summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2010-06-14s4:provision: Make gc._msdcs DNS entries A/AAAA recordsAndrew Kroeger2-1/+8
When adding an additional DC as a GC server, the new DC attempts to register its own gc._msdcs records. If the existing gc._msdcs record is a CNAME, BIND fails the update with the message "attempt to add non-CNAME alongside CNAME ignored", and the new DC is not registered as a GC server. The A & AAAA record types for gc._msdcs have been verified against the DNS server of a W2K8 DC.
2010-06-14s4:SAMR server - cosmetic fixMatthias Dieter Wallnöfer1-1/+2
2010-06-14s4:SAMR server - on alias search operations do never use the domain DN as ↵Matthias Dieter Wallnöfer1-10/+7
base dn Aliases (especially in the "builtin" domain) are often domain-independant.
2010-06-13librpc: Install the right headers.Jelmer Vernooij1-2/+2
2010-06-13Support system talloc/tevent headers.Jelmer Vernooij1-2/+2
2010-06-13librpc: Fix netlogon.h file to install - not the torture one but the oneJelmer Vernooij1-1/+1
generated by pidl.
2010-06-13param/share: Use static prototypes.Jelmer Vernooij2-2/+15
2010-06-13s4:fix allocated control OIDs for "password_hash" LDB moduleMatthias Dieter Wallnöfer2-6/+8
The password hash module controls overlapped others. Sorry, but the "schema_samba4.ldif" hasn't been kept up-to-date.
2010-06-13s4-provision: Use logger in provision backends.Jelmer Vernooij2-42/+38
2010-06-13s4-test: Use smb.conf path set in environment rather than usingJelmer Vernooij9-43/+47
command-line options. This is the first step towards supporting custom test runners.
2010-06-13Remove unused version options for subunitrun.Jelmer Vernooij1-1/+0
2010-06-13Friendlier message.Jelmer Vernooij1-2/+2
2010-06-13upgradeprovision: Use logging infrastructure.Jelmer Vernooij3-25/+32
2010-06-13upgrade: Properly cancel/commit transactions in a couple more places.Jelmer Vernooij2-123/+136
2010-06-13s4-python: Start using standard python logging infrastructure ratherJelmer Vernooij7-105/+108
than simple messaging callbacks.
2010-06-12s4:dcesrv_samr_GetGroupsForUser - return error code if a SID wasn't foundMatthias Dieter Wallnöfer1-2/+1
This shouldn't happen since SIDs are mandatory for security objects
2010-06-12s4:dcesrv_samr_QueryGroupMember/GetMembersInAlias - unify the structureMatthias Dieter Wallnöfer1-30/+32
Mostly cosmetic fixes
2010-06-12s4:password_hash LDB module - this does really deactivate the MS LAN manager ↵Matthias Dieter Wallnöfer1-5/+9
hash Previously, only the conversion from cleartext to the LM hash was deactivated, and not when the user specified it directly through "dBCSPwd".
2010-06-12s4:password_hash LDB module - fix commentMatthias Dieter Wallnöfer1-1/+1
2010-06-12s4:torture - SAMR testsuite - now we do support "GetAliasMembership" as expectedMatthias Dieter Wallnöfer1-4/+0
2010-06-12s4:dcesrv_samr_GetAliasMembership - provide a correct implementationMatthias Dieter Wallnöfer1-31/+31
We could also have no valid SID specified at all and also then we have to return an empty array with "NT_STATUS_OK". This shows the torture testsuite.
2010-06-12s4:dcesrv_samr_EnumDomainGroups/Aliases - when we don't get a SID then the ↵Matthias Dieter Wallnöfer1-4/+6
database is corrupted Group/User/Alias entries do always have a SID (it's a mandatory attribute in the SAM directory)!
2010-06-12s4:dcesrv_samr_QueryAliasInfo - return "NT_STATUS_NO_SUCH_ALIAS" when it ↵Matthias Dieter Wallnöfer1-1/+4
wasn't found
2010-06-12s4:dcesrv_samr_QueryGroupInfo - make it more like "QueryAliasInfo"Matthias Dieter Wallnöfer1-14/+7
2010-06-12s4:dcesrv_samr_QueryUserInfo - minor fixesMatthias Dieter Wallnöfer1-1/+4
Return "NT_STATUS_NO_SUCH_USER" when user account doesn't exist.
2010-06-12s4:dcesrv_samr_QueryDomainInfo - allocate the "info" structure only when ↵Matthias Dieter Wallnöfer1-7/+9
really needed That means the allocation should move after the lookup (as it is on "QueryUserInfo"). Return "NT_STATUS_NO_SUCH_DOMAIN" on an invalid domain.
