summaryrefslogtreecommitdiff
path: root/source4/dns_server
AgeCommit message (Collapse)AuthorFilesLines
2012-01-04dlz_bind9: create session info from PAC using auth contextAmitay Isaacs1-7/+59
This fixes the creation of session info from PAC, after changes in gensec code. Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Wed Jan 4 01:59:09 CET 2012 on sn-devel-104
2011-12-17s4 dns: Allow updates based on smb.conf settingKai Blin2-2/+29
Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Sat Dec 17 04:19:40 CET 2011 on sn-devel-104
2011-12-17s4 dns: Add some debug outputKai Blin1-0/+3
2011-12-17s4 dns: Actually handle the update requestKai Blin3-0/+383
2011-12-17s4 dns: Implement RFC-compatible update prescanKai Blin1-3/+37
2011-12-17s4 dns: Update prerequisite checking conforming to RFCKai Blin3-42/+234
2011-12-17s4 dns: Move record lookup to dns_utils.cKai Blin3-36/+58
2011-12-17s4 dns: Implement dns record comparison functionKai Blin2-0/+57
2011-12-17s4 dns: Implement dns name equality checkKai Blin2-0/+10
2011-12-17s4 dns: Fix some typos in comments and a whitespaceKai Blin1-3/+3
2011-12-09s4 dns: Update requests with QCLASS != IN or ALL trigger NOTIMPLEMENTED errorsKai Blin1-0/+5
Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Fri Dec 9 03:32:28 CET 2011 on sn-devel-104
2011-12-09s4 dns: More explicitly use the first question of an update packet onlyKai Blin1-1/+1
2011-12-09s4 dns: Get rid of const qualifier for prereqs, we do need to allocate thoseKai Blin2-6/+6
2011-12-07s4-dns Use match-by-key in GSSAPI server if principal is not specifiedAndrew Bartlett1-22/+5
This allows dlz_bind9 to match on exactly the same key as bind9 itself Andrew Bartlett Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Wed Dec 7 02:20:10 CET 2011 on sn-devel-104
2011-12-07dlz_bind9: Add command line options for URL and debugAmitay Isaacs2-9/+28
To specify debug level, use -d <level> in named.conf. To specify sam db, use -H <path/to/sam.ldb> in named.conf. The default log level is set to 0. The log level specified in smb.conf is not used. To set log level, use -d option.
2011-12-07dlz_bind9: Set debugging output to stderrAmitay Isaacs1-0/+3
2011-12-07dlz_bind9: Use client supplied credentials for DNS record updateAmitay Isaacs1-0/+79
This creates the DNS records with correct owner and group settings.
2011-12-07dlz_bind9: For creating a child entry, use only SEC_ADS_CREATE_CHILDAmitay Isaacs1-1/+1
The member servers in AD do not have access to modify the parent, but do have access to create child DNS records.
2011-11-29dlz_bind9: Added access check to verify dynamic updateAmitay Isaacs2-17/+167
This creates session info from kerberos ticket and verifies if the signer has write access to a particular DN corresponding to the name in dynamic update. Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>
2011-11-29dlz_bind9: Use the sam database in dns/ as defaultAmitay Isaacs2-60/+14
This change is introduced to access samdb copy directly, rather than over ildap. The advantage is that the samba server does not need to be running for bind9 to start.
