Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2009-10-07 | torture: disable the ValidatePassword test | Andrew Tridgell | 1 | -1/+5 | |
This test causes problems on non-sealed connections against windows | |||||
2009-10-07 | s4-torture: removed an accidental commit of a local test hack | Andrew Tridgell | 1 | -1/+0 | |
Sorry about that .... | |||||
2009-10-06 | s4:various LDB modules - "build_request" functions - propagate result codes back | Matthias Dieter Wallnöfer | 7 | -15/+25 | |
It's very useful to know the exact result code when something fails and not only a generic (by the module) created one. Sure, there are some exception cases with specific results (special message constellations, attributes, values...) which shouldn't be changed at all (examples of them are in the "ldap.py" test). Therefore I looked very carefully to not change them. | |||||
2009-10-06 | s4:rootdse module - intendation fixup | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
2009-10-06 | s4:acl module - intendation fix and comment enhancement | Matthias Dieter Wallnöfer | 1 | -1/+2 | |
2009-10-06 | s4-provision: match win2003 functional level | Andrew Tridgell | 3 | -4/+4 | |
We are now defaulting to win2003 functional level, and see to report the right revisions of our db and schema | |||||
2009-10-06 | s4-drs: added some debug lines to DsAddEntry() | Andrew Tridgell | 1 | -0/+3 | |
2009-10-06 | s4-drs: take advantage of system session auth in dsbind | Andrew Tridgell | 2 | -41/+21 | |
Now that the bind opens samdb with the right credentials, we no longer need the re-open in updaterefs and getncchanges | |||||
2009-10-06 | s4-drs: fixed error message for drs_security_level_check | Andrew Tridgell | 1 | -1/+3 | |
2009-10-06 | s4-drs: open samdb with system credentials when authorised | Andrew Tridgell | 1 | -1/+14 | |
When a DC connects to DRS, open the samdb with system session credentials, so that we don't have to re-open it each time on other calls. | |||||
2009-10-06 | s4-ldb: fixed error on single value error | Andrew Tridgell | 1 | -1/+1 | |
When you try to add a 2nd value to a single valued attribute you get LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS. w2k8-r2 join to s4 relies on this error, doing a replace after it sees the error | |||||
2009-10-06 | s4-repl: added RELAX control and fix transactions | Andrew Tridgell | 1 | -8/+57 | |
Added the RELAX control to dsdb_origin_objects_commit(), as it needs to modify system objects. This patch also fixes the use of ldb transactions in that function, and fixes a memory leak. | |||||
2009-10-06 | s4:drs-development Scripts to assist testing of DRS replication with AD | Andrew Bartlett | 6 | -0/+143 | |
These scripts, originally by tridge, allow developers to easily reproduce the same domain join senerio time after time. They need documentation, and the template named.conf and zone files for hosting an AD domain are not provided. However, I hope to have the provision script provide these shortly. They assume a local 'bind' set up to read PREFIX/private/named.conf (as per the provision instructions). Ensure you edit the 'vars' file to match your local setup. Andrew Bartlett | |||||
2009-10-06 | s4:param Remove duplicate argument to python provision | Andrew Bartlett | 1 | -2/+0 | |
2009-10-06 | s4:provision Remove unused parameters from provision scripts | Andrew Bartlett | 1 | -6/+4 | |
2009-10-06 | s4-seftest: skip hold.oplock for SMB2 as well | Andrew Tridgell | 1 | -1/+1 | |
This test is not designed to be run automatically. It deliberately blocks forever. | |||||
2009-10-03 | s4:ldap.py - commented out the UTF8 tests (and fixed some deletion DNs) | Matthias Dieter Wallnöfer | 1 | -10/+12 | |
2009-10-03 | s4:ldb_tdb - fix memory leaks | Matthias Dieter Wallnöfer | 1 | -7/+12 | |
2009-10-03 | heimdal kerberos - fix memory leak (free the plugin list always - not only ↵ | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
in error cases) | |||||
2009-10-03 | s4:objectclass - Free unused memory from responses | Matthias Dieter Wallnöfer | 1 | -0/+3 | |
2009-10-03 | s4:schema_inferiors - Fix wrong check | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2009-10-03 | s4:ldb.h - add constant for LDAP EXOP password change | Matthias Dieter Wallnöfer | 1 | -4/+21 | |
Also enhance some other comments. | |||||
2009-10-03 | heimdal - fix various warnings | Matthias Dieter Wallnöfer | 7 | -24/+24 | |
- Shadowed variables - "const" related warnings - Parameter names which shadow function declarations - Non-void functions which have no return value (patch also ported upstream) | |||||
2009-10-03 | s4:ldap.py - add tests for valid parent and RDN | Matthias Dieter Wallnöfer | 1 | -0/+39 | |
2009-10-03 | s4:dsdb Use possibleInferiors to restrict creation of child objects | Andrew Bartlett | 1 | -4/+15 | |
This also uses systemPossibleInferiors when the 'relax' control is specified, which is done by the provision. Andrew Bartlett | |||||
2009-10-03 | s4:dsdb add systemPossibleInferiors to schema code | Andrew Bartlett | 2 | -0/+21 | |
