summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * | blackbox:test_kinit - Remove the "-H" (hive) parameterMatthias Dieter Wallnöfer2009-09-201-1/+1
| | | | | | | | | | | | | | | The "enableaccount" script works only on local LDB anymore - therefore remove this parameter.
| * | s4:dsdb/common/util - Check for the right forest/domain function levelMatthias Dieter Wallnöfer2009-09-201-0/+57
| | | | | | | | | | | | | | | | | | | | | This adds a function which performs the check for the supported forest and domain function levels. On an unsuccessful result a textual error message can be created (parameter "errmsg" != NULL) which gives hints for the user to help him fixing the issue.
| * | s4:server.c - add linespace (only cosmetic)Matthias Dieter Wallnöfer2009-09-201-1/+2
| | |
| * | s4:domainlevel - fixed another errorMatthias Dieter Wallnöfer2009-09-201-26/+9
| | | | | | | | | | | | | | | | | | The second "nTMixedDomain" attribute (under Partitions/Domain-DN) is only a copy of the one under the directory root object. Therefore there doesn't exist the "Windows 2000 Mixed" forest level.
* | | Initial implementation of security descriptor creation in DSNadezhda Ivanova2009-09-208-14/+459
| |/ |/| | | | | | | TODO's: ACE sorting and clarifying the inheritance of object specific ace's.
* | Disable descriptor module unless enabled in smb.confNadezhda Ivanova2009-09-201-0/+29
| | | | | | | | | | | | | | Since this code may still have some problems, it is not executed by default. To enable descriptor inheritance add: acl:inheritance = true in your smb.conf
* | talloc: fixed talloc_disable_null_tracking()Andrew Tridgell2009-09-203-1/+30
|/ | | | | | | | | | | | When we disable null tracking, we need to move any existing objects that are under the null_context to be parented by the true NULL context. We also need a new talloc_enable_null_tracking_no_autofree() function, as the talloc testsuite cannot cope with the moving of the autofree context under the null_context as it wants to check exact counts of objects under the null_context, and smbtorture has a large number of objects in the autofree_context from .init functions
* Fixed a difference in domain sid type when SID is provided by user.Nadezhda Ivanova2009-09-201-1/+4
|
* s4:ldb_parse - Fix the type of an array entryMatthias Dieter Wallnöfer2009-09-201-1/+1
| | | | I found this through a compile warning. Hope that I got this right.
* s4:provision_configuration - fix "sPNMappings"Matthias Dieter Wallnöfer2009-09-201-2/+1
| | | | | | | I reread some docs about this attributes and it seems that this as mapping attribute isn't host specific but in common for the whole domain. To allow Windows DCs to join our s4 domain sooner or later we have to provide the full attribute.
* s4:domainlevel - further improvementsMatthias Dieter Wallnöfer2009-09-201-9/+50
| | | | | | | | - The tool displays now also mixed/interim domain levels and warns about them (s4 isn't capable to run on them) - But it allows now also to raise/step-up from them - It displays now also levels higher than 2008 R2 (altough we don't support them yet) but to be able to get a correct output
* blackbox/test_ldb.sh: test searching using OIDs instead of names for ↵Stefan Metzmacher2009-09-201-0/+16
| | | | | | attributes and classes metze
* s4:provision: add the 'resolve_oids' on the top of the module stackStefan Metzmacher2009-09-201-1/+2
| | | | metze
* dsdb/samdb: add resolve_oids moduleStefan Metzmacher2009-09-202-0/+438
| | | | | | | | | | Windows Servers allow OID strings to be used instead of attribute/class names. For now we only resolve the OIDs in the search expressions, the rest will follow. metze
* s4:build: require ldb 0.9.7Stefan Metzmacher2009-09-201-1/+1
| | | | metze
* s4:ldb: add ldb_parse_tree_copy_shallow() and change version to 0.9.7Stefan Metzmacher2009-09-203-1/+65
| | | | metze
* librpc: rerun 'make idl'Stefan Metzmacher2009-09-202-3/+3
| | | | metze
* drsblobs.idl: fix repsFromTo2 blob size calculationStefan Metzmacher2009-09-201-1/+1
| | | | metze
* rerun: make idlStefan Metzmacher2009-09-203-0/+324
| | | | metze
* drsblobs.idl: add decoding for repsFromTo2Stefan Metzmacher2009-09-201-0/+30
| | | | | | This is used in windows 2008. metze
* s4-auth: add SID_NT_ENTERPRISE_DCS is a server trust accountAndrew Tridgell2009-09-191-1/+13
|
* s4-drs: security checking on DRS needs to default to onAndrew Tridgell2009-09-191-1/+2
|
* s4-ldb: display an error if we can't decode a NDR blobAndrew Tridgell2009-09-191-1/+3
|
* s4-repl: need param.h for lp_parm_boolAndrew Tridgell2009-09-191-0/+1
|
* Handle dsdb_class_by_lDAPDisplayName returned values in schema_inferiors.cAnatoliy Atanasov2009-09-191-0/+8
|
* Move replmd_drsuapi_DsReplicaCursor2_compare to a common place.Anatoliy Atanasov2009-09-193-14/+8
|
* Add drs_security_level_check for dcesrv calls security checksAnatoliy Atanasov2009-09-196-20/+36
| | | | | | There is also an option to disable the security check by specifying in the smb.conf file: drs:disable_sec_check = true
* s4:provision_basedn_modify - fix the "auditPolicy" attributeMatthias Dieter Wallnöfer2009-09-201-1/+2
| | | | | | I had to think about how to encode the string 0x0001 (taken from Windows Server). The problem is due to the "0" byte at the beginning of it. BASE64 encoding seems a good method to do it.
