Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-05-20 | s4:ldb-samba: handle more GUID attributes | Stefan Metzmacher | 1 | -11/+36 | |
metze | |||||
2010-05-20 | librpc: finally merge ndr_string.c. | Günther Deschner | 3 | -707/+2 | |
Guenther | |||||
2010-05-20 | s4-smbtorture: take a TODO note for RAP-PRINTING. | Günther Deschner | 1 | -0/+8 | |
Guenther | |||||
2010-05-20 | s4:operational LDB module - fix warnings (missing parameters, unused variable) | Matthias Dieter Wallnöfer | 1 | -3/+5 | |
2010-05-20 | s4:auth handle addition of nested aliases of domain groups. | Andrew Bartlett | 1 | -8/+8 | |
The challenge here is that we are asked not to add the domain groups again, but we need to search inside them for any aliases that we need to add. So, we can't short-circuit the operation just because we found the domain group. Andrew Bartlett | |||||
2010-05-20 | s4:auth Change auth_generate_session_info to take flags | Andrew Bartlett | 10 | -38/+139 | |
This allows us to control what groups should be added in what use cases, and in particular to more carefully control the introduction of the 'authenticated' group. In particular, in the 'service_named_pipe' protocol, we do not have control over the addition of the authenticated users group, so we key of 'is this user the anonymous SID'. This also takes more care to allocate the right length ptoken->sids Andrew Bartlett | |||||
2010-05-20 | s4:auth Push check for messaging context into winbind backend | Andrew Bartlett | 2 | -5/+5 | |
If we don't use the winbind backend, we don't (for now) need a messaging context- and we don't have one in LDB at the moment. Andrew Bartlett | |||||
2010-05-20 | s4:auth Add dependency from the operational module onto auth | Andrew Bartlett | 6 | -9/+39 | |
We had to split up the auth module into a module loaded by main deamon and a subsystem we manually init in the operational module. Andrew Bartlett | |||||
2010-05-20 | s4:auth Allow the operational module to get a user's tokenGroups from auth | Andrew Bartlett | 9 | -123/+200 | |
This creates a new interface to the auth subsystem, to allow an auth_context to be created from the ldb, and then tokenGroups to be calculated in the same way that the auth subsystem would. Andrew Bartlett | |||||
2010-05-20 | s4:torture Add tests to demonstrate S2U4Self in the RPC-PAC test | Andrew Bartlett | 2 | -9/+307 | |
We also compare against SamLogon to try and validate the whole thing. Note that we must represent NULL as "" when comparing between the PAC and SamLogon, due to different marshalling of the structures. Andrew Bartlett | |||||
2010-05-20 | s4:auth Move BUILTIN group addition into session.c | Andrew Bartlett | 4 | -84/+264 | |
The group list in the PAC does not include 'enterprise DCs' and BUILTIN groups, so we should generate it on each server, not in the list we pass around in the PAC or SamLogon reply. Andrew Bartlett | |||||
2010-05-20 | s4:dsdb disable tokenGroups until end of rewrite | Andrew Bartlett | 1 | -1/+2 | |
I need to change the functions this calls Andrew Bartlett | |||||
2010-05-19 | pynet: Raise proper exceptions rather than invoking sys.exit. | Jelmer Vernooij | 2 | -8/+6 | |
2010-05-19 | s4/metadata: fix whitespaces | Kamen Mazdrashki | 1 | -71/+71 | |
2010-05-19 | s4/selftest: fix passwords in selftest-vars script | Kamen Mazdrashki | 1 | -2/+2 | |
2010-05-18 | s4:smb_server/smb/trans2.c - remove unused define "DEFAULT_SITE_NAME" | Matthias Dieter Wallnöfer | 1 | -1/+0 | |
Obviously this isn't needed and in general site names shouldn't be hardcoded anymore (except there is a good reason). | |||||
2010-05-18 | s4:smb_server: add dfs smbtorture to selftests | Matthieu Patou | 1 | -0/+6 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
2010-05-18 | s4:smb_server: Implement GET_DFS_REFERRAL for domain referral requests | Matthieu Patou | 1 | -1/+871 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
2010-05-18 | s4:smb_server: fix trailling whitespace in trans2.c | Matthieu Patou | 1 | -25/+25 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
2010-05-18 | s4 torture: Add tests for dfs referrals handling in SMB/trans2 requests | Matthieu Patou | 5 | -2/+578 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
2010-05-18 | s4 torture test: Adapt ndr-dfsblobs torture test to new idl | Matthieu Patou | 1 | -2/+2 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
2010-05-18 | s4:librpc: fix the autoconf build | Stefan Metzmacher | 1 | -1/+6 | |
metze | |||||
2010-05-18 | s4:dynconfig: let the autoconf build compile again | Stefan Metzmacher | 1 | -1/+6 | |
metze | |||||
2010-05-18 | s3: Fix some more iconv convenience usages. | Jelmer Vernooij | 2 | -4/+4 | |
2010-05-18 | Remove more usages of iconv_convenience in files which were apparently not ↵ | Jelmer Vernooij | 3 | -6/+3 | |
