summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2010-05-24s4:samr Push most of samr_LookupRids into a helper functionAndrew Bartlett2-52/+82
This is a rewrite of the lookup_rids code, using a query based on the extended DN for a clearer interface. By splitting this out, the logic is able to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
2010-05-24s4:samr Push most of samr_QueryGroupMember into a helper functionAndrew Bartlett2-80/+120
This is a rewrite of the group membership lookup code, using the stored extended DNs to avoid doing the lookup into each member to find the SID By splitting this out, the logic is able to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
2010-05-24s4:samr Move most of samr_CreateDomAlias into a helper functionAndrew Bartlett2-52/+81
This allows this logic to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
2010-05-24s4:samr Split most of samr_CreateDomainGroup into a helper functionAndrew Bartlett2-60/+88
This allows this logic to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
2010-05-24s4:samr Split the guts of samr_CreateUser2 into a helper functionAndrew Bartlett3-187/+258
This allows this logic to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
2010-05-24s4:dsdb Allow a NULL search expression in dsdb_search()Andrew Bartlett1-2/+5
The NULL search expression expands to (objectClass=*), but %s expands NULL to (NULL) which doesn't parse... Andrew Bartlett
2010-05-24s4:ntvfs rename notify.idl to s4_notify.idl until we can merge this IDLAndrew Bartlett6-6/+6
This IDL is almost common, but the source3 version has a hand-marshalled server_id. The s3compat build has problems with two different idl files of the same name. Andrew Bartlett
2010-05-24s4:LogonGetDomainInfo - allow to set DNS hostname for the first timeMatthias Dieter Wallnöfer1-11/+14
Otherwise it obviously can never be set.
2010-05-24s4:"rdn_name" LDB module - fix the creation of the RDN attribute (try to ↵Matthias Dieter Wallnöfer1-6/+20
normalise it) And return always the correct error codes on the failed add operations (should anyway be ERR_OPERATIONS_ERROR - therefore no behaviour change).
2010-05-24s4:setup/*.ldif - remove unneeded "cn" attributesMatthias Dieter Wallnöfer2-2/+0
Should be generated automatically
2010-05-22torture: fix typosSimo Sorce1-2/+2
2010-05-22s4:ldb_controls: make it possible to pass arbitrary control via the command lineStefan Metzmacher1-0/+34
--controls=local_oid:1.3.6.1.4.1.7165.4.3.7:1 To specify the DSDB_CONTROL_PASSWORD_HASH_VALUES_OID control as critical. metze
2010-05-22s4:libnet: use the new generated config from the provision for the self_joinStefan Metzmacher1-1/+1
This fixes net vampire with the --target-dir option. metze
2010-05-21s4:torture/rap/rap.c - quiet discard const warningMatthias Dieter Wallnöfer1-1/+1
2010-05-21s4:torture/raw/open.c - remove unused variables and fix error handlingMatthias Dieter Wallnöfer1-8/+3
2010-05-21s4:ntvfs/ipc/vfs_ipc.c - add more "const" in order to fix warningsMatthias Dieter Wallnöfer1-2/+2
2010-05-21s4:ntvfs/posix/pvfs_wait.c - fix a "calculated value unused" warningMatthias Dieter Wallnöfer1-3/+5
The calculated value is "req" (!= NULL) if "talloc_reference" did work correctly or it is NULL if we ran out of memory.
2010-05-21Doh! If you're going to give advice in "useage", make sure it's correct.Jeremy Allison1-2/+2
Jeremy.
2010-05-21Add comments to usage error message for -k to make it obvious what this needs.Jeremy Allison1-2/+3
Jeremy.
2010-05-21s4-smbtorture: Fix NetUserPasswordSet2 RAP tests.Günther Deschner1-5/+40
Guenther
2010-05-21s4-smbtorture: fix smbcli_rap_netuserpasswordset2().Günther Deschner1-2/+2
Guenther
2010-05-21s4-torture: Improved the winreg symlink test.Andreas Schneider1-10/+82
This test is still disabled as we don't know how to remove a symbolic link. It looks like there only DeleteKey functions which can work on a handle are able to delete a symbolic link. Pair-Programmed-With: Michael Adam <obnox@samba.org>
2010-05-21s4-torture: Disable the security descriptor tests.Andreas Schneider1-2/+7
2010-05-21s4-torture: Try to fix the winreg tests.Andreas Schneider1-42/+76
2010-05-21s4:ldb: add --controls support to ldbeditStefan Metzmacher1-5/+12
metze
2010-05-21s4:libcli/ldap Update headermap.txt (autotools build) and wscript_build for ↵Andrew Bartlett2-2/+2
libcli_ldap.h It took a little while to find where to update this... Andrew Bartlett
2010-05-21s4:torture:winreg: improve error messages in test_HKLM_wellknownMichael Adam1-3/+3
2010-05-21s4:torture:winreg: improve error messages in test_QueryValue_fullMichael Adam1-7/+9
So that one has a chance to tell what part of the test failed. And why.
