summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* s4-torture: the BASE-CREATEX_ACCESS test is broken for non-administratorsAndrew Tridgell2009-10-171-0/+1
| | | | See my msg to samba-technical about this test and privilege testing.
* s4-torture: cleanup after the MAXIMUM_ALLOWED testAndrew Tridgell2009-10-171-0/+1
|
* s4-pvfs: use privileges rather than "uid == 0" in unix access checkAndrew Tridgell2009-10-171-6/+12
| | | | This makes the unix access check much closer to the full ACL check
* s4-security: honor more of the privilege access bitsAndrew Tridgell2009-10-171-4/+12
|
* s4-torture: add a special check for administrators and privilegesAndrew Tridgell2009-10-174-18/+57
| | | | lsa privileges calls don't expand groups. darn.
* s4-lsasrv: make sure only admins can alter privilegesAndrew Tridgell2009-10-171-0/+6
|
* s4-provision: added the default privileges dbAndrew Tridgell2009-10-172-0/+99
| | | | privileges are now stored in a separate database
* s4-provision: removed the old privilege attributesAndrew Tridgell2009-10-172-53/+14
| | | | Our schema is getting a bit cleaner :-)
* s4-torture: show the sid we are basing privilege tests onAndrew Tridgell2009-10-171-2/+6
|
* s4-privileges: moved privileges to private/privilege.ldbAndrew Tridgell2009-10-174-38/+70
| | | | | | | We were storing privileges in the sam, which was OK when we were a standalone DC, but is no good when we replicate with a windows DC. This moves the privileges to a separate (local) database
* added NT_STATUS_NOT_OK_RETURN_AND_FREE()Andrew Tridgell2009-10-171-0/+7
| | | | Try to make it a bit easier to avoid leaks in common code
* Add comment explaining about symlink following & posix.Jeremy Allison2009-10-161-1/+6
| | | | Jeremy.
* Last 2 VFS_STAT -> LSTAT fixes I can see in the modules code.Jeremy Allison2009-10-162-2/+14
| | | | Jeremy.
* Fix one missing STAT -> LSTAT with POSIX pathnames in vfs_xattr_tdb.c. ↵Jeremy Allison2009-10-162-1/+9
| | | | Caught by the torture tester. I love unit tests :-). Jeremy.
* s3: build pam_smbpass when possibleBjörn Jacke2009-10-161-20/+34
|
* s3-netlogon: fix updating trust accout passwords with downlevel domains.Günther Deschner2009-10-161-2/+2
| | | | | | | | When choosing the netlogon password set function, make sure to look at the *negotiated* flags in the cli->dc state, not the ones we start the negotiation with. Guenther
* nsswitch: increase libwbclient version after adding wbcChangeTrustCredentials().Günther Deschner2009-10-161-1/+2
| | | | Guenther
* s3:packaging: Fix building RHEL packages.Karolin Seeger2009-10-162-6/+23
| | | | | | | Fix bug #6721. Thanks to Eero Volotinen <eero.volotinen@medicel.com> for providing the patch! Karolin
* s3:srv_samr_nt - another fix for the reject reasonMatthias Dieter Wallnöfer2009-10-161-1/+1
|
* s4-smbtorture: extend netr_LogonControl test in RPC-NETLOGON.Günther Deschner2009-10-161-3/+109
| | | | Guenther
* s3-netlogon: Fix _netr_ServerPasswordSet2 cleartext blob handling.Günther Deschner2009-10-161-1/+4
| | | | | | | Following Andrew's advice, let's straight md4 the plaintext blob and avoid trying to get a paintext string out of the input the client sends. Guenther
* s4-smbtorture: test wbcLookupUserSids in WINBIND-WBCLIENT as well.Günther Deschner2009-10-161-1/+4
| | | | Guenther
* s4-smbtorture: test wbcGuidToString and friends as well in WINBIND-WBCLIENT.Günther Deschner2009-10-161-0/+34
| | | | Guenther
* s4:provision - fixed invalid creationTime formatEndi S. Dewata2009-10-161-2/+2
|
* s4:ldb - fixed dangling pointer in ldb_request_add_control()Endi S. Dewata2009-10-161-2/+7
|
* s4:auth - fixed problem reading bind DN from secrets databaseEndi S. Dewata2009-10-162-0/+8
|
* s4:provision - replaced linked_attributes with FDS pluginsEndi S. Dewata2009-10-167-3/+100
| | | | | | | When FDS is used as a backend, Samba should not use the linked_attributes LDB module, but instead use the built-in DS plugins for attribute linking, indexing, and referential integrity.
