.c" the check for the "domainFunctionality" level shouldn't be needed: ACL owner groups (not owner user) are supported since Windows 2000 Server (first AD edition) - I took the argument from: http://support.microsoft.com/kb/329194
2009-09-17	s4/python: flags	Matthias Dieter Wallnöfer	2	-9/+83
	- Introduce the "userAccountControl", "groupType" and "sAMAccountType" flags - Corrects the "domain/forestFunctionality" and "domainControllerFunctionality" flags
2009-09-17	libds/common/flags: various	Matthias Dieter Wallnöfer	2	-28/+36
	- Reorders the header file to have the order "userAccountFlags", "groupType", "sAMAccountType" (matches the order in the flag_mapping.c and samldb module) - Fixes the group account flags properly up - Fixes the flags for "domain/forestFunctionality" and "domainControllerFunctionality" up
2009-09-16	Merge branch 'master' of /home/tridge/samba/git/combined	Andrew Tridgell	0	-0/+0

2009-09-16	s4-repl: raise a debug level	Andrew Tridgell	1	-1/+1

2009-09-16	s4-dsdb: treat uSNHighest as 0 if @REPLCHANGED doesn't exist	Andrew Tridgell	1	-0/+8
	When a partition is first created it still needs a uSNHighest value
2009-09-16	Merge branch 'master' of /home/tridge/samba/git/combined	Andrew Tridgell	19	-393/+387

2009-09-16	s4-repl: raise a debug level	Andrew Tridgell	1	-1/+1

2009-09-16	Merge branch 'master' of ssh://git.samba.org/data/git/samba	Andrew Tridgell	18	-392/+386

2009-09-16	Merge branch 'master' of /home/tridge/samba/git/combined	Andrew Tridgell	1	-0/+8

2009-09-16	s4-dsdb: treat uSNHighest as 0 if @REPLCHANGED doesn't exist	Andrew Tridgell	1	-0/+8
	When a partition is first created it still needs a uSNHighest value
2009-09-16	libcli/auth: rewrite schannel sign/seal code to be more generic	Stefan Metzmacher	5	-229/+263
	This prepares support for HMAC-SHA256/AES. metze
2009-09-16	lib/crypto: include aes.h into crypto.h	Stefan Metzmacher	1	-1/+1
	metze
2009-09-15	Merge branch 'master' of /home/tridge/samba/git/combined	Andrew Tridgell	5	-35/+123

2009-09-15	s4-repl: take advantage of async RPC forwarding	Andrew Tridgell	2	-26/+7
	This uses async RPC forwarding for the DsReplicaSync call
2009-09-15	s4-rpc: added a module for forwarding RPC requests	Andrew Tridgell	3	-9/+116
	dcesrv_irpc_forward_rpc_call() can be used to forward an arbitrary RPC request to another task in Samba4, with the return being handled asynchronously. This is useful for forwarding DRS requests to the repl or kcc tasks
2009-09-15	Merge branch 'master' of /home/tridge/samba/git/combined	Andrew Tridgell	6	-22/+64

2009-09-15	s4-drs: lock down key DRS calls	Andrew Tridgell	4	-22/+54
	The key DRS calls should only be allowed by administrators or domain controllers
2009-09-15	s4-security: added a new security level SECURITY_DOMAIN_CONTROLLER	Andrew Tridgell	2	-0/+10
	This will be used as a simple way to lock down DRS replication to administrators and domain controllers
2009-09-15	Merge branch 'master' of /home/tridge/samba/git/combined	Andrew Tridgell	22	-439/+1748

2009-09-15	s4-ldb: ldap attribute names can contain a '.'	Andrew Tridgell	1	-1/+2
	When they are of the form of OIDs
2009-09-15	s4-ldb: expose ldb_transaction_prepare_commit() in ldb	Andrew Tridgell	3	-21/+64
	It is useful to be able to control the 2 phase commit from application code (s4 replication uses it)
2009-09-15	s4-repl: don't do double replication	Andrew Tridgell	4	-6/+44
	When we replicate from a remote DC, we need to note the new uSN that the local changes have resulted in, and modify the uSN that the notify task uses to determine if it should send a ReplicaSync message back to the remote DC. Otherwise we end up always triggering a ReplicaSync every time we replicate from another DC
2009-09-15	tdb: allow reads after prepare commit	Andrew Tridgell	1	-8/+0
	We previously only allowed a commit to happen after a prepare commit. It is in fact safe to allow reads between a prepare and a commit, and the s4 replication code can make use of that, so allow it.
2009-09-15	s4-drs: filter based on local_usn	Andrew Tridgell	1	-1/+1
	The getncchanges uSN is in our local space, so we must compare it to the local_usn in replPropertyMetaData
2009-09-15	s4-repl: make sure we marshal the replPropertyMetaData after the last change	Andrew Tridgell	1	-10/+10
	we were setting local_usn after the marshall, so it wasn't going into the object
2009-09-15	s4-dsdb: use DLIST_ADD() not DLIST_ADD_END()	Andrew Tridgell	2	-4/+4
	Using DLIST_ADD_END() to construct a long list is very inefficient (it is O(n^2). These lists are not ordered, so using DLIST_ADD() is much better.
2009-09-15	s4-ldb: cope better with corruption of tdb records	Andrew Tridgell	4	-5/+30
	When doing an indexed search if we hit a corrupt record we abandoned the indexed search and did a full search. The problem was that we might have sent some records to the caller already, which means the caller ended up with duplicate records. Fix this by returning a search error if indexing returns an error and we have given any records to the caller.
2009-09-15	talloc: when we enable NULL tracking, reparent the autofree context	Andrew Tridgell	1	-0/+3
	If NULL tracking is enabled after the autofree context is initialised then autofree ends up separate from the null_context. This means that talloc_report_full() doesn't report the autofree context. Fix this by reparenting the autofree context when we create the null_context.
2009-09-15	s4-repl: add a debug to make it easier to monitor replication	Andrew Tridgell	1	-0/+5

2009-09-16	s3: Fix reading beyond the end of a named stream in xattr_streams	Volker Lendecke	1	-2/+1
	This was found thanks to a test by Sivani from Microsoft against Samba at the SDC plugfest
2009-09-16	s3: Add some debugs to streams_xattr	Volker Lendecke	1	-0/+6