2010-05-21s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett1-1/+1
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-21s4:libcli/ldap Rename ldap.h to libcli_ldap.hAndrew Bartlett17-15/+9
It is a problem if a samba header is called ldap.h if we also want to use OpenLDAP's ldap.h Andrew Bartlett
2010-05-21s4:auth Remove un-needed headers.Andrew Bartlett5-9/+0
2010-05-21s4:auth Fix previous commit - segfault in determinging a user's groupsAndrew Bartlett1-5/+3
The previous commit didn't include these vital fixes. Andrew Bartlett
2010-05-21Revert "Make -k a simple non-bool option."Andrew Bartlett1-0/+9
This reverts commit 2bbf055dbb15ea99b80ae66adc906ad5494a3999. This change broke 'make test', because the current syntax is deliberate and an integral part of how Samba4 uses Kerberos. If a change like this is to be implemented, then careful review of all our test scripts must be taken first, and then new options such as --dont-use-kerberos, --may-use-kerberos and --must-use-kerberos should be added. Andrew Bartlett
2010-05-21s4:auth Error out when a memberOf DN does not have a SIDAndrew Bartlett1-13/+8
We previously segfaulted if this was not the case. Andrew Bartlett
2010-05-21s4-smbtorture: add kernel_mode_registry_path().Günther Deschner1-0/+22
Guenther
2010-05-21s4-smbtorture: Fix volatile test in RPC-WINREG.Günther Deschner1-10/+84
Guenther
2010-05-20Make -k a simple non-bool option.Jeremy Allison1-9/+0
Jeremy.
2010-05-20s4-smbtorture: use push_reg_sz/push_reg_multi_sz in spoolss tests.Günther Deschner1-14/+12
Guenther
2010-05-20s4-smbtorture: pass down hkey to main keytest in RPC-WINREG.Günther Deschner1-9/+26
Guenther
2010-05-20s4-smbtorture: print local_machine name in ↵Günther Deschner1-2/+3
RemoteFindFirstPrinterChangeNotifyEx test. Guenther
2010-05-20s4-smbtorture: use push_reg_sz()/push_reg_multi_sz() in RPC-WINREG.Günther Deschner1-19/+7
Guenther
2010-05-20s4:ldb-samba: handle more GUID attributesStefan Metzmacher1-11/+36
metze
2010-05-20librpc: finally merge ndr_string.c.Günther Deschner3-707/+2
Guenther
2010-05-20s4-smbtorture: take a TODO note for RAP-PRINTING.Günther Deschner1-0/+8
Guenther
2010-05-20s4:operational LDB module - fix warnings (missing parameters, unused variable)Matthias Dieter Wallnöfer1-3/+5
2010-05-20s4:auth handle addition of nested aliases of domain groups.Andrew Bartlett1-8/+8
The challenge here is that we are asked not to add the domain groups again, but we need to search inside them for any aliases that we need to add. So, we can't short-circuit the operation just because we found the domain group. Andrew Bartlett
2010-05-20s4:auth Change auth_generate_session_info to take flagsAndrew Bartlett10-38/+139
This allows us to control what groups should be added in what use cases, and in particular to more carefully control the introduction of the 'authenticated' group. In particular, in the 'service_named_pipe' protocol, we do not have control over the addition of the authenticated users group, so we key of 'is this user the anonymous SID'. This also takes more care to allocate the right length ptoken->sids Andrew Bartlett
2010-05-20s4:auth Push check for messaging context into winbind backendAndrew Bartlett2-5/+5
If we don't use the winbind backend, we don't (for now) need a messaging context- and we don't have one in LDB at the moment. Andrew Bartlett
2010-05-20s4:auth Add dependency from the operational module onto authAndrew Bartlett6-9/+39
We had to split up the auth module into a module loaded by main deamon and a subsystem we manually init in the operational module. Andrew Bartlett
2010-05-20s4:auth Allow the operational module to get a user's tokenGroups from authAndrew Bartlett9-123/+200
This creates a new interface to the auth subsystem, to allow an auth_context to be created from the ldb, and then tokenGroups to be calculated in the same way that the auth subsystem would. Andrew Bartlett