Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-05-24 | s4:setup/*.ldif - remove unneeded "cn" attributes | Matthias Dieter Wallnöfer | 2 | -2/+0 | |
Should be generated automatically | |||||
2010-05-22 | torture: fix typos | Simo Sorce | 1 | -2/+2 | |
2010-05-22 | s4:ldb_controls: make it possible to pass arbitrary control via the command line | Stefan Metzmacher | 1 | -0/+34 | |
--controls=local_oid:1.3.6.1.4.1.7165.4.3.7:1 To specify the DSDB_CONTROL_PASSWORD_HASH_VALUES_OID control as critical. metze | |||||
2010-05-22 | s4:libnet: use the new generated config from the provision for the self_join | Stefan Metzmacher | 1 | -1/+1 | |
This fixes net vampire with the --target-dir option. metze | |||||
2010-05-21 | s4:torture/rap/rap.c - quiet discard const warning | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2010-05-21 | s4:torture/raw/open.c - remove unused variables and fix error handling | Matthias Dieter Wallnöfer | 1 | -8/+3 | |
2010-05-21 | s4:ntvfs/ipc/vfs_ipc.c - add more "const" in order to fix warnings | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
2010-05-21 | s4:ntvfs/posix/pvfs_wait.c - fix a "calculated value unused" warning | Matthias Dieter Wallnöfer | 1 | -3/+5 | |
The calculated value is "req" (!= NULL) if "talloc_reference" did work correctly or it is NULL if we ran out of memory. | |||||
2010-05-21 | Doh! If you're going to give advice in "useage", make sure it's correct. | Jeremy Allison | 1 | -2/+2 | |
Jeremy. | |||||
2010-05-21 | Add comments to usage error message for -k to make it obvious what this needs. | Jeremy Allison | 1 | -2/+3 | |
Jeremy. | |||||
2010-05-21 | s4-smbtorture: Fix NetUserPasswordSet2 RAP tests. | Günther Deschner | 1 | -5/+40 | |
Guenther | |||||
2010-05-21 | s4-smbtorture: fix smbcli_rap_netuserpasswordset2(). | Günther Deschner | 1 | -2/+2 | |
Guenther | |||||
2010-05-21 | s4-torture: Improved the winreg symlink test. | Andreas Schneider | 1 | -10/+82 | |
This test is still disabled as we don't know how to remove a symbolic link. It looks like there only DeleteKey functions which can work on a handle are able to delete a symbolic link. Pair-Programmed-With: Michael Adam <obnox@samba.org> | |||||
2010-05-21 | s4-torture: Disable the security descriptor tests. | Andreas Schneider | 1 | -2/+7 | |
2010-05-21 | s4-torture: Try to fix the winreg tests. | Andreas Schneider | 1 | -42/+76 | |
2010-05-21 | s4:ldb: add --controls support to ldbedit | Stefan Metzmacher | 1 | -5/+12 | |
metze | |||||
2010-05-21 | s4:libcli/ldap Update headermap.txt (autotools build) and wscript_build for ↵ | Andrew Bartlett | 2 | -2/+2 | |
libcli_ldap.h It took a little while to find where to update this... Andrew Bartlett | |||||
2010-05-21 | s4:torture:winreg: improve error messages in test_HKLM_wellknown | Michael Adam | 1 | -3/+3 | |
2010-05-21 | s4:torture:winreg: improve error messages in test_QueryValue_full | Michael Adam | 1 | -7/+9 | |
So that one has a chance to tell what part of the test failed. And why. | |||||
2010-05-21 | s3:dom_sid Global replace of DOM_SID with struct dom_sid | Andrew Bartlett | 1 | -1/+1 | |
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-21 | s4:libcli/ldap Rename ldap.h to libcli_ldap.h | Andrew Bartlett | 17 | -15/+9 | |
It is a problem if a samba header is called ldap.h if we also want to use OpenLDAP's ldap.h Andrew Bartlett | |||||
2010-05-21 | s4:auth Remove un-needed headers. | Andrew Bartlett | 5 | -9/+0 | |
2010-05-21 | s4:auth Fix previous commit - segfault in determinging a user's groups | Andrew Bartlett | 1 | -5/+3 | |
The previous commit didn't include these vital fixes. Andrew Bartlett | |||||
2010-05-21 | Revert "Make -k a simple non-bool option." | Andrew Bartlett | 1 | -0/+9 | |
This reverts commit 2bbf055dbb15ea99b80ae66adc906ad5494a3999. This change broke 'make test', because the current syntax is deliberate and an integral part of how Samba4 uses Kerberos. If a change like this is to be implemented, then careful review of all our test scripts must be taken first, and then new options such as --dont-use-kerberos, --may-use-kerberos and --must-use-kerberos should be added. Andrew Bartlett | |||||
2010-05-21 | s4:auth Error out when a memberOf DN does not have a SID | Andrew Bartlett | 1 | -13/+8 | |
We previously segfaulted if this was not the case. Andrew Bartlett | |||||
2010-05-21 | s4-smbtorture: add kernel_mode_registry_path(). | Günther Deschner | 1 | -0/+22 | |
Guenther | |||||
2010-05-21 | s4-smbtorture: Fix volatile test in RPC-WINREG. | Günther Deschner | 1 | -10/+84 | |
