summaryrefslogtreecommitdiff
path: root/source4/utils
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r13149: DEBUG is a bad choice for 'net', it should print to stderrAndrew Bartlett1-3/+3
Andrew Bartlett (This used to be commit 4dd6afa6d167fd04c1c3d4b4529b1cecf27eacaa)
2007-10-10r13073: Add manpage for getntacl, disable setntaclJelmer Vernooij2-1/+48
(This used to be commit 656e202233ff11b162a1137150faaaec68d74d2f)
2007-10-10r12928: This patch improves the interaction between the vampire and provsion ↵Andrew Bartlett1-1/+5
code. Previously, we had to know (or guess) the host and domain guid at the provision stage. Now we query the database post-provision, to extract the values and fill in the zone file. This allows us to generate a correct zone file in the Windows migration case. In an effort to make SWAT easier to use, I have removed and renamed some of the provision options. I have also fixed a nasty issue in my js code. I had implictly declared a global variable of the name 'join', with disasterious results for any subsequent user of the string utility function: esp exception - ASSERT at lib/appweb/ejs/ejsParser.c:2064, 0 Backtrace: [ 0] substitute_var:20 -> list[i] = join("", list2) [ 1] setup_file:9 -> data = substitute_var(data, subobj) Andrew Bartlett (This used to be commit a38ceefd11f8b748f30383ef36a4752f178bfca1)
2007-10-10r12908: use '_' also for indication we want to ask for the localmaster browser,Stefan Metzmacher1-1/+1
as '-' make problems with popt metze (This used to be commit d300d56fb724642887c9b43058ef858298846288)
2007-10-10r12892: Add a 'Migrate from Windows' page to our installation section in SWAT.Andrew Bartlett1-0/+42
Doing this required reworking ejsnet, particularly so it could take a set of credentials, not just a username and password argument. This required fixing the ejsnet.js test script, which now adds and deletes a user, and is run from 'make test'. This should prevent it being broken again. Deleting a user from ejsnet required that the matching backend be added to libnet, hooking fortunetly onto already existing code for the actual deletion. The js credentials interface now handles the 'set machine account' flag. New functions have been added to provision.js to wrap the basic operations (so we can write a command line version, as well as the web based version). Andrew Bartlett (This used to be commit a5e7c17c348c45e61699cc1626a0d5eae2df4636)
2007-10-10r12886: Rename 'secure_channel_type' parameter to domain join as 'join_type'.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit a3b3e09a9acc66dff7baf1a4ba0ea913bccdbd7d)
2007-10-10r12865: Upgrade the librpc and libnet code.Andrew Bartlett1-10/+13
In librpc, always try SMB level authentication, even if trying schannel, but allow fallback to anonymous. This should better function with servers that set restrict anonymous. There are too many parts of Samba that get, parse and modify the binding parameters. Avoid the extra work, and add a binding element to the struct dcerpc_pipe The libnet vampire code has been refactored, to reduce extra layers and to better conform with the standard argument pattern. Also, take advantage of the new libnet_Lookup code, so we don't require the silly 'password server' smb.conf parameter. To better support forcing traffic to be sealed for the vampire operation, the dcerpc_bind_auth() function now takes an auth level parameter. Andrew Bartlett (This used to be commit d65b354959842326fdd4bd7eb7fbeea0390f4afa)
2007-10-10r12804: This patch reworks the Samba4 sockets layer to use a socket_addressAndrew Bartlett1-2/+11
