summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
...
* s4:torture:smb2: add a test for alloc size behaviour under durable reconnectMichael Adam2012-09-071-0/+154
| | | | Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
* s4:torture/smb2: add smb2.durable-v2-open.reopen{1,2} testsStefan Metzmacher2012-09-071-0/+184
| | | | | | | They show that only the content of the DH2C request matches and all other values in the SMB2 Create request are ignored. metze
* s4:torture/smb2: check that the server should ignore the fname in a DHnC requestStefan Metzmacher2012-09-071-1/+2
| | | | metze
* s4:torture/smb2: don't expect a DHnQ response in a DHnC requestStefan Metzmacher2012-09-071-4/+0
| | | | | | | This is fixed in Windows 2012 and matches the [MS-SMB2] documentation now. metze
* s4 dns: Make debug output less noisyKai Blin2012-09-074-16/+16
| | | | | Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Fri Sep 7 00:31:56 CEST 2012 on sn-devel-104
* s4 dns: Check if signing user is allowed to update recordsKai Blin2012-09-061-16/+56
| | | | This should fix bug #9142
* selftest: Test configure stage of dlz_bind9Andrew Bartlett2012-09-061-0/+61
| | | | | Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Thu Sep 6 09:07:11 CEST 2012 on sn-devel-104
* selftest: Add tests for the dlz_bind9 moduleAndrew Bartlett2012-09-065-0/+113
| | | | | | | | This will help ensure that we do not break the fundemental loading etc. From here, it should be easy to extend this to more comprehensive tests. Andrew Bartlett
* join.py: Only replicate DNS zones if the source DC had DNS zonesAndrew Bartlett2012-09-061-7/+18
| | | | | | | | | This avoid folks needing to specify --dns-backend=NONE Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Thu Sep 6 04:48:55 CEST 2012 on sn-devel-104
* s4 dns: Allow configuring signed updatesKai Blin2012-09-051-1/+6
| | | | | Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Wed Sep 5 20:42:46 CEST 2012 on sn-devel-104
* s4 dns: Make sure to remember incoming tkey nameKai Blin2012-09-051-0/+4
|
* s4 dns: Verify incoming TSIG signaturesKai Blin2012-09-054-0/+189
|
* s4 dns: Handle GSS-TSIG signature creationKai Blin2012-09-053-0/+144
|
* s4 dns: When we got a TKEY, we need to remember which key to use for signingKai Blin2012-09-052-2/+17
|
* s4 dns: TKEY record needs to remember incoming algorithmKai Blin2012-09-052-1/+10
| | | | Samba3 (and older windows versions) use gss.microsoft.com, win7 (and the RFC) use gss-tsig
* s4 dns: Move dns_find_tkey to an extra fileKai Blin2012-09-054-56/+88
|
* s4-dns: Fix linking the dns service.Andreas Schneider2012-09-051-1/+1
| | | | | Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Wed Sep 5 18:40:00 CEST 2012 on sn-devel-104
* selftest: Add python blackbox tests for samba-tool ntacl get/setAndrew Bartlett2012-09-051-2/+67
| | | | | Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Sep 5 15:47:55 CEST 2012 on sn-devel-104
* samba_tool: Improve samba-tool ntacl get/set to use the local sam.ldb SIDAndrew Bartlett2012-09-051-19/+53
| | | | | | | | | This gets the SID for the local machine correctly. We also add options for --use-ntvfs and --use-s3fs to help control exactly which database is being read and written. Andrew Bartlett
* samba_tool: Fix ntacl get to correctly output in sddlAndrew Bartlett2012-09-051-3/+3
|
* s4-provision: Fix error message to contain the string SSDL of the ↵Andrew Bartlett2012-09-051-2/+2
| | | | failed-to-match ACL
* s4 dns: Revert erroneous push from wrong branchKai Blin2012-09-057-461/+60
| | | | | | | I've pushed the wrong branch for this, sorry about that. Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Wed Sep 5 14:10:54 CEST 2012 on sn-devel-104
* s4 dns: Allow configuring signed updatesKai Blin2012-09-051-1/+6
| | | | | Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Wed Sep 5 10:45:22 CEST 2012 on sn-devel-104
* s4 dns: Make sure to remember incoming tkey nameKai Blin2012-09-051-0/+4
|
* more tsig_verify stuffKai Blin2012-09-053-12/+23
|
* drop meKai Blin2012-09-051-0/+3
|
* hack: dns_sign_tsig correct memcpyKai Blin2012-09-051-1/+1
|
* HACK remove debug statementKai Blin2012-09-051-1/+0
|
* s4 dns: Verify incoming TSIG signaturesKai Blin2012-09-054-9/+95
|
* s4 dns: Handle GSS-TSIG signaturesKai Blin2012-09-055-59/+352
|
* s4-selftest: Try a more complex ACL - this example from a GPOAndrew Bartlett2012-09-041-0/+14
| | | | | | | Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Sep 4 11:30:17 CEST 2012 on sn-devel-104
* s4-selftest: Try to make ntacl unit tests better match their namesAndrew Bartlett2012-09-041-5/+5
| | | | | | | We are trying to test combinations of setting and getting via the VFS and directly to the underlying DB. Andrew Bartlett
* s4-samba-tool: Ensure we also sync the SACL as well as the DACL during ↵Andrew Bartlett2012-09-041-1/+1
| | | | sysvolreset
