summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2010-12-08s4-ldb: added @LIB_RPATH@ to the ldb pc fileAndrew Tridgell1-1/+1
2010-12-08s4-acl: Changed the mechanism of attribute removal to speed it up.Nadezhda Ivanova1-41/+88
Instead of using ldb_msg_remove_attr, now we are flagging the attributes to be removed, and allocating the new elements array to be returned at once. This seems to decrease the overhead by 50 percent. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Wed Dec 8 12:00:27 CET 2010 on sn-devel-104
2010-12-08s4-acl: Added a flag to mark an element as failing an access check.Nadezhda Ivanova1-0/+3
2010-12-08s4-param Allow +foo syntax in smb.conf list parsingAndrew Bartlett4-13/+54
The idea here is to allow an smb.conf file to work from the defaults, rather than override them. For example, 'server services = +openchange'. Pair-Programmed-With: Andrew Tridgell <tridge@samba.org> Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Dec 8 09:39:06 CET 2010 on sn-devel-104
2010-12-08s4-spnego use "not_defined_in_RFC4178@please_ignore" if no principal specifiedAndrew Bartlett1-0/+2
We need to make this the default, but for now just send it if we have not been given a target principal. Andrew Bartlett
2010-12-08libcli/auth bring ADS_IGNORE_PRINCIPAL in commonAndrew Bartlett1-1/+2
2010-12-08s4-heimdal: enable symbol versioning in heimdalAndrew Tridgell1-20/+38
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-With: Jelmer Vernooij <jelmer@samba.org>
2010-12-08s4-dns: dlz_bind9 doesn't need to link to gensec any moreAndrew Tridgell1-1/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-12-08s4-waf: get the version number right on private librariesAndrew Tridgell2-17/+8
use the first digit of the version number for the library version Pair-Programmed-With: Jelmer Vernooij <jelmer@samba.org>
2010-12-08s4-dns: use ldb hooks for samba extensions in dlz_bind9Andrew Tridgell1-49/+35
this avoids linking dlz_bind9 directly to heimdal, which allows a RTLD_DEEPBIND in ldb module loading to find the right kerberos version Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-12-08s4-ldb: use RTLD_DEEPBIND if available for ldb modulesAndrew Tridgell1-1/+13
this allows us to avoid issues with ldb using heimdal while an application using ldb using MIT kerberos Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-12-08s4-dns: allow a remote ldap server to be used with dlz_bind9Andrew Tridgell2-16/+67
this allows for configs like this: dlz "Samba zone" { database "dlopen /usr/lib/samba/modules/bind9/dlz_bind9.so -H ldap://10.0.0.4 -Uadministrator@v2.tridgell.net%penguin -k no"; };
2010-12-08s4-dsdb: register samba handlers in dsdb moduleAndrew Tridgell1-0/+6
2010-12-08s4-ldb: ensure ldb_register_samba_handlers() is not done twiceAndrew Tridgell1-2/+10
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-12-08samba-tools: more reasonable defaults for samba-tool commandsAndrew Tridgell13-53/+79
- fallback to machine account where possible - default to local hostname where this is reasonable
2010-12-08samba-tools: export doesn't need any credentialsAndrew Tridgell1-2/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-12-08s4-provision Always run slaptest to convert the config fileAndrew Bartlett1-13/+13
If the directory exists, it does not mean that it is configured - we may be on a re-run of the provision. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Dec 8 05:19:12 CET 2010 on sn-devel-104
2010-12-08s4-provision Add an invalid names check for 'domain == netbiosname'Andrew Bartlett1-1/+4
(This is also invalid) Andrew Bartlett
2010-12-07s4:libnet_samsync_ldb.c - simplify a talloc steal callMatthias Dieter Wallnöfer1-2/+1
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Tue Dec 7 16:05:30 CET 2010 on sn-devel-104
2010-12-07s4:libnet_samsync_ldb.c - introduce an error message on failed domain ↵Matthias Dieter Wallnöfer1-3/+6
synchronisation
2010-12-06s4-acl: Remove unused variables from aclread module.Nadezhda Ivanova1-8/+0
Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Mon Dec 6 16:48:35 CET 2010 on sn-devel-104
2010-12-06s4:acl_read LDB module - fix attributes listMatthias Dieter Wallnöfer1-1/+1
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Mon Dec 6 15:11:44 CET 2010 on sn-devel-104
2010-12-06s4-acl: Some optimisation of the aclread moduleNadezhda Ivanova1-58/+75
Modified the aclread module to now insert the attributes needed to perform access checks in the same request, instead of doind a separate search per entry. Also, instanceType is now used to determine id the object has a parent instead of parentGUID, which saves one additional search in operational. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Mon Dec 6 13:50:19 CET 2010 on sn-devel-104
2010-12-06s4-acl: Moved aclread module below descriptor and acl.Nadezhda Ivanova1-1/+1
The aclread needs to be belod descriptor, as it needs to have the full nTsecurityDescriptor to make the checks, and the descriptor module may filter out parts of it if SD_FLAGS_CONTROL is provided.
2010-12-06s4:torture/locktest.c - fix "pid_t" printf warning on SolarisMatthias Dieter Wallnöfer1-1/+1
According to "http://www.ibm.com/developerworks/linux/library/l-solar/" it's generally a 32bit "int" - therefore this cast should fit.
