summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
* Revert "Install (platform-independent) python scripts to the PYTHONDIR ↵Jelmer Vernooij2011-12-091-1/+1
| | | | | | | | | | | | | | rather than PYTHONARCHDIR." This reverts commit de4b8943bfb40e2f50c9e4e2ee5d39e986317d08. PYTHONDIR and PYTHONARCHDIR are both incorrect - they're the distribution's python locations, rather than the python locations for third party applications. For the moment, using PYTHONARCHDIR seems better though, because it works around an issue on Fedora/RedHat. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Fri Dec 9 01:58:50 CET 2011 on sn-devel-104
* Add test for PEP8 - currently all errors are ignored, but we warn about them ↵Jelmer Vernooij2011-12-081-0/+50
| | | | | | | - and can ratchet if we want to. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Thu Dec 8 23:44:10 CET 2011 on sn-devel-104
* samba.drs_utils: Use new style classes and exceptions, fix formatting of ↵Jelmer Vernooij2011-12-081-13/+19
| | | | docstrings to make pydoctor happy.
* samba.kcc_utils: Fix formatting to match PEP8, make pydoctor happy.Jelmer Vernooij2011-12-081-246/+214
|
* Add tests for srvsvc python interface. Thanks Dhananjay SatheJelmer Vernooij2011-12-082-0/+70
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Thu Dec 8 04:57:52 CET 2011 on sn-devel-104
* selftest: Some extra assertions.Jelmer Vernooij2011-12-081-0/+4
|
* dbcheck: cope with objects disappearing during checkingAndrew Tridgell2011-12-082-6/+16
| | | | | Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Dec 8 03:23:49 CET 2011 on sn-devel-104
* samba_kcc NTDSConnection translationDave Craft2011-12-082-218/+1292
| | | | | | | | | | | | | | | This is an advancement of samba_kcc to compute and commit the modification of a repsFrom on an NC Replica. The repsFrom is computed according to the MS tech spec for implied replicas of NTDSConnections. Proper maintenance of (DRS options, schedules, etc) from a NTDSConnection are now all present. New classes for inter-site transports, sites, and repsFrom) are now present in kcc_utils.py. Substantively this gets intra-site topology generation functional by committing the repsFrom that were computed from the DSA graph implemented in prior drops of samba_kcc Signed-off-by: Andrew Tridgell <tridge@samba.org>
* Invocation of samba_kcc from KCC taskDave Craft2011-12-083-21/+89
| | | | | | | | | Modification to periodic and explicit invocation paths of the KCC topology generation code. Managed via samba_runcmd_send() API. The samba_kcc script is invoked if (kccsrv:samba_kcc = true) appears in smb.conf Signed-off-by: Andrew Tridgell <tridge@samba.org>
* Add subreq and status to kcc_service structDave Craft2011-12-081-2/+9
| | | | | | | | The subreq and status fields in the kcc_service struct are added for execution management of the external samba_kcc python script. Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-selftest re-enable nsstest on libnss_winbind.soAndrew Bartlett2011-12-071-1/+1
|
* s4-kdc: only build hdb plugin if we build against system HeimdalAndrew Bartlett2011-12-071-0/+1
| | | | | | | It is not safe to have a system kadmin use our plugin if we do not share the same libkrb5. Andrew Bartlett
* s4-dnsupdate: Do not attempt to add the PDC names if we are not a PDCAndrew Bartlett2011-12-071-5/+11
|
* pydsdb: provide a am_pdc hook like am_rodc to python scriptsAndrew Bartlett2011-12-072-0/+26
|
* s4-dns Use match-by-key in GSSAPI server if principal is not specifiedAndrew Bartlett2011-12-071-22/+5
| | | | | | | | | This allows dlz_bind9 to match on exactly the same key as bind9 itself Andrew Bartlett Autobuild-User: Amitay Isaacs <amitay@samba.org> Autobuild-Date: Wed Dec 7 02:20:10 CET 2011 on sn-devel-104
* auth: Allow a NULL principal to be obtained from the credentialsAndrew Bartlett2011-12-072-3/+14
| | | | | | This is important when trying to let GSSAPI search the keytab. Andrew Bartlett
* dlz_bind9: Add command line options for URL and debugAmitay Isaacs2011-12-072-9/+28
| | | | | | | | To specify debug level, use -d <level> in named.conf. To specify sam db, use -H <path/to/sam.ldb> in named.conf. The default log level is set to 0. The log level specified in smb.conf is not used. To set log level, use -d option.