* s3-passdb: Rename pdb_samba4 to samba_dsdb and autoconfigure when we are a AD DCAndrew Bartlett2012-09-042-13/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | The name samba_dsdb is not ideal, but it matches the primary ldb module we use, and more importantly it avoids having '4' in the name. We should slowly avoid using the term samba4 in long-term places like the smb.conf because it is confusing to users given we are shipping Samba 4.0 as an AD DC as well as all the other supported roles (domain member/standalone server/classic DC) Additionally, samba4 will be an odd name when we eventually release Samba 5.0! samba4 remains accepted as an alias to ensure existing smb.conf files load, but to allow changes here in the future, we set the value during the smb.conf load, and not during the provision when we are an AD DC. This simplifies the default smb.conf for the vast majority of our users and reduces the number of things listed in smb.conf files that we later have to work around if we wish to change the name/implementation of the passdb glue module again. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Sep 4 04:45:16 CEST 2012 on sn-devel-104
* s4-classicupgrade: Show more clearly what is wrong with the Adminstrator SIDAndrew Bartlett2012-09-031-0/+1
|
* Now SEC_RIGHTS_PRIV_RESTORE and SEC_RIGHTS_PRIV_BACKUP don't include any ↵Jeremy Allison2012-08-311-4/+27
| | | | | | generic bits (they're used directly in the fileserver where the generic bits have already been mapped into file specific bits) we need to add the generic bits to the test when we have these privileges. Mark samba4.base.maximum_allowed knownfail until we implement NTCREATEX_OPTIONS_BACKUP_INTENT.
* Rewrite torture_samba3_rpc_sharesec() to use a non-privileged user for share ↵Jeremy Allison2012-08-312-15/+182
| | | | security descriptor testing.
* s4-dsdb: Remove unused variablesAndrew Bartlett2012-09-011-3/+0
| | | | | Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Sat Sep 1 05:10:47 CEST 2012 on sn-devel-104
* s4-kdc: Improve grammer and clarity of password change failure messages.Andrew Bartlett2012-09-011-4/+3
| | | | | | | This can still be improved further, but avoid mentioning reasons that clearly do not apply in this case. Andrew Bartlett
* s4-dsdb: Remove unused tmp_ctx leaked onto long-term ldb_contextAndrew Bartlett2012-09-011-2/+0
| | | | | | | This was found based on a log provided by Ricky Nance <ricky.nance@weaubleau.k12.mo.us>. Thanks Ricky! Andrew Bartlett
* s4 dns: Store TKEYs in a ringbufferKai Blin2012-08-313-57/+106
| | | | | | | This stops us from potentially being DoSed by tons of TKEYs Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Fri Aug 31 22:46:01 CEST 2012 on sn-devel-104
* s4 dns: Negotiate GSSAPI-based TKEYsKai Blin2012-08-314-1/+254
| | | | | Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Fri Aug 31 10:38:35 CEST 2012 on sn-devel-104
* s4-kdc: Give information on how long the password history isAndrew Bartlett2012-08-311-1/+2
| | | | | Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Fri Aug 31 08:06:17 CEST 2012 on sn-devel-104
* s4-libnet: Fix memory leak of lsa_RefDomainList and lsa_String onto libnet_ctxAndrew Bartlett2012-08-311-2/+2
| | | | | | | | | | These are only needed for as long as the call, and should be children of the private context. This was found based on a log provided by Ricky Nance <ricky.nance@weaubleau.k12.mo.us>. Thanks Ricky! Andrew Bartlett
* Now ACL inheritance flags are working, add test_inheritance_flags() back ↵Jeremy Allison2012-08-301-5/+10
| | | | into raw.acls to ensure we don't regress.
* auth/credentials: Support match-by-key in cli_credentials_get_server_gss_creds()Andrew Bartlett2012-08-302-0/+2
| | | | | | | | | | | | | This allows a password alone to be used to accept kerberos tickets. Of course, we need to have got the salt right, but we do not need also the correct kvno. This allows gensec_gssapi to accept tickets based on a secrets.tdb entry. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Thu Aug 30 01:26:12 CEST 2012 on sn-devel-104
* s4-torture: Add start of a test to confirm winbindd PAC parsingAndrew Bartlett2012-08-292-1/+154
| | | | | | | So far this confirms that we can accept a ticket using the secrets.tdb entry. Andrew Bartlett
* s4-libnet: Fix passing samba_all_enctypes as a fn rather than the encrypt ↵Andrew Bartlett2012-08-291-1/+1
| | | | | | | array it returns Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Aug 29 09:56:27 CEST 2012 on sn-devel-104
* selftest: Add a test for smbclient --machine-pass without secrets.tdbAndrew Bartlett2012-08-291-1/+1
| | | | | | | Errors in handling the upgrade case without a matching secrets.tdb caused segfaults in the server. This essentially tests both sides. Andrew Bartlett
* s3-classicupgrade: Fix import from ldapAndrew Bartlett2012-08-281-2/+2
| | | | | | | | | | We must not reference result before provision(), and do not need session_info and lp for reading a normal ldap backend anyway. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Aug 28 09:49:39 CEST 2012 on sn-devel-104
generated by cgit (git 2.34.1) at 2025-09-24 21:53:15 +0000