summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2009-09-09s4:drs split addentry and getncchanges into separate filesAndrew Tridgell7-292/+375
These will get quite complex eventually, I think we are better separating them so the code is a bit easier to follow
2009-09-09Added "admin_session" method.Nadezhda Ivanova4-1/+223
The purpose of admin_session is to be able to execute parts of provisioning as the user Administrator in order to have the correct group and owner in the security descriptors. To be used for provisioning and tests only.
2009-09-09s4/repl: implement DsReplicaSyncAndrew Tridgell3-5/+68
This patch implements DsReplicaSync by passing the call via irpc to the repl server task. The repl server then triggers an immediate replication of the specified partition. This means we no longer need to set a small value for dreplsrv:periodic_interval to force frequent DRS replication. We can now wait for the DC to send us a ReplicaSync msg for any partition that changes, and we immediately sync that partition.
2009-09-09s4/repl: added refresh of repsToAndrew Tridgell1-1/+87
I've found that w2k3 deletes the repsTo records we carefully created in the vampire join if we don't refresh them frequently. After about 30mins all 3 repsTo records are gone. This patch adds automatic refresh of the repsTo by calling DSReplicaUpdateRefs every time we do a sync cycle with the server
2009-09-09s4: fixed format of repsTo in samdbAndrew Tridgell1-52/+70
Metze pointed out what the windows tool ldp.exe will examine repsTo attributes on remote DCs, so we do in fact need to use the same format that windows uses. This patch changes the server side implementation of UpdateRefs to use the windows format
2009-09-09s4: allow repl:RODC=true/false to set ourselves as a RODCAndrew Tridgell1-2/+6
I think this is what windows DCs use to see that we are read-only, but I am not sure. Needs more testing.
2009-09-08Mark test_security_descriptor_add_neg as known failing (for now).Jelmer Vernooij2-1/+2
2009-09-08Basic tests for nTSceurityDescriptor both SDDL and BASE64 formatZahari Zahariev1-2/+194
These are updated second eddition unittests using ldb.add_ldif() and ldb.modify_ldif(). Unittests are found to work when using the right local domain SID. Negative test separated. Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
2009-09-08s4/torture/smb2: removed SMB2-FIND testSteven Danneman3-222/+0
This test has been wholly replaced by the SMB2-DIR-ONE test found in dir.c.
2009-09-08s4/torture/smb2: Fix several small bugs and style issues in SMB2 dir testsSteven Danneman1-136/+152
* removed all uses of printf, replaced with torture_comment * replaced custom CHECK macros with new torture_assert_*_todo() helpers * switched string dir name generation to generate_unique_strs() helper, to avoid non-deterministic test behavior where generate_rand_str() would cause file colissions in the same directory.
2009-09-08ntlmssp: add some void decode calls (useful for ndrdump).Günther Deschner1-1/+7
Guenther
2009-09-08s4:repl_meta_data: remove unused codeStefan Metzmacher1-11/+0
metze
2009-09-08s3:drsuapi: add a simple DsRemoveDSServer() implementationStefan Metzmacher1-1/+42
metze
2009-09-08s4:drsuapi: add an incomplete DsAddEntry implementationStefan Metzmacher2-10/+194
metze
2009-09-08schannel: add NL_AUTH_MESSAGE and both NL_AUTH_SIGNATURE structs.Günther Deschner1-1/+1
These actually belong netlogon but we for now want to keep netlogon as a security providor separate. Guenther
2009-09-08Return a correct value for Supported Encryption TypeMatthieu Patou1-1/+6
Vista and upper version use this value to check wether they should ask the DC to change the msDS-SupportedEncryptionTypes attribute or not. Declare the different value as a bitmap in Netlogon idl
2009-09-08tort: RPC-CRACKNAMES test case refactoredKamen Mazdrashki2-1/+18
2009-09-08tort: DsCrackNames - propagate torture context to all tests.Kamen Mazdrashki2-208/+166
2009-09-08tort: Helper function to get DC info for testingKamen Mazdrashki1-0/+53
2009-09-08tort: Implement 'setup' and 'teardown' for DRSUAPI test cases.Kamen Mazdrashki2-0/+44
2009-09-08s4/ldb: support NDR printing for 2 more replication typesAndrew Tridgell2-0/+40
print replUpToDateVector and replPropertyMetaData using NDR format if --show-binary is given.
2009-09-08s4/ldb: allow prefixMap to be shown as NDRAndrew Tridgell1-0/+8
2009-09-08s4/ldb: allow printing ntSecurityDescriptor in fullAndrew Tridgell1-33/+39
print security descriptors in NDR format if --show-binary is given. This is easier to read than sddl format.