2010-06-12s4:dcesrv_samr_EnumDomainGroups - mostly small fixesMatthias Dieter Wallnöfer1-3/+7
2010-06-12s4:dcesrv_samr_EnumDomainAliases - return an empty array also when no entry ↵Matthias Dieter Wallnöfer1-3/+0
was returned
2010-06-12s4:dcesrv_samr_EnumDomainAliases - mostly small fixesMatthias Dieter Wallnöfer1-7/+10
The biggest change consists in the implementation of the Windows Server return size formula MIN(*r->out.num_entries, 1+(r->in.max_size/SAMR_ENUM_USERS_MULTIPLIER).
2010-06-12s4:dcesrv_samr_EnumDomainUsers - make this call look more similar to ↵Matthias Dieter Wallnöfer1-23/+28
"EnumDomainGroups" and "EnumDomainAliases" That means that the lookup is now also done by "samdb_search_domain" to be more consistent.
2010-06-12s4:ldif_read_prefixMap - don't cause memory leaks on error conditionsMatthias Dieter Wallnöfer1-2/+2
2010-06-12s4:dsdb Allow calling dsdb_convert_object_ex() directlyAndrew Bartlett1-6/+6
This will allow the libnet_vampire code to manually convert individual schema objects. Andrew Bartlett
2010-06-12s4:dsdb Add debugAndrew Bartlett1-0/+1
2010-06-12s4:dsdb Simplfy match of objectclass in dsdb_schema_set_el_from_ldb_msgAndrew Bartlett1-17/+4
There is no need to do a full ldb_match_msg() for a simple case insensitive string. Andrew Bartlett
2010-06-12s4:provision Allow both additional and override prefixmaps in SchemaAndrew Bartlett2-5/+8
The idea here is to allow some callers to specify a new prefixMap that will override the values loaded from the prefixMap.txt. Andrew Bartlett
2010-06-12s4:dsdb Allow a binary prefix map to be specified in the LDIFAndrew Bartlett1-0/+14
This allows it to be specified in either binary or as a string. Andrew Bartlett
2010-06-12s4:dsdb Provide a function to convert from DRS prefix maps to the LDB prefixmapAndrew Bartlett1-12/+21
This allows us to push a prefixmap directly into the schema we generate in the provision code. Andrew Bartlett
2010-06-12s4:dsdb Add more debugs to help track down failures to parse the prefixmapAndrew Bartlett1-5/+20
2010-06-12s4:dsdb Put back the reference and set_attributes in dsdb_reference_schemaAndrew Bartlett1-0/+9
I'm not sure why I removed these in fe3e1af901c970f738bee92baac5d7d4f5736e17 Andrew Bartlett
2010-06-11s4/test-libnet: Re-align code a bit - more readable this way IMOKamen Mazdrashki3-24/+28
2010-06-11s4/test-libnet: Refactor test_group_create() a little to:Kamen Mazdrashki1-11/+22
- Close unused policy handle for created group - re-align code - it is more readable this way IMHO
2010-06-11s4/test-libnet: Refactor test_user_create() little bit to:Kamen Mazdrashki1-11/+7
- fix a flaw that user RID is not returned in case user is recreated - close unused policy handle to created user - do not take into account the result from test_samr_close_handle - we don't case
2010-06-11s4/test-libnet: add few comments for utility functionsKamen Mazdrashki1-3/+11
2010-06-11s4/test-libnet: Move LSA close handle function to a common locationKamen Mazdrashki3-40/+26
2010-06-11s4/test-libnet: remove unused codeKamen Mazdrashki1-25/+0
Pre-connecting SAMR and LSA pipes is implemented in test_libnet_context_init() function
2010-06-11s4/test-libnet: Fix compile-time warningKamen Mazdrashki1-1/+1
2010-06-11Adjusted ACL tests to use encripted connection.Nadezhda Ivanova1-120/+69
This way we get rid of the conditional if.Samba checks, because users are successfully created and enabled.
2010-06-11s4:rootdse LDB module - use LDB result constantsMatthias Dieter Wallnöfer1-4/+5
2010-06-11s4:passwords.py - set the "dSHeuristics"Matthias Dieter Wallnöfer1-0/+33
As per Nadia's request and abartlet's suggestion the test now also sets the "dSHeuristics" attribute properly to be able to perform the tests also against Windows without further configuration. The code has the neat feature that it undoes the change and resets the behaviour as it was before.
2010-06-11s4:passwords.py - use "self" before "enable_account" to make really sure ↵Matthias Dieter Wallnöfer1-1/+1
which LDB connection should be used