* s4:utils Remove typo...Andrew Bartlett2009-09-191-1/+0
|
* s4:dsdb Print the partition we failed to suggest replication forAndrew Bartlett2009-09-191-1/+2
|
* libcli:nbt move prototypes of lmhosts functions to libnbt.hAndrew Bartlett2009-09-192-5/+6
|
* s4:utils Explian fix for testparm -vAndrew Bartlett2009-09-191-2/+6
| | | | | | | The problem here was that we take an address of a bool, and then (via a void*) cast it to a int *, so put this in a comment. Andrew Bartlett
* s4-ldb: bump minimum version in ldb tooAndrew Tridgell2009-09-191-1/+1
|
* more include minimisationAndrew Tridgell2009-09-1912-41/+0
|
* tdb: increase minor versionAndrew Tridgell2009-09-192-2/+2
| | | | we depend on reads in transactions for s4 replication
* s4-smbd: removed unnecessary includesAndrew Tridgell2009-09-195-11/+0
|
* s4-scripts: make minimal_includes handle our -I overridesAndrew Tridgell2009-09-191-10/+20
|
* s4-smbd: minimise includes in smbd/ and smb_serverAndrew Tridgell2009-09-1921-40/+0
|
* s4-testparm: fixed -v optionAndrew Tridgell2009-09-191-1/+1
| | | | never pass a bool pointer to popt
* s4-rpc_server: removed remaining unnecessary #includesAndrew Tridgell2009-09-194-5/+2
|
* s4-rpc: remove some unnecessary #include linesAndrew Tridgell2009-09-194-8/+0
| | | | I should remember to run script/minimal_includes.pl more often
* s4:samdb.py - further reworkMatthias Dieter Wallnöfer2009-09-191-12/+9
| | | | | | | | | - I added a comment to the "new user" operation to point out that this works only on s4, since we add also ID mapping entries for winbind there - The "new user" operation adds now the password through the "set password" operation which I find better due to the re-use principle - Remove the word "DC" after "SAMBA 4" in the comment over the "set password" operation since this note and operation applies also to s4 in standalone mode
* pidl: update expected output for NDR64 changesAndrew Tridgell2009-09-191-1/+1
|
* s4-netlogon: implement dcesrv_netr_DsRAddressToSitenamesExWAndrew Tridgell2009-09-191-2/+24
| | | | | We don't implement sites properly at the moment so we just return Default-First-Site-Name
* s4-resolve: fixed a crash bug on timeoutAndrew Tridgell2009-09-199-11/+13
| | | | | | | We were creating the name resolution context as a child of lp_ctx, which meant when we gave up on a connection the timer on name resolution kept running, and when it timed out the callback crashed as the socket was already removed.
* s4-pipes: convert pipe names to lowercase and validateAndrew Tridgell2009-09-181-0/+19
| | | | | clients may provide arbitrary names, but we only want lowercase alnum names
* s4-server: kill main daemon if a task fails to initialiseAndrew Tridgell2009-09-1825-77/+159
| | | | | | When one of our core tasks fails to initialise it can now ask for the server as a whole to die, rather than limping along in a degraded state.
* s4-kdc: ignore unknown keytypes Andrew Tridgell2009-09-181-0/+6
| | | | don't fail hdb operations if one of the key types is unknown
* Merge branch 'master' of /home/tridge/samba/git/combinedAndrew Tridgell2009-09-1838-686/+2020
|\
| * s4-drs: cope with dupliate linked attributesAndrew Tridgell2009-09-181-1/+41
| | | | | | | | | | | | | | With a w2k8-R2 DC, we sometimes get linked attribute updates via DRS which are duplicates of entries that we already have. We need to cope with this by using a remove/add pair in the ldb_modify() to avoid a "entry already exists" error
generated by cgit (git 2.34.1) at 2025-09-28 16:04:00 +0000