* dlz_bind9: Set debugging output to stderrAmitay Isaacs2011-12-071-0/+3
|
* dlz_bind9: Use client supplied credentials for DNS record updateAmitay Isaacs2011-12-071-0/+79
| | | | This creates the DNS records with correct owner and group settings.
* dlz_bind9: For creating a child entry, use only SEC_ADS_CREATE_CHILDAmitay Isaacs2011-12-071-1/+1
| | | | | The member servers in AD do not have access to modify the parent, but do have access to create child DNS records.
* Install (platform-independent) python scripts to the PYTHONDIR rather than ↵Jelmer Vernooij2011-12-061-1/+1
| | | | PYTHONARCHDIR.
* s4-drs: do not try to contact for replication servers that are not anymore ↵Matthieu Patou2011-12-051-6/+40
| | | | | | | | | | | | in reps* Servers connection can be removed from repsTo and respFrom either due to DC demote or topology change by the KCC, if a server is removed from the reps* it must be effectivly removed from the list of server that we will contact for getNcChanges and for replicaSync. Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Mon Dec 5 19:56:09 CET 2011 on sn-devel-104
* s4-resolver: do not use all the A and AAAA records, those after a NS are not ↵Matthieu Patou2011-12-052-1/+17
| | | | the one we want to use
* s4-drs: mark WERR_DS_DRA_BUSY as a non error in DsReplicaUpdateRefsMatthieu Patou2011-12-051-2/+22
|
* s4: add blackbox test for the demote functionMatthieu Patou2011-12-052-0/+40
|
* samba-tool: refuse to demote if the current DC has still rolesMatthieu Patou2011-12-051-4/+12
|
* samba-tool: add a function to cleanly demote a DCMatthieu Patou2011-12-052-2/+257
| | | | | samba-tool domain demote allow the local DC to properly demote against Microsoft and Samba DC.
* s4-python: factorize the definition of get_dsServiceNameMatthieu Patou2011-12-054-18/+14
|
* s4-python: externalize some function to the drs_utils module so that they ↵Matthieu Patou2011-12-052-25/+66
| | | | can be reused
* s4-python: rename conflicting variable with the import optionMatthieu Patou2011-12-051-2/+2
|
* s4 dns: Test SOA queriesKai Blin2011-12-031-0/+32
| | | | | Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Sat Dec 3 20:52:51 CET 2011 on sn-devel-104
* Revert making public of the samba-module library.Jelmer Vernooij2011-12-0317-59/+59
| | | | | | | | | | | | | | | This library was tiny - containing just two public functions than were themselves trivial. The amount of overhead this causes isn't really worth the benefits of sharing the code with other projects like OpenChange. In addition, this code isn't really generically useful anyway, as it can only load from the module path set for Samba at configure time. Adding a new library was breaking the API/ABI anyway, so OpenChange had to be updated to cope with the new situation one way or another. I've added a simpler (compatible) routine for loading modules to OpenChange, which is less than 100 lines of code. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sat Dec 3 08:36:33 CET 2011 on sn-devel-104
* s4-ntvfs: added allow_override check based on use of NT ACLAndrew Tridgell2011-12-0110-41/+59
| | | | | | | | This disables the posix permission override if the calculated permissions did not come from a NT ACL. Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Dec 1 05:14:49 CET 2011 on sn-devel-104
* s4-ntvfs: fixed a unix ACL mapping bugAndrew Tridgell2011-12-011-21/+25
| | | | | the ACL mapping code was incorrectly allowing creation of directories in some situations where it should be denied by the unix permissions
* s4-tests: Use long option names in test list script, to prevent 'eating' ↵Jelmer Vernooij2011-11-301-38/+38
| | | | --list argument when e.g. is not set.
