summaryrefslogtreecommitdiff
path: root/source3/utils/net.c
AgeCommit message (Collapse)AuthorFilesLines
2012-06-26s3:net registry import: add option --precheckGregor Beck1-0/+2
Signed-off-by: Michael Adam <obnox@samba.org>
2012-04-30net: Let get*sid return error from passdb initChristof Schmitt1-6/+4
When initialize_password_db returns an error this means that the SID stored in the backend cannot be read. Return this error directly instead of creating a random SID through get_global_sam_sid. Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Mon Apr 30 13:07:20 CEST 2012 on sn-devel-104
2011-12-12s3: Remove a bunch of calls to procid_self()Volker Lendecke1-2/+1
All callers to messaging_[re]init only used procid_self()
2011-11-17s3-net Do not look for a local SID when we are a DCAndrew Bartlett1-7/+8
If we are actually a DC, then the only SID we have is the domain SID, and looking for it under the local name fails if we are a Samba4 AD DC. Andrew Bartlett
2011-10-12s3:net: add command registry checkGregor Beck1-0/+4
Signed-off-by: Michael Adam <obnox@samba.org>
2011-07-28s3:net: use lp_load_global()Michael Adam1-1/+1
2011-06-23s3-net: Bind our gettext results to 'unix charset'Andrew Bartlett1-0/+10
This ensures that the translations and any embedded strings are in the same charset. It won't be the one from the user's locale (we no longer auto-detect that), but it will be self-consistent. Thanks to Steve Langasek for pointing this function out! Andrew Bartlett
2011-06-09s3-param Remove special case for global_myname(), rename to lp_netbios_name()Andrew Bartlett1-5/+5
There is no reason this can't be a normal constant string in the loadparm system, now that we have lp_set_cmdline() to handle overrides correctly. Andrew Bartlett
2011-04-13s3-build Remove distinct LOCALEDIR subsystemAndrew Bartlett1-1/+1
This is no different to the rest of dynconfig, and so should be dealt with there. Andrew Bartlett
2011-04-04s3-net: add command "net idmap check"Gregor Beck1-0/+3
This is a tool to check the consistency of an idmap tdb database. The default mode is to scan the database and list invalid entries, e.g. records with an invalid format, or records which are valid but for which the reverse mapping entry is missing. With the "--repair" switch, one can enter an interactive repair mode which will prompt for each invalid entry found with the option to delete, skip or edit the record. There is also a non-interactive repair mode triggered by "--auto" which will remove all records with invalid content and fill up mappings which are missing the reverse entry. The "--test" parameter lets "net idmap check" only list the changes that would be written and not actually commit them to the database. The "--lock" option allows to lock the database already in the first reading traverse, in order to remove the race when the database has to be closed and reopened again before writing the changes. Signed-off-by: Michael Adam <obnox@samba.org> Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Mon Apr 4 18:21:09 CEST 2011 on sn-devel-104
2011-03-30s3-messages: only include messages.h where needed.Günther Deschner1-0/+1
Guenther
2011-03-30s3-passdb: add passdb.h where needed.Günther Deschner1-0/+1
Guenther
2011-02-09s3:net add option --dbGregor Beck1-1/+2
2011-02-02s3: Fix a typoVolker Lendecke1-1/+1
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Wed Feb 2 14:58:52 CET 2011 on sn-devel-104
2010-12-15Fix bug 7866 - "net" in v3-6-test broken.Jeremy Allison1-3/+3
Someone wasn't careful about testing when not running as root :-). Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Dec 15 20:45:25 CET 2010 on sn-devel-104
2010-11-02s3-debug Remove 'AllowDebugChange' and use lp_set_cmdline() insteadAndrew Bartlett1-8/+1
By removing this global variable, the API between the two different debug systems is made more similar. Both s3 and s4 now have lp_set_cmdline() which ensures that the smb.conf cannot overwrite these the user-specified log level. Andrew Bartlett
2010-11-02s3-debug Impove setup_logging() to specify logging to stderrAndrew Bartlett1-1/+2
This change improves the setup_logging() API so that callers which wish to set up logging to stderr can simply ask for it, rather than directly modify the dbf global variable. Andrew Bartlett
