summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* s3-spoolss: make switch in _spoolss_AddPrinterDriver() a bit more clear.Günther Deschner2010-04-231-4/+6
| | | | Guenther
* s4-smbtorture: allow to upload or remove any file belonging to a driver.Günther Deschner2010-04-231-0/+30
| | | | Guenther
* s3: Fix a winbind crash when scanning trustsVolker Lendecke2010-04-231-0/+6
| | | | | | | | add_trusted_domain() for a new domain always needs to be followed by a setup_domain_child(). This was not always done, in particular not when walking to the forest root for additional trusts. This is a minimal patch, we need to fix add_trusted_domain().
* Make deferred opens (NT_STATUS_SHARING_VIOLATION) work over SMB2.Jeremy Allison2010-04-228-85/+357
| | | | | | | | Makes SMB2Create call re-entrant internally. Now this infrastructure is in place, oplocks will follow shortly. Tested with Win7 client and with W2K8R2. Jeremy.
* s3: Fix a cut&paste error in a debug message in check_oem_password()Volker Lendecke2010-04-231-1/+2
|
* s3-spoolss: make sure AddPrinterDriver calls into AddPrinterDriverEx.Günther Deschner2010-04-231-19/+27
| | | | | | | | | Not vice versa. Also disable some info levels in AddPrinterDriver according to MS-RPRN 3.1.4.4.1. Found by torture test. Guenther
* s4-smbtorture: fix test_EnumPrinterDrivers_findone().Günther Deschner2010-04-231-8/+8
| | | | Guenther
* s4-smbtorture: samba currently supports level 3 and 6 driver adds.Günther Deschner2010-04-231-0/+25
| | | | Guenther
* s3-spoolss: fix some crash bugs and missing error codes in AddDriver paths.Günther Deschner2010-04-232-2/+12
| | | | | | Found by torture test. Guenther
* s4-smbtorture: test both 32bit and 64bit driver uploads in RPC-SPOOLSS-DRIVER.Günther Deschner2010-04-231-61/+71
| | | | Guenther
* s4-smbtorture: allow to upload and later remove printer driver files in ↵Günther Deschner2010-04-231-0/+230
| | | | | | RPC-SPOOLSS-DRIVER. Guenther
* s4-smbtorture: add RPC-SPOOLSS-DRIVER test.Günther Deschner2010-04-232-0/+752
| | | | Guenther
* s4-smbtorture: rework EnumPrinterDrivers tests a bit.Günther Deschner2010-04-231-68/+119
| | | | Guenther
* build: give a more useful error when the source dir has movedAndrew Tridgell2010-04-231-0/+6
| | | | you need a distclean if you mv the source directory
* build: use 'waf distclean' for make distcleanAndrew Tridgell2010-04-231-2/+2
| | | | this cleans up the more than rm -rf bin
* s4:provision Remove moduleload for 'hdb' (wrong name).Andrew Bartlett2010-04-221-1/+0
| | | | The backends are not normally modules anyway
* spoolss: pretty-print a struct spoolss_Time.Günther Deschner2010-04-225-17/+30
| | | | Guenther
* s4-cldap: we should set the w2k8 flags even if not the PDC emulatorAndrew Tridgell2010-04-221-3/+4
| | | | | | these two tests are independent Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-drs: validate RODC credentials via the user_sidAndrew Tridgell2010-04-221-27/+12
| | | | | | | | This checks whether a replication client is a RODC by inclusion of the the DOMAIN_RID_ENTERPRISE_READONLY_DCS sid in the users token Pair-Programmed-With: Rusty Russell <rusty@samba.org> Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-drs: added new SECURITY_RO_DOMAIN_CONTROLLER levelAndrew Tridgell2010-04-2213-37/+69
| | | | | | | | | | | This is used for allowing operations by RODCs, and denying them operations that should only be allowed for a full DC This required a new domain_sid argument to security_session_user_level() Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-With: Rusty Russell <rusty@samba.org>
* s4-net: fixed two compiler warningsAndrew Tridgell2010-04-221-6/+4
|
* s4-torture: fixed a initialiserAndrew Tridgell2010-04-221-1/+1
| | | | | | | we were not initialising the whole array Pair-Programmed-With: Rusty Russell <rusty@samba.org> Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-libnet: fixed two compiler warningsAndrew Tridgell2010-04-221-3/+2
|
* s4-drs: removed dsdb_validate_client_flags()Andrew Tridgell2010-04-222-37/+0
| | | | | | This test is in the wrong place. We end up validating our own flags. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-drs: only allow replication with the right invocationIdAndrew Tridgell2010-04-221-1/+20
| | | | | | | Non-administrator replication checks the invocationId matches the sid of the user token being used Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: removed an unused variableAndrew Tridgell2010-04-221-1/+0
|
* s4-dsdb: added dsdb_validate_invocation_id()Andrew Tridgell2010-04-221-0/+87
| | | | | | | | | this validates that a invocationID matches an account sid This will be used to ensure that we don't allow DRS replication from someone a non-DC or administrator Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: added dsdb_get_extended_dn_sid()Andrew Tridgell2010-04-222-12/+34
| | | | | | This will be used by the RODC code Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* build: we don't need this makefile magic any moreAndrew Tridgell2010-04-221-2/+2
