Stefan Metzmacher [Wed, 16 Jun 2010 11:43:38 +0000 (13:43 +0200)]
s4:lib: merge LDB_WRAP and LDBSAMBA and make LDBSAMBA a library.
This is needed to remove samba specifc symbols from the bundled
ldb, in order to get the ABI right.
metze
Signed-off-by: Andreas Schneider <asn@samba.org>
Günther Deschner [Wed, 16 Jun 2010 09:03:31 +0000 (11:03 +0200)]
s4-smbtorture: only pull info when status code indicates success in smbcli_rap_netprintqgetinfo().
Guenther
Günther Deschner [Wed, 16 Jun 2010 10:18:32 +0000 (12:18 +0200)]
Revert "s4-smbtorture: only pull info when status code indicates success in smbcli_rap_netprintqgetinfo()."
This reverts commit
1f1c04010a55e67d8dc2110276eed4cf2a8a0afa.
Günther Deschner [Wed, 16 Jun 2010 10:07:43 +0000 (12:07 +0200)]
pidl: make sure to fill in cli->pipes_struct->hdr_req.opnum in s3 server dispatch tables.
Guenther
Günther Deschner [Wed, 16 Jun 2010 09:04:34 +0000 (11:04 +0200)]
s3-lanman: Fix return code for "" printqname in api_DosPrintQGetInfo().
Guenther
Günther Deschner [Wed, 16 Jun 2010 09:04:12 +0000 (11:04 +0200)]
s4-smbtorture: test smbcli_rap_netprintqgetinfo() with "" printqname.
Guenther
Günther Deschner [Wed, 16 Jun 2010 09:03:31 +0000 (11:03 +0200)]
s4-smbtorture: only pull info when status code indicates success in smbcli_rap_netprintqgetinfo().
Guenther
Günther Deschner [Fri, 11 Jun 2010 09:24:06 +0000 (11:24 +0200)]
s3-printing: add BUILTIN\Print Operators as FULL CONTROL to default sd.
Guenther
Andreas Schneider [Wed, 16 Jun 2010 09:44:36 +0000 (11:44 +0200)]
s3-spoolss: Provide a memory context for clean_up_driver_struct().
If we use a stack variable to setup spoolss_AddDriverInfoCtr this would
segfault with a talloc bad magic value.
Andrew Bartlett [Wed, 16 Jun 2010 02:01:10 +0000 (12:01 +1000)]
s4:dsdb Allow renames with (now removed) linked attributes
It is important to allow the rename, even if we just have one-way
links, as this happens on deleted objects, which have the backlinks
alredy removed by repl_meta_data.
Andrew Bartlett
Andrew Bartlett [Tue, 15 Jun 2010 23:16:05 +0000 (09:16 +1000)]
s4:selftest Change domain name for functional level 2000 DC
Andrew Bartlett [Tue, 15 Jun 2010 13:01:51 +0000 (23:01 +1000)]
s4:libnet Remove 'ads min function level' checks.
We support Windows 2000 native now.
Andrew Bartlett
Andrew Bartlett [Tue, 15 Jun 2010 12:57:14 +0000 (22:57 +1000)]
s4:dsdb Fix linked_attributes to cope with the Feb 2010 changes to DLIST
The DLIST macros changed in behaviour in Feb 2010, and walking the
lists backwards is no longer safe if you don't use the macros.
Andrew Bartlett
Andrew Bartlett [Tue, 15 Jun 2010 12:26:22 +0000 (22:26 +1000)]
s4:dsdb Assert that we can't get backlinks as input in linked_attributes
The objectclass_attr module should prevent users creating such links,
and the mrepl_meta_data module should only create them in functional
level 2003 or above.
Andrew Bartlett
Andrew Bartlett [Tue, 15 Jun 2010 12:24:36 +0000 (22:24 +1000)]
s4:selftest Add test environment for functional level 2000
This required that we pass the name of the realm down as a parameter,
so we can start up two different realms.