2009-09-08s4/ldb: added ldif handler for repsFrom/repsToAndrew Tridgell2-2/+57
In normal usage this makes no difference, but if you add --show-binary then you can see the NDR printed out in the usual ndr_print_*() format
2009-09-08s4/ldb: expose the ldb flags with ldb_get_flags()Andrew Tridgell2-0/+11
2009-09-08s4/ldb: don't line wrap ldif when --show-binary is usedAndrew Tridgell1-4/+9
2009-09-08s4/ldb: added --show-binary command line optionAndrew Tridgell6-4/+20
This add --show-binary to ldbsearch. When this flag is set, binary blobs will be shown as-is, instead of base64 encoded. This is useful for some XML encoded attributes, and will also be used as part of some NDR print formatting for attributes like repsTo.
2009-09-08s4:setpassword script - Passwords set by this script are set by the ↵Matthias Dieter Wallnöfer1-1/+1
administrator not the user
2009-09-08s4:provision - Cosmetic: Indent the parameters betterMatthias Dieter Wallnöfer1-36/+60
2009-09-07s4:templates - Remove the latest relics (in "dcesrv_lsa_CreateSecret")Matthias Dieter Wallnöfer2-114/+0
2009-09-07s4:wmic - Output enhancementsDmitry Karasik1-58/+105
Outputs shouldn't clash with metadata characters (|,()), special characters should be escaped, "NULL" values should be reported as "(null)" string. For the full explaination look at bug #6076.
2009-09-08s4: fixed updaterefs options bitmapAndrew Tridgell1-1/+1
2009-09-08s4: implemented server side of DSUpdateRefs callAndrew Tridgell5-11/+340
This call is made by DCs to tell us we should notify them of directory changes
2009-09-08s4/ldb: fixed spellingAndrew Tridgell1-2/+2
2009-09-08s4: 'index' is a libc functionAndrew Tridgell1-2/+2
2009-09-08s4: fixed a unsigned printf warningsAndrew Tridgell1-3/+3
2009-09-08s4: removed an unused variableAndrew Tridgell1-2/+0
2009-09-08s4: fixed some shadowed variable warningsAndrew Tridgell3-9/+9
2009-09-08Fill the meta data vector in the responce struct.Anatoliy Atanasov1-4/+32
2009-09-08s4:selftest Fix 'make testenv-gdb' and 'make valgrindtest' etcAndrew Bartlett1-28/+22
The problem here was that tridge's changes to ensure that test results were always propogated didn't merge well with the addition of extra environment variables for the 'make valgrindtest' and similar environments. By splitting out the macro further, we keep the build farm reporting accurate, but allow these other test modes to work. Andrew Bartlett
2009-09-07s4:pwsettings: Correct off by factor of 10 for ticks.Andrew Kroeger1-4/+4
The tick conversion math was off by a factor of 10 due to the incorrect usage of the "e" notation. The expression "XeY" means "X * (10^Y)", so the correct expression is 1e7 to get the correct adjustment for ticks.
2009-09-07s4: Let the "setpassword" script finally use the "samdb_set_password" routineMatthias Dieter Wallnöfer2-9/+70
The "setpassword" script should use the "samdb_set_password" call to change the NT user password. Windows Server tests show that "userPassword" is not the right place to save the NT password and does not inherit the password complexity.
2009-09-07s4:dsdb: correctly implement _dsdb_syntax_OID_oid_ldb_to_drsuapi()Stefan Metzmacher1-1/+31
Here we just need to map the oid string in the ldb value to the ATTRTYP id. metze
2009-09-07s4:LogonGetDomainInfo - add a basic check for the hostnameMatthias Dieter Wallnöfer1-2/+17
This check is specified in Windows Server after release 2003. The parameter "hostname" should match as prefix of the dns hostname given as parameter in the "workstation" structure.
2009-09-07s4: Exceptions in "provision.py"Michael Ströder1-11/+15
This looks much nicer than "normal" string exceptions - and fits better in the OO programming style.
2009-09-07s4:simple_ldap_map - "primaryGroupId"Matthias Dieter Wallnöfer1-4/+15
Previous patch was incomplete regarding the "primaryGroupId" attribute. Complete it.
2009-09-07s4:samldb - Fix typoMatthias Dieter Wallnöfer1-1/+1
2009-09-07s4:Foreign security principals - Fix them upMatthias Dieter Wallnöfer3-19/+31
I fixed them up to match with Windows Server 2003. I don't think that the creation of them in the provision script is needed so I put them in the "provision_users.ldif" file.
2009-09-07s4:subtree delete module - Cosmetic adaptionsMatthias Dieter Wallnöfer1-11/+16
2009-09-07s4:ldap.py - Adds a test for the primary group behaviourMatthias Dieter Wallnöfer1-12/+132
This passes the Windows Server behaviour. Also SAMBA 4 should match it. Also some small enhancement.