summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
* s4:libcli/smb2: remove unused smb2_session->pidStefan Metzmacher2012-07-254-8/+0
| | | | metze
* s4:libcli/smb2: remove unused variableStefan Metzmacher2012-07-251-2/+0
| | | | metze
* libcli/smb: there's no PID field in the SMB2/3 header anymoreStefan Metzmacher2012-07-251-4/+0
| | | | | | It's a reserved field... metze
* libcli/smb: pass smbXcli_tcon to smb2cli_req_create/send()Stefan Metzmacher2012-07-251-4/+8
| | | | metze
* s4:libcli/smb2: remove unused elements from smb2_treeStefan Metzmacher2012-07-255-13/+3
| | | | metze
* s4:torture/smb2: create temporary smbXcli_tcon/session structures instead of ↵Stefan Metzmacher2012-07-251-15/+50
| | | | | | changing them metze
* s4:torture/smb2: use smb2cli_tcon_capabilities()Stefan Metzmacher2012-07-251-2/+6
| | | | metze
* s4:torture: remove unused shm_setup()Stefan Metzmacher2012-07-252-58/+0
| | | | metze
* s4:torture: replace shm_setup() with anonymous_shared_allocate()Stefan Metzmacher2012-07-252-3/+3
| | | | metze
* s4:libcli/smb2: setup a smbXcli_tcon for each smb2_treeStefan Metzmacher2012-07-245-0/+34
| | | | metze
* libcli/smb: pass down smbXcli_tcon to smb1cli_req_create/send() and ↵Stefan Metzmacher2012-07-242-11/+22
| | | | | | | | | smb1cli_trans* metze Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Tue Jul 24 21:22:44 CEST 2012 on sn-devel-104
* s4:libcli/raw: setup a smbXcli_tcon for each smbcli_treeStefan Metzmacher2012-07-243-0/+9
| | | | metze
* s4:libcli/raw: parse extended SMBtconX responsesStefan Metzmacher2012-07-242-0/+6
| | | | metze
* s4:libcli/raw: fix SMBtconX response parsingStefan Metzmacher2012-07-241-2/+2
| | | | metze
* lib/param: Remove 'case insensitive filesystem'Andrew Bartlett2012-07-241-1/+26
| | | | | | | | We use the slightly confusing 'case sensitive = yes' option for the same behaviour. This avoids adding even more confusing documentation for the ntvfs-only option. Andrew Bartlett
* lib/param: Remove "ntptr providor" and hard-code in s4 spoolss serverAndrew Bartlett2012-07-241-1/+1
| | | | | | | | This stub codebase does not justify a merged parameter. Andrew Bartlett Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>
* Fix debug print warning message.Jeremy Allison2012-07-241-1/+3
|
* libcli/smb: pass down smbXcli_session to smb1cli_req_create/send() and ↵Stefan Metzmacher2012-07-242-11/+22
| | | | | | | | | smb1cli_trans* metze Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Tue Jul 24 00:08:58 CEST 2012 on sn-devel-104
* s4:libcli/raw: setup a smbXcli_session for each smbcli_sessionStefan Metzmacher2012-07-233-1/+16
| | | | metze
* s4-classicupgrade: Add unix attributes during upgradeGeza Gemes2012-07-221-1/+108
| | | | | | | Signed-off-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sun Jul 22 13:20:20 CEST 2012 on sn-devel-104
* s4 rfc2307 gids mapping fixSergey Urushkin2012-07-221-7/+8
| | | | Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* Move source4/smbd/pidfile into lib/util in preparation for making it in common.Jeremy Allison2012-07-193-139/+2
|
* s4-param: Remove unused "idmap trusted only"Andrew Bartlett2012-07-191-6/+0
| | | | | | | | | When we revamp the idmap layer, we will end up just following the s3 options, and this option is not used there either. Andrew Bartlett Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>
* s4-torture: Move check of map-to-guest above SID list checkAndrew Bartlett2012-07-191-13/+13
| | | | | | This makes it easier to interpret failing output. Andrew Bartlett
* s4-torture: Allow unix.whoami to test against a member serverAndrew Bartlett2012-07-191-11/+55
| | | | | | | | | | | This compares only the domain SIDs betwen the two servers, rather than the full token, as well known and other SIDs may be added locally in both cases. This also expands the test environments this is run against to verify this between our AD server and domain members. Andrew Bartlett
* s4-torture: Also print GID values in whoami testAndrew Bartlett2012-07-191-0/+3
|
* torture: Print SIDs as additional debug output in unix.whoamiChristof Schmitt2012-07-191-0/+4
|
* s4-lib/tls: Try socket_send() multiple times to send partial packetsAndrew Bartlett2012-07-181-13/+26
| | | | | | | | | | | | | | | | This works around an artificial limitation in socket_wrapper that breaks some versions of GnuTLS when we return a short write. Instead, keep pushing until the OS will not take it. The correct solution will be to use tls_tstream, but the client code for this is not yet tested and needs the ldap client layer changed to use it. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Jul 18 11:23:55 CEST 2012 on sn-devel-104
* s4-librpc: Ensure we do not call call the decrpc timeout handler during ↵Andrew Bartlett2012-07-183-5/+39
| | | | | | | | | | | | gensec_update() This avoids a situation where we could destroy pointers on the stack due to a nested event loop. This is certainly not a final, generic solution, but it is a minimal change while we work to make gensec and gensec_gssapi async. Andrew Bartlett
* s4-dbcheck: Check for and correct incorrect instanceType valuesAndrew Bartlett2012-07-181-0/+45
|