| | | | | | | | | | | The waf build now checks for all A=B variables passed via make and sets the same waf internal variable. This means all waf options are available via make. Removing this from the Makefile makes us less reliant on a modern version of make. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: moved rodc schema validation to samldb.cAndrew Tridgell2010-04-222-33/+37
| | | | | | This means we are only doing the checks for schema changes Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-drs: Use new samdb_rodc() function in s4 codeFernando J V da Silva2010-04-222-2/+4
| | | | | | | This patch fits the calling to the new samdb_rodc() function and fix a little bug in this function. Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-drs: Do not send RODC filtered attributes to RODCs on GetNCChanges replyFernando J V da Silva2010-04-221-0/+14
| | | | | | | | During building an object to send it on a GetNCChanges reply, it checks the attributes and if any of them is a RODC filtered and the recipient is a RODC, then such attribute is not sent. Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s40-drs: Do not send GetNCChanges messages to RODCsFernando J V da Silva2010-04-221-0/+11
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-drs: dsdb_validate_client_flags() functionFernando J V da Silva2010-04-221-0/+28
| | | | | | | This function is intended to check if some client is not lying about his flags. At this moment, it only checks for RODC flags. Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-drs: samdb_is_rodc() function and new samdb_rodc() functionFernando J V da Silva2010-04-226-39/+80
| | | | | | | | | | | This patch creates the samdb_is_rodc() function, which looks for the NTDSDSA object for a DC that has a specific invocationId and if msDS-isRODC is present on such object and it is TRUE, then consider the DC as a RODC. The new samdb_rodc() function uses the samdb_is_rodc() function for the local server. Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-drs: Do not allow system-critical attributes to be RODC filteredFernando J V da Silva2010-04-222-0/+36
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4:provision Make OpenLDAP backend more robustAndrew Bartlett2010-04-221-1/+11
| | | | | | | With the extra moduleload lines (which succeed if it's already staticly linked), we now work with OpenLDAP overlays as modules. Andrew Bartlett
* s4:ldap-backend Fix LSA test failures with OpenLDAP backend - convert SIDsAndrew Bartlett2010-04-221-0/+24
| | | | | | | | The SIDs in some queries were not being passed as binary, but as strings in comparison with the securityIdentifer object. We need to recognise that these are SIDs in the simple_ldap_map. Andrew Bartlett
* s4:provison Pass nosync in for the OpenLDAP cn=config tooAndrew Bartlett2010-04-221-0/+1
|
* s4:selftest Ensure we don't fsync() all day in the LDAP backend testAndrew Bartlett2010-04-221-0/+1
| | | | | | Passing this option greatly reduces the time spent in the test. Andrew Bartlett
* s4:OpenLDAP-backend Use the new rdnval module in OpenLDAPAndrew Bartlett2010-04-224-5/+15
| | | | | | | | This is rather than rdn_name, which tries to do the job on the client side. We need to leave this module in the stack for Fedora DS (and of course the LDB backend). Andrew Bartlett
* s4:dsdb Revert accidentilly commited change for LDAP backendsAndrew Bartlett2010-04-221-1/+1
| | | | | | | In the future, LDAP backends will be resposible for maintaining the 'name' attributes. Andrew Bartlett
* s4:provision Use more reasonable values for DB_CONFIGAndrew Bartlett2010-04-221-5/+13
| | | | | | | | | With the OpenLDAP backend, the old DB_CONFIG caused OpenLDAP to abort on startup, and was very inefficient. This new one, kindly supplied by Matthew Backes <mbackes@symas.com> uses a more reasonable set of buffer sizes. Andrew Bartlett
* build: added --enable-auto-reconfigureAndrew Tridgell2010-04-221-1/+13
| | | | | this is off by default until some issues are resolved. See my mail to samba-technical for details.
* s4:netlogon RPC server - fix a counter variable typeMatthias Dieter Wallnöfer2010-04-211-1/+2
|
* build: recalculate project deps when NONSHARED_BINARIES changesAndrew Tridgell2010-04-211-0/+10
|
* build: added --nonshared-binary=LIST optionAndrew Tridgell2010-04-213-0/+25
| | | | | | This allows you to specify some binaries that should be built without shared libs. A non-shared smbtorture will make testing s3 in the build farm easier
* s4-waf: python devel headers are mandatory for the source4 buildAndrew Tridgell2010-04-211-1/+1
|
* build: make python development headers not mandatory in standalone libsAndrew Tridgell2010-04-212-1/+1
| | | | | | This needed an update to the python tool in waf thanks to Kai for spotting this
* waftest: updated the cross compilation environment I test withAndrew Tridgell2010-04-211-1/+1
|
generated by cgit (git 2.34.1) at 2025-09-26 21:37:42 +0000