Andrew Bartlett
Andrew Bartlett [Tue, 15 Jun 2010 10:45:25 +0000 (20:45 +1000)]
s4:provision Add import for DS_DOMAIN_FUNCTION_2000
Andrew Bartlett [Tue, 15 Jun 2010 09:52:58 +0000 (19:52 +1000)]
s4:provision Allow functional level 2000 to be chosen
Andrew Bartlett [Thu, 11 Mar 2010 23:36:12 +0000 (10:36 +1100)]
s4:selftest Add vampire_dc test environment
This starts a domain controller, after running 'net vampire' to
populate it. We don't use it as the 'all' environment yet, as the
rest of the code isn't quite ready to handle it.
Andrew Bartlett
Andrew Bartlett [Mon, 14 Jun 2010 05:50:13 +0000 (15:50 +1000)]
s4:dsdb use dsdb_module_modify() rather than ldb_next_request()
This does exactly the same thing, but with less code.
Andrew Bartlett
Andrew Bartlett [Sun, 13 Jun 2010 05:54:23 +0000 (15:54 +1000)]
s4:dsdb Handle backlinks for Windows 2000 level linked attributes
This revives the code from
5964acfa741d691c0196f91c0796122ec025f177,
before tridge and I simplified this too much, and removed the Windows
2000 functional level linked attribute support.
By telling the linked_attributes module that repl_meta_data has
handled the links, we avoid a conflict for the new style (functional
level 2003 and above) linked attributes. However, we still need
backlinks for 2000 style linked attributes, so this allows that code
in the linked_attributes module to be revived to handle those.
Andrew Bartlett
Andrew Bartlett [Mon, 14 Jun 2010 05:30:36 +0000 (15:30 +1000)]
s4:dsdb Add control for signaling between repl_meta_data and linked_attributes
This control will allow the linked_attributes module to know if
repl_meta_data has already handled the creation of forward and back
links.
Andrew Bartlett
Jeremy Allison [Tue, 15 Jun 2010 22:33:44 +0000 (15:33 -0700)]
Remove unused function.
Jelmer Vernooij [Tue, 15 Jun 2010 22:00:01 +0000 (00:00 +0200)]
waf: Fix installation of pidl manapges.
Aravind Srinivasan [Tue, 15 Jun 2010 18:21:34 +0000 (11:21 -0700)]
s4 torture: RAW-SEARCH: break out some of the old search levels
* Added two new parameters: raw_search_search and raw_ea_size which
can be enabled/disabled based on whether the server supports
RAW_SEARCH_SEARCH and/or RAW_SEARCH_EA_SIZE levels
* Skip unsupported levels from the server and give a warning rather
than failing.
Signed-off-by: Tim Prouty <tprouty@samba.org>
Tim Prouty [Mon, 14 Jun 2010 23:50:29 +0000 (16:50 -0700)]
s4 torture: RAW-SEARCH: Only test supported info levels
Jelmer Vernooij [Tue, 15 Jun 2010 18:52:01 +0000 (20:52 +0200)]
s4-waf: Fix build of libldb_ildap against system ldb.
Jelmer Vernooij [Tue, 15 Jun 2010 18:35:22 +0000 (20:35 +0200)]
wafsamba: Fix include path inheritance from module subsystems.
Jelmer Vernooij [Tue, 15 Jun 2010 14:38:15 +0000 (16:38 +0200)]
dcerpc-samr: Fix library name.
Jelmer Vernooij [Mon, 14 Jun 2010 00:15:32 +0000 (02:15 +0200)]
Attempt to fix SamDB test infrastructure (not used in Samba anywhere, only in OpenChange).
Jelmer Vernooij [Tue, 15 Jun 2010 11:12:23 +0000 (13:12 +0200)]
ldb: Bump version number, use same ABI version for Samba4 and non-Samba 4 versions.s
Jelmer Vernooij [Tue, 15 Jun 2010 00:46:16 +0000 (02:46 +0200)]
ldb: Fix included ldb build.
