summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * s4-ldb: add support for extended DNs in the rootDSEAndrew Tridgell2009-09-211-2/+135
| | | | | | | | | | W2K8 join as a DC relies on being able to ask for the sid component of extended DNs from the rootDSE DNs
| * s4-dsdb: fixed a printf format warningAndrew Tridgell2009-09-211-1/+1
| |
* | Initial Implementation of the DS objects access checks.Nadezhda Ivanova2009-09-219-1/+1441
| | | | | | | | | | Currently disabled. The search will be greatly modified, also the object tree stuff will be simplified.
* | Merge branch 'master' of git://git.samba.org/sambaNadezhda Ivanova2009-09-2129-541/+839
|\|
| * s4:kerberos Fix the salt to match Windows 2008.Andrew Bartlett2009-09-212-2/+2
| | | | | | | | | | | | | | The previous commit changed the wrong end - we must fix our server, not our client. Andrew Bartlett
| * s4:provision Make our default salt match our server behaviourAndrew Bartlett2009-09-211-1/+1
| | | | | | | | | | | | We need to look into salting algorithms further. Andrew Bartlett
| * tdb:tdbtool: fix indentation.Michael Adam2009-09-211-178/+177
| | | | | | | | Michael
| * tdb:tdbtool: add transaction_start/_commit/_cancel commands.Michael Adam2009-09-211-0/+21
| | | | | | | | | | | | So one can perform tdbtool operations protected by transactions. Michael
| * tdb:tdbtool: add the "speed" command to the help text.Michael Adam2009-09-211-0/+1
| | | | | | | | Michael
| * s4:provision - Fix up ProvisioningError class as suggested by JelmerMatthias Dieter Wallnöfer2009-09-211-5/+5
| |
| * s4:samdb/tools - That should fix now the last failuresMatthias Dieter Wallnöfer2009-09-213-3/+5
| |
| * s4:libnet_become_dc - bump down the level requested by abartletMatthias Dieter Wallnöfer2009-09-211-1/+1
| |
| * s4:scripts - Reintroduce "-H" parameterMatthias Dieter Wallnöfer2009-09-216-12/+46
| | | | | | | | | | | | I removed it since on some scripts it was present, on others not - so I thought it wouldn't be really needed. This was a bad decision (pointed out by abartlet). So I reintroduce it on all scripts (to have consistent parameters).
| * Revert "blackbox:test_kinit - Remove the "-H" (hive) parameter"Matthias Dieter Wallnöfer2009-09-211-1/+1
| | | | | | | | | | | | | | This reverts commit d4389a230b6aea5a0b2a98e255b14a59c8248b0b. This revert changed the behaviour which I didn't expect. Thanks abartlet to point this out!
| * s4:provision Make us Windows 2008 level by defualt againAndrew Bartlett2009-09-201-4/+5
| | | | | | | | | | | | | | | | | | Also add a note to clarify that this should not be changed without discussion and consensus. We don't want this bouncing around. Paramater support to allow optional selection of Win2003 mode welcomed. Andrew Bartlett
| * s3:secrets_schannel: revert to using version 1Stefan Metzmacher2009-09-211-3/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | It doesn't really matter if the entries have invalid context in it. Older versions of samba refuse to open the file if the version doesn't match. If we can't parse individual records, we'll fail schannel binds, but the clients are supposed to reestablish the netlogon secure channel by doing ServerReqChallenge/ServerAuthenticate* again. This will just overwrite the old record. metze
| * s3:winbindd: avoid writing to a closed connection and generate SIGPIPEStefan Metzmacher2009-09-211-12/+13
| | | | | | | | metze
| * async_sock: return -1/EPIPE if we're getting an end of file on read.Stefan Metzmacher2009-09-211-0/+4
| | | | | | | | | | | | This makes the error handling in the callers easier. metze
| * s3:lib/select: don't overwrite errno in the signal handlerStefan Metzmacher2009-09-211-0/+4
| | | | | | | | metze
| * tevent: make sure we don't set errno within the signal handler function.Stefan Metzmacher2009-09-211-0/+3
| | | | | | | | metze
| * s4:dsdb/resolve_oids: add fast pathes for the common operations without oidsStefan Metzmacher2009-09-211-0/+217
| | | | | | | | metze
| * s4:dsdb/resolve_oids: check return values in recursionStefan Metzmacher2009-09-211-3/+6
| | | | | | | | metze
| * s4:py_security Add missing headerAndrew Bartlett2009-09-201-0/+23
| |
| * s4:provision Use code to store domain join in 'net join' as wellAndrew Bartlett2009-09-207-309/+283
| | | | | | | | | | | | | | | | This ensures we only have one codepath to store the secret, and therefore that we have a single choke point for setting the saltPrincipal, which we were previously skipping. Andrew Bartlett
| * s4:ldb print out which LDB the transaction is still active on.Andrew Bartlett2009-09-201-2/+2
| |
| * s4:provision split provision of DNS zone and self join keytabAndrew Bartlett2009-09-204-28/+34
| |
* | Merge branch 'master' of git://git.samba.org/sambaNadezhda Ivanova2009-09-2010-53/+93
|\|
| * s4-selftest: disable RAP-SCAN testAndrew Tridgell2009-09-201-0/+1
| | | | | | | | also pointless now we have docs
| * s4-selftest: disable RPC-COUNTCALLS Andrew Tridgell2009-09-201-0/+1
| | | | | | | | The RPC-COUNTCALLS was useful when we were working out IDL by hand
| * Merge branch 'master' of git://git.samba.org/sambaMatthias Dieter Wallnöfer2009-09-214-1/+59
| |\
| * | s4:python tools - try to fix some test problemsMatthias Dieter Wallnöfer2009-09-203-14/+16
| | |
| * | s4:samba3sam.py test - remove the primary group ID attribute hereMatthias Dieter Wallnöfer2009-09-201-7/+2
| | | | | | | | | | | | | | | This shouldn't be specified on creation time (Windows Server doesn't allow that). Hope this also fixes the test (see buildfarm).
