summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
...
* heimdal: handle referrals for 3 part DRSUAPI SPNsAndrew Tridgell2011-10-041-1/+18
| | | | | | | | | | | | | This handles referrals for SPNs of the form E3514235-4B06-11D1-AB04-00C04FC2DCD2/NTDSGUID/REALM, which are used during DRS replication when we don't know the dnsHostName of the target DC (which we don't know until the first replication from that DC completes). We use the 3rd part of the SPN directly as the realm name in the referral. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-repl: try harder to find the right SPN in replication serverAndrew Tridgell2011-10-041-23/+72
| | | | | | | | | | | | when doing DRS between domains, using the right SPN is essential so the KDC can generate referrals to point us at the right DC. We prefer the GC/hostname/DNSDOMAIN form if possible, but if we can't find the hostname then this changes the code that generates the target principal name to use either the msDS-HasDomainNCs or hasMasterNCs attributes to try to find the target DC domainname so we can use the E3514235-4B06-11D1-AB04-00C04FC2DCD2/GUID/DNSDOMAIN SPN form. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: added new control DSDB_MODIFY_PARTIAL_REPLICAAndrew Tridgell2011-10-047-60/+98
| | | | | | | | this control tells the partition module that the DN being created is a partial replica, so it should modify the @PARTITION object to add the partialReplica attribute Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-join: enable cleanup on failed joinAndrew Tridgell2011-10-041-1/+1
| | | | if a join fails, then cleanup the old records
* s4-drs: added DSDB_REPL_FLAG_ADD_NCNAME to DsAddEntry callAndrew Tridgell2011-10-041-0/+1
| | | | we want new NCs to be created
* s4-dsdb: added DSDB_REPL_FLAG_ADD_NCNAME flagAndrew Tridgell2011-10-041-0/+1
|
* s4-dsdb: fixed formatting of a debug messageAndrew Tridgell2011-10-041-1/+1
| | | | another missing newline
* s4-partition: allow creation of uninstantiated partitionsAndrew Tridgell2011-10-041-6/+0
| | | | | this is needed for a subdomain join by a new NC. The NC is initially uninstantiated
* s4-dsdb: allow uninstantiated NC headsAndrew Tridgell2011-10-041-2/+4
| | | | | this allows INSTANCE_TYPE_WRITE to be not set if INSTANCE_TYPE_UNINSTANT is set
* s4-repl: support creation of new NCs via DsAddEntryAndrew Tridgell2011-10-041-0/+84
| | | | | this adds a flag to dsdb_origin_objects_commit that tells it to create a new NC based on the nCName in a crossRef object
* s4-repl: fixed formatting of some debug messagesAndrew Tridgell2011-10-041-5/+5
|
* dns: added example python script for dnsserver protocolAndrew Tridgell2011-10-041-0/+89
|
* dns: build python bindings for dnsserver RPC protocolAndrew Tridgell2011-10-041-0/+6
|
* samba-tool: cope with GC compares in ldapcmpAndrew Tridgell2011-10-041-3/+5
| | | | the two base DNs do not need to match when doing GC replica compares
* samba-tool: added --full-sync and --sync-all options to samba-tool drs replicateAndrew Tridgell2011-10-041-3/+9
|
* s4-dbchecker: fixed handling of DSDB DNs in dbcheckAndrew Tridgell2011-10-041-1/+1
| | | | | we need to use the original value, as ldb.Dn() can't parse a DSDB binary DN
* s4-dsdb: update callers to dsdb_convert_object_ex()Andrew Tridgell2011-10-042-0/+4
|
* s4-repl: update instanceType in partial_replica replicationAndrew Tridgell2011-10-041-0/+20
| | | | | | when we receive objects to a partial replica, we need to change the incoming instanceType to not include the INSTANCE_TYPE_WRITE flag. Partial replicas unset this flag.
* s4-repl: add FULL_SYNC and PARTIAL_REPLICA flagsAndrew Tridgell2011-10-041-5/+27
| | | | | this sets the appropriate flags for replication with FULL_SYNC and partial replica replications
* s4-dsdb: implement DSDB_REPL_FLAG_PRIORITISE_INCOMINGAndrew Tridgell2011-10-041-4/+22
| | | | | | With this set, we accept changes even if they have the same tuple as the local copy. This can be used by a FULL_SYNC replication to recover a replica that is corrupt
* s4-dsdb: disallow changes based on instanceTypeAndrew Tridgell2011-10-041-4/+13
| | | | | | if instanceType does not include INSTANCE_TYPE_WRITE, then disallow changes to any replicated attributes. This ensures partial replicates are not alterered
* s4-dsdb: added DSDB_REPL_FLAG* to replicationAndrew Tridgell2011-10-041-2/+15
| | | | | | this allows the replication server to control replication via a set of flags. Initial flags will allow control for partial replications and full_sync support
* s4-ldap-server: disallow all modifies on global catalog portAndrew Tridgell2011-10-041-0/+20
|
* s4 provision: Set server role default when called from command line to 'dc'Kai Blin2011-10-021-0/+3
|
* s4:smb_server/smb2: make sure we sign the final session setupStefan Metzmacher2011-09-291-3/+10
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Sep 29 18:59:54 CEST 2011 on sn-devel-104
* s4: add SMB2_FSCTL opcodesDavid Disseldorp2011-09-293-3/+18
| | | | | | | | Also, skip samba4.smb2.ioctl for now. Snapshots are not supported by default. Autobuild-User: David Disseldorp <ddiss@samba.org> Autobuild-Date: Thu Sep 29 14:47:05 CEST 2011 on sn-devel-104