This allows us to figure out what the system can add, which will not be in possibleInferiors due to the systemOnly flag. Andrew Bartlett | |||||
2009-10-03 | s4:dsdb Add objectClass and RDN constraints to objectClass module | Andrew Bartlett | 1 | -8/+35 | |
These additional constraints are applied, found by the Microsoft testsuite. - When the parent is not present, we now return 'NO_SUCH_OBJECT'. - Restrict the choice of RDN to the correct one per the schema - Honour the allowedChildClasses attribute from the parent's objectClass. Andrew Bartlett | |||||
2009-10-03 | s4:ldap.py - add a test for the "systemOnly" classes | Matthias Dieter Wallnöfer | 1 | -1/+16 | |
2009-10-03 | s4:dsdb Don't allow creation of systemOnly objectclasses | Matthias Dieter Wallnöfer | 2 | -4/+10 | |
(except as part of the provision, which specifies the 'relax' control) Andrew Bartlett | |||||
2009-10-03 | s4:rdn_name - fix up the rename operation | Matthias Dieter Wallnöfer | 1 | -4/+4 | |
A function call was wrong ("ldb_request" rathen than "ldb_next_request"). | |||||
2009-10-03 | Revert "s4:LDB/LDAP - Re-allow renames" | Matthias Dieter Wallnöfer | 1 | -49/+4 | |
This reverts commit 767fce6fccf484b547219abd5e6abc941eacaf92. Simo pointed out that the patch generates race conditions. We need to solve this using a new control. | |||||
2009-10-02 | s4:repl_meta_data - various | Matthias Dieter Wallnöfer | 1 | -9/+38 | |
- Add more "talloc_free"s and right error values where needed - Add a pre-lookup for entries before searching for metadata attribute (also suggested by TODO list) - Now the most part of "ldap.py" works again | |||||
2009-10-02 | s4:ldap.py - add a very special rename test (with invalid - empty RDN) | Matthias Dieter Wallnöfer | 1 | -9/+23 | |
2009-10-02 | s4:ldb_ildap - Don't segfault on a empty RDN | Matthias Dieter Wallnöfer | 1 | -4/+12 | |
2009-10-02 | s4:LDB/LDAP - Re-allow renames | Matthias Dieter Wallnöfer | 2 | -7/+47 | |
The main problem is that the "rdn_name" module launches on a rename request also a modification one with the "special attributes" which can't be changed directly. An introduced flag helps to bypass the restriction. | |||||
2009-10-02 | s4:ldap.py - major enhancements | Matthias Dieter Wallnöfer | 1 | -102/+187 | |
- Clean up and reorder it a bit - Test which adds invalid attributes - Test which makes sure that the 'distinguishedName' attribute cannot be modified - Test which makes sure that we cannot change the RDN/'name' attribute through a modify request | |||||
2009-10-02 | s4:ldb Don't allow RDN to be modified with an LDB modify message | Andrew Bartlett | 1 | -1/+30 | |
Found by the Microsoft testsuite at the AD interop event. Andrew Bartlett | |||||
2009-10-02 | s4:rdn_name module - a normal error message should be enough for this failure | Matthias Dieter Wallnöfer | 1 | -7/+9 | |
I don't think that we really want to have this error printed out on the server console (stdout) since this hasn't serious results as DB or data corruption and similar. | |||||
2009-10-02 | s4:ldb Don't allow modifcation of distinguishedName | Andrew Bartlett | 1 | -1/+7 | |
2009-10-02 | s4:dsdb Return correct error on invalid attribute | Andrew Bartlett | 1 | -1/+2 | |
This error per the Microsoft testsuite | |||||
2009-10-02 | s4:dsdb Pass down the exact error code on failure in repl_meta_data | Andrew Bartlett | 1 | -5/+5 | |
2009-10-02 | s4:samdb_set_password - Return the maximum password age when requested (not ↵ | Matthias Dieter Wallnöfer | 1 | -2/+3 | |
the minimum one) | |||||
2009-10-02 | s4:samdb_set_password - cosmetic fixes | Matthias Dieter Wallnöfer | 1 | -44/+58 | |
2009-10-02 | s4: fix various warnings (not "const" related ones) | Matthias Dieter Wallnöfer | 27 | -71/+72 | |
2009-10-02 | s4/srvsvc: deactivate a "ntvfs_connect" with a wrong parameter | Matthias Dieter Wallnöfer | 1 | -1/+3 | |
In the srvsvc code for s4 (NTVFS module) there exists a call to "ntvfs_connect" which is performed with a totally wrong argument. Since I'm not able to fix this, I commented it out and added a "FIXME" comment. | |||||
2009-10-02 | s4:provision_users.ldif - Put potential primary groups in front of the file | Matthias Dieter Wallnöfer | 1 | -19/+20 | |
(So they can be always found by the SAMLDB module) | |||||
2009-10-02 | Revert "s4:ldb-samba Use temp talloc contexts and talloc_steal avoid leaks." | Andrew Tridgell | 1 | -47/+12 | |
This reverts commit 38f87f40bfd7892043d49009067ae28431279580. | |||||
2009-10-02 | Revert "s4:ldb Fix ldb_list_find() folowing the change from char * to TDB_DATA" | Andrew Tridgell | 1 | -4/+10 | |
This reverts commit f0c2c9854c7659221fe9480110a7d9b2b48afbf9. | |||||
2009-10-02 | Revert "s4:ldb always talloc_free() the ldb_ldif_write context, even on success" | Andrew Tridgell | 1 | -1/+0 | |
This reverts commit a610843e9f21ee77fd29356313d2ef05fe25a1ed. | |||||
2009-10-02 | Revert "s4:ldb Remove LTDB_PACKING_FORMAT_NODN" | Andrew Tridgell | 2 | -0/+16 | |
This reverts commit bcbf0ae1e707c2355824800dc213d364070f070a. |