2010-10-12libcli/security Provide a common, top level libcli/security/security.hAndrew Bartlett1-0/+1
This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
2010-09-23s3-dsgetdcname: always pass in messaging context.Günther Deschner1-0/+6
Volker, please check. Guenther
2010-08-06s3-net: only include netapi header when needed.Günther Deschner1-0/+1
Guenther
2010-08-05s3-popt: Only include popt-common.h when needed.Andreas Schneider1-0/+1
2010-08-05s3-secrets: only include secrets.h when needed.Günther Deschner1-0/+1
Guenther
2010-05-21s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett1-4/+4
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-18s3-net: Added a rather trivial "net printing dump" command.Günther Deschner1-0/+8
Guenther
2010-03-10s3: Fix a long-standing problem with recycled PIDsVolker Lendecke1-0/+7
When a samba server process dies hard, it has no chance to clean up its entries in locking.tdb, brlock.tdb, connections.tdb and sessionid.tdb. For locking.tdb and brlock.tdb Samba is robust by checking every time we read an entry from the database if the corresponding process still exists. If it does not exist anymore, the entry is deleted. This is not 100% failsafe though: On systems with a limited PID space there is a non-zero chance that between the smbd's death and the fresh access, the PID is recycled by another long-running process. This renders all files that had been locked by the killed smbd potentially unusable until the new process also dies. This patch is supposed to fix the problem the following way: Every process ID in every database is augmented by a random 64-bit number that is stored in a serverid.tdb. Whenever we need to check if a process still exists we know its PID and the 64-bit number. We look up the PID in serverid.tdb and compare the 64-bit number. If it's the same, the process still is a valid smbd holding the lock. If it is different, a new smbd has taken over. I believe this is safe against an smbd that has died hard and the PID has been taken over by a non-samba process. This process would not have registered itself with a fresh 64-bit number in serverid.tdb, so the old one still exists in serverid.tdb. We protect against this case by the parent smbd taking care of deregistering PIDs from serverid.tdb and the fact that serverid.tdb is CLEAR_IF_FIRST. CLEAR_IF_FIRST does not work in a cluster, so the automatic cleanup does not work when all smbds are restarted. For this, "net serverid wipe" has to be run before smbd starts up. As a convenience, "net serverid wipedbs" also cleans up sessionid.tdb and connections.tdb. While there, this also cleans up overloading connections.tdb with all the process entries just for messaging_send_all(). Volker
2010-03-03Fix typo in comments.Karolin Seeger1-1/+1
2010-02-12s3: Implement global locks in a g_lock tdbVolker Lendecke1-0/+7
This is the basis to implement global locks in ctdb without depending on a shared file system. The initial goal is to make ctdb persistent transactions deterministic without too many timeouts.
2010-01-24s3: Add --use-ccache to netVolker Lendecke1-0/+1
2010-01-19s3 net: Fix compile warningsKai Blin1-4/+7
2010-01-19s3 net/i18n: Use only one spelling for "Usage:"Kai Blin1-4/+4
2010-01-18s3/net: split up some printable stings to ease i18nBjörn Jacke1-4/+4
If we put strings like "Usage:" into separate _() macros and not the whole "Usage:..." string we can cover much more messages by only one single translation. The drawback is that the message in the sources looks less pretty.
2009-10-13s3: use enum netr_SchannelType all over the place.Günther Deschner1-2/+2
Guenther
2009-09-29s3: Remove the lua interpreter againVolker Lendecke1-7/+0
This was meant to support async winbind. But as the hairy parts of async winbind (getgrent) are done without it, it can go again.
2009-08-18s3 net: Add getauthuser/setauthuser commands.Kai Blin1-0/+124
These replace the functionality of wbinfo --get-auth-user/--set-auth-user
2009-08-12Fix EVERY SINGLE build on the buildfarm that doesn't haveJeremy Allison1-0/+4
bindtextdomain or textdomain. C'mon, this is what configure.in is *FOR*. Jeremy.