Guenther | |||||
2010-05-20 | Make -k a simple non-bool option. | Jeremy Allison | 1 | -9/+0 | |
Jeremy. | |||||
2010-05-20 | s4-smbtorture: use push_reg_sz/push_reg_multi_sz in spoolss tests. | Günther Deschner | 1 | -14/+12 | |
Guenther | |||||
2010-05-20 | s4-smbtorture: pass down hkey to main keytest in RPC-WINREG. | Günther Deschner | 1 | -9/+26 | |
Guenther | |||||
2010-05-20 | s4-smbtorture: print local_machine name in ↵ | Günther Deschner | 1 | -2/+3 | |
RemoteFindFirstPrinterChangeNotifyEx test. Guenther | |||||
2010-05-20 | s4-smbtorture: use push_reg_sz()/push_reg_multi_sz() in RPC-WINREG. | Günther Deschner | 1 | -19/+7 | |
Guenther | |||||
2010-05-20 | s4:ldb-samba: handle more GUID attributes | Stefan Metzmacher | 1 | -11/+36 | |
metze | |||||
2010-05-20 | librpc: finally merge ndr_string.c. | Günther Deschner | 3 | -707/+2 | |
Guenther | |||||
2010-05-20 | s4-smbtorture: take a TODO note for RAP-PRINTING. | Günther Deschner | 1 | -0/+8 | |
Guenther | |||||
2010-05-20 | s4:operational LDB module - fix warnings (missing parameters, unused variable) | Matthias Dieter Wallnöfer | 1 | -3/+5 | |
2010-05-20 | s4:auth handle addition of nested aliases of domain groups. | Andrew Bartlett | 1 | -8/+8 | |
The challenge here is that we are asked not to add the domain groups again, but we need to search inside them for any aliases that we need to add. So, we can't short-circuit the operation just because we found the domain group. Andrew Bartlett | |||||
2010-05-20 | s4:auth Change auth_generate_session_info to take flags | Andrew Bartlett | 10 | -38/+139 | |
This allows us to control what groups should be added in what use cases, and in particular to more carefully control the introduction of the 'authenticated' group. In particular, in the 'service_named_pipe' protocol, we do not have control over the addition of the authenticated users group, so we key of 'is this user the anonymous SID'. This also takes more care to allocate the right length ptoken->sids Andrew Bartlett | |||||
2010-05-20 | s4:auth Push check for messaging context into winbind backend | Andrew Bartlett | 2 | -5/+5 | |
If we don't use the winbind backend, we don't (for now) need a messaging context- and we don't have one in LDB at the moment. Andrew Bartlett | |||||
2010-05-20 | s4:auth Add dependency from the operational module onto auth | Andrew Bartlett | 6 | -9/+39 | |
We had to split up the auth module into a module loaded by main deamon and a subsystem we manually init in the operational module. Andrew Bartlett | |||||
2010-05-20 | s4:auth Allow the operational module to get a user's tokenGroups from auth | Andrew Bartlett | 9 | -123/+200 | |
This creates a new interface to the auth subsystem, to allow an auth_context to be created from the ldb, and then tokenGroups to be calculated in the same way that the auth subsystem would. Andrew Bartlett | |||||
2010-05-20 | s4:torture Add tests to demonstrate S2U4Self in the RPC-PAC test | Andrew Bartlett | 2 | -9/+307 | |
We also compare against SamLogon to try and validate the whole thing. Note that we must represent NULL as "" when comparing between the PAC and SamLogon, due to different marshalling of the structures. Andrew Bartlett | |||||
2010-05-20 | s4:auth Move BUILTIN group addition into session.c | Andrew Bartlett | 4 | -84/+264 | |
The group list in the PAC does not include 'enterprise DCs' and BUILTIN groups, so we should generate it on each server, not in the list we pass around in the PAC or SamLogon reply. Andrew Bartlett | |||||
2010-05-20 | s4:dsdb disable tokenGroups until end of rewrite | Andrew Bartlett | 1 | -1/+2 | |
I need to change the functions this calls Andrew Bartlett | |||||
2010-05-19 | pynet: Raise proper exceptions rather than invoking sys.exit. | Jelmer Vernooij | 2 | -8/+6 | |
2010-05-19 | s4/metadata: fix whitespaces | Kamen Mazdrashki | 1 | -71/+71 | |
2010-05-19 | s4/selftest: fix passwords in selftest-vars script | Kamen Mazdrashki | 1 | -2/+2 | |
2010-05-18 | s4:smb_server/smb/trans2.c - remove unused define "DEFAULT_SITE_NAME" | Matthias Dieter Wallnöfer | 1 | -1/+0 | |
Obviously this isn't needed and in general site names shouldn't be hardcoded anymore (except there is a good reason). | |||||
2010-05-18 | s4:smb_server: add dfs smbtorture to selftests | Matthieu Patou | 1 | -0/+6 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
2010-05-18 | s4:smb_server: Implement GET_DFS_REFERRAL for domain referral requests | Matthieu Patou | 1 | -1/+871 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> |