| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | | |
|
| | |
| |
| |
| |
| |
| |
| | |
Decode Attribute OID using prefixMap and
ATTID received during replication
Based on MS documentation. See MS-DRSR.pdf - 5.16.4
|
| | |
| |
| |
| |
| |
| | |
Drsuapi tests module registers two suites:
- DRS-RPC - tests to be executed against remote machine
- DRS-UNIT - unit test for internal testing
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The biggest change is that 'oid' field is transmited in binary format.
Also the field name is changed to 'binary_oid' so that
field format to be clear for callers.
After those changes, Samba4 should work the way it works before -
i.e. no added value here but we should not fail when
partial-oid is part of prefixMap transmited from Win server.
Also, thre is a bug in this patch - partial-binary-OIDs are
not handled correctly. Partial-binary-OIDs received during
replication will be encoded, but not handled correctly.
|
| | |
| |
| |
| |
| |
| | |
Custom ndr_print functions is implemented so that transmited
partia-binary-oid to be printed both in hex and
partial-oid formats
|
| | |
| |
| |
| |
| | |
New structure definition is automarshaled so custom marshaling
code is not used anymore
|
| | | |
|
| | | |
|
| | |
| |
| |
| |
| | |
Structure redefined to be more similar with OID_t structure
defined in [ref. MS-DRSR.pdf - p.496].
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| |
| |
| |
| | |
Empty attributes are no longer allowed by ldb. This also fixes the
error checking in winsdb_message()
This fixes the samba4.nbt.winsreplication test
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Jeremy.
|
| | |
| |
| |
| |
| |
| |
| | |
Karmic has MIT krb5 1.7-beta3, which has the symbol
krb5_auth_con_set_req_cksumtype but no prototype for it.
See also http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=531635
|
| | |
| |
| |
| | |
This matches the sec_access_check() code
|
| | |
| |
| |
| | |
The correct answer depends on the users privileges.
|
| | |
| |
| |
| |
| |
| | |
When you have backup or restore privileges, you automatically get
extra access bits in ACL interpretation. This adds definitions for the
bits you get.
|
| | |
| |
| |
| |
| |
| |
| |
| | |
"dcerpc_generic_session_key"
I don't think that this code needs to exist identically on the server and on the
client side. This patch leaves it on the client side (dcerpc lib) and calls it
from the server.
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
When parsing a SPNEGO session setup retry (falling back from KRB5 to NTLMSSP),
we failed to parse the ASN1_ENUMERATED negResult in the negTokenTarg, thus
failing spnego_parse_auth() completely.
By just using the shared spnego/asn1 code, we get the parsing the correct way.
Guenther
|
| | |
| |
| |
| |
| |
| | |
I think this is a better location for this script. Since the subdirectory
"script" of "source4" contains only scripts for "make install" and "make
uninstall".
|
| | |
| |
| |
| |
| |
| | |
Avoid warnings.
Karolin
|
| | |
| |
| |
| | |
This helps with the CIFS NTVFS backend, but doesn't solve all problems
|
| | |
| |
| |
| | |
The CIFS passthru NTVFS doesn't handle some options yet (eg. root_fid)
|
| | | |
|
| | |
| |
| |
| |
| | |
This one didn't matter until the root_fid changed the alignment of the
two structures.
|
| | |
| |
| |
| | |
It is annoying when you mistype a command line option and aren't told.
|
| | |
| |
| |
| | |
Construct the filename from the old handle and the new name.
|
| | |
| |
| |
| |
| |
| | |
In order to implement root_fid in the s4 SMB server we need to declare
it as a handle type, just as for other fnum values in SMB. This
required some extensive (but simple) changes in many bits of code.
|
| | |
| |
| |
| |
| | |
The CREATEX_ACCESS test shows that this is used as a bit test, not a
equality test
|
| | |
| |
| |
| |
| | |
This failed on one of my test boxes that has a group called
"testgroup". using "testgroupXX" should be a bit better.
|
| | | |
|
| | |
| |
| |
| | |
This should fix bug #6755.
|
| | |
| |
| |
| | |
Matthias, please check!
|
| | | |
|
| | |
| |
| |
| | |
w2k8 imposes a limit of 64 characters on the rDN
|
| | |
| |
| |
| |
| | |
This is a property of AD, not ldb, so should be in our ldb
modules.
|
| | |
| |
| |
| | |
This isn't the rDN !
|
| | | |
|
| | |
| |
| |
| |
| | |
This avoids having to do make install after each change when using the
drs devel scripts
|
| | |
| |
| |
| |
| |
| |
| | |
The DRSUAPI_DRS_ADD_REF flag tells the DRS server to run an UpdateRefs
call on behalf of the client after the DsGetNCChanges call. The lack
of support for this option may explain why the repsTo attribute was
not being created for w2k8-r2 replication partners.
|
| | |
| |
| |
| |
| |
| |
| |
| | |
The DsUpdateRefs calls takes a set of flags that indicates if the
server should ignore specific add/delete error codes.
This patch also exposes the core UpdateRefs call into a public
function, so that it can be called from DsGetNCChanges
|
| | | |
|
