summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
...
* s4-finddcs: show required server type bits on failureAndrew Tridgell2010-09-151-2/+3
| | | | | | | when we skip a DC because it doesn't have the required server type bits, show what bits we wanted Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-repl: use consistent API calls for getting DN GUIDAndrew Tridgell2010-09-151-1/+1
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-netlogon: fixed logic for setting DS_SERVER_WRITABLEAndrew Tridgell2010-09-151-1/+1
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-finddc: use NBT lookup for a 1C name if joining a short domain nameAndrew Tridgell2010-09-156-20/+105
| | | | | | | once we get the 1C lookup reply, use a CLDAP query to find the details for the server Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-join: give a clear error when using short domain formAndrew Tridgell2010-09-151-1/+4
| | | | | | we now require the full domain name, for the DNS/CLDAP lookup Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-rodc: use python finddc code to avoid the need for --serverAndrew Tridgell2010-09-151-6/+12
| | | | | | The DC is now found via DNS/CLDAP Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-pynet: added finddc callAndrew Tridgell2010-09-151-0/+45
| | | | | | this gives access to the CLDAP/DNS finddc code from python Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-libcli: change finddcs.h -> finddc.hAndrew Tridgell2010-09-155-4/+4
| | | | | | | this prevents conflicts with old generated files and we can only even return one DC with this interface. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-finddcs: rename finddcs to finddcs_nbtAndrew Tridgell2010-09-152-37/+34
| | | | | | | finddcs_nbt is currently unused, but will later be a fallback is a cldap DC find fails. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-winbind: use finddcs_cldap() in winbindAndrew Tridgell2010-09-155-40/+52
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-libnet: use finddcs_cldap() in libnet_lookupAndrew Tridgell2010-09-151-11/+17
| | | | | | | this may later be changed to do fallback to NBT as well, but for now cldap is sufficient Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-cldap: don't set the writable bit when we are a RODCAndrew Tridgell2010-09-151-2/+6
| | | | | | | when we are a RODC, don't respond with the writable bit in the server type response of netlogon requests Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-finddcs: added finddcs_cldap()Andrew Tridgell2010-09-153-3/+284
| | | | | | | this finds DCs with a specified set of server_type bit using SRV lookups and CLDAP Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-secrets: fixed shadowed variable warningAndrew Tridgell2010-09-151-4/+4
| | | | we already have a 'v' in scope
* s4-resolve: added resolve_name_multiple_recv()Andrew Tridgell2010-09-151-0/+34
| | | | | | this allows for multiple replies to a SRV lookup Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dns: fixed lookup of SRV records using dns_exAndrew Tridgell2010-09-151-2/+2
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4: fixed some printf format errorsAndrew Tridgell2010-09-153-3/+3
|
* s4-libnet: converted finddcs call to tevent_reqAndrew Tridgell2010-09-154-89/+128
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-secrets: fetch secure channel type with domain SIDAndrew Tridgell2010-09-154-4/+27
| | | | | | The secure channel type is needed to work out what DC to connect to Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-auth: when we are a DC enable winbind authAndrew Tridgell2010-09-151-1/+3
| | | | | | As a RODC we need to forward some auth requests to a writable DC Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-auth: set the RODC bit for RODC schannelAndrew Tridgell2010-09-151-1/+4
| | | | | | | | When we are using SEC_CHAN_RODC we need to set the NETLOGON_NEG_RODC_PASSTHROUGH bit in the negotiated flags in ServerAuthenticate2 Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-schannel: fixed reference to context after freeAndrew Tridgell2010-09-151-2/+3
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-auth: allow multiple active auth backendsAndrew Tridgell2010-09-151-35/+43
| | | | | | | | | | when we are an RODC we need to be able to allow multiple auth backends to process a single auth request. First the sam backend will try to authenticate, using locally stored passwords. If this backend can't find local passwords then it will try the winbind backend and authenticate via a writeable DC Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-smb: serialise session setup operationsAndrew Tridgell2010-09-152-0/+16
| | | | | | | the mixture of async and sync code in gensec makes a EOF on a socket during a session setup cause a crash. The simplest solution is to stop processing events on the socket until the session setup is complete.