* s4:auth_sam: Restructure tail in "authsam_get_server_info_principal" and fix ↵Matthias Dieter Wallnöfer2009-10-161-3/+8
| | | | a memory leak
* s4:winsdb - Substitute LDB result numbers with constantsMatthias Dieter Wallnöfer2009-10-161-19/+20
|
* s3: Try to fix the build on Solaris & AIX regarding the password change ↵Matthias Dieter Wallnöfer2009-10-161-1/+1
| | | | reject reason
* s4/drs(tort): prefixMap unit test initial implementatoinKamen Mazdrashki2009-10-163-1/+84
|
* s4/drs: prefixMap module initial definitionKamen Mazdrashki2009-10-163-1/+69
|
* s4/drs(tort): fix compile time warningKamen Mazdrashki2009-10-161-0/+1
|
* s4/drs(tort): _drs_util_verify_attids() to verify ATTIDs in objects receivedKamen Mazdrashki2009-10-161-0/+50
|
* s4/drs(tort): drs_util_DsAttributeId_to_string() functionKamen Mazdrashki2009-10-161-0/+74
|
* s4/drs(tort): _drs_ldap_attr_by_oid() implementationKamen Mazdrashki2009-10-161-0/+49
| | | | | Utility function to be used to fetch Attribute name and DN giving attribute OID
* s4/drs(tort): ignore drs/proto.h fileKamen Mazdrashki2009-10-161-0/+1
|
* s4/drs(tort): oid_from_attid() reference implementationKamen Mazdrashki2009-10-162-1/+96
| | | | | | | Decode Attribute OID using prefixMap and ATTID received during replication Based on MS documentation. See MS-DRSR.pdf - 5.16.4
* s4/drs(tort): TORTURE_DRS torture module - initial implementationKamen Mazdrashki2009-10-164-0/+95
| | | | | | Drsuapi tests module registers two suites: - DRS-RPC - tests to be executed against remote machine - DRS-UNIT - unit test for internal testing
* s4/drs: Propagate redefinition of drsuapi_DsReplicaOID into code baseKamen Mazdrashki2009-10-162-69/+134
| | | | | | | | | | | | | | The biggest change is that 'oid' field is transmited in binary format. Also the field name is changed to 'binary_oid' so that field format to be clear for callers. After those changes, Samba4 should work the way it works before - i.e. no added value here but we should not fail when partial-oid is part of prefixMap transmited from Win server. Also, thre is a bug in this patch - partial-binary-OIDs are not handled correctly. Partial-binary-OIDs received during replication will be encoded, but not handled correctly.
* s4/drs(NDR): Print implementation for drsuapi_DsReplicaOIDKamen Mazdrashki2009-10-161-0/+19
| | | | | | Custom ndr_print functions is implemented so that transmited partia-binary-oid to be printed both in hex and partial-oid formats
* s4/drs(NDR): Remove push/pull code for drsuapi_DsReplicaOID structKamen Mazdrashki2009-10-162-100/+0
| | | | | New structure definition is automarshaled so custom marshaling code is not used anymore
* s4/asn1: Use explicite TALLOC_CTX in ber_write_OID functionsKamen Mazdrashki2009-10-163-16/+16
|
* s4/drs(idl): Regenerate idlKamen Mazdrashki2009-10-163-15/+50
|
* s4/drs(idl): Redefine drsuapi_DsReplicaOID in drsuapi.idlKamen Mazdrashki2009-10-161-3/+3
| | | | | Structure redefined to be more similar with OID_t structure defined in [ref. MS-DRSR.pdf - p.496].
* s3-libnetapi: add nltest tool.Günther Deschner2009-10-162-1/+258
| | | | Guenther
* s3-libnetapi: add I_NetLogonControl{2} example code.Günther Deschner2009-10-163-1/+303
| | | | Guenther
* s3-libnetapi: add I_NetLogonControl{2} to public headers.Günther Deschner2009-10-161-1/+91
| | | | Guenther
* s3-libnetapi: fill in I_NetLogonControl{2}_r.Günther Deschner2009-10-161-2/+181
| | | | Guenther
* s3-libnetapi: add I_NetLogonControl{2} skeleton.Günther Deschner2009-10-164-1/+174
| | | | Guenther
generated by cgit (git 2.34.1) at 2025-09-26 06:41:26 +0000