* s4-torture: add smb2 ioctl test suiteDavid Disseldorp2011-09-293-1/+89
| | | | | | Currently only covers FSCTL_GET_SHADOW_COPY_DATA. Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s4-torture: remove unchecked read from smb2 createDavid Disseldorp2011-09-292-9/+9
| | | | | | Add a corresponding test case to smb2.read. Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s4:torture/smb2/lock: remove samba4 specific checks for ↵Stefan Metzmacher2011-09-281-12/+14
| | | | | | | | | | | | | | NETWORK_NAME_DELETED/USER_SESSION_DELETED Most Windows versions have a strange order to verify the session id, tree id and file id. (They should be checked in that order, but windows seems to check the file id before the others). metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Sep 28 21:12:07 CEST 2011 on sn-devel-104
* s4:libcli/smb2: ignore SMB2_OP_CANCEL responsesStefan Metzmacher2011-09-281-0/+10
| | | | | | | | | | | | If there're a problem with signing or the session doesn't exists any more the server responses with a failure, instead of not sending a response. For now we ignore the reponse, as there's not much we could do with it and it's not likely that we generate bad requests, which trigger that behavior, except for testing. metze
* s4:libcli/smb2: correctly sign SMB2_OP_CANCEL request if they belong to a ↵Stefan Metzmacher2011-09-281-0/+1
| | | | | | session metze
* s4:libcli/smb2: don't try to check the signing if we got ↵Stefan Metzmacher2011-09-281-1/+2
| | | | | | NT_STATUS_USER_SESSION_DELETED metze
* libcli: Install libcli.h.Jelmer Vernooij2011-09-282-4/+289
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Wed Sep 28 14:19:20 CEST 2011 on sn-devel-104
* s4:libcli/resolve: only try broadcast messages to ipv4 addressesStefan Metzmacher2011-09-281-2/+12
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Sep 28 05:10:53 CEST 2011 on sn-devel-104
* dns: Do as BIND and MS DNS and drop quries with qdcount != 1Kai Blin2011-09-281-5/+11
| | | | | Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Wed Sep 28 03:37:22 CEST 2011 on sn-devel-104
* dns: The QCLASS is called IN, not IPKai Blin2011-09-281-6/+6
|
* s4-ldap_server: Fix segfault on startup failure of ldap serverAndrew Bartlett2011-09-271-2/+2
|
* libcliraw: Make smb_raw_write_recv public and include it in a public header.Jelmer Vernooij2011-09-252-1/+2
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sun Sep 25 17:12:05 CEST 2011 on sn-devel-104
* s4 winbind: Don't drop workgroup name for getpw*Kai Blin2011-09-242-2/+16
| | | | | Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Sat Sep 24 22:49:50 CEST 2011 on sn-devel-104
* build: avoid util.h as a public header name due to conflict with MacOSAndrew Bartlett2011-09-2310-10/+10
|
* python-s4: use PyErr_SetNTSTATUS instead of PyErr_NTSTATUS_IS_ERR_RAISE as ↵Matthieu Patou2011-09-231-2/+4
| | | | | | | it use NT_STATUS_IS_ERROR which is not completely the same as NT_STATUS_IS_OK Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Fri Sep 23 09:22:56 CEST 2011 on sn-devel-104
* pys4: really return an exception if the status if not correctMatthieu Patou2011-09-231-4/+2
| | | | | Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Fri Sep 23 06:06:57 CEST 2011 on sn-devel-104
* s4:selftest: skip flakey samba4.nbt.winsreplication for nowStefan Metzmacher2011-09-221-0/+1
| | | | | | | | | | | | | | | [825/1154 in 43m52s] samba4.nbt.winsreplication(dc) Test if we always get back the same assoc_ctx Setup wrepl connections Test one pull replication cycle Setup wrepl connections Setup wrepl conflict pull connection UNEXPECTED(error): samba4.nbt.winsreplication.replica REASON: _StringException: _StringException: Unknown error/failure I don't have time to look into the problem currently. metze
* s4-dbcheck: fixed transaction nesting in dbcheckAndrew Tridgell2011-09-221-2/+6
| | | | | | | | | ensure we don't cancel a transaction we didn't start Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Sep 22 03:39:59 CEST 2011 on sn-devel-104
* samba-tool: use show_recycled in dbcheckerAndrew Tridgell2011-09-221-13/+16
| | | | | we need to use show_recycled instead of show_deleted in dbchecker to allow us to see recycled objects
* s4-kdc: set NO_GLOBAL_CATALOG control in kdcAndrew Tridgell2011-09-221-3/+5
| | | | | | | | the kdc doesn't want to find users who are in partialReplica partitions, as they won't have the needed secret info for the kdc to operate. We need to generate referrals instead Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-rpc: show binding string in failed rpc bindsAndrew Tridgell2011-09-221-1/+2
| | | | this makes debugging some RPC auth issues easier
* s4-ldap-server: set the NO_GLOBAL_CATALOG control on non-GC operationsAndrew Tridgell2011-09-221-0/+2
| | | | this makes us honor GC semantics on the two ldap ports
* s4-repl: remove unused principal_name elementAndrew Tridgell2011-09-221-3/+0
|
* s4-dsdb: load the partialReplica attribute in the @PARTITION objectAndrew Tridgell2011-09-223-2/+27
| | | | | | this modifies the partition module to honor a partialReplica attribute on the @PARTITION module, marking partiations as partial replicas so the NO_GLOBAL_CATALOG control can be honoured
generated by cgit (git 2.34.1) at 2025-09-26 15:16:13 +0000