2011-11-17s4 dns: Reduce test output noise by upping log level for dns_name_packet loggingKai Blin1-3/+6
Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Thu Nov 17 20:10:05 CET 2011 on sn-devel-104
2011-11-04s4 dns: the opcode is called OPCODE_UPDATE in the RFC, not OPCODE_REGISTERKai Blin1-1/+1
2011-11-04s4 dns: Handle QCLASS_NONE queriesKai Blin1-0/+5
2011-11-04s4 dns: Support DNS_QTYPE_ALL queriesKai Blin1-109/+59
2011-10-27s4:wscript - install the two missing files "dlz_bind9.so" and "named.conf.dlz"Geza Gemes1-0/+2
Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Thu Oct 27 20:27:32 CEST 2011 on sn-devel-104
2011-10-17s4:dlz_bind9: add no memory checksStefan Metzmacher1-0/+4
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Mon Oct 17 14:07:25 CEST 2011 on sn-devel-104
2011-10-17s4:dlz_bind9: Copy dn before changing in b9_has_soaStefan Gohmann1-1/+5
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-17s4:dlz_bind9: add missing earch bases for windows 2000 domainsStefan Gohmann1-0/+1
By default the samba4 dlz_bind9 backend searches under CN=MicrosoftDNS,DC=DomainDnsZones and CN=MicrosoftDNS,DC=ForestDnsZones. In my samba4 test setup all DNS zones are under CN=MicrosoftDNS,CN=System. After adding the attached patch it works fine for me. Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-09-28dns: Do as BIND and MS DNS and drop quries with qdcount != 1Kai Blin1-5/+11
Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Wed Sep 28 03:37:22 CEST 2011 on sn-devel-104
2011-09-28dns: The QCLASS is called IN, not IPKai Blin1-6/+6
2011-08-25s4-dns: when searching all partitions the NULL basedn is OKAndrew Tridgell1-8/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-06-20libcli/util Rename common map_nt_error_from_unix to avoid duplicate symbolAndrew Bartlett1-2/+2
The two error tables need to be combined, but for now seperate the names. (As the common parts of the tree now use the _common function, errmap_unix.c must be included in the s3 autoconf build). Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Mon Jun 20 08:12:03 CEST 2011 on sn-devel-104
2011-06-06s4-ipv6: update callers to load_interface_list()Andrew Tridgell1-1/+1
2011-05-08s4-interfaces Rename interfaces code so not to conflict with source3/Andrew Bartlett1-4/+4
The iface_count, iface_n_bcast, and load_interfaces functions conflicted with functions of the same name in source3, so the source4 functions were renamed. Hopefully we can actually wrap one around the other in future. Andrew Bartlett
2011-04-29s4:"ldb_connect" calls - proof for "!= LDB_SUCCESS"Matthias Dieter Wallnöfer1-1/+1
Reviewed-by: abartlet
2011-04-29s4-param Rename private_path() -> lpcfg_private_path()Andrew Bartlett1-1/+1
This is consistent with lock_path() Andrew Bartlett
2011-03-19source4/: Fix prototypes for all functions in various subsystems.Jelmer Vernooij1-0/+2
2011-01-14s4-dns: renamed DNS_TYPE_ZERO to DNS_TYPE_TOMBSTONEAndrew Tridgell1-5/+5
we now know that these are tombstone records, with a timestamp Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-12s4:dns_server/dlz_bind9.c - initialise "ret" variablesMatthias Dieter Wallnöfer1-2/+2
2010-12-22dns: fixed dns record formatAndrew Tridgell1-4/+9
based on new WSPP docs from Bryan Burgin Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Wed Dec 22 04:45:46 CET 2010 on sn-devel-104
2010-12-21s4-dns: set dwSerial and dwFlagsAndrew Tridgell1-0/+7
we are waiting on full docs on these, but this is better than zero Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Tue Dec 21 12:05:51 CET 2010 on sn-devel-104
2010-12-21s4-dns: fixed name comparison in bind9 moduleAndrew Tridgell1-6/+21
we need to compare without the trailing '.' Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-12-21s4-dns: return the local hostname as the SOA authorityAndrew Tridgell1-2/+19
this is done by all DCs in the domain to ensure that updates go to the right place
2010-12-21s4-dns: disable segfault handling in dlz_bind9Andrew Tridgell1-0/+2
we don't want bind9 calling the Samba segv handler
2010-12-21s4-dns: fixed a crash bug in dlz_bind9 codeAndrew Tridgell1-2/+0
we need to keep el_ctx for the next part of the loop
2010-12-15s4-dns: implemented parsing and storing of DNS records from bindAndrew Tridgell2-46/+640
DNS updates from nsupdate against our ldb SAM now work Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Wed Dec 15 12:36:46 CET 2010 on sn-devel-104
2010-12-15s4-dns: added basic DLZ writeable support to dlz_bind9Andrew Tridgell3-99/+448
this implements the expanded DLZ update driver API, allowing for bind9 to send dynamic updates to the Samba DLZ driver. This change also adds support for exporting all DNS zones in the SAM database, which also means we now correctly separate the _msdcs zone from the main zone.
2010-12-08s4-dns: dlz_bind9 doesn't need to link to gensec any moreAndrew Tridgell1-1/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-12-08s4-dns: use ldb hooks for samba extensions in dlz_bind9Andrew Tridgell1-49/+35
this avoids linking dlz_bind9 directly to heimdal, which allows a RTLD_DEEPBIND in ldb module loading to find the right kerberos version Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-12-08s4-dns: allow a remote ldap server to be used with dlz_bind9Andrew Tridgell2-16/+67
this allows for configs like this: dlz "Samba zone" { database "dlopen /usr/lib/samba/modules/bind9/dlz_bind9.so -H ldap://10.0.0.4 -Uadministrator@v2.tridgell.net%penguin -k no"; };