Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2009-08-05 | added a uid_wrapper library | Andrew Tridgell | 9 | -3/+25 | |
This library intercepts seteuid and related calls, and simulates them in a manner similar to the nss_wrapper and socket_wrapper libraries. This allows us to enable the vfs_unixuid NTVFS module in the build farm, which means we are more likely to catch errors in the token manipulation. The simulation is not complete, but it is enough for Samba4 for now. The major areas of incompleteness are: - no emulation of setreuid, setresuid or saved uids. These would be needed for use in Samba3 - no emulation of ruid changing. That would also be needed for Samba3 - no attempt to emulate file ownership changing, so code that (for example) tests whether st.st_uid matches geteuid() needs special handling | |||||
2009-08-05 | s4:ldb initialise e->values[i].length before use in python bindings | Andrew Bartlett | 1 | -1/+1 | |
2009-08-05 | s4:dsdb Don't cast an ldb_val into a const char * for schema lookups | Andrew Bartlett | 5 | -52/+129 | |
This removes a number of cases where we did a cast into a const char * of an ldb_val. While convention is to alway have an extra \0 at data[length] in the ldb_val, this is not required, and does not occour at least on build farm host 'svart'. Andrew Bartlett | |||||
2009-08-04 | s4: make install: prevent overwriting failure | Rusty Russell | 1 | -1/+1 | |
We don't have to remove the eventual write privileges to enable the execute ones. | |||||
2009-08-04 | s4: Change my nested groups patch to don't include user's SID itself in the ↵ | Matthias Dieter Wallnöfer | 1 | -17/+24 | |
"groupSID"s structure | |||||
2009-08-04 | s4:torture Make RPC-NETLOGON pass against ncaclrpc servers | Andrew Bartlett | 1 | -122/+132 | |
The original patch didn't cope with a NULL target server name - we now key off that to decide it isn't worth checking against LDAP for this host. I still can't get this to pass against Windows 2008, but mdw was testing against Windows 2008R2. at least 'make test' is happy, and the rest should not be too hard... Andrew Bartlett | |||||
2009-08-04 | Add const | Andrew Bartlett | 1 | -1/+1 | |
2009-08-04 | s4:ldif_handlers Allow a binary nTsecurityDescriptor when parsing LDIF | Andrew Bartlett | 1 | -1/+17 | |
Also allow a SDDL security descriptor, using the domain SID attached to the session (it will search for it during the LDIF parse if need be). Andrew Bartlett | |||||
2009-08-04 | s4:netlogon Fix warnings and segfault in GetDomainInfo call | Andrew Bartlett | 1 | -4/+5 | |
- Correctly use samdb_search_string to do a 'base' search (this needs a NULL, not a "" argument for the format string) - There is no need (and it caused a security hole) to use talloc_asprintf() with the only argument being the string to duplicate. Andrew Bartlett | |||||
2009-08-04 | Merge branch 'master' of ssh://git.samba.org/data/git/samba | Andrew Tridgell | 5 | -11/+163 | |
2009-08-04 | fixed support for readx greater than 64k | Andrew Tridgell | 2 | -3/+4 | |
This fixes bug 6547, where smbclient in S3 reads more than 64k at a time with readx. | |||||
2009-08-04 | s4:torture rework LDAP sort test | Andrew Bartlett | 4 | -79/+45 | |
This reworks the test to be part of the LDAP tests, to make better use of the torture API and the ldb API (in particular around adding controls), and a general cleanup. This also adds the test to the 'make test' run. Andrew Bartlett | |||||
2009-08-04 | s4:torture Add test for correct server-side sorting over LDAP | Matthieu Patou | 3 | -3/+194 | |
2009-08-04 | Use smbclient binary for the test file in smbclient test | Andrew Bartlett | 1 | -7/+2 | |
In the vein hope that a larger file might show problems better than a small file. Andrew Bartlett | |||||
2009-08-04 | param/pyparam: Cope with string list parameters being empty. | Ricardo Jorge | 1 | -1/+7 | |
Signed-off-by: Jelmer Vernooij <jelmer@samba.org> | |||||
2009-08-04 | python/loadparm: Get shares listing working. | Ricardo Jorge | 1 | -5/+6 | |
Signed-off-by: Jelmer Vernooij <jelmer@samba.org> | |||||
2009-08-04 | pyldb: Properly keep copies of Python string contents, rather than | Jelmer Vernooij | 1 | -9/+21 | |
relying on reference leaks :-) | |||||
2009-08-04 | s4-ldap_server: fix generated error string in map_ldb_error(). | Günther Deschner | 1 | -1/+1 | |
Guenther | |||||
2009-08-03 | pyldb: Raise proper exception when attempting to assign a string to a dn | Jelmer Vernooij | 2 | -5/+24 | |
attribute. | |||||
