Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-06-14 | s4:provision: Make gc._msdcs DNS entries A/AAAA records | Andrew Kroeger | 2 | -1/+8 | |
When adding an additional DC as a GC server, the new DC attempts to register its own gc._msdcs records. If the existing gc._msdcs record is a CNAME, BIND fails the update with the message "attempt to add non-CNAME alongside CNAME ignored", and the new DC is not registered as a GC server. The A & AAAA record types for gc._msdcs have been verified against the DNS server of a W2K8 DC. | |||||
2010-06-14 | s4:SAMR server - cosmetic fix | Matthias Dieter Wallnöfer | 1 | -1/+2 | |
2010-06-14 | s4:SAMR server - on alias search operations do never use the domain DN as ↵ | Matthias Dieter Wallnöfer | 1 | -10/+7 | |
base dn Aliases (especially in the "builtin" domain) are often domain-independant. | |||||
2010-06-13 | librpc: Install the right headers. | Jelmer Vernooij | 1 | -2/+2 | |
2010-06-13 | Support system talloc/tevent headers. | Jelmer Vernooij | 1 | -2/+2 | |
2010-06-13 | librpc: Fix netlogon.h file to install - not the torture one but the one | Jelmer Vernooij | 1 | -1/+1 | |
generated by pidl. | |||||
2010-06-13 | param/share: Use static prototypes. | Jelmer Vernooij | 2 | -2/+15 | |
2010-06-13 | s4:fix allocated control OIDs for "password_hash" LDB module | Matthias Dieter Wallnöfer | 2 | -6/+8 | |
The password hash module controls overlapped others. Sorry, but the "schema_samba4.ldif" hasn't been kept up-to-date. | |||||
2010-06-13 | s4-provision: Use logger in provision backends. | Jelmer Vernooij | 2 | -42/+38 | |
2010-06-13 | s4-test: Use smb.conf path set in environment rather than using | Jelmer Vernooij | 9 | -43/+47 | |
command-line options. This is the first step towards supporting custom test runners. | |||||
2010-06-13 | Remove unused version options for subunitrun. | Jelmer Vernooij | 1 | -1/+0 | |
2010-06-13 | Friendlier message. | Jelmer Vernooij | 1 | -2/+2 | |
2010-06-13 | upgradeprovision: Use logging infrastructure. | Jelmer Vernooij | 3 | -25/+32 | |
2010-06-13 | upgrade: Properly cancel/commit transactions in a couple more places. | Jelmer Vernooij | 2 | -123/+136 | |
2010-06-13 | s4-python: Start using standard python logging infrastructure rather | Jelmer Vernooij | 7 | -105/+108 | |
than simple messaging callbacks. | |||||
2010-06-12 | s4:dcesrv_samr_GetGroupsForUser - return error code if a SID wasn't found | Matthias Dieter Wallnöfer | 1 | -2/+1 | |
This shouldn't happen since SIDs are mandatory for security objects | |||||
2010-06-12 | s4:dcesrv_samr_QueryGroupMember/GetMembersInAlias - unify the structure | Matthias Dieter Wallnöfer | 1 | -30/+32 | |
Mostly cosmetic fixes | |||||
2010-06-12 | s4:password_hash LDB module - this does really deactivate the MS LAN manager ↵ | Matthias Dieter Wallnöfer | 1 | -5/+9 | |
hash Previously, only the conversion from cleartext to the LM hash was deactivated, and not when the user specified it directly through "dBCSPwd". | |||||
2010-06-12 | s4:password_hash LDB module - fix comment | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2010-06-12 | s4:torture - SAMR testsuite - now we do support "GetAliasMembership" as expected | Matthias Dieter Wallnöfer | 1 | -4/+0 | |
2010-06-12 | s4:dcesrv_samr_GetAliasMembership - provide a correct implementation | Matthias Dieter Wallnöfer | 1 | -31/+31 | |
We could also have no valid SID specified at all and also then we have to return an empty array with "NT_STATUS_OK". This shows the torture testsuite. | |||||
2010-06-12 | s4:dcesrv_samr_EnumDomainGroups/Aliases - when we don't get a SID then the ↵ | Matthias Dieter Wallnöfer | 1 | -4/+6 | |
database is corrupted Group/User/Alias entries do always have a SID (it's a mandatory attribute in the SAM directory)! | |||||
2010-06-12 | s4:dcesrv_samr_QueryAliasInfo - return "NT_STATUS_NO_SUCH_ALIAS" when it ↵ | Matthias Dieter Wallnöfer | 1 | -1/+4 | |
wasn't found | |||||
2010-06-12 | s4:dcesrv_samr_QueryGroupInfo - make it more like "QueryAliasInfo" | Matthias Dieter Wallnöfer | 1 | -14/+7 | |
2010-06-12 | s4:dcesrv_samr_QueryUserInfo - minor fixes | Matthias Dieter Wallnöfer | 1 | -1/+4 | |
Return "NT_STATUS_NO_SUCH_USER" when user account doesn't exist. | |||||
2010-06-12 | s4:dcesrv_samr_QueryDomainInfo - allocate the "info" structure only when ↵ | Matthias Dieter Wallnöfer | 1 | -7/+9 | |
really needed That means the allocation should move after the lookup (as it is on "QueryUserInfo"). Return "NT_STATUS_NO_SUCH_DOMAIN" on an invalid domain. | |||||
