summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2009-10-19Fix typo.Karolin Seeger5-5/+5
privilage -> privilege Karolin
2009-10-19s4-selftest: move secdesc.python test to skip listAndrew Tridgell2-1/+1
This test produces a python backtrace due to LDAP_INSUFFICIENT_ACCESS_RIGHTS errors, which are expected until the new acl code is finished. The python backtrace overrides the 'knownfail' listing, so we need to skip this test for now.
2009-10-19s4-test: removed duplicate knownfail entryAndrew Tridgell1-1/+0
2009-10-19s4-pvfs: another uninitialised variableAndrew Tridgell1-1/+1
thanks to valgrind for this one
2009-10-19s4-pvfs: fixed uninitialised variableAndrew Tridgell1-1/+1
This caused havoc on the build farm. Interestingly, it only affected gcc 4.3.3, not gcc 4.4.1
2009-10-18s4:ldb_msg_check_string_attribute - add a comment about the result valuesMatthias Dieter Wallnöfer2-1/+14
2009-10-18Revert "s4:ldb_msg - Use LDB constants on results"Matthias Dieter Wallnöfer1-3/+4
This reverts commit 56a8baff3df6a5120b6c7bbca771dfb7c6934fd5. Simo pointed out that I was wrong here.
2009-10-18s4:torture "cldap" test - rework and test more resultsMatthias Dieter Wallnöfer1-21/+17
2009-10-18s4:sites - get the server site (name) from DSDBMatthias Dieter Wallnöfer3-3/+15
2009-10-18s4:dcerpc_netlogon - unify the two workstation object lookups (DNS hostname ↵Matthias Dieter Wallnöfer1-20/+26
and supported encryption types) This is simply for better performance (no functional change).
2009-10-18s4:ldb_msg - Use LDB constants on resultsMatthias Dieter Wallnöfer1-5/+7
2009-10-18s4:ldb_ldap - Fix intendationMatthias Dieter Wallnöfer1-8/+8
2009-10-18s4-test: the ldap secdesc test is expected to fail for nowAndrew Tridgell1-0/+1
Nadya, if this is not correct and you think this should be passing already the please let me know. When I looked over it, it doesn't look like it has a chance of passing until your acl module is in place and enabled by default.
2009-10-18s4-test: SMB2 oplocks in s4 are a messAndrew Tridgell1-0/+1
I don't have time to fix these right now, and as we don't advertise SMB2 by default I'll mark it as a known failure till we start enabling SMB2 by default.
2009-10-18s4: spelling errorAndrew Tridgell1-1/+1
2009-10-18s4-torture: fixed the streams tests for Samba4Andrew Tridgell2-40/+46
In some cases we were not doing streams tests on s4 that we should. In others, we were calling tests that are known to fail on s4. Some of those are a bit puzzling.
2009-10-18s4-streams: fixed handling of stream rename and overwriteAndrew Tridgell3-9/+21
2009-10-18s4-pvfs: rename with full name gives SHARING_VIOLATIONAndrew Tridgell1-1/+3
2009-10-18s4-pvfs: when reporting the file name, don't include the :$DATA suffixAndrew Tridgell1-0/+10
2009-10-18s4-pvfs: the STREAM_INFORMATION calls don't need any access flagsAndrew Tridgell1-0/+5
2009-10-18s4-pvfs: fixed update of stream sizesAndrew Tridgell1-1/+1
The data_blob_free() was changing the size we set the stream to
2009-10-18s4-pvfs: more fixes for ACLs on file creationAndrew Tridgell1-11/+12
The passed in SD is not used to limit the access mask allowed on file create.
2009-10-18s4-smb2: fixed SMB2 find commandsAndrew Tridgell1-2/+2
The change to check for invalid \ prefix on SMB2 paths broke the internal SMB2 code.
2009-10-18s4-pvfs: change the handling of access checking on createAndrew Tridgell4-60/+124
Previously when a file was created, we produces the resulting access mask based on an ACL check against the parent. This change means we now calculate the inherited ACL much earlier, and produce the resulting access mask from that ACL, or the user supplied ACL.
