summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2010-05-21s4:torture:winreg: improve error messages in test_QueryValue_fullMichael Adam1-7/+9
So that one has a chance to tell what part of the test failed. And why.
2010-05-21s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett1-1/+1
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-21s4:libcli/ldap Rename ldap.h to libcli_ldap.hAndrew Bartlett17-15/+9
It is a problem if a samba header is called ldap.h if we also want to use OpenLDAP's ldap.h Andrew Bartlett
2010-05-21s4:auth Remove un-needed headers.Andrew Bartlett5-9/+0
2010-05-21s4:auth Fix previous commit - segfault in determinging a user's groupsAndrew Bartlett1-5/+3
The previous commit didn't include these vital fixes. Andrew Bartlett
2010-05-21Revert "Make -k a simple non-bool option."Andrew Bartlett1-0/+9
This reverts commit 2bbf055dbb15ea99b80ae66adc906ad5494a3999. This change broke 'make test', because the current syntax is deliberate and an integral part of how Samba4 uses Kerberos. If a change like this is to be implemented, then careful review of all our test scripts must be taken first, and then new options such as --dont-use-kerberos, --may-use-kerberos and --must-use-kerberos should be added. Andrew Bartlett
2010-05-21s4:auth Error out when a memberOf DN does not have a SIDAndrew Bartlett1-13/+8
We previously segfaulted if this was not the case. Andrew Bartlett
2010-05-21s4-smbtorture: add kernel_mode_registry_path().Günther Deschner1-0/+22
Guenther
2010-05-21s4-smbtorture: Fix volatile test in RPC-WINREG.Günther Deschner1-10/+84
Guenther
2010-05-20Make -k a simple non-bool option.Jeremy Allison1-9/+0
Jeremy.
2010-05-20s4-smbtorture: use push_reg_sz/push_reg_multi_sz in spoolss tests.Günther Deschner1-14/+12
Guenther
2010-05-20s4-smbtorture: pass down hkey to main keytest in RPC-WINREG.Günther Deschner1-9/+26
Guenther
2010-05-20s4-smbtorture: print local_machine name in ↵Günther Deschner1-2/+3
RemoteFindFirstPrinterChangeNotifyEx test. Guenther
2010-05-20s4-smbtorture: use push_reg_sz()/push_reg_multi_sz() in RPC-WINREG.Günther Deschner1-19/+7
Guenther
2010-05-20s4:ldb-samba: handle more GUID attributesStefan Metzmacher1-11/+36
metze
2010-05-20librpc: finally merge ndr_string.c.Günther Deschner3-707/+2
Guenther
2010-05-20s4-smbtorture: take a TODO note for RAP-PRINTING.Günther Deschner1-0/+8
Guenther
2010-05-20s4:operational LDB module - fix warnings (missing parameters, unused variable)Matthias Dieter Wallnöfer1-3/+5
2010-05-20s4:auth handle addition of nested aliases of domain groups.Andrew Bartlett1-8/+8
The challenge here is that we are asked not to add the domain groups again, but we need to search inside them for any aliases that we need to add. So, we can't short-circuit the operation just because we found the domain group. Andrew Bartlett
2010-05-20s4:auth Change auth_generate_session_info to take flagsAndrew Bartlett10-38/+139
This allows us to control what groups should be added in what use cases, and in particular to more carefully control the introduction of the 'authenticated' group. In particular, in the 'service_named_pipe' protocol, we do not have control over the addition of the authenticated users group, so we key of 'is this user the anonymous SID'. This also takes more care to allocate the right length ptoken->sids Andrew Bartlett
2010-05-20s4:auth Push check for messaging context into winbind backendAndrew Bartlett2-5/+5
If we don't use the winbind backend, we don't (for now) need a messaging context- and we don't have one in LDB at the moment. Andrew Bartlett
2010-05-20s4:auth Add dependency from the operational module onto authAndrew Bartlett6-9/+39
We had to split up the auth module into a module loaded by main deamon and a subsystem we manually init in the operational module. Andrew Bartlett
2010-05-20s4:auth Allow the operational module to get a user's tokenGroups from authAndrew Bartlett9-123/+200