Jelmer Vernooij [Mon, 14 Jun 2010 23:35:42 +0000 (01:35 +0200)]
wafsamba: Fix filenames for ldb modules.
Jelmer Vernooij [Mon, 14 Jun 2010 23:24:20 +0000 (01:24 +0200)]
wafsamba: Fix building of modules as shared libraries.
Jelmer Vernooij [Mon, 14 Jun 2010 23:00:40 +0000 (01:00 +0200)]
wafsamba: Improve assertion error message to include the module.
Jelmer Vernooij [Mon, 14 Jun 2010 22:59:49 +0000 (00:59 +0200)]
ldb: Only build standard ldb modules when building bundled ldb.
Jelmer Vernooij [Mon, 14 Jun 2010 22:55:03 +0000 (00:55 +0200)]
dsdb: Fix includes when building against system ldb.
Jelmer Vernooij [Thu, 10 Jun 2010 11:02:59 +0000 (13:02 +0200)]
wafsamba: Only add init function if not building module as shared library.
Jelmer Vernooij [Wed, 2 Jun 2010 11:37:15 +0000 (13:37 +0200)]
dsdb: Build modules as external modules when using system ldb.
Jelmer Vernooij [Tue, 1 Jun 2010 11:28:50 +0000 (13:28 +0200)]
ldb-samba: Add missing dependency on credentials code.
Günther Deschner [Tue, 15 Jun 2010 09:43:30 +0000 (11:43 +0200)]
s3-waf: fix the build.
Guenther
Andrew Bartlett [Mon, 14 Jun 2010 03:19:43 +0000 (13:19 +1000)]
s4:dsdb Move linked attribute restrictions to objectclass_attrs
This puts more of the schema restrictions in one place.
Andrew Bartlett
Andrew Bartlett [Mon, 14 Jun 2010 03:27:59 +0000 (13:27 +1000)]
s4:dsdb Add const to dsdb_dn functions that operate on an ldb_val.
Andrew Bartlett
Andrew Bartlett [Tue, 15 Jun 2010 00:20:37 +0000 (10:20 +1000)]
s4:selftest Remove unused basedn specification in selftest env setup
Andrew Bartlett [Sat, 12 Jun 2010 03:24:57 +0000 (13:24 +1000)]
s4:selftest Remove becomedc tests from knownfail, these should now pass
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Andrew Bartlett [Sat, 12 Jun 2010 01:05:47 +0000 (11:05 +1000)]
s4:dsdb Rework the vampire schema handling to convert 3 times.
This seems like a lot of duplicate work, but by the end we should
have, in normal LDB format, the remote DRS schema, having bootstrapped
it with the locally loaded schema.
The multiple steps are to resolve the problems with references to
schema items that we don't 'yet' know about.
Andrew Bartlett
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Andrew Bartlett [Thu, 10 Jun 2010 11:33:45 +0000 (21:33 +1000)]
s4:provision Allow a specific prefix map to be loaded into a new schema provision
This allows the prefixMap from a DRS server to be used when loading
the schema from the local files. This helps us then import other
schema with this map in place.
Andrew Bartlett
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Andrew Bartlett [Wed, 9 Jun 2010 11:53:01 +0000 (21:53 +1000)]
s4:dsdb Keep the DRS-based prefix map for use in provision-based schema
We need to use the remote prefix map for the provision schema, or else
we can't decode new, non-standard attributes into OIDs. Then once we
decode that schema, we can try again and get them properly translated.
Andrew Bartlett
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Andrew Bartlett [Wed, 9 Jun 2010 10:52:02 +0000 (20:52 +1000)]
s4:dsdb Allow the setting an override on the schema
The change here is to try and convert a per the previous rules, but if
we don't know a particular OID as a attributeID, then store it as an
OID (for example). This allows known values to be converted as
before, but still copes with unknown values.