structure that is more generic than just 'IP/port'. It now passes make test, and has been reviewed and updated by metze. (Thankyou *very* much). This passes 'make test' as well as kerberos use (not currently in the testsuite). The original purpose of this patch was to have Samba able to pass a socket address stucture from the BSD layer into the kerberos routines and back again. It also removes nbt_peer_addr, which was being used for a similar purpose. It is a large change, but worthwhile I feel. Andrew Bartlett (This used to be commit 88198c4881d8620a37086f80e4da5a5b71c5bbb2)
2007-10-10r12732: This option does nothing.Andrew Bartlett1-2/+1
Andrew Bartlett (This used to be commit 708ce7de3034cfef3c6d8c7d49df8851ad1e5827)
2007-10-10r12731: Simplify and re-implemenet support for --parameter-name=fooAndrew Bartlett1-1/+1
--service-name=bar in testparm. Andrew Bartlett (This used to be commit be067e9a04a4dca02a9472ae7385dc0bf26735ea)
2007-10-10r12730: Reimplement --parameter-name, and bring in common samba options.Andrew Bartlett1-7/+12
This changes -s from meaning 'suppress prompt' to 'services file'. Andrew Bartlett (This used to be commit 0f78bd743b8bc415e47006a683c53bfdff1bc1e1)
2007-10-10r12729: Implement the --section-name option, for dumping only one section.Andrew Bartlett1-3/+22
Andrew Bartlett (This used to be commit 3c49dd9219b12f5ed229ba108a02b85a18146df8)
2007-10-10r12728: Revive testparm.Andrew Bartlett2-0/+234
It needs work to not dump defaults from loadparm.c, but otherwise it works. Andrew Bartlett (This used to be commit 1260fcf46579d708a406625f548add9be9fdc6fb)
2007-10-10r12622: Move table.c prototypes to seperate header to prevent circular ↵Jelmer Vernooij1-0/+1
dependencies with proto.h (This used to be commit 9e0ba380374db028358158b9e4457dd930b5ab13)
2007-10-10r12620: Get rid of automatically generated lists of init functions of ↵Jelmer Vernooij3-6/+2
subsystems. This allows Samba libraries to be used by other projects (and parts of Samba to be built as shared libraries). (This used to be commit 44f0aba715bfedc7e1ee3d07e9a101a91dbd84b3)
2007-10-10r12608: Remove some unused #include lines.Jelmer Vernooij7-8/+0
(This used to be commit 70e7449318aa0e9d2639c76730a7d1683b2f4981)
2007-10-10r12592: Remove some useless dependenciesJelmer Vernooij3-17/+12
(This used to be commit ca8db1a0cd77682ac2c6dc4718f5d753a4fcc4db)
2007-10-10r12542: Move some more prototypes out to seperate headersJelmer Vernooij2-0/+3
(This used to be commit 0aca5fd5130d980d07398f3291d294202aefe3c2)
2007-10-10r12512: Use GUID structs in API functions everywhere rather then converting ↵Jelmer Vernooij1-1/+6
back and forth between GUID structs and strings in several places. (This used to be commit 3564e2f967ef72d6301b4f7e9a311cebcded4d75)
2007-10-10r12510: Change the DCE/RPC interfaces to take a pointer to aJelmer Vernooij1-1/+1
dcerpc_interface_table struct rather then a tuple of interface name, UUID and version. This removes the requirement for having a global list of DCE/RPC interfaces, except for these parts of the code that use that list explicitly (ndrdump and the scanner torture test). This should also allow us to remove the hack that put the authservice parameter in the dcerpc_binding struct as it can now be read directly from dcerpc_interface_table. I will now modify some of these functions to take a dcerpc_syntax_id structure rather then a full dcerpc_interface_table. (This used to be commit 8aae0f168e54c01d0866ad6e0da141dbd828574f)
2007-10-10r12499: Move smb_build.h out of includes.hJelmer Vernooij3-0/+3
(This used to be commit c92ace494f92084ddf178626cdf392d151043bc7)
2007-10-10r12423: Remove DEBUG(0) printouts in favor of more information to the caller.Andrew Bartlett1-1/+3
I assume this works better with SWAT and the like anyway. Andrew Bartlett (This used to be commit b11975703d5e32f6f3ad10079106b1345fa56b5c)
2007-10-10r12421: Handle the case where we are a joining as different account types ↵Andrew Bartlett1-4/+3