2010-12-06s4:torture/locktest.c - fix one indentationMatthias Dieter Wallnöfer1-1/+1
2010-12-06s4:client/client.c - fix Solaris warning by a type castMatthias Dieter Wallnöfer1-1/+1
2010-12-06s4:fix some shadowed declaration warnings on Solaris by renaming the symbolsMatthias Dieter Wallnöfer5-19/+25
2010-12-06s4-dns: return the correct TTLAndrew Tridgell1-6/+2
I've now patched the bind9 sdlz layer to cope with multiple TTLS on a name/type pair Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Mon Dec 6 08:12:11 CET 2010 on sn-devel-104
2010-12-06s4-dns: support Samba command line options to the dlz_bind.so moduleAndrew Tridgell2-1/+36
this allows setting of Samba command line options in named.conf
2010-12-06s4-dns: added flags support for dlz_bind9Andrew Tridgell2-1/+4
this will allow us to set the THREADSAFE flag if we make this threadsafe. For now we don't set that flag, and let bind9 do the locking for us.
2010-12-06s4-dns: a dlz module for bind9Andrew Tridgell3-0/+579
this module can be loaded into bind9 if bind9 has been built with the --with-dlz-dlopen option. It provides access bind9 access to the DNS records in SAMDB. You can then start bind9 with this in named.conf: dlz "Samba zone" { database "dlopen /usr/lib/samba/modules/bind9/dlz_bind9.so"; }; See http://git.samba.org/tridge/bind9.git for a bind9 tree with the dlz_dlopen driver. See also the discussion on the bind-workers mailing list Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Mon Dec 6 05:48:30 CET 2010 on sn-devel-104
2010-12-06s4-repl_meta_data: Print function name when we can't find attribute in ↵Kamen Mazdrashki1-1/+2
Schema cache Same error message is printed by linked_attributes.c module and it was really hard to tell where the error occurred Autobuild-User: Kamen Mazdrashki <kamenim@samba.org> Autobuild-Date: Mon Dec 6 00:05:59 CET 2010 on sn-devel-104
2010-12-06s4-linked_attributes: Give more info where an error occuredKamen Mazdrashki1-3/+8
We have exact same error messages at different locations and it is little bit hard to tell where the error came from from the log.
2010-12-06s4-repl_meta_data: Remove duplicated checkKamen Mazdrashki1-2/+0
2010-12-06s4-schema_load: Strip a pointless checkKamen Mazdrashki1-3/+1
If *schema is NULL, then dsdb_schema_from_ldb_results() call should have failed
2010-12-05s4:cluster/cluster.h - fix another gcc 3.4 "struct" warningMatthias Dieter Wallnöfer1-0/+2
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sun Dec 5 21:22:18 CET 2010 on sn-devel-104
2010-12-05s4:dsdb/samdb/ldb_modules/util.h - fix a gcc 3.4 compile warningMatthias Dieter Wallnöfer1-1/+1
2010-12-05s4:lib/messaging/*.h - fix compile warnings on gcc 3.4Matthias Dieter Wallnöfer2-3/+2
For example on OpenSolaris
2010-12-05s4-python: Add more module docstrings.Jelmer Vernooij10-3/+23
2010-12-05s4-python: Add some more module docstrings.Jelmer Vernooij16-0/+33
2010-12-04s4:dsdb/samdb/cracknames.c - fix another memory leakMatthias Dieter Wallnöfer1-0/+1
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Dec 4 17:26:39 CET 2010 on sn-devel-104
2010-12-04s4:kdc/kpasswdd.c - fix memory leaksMatthias Dieter Wallnöfer1-2/+15
2010-12-04s4:auth/gensec/gensec_krb5.c - fix/reorder memory free operationsMatthias Dieter Wallnöfer1-3/+15
To prevent memory leaks
2010-12-04s4:auth/gensec/gensec_krb5.c - remove a pointless "nt_status" testMatthias Dieter Wallnöfer1-8/+3
There is no operation which sets the "nt_status" before the "if".
2010-12-04s4:auth/kerberos/kerberos_pac.c - fix another memory leak regarding the KRB ↵Matthias Dieter Wallnöfer1-1/+4
principal In addition fix a counter type Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Dec 4 15:14:46 CET 2010 on sn-devel-104
2010-12-04s4:dsdb/common/util_samr.c and auth/sam.c - fix error messageMatthias Dieter Wallnöfer2-3/+3
2010-12-04tls_tstream: use a dynamic buffer for the push caseStefan Metzmacher1-6/+21
Some versions of gnutls doesn't handle EAGAIN correctly, so we better allow sending buffers without a low size limitation, the limit is now UINT16_MAX (0xFFFF) and we allocate the buffer with talloc each time. metze
2010-12-04tls_tstream: increase the buffer sizeMatthieu Patou1-1/+1
The problem is that with certain version of gnutls are not working properly if the server is sending in different packet things like (at least) * Certificate * Server Key exchange * Client certificate Somehow it really expect this to be done in one packet as some structures used _gnutls_send_handshake are reinitialized at every packet exchange and intermediate steps didn't expect it Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-12-04s4:samr RPC server - dcesrv_samr_GetBootKeyInformation - return NOT_SUPPORTEDMatthias Dieter Wallnöfer1-1/+2
Windows Server 2008 does this Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Dec 4 12:11:47 CET 2010 on sn-devel-104