2010-06-12 | s4:dcesrv_samr_EnumDomainGroups - mostly small fixes | Matthias Dieter Wallnöfer | 1 | -3/+7 | |
2010-06-12 | s4:dcesrv_samr_EnumDomainAliases - return an empty array also when no entry ↵ | Matthias Dieter Wallnöfer | 1 | -3/+0 | |
was returned | |||||
2010-06-12 | s4:dcesrv_samr_EnumDomainAliases - mostly small fixes | Matthias Dieter Wallnöfer | 1 | -7/+10 | |
The biggest change consists in the implementation of the Windows Server return size formula MIN(*r->out.num_entries, 1+(r->in.max_size/SAMR_ENUM_USERS_MULTIPLIER). | |||||
2010-06-12 | s4:dcesrv_samr_EnumDomainUsers - make this call look more similar to ↵ | Matthias Dieter Wallnöfer | 1 | -23/+28 | |
"EnumDomainGroups" and "EnumDomainAliases" That means that the lookup is now also done by "samdb_search_domain" to be more consistent. | |||||
2010-06-12 | s4:ldif_read_prefixMap - don't cause memory leaks on error conditions | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
2010-06-12 | s4:dsdb Allow calling dsdb_convert_object_ex() directly | Andrew Bartlett | 1 | -6/+6 | |
This will allow the libnet_vampire code to manually convert individual schema objects. Andrew Bartlett | |||||
2010-06-12 | s4:dsdb Add debug | Andrew Bartlett | 1 | -0/+1 | |
2010-06-12 | s4:dsdb Simplfy match of objectclass in dsdb_schema_set_el_from_ldb_msg | Andrew Bartlett | 1 | -17/+4 | |
There is no need to do a full ldb_match_msg() for a simple case insensitive string. Andrew Bartlett | |||||
2010-06-12 | s4:provision Allow both additional and override prefixmaps in Schema | Andrew Bartlett | 2 | -5/+8 | |
The idea here is to allow some callers to specify a new prefixMap that will override the values loaded from the prefixMap.txt. Andrew Bartlett | |||||
2010-06-12 | s4:dsdb Allow a binary prefix map to be specified in the LDIF | Andrew Bartlett | 1 | -0/+14 | |
This allows it to be specified in either binary or as a string. Andrew Bartlett | |||||
2010-06-12 | s4:dsdb Provide a function to convert from DRS prefix maps to the LDB prefixmap | Andrew Bartlett | 1 | -12/+21 | |
This allows us to push a prefixmap directly into the schema we generate in the provision code. Andrew Bartlett | |||||
2010-06-12 | s4:dsdb Add more debugs to help track down failures to parse the prefixmap | Andrew Bartlett | 1 | -5/+20 | |
2010-06-12 | s4:dsdb Put back the reference and set_attributes in dsdb_reference_schema | Andrew Bartlett | 1 | -0/+9 | |
I'm not sure why I removed these in fe3e1af901c970f738bee92baac5d7d4f5736e17 Andrew Bartlett | |||||
2010-06-11 | s4/test-libnet: Re-align code a bit - more readable this way IMO | Kamen Mazdrashki | 3 | -24/+28 | |
2010-06-11 | s4/test-libnet: Refactor test_group_create() a little to: | Kamen Mazdrashki | 1 | -11/+22 | |
- Close unused policy handle for created group - re-align code - it is more readable this way IMHO | |||||
2010-06-11 | s4/test-libnet: Refactor test_user_create() little bit to: | Kamen Mazdrashki | 1 | -11/+7 | |
- fix a flaw that user RID is not returned in case user is recreated - close unused policy handle to created user - do not take into account the result from test_samr_close_handle - we don't case | |||||
2010-06-11 | s4/test-libnet: add few comments for utility functions | Kamen Mazdrashki | 1 | -3/+11 | |
2010-06-11 | s4/test-libnet: Move LSA close handle function to a common location | Kamen Mazdrashki | 3 | -40/+26 | |
2010-06-11 | s4/test-libnet: remove unused code | Kamen Mazdrashki | 1 | -25/+0 | |
Pre-connecting SAMR and LSA pipes is implemented in test_libnet_context_init() function | |||||
2010-06-11 | s4/test-libnet: Fix compile-time warning | Kamen Mazdrashki | 1 | -1/+1 | |
2010-06-11 | Adjusted ACL tests to use encripted connection. | Nadezhda Ivanova | 1 | -120/+69 | |
This way we get rid of the conditional if.Samba checks, because users are successfully created and enabled. | |||||
2010-06-11 | s4:rootdse LDB module - use LDB result constants | Matthias Dieter Wallnöfer | 1 | -4/+5 | |
2010-06-11 | s4:passwords.py - set the "dSHeuristics" | Matthias Dieter Wallnöfer | 1 | -0/+33 | |
As per Nadia's request and abartlet's suggestion the test now also sets the "dSHeuristics" attribute properly to be able to perform the tests also against Windows without further configuration. The code has the neat feature that it undoes the change and resets the behaviour as it was before. | |||||
2010-06-11 | s4:passwords.py - use "self" before "enable_account" to make really sure ↵ | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
which LDB connection should be used |