summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2011-12-22s3-rpc_server rename NTLMSSP functions to auth_generic..()Andrew Bartlett4-11/+11
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server rename ntlmssp_server_auth_start() -> auth_generic_server_start()Andrew Bartlett4-5/+9
By adding an OID parameter we can make this routine generic to any gensec module that may be made available. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server remove unused headerAndrew Bartlett1-1/+0
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-auth split the auth_generic functions into a seperate fileAndrew Bartlett5-159/+194
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server request both sign and seal for clarityAndrew Bartlett1-1/+1
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-auth remove auth_ntlmssp_start(), call auth_generic_start() directlyAndrew Bartlett5-14/+9
This makes it clear that this can support more than just NTLMSSP. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-auth rename auth_ntlmssp_prepare() -> auth_generic_prepare()Andrew Bartlett7-13/+13
This function handles more than NTLMSSP now, at least when we are an AD DC and so changing the name may avoid some confusion in the future. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-auth rename auth_ntlmssp_state -> auth_generic_stateAndrew Bartlett14-35/+35
This structure handles more than NTLMSSP now, at least when we are an AD DC and so changing the name may avoid some confusion in the future. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-rpc_server request the DCE_STYLE feature in ntlmssp_server_auth_startAndrew Bartlett1-0/+4
This is not used or honoured by NTLMSSP, but I hope to make this routine more generic in the future. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-22s3-netlogon: use dsgetdcname() instead of get_dc_name()Sumit Bose1-2/+7
Sometimes the domain parameter might not contain the NetBIOS name of the remote domain but the DNS name. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Thu Dec 22 19:21:21 CET 2011 on sn-devel-104
2011-12-22s3-netlogon: Add support to authenticate trusted domains.Sumit Bose1-0/+13
2011-12-22s4-torture: Test rpc schannel netr_LogonGetCapability.Stefan Metzmacher2-0/+62
metze
2011-12-22s3-rpc_server: Pass in our flags to netlogon_creds_server_init().Stefan Metzmacher1-1/+1
metze
2011-12-22s3-netlogon: Add support for LogonGetCapabilities.Stefan Metzmacher1-1/+21
This is also needed to support AES. metze
2011-12-22s4-librpc: Fix netlogon schannel client connect.Andreas Schneider1-0/+2
As a client we request as much flags as possible. The server checks which flags it supports and returns the same negotiation flags or less. So we need to store the negotiate flags from the server. We need them later if we have to call netr_LogonGetCapabilities.
2011-12-22s3:torture/test_smb2: also try PROTOCOL_SMB2_24Stefan Metzmacher1-6/+9
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Dec 22 17:47:17 CET 2011 on sn-devel-104
2011-12-22lib/param: add support for "SMB2_24" in smb.conf optionsStefan Metzmacher1-0/+1
metze
2011-12-22s3:smb2_negprot: add support for PROTOCOL_SMB2_24Stefan Metzmacher1-0/+15
metze
2011-12-22libcli/smb: add PROTOCOL_SMB2_24 supportStefan Metzmacher2-1/+3
metze
2011-12-22libcli/smb: add SMB2_DIALECT_REVISION_224Stefan Metzmacher1-0/+1
This is specified in the new [MS-SMB2] preview document. metze
2011-12-22s3-auth Restore shortcut for guest security tokenAndrew Bartlett1-11/+11
This was lost when the server_info and session_info structures were split. This helps avoid doing lookups for the guest account to determine the uid/gid and SID values. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Dec 22 15:51:09 CET 2011 on sn-devel-104
2011-12-22runcmd: use set_close_on_exec()Andrew Tridgell1-0/+8
this prevents a fd leak to child processes Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Thu Dec 22 14:00:06 CET 2011 on sn-devel-104
2011-12-22runcmd: use a pipe for stdin to child processesAndrew Tridgell1-7/+46
this allows child processes to detect the exit of the parent by looking for EOF on stdin
2011-12-22Change the signature of pthreadpool_finished_job() to return 0Jeremy Allison4-16/+19
on success, errno on fail and return the jobid in a separate variable. I need this fix for my vfs_aio_pthread.c module. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Dec 22 12:12:33 CET 2011 on sn-devel-104
2011-12-22param: domain_logons and domain_master are of type enum_bool_autoAmitay Isaacs3-3/+3
These parameters should be defined as int and not bool. This fixes the test failures on big endian machines. Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Thu Dec 22 10:37:42 CET 2011 on sn-devel-104
2011-12-22s3-rpc_server: Add my copyright for my previous work hereAndrew Bartlett1-0/+1
Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Thu Dec 22 09:02:57 CET 2011 on sn-devel-104
2011-12-22s3-rpc_server: Remove old commentAndrew Bartlett1-5/+0
2011-12-22s3-rpc: added "rpc_server:default" config optionAndrew Tridgell1-4/+12
this allows the config to specify a default behaviour (embedded, external or disabled) for unknown pipes. This is needed to allow the s3 smbd server to redirect unknown pipes to the s4 RPC server when using s3 smbd as a file server for a s4 DC. If rpc_server:default is not specified then this change preserves the old behaviour
2011-12-22s3-loadparm: mark a few parameters as having P_BYTES typeAndrew Tridgell1-12/+12
this fixes a problem with "max xmit = 32K" resulting in a maximum SMB transmit size of 32 bytes, which makes for some very interesting network traces! This is what was causing smbtorture to consume gigabytes of memory in the rpc.schannel test