2009-10-18smb2-torture: samba4 allows SEC_FLAG_SECURITY to be used with privilegesAndrew Tridgell1-0/+2
2009-10-17Fix the smbtorture4 build. root_fid is a "union smb_handle". tridgeJeremy Allison1-1/+1
please check. Jeremy.
2009-10-17Merge branch 'master' of ssh://jra@git.samba.org/data/git/sambaJeremy Allison225-3001/+21457
2009-10-17s4-smbserver: removed bogus initialisation of two union armsAndrew Tridgell2-2/+0
Thanks to Metze for spotting this.
2009-10-17s4-pvfs: when uwrap is enabled, ignore chown errorsAndrew Tridgell1-0/+3
chown is expected to fail under uwrap
2009-10-17s4-torture: fixed the default ACL for s4Andrew Tridgell1-13/+41
s4 returns group and world ACEs in the default acl, based on unix permissions
2009-10-17s4-torture: minor debugging enhancementsAndrew Tridgell1-3/+3
2009-10-17s4-schema: We should not need Samba4TopExtra nowAndrew Tridgell1-23/+0
The last attribute this contained was 'privilege' which is now gone
2009-10-17s4-pvfs: don't auto-apply privilege bits in unix acl handling eitherAndrew Tridgell1-7/+11
2009-10-17s4-acl: SEC_FLAG_MAXIMUM_ALLOWED doesn't auto-apply privilege access masksAndrew Tridgell1-6/+2
2009-10-17s4-torture: the BASE-CREATEX_ACCESS test is broken for non-administratorsAndrew Tridgell1-0/+1
See my msg to samba-technical about this test and privilege testing.
2009-10-17s4-torture: cleanup after the MAXIMUM_ALLOWED testAndrew Tridgell1-0/+1
2009-10-17s4-pvfs: use privileges rather than "uid == 0" in unix access checkAndrew Tridgell1-6/+12
This makes the unix access check much closer to the full ACL check
2009-10-17s4-security: honor more of the privilege access bitsAndrew Tridgell1-4/+12
2009-10-17s4-torture: add a special check for administrators and privilegesAndrew Tridgell4-18/+57
lsa privileges calls don't expand groups. darn.
2009-10-17s4-lsasrv: make sure only admins can alter privilegesAndrew Tridgell1-0/+6
2009-10-17s4-provision: added the default privileges dbAndrew Tridgell2-0/+99
privileges are now stored in a separate database
2009-10-17s4-provision: removed the old privilege attributesAndrew Tridgell2-53/+14
Our schema is getting a bit cleaner :-)
2009-10-17s4-torture: show the sid we are basing privilege tests onAndrew Tridgell1-2/+6
2009-10-17s4-privileges: moved privileges to private/privilege.ldbAndrew Tridgell4-38/+70
We were storing privileges in the sam, which was OK when we were a standalone DC, but is no good when we replicate with a windows DC. This moves the privileges to a separate (local) database
2009-10-16s4-smbtorture: extend netr_LogonControl test in RPC-NETLOGON.Günther Deschner1-3/+109
Guenther
2009-10-16s4:provision - fixed invalid creationTime formatEndi S. Dewata1-2/+2
2009-10-16s4:ldb - fixed dangling pointer in ldb_request_add_control()Endi S. Dewata1-2/+7
2009-10-16s4:auth - fixed problem reading bind DN from secrets databaseEndi S. Dewata2-0/+8
2009-10-16s4:provision - replaced linked_attributes with FDS pluginsEndi S. Dewata7-3/+100
When FDS is used as a backend, Samba should not use the linked_attributes LDB module, but instead use the built-in DS plugins for attribute linking, indexing, and referential integrity.
2009-10-16s4:auth_sam: Restructure tail in "authsam_get_server_info_principal" and fix ↵Matthias Dieter Wallnöfer1-3/+8
a memory leak