summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2009-05-28fixed one-level indexingAndrew Tridgell1-6/+2
one-level indexing was not always effective due to some broken logic in the indexing code. This change means that if normal indexing fails, we can still fall back on one-level indexing. This reduces the number of full unindexed searches in s4 quite a lot
2009-05-28enable one-level indexing in sam.ldbAndrew Tridgell1-0/+5
2009-05-26use domain_dn not ncnameAndrew Tridgell1-3/+2
fixed up from previous patch that removed the use of crossref records
2009-05-26Merge branch 'master' of ssh://git.samba.org/data/git/sambaAndrew Tridgell16-615/+253
2009-05-26s4:provision: Added ComPartitionSets entry.Andrew Kroeger1-0/+5
Without this entry, opening the COM+ tab under the properties of an OU within ADUC results in the following error: "Unable to retrieve all user properties, 0x80072030"
2009-05-26s4:Added Extended-Rights and subentries.Andrew Kroeger1-0/+881
Without these entries, using the 'Delegate Control' option in ADUC results in the following error message in the Delegation of Control Wizard: "The templates could not be applied. One or more of the templates is not applicable. Click Back and select different templates, and then try again."
2009-05-26s4:provision: Update DisplaySpecifiers (#5139).Andrew Kroeger1-0/+369
The classDisplayName attribute controls the actual text displayed to the user for the top-level menus, so added it to the existing entries. The attributeDisplayNames attribute contains both the text displayed to the user and a mapping to the internal directory attribute name for the particular field, so added these to the existing entries as well. Added new entries as appropriate to properly complete all menus and labels within ADUC.
2009-05-26Don't use crossRef records to find our own domainAndrew Bartlett16-615/+253
A single AD server can only host a single domain, so don't stuff about with looking up our crossRef record in the cn=Partitions container. We instead trust that lp_realm() and lp_workgroup() works correctly. Andrew Bartlett
2009-05-25source{3,4}/torture/smbiconv.c(main): fixed file descriptor leak.Slava Semushin1-0/+1
File descriptor leaks only when we use file instead of stdout. Found by cppcheck: [./source3/torture/smbiconv.c:219]: (error) Resource leak: out [./source4/torture/smbiconv.c:211]: (error) Resource leak: out
2009-05-25s4-smbtorture: add RPC-SAMR-LARGE-DC test.Günther Deschner2-1/+332
This rather simple test creates 4500 objects on a domain controller and checks the enum calls for the correct number of results. Guenther
2009-05-25s4-smbtorture: rename test_EnumDomain{Users,Groups,Aliases} in RPC-SAMR.Günther Deschner1-11/+12
Guenther
2009-05-25s4-smbtorture: re-work test_Create{User,Group,Alias} a little.Günther Deschner1-14/+38
Guenther
2009-05-25fixed interpretation of ACB_PWNOTREQAndrew Tridgell2-15/+6
This bit actually means that we should ignore the minimum password length field for this user. It doesn't mean that the password should be seen as empty
2009-05-25fixed the client side password change codeAndrew Tridgell1-61/+25
The client side code was not falling back to older routines correctly as it didn't check for the operation range error appropriately. It also used the old rpc semantics.
2009-05-25cope with lanman auth being disabled in old password change codeAndrew Tridgell1-8/+15
When lanman auth is disabled and a user calls a password change method that requires it we should give NT_STATUS_NOT_SUPPORTED
2009-05-21s4-selftest: adding RPC-SAMR-USERS-PRIVILEGES to knownfail list.Günther Deschner1-0/+1
Samba4 cannot pass this test currently as in Samba4 (unlike Samba3) the LSA and SAMR account are stored in the same db. Once you delete a SAMR user the LSA privilege account is deleted at the same time (which is wrong). Guenther
2009-05-20s4:libcli/smb2: fix session setup with raw NTLMSSPStefan Metzmacher1-13/+17
metze
2009-05-20s4:libcli/smb2: use raw ntlmssp if the server didn't provide a sec blobStefan Metzmacher1-1/+8
metze
2009-05-20s4:libcli/smb2: fill in transport->negotiate.secblob with the correct dataStefan Metzmacher1-0/+2
metze
2009-05-20SMB2-LOCK: let the test pass against samba4Stefan Metzmacher1-1/+7
metze
2009-05-20s4: try to fix privileges implementation in order to pass the ↵Günther Deschner1-1/+5
RPC-SAMR-USERS-PRIVILEGES test. Guenther
2009-05-20Have ntvfs_connect() accept union smb_tcon *tcon instead of char* sharenameSam Liddicott14-47/+202