far better. Andrew Bartlett (This used to be commit 0ce82e8a41f0fdea9928e3e341680232cc640e18)
2007-10-10r12411: Add 'net samdump keytab <keytab>'.Andrew Bartlett1-0/+67
This extracts a remote windows domain into a keytab, suitable for use in ethereal for kerberos decryption. For the moment, like net samdump and net samsync, the 'password server' smb.conf option must be set to the binding string for the server. eg: password server = ncacn_np:mypdc Andrew Bartlett (This used to be commit 272013438f53bb168f74e09eb70fc96112b84772)
2007-10-10r12209: Fix some issues with XML entities.Jelmer Vernooij1-1/+1
(This used to be commit 754e51b19d2d1fd6be8e01d62b6ec892688f934c)
2007-10-10r11553: give an error when the lookup failedStefan Metzmacher1-7/+19
metze (This used to be commit 363c000944ad40c3f8ba2b28f4cfed2bbd26fd65)
2007-10-10r11371: Fix the ntlm_auth build.Andrew Bartlett1-0/+2
Andrew Bartlett (This used to be commit 708476d0b2d178b9fd80583ac02fdadd4f9650b0)
2007-10-10r11303: Support defining and installing public headers for libraries.Jelmer Vernooij1-5/+5
Support installing libraries. Get rid of pkg-config file (will be autogenerated later on). (This used to be commit b4745032a2c55752c527026feb221ccc3dce10c8)
2007-10-10r11244: Relative path names in .mk filesJelmer Vernooij2-14/+14
(This used to be commit 24e10300906c380919d2d631bfb3b8fd6b3f54ba)
2007-10-10r11214: Remove scons files (see ↵Jelmer Vernooij1-8/+0
http://lists.samba.org/archive/samba-technical/2005-October/043443.html) (This used to be commit 7fffc5c9178158249be632ac0ca179c13bd1f98f)
2007-10-10r11200: Reposition the creation of the kerberos keytab for GSSAPI and Krb5Andrew Bartlett1-0/+10
authentication. This pulls the creating of the keytab back to the credentials code, and removes the special case of 'use keberos keytab = yes' for now. This allows (and requires) the callers to specify the credentials for the server credentails to GENSEC. This allows kpasswdd (soon to be added) to use a different set of kerberos credentials. The 'use kerberos keytab' code will be moved into the credentials layer, as the layers below now expect a keytab. We also now allow for the old secret to be stored into the credentials, allowing service password changes. Andrew Bartlett (This used to be commit 205f77c579ac8680c85f713a76de5767189c627b)
2007-10-10r10711: An error of 'user exists' is not an error, just an indication of howAndrew Bartlett1-1/+1
the join was processed. Andrew Bartlett (This used to be commit 0d93f11c894927a9ab69f7a31b9fbedde9d698b6)
2007-10-10r10528: Add credentials.h back into includes.h as some compilers don'tJelmer Vernooij1-1/+0
seem to be able to handle incomplete enum types. (This used to be commit 540155fad3c8e3d79fb631bb3f14273f82130a73)
2007-10-10r10513: Reduce some use of pstring. The main reason some parts of the code stillJelmer Vernooij1-0/+1
use pstring is next_token() now. (This used to be commit a5b88bcd420eb7ae42283293541519e142be36e3)
2007-10-10r10510: Decrease the amount of data included by includes.h a bitJelmer Vernooij1-0/+1
(This used to be commit 03647e1321cf6c9bd6ced3945265f635e9468973)
2007-10-10r10486: This is a merge of Brad Henry's 'net join' rework, to better performAndrew Bartlett1-9/+15
an ADS join, particularly as a DC. This represents the bulk of his Google SOC work, and I'm very pleased to intergrate it into the tree. (Metze will intergrate the DRSUAPI work later). Both metze and myself have also put a lot of time into this patch, and in mentoring Brad in general. In return, Brad has been a very good student, and has taken the comments well. Since it's last appearance on samba-technical@, I have made correctness and valgrind fixups, as well as adding a new 'BINDING' mode to the libnet_rpc routines. This allows the exact binding string to be passed down from the torture code, including options and exact target host. Andrew Bartlett (This used to be commit d6fa105fdabbeb83a9b0e50dad49d1649afdb2a4)
