summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2011-03-04s4:operational LDB module - add "groupToken" as unsigned int (uint32_t)Matthias Dieter Wallnöfer1-1/+1
Reviewed by: Tridge
2011-03-04s4:operational LDB module - readd "structuralObjectClass" -> "objectClass" ↵Matthias Dieter Wallnöfer1-1/+1
mapping This has been removed accidentally by commit a093e10896a4768dba0cd793a04b7d5d1366fee2. Reviewed by: Tridge
2011-03-04ldb:ldb_msg.c - use LDB result constants for checking return valuesMatthias Dieter Wallnöfer1-2/+5
Reviewed by: Tridge Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Fri Mar 4 22:51:57 CET 2011 on sn-devel-104
2011-03-04s4:ldap.py - other important RDN check testcasesMatthias Dieter Wallnöfer1-0/+67
Reviewed by: Tridge
2011-03-04s4:ldap.py - remove a debug outputMatthias Dieter Wallnöfer1-1/+0
This has only been needed for developing this testcase and has been forgotten to be removed afterwards. Reviewed by: Tridge
2011-03-04ldb:rdn_name LDB module - more RDN constraint checks (from AD)Matthias Dieter Wallnöfer1-1/+40
Reviewed by: Tridge
2011-03-04s4/ldb - remove now superflous "ldb_dn_validate" checksMatthias Dieter Wallnöfer9-18/+14
If we immediately afterwards perform an LDB base operation then we don't need an explicit "ldb_dn_validate" check anymore (only OOM makes sense). Reviewed by: Tridge
2011-03-04s4:dsdb - we don't need to check if a DN != NULL if we call "ldb_dn_validate"Matthias Dieter Wallnöfer3-7/+4
"ldb_dn_validate" is NULL-safe and does the check implicitly. Reviewed by: Tridge
2011-03-04Revert "s4:objectclass LDB module - if we cannot find DN's parent then the ↵Matthias Dieter Wallnöfer1-3/+1
DN itself is invalid" This is not needed anymore with the new DN checking. This reverts commit 5896b7299331aedd065397d2078c62d85bcf68f6. Reviewed by: Tridge
2011-03-04ldb:ldb_request - handle here the DN checksMatthias Dieter Wallnöfer1-1/+22
This is a much better solution than we had before - so all important DN checks are enforced for each type of LDB database (and not limited to DSDB). Many "ldb_dn_validate" checks will now become obsolete. Reviewed by: Tridge
2011-03-04s4:objectclass LDB module - fix a commentMatthias Dieter Wallnöfer1-1/+1
Reviewed by: Tridge
2011-03-04s4:libnet/libnet_site.c - make use of LDB return constantsMatthias Dieter Wallnöfer1-6/+6
Reviewed by: Tridge
2011-03-04s4:waf-build fix disable-shared build for smbtortureChristian Ambach1-1/+1
building smbtorture4 with configure --disable-shared failed with an error that ldb.h could not be found Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org> Reviewed by: Tridge
2011-03-04s4:selftest: test using the machine account of the rodc against itselfStefan Metzmacher1-0/+1
This should test the non proxy rodc kdc path. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Mar 4 22:06:10 CET 2011 on sn-devel-104
2011-03-04s4:kdc: split the kdc_tcp_proxy() logic from the main kdc logicStefan Metzmacher3-252/+303
By having kdc_tcp_proxy_send/recv(), which just asks any writeable dc for a reponse blob, we simplify the interaction between client-local and local-writeable sockets. This allows us to make kdc_socket, kdc_process_fn_t, kdc_tcp_call and kdc_tcp_socket private to kdc.c again. metze
2011-03-04s4:kdc: split the kdc_udp_proxy() logic from the main kdc logicStefan Metzmacher3-207/+231
By having kdc_udp_proxy_send/recv(), which just asks any writeable dc for a reponse blob, we simplify the interaction between client-local and local-writeable sockets. This allows us to make kdc_udp_call and kdc_udp_socket private to kdc.c again. metze