* s4-rodc: add a trigger message for REPL_SECRET to auth_samAndrew Tridgell2010-09-153-0/+73
| | | | | | | | | when an RODC tries to authenticate against an account and the account has no password information it needs to send a message to the drepl server to tell it to try and replicate the secret information from a writeable DC Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-messaging: add support for no_reply in irpc messagesAndrew Tridgell2010-09-152-0/+8
| | | | | | | | | | | | It can be useful for a irpc message to be one-way, where the client sends a messages and the server does not reply. This will be used for things like a triger message from an auth context to the drepl server to tell it to try a REPL_SECRET on a user in a RODC. Previously we've used raw messaging for messages that have no reply, but that doesn't allow us to use messages described by IDL Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-kcc: removed redundent loop check Andrew Tridgell2010-09-151-1/+1
| | | | el has already been checked for NULL
* s4-smb: smbsrv_blob_push_string() can return -1Andrew Tridgell2010-09-151-8/+11
| | | | need to use ssize_t, not size_t for error handling
* s4-dsdb: check for invalid backend typeAndrew Tridgell2010-09-151-0/+2
|
* s4-rootdse: setup length after NULL checkAndrew Tridgell2010-09-151-2/+2
|
* s4-dsdb: fixed use after free for RODCAndrew Tridgell2010-09-151-2/+1
|
* s4-dsdb: free right context on failureAndrew Tridgell2010-09-151-1/+1
| | | | down_req is not initialised yet
* s4-dsdb: defer ac->msg after check for NULL acAndrew Tridgell2010-09-151-1/+3
|
* s4-anr: check for allocation failure before useAndrew Tridgell2010-09-151-1/+1
|
* s4: Fix two typosVolker Lendecke2010-09-141-2/+2
|
* rpc_server: Remove unnecessary dependency on server modules, buildJelmer Vernooij2010-09-141-1/+1
| | | | system will take care of that.
* waf: work around circular dependency finder erroneously removing dependency ↵Jelmer Vernooij2010-09-141-1/+4
| | | | of gensec on dcerpc.
* s4-smbtorture: try to fix spoolss winreg Form tests on bigendian machines.Günther Deschner2010-09-141-15/+36
| | | | Guenther
* param: Add prototype for lpcfg_private_dir(), used by openchange.Jelmer Vernooij2010-09-141-0/+1
|
* s4:SID handling - always encode the SID using "ldap_encode_ndr_dom_sid" for ↵Matthias Dieter Wallnöfer2010-09-134-12/+16
| | | | | | LDAP filters This makes also lookups through special backends as "samba3sam" work.
* s4:cosmetic - the SID attribute is called objectSid - not objectSIDMatthias Dieter Wallnöfer2010-09-136-17/+17
|
* param: Only include param_proto.h for Samba builds, provide thoseJelmer Vernooij2010-09-132-1/+7
| | | | prototypes necessary for external users (OpenChange) manually.
* Revert "s4:samldb LDB module - simplify the message handling on add and ↵Matthias Dieter Wallnöfer2010-09-131-26/+33
| | | | | | | | | | modify operations" This reverts commit 1d94bb3ad4d9c6de3b77ed4690a54ebf2399cc0d. This commit causes unconditional behaviour (sometimes it works, sometimes not) -sorry for introducing this. I will rework this further.
* s4:samldb LDB module - remove a disastrous "talloc_free"Matthias Dieter Wallnöfer2010-09-121-2/+0
| | | | | This completely destroys the program logic (async callbacks). Sorry for introducing this.
* Revert "s4:util_samr.c - also here we've now the default primaryGroupID ↵Matthias Dieter Wallnöfer2010-09-121-1/+4
| | | | | | | | detection working" This reverts commit 7e9e35db4126f953e8a2579d992c63b274011119. Sorry, the logic is working differently here. We do still need this.
* s4:torture/rpc/samr.c - fix typos in outputsMatthias Dieter Wallnöfer2010-09-121-7/+7
|
* s4:util_samr.c - also here we've now the default primaryGroupID detection ↵Matthias Dieter Wallnöfer2010-09-121-4/+1
| | | | working
* s4:ldap.py - tests the primary group detection by the "userAccountControl"Matthias Dieter Wallnöfer2010-09-121-2/+47
|
* s4:setup/provision_self_join.ldif - now the samldb LDB module detects ↵Matthias Dieter Wallnöfer2010-09-121-1/+0
| | | | automatically that this is a DC account
* s4:samldb LDB module - "samldb_check_primaryGroupID" - support RID ↵Matthias Dieter Wallnöfer2010-09-121-1/+5
| | | | | | derivation from "userAccountControl" Specified in MS-SAMR 3.1.1.8.1 and probably fixes also bug #7441.
generated by cgit (git 2.34.1) at 2024-09-29 09:24:45 +0000