Andrew Bartlett
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Andrew Bartlett [Wed, 9 Jun 2010 08:57:52 +0000 (18:57 +1000)]
s4:dsdb Use the schema from our local provision to decode the schema
This works on the assumption that the schema partition can only
contain schema objects.
We may need to pass down some kind of 'relax' to the DRS -> LDB
conversion code, so that it allows incomplete conversions, so that we
don't fail if a new attribute is present, and we can't decode it.
This would then be resolved the second time we do the conversion.
Andrew Bartlett
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Andrew Bartlett [Sat, 12 Jun 2010 07:24:26 +0000 (17:24 +1000)]
s4:torture Rework NET-API-BECOMEDC test to use libnet_vampire callbacks.
The libnet_vampire code was derived from this code in the first place,
but has continued to evolve, while this code has often bitrotted.
This avoids the needless duplication of the callbacks, while keeping
the toture wrapper.
Andrew Bartlett
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Andrew Bartlett [Sat, 12 Jun 2010 07:23:32 +0000 (17:23 +1000)]
s4:libnet Steal ldb and lp_ctx from python result into correct structures.
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Andrew Bartlett [Sat, 12 Jun 2010 07:22:20 +0000 (17:22 +1000)]
s4:libnet Make the libnet_vampire default callbacks non-static
These are intended to be called from the NET-API-BECOMEDC torture test
to avoid duplication of code.
Andrew Bartlett
Signed-off-by: Kamen Mazdrashki <kamenim@samba.org>
Zachary Loafman [Wed, 18 Nov 2009 00:21:44 +0000 (00:21 +0000)]
s4 torture: RAW-WRITE should check lockread_supported
Signed-off-by: Tim Prouty <tprouty@samba.org>
Jeremy Allison [Mon, 14 Jun 2010 23:58:15 +0000 (16:58 -0700)]
SMB2 correctness fix. As we've already returned the credits in an interim
response, don't add more in the final return.
Jeremy.
Jeremy Allison [Mon, 14 Jun 2010 22:55:19 +0000 (15:55 -0700)]
Fix warning messages about unused result of talloc_move. We're really talloc_steal'ing here.
Nadezhda Ivanova [Mon, 14 Jun 2010 12:12:00 +0000 (15:12 +0300)]
s4:Descriptor tests clean-up.
A bit of refactoring and modified the tests to use encrypted connection so that they pass against Windows unconditionally.
Andrew Kroeger [Sun, 13 Jun 2010 15:48:31 +0000 (10:48 -0500)]
s4:provision: Make gc._msdcs DNS entries A/AAAA records
When adding an additional DC as a GC server, the new DC attempts to register its
own gc._msdcs records. If the existing gc._msdcs record is a CNAME, BIND fails
the update with the message "attempt to add non-CNAME alongside CNAME ignored",
and the new DC is not registered as a GC server.
The A & AAAA record types for gc._msdcs have been verified against the DNS
server of a W2K8 DC.
Volker Lendecke [Mon, 14 Jun 2010 10:04:18 +0000 (12:04 +0200)]
s3: Make g_smb_perfcount_handlers static
Matthias Dieter Wallnöfer [Mon, 14 Jun 2010 09:41:32 +0000 (11:41 +0200)]
s4:SAMR server - cosmetic fix
Matthias Dieter Wallnöfer [Mon, 14 Jun 2010 09:30:27 +0000 (11:30 +0200)]
s4:SAMR server - on alias search operations do never use the domain DN as base dn
Aliases (especially in the "builtin" domain) are often domain-independant.
Volker Lendecke [Mon, 14 Jun 2010 09:10:16 +0000 (11:10 +0200)]
s3: Remove some dispensable ()
Jelmer Vernooij [Sun, 13 Jun 2010 18:52:47 +0000 (20:52 +0200)]
s4-waf: Fix installation of .so links for libraries that are not bundled but have a mangled name.