recompiled by waf. | |||||
2010-05-18 | s3: Remove use of iconv_convenience. | Jelmer Vernooij | 16 | -25/+1 | |
2010-05-18 | Finish removal of iconv_convenience in public API's. | Jelmer Vernooij | 160 | -923/+549 | |
2010-05-18 | s4:ntvfs Prepare for a possible future sharing of notify.idl | Andrew Bartlett | 1 | -0/+4 | |
I would love for notify.idl to be shared between Samba4 and Samba3 some day, and this seems to be the point at which the structure is initialised. Andrew Bartlett | |||||
2010-05-18 | s4:winbindd Record the privilaged pipe dir | Andrew Bartlett | 2 | -2/+7 | |
This may help us return an accurate priv pipe dir later on. Andrew Bartlett | |||||
2010-05-18 | s4:credentials Add in tracking of the password last set time | Andrew Bartlett | 3 | -1/+33 | |
We perhaps need a more general API here, but for now extend the credentials API to return the password last changed time that the s3compat layer will need. Andrew Bartlett | |||||
2010-05-18 | s4:provision Remove unused 'account_name' parameter | Andrew Bartlett | 3 | -3/+0 | |
The python glue code didn't even de-reference this element in the structure. Andrew Bartlett | |||||
2010-05-18 | s4:auth Make it clear to the callers the talloc lifetime. | Andrew Bartlett | 1 | -0/+2 | |
In other times, we might have used talloc_reference here, but this isn't used as much these days. Andrew Bartlett | |||||
2010-05-18 | pynet: Remove unused credentials argument. | Jelmer Vernooij | 1 | -4/+3 | |
2010-05-17 | s4-rodc: Set am_rodc flag during provision | Anatoliy Atanasov | 3 | -11/+16 | |
2010-05-17 | s4-rodc: Cache am_rodc flag | Anatoliy Atanasov | 2 | -0/+51 | |
2010-05-14 | s4:repl_meta_data LDB module - fix counter types | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2010-05-14 | s4:net domainlevel tool - fix up the error handling as Jelmer suggested | Matthias Dieter Wallnöfer | 1 | -2/+4 | |
Sorry, I've copied this from the "ldap.py" test and thought it would work. | |||||
2010-05-14 | s4:dsdb_cache LDB module - fix a typo | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2010-05-14 | s4:samldb LDB module - remove unused variables | Matthias Dieter Wallnöfer | 1 | -2/+0 | |
2010-05-14 | s4:gensec expose gensec_set_target_principal for use outside GENSEC | Andrew Bartlett | 4 | -3/+8 | |
This allows for the rare case where the caller knows the target principal. The check for lp_client_use_spnego_principal() is moved to the spengo code to make this work. Andrew Bartlett | |||||
2010-05-14 | s4:winbindd Rework some winbind structures to make s3compat easier | Andrew Bartlett | 3 | -178/+185 | |
By making the winbindd_request and winbindd_response structures pointers, we can more easily integrate with the winbindd from source3/winbindd Andrew Bartlett | |||||
2010-05-14 | s4:process_model Fix process_standard and process_onefork not to use | Andrew Bartlett | 2 | -55/+19 | |
multiple event contexts It is NEVER valid to free an event context that anybody else may have a reference to, and never normally valid to have two 'live' at once. We must instead call tevent_re_initialise() to wipe clean an existing pointer. Andrew Bartlett | |||||
2010-05-14 | s4:process_modals Add another process modal - 'onefork' | Andrew Bartlett | 3 | -0/+183 | |
This will fork off exactly one child to handle some task, ensuring that if it dies or changes global state, that this does not change everything. Andrew Bartlett | |||||
2010-05-14 | s4:credentials Allow setting of an empty Kerberos CCACHE | Andrew Bartlett | 1 | -18/+12 | |
This allows us to tell the credentials code where we want the credentials put. Andrew Bartlett | |||||
2010-05-14 | s4:ntvfs Prepare for a possible future sharing of notify.idl | Andrew Bartlett | 1 | -0/+4 | |
I would love for notify.idl to be shared between Samba4 and Samba3 some day, and this seems to be the point at which the structure is initialised. Andrew Bartlett | |||||
2010-05-14 | s3compat: use right variable for STATEDIR | Andrew Tridgell | 1 | -1/+1 | |
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> | |||||
2010-05-14 | s4-dynconfig: make dynconfig more compatible with s3 | Andrew Tridgell | 2 | -54/+55 | |
2010-05-14 | Revert "s4: remove unused references to swat" | Andrew Bartlett | 6 | -0/+10 | |
This reverts most of commit 1765732f82719a4bc925f21ef4999bd19a8d1f6c. The s3compat build needs the SWAT location to be compatible with Samba3. | |||||
2010-05-14 | s4-libndr: fix ndr_pull_string_array() for non utf16 arrays in s4 as well. | Günther Deschner | 1 | -1/+1 | |
Guenther | |||||
2010-05-14 | s4:heimdal_build: move #undef __APPLE__ to the end of roken.h | Stefan Metzmacher | 2 | -5/+5 | |
Some system includes need __APPLE__ defined. metze |