2009-08-03 | s4: Change constant to comply with the merged build | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2009-08-03 | s4: Torture test for enhancements in "netr_LogonGetDomainInformations" call | Matthias Dieter Wallnöfer | 1 | -26/+275 | |
This corrects and enhances the torture test of the mentioned call. | |||||
2009-08-03 | s4: Enhancements in the "netr_LogonGetDomainInformations" call | Matthias Dieter Wallnöfer | 1 | -65/+194 | |
This addresses bug #4888 and #6596 in SAMBA 4 Bugzilla - It implements the call in the complete form as specified in the MSPP/WSPP docs and on the discussion on the "cifs-protocol" list - Therefore client informations (OS name, OS version, "servicePrincipalName"...) are now saved in the AD each time the client invokes the call | |||||
2009-08-03 | Return infinite time for last last logoff when last logoff = 0 | Matthieu Patou | 3 | -2/+18 | |
2009-07-31 | s4: Correct renamed constants | Matthias Dieter Wallnöfer | 2 | -6/+6 | |
2009-07-31 | s4: Adds a small test for the new enhanced error messages from the AD LDAP ↵ | Matthias Dieter Wallnöfer | 1 | -4/+183 | |
server | |||||
2009-07-31 | s4: Enhances the LDAP server to display error messages like Windows Server | Matthias Dieter Wallnöfer | 1 | -27/+178 | |
Those error messages also include the WERROR code of the failed operation(s) in this manner: <error code eight chars in HEX>: <further error message> This also addresses bug #4949 | |||||
2009-07-31 | Adds new error codes (needed for enhancing error messages for SAMBA 4 AD ↵ | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
LDAP server) | |||||
2009-07-31 | s4:libcli/ldap: the tls code steals the original socket on its own now | Stefan Metzmacher | 1 | -3/+0 | |
metze | |||||
2009-07-31 | s4:ldap_server: the tls code steals the original socket on its own now | Stefan Metzmacher | 2 | -2/+2 | |
metze | |||||
2009-07-31 | s4:tls: avoid using talloc_reference() in tls_init_client() | Stefan Metzmacher | 1 | -6/+2 | |
metze | |||||
2009-07-31 | s4:tls: avoid using talloc_reference() in tls_init_server() | Stefan Metzmacher | 1 | -8/+1 | |
metze | |||||
2009-07-31 | s4:libnet: use talloc_strdup() instead of talloc_reference() | Stefan Metzmacher | 2 | -2/+2 | |
metze | |||||
2009-07-31 | s4:build: make sure that we regenerate proto headers when source files change | Stefan Metzmacher | 1 | -0/+2 | |
metze | |||||
2009-07-31 | s4:auth: make sure we have elements returned at all in ↵ | Stefan Metzmacher | 1 | -0/+6 | |
authsam_expand_nested_groups() metze | |||||
2009-07-31 | s4: Patch to implement nested group and privileges | Matthias Dieter Wallnöfer | 1 | -34/+100 | |
This patch adds a function "authsam_expand_nested_groups" (calculation of rights through expanding groups of a certain SID) which basically collects all memberships through "memberOf" attributes. It works with either user or group SIDs. For avoiding loops it tests on each call if the SID hasn't been added yet (through the helper function "sids_contains_sid"). The function itself is called by "authsam_make_server_info". | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsDoScanvengingNew() | Stefan Metzmacher | 1 | -1/+14 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsStatusWHdl() | Stefan Metzmacher | 1 | -1/+5 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsStatusNew() | Stefan Metzmacher | 1 | -1/+17 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsGetDbRecsByName() | Stefan Metzmacher | 1 | -2/+9 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsGetBrowserNames() | Stefan Metzmacher | 1 | -1/+10 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsSetFlags() | Stefan Metzmacher | 1 | -1/+3 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsDeleteWins() | Stefan Metzmacher | 1 | -1/+3 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsGetBrowserNames_Old() | Stefan Metzmacher | 1 | -1/+13 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsGetNameAndAdd() | Stefan Metzmacher | 1 | -1/+9 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsWorkerThreadUpdate() | Stefan Metzmacher | 1 | -1/+3 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsResetCounters() | Stefan Metzmacher | 1 | -1/+1 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsSetPriorityClass() | Stefan Metzmacher | 1 | -1/+3 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsPullRange() | Stefan Metzmacher | 1 | -1/+6 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsDelDbRecs() | Stefan Metzmacher | 1 | -1/+5 | |
metze | |||||
2009-07-31 | winsif.idl: add definition of winsif_WinsBackup() | Stefan Metzmacher | 1 | -1/+4 | |
metze |