* s4-testlist: Write diagnostic info to stderr, and purely test info to stdout.Jelmer Vernooij2011-11-301-2/+2
|
* s4:lib/tls - call "gnutls_transport_set_lowat" only on GNUTLS < 3.0Matthias Dieter Wallnöfer2011-11-302-0/+8
| | | | | | | | | | | | | | | | This function call together with the lowat feature has been removed in release 3.0 as described in this mailing list post: http://old.nabble.com/gnutls_transport_set_lowat-deprecated-td32554230.html. Since we do not make any use of lowat (esprimed by each function call) we are free to simply omit it on v3.0 and later. This addresses bug #8537. Reviewed by: abartlet + metze Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Wed Nov 30 20:11:14 CET 2011 on sn-devel-104
* s4:gensec/spnego: only try the mechs that match the client given onesStefan Metzmacher2011-11-301-0/+4
| | | | | | | | | | | | | | | | | | | | | Windows-Members of NT4/Samba3 domains, send MechTypes: 1.3.6.1.4.1.311.2.2.10 [NTLMSSP] 1.2.840.48018.1.2.2 [krb5 broken] 1.2.840.113554.1.2.2 [krb5] MechToken for NTLMSSP. This patch makes sure we start NTLMSSP with the given MechToken, instead of trying to pass the NTLMSSP MechToken to the krb5 backend first. As that would fail the authentication with an error instead of trying fallbacks. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Nov 30 17:03:29 CET 2011 on sn-devel-104
* s4:libcli/raw: implement on top of smbXcli_conn/reqStefan Metzmacher2011-11-3020-1812/+1033
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Nov 30 15:13:36 CET 2011 on sn-devel-104
* s4:libcli: do the nbss session request within smbcli_sock_connect_*()Stefan Metzmacher2011-11-304-147/+108
| | | | metze
* s4:libcli/raw: remove unused functionsStefan Metzmacher2011-11-302-76/+0
| | | | metze
* s4:libcli: use smbcli_sock_connect() in smbcli_socket_connect()Stefan Metzmacher2011-11-301-5/+11
| | | | metze
* s4:libcli: move smbcli_transport_establish() logic into smbcli_socket_connect()Stefan Metzmacher2011-11-304-38/+32
| | | | metze
* s4:libcli: convert smbcli_transport_connect_* to tevent_reqStefan Metzmacher2011-11-303-92/+240
| | | | metze
* s4:lib/socket: add socket_connect_multi_ex_*Stefan Metzmacher2011-11-302-10/+147
| | | | | | | | | | | | This add an async establish hook, that gets called before a connection success is detected. This can be used to do a NBT session request and it makes sure that we don't cancel the connection on port 445, just because the tcp connect on port 139 worked. metze
* s4-kdc: Add hdb plugin for samba4, to allow kadmin to workAndrew Bartlett2011-11-306-43/+104
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | This will help users who are used to the kadmin interface, and could be extended to import existing MIT or Heimdal keys into a Samba4 AD domain. To use, add to your krb5.conf [kdc] database = { dbname = samba4: } or [kdc] database = { dbname = samba4:/usr/local/samba/etc/smb.conf } And copy hdb_samba4.so from PREFIX/modules/hdb to your Heimdal lib directory Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Nov 30 03:22:11 CET 2011 on sn-devel-104
* s4:libcli/raw: copy smbcli_transport_connect_* to clisocket.cStefan Metzmacher2011-11-292-124/+123
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Tue Nov 29 17:34:52 CET 2011 on sn-devel-104
* s4:libcli/raw: add transport->ev as copy of transport->socket->event.ctxStefan Metzmacher2011-11-298-6/+9
| | | | | | | We'll remove transport->socket soon, but removing transport->ev will take a bit longer. metze
* s4:torture: use tctx->ev as event context for pollingStefan Metzmacher2011-11-296-22/+14
| | | | metze
* s4:gentest: get the tid from the smbcli_tree structStefan Metzmacher2011-11-291-2/+4
| | | | metze
generated by cgit (git 2.34.1) at 2025-09-25 21:08:56 +0000