2011-03-04s4:kdc: add a kdc_proxy_unavailable_error() helper functionStefan Metzmacher1-0/+24
metze
2011-03-04s4:kdc: fix calculation of the rodc kvnoStefan Metzmacher1-4/+12
Bit shifting is non-trivial in C:-) This int32_t a = 0x12340000; uint32_t b = (a >> 16); results in 0x00001234, but this int32_t a = 0xEDCB0000; uint32_t b = (a >> 16); results in 0xFFFFEDCB, while we expected 0x0000EDCB. metze
2011-03-04HEIMDAL:kdc: correctly propagate HDB_ERR_NOT_FOUND_HERE to via ↵Stefan Metzmacher1-0/+5
tgs_parse_request() and _kdc_tgs_rep() metze
2011-03-04ldb:ldb tools - remove a superflous "return" (usage internally calls "exit")Matthias Dieter Wallnöfer1-1/+0
Reviewed by: Tridge Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Fri Mar 4 09:39:22 CET 2011 on sn-devel-104
2011-03-04ldb:ldb tools - return LDB_ERR_INVALID_DN_SYNTAX on wrong DN parametersMatthias Dieter Wallnöfer5-5/+9
Not all LDB databases have further DN checks. Reviewed by: Tridge
2011-03-04ldb:ldb tools - ldbtest - convert other result values to LDB codes as wellMatthias Dieter Wallnöfer1-15/+15
I've forgotten this in my first patchset. Reviewed by: Tridge
2011-03-04s4:LDAP server - remove validation checks of input DNsMatthias Dieter Wallnöfer1-23/+8
We should rather try to let the LDB modules perform these checks otherwise different backends behaviour differently. Reviewed by: Tridge
2011-03-04s4:objectclass LDB module - if we cannot find DN's parent then the DN itself ↵Matthias Dieter Wallnöfer1-1/+3
is invalid ERR_INVALID_DN_SYNTAX fits better than ERR_OPERATION_ERROR in this case. This one gets triggered if we perform "add" requests without the LDAP server. Reviewed by: Tridge
2011-03-04s4-nterr: move auth_nt_status_squash to nt_status_squash and move to nterr.cGünther Deschner8-36/+38
Guenther
2011-03-04s4-nterr: some minor cosmetic edits to further match s3 nterr.Günther Deschner1-3/+10
Guenther
2011-03-04nterr: make sure both nt_err_desc structs are the same.Günther Deschner1-0/+3
Guenther
2011-03-04nterr: make sure both nt_errs structs are the same.Günther Deschner1-0/+1
Guenther
2011-03-04s4-nterr: add _N macro handling as in s3-nterr.Günther Deschner1-91/+95
Guenther
2011-03-04nterr: remove space indents (use tabs instead), following coding standards.Günther Deschner1-15/+15
Guenther
2011-03-04nterr: remove trailing whitespace.Günther Deschner1-9/+9
Guenther
2011-03-02s4:torture/rap/rap.c - remove unused variable "i"Matthias Dieter Wallnöfer1-1/+0
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Wed Mar 2 18:38:58 CET 2011 on sn-devel-104
2011-03-02s4-smbtorture: add netsessionenum rap torture test.Günther Deschner2-0/+26
Guenther
2011-03-02s4-smbtorture: add smbcli_rap_netsessionenum().Günther Deschner1-0/+80
Guenther
2011-03-02s4-dsdb: Ensure we permit multi-valued backlinks on single-valued attributesAndrew Bartlett1-0/+7
This was already done in repl_meta_data, but it needs to be done here as well to cope with Windows 2000 level links. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Mar 2 02:03:58 CET 2011 on sn-devel-104
2011-03-01s4:drsuapi RPC server - this resembles more "samdb_is_gc"Matthias Dieter Wallnöfer1-1/+1
Reviewed by: Jelmer Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Tue Mar 1 17:57:47 CET 2011 on sn-devel-104
2011-03-01s4:netlogon RPC server - "LogonGetDomainInfo" - check for NULL attributesMatthias Dieter Wallnöfer1-17/+29
This is needed to complete the transition from "samdb_msg_add_string" to "ldb_msg_add_string". And this patch yields better NTSTATUS error results than before (INVALID_PARAMETER rather than OUT_OF_MEMORY). Reviewed-by: Jelmer Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Tue Mar 1 14:42:15 CET 2011 on sn-devel-104
