Age | Commit message (Collapse) | Author | Files | Lines |
|
metze
(This used to be commit 8dda4342f648aa71878ac9eeb7941710e2813aee)
|
|
metze
(This used to be commit 1e4289fae4fb71725d9c37ed772eab0ff5853e65)
|
|
enough memory for the new sub_auth element.
the old version wrote behind the buffer.
also make the output sid a pointer.
metze
(This used to be commit b9901d5f8c9aa777bafd3a670d27209552bc56b7)
|
|
the crash.
rafal
(This used to be commit 5d7908038b6508f53cc8714f73ae7c5bfc6bce58)
|
|
rafal
(This used to be commit af539fec4acb3ad78b8f0fa4f7c2f4e6cebea0b7)
|
|
rafal
(This used to be commit 0c373605776eb166ffe46db0dd21395efc3bb186)
|
|
rafal
(This used to be commit 9f5f9ee9b4b815715c0b580e21ab0906fa15ae96)
|
|
a distinction between PDC and BDC in the configuration files, only as
an entry in the ldb.
Andrew Bartlett
(This used to be commit dc9eee7cb37e4a6828c2cba23b0d836df9eac7b5)
|
|
way to setup a Samba4 DC is to set 'server role = domain controller'.
We use the fSMORoleOwner attribute in the base DN to determine the PDC.
This patch is quite large, as I have corrected a number of places that
assumed taht we are always the PDC, or that used the smb.conf
lp_server_role() to determine that.
Also included is a warning fix in the SAMR code, where the IDL has
seperated a couple of types for group display enumeration.
We also now use the ldb database to determine if we should run the
global catalog service.
In the near future, I will complete the DRSUAPI
DsGetDomainControllerInfo server-side on the same basis.
Andrew Bartlett
(This used to be commit 67d8365e831adf3eaecd8b34dcc481fc82565893)
|
|
metze
(This used to be commit d2d9842914bb049189f9349ff96b32c088cd02a8)
|
|
libnet_BecomeDC()/libnet_UnbecomeDC()
metze
(This used to be commit 0359d9a00b3e30e2bd67b89d6b11236e5af0106b)
|
|
rafal
(This used to be commit 3cdd43ebcedfa7d1d59bd33b3bfed4e80560ec82)
|
|
but that's not needed untill we can support the DsGetNCChanges()
in the server...
metze
(This used to be commit 9c3267e17f984a0a47abd35cecb56c43cf97efcd)
|
|
instead of hardcoded GENSEC_FEATURE_SEAL.
That means plain LDAP is now the default.
metze
(This used to be commit b69471866c2a6c61002147938f233f2f63963ba4)
|
|
requested it!
this is needed to create plain, singed or sealed LDAP connections.
this should go into lorikeet and main heimdal...
metze
(This used to be commit 75c037cae21714e394a63f2506387e1049eb4406)
|
|
rafal
(This used to be commit 0b82b9dba1f67b1d340b7cf2b35a826135c101d4)
|
|
rafal
(This used to be commit e635f5aeaf7cd722e55bd99e52a8de166ae0ecd5)
|
|
so make it possible to force encryption or signing.
metze
(This used to be commit a91dc4a02a46370c52f59cbd4dea9580fa6efafa)
|
|
the loop entry condition.
Andrew Bartlett
(This used to be commit c1182751313290fc38af5b1c44bc66b5d1654977)
|
|
metze
(This used to be commit 024dacb3b0a32bcaaef0b7a7598070b9034a7648)
|
|
metze
(This used to be commit 53805a8562c59116e458dedd695e061eabf78620)
|
|
metze
(This used to be commit cb89f0b8d5a64433374887bcd44e04ad63e4857e)
|
|
- pass ldb_request to init_lldb_handle()
- remove some useless talloc_get_type() calls
metze
(This used to be commit a7397c4d2bed181c96863e985727c8dad0894df7)
|
|
metze
(This used to be commit 1e3bb180261643900c7bdacef818add5349c7a30)
|
|
metze
(This used to be commit db85b7840c1022665d410516d9a8989474d67a0f)
|
|
- pass down ldb_request
metze
(This used to be commit b0b9e83fed0145bac6058d11e9b1b2c57d091649)
|
|
metze
(This used to be commit cf9aade216930980bf47ea8b97db976c4907cbca)
|
|
also pass ildb instead of module, to avoid multiple talloc_get_type() calls
metze
(This used to be commit 03029d4fed86b1ca5fb19a408312607d8790d110)
|
|
metze
(This used to be commit b85d5cb7a4931d1d43a0ec73f1de1519c720f1af)
|
|
Here is a patch that adds a torture:dc_binding parametric option to
torture_create_testuser in testjoin.c. This patch is used in OpenChange
torture tests when the AD is different from the Exchange Server. This generic
option could also be used for later 'member server' tests in Samba4.