2011-12-22param: Fix the data type for bAvailableAmitay Isaacs1-1/+1
This causes the copy_service() to not copy bAvailable boolean on big endian machines causing tests to fail. Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Thu Dec 22 05:30:49 CET 2011 on sn-devel-104
2011-12-22s3: There's no reason not to at least build winbind on darwinVolker Lendecke1-0/+2
It does not necessarily do nsswitch services, but as a NETLOGON proxy it should work fine Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Thu Dec 22 00:16:44 CET 2011 on sn-devel-104
2011-12-21s3-dns: prevent from potentially doing wrong SRV DNS lookups.Günther Deschner1-1/+1
With an empty sitename we asked for e.g. _ldap._tcp.._sites.dc._msdcs.AD.EXAMPLE.COM Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Dec 21 17:23:25 CET 2011 on sn-devel-104
2011-12-21idl: Avoid c++ style commentsVolker Lendecke1-1/+1
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Wed Dec 21 13:36:01 CET 2011 on sn-devel-104
2011-12-21tdb: don't free old recovery area when expanding if already at EOF.Rusty Russell1-17/+30
We allocate a new recovery area by expanding the file. But if the recovery area is already at the end of file (as shown in at least one client case), we can simply expand the record, rather than freeing it and creating a new one. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> Autobuild-User: Rusty Russell <rusty@rustcorp.com.au> Autobuild-Date: Wed Dec 21 06:25:40 CET 2011 on sn-devel-104
2011-12-21tdb: use same expansion factor logic when expanding for new recovery area.Rusty Russell3-21/+34
If we're expanding because the current recovery area is too small, we expand only the amount we need. This can quickly lead to exponential growth when we have a slowly-expanding record (hence a slowly-expanding transaction size). Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2011-12-20Allow an object to be deleted from a directory if the caller has ↵Jeremy Allison1-1/+9
DELETE_CHILD access even if we don't have access to read the ACL on the object. Fixes bug #8673 - NT ACL issue. Different fix needed for 3.6.x. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Dec 20 22:13:51 CET 2011 on sn-devel-104
2011-12-20s3: Fix some False/NULL hickupsVolker Lendecke8-17/+17
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Dec 20 13:13:17 CET 2011 on sn-devel-104
2011-12-20samba-tool: Add transaction wrapper for creating GPOAmitay Isaacs1-51/+44
This ensures that if the GPT files are not copied via SMB, AD changes are rolled back. Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Tue Dec 20 09:12:41 CET 2011 on sn-devel-104
2011-12-19tdb2: Avoid a malloc/memcpy in _tdb1_storeVolker Lendecke1-19/+8
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon Dec 19 16:53:40 CET 2011 on sn-devel-104
2011-12-19tdb: Avoid a malloc/memcpy in _tdb_storeVolker Lendecke1-17/+8
2011-12-19s4-dsdb: Relax the conditions where we can't do a subtree deleteMatthieu Patou1-1/+19
If the parent object is a SAM object (as defined in 3.1.1.5.2.3 Special Classes and Attributes of MS-ADTS) then we can use the subtree delete control even if the object is a critical one. Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Mon Dec 19 14:32:19 CET 2011 on sn-devel-104
2011-12-19s4:drsuapi/getncchanges: return WERR_NOMEM if talloc_array() failsStefan Metzmacher1-0/+3
metze
2011-12-19s4-drs: introduce a timeout in the getncchanges processing to always return ↵Matthieu Patou1-6/+27
something in less than x seconds Signed-off-by: Andrew Tridgell <tridge@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-19s4-drs: avoid calling unecesserly ldb_msg_find_attr_as_* as this call in ↵Matthieu Patou1-26/+45
unefficient Current implementation of ldb_msg_find_attr_as_* iterate on the list of attributes returned by the search and make a string comparison. As we sorting the array of messages / guids we tend to call this function many times. By storing the GUID and the USN in a separate structure we are sure to call this function only once per attribute and object. Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-12-19s4-becomedc: replicate first with DRS_CRITICAL_ONLY and DRS_GET_ANC objects ↵Matthieu Patou1-0/+13
for the base dn partition Windows dcpromo do the same: getncchanges with DRS_GET_ANC and DRS_CRITICAL_ONLY, then it does a getncchanges without those flags for the rest. Signed-off-by: Andrew Tridgell <tridge@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-19s4-join: replicate first with DRS_CRITICAL_ONLY and DRS_GET_ANC objects for ↵Matthieu Patou1-0/+10
the base dn partition Windows dcpromo do the same: getncchanges with DRS_GET_ANC and DRS_CRITICAL_ONLY, then it does a getncchanges without those flags for the rest. Signed-off-by: Andrew Tridgell <tridge@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-12-19tdb: be more careful on 4G files.Rusty Russell6-23/+53
I came across a tdb which had wrapped to 4G + 4K, and the contents had been destroyed by processes which thought it only 4k long. Fix this by checking on open, and making tdb_oob() check for wrap itself. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> Autobuild-User: Rusty Russell <rusty@rustcorp.com.au> Autobuild-Date: Mon Dec 19 07:52:01 CET 2011 on sn-devel-104
2011-12-19patch tdb-oob-fix.patchRusty Russell0-0/+0
2011-12-19s3-net: Fix the return codes. 0 on success, -1 on failureAmitay Isaacs1-2/+2
Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Mon Dec 19 01:57:24 CET 2011 on sn-devel-104
2011-12-17s3: Fix the clustering buildVolker Lendecke6-10/+10
ctdb_private.h already defines set_close_on_exec. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Sat Dec 17 18:41:39 CET 2011 on sn-devel-104
generated by cgit (git 2.34.1) at 2024-07-05 03:16:36 +0000