| * | s4:sec_descriptor - fix constantMatthias Dieter Wallnöfer2009-09-201-4/+4
| | |
| * | blackbox:test_kinit - Remove the "-H" (hive) parameterMatthias Dieter Wallnöfer2009-09-201-1/+1
| | | | | | | | | | | | | | | The "enableaccount" script works only on local LDB anymore - therefore remove this parameter.
| * | s4:dsdb/common/util - Check for the right forest/domain function levelMatthias Dieter Wallnöfer2009-09-201-0/+57
| | | | | | | | | | | | | | | | | | | | | This adds a function which performs the check for the supported forest and domain function levels. On an unsuccessful result a textual error message can be created (parameter "errmsg" != NULL) which gives hints for the user to help him fixing the issue.
| * | s4:server.c - add linespace (only cosmetic)Matthias Dieter Wallnöfer2009-09-201-1/+2
| | |
| * | s4:domainlevel - fixed another errorMatthias Dieter Wallnöfer2009-09-201-26/+9
| | | | | | | | | | | | | | | | | | The second "nTMixedDomain" attribute (under Partitions/Domain-DN) is only a copy of the one under the directory root object. Therefore there doesn't exist the "Windows 2000 Mixed" forest level.
* | | Initial implementation of security descriptor creation in DSNadezhda Ivanova2009-09-208-14/+459
| |/ |/| | | | | | | TODO's: ACE sorting and clarifying the inheritance of object specific ace's.
* | Disable descriptor module unless enabled in smb.confNadezhda Ivanova2009-09-201-0/+29
| | | | | | | | | | | | | | Since this code may still have some problems, it is not executed by default. To enable descriptor inheritance add: acl:inheritance = true in your smb.conf
* | talloc: fixed talloc_disable_null_tracking()Andrew Tridgell2009-09-203-1/+30
|/ | | | | | | | | | | | When we disable null tracking, we need to move any existing objects that are under the null_context to be parented by the true NULL context. We also need a new talloc_enable_null_tracking_no_autofree() function, as the talloc testsuite cannot cope with the moving of the autofree context under the null_context as it wants to check exact counts of objects under the null_context, and smbtorture has a large number of objects in the autofree_context from .init functions
* Fixed a difference in domain sid type when SID is provided by user.Nadezhda Ivanova2009-09-201-1/+4
|
* s4:ldb_parse - Fix the type of an array entryMatthias Dieter Wallnöfer2009-09-201-1/+1
| | | | I found this through a compile warning. Hope that I got this right.
* s4:provision_configuration - fix "sPNMappings"Matthias Dieter Wallnöfer2009-09-201-2/+1
| | | | | | | I reread some docs about this attributes and it seems that this as mapping attribute isn't host specific but in common for the whole domain. To allow Windows DCs to join our s4 domain sooner or later we have to provide the full attribute.
* s4:domainlevel - further improvementsMatthias Dieter Wallnöfer2009-09-201-9/+50
| | | | | | | | - The tool displays now also mixed/interim domain levels and warns about them (s4 isn't capable to run on them) - But it allows now also to raise/step-up from them - It displays now also levels higher than 2008 R2 (altough we don't support them yet) but to be able to get a correct output
* blackbox/test_ldb.sh: test searching using OIDs instead of names for ↵Stefan Metzmacher2009-09-201-0/+16
| | | | | | attributes and classes metze
* s4:provision: add the 'resolve_oids' on the top of the module stackStefan Metzmacher2009-09-201-1/+2
| | | | metze
* dsdb/samdb: add resolve_oids moduleStefan Metzmacher2009-09-202-0/+438
| | | | | | | | | | Windows Servers allow OID strings to be used instead of attribute/class names. For now we only resolve the OIDs in the search expressions, the rest will follow. metze
* s4:build: require ldb 0.9.7Stefan Metzmacher2009-09-201-1/+1
| | | | metze
* s4:ldb: add ldb_parse_tree_copy_shallow() and change version to 0.9.7Stefan Metzmacher2009-09-203-1/+65
| | | | metze
* librpc: rerun 'make idl'Stefan Metzmacher2009-09-202-3/+3
| | | | metze
generated by cgit (git 2.34.1) at 2025-09-27 13:41:57 +0000