Jelmer Vernooij [Sun, 13 Jun 2010 17:55:53 +0000 (19:55 +0200)]
librpc: Install the right headers.
Jelmer Vernooij [Sun, 13 Jun 2010 17:39:20 +0000 (19:39 +0200)]
Support system talloc/tevent headers.
Jelmer Vernooij [Sun, 13 Jun 2010 17:35:48 +0000 (19:35 +0200)]
libgpo: Use system libraries if possible.
Jelmer Vernooij [Sun, 13 Jun 2010 17:21:17 +0000 (19:21 +0200)]
librpc: Fix netlogon.h file to install - not the torture one but the one
generated by pidl.
Jelmer Vernooij [Sun, 13 Jun 2010 17:21:02 +0000 (19:21 +0200)]
param/share: Use static prototypes.
Thomas Nagy [Mon, 24 May 2010 00:26:36 +0000 (02:26 +0200)]
Do not use headermap.txt for the header installation
Try to find the headers by searching on the filesystem. Warn when
a public header replacement cannot be found (talloc.h, ...).
Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
Matthias Dieter Wallnöfer [Sun, 13 Jun 2010 16:19:37 +0000 (18:19 +0200)]
s4:fix allocated control OIDs for "password_hash" LDB module
The password hash module controls overlapped others. Sorry, but the
"schema_samba4.ldif" hasn't been kept up-to-date.
Jelmer Vernooij [Sun, 13 Jun 2010 15:43:25 +0000 (17:43 +0200)]
s4-provision: Use logger in provision backends.
Jelmer Vernooij [Sun, 13 Jun 2010 14:38:24 +0000 (16:38 +0200)]
s4-test: Use smb.conf path set in environment rather than using
command-line options.
This is the first step towards supporting custom test runners.
Jelmer Vernooij [Sun, 13 Jun 2010 14:02:26 +0000 (16:02 +0200)]
Remove unused version options for subunitrun.
Jelmer Vernooij [Sun, 13 Jun 2010 13:57:44 +0000 (15:57 +0200)]
Friendlier message.
Jelmer Vernooij [Sun, 13 Jun 2010 13:32:41 +0000 (15:32 +0200)]
upgradeprovision: Use logging infrastructure.
Jelmer Vernooij [Sun, 13 Jun 2010 13:13:12 +0000 (15:13 +0200)]
upgrade: Properly cancel/commit transactions in a couple more places.
Jelmer Vernooij [Sun, 13 Jun 2010 13:05:50 +0000 (15:05 +0200)]
s4-python: Start using standard python logging infrastructure rather
than simple messaging callbacks.
Volker Lendecke [Sun, 13 Jun 2010 12:13:42 +0000 (14:13 +0200)]
Fix aio_read detection for -lrt
Volker Lendecke [Sun, 13 Jun 2010 13:17:31 +0000 (15:17 +0200)]
s3: Remove fsp_belongs_conn
check_open_fsp does exactly the same
Volker Lendecke [Sun, 13 Jun 2010 13:01:34 +0000 (15:01 +0200)]
s3: Remove some leftovers from macros
check_fsp and check_fsp_open used to be macros
Volker Lendecke [Sun, 13 Jun 2010 10:11:26 +0000 (12:11 +0200)]
s3: Remove the pointless PRINTERNAME macro
Volker Lendecke [Sun, 13 Jun 2010 10:07:37 +0000 (12:07 +0200)]
s3: Remove the pointless SERVICE macro
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 15:50:52 +0000 (17:50 +0200)]
s4:dcesrv_samr_GetGroupsForUser - return error code if a SID wasn't found
This shouldn't happen since SIDs are mandatory for security objects
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 15:45:14 +0000 (17:45 +0200)]
s4:dcesrv_samr_QueryGroupMember/GetMembersInAlias - unify the structure
Mostly cosmetic fixes
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 11:22:54 +0000 (13:22 +0200)]
s4:password_hash LDB module - this does really deactivate the MS LAN manager hash
Previously, only the conversion from cleartext to the LM hash was deactivated,
and not when the user specified it directly through "dBCSPwd".