2009-07-29s3 net: Initial top level support.Kai Blin1-153/+152
2009-07-24Make the smbd VFS typesafeVolker Lendecke1-1/+0
2009-07-22Revert "net: Use samba default command line arguments."Kai Blin1-10/+33
This reverts commit fb262f79fab00374023e59476e8d05a1015a7041 and related commits c36031778e1983ddb11d3e1fcab35e738dbf94bc 72fd5fa6bb78a054fad5e5ebe19a0c0387a7d45b and 38cd0e086f50ce54d88a19aa5a6803469af90489 This change caused more trouble than it solved. We need to do this differently. Reverting so we don't accidently release this.
2009-07-15Make gencache more stableVolker Lendecke1-0/+2
This provides a compromise between stability and performance: gencache is a persistent database these days that for performance reasons can not use tdb transactions for all writes. This patch splits up gencache into gencache.tdb and gencache_notrans.tdb. gencache_notrans is used with CLEAR_IF_FIRST, writes to it don't use transactions. By default every 5 minutes and when a program exits, all entries from _notrans.tdb are transferred to gencache.tdb in one transaction.
2009-05-25net: Use samba default command line arguments.Kai Blin1-33/+10
Attention: The meaning of the -N flag changed. To get the old meaning for net groupmap set, use the long option --ntname The long option for using kerberos changed from --kerberos to --use-kerberos net rpc commands will now prompt for a password if none is given. As a benefit, net will now accept an authentication file like other samba command line tools. So no need to specify the password on the command line in scripts anymore. This should fix bug #6357 Signed-off-by: Kai Blin <kai@samba.org>
2009-04-29s3-net: make "net eventlog" help output a little more appropriate.Günther Deschner1-1/+1
Guenther
2009-04-17s3:net: add --request-timeout optionStefan Metzmacher1-0/+1
metze
2009-03-07Shape up pdb_search a bit by making it a talloc ctx with a destructorVolker Lendecke1-4/+5
2009-02-04s3-net: add "net eventlog dump".Günther Deschner1-0/+8
This allows to dump a native (non-wrapped) win32 *.evt eventlog file. Guenther
2008-12-17net luaVolker Lendecke1-0/+7
This adds a lua command line interpreter with some sample code how to build your own data types based on our internal data types. Not meant as the final word, but as a playground for experiments for people. Might be removed later when we find this turns out to be too awkward.
2008-12-03s3: Change sockaddr util function names for consistencyTim Prouty1-1/+1
Also eliminates name conflicts with OneFS system libraries
2008-08-01vampire keytab: add command line switch --clean-old-entries .Michael Adam1-0/+1
This allows to control cleaning the keytab. It will only clean old occurences of keys that are replicated in this run. So if you want to ensure things are cleaned up, combine this switch with --force-full-repl or --single-obj-repl (+dn list). Michael (This used to be commit 21385e1c635ea67215eb1da90e7dca97ae2f5d56)
2008-08-01vampire keytab: introduce switch --single-obj-repl.Michael Adam1-0/+1
This controls whether single object replication is to be used. This only has an effect when at least one object dn is given on the commandline. NOTE: Now the default is to use normal replication with uptodateness vectors and use object dns given on the command line as a positive write filter. Single object replication is only performed when this new switch is specified. Michael (This used to be commit 0f81111ea8c049eb60f98d4939e520a5a562d2e6)
2008-08-01net rpc vampire: rename --repl-nodiff to --force-full-repl.Michael Adam1-1/+1
This more clear. Michael (This used to be commit 0ddde9aae88e6244276e1c143056a4bfc7c7fcca)
2008-08-01vampire keytab: add switch --repl-nodiff to trigger full replication.Michael Adam1-0/+2
I.e. replication without keeping track of the up to date vector. Michael (This used to be commit d4b36e447bce8692416e132ab9f53a6282f54cac)