summaryrefslogtreecommitdiff
path: root/source4/dns_server
AgeCommit message (Collapse)AuthorFilesLines
2012-09-07s4 dns: Make debug output less noisyKai Blin4-16/+16
Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Fri Sep 7 00:31:56 CEST 2012 on sn-devel-104
2012-09-06s4 dns: Check if signing user is allowed to update recordsKai Blin1-16/+56
This should fix bug #9142
2012-09-06selftest: Add tests for the dlz_bind9 moduleAndrew Bartlett1-0/+7
This will help ensure that we do not break the fundemental loading etc. From here, it should be easy to extend this to more comprehensive tests. Andrew Bartlett
2012-09-05s4 dns: Allow configuring signed updatesKai Blin1-1/+6
Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Wed Sep 5 20:42:46 CEST 2012 on sn-devel-104
2012-09-05s4 dns: Make sure to remember incoming tkey nameKai Blin1-0/+4
2012-09-05s4 dns: Verify incoming TSIG signaturesKai Blin4-0/+189
2012-09-05s4 dns: Handle GSS-TSIG signature creationKai Blin3-0/+144
2012-09-05s4 dns: When we got a TKEY, we need to remember which key to use for signingKai Blin2-2/+17
2012-09-05s4 dns: TKEY record needs to remember incoming algorithmKai Blin2-1/+10
Samba3 (and older windows versions) use gss.microsoft.com, win7 (and the RFC) use gss-tsig
2012-09-05s4 dns: Move dns_find_tkey to an extra fileKai Blin4-56/+88
2012-09-05s4-dns: Fix linking the dns service.Andreas Schneider1-1/+1
Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Wed Sep 5 18:40:00 CEST 2012 on sn-devel-104
2012-09-05s4 dns: Revert erroneous push from wrong branchKai Blin7-461/+60
I've pushed the wrong branch for this, sorry about that. Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Wed Sep 5 14:10:54 CEST 2012 on sn-devel-104
2012-09-05s4 dns: Allow configuring signed updatesKai Blin1-1/+6
Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Wed Sep 5 10:45:22 CEST 2012 on sn-devel-104
2012-09-05s4 dns: Make sure to remember incoming tkey nameKai Blin1-0/+4
2012-09-05more tsig_verify stuffKai Blin3-12/+23
2012-09-05drop meKai Blin1-0/+3
2012-09-05hack: dns_sign_tsig correct memcpyKai Blin1-1/+1
2012-09-05HACK remove debug statementKai Blin1-1/+0
2012-09-05s4 dns: Verify incoming TSIG signaturesKai Blin4-9/+95
2012-09-05s4 dns: Handle GSS-TSIG signaturesKai Blin5-59/+352
2012-08-31s4 dns: Store TKEYs in a ringbufferKai Blin3-57/+106
This stops us from potentially being DoSed by tons of TKEYs Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Fri Aug 31 22:46:01 CEST 2012 on sn-devel-104
2012-08-31s4 dns: Negotiate GSSAPI-based TKEYsKai Blin4-1/+254
Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Fri Aug 31 10:38:35 CEST 2012 on sn-devel-104
2012-08-06lib/param: move enum dns_update_settings to lib/paramChristian Ambach2-26/+1
2012-06-15lib/param: Create a seperate server role for "active directory domain ↵Andrew Bartlett1-1/+1
controller" This will allow us to detect from the smb.conf if this is a Samba4 AD DC which will allow smarter handling of (for example) accidentially starting smbd rather than samba. To cope with upgrades from existing Samba4 installs, 'domain controller' is a synonym of 'active directory domain controller' and new parameters 'classic primary domain controller' and 'classic backup domain controller' are added. Andrew Bartlett
2012-06-06s4:dns-server: remove an extra blank line from handle_question()Michael Adam1-1/+0
2012-06-06s4 dns: Correctly handle A questions for CNAMEsKai Blin1-5/+56
When an A/AAAA lookup is made for a name that actually is a CNAME record, we need to return the CNAME record, and then do the A/AAAA lookup for the name the CNAME points at. This still fails for CNAMEs pointing at records for domains we need to ask our forwarders for. Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Wed Jun 6 15:23:55 CEST 2012 on sn-devel-104
2012-05-30s4-dns: Use W_ERROR_HAVE_NO_MEMORY in create_response_rrKai Blin1-24/+8
2012-05-30s4-dns: Use proper talloc hierarchy for NS records in create_response_rrKai Blin1-1/+2
2012-05-30s4-dns: Use proper talloc hierarchy for AAAA records in create_response_rrKai Blin1-1/+2
2012-05-30s4-dns: Remove sync dns_processVolker Lendecke1-24/+0
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Make the TCP dns server asyncVolker Lendecke1-21/+39
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Make the UDP dns server asyncVolker Lendecke1-18/+38
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Remove sync dns_server_process_queryVolker Lendecke2-39/+0