This change brings ntvfs_connect into compliance with other ntvfs functions which take an ntvfs module, an ntvfs request and an smb io union. It now becomes the responsibility of ntvfs modules to examine tcon->generic.level themselves and derive the share name and any other options directly; e.g. const char *sharename; switch (tcon->generic.level) { case RAW_TCON_TCON: sharename = tcon->tcon.in.service; break; case RAW_TCON_TCONX: sharename = tcon->tconx.in.path; break; case RAW_TCON_SMB2: default: return NT_STATUS_INVALID_LEVEL; } if (strncmp(sharename, "\\\\", 2) == 0) { char *p = strchr(sharename+2, '\\'); if (p) { sharename = p + 1; } } service.c smbsrv_tcon_backend() is called before ntvfs_connect and fills in some of the tcon->..out values. For the case of RAW_TCON_TCONX, it filles out tcon->tconx.out.tid and tcon->tconx.out.options For the case of RAW_TCON_TCON it fills out tcon->tcon.out.tid and tcon->tcon.out.max_xmit Thus the ntvfs_connect function for vfs modules may override these values if desired, but are not required to. ntvfs_connect functions are required to fill in the tcon->tconx.out.*_type fields, for RAW_TCON_TCONX, perhaps something like: if (tcon->generic.level == RAW_TCON_TCONX) { tcon->tconx.out.fs_type = ntvfs->ctx->fs_type; tcon->tconx.out.dev_type = ntvfs->ctx->dev_type; } Signed-off-by: Sam Liddicott <sam@liddicott.com> (I fixed the ntvfs_connect() in the smb_server/smb2/ and the RAW_TCON_SMB2 switch case in the modules) Signed-off-by: Stefan Metzmacher <metze@samba.org>
2009-05-20s4:smb_server: initialy read the first 4 bytes onlySam Liddicott1-0/+1
Stop packet_recv getting greedy and reading the whole socket and then dispatching te extra packets in a timer loop Signed-off-by: Sam Liddicott <sam@liddicott.com> Signed-off-by: Stefan Metzmacher <metze@samba.org>
2009-05-20s4:libcli/raw: initialy read the first 4 bytes onlyStefan Metzmacher1-0/+1
metze
2009-05-18s4 torture: Fix typoTim Prouty1-1/+1
2009-05-19s4-smbtorture: Fix build warning in RPC-SAMR tests.Günther Deschner1-2/+2
Guenther
2009-05-18s4-smbtorture: add RPC-SAMR-USERS-PRIVILEGES test.Günther Deschner2-9/+387
This test demonstrates the independence of the lsa and samr accounts while remove a samr users that still has privileges granted. Guenther
2009-05-16tevent: Remove python module.Jelmer Vernooij2-3/+0
This module didn't have any functionality that we actually used yet, and it was quite small. Tevent is quite low level and perhaps doesn't make much sense to expose directly as a Python module. It was also causing build problems when used with a system-tevent. We can always back later if necessary.
2009-05-16Update copies of config.guess and config.sub.Jelmer Vernooij4-152/+564
2009-05-15errormap: Remove wbc -> NTSTATUS error map for now. It is not used.Jelmer Vernooij1-37/+0
This was breaking the Samba 4 installation since it added dependencies on header files we weren't installing. Confirmed with Kai.
2009-05-14s4:nbtd Use str_list_make_single() to turn iname->wins_server into a listAndrew Bartlett1-1/+1
2009-05-14s4:libnet Use str_list_make_single() in resolv codeAndrew Bartlett1-1/+1
2009-05-14dsdb:schema Use str_list_make_empty() to create an empty listAndrew Bartlett1-5/+5
2009-05-14s4:torture Use str_list_make_single where appropriateAndrew Bartlett1-10/+10
2009-05-13s4-selftest: match new name of RPC-SAMR-ACCESSMASK.Günther Deschner2-2/+2
Guenther
2009-05-13s4-smbtorture: split RPC-SAMR-ACCESSMASK into several tests.Günther Deschner1-34/+24
Guenther
2009-05-13s4-smbtorture: cosmetic cleanup for RPC-SAMR-ACCESSMASK.Günther Deschner1-50/+50
Guenther
2009-05-13s4 config-summary: Fix printing of which libraries are external andJelmer Vernooij1-2/+8
internal.
2009-05-12s4-smbtorture: skip SetMemberAttributesOfGroup in RPC-SAMR for s3 as well.Günther Deschner1-1/+2
Guenther
2009-05-12s4-smbtorture: Skip secdesc set calls for non-user objects in RPC-SAMR for ↵Günther Deschner1-8/+18
Samba3. Note that they are skipped for all objects while testing Samba4. Guenther
2009-05-12s4-smbtorture: Fix order of assert args in test_TestPrivateFunctionsDomain() ↵Günther Deschner1-1/+1
in RPC-SAMR. Guenther
2009-05-12s4-smbtorture: switch to use torture_context in RPC-SAMR.Günther Deschner1-103/+131
Guenther
2009-05-12s4-smbtorture: remove trailing whitespace in RPC-SAMR.Günther Deschner1-252/+252
Guenther
2009-05-11s4-smbtorture: add very basic RPC-LSA-LOOKUPNAMES test.Günther Deschner2-0/+67
Guenther
2009-05-11s4-smbtorture: add optional very simple reply checks to lsa lookup name tests.Günther Deschner1-7/+34
Guenther
2009-05-11s4:smb_server: return after we have processed an invalid smb2 requestStefan Metzmacher1-0/+2
metze
2009-05-11Move SMB2 constants to a separate fileVolker Lendecke2-114/+140
2009-05-11Fix SMB2_CAP_DFSVolker Lendecke1-1/+1
2009-05-11s4-smbtorture: remove trailing whitespace in RPC-LSA test.Günther Deschner1-192/+192
Guenther
2009-05-11s4-smbtorture: use struct torture_context in RPC-LSA.Günther Deschner1-211/+207
Guenther