* dsdb: Allocate new OID to allow updates of a read-only replicaAndrew Bartlett2012-07-185-5/+15
| | | | | | | Normally this would be a very bad idea, but the specific case of fixing the instanceType is the only case where this makes sense. Andrew Bartlett
* s4-dsdb: Allow dbcheck to correct an incorrect instanceTypeAndrew Bartlett2012-07-181-3/+5
|
* s4-dsdb: Ensure we never write read-only objects onto a read-write replicaAndrew Bartlett2012-07-181-1/+8
| | | | | | | | | | We should prevent this much further up the stack, but at least add a choke at this point for now. Additionally, this avoids administrator-forced replications causing considerable damange to the directory. Andrew Bartlett
* source4/torture: add talloc_stackframe()Rusty Russell2012-07-181-0/+3
| | | | | | | | | We need a stackframe to call lp_load(). Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> Autobuild-User(master): Rusty Russell <rusty@rustcorp.com.au> Autobuild-Date(master): Wed Jul 18 09:31:07 CEST 2012 on sn-devel-104
* s4-auth: Make sure we use the correct credential state.Andreas Schneider2012-07-171-1/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If we create a copy of the credential state we miss updates to the credentials. To establish a netlogon schannel connection we create client credentials and authenticate with them using dcerpc_netr_ServerAuthenticate2() For this we call netlogon_creds_client_authenticator() which increases the sequence number and steps the credentials. Lets assume the sequence number is 1002. After a successful authentication we get the server credentials and we send bind a auth request with the received creds. This sets up gensec and the gensec schannel module created a copy of the client creds and stores it in the schannel auth state. So the creds stored in gensec have the sequence number 1002. After that we continue and need the client credentials to call dcerpc_netr_LogonGetCapabilities() to verify the connection. So we need to increase the sequence number of the credentials to 1004 and step the credentials to the next state. The server always does the same and everything is just fine here. The connection is established and we want to do another netlogon call. So we get the creds from gensec and want to do a netlogon call e.g. dcerpc_netr_SamLogonWithFlags. We get the needed creds from gensec. The sequence number is 1002 and we talk to the server. The server is already ahead cause we are already at sequence number 1004 and the server expects it to be 1006. So the server gives us ACCESS_DENIED cause we use a copy in gensec. Signed-off-by: Günther Deschner <gd@samba.org>
* s4-librpc: Add capabilities check for AES encrypted connections.Andreas Schneider2012-07-171-1/+110
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s4-torture: Improve samlogon test.Andreas Schneider2012-07-171-0/+8
|
* s4-torture: Add DCERPC_SCHANNEL_AES tests.Andreas Schneider2012-07-171-1/+5
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s4:rpc_server/netlogon: add support for AES based netlogon schannelStefan Metzmacher2012-07-171-0/+4
| | | | | | metze Signed-off-by: Günther Deschner <gd@samba.org>
* s4:librpc/rpc: add DCERPC_SCHANNEL_AES supportStefan Metzmacher2012-07-171-2/+15
| | | | | | metze Signed-off-by: Günther Deschner <gd@samba.org>
* s4:rpc_server/netlogon: only return STRONG_KEYS if the client asked for itStefan Metzmacher2012-07-171-26/+31
| | | | | | metze Signed-off-by: Günther Deschner <gd@samba.org>
* s4:rpc_server/netlogon: implement netr_LogonGetCapabilitiesStefan Metzmacher2012-07-171-2/+20
| | | | | | | | This is also needed to support AES. metze Signed-off-by: Günther Deschner <gd@samba.org>
* s4:librpc/rpc/dcerpc_schannel: just append NETLOGON_NEG_RODC_PASSTHROUGH as rodcStefan Metzmacher2012-07-171-4/+5
| | | | | | | | The RODC stuff doesn't depend on the schannel algorithm. metze Signed-off-by: Günther Deschner <gd@samba.org>
* s4:librpc/rpc/dcerpc_schannel: rework downgrade logicStefan Metzmacher2012-07-171-5/+38
| | | | | | metze Signed-off-by: Günther Deschner <gd@samba.org>
* s4-param: Use a unique header nameAndrew Bartlett2012-07-151-3/+3
|
* s4-provision: Provide YP/NIS subtree to allow ADUC to see and set rfc2307 attrsGeza Gemes2012-07-133-2/+536
| | | | | | | | | | When provisioning with --use_rfc2307=yes populate the subtree: CN=ypServ30,CN=RpcServices,CN=System,${DOMAINDN} This makes it possible to manipulate the posix attributes via ADUC (commit message adjusted by abartlet) Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s4:registry:regdiff: use existing talloc context for the event contextMichael Adam2012-07-131-1/+1
| | | | | Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Fri Jul 13 02:51:44 CEST 2012 on sn-devel-104
* s4:registry:regdiff: add TALLOC_CTX * argument to open_backend()Michael Adam2012-07-131-6/+7
|
* s4:registry: add a TALLOC_CTX argument to reg_open_remote()Michael Adam2012-07-134-5/+7
|
* s4-torture: add ntprinting ndr operations testsuite.Günther Deschner2012-07-063-1/+442
| | | | | | | Guenther Autobuild-User(master): Günther Deschner <gd@samba.org> Autobuild-Date(master): Fri Jul 6 20:55:26 CEST 2012 on sn-devel-104
generated by cgit (git 2.34.1) at 2025-09-25 22:46:59 +0000