2007-10-10r10402: Make the RPC-SAMLOGON test pass against Win2k3 SP0 again.Andrew Bartlett1-2/+2
I still have issues with Win2k3 SP1, and Samba4 doesn't pass it's own test for the moment, but I'm working on these issues :-) This required a change to the credentials API, so that the special case for NTLM logins using a principal was indeed handled as a special, not general case. Also don't set the realm from a ccache, as then it overrides --option=realm=. Andrew Bartlett (This used to be commit 194e8f07c0cb4685797c5a7a074577c62dfdebe3)
2007-10-10r10348: Add scons scripts for remaining subsystems. Most subsystems build now,Jelmer Vernooij1-0/+8
but final linking still fails (as does generating files asn1, et, idl and proto files) (This used to be commit 4f0d7f75b99c7f4388d8acb0838577d86baf68b5)
2007-10-10r10316: More dynconfig fixesJelmer Vernooij1-1/+0
(This used to be commit 0963ab9c148772b961f17ec779213b0eb861e1dd)
2007-10-10r10315: Remove use of fstring and pstring in dynconfig.cJelmer Vernooij2-2/+0
Remove unused includes of dynconfig.h (This used to be commit 59083b7ba60d518ddb59646c4fd69938afd079b3)
2007-10-10r10144: dump the whole data blobStefan Metzmacher1-1/+1
metze (This used to be commit 4f933165c22113adecf5f1b57927aa89f1715945)
2007-10-10r10143: don't exit when the not all bytes are consumed,Stefan Metzmacher1-4/+2
(this happens with relative pointers) metze (This used to be commit 3ba227aafd75b88c26c6a3fde8d55aeb360e344f)
2007-10-10r9991: Some more 64-bit size_t warnings. There are a few more but they areTim Potter1-2/+2
too hard to fix right now. (-: (This used to be commit a64b813ff70ccf203e65ddb9d5ee3f5dc3495a15)
2007-10-10r9954: getntacl depends on EXT_LIB_XATTRStefan Metzmacher1-1/+2
(maybe we need to disable this binary when EXT_LIB_XATTR isn't enabled) metze (This used to be commit 0e5cac10cbcf0d3576cc042f6c0298b10b537464)
2007-10-10r9792: Rename StrCaseCmp -> strcasecmp_m. All these years I was thinkingJelmer Vernooij1-2/+2
StrCaseCmp was sys_strcasecmp, while it is in fact strcasecmp_m! (This used to be commit 200a8f6652cb2de7a8037a7a4c2a204b50aee2b1)
2007-10-10r9772: Make credentials callbacks more consistant with the abstractionAndrew Bartlett1-46/+67
function interface used in the credentials code. Fix bug in ntlm_auth, where we would overwrite the PW specified as a first input. (Reported and chased by Kai Blin <blin@gmx.net>, bug #3040) Andrew Bartlett (This used to be commit 04af95bd31de39ad6aff349a4838dd77cb300034)
2007-10-10r9728: A *major* update to the credentials system, to incorporate theAndrew Bartlett2-4/+2
Kerberos CCACHE into the system. This again allows the use of the system ccache when no username is specified, and brings more code in common between gensec_krb5 and gensec_gssapi. It also has a side-effect that may (or may not) be expected: If there is a ccache, even if it is not used (perhaps the remote server didn't want kerberos), it will change the default username. Andrew Bartlett (This used to be commit 6202267f6ec1446d6bd11d1d37d05a977bc8d315)
2007-10-10r9569: fixed an uninitialised variableAndrew Tridgell1-1/+1
(This used to be commit 5c71547703eeb328cdfbefbbfce6da38f7e6c5d5)
2007-10-10r9482: add --validate and --dump-data options to ndrdump,Stefan Metzmacher1-20/+89
this allows us to check the differences in our pull and push code metze (This used to be commit f12ab6a9d3bd9d5043e9e602c383085869ddf4db)
2007-10-10r9396: ntlm_auth updates, including again support for the NTLMSSP clientAndrew Bartlett1-2/+8
mode, and specification of the workstation. Andrew Bartlett (This used to be commit 8f53d995c63b718b40fb52ec102fa74f94719b65)