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 11:22:22 +0000 (13:22 +0200)]
s4:password_hash LDB module - fix comment
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 10:17:33 +0000 (12:17 +0200)]
s4:torture - SAMR testsuite - now we do support "GetAliasMembership" as expected
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 10:14:59 +0000 (12:14 +0200)]
s4:dcesrv_samr_GetAliasMembership - provide a correct implementation
We could also have no valid SID specified at all and also then we have to
return an empty array with "NT_STATUS_OK". This shows the torture testsuite.
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 09:39:25 +0000 (11:39 +0200)]
s4:dcesrv_samr_EnumDomainGroups/Aliases - when we don't get a SID then the database is corrupted
Group/User/Alias entries do always have a SID (it's a mandatory attribute in the
SAM directory)!
Matthias Dieter Wallnöfer [Fri, 11 Jun 2010 22:06:36 +0000 (00:06 +0200)]
s4:dcesrv_samr_QueryAliasInfo - return "NT_STATUS_NO_SUCH_ALIAS" when it wasn't found
Matthias Dieter Wallnöfer [Fri, 11 Jun 2010 22:06:07 +0000 (00:06 +0200)]
s4:dcesrv_samr_QueryGroupInfo - make it more like "QueryAliasInfo"
Matthias Dieter Wallnöfer [Fri, 11 Jun 2010 21:59:12 +0000 (23:59 +0200)]
s4:dcesrv_samr_QueryUserInfo - minor fixes
Return "NT_STATUS_NO_SUCH_USER" when user account doesn't exist.
Matthias Dieter Wallnöfer [Fri, 11 Jun 2010 21:57:39 +0000 (23:57 +0200)]
s4:dcesrv_samr_QueryDomainInfo - allocate the "info" structure only when really needed
That means the allocation should move after the lookup (as it is on
"QueryUserInfo"). Return "NT_STATUS_NO_SUCH_DOMAIN" on an invalid domain.
Matthias Dieter Wallnöfer [Fri, 11 Jun 2010 21:44:46 +0000 (23:44 +0200)]
s4:dcesrv_samr_EnumDomainGroups - mostly small fixes
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 09:49:26 +0000 (11:49 +0200)]
s4:dcesrv_samr_EnumDomainAliases - return an empty array also when no entry was returned
Matthias Dieter Wallnöfer [Fri, 11 Jun 2010 21:42:14 +0000 (23:42 +0200)]
s4:dcesrv_samr_EnumDomainAliases - mostly small fixes
The biggest change consists in the implementation of the Windows Server
return size formula MIN(*r->out.num_entries, 1+(r->in.max_size/SAMR_ENUM_USERS_MULTIPLIER).
Matthias Dieter Wallnöfer [Fri, 11 Jun 2010 21:39:46 +0000 (23:39 +0200)]
s4:dcesrv_samr_EnumDomainUsers - make this call look more similar to "EnumDomainGroups" and "EnumDomainAliases"
That means that the lookup is now also done by "samdb_search_domain" to be more
consistent.
Matthias Dieter Wallnöfer [Sat, 12 Jun 2010 09:31:30 +0000 (11:31 +0200)]
s4:ldif_read_prefixMap - don't cause memory leaks on error conditions
Volker Lendecke [Sat, 12 Jun 2010 12:52:54 +0000 (14:52 +0200)]
s3: Remove smbd_server_conn from cancel_pending_lock_requests_by_fid_smb2
Volker Lendecke [Sat, 12 Jun 2010 12:52:09 +0000 (14:52 +0200)]
s3: Explicitly pass sconn to process_blocking_lock_queue_smb2
Volker Lendecke [Sat, 12 Jun 2010 12:50:08 +0000 (14:50 +0200)]
s3: Remove smbd_server_conn from push_blocking_lock_request_smb2