2011-03-01s4:drsuapi RPC server - check for the "SPN" attribute != NULLMatthias Dieter Wallnöfer1-0/+6
The SPN attribute could derive from an untrusted source (client). Reviewed-by: Jelmer
2011-03-01s4:dsdb - always handle the attribute "options" as 32bit unsigned integerMatthias Dieter Wallnöfer4-22/+24
It is defined as LDAP syntax 2.5.5.9 so no need at all to treat it as 64-bit integer. Reviewed by: Kamenim and Metze Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Tue Mar 1 12:46:15 CET 2011 on sn-devel-104
2011-03-01s4:dsdb/common/util.c - remove "samdb_find_or_add_value"Matthias Dieter Wallnöfer1-8/+0
This isn't used anymore. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-03-01s4:dsdb/common/util.c - fully remove "samdb_msg_add_string"Matthias Dieter Wallnöfer1-18/+3
This isn't needed anymore and will be substituted by "ldb_msg_add_string". Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-03-01s4:libnet/libnet_samsync_ldb.c - add a "samdb_msg_add_string" wrapperMatthias Dieter Wallnöfer1-0/+8
Add this in order to allow the "ADD_OR_DEL" macros to work. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-03-01s4:remove many invocations of "samdb_msg_add_string"Matthias Dieter Wallnöfer8-39/+29
This call can be substituted by "ldb_msg_add_string". We only need to be careful on local objects or talloc'ed ones which live shorter than the message. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-03-01lib/util: new merged debug systemAndrew Bartlett2-13/+19
This is the s3 debug system, with a number of changes to tidy it up for common use. The debug class system is simplified by the removal of the ISSET table, the system no longer attempts to cope with assignment of DEBUGLEVEL, and the full class table is always available (rather than just DEBUGLEVEL_CLASS[DBCG_ALL]) from startup. It is also no longer confusingly described as a hack, but as the initial table. Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Mar 1 04:32:12 CET 2011 on sn-devel-104
2011-03-01lib/util move debug.[ch] out of the wayAndrew Bartlett1-1/+1
This will allow a modified version of the s3 debug system to be the new common debug system. Andrew Bartlett
2011-03-01s4-libnet_vampire: Ignore some attributes when building working schema cacheKamen Mazdrashki1-0/+9
Working schema cache will be used to convert replicated Schema objects again later, i.e. used as reference, so we don't need to resolve all attribute OIDs for working Schema cache to be usable. Autobuild-User: Kamen Mazdrashki <kamenim@samba.org> Autobuild-Date: Tue Mar 1 03:45:16 CET 2011 on sn-devel-104
2011-03-01s4-repl/working_schema: Ignore some attributes when bulding working schema cacheKamen Mazdrashki1-0/+9
We don't need all object attributes resolved and converted for a working schema to be functional.
2011-03-01s4-replicated_objects: Implement a mechanism to relax some attributes conversionKamen Mazdrashki1-4/+31
during replicated object convert stage. The problem is that we may have loops in schema graph and we can't resolve those loops in just one pass. Ignoring some attributes conversion will allow us to have a functional schema cache that we can use later to resolve all attribute OIDs on another pass
2011-02-28Fix some typesJelmer Vernooij13-24/+24
Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Mon Feb 28 23:30:06 CET 2011 on sn-devel-104
2011-02-28ntvfs: Add some missing dependencies on tevent/events.Jelmer Vernooij2-4/+5
Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Mon Feb 28 21:57:16 CET 2011 on sn-devel-104