metze
(This used to be commit 9ddabfc60e1a4f5e471991253141ce458c9a683d)
|
|
I've attached the patch which fix this problem. I've only added
DCERPC_NDR_REF_ALLOC to the connection flags. This way it is processed
correctly by ndr_pull_init_flags and added to the ndr flags of the pull
structure.
metze
(This used to be commit ed4c7ce547c61907291d19c172d5eb6f4c4981fe)
|
|
particular to verify more expected results.
Also return more details from the join process. Now we also return
the machine account's GUID.
Andrew Bartlett
(This used to be commit 5b32f102af1fc7acb56bf7eaa40068d60a1ee396)
|
|
metze
(This used to be commit 4daa45f98a3bb6f3c245fe61e05681335ef8b5c6)
|
|
metze
(This used to be commit d295239861a282d06a9a93cdafa4e4d7616928b8)
|
|
to work better against w2k, so we don't get redirected from
1.2.840.113554.1.2.2 to 1.2.840.48018.1.2.2 by a w2k server, causing 2 additional
auth roundtrips.
metze
(This used to be commit fa5c942ee99d3b5779598aa75f71d0317ba3f622)
|
|
negTokenTarg
this happens because we send 1.2.840.113554.1.2.2 before 1.2.840.48018.1.2.2
in the negTokenInit. And w2k's spnego code redirects us to use 1.2.840.48018.1.2.2
and then we start the our spnego engine with 1.2.840.48018.1.2.2 and in the then following
negTokenTarg w2k don't send the supportedMech (which means it aggrees in what we've choosen)
metze
(This used to be commit 5af5488593991ab4a2a8e17d38501ad9ec539020)
|
|
To activate it you must modify the @INDEXLIST object adding
the attribute @IDXONE: 1
Ldb test included
Simo.
(This used to be commit ea111795f4016916473ccc05d23c6655e6af1207)
|
|
metze
(This used to be commit d70140ed07bf4d0d1d0a0485ca73a29cf1cafe8c)
|
|
epoll. It is not linked in anywhere yet - I'm committing it in case
anyone else wants to have a look at it.
The concept is quite strange really, but it seems to be the only way
that Linux 2.6.x can currently use a unified event model allowing for
AIO events and socket events to be waited for by a single unified
event wait function. You setup a epoll system, then setup a weird aio
event that points at the epoll system, then use io_getevents() to
actually do the waiting.
I'm hoping that kevents or a proper integration of epoll will allow us
to avoid ths rather hackish scheme, but meanwhile this is the only
path to proper AIO in Samba on Linux (without a horrible signals mess)
(NOTE: this code requires some kernel patches to work at the moment)
(This used to be commit 195051fdee341e8d8cb76e5c91dcc0f6c246a870)
|
|
as metze once suggested.
rafal
(This used to be commit 1f3fd5f85461d1e8c9cbdc3144d0a6533b170f76)
|
|
up many of the build farm failures.
Andrew Bartlett
(This used to be commit 924af98ffaab3735c3f31014059e7cd0abd71919)
|
|
(This used to be commit a2520bcfa918977f2139a963e9817370789cf077)
|
|
(This used to be commit cc1bcb814844e8a03dfa9a310d26ce3f3441e7bb)
|
|
Andrew Bartlett
(This used to be commit d1b1a4c059bfa93bd55f9ffc718e802695c50cc9)
|
|
metze
(This used to be commit 3daa68e1c4212f1dad98b196a096ded3204b03ba)
|
|
metze
(This used to be commit b0ee1308928d4747639033807aa3f9441ba2ac14)
|
|
metze
(This used to be commit 1b6621814ba83724e05c0c2bea28d6eb295a3655)
|
|
metze
(This used to be commit 314308c0bf8eeb168d59dab2a867e6bf5f51266b)
|
|
communitcation in a CIFS clustered server. It tries to keep the
connections full by setting up the next lock as each lock is done.
The locking pattern is similar to the local filesystem ping pong test
in junkcode, forcing a communication between nodes on each request
(This used to be commit d57b9fb29860bd03cfa970bcc52ef45d17775638)
|
|
(This used to be commit afcc797e8a25d99269f67e05fe57e952dd5d65bc)
|