This creates a new interface to the auth subsystem, to allow an auth_context to be created from the ldb, and then tokenGroups to be calculated in the same way that the auth subsystem would. Andrew Bartlett
2010-05-20s4:torture Add tests to demonstrate S2U4Self in the RPC-PAC testAndrew Bartlett2-9/+307
We also compare against SamLogon to try and validate the whole thing. Note that we must represent NULL as "" when comparing between the PAC and SamLogon, due to different marshalling of the structures. Andrew Bartlett
2010-05-20s4:auth Move BUILTIN group addition into session.cAndrew Bartlett4-84/+264
The group list in the PAC does not include 'enterprise DCs' and BUILTIN groups, so we should generate it on each server, not in the list we pass around in the PAC or SamLogon reply. Andrew Bartlett
2010-05-20s4:dsdb disable tokenGroups until end of rewriteAndrew Bartlett1-1/+2
I need to change the functions this calls Andrew Bartlett
2010-05-19pynet: Raise proper exceptions rather than invoking sys.exit.Jelmer Vernooij2-8/+6
2010-05-19s4/metadata: fix whitespacesKamen Mazdrashki1-71/+71
2010-05-19s4/selftest: fix passwords in selftest-vars scriptKamen Mazdrashki1-2/+2
2010-05-18s4:smb_server/smb/trans2.c - remove unused define "DEFAULT_SITE_NAME"Matthias Dieter Wallnöfer1-1/+0
Obviously this isn't needed and in general site names shouldn't be hardcoded anymore (except there is a good reason).
2010-05-18s4:smb_server: add dfs smbtorture to selftestsMatthieu Patou1-0/+6
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-05-18s4:smb_server: Implement GET_DFS_REFERRAL for domain referral requestsMatthieu Patou1-1/+871
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-05-18s4:smb_server: fix trailling whitespace in trans2.cMatthieu Patou1-25/+25
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-05-18s4 torture: Add tests for dfs referrals handling in SMB/trans2 requestsMatthieu Patou5-2/+578
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-05-18s4 torture test: Adapt ndr-dfsblobs torture test to new idlMatthieu Patou1-2/+2
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-05-18s4:librpc: fix the autoconf buildStefan Metzmacher1-1/+6
metze
2010-05-18s4:dynconfig: let the autoconf build compile againStefan Metzmacher1-1/+6
metze
2010-05-18s3: Fix some more iconv convenience usages.Jelmer Vernooij2-4/+4
2010-05-18Remove more usages of iconv_convenience in files which were apparently not ↵Jelmer Vernooij3-6/+3
recompiled by waf.
2010-05-18s3: Remove use of iconv_convenience.Jelmer Vernooij16-25/+1
2010-05-18Finish removal of iconv_convenience in public API's.Jelmer Vernooij160-923/+549
2010-05-18s4:ntvfs Prepare for a possible future sharing of notify.idlAndrew Bartlett1-0/+4
I would love for notify.idl to be shared between Samba4 and Samba3 some day, and this seems to be the point at which the structure is initialised. Andrew Bartlett
2010-05-18s4:winbindd Record the privilaged pipe dirAndrew Bartlett2-2/+7
This may help us return an accurate priv pipe dir later on. Andrew Bartlett
2010-05-18s4:credentials Add in tracking of the password last set timeAndrew Bartlett3-1/+33
We perhaps need a more general API here, but for now extend the credentials API to return the password last changed time that the s3compat layer will need. Andrew Bartlett
2010-05-18s4:provision Remove unused 'account_name' parameterAndrew Bartlett3-3/+0
The python glue code didn't even de-reference this element in the structure. Andrew Bartlett
2010-05-18s4:auth Make it clear to the callers the talloc lifetime.Andrew Bartlett1-0/+2
In other times, we might have used talloc_reference here, but this isn't used as much these days. Andrew Bartlett
2010-05-18pynet: Remove unused credentials argument.Jelmer Vernooij1-4/+3
2010-05-17s4-rodc: Set am_rodc flag during provisionAnatoliy Atanasov3-11/+16
2010-05-17s4-rodc: Cache am_rodc flagAnatoliy Atanasov2-0/+51
2010-05-14s4:repl_meta_data LDB module - fix counter typesMatthias Dieter Wallnöfer1-1/+1