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Make dns_process_send asynVolker Lendecke3-80/+148
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Remove unused sync ask_forwarder wrapperVolker Lendecke1-30/+0
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Make dns_server_process_query asyncVolker Lendecke1-37/+120
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Make ask_forwarder asyncVolker Lendecke1-43/+111
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Create a proper talloc hierarchy in create_response_rrVolker Lendecke1-3/+15
Pair-Programmed-With: Michael Adam <obnox@samba.org> Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Add debug output for unmappable WERROR to DNS errcodeVolker Lendecke1-1/+1
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Fix some typosVolker Lendecke2-2/+2
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Remove some break; statementsVolker Lendecke1-8/+0
We fall through implicitly, and that pattern is used elsewhere in Samba as well. Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Fix an unlikely potential memleakVolker Lendecke1-2/+4
If state was alloc'ed to NULL, in_packet to != NULL and out_packet to NULL, we leak in_packet. Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Use talloc_asprintf_append_buffer in create_response_rrVolker Lendecke1-2/+2
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-30s4-dns: Add some NULL checks to create_response_rrVolker Lendecke1-0/+15
Signed-off-by: Kai Blin <kai@samba.org>
2012-05-24dlz_bind9: Make the talloc destructor static and return 0.Amitay Isaacs1-1/+2
Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Thu May 24 03:32:50 CEST 2012 on sn-devel-104
2012-05-24dlz_bind9: Fix the named crash on reloading namedAmitay Isaacs1-1/+17
When reloading zones, named first creates new zone instance and then shuts down the old instance. Since ldb layer, keeps the same LDB open, talloc_free() on samdb handle, causes talloc "access after use" error. This patch keeps only single context (dlz_bind9_data) and uses reference counting to decide when to actually free the context. Since samdb handle is reused, use talloc_unlink() instead of talloc_free() on samdb handle.
2012-05-23libcli/dns: make 'clidns' private library out of DNS code in WAF buildAlexander Bokovoy1-1/+1
After consolidating DNS resolver code to lib/addns, there is one piece that still needs to be moved into a common DNS resolver library: DNS_HOSTS_FILE subsystem. Unfortunately, direct move would require lib/addns to depend on libcli/util/{ntstatus.h,werror.h} (provided by errors subsystem). In addition, moving libcli/dns/* code to lib/addns/ would make conflicting the dns_tkey_record struct. The conflict comes from source4/dns_server/ and is due to use of IDL to define the struct. lib/addns/ library also provides its own definition so we either need to keep them in sync (rewrite code in lib/addns/ a bit) or depend on generated IDL headers. Thus, making a private library and subsystem clidns is an intermediate step that allows to buy some time fore refactoring.
2012-05-23Introduce system MIT krb5 build with --with-system-mitkrb5 option.Alexander Bokovoy1-2/+5
System MIT krb5 build also enabled by specifying --without-ad-dc When --with-system-mitkrb5 (or --withou-ad-dc) option is passed to top level configure in WAF build we are trying to detect and use system-wide MIT krb5 libraries. As result, Samba 4 DC functionality will be disabled due to the fact that it is currently impossible to implement embedded KDC server with MIT krb5. Thus, --with-system-mitkrb5/--without-ad-dc build will only produce * Samba 4 client libraries and their Python bindings * Samba 3 server (smbd, nmbd, winbindd from source3/) * Samba 3 client libraries In addition, Samba 4 DC server-specific tests will not be compiled into smbtorture. This in particular affects spoolss_win, spoolss_notify, and remote_pac rpc tests.
2012-05-08s4 dns: unify error handling when bailing outKai Blin1-12/+11
Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Tue May 8 15:48:25 CEST 2012 on sn-devel-104
2012-05-07s4-dns: Build BIND DLZ modules with correct private libraryAmitay Isaacs1-2/+2
This fixes rpath for samdb-common private library after make install. Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Mon May 7 07:40:29 CEST 2012 on sn-devel-104
generated by cgit (git 2.34.1) at 2024-07-10 01:16:23 +0000