Stefan Metzmacher [Mon, 26 Apr 2010 11:39:36 +0000 (13:39 +0200)]
s4:rpc_server: remove 'socket_address' based functions
metze
Stefan Metzmacher [Mon, 26 Apr 2010 11:27:51 +0000 (13:27 +0200)]
s4:rpc_server/srvsvc: pass tsocket_address to the ntvfs layer
metze
Stefan Metzmacher [Mon, 26 Apr 2010 11:22:01 +0000 (13:22 +0200)]
s4:rpc_server/spoolss: use tsocket_address in dcesrv_spoolss_check_server_name()
metze
Stefan Metzmacher [Mon, 26 Apr 2010 11:18:41 +0000 (13:18 +0200)]
s4:rpc_server/netlogon: use tsocket_address in dcesrv_netr_DsRGetDCNameEx2()
metze
Stefan Metzmacher [Mon, 26 Apr 2010 11:06:07 +0000 (13:06 +0200)]
s4:rpc_server: remember the local and remote address
metze
Stefan Metzmacher [Mon, 26 Apr 2010 11:56:06 +0000 (13:56 +0200)]
s4:service_named_pipe: use the passed client and server addresses
This gives the rpc server code the correct client and server
ip addresses for ncacn_np.
metze
Stefan Metzmacher [Tue, 27 Apr 2010 08:22:25 +0000 (10:22 +0200)]
s4:cldap_server: allow src_address = NULL in fill_netlogon_samlogon_response()
If we don't have the client address, we assume it's a local call,
maybe ncalrpc.
metze
Stefan Metzmacher [Tue, 27 Apr 2010 08:21:28 +0000 (10:21 +0200)]
s4:dsdb/common: if we don't have the ip of the client return the server site as client site
metze
Stefan Metzmacher [Tue, 27 Apr 2010 08:41:46 +0000 (10:41 +0200)]
lib/tsocket: add tsocket_address_is_unix() function
metze
Stefan Metzmacher [Tue, 27 Apr 2010 08:34:15 +0000 (10:34 +0200)]
lib/tsocket: add tsocket_address_is_inet() function
metze
Andrew Tridgell [Tue, 27 Apr 2010 09:45:49 +0000 (19:45 +1000)]
s4-test: make spnupdate work without make install
thanks to metze for noticing this
Andrew Tridgell [Tue, 27 Apr 2010 08:38:47 +0000 (18:38 +1000)]
s4-provision: setup spn_update_list in provision
Andrew Tridgell [Tue, 27 Apr 2010 08:38:25 +0000 (18:38 +1000)]
s4-dns: install samba_spnupdate
Andrew Tridgell [Tue, 27 Apr 2010 08:38:04 +0000 (18:38 +1000)]
s4-dns: call spn update command alongside dns update
call samba_spnupdate at the same time as samba_spnupdate
Andrew Tridgell [Tue, 27 Apr 2010 08:37:12 +0000 (18:37 +1000)]
s4-param: added a "spn update command" option
used by SPN update code
Andrew Tridgell [Tue, 27 Apr 2010 08:25:55 +0000 (18:25 +1000)]
s4-dsdb: added samba_spnupdate
this script adds all our required servicePrincipalName entries at
runtime. The admin can add more entries to spn_update_list as needed
Andrew Tridgell [Tue, 27 Apr 2010 08:25:06 +0000 (18:25 +1000)]
s4-dns: explain what the file is for
Andrew Tridgell [Tue, 27 Apr 2010 08:24:52 +0000 (18:24 +1000)]
s4-dns: cope better with comments in dns_update_list
Andrew Bartlett [Tue, 20 Apr 2010 05:00:50 +0000 (15:00 +1000)]
s4:gensec Use a different form of 'name' in GSSAPI import_name()
The idea here is to make it not dependent on the system's default
realm.
Andrew Bartlett
Marcel Ritter [Thu, 22 Apr 2010 12:29:52 +0000 (14:29 +0200)]
Simple fix to prevent crash for non-pac principals
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Andrew Bartlett [Tue, 27 Apr 2010 03:57:39 +0000 (13:57 +1000)]
s4:kerberos Give a better error message than "Could not allocate memory"
Andrew Bartlett
Matthias Dieter Wallnöfer [Tue, 27 Apr 2010 06:19:10 +0000 (08:19 +0200)]
s4:kcc_periodic.c - fix counter types
We are counting LDB objects here -> therefore "unsigned"
Matthias Dieter Wallnöfer [Mon, 26 Apr 2010 18:19:36 +0000 (20:19 +0200)]
s4:wb_cmd_getdcname.c - fix s4 winbind up regarding the new correct "GetAnyDCName" behaviour
We get back "NO_SUCH_DOMAIN" when we query the PDC. This is fine and therefore
we use the "logon_server" variable as "dcname".
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 20:49:48 +0000 (22:49 +0200)]
s4:netr_DsRAddressToSitenames[Ex]W calls - implement them correctly with the client site information
This behaviour should be similar to the one of Windows Server (in my case 2008)
Matthias Dieter Wallnöfer [Tue, 27 Apr 2010 06:08:42 +0000 (08:08 +0200)]
Revert "s4:netr_DsRAddressToSitenames[Ex]W calls - implement them correctly with the client site information"
This reverts commit
908d982980846257b65ab576d31131e8793e9399.
I need to merge the improved version of this commit.
Matthias Dieter Wallnöfer [Tue, 27 Apr 2010 06:07:19 +0000 (08:07 +0200)]
Revert "s4-netlogon: fixed breakage of dcesrv_netr_GetAnyDCName in sites patch"
This reverts commit
e88a54a87e185b44e2d216bd853e6a87bf950be6.
This isn't the correct behaviour. See MS-NRPC documentation under the
"GetAnyDCName" section.
Andrew Tridgell [Tue, 27 Apr 2010 05:02:29 +0000 (15:02 +1000)]
s4-libnet: cope with an empty client site name from CLDAP
We fall back to the server site name in a vampire
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Tue, 27 Apr 2010 04:25:14 +0000 (14:25 +1000)]
s4-netlogon: fixed breakage of dcesrv_netr_GetAnyDCName in sites patch
We should respond when we are the PDC
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Matthias Dieter Wallnöfer [Wed, 21 Apr 2010 17:30:37 +0000 (19:30 +0200)]
s4:knownfail - remove tests which should pass
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Wed, 21 Apr 2010 15:54:06 +0000 (17:54 +0200)]
s4:netlogon RPC server - we don't need "are we DC" proofs
When we aren't a DC we shouldn't have the netlogon pipe available.
[MS-NRPC 1.3] says that we can only have DCs on the server side.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Thu, 22 Apr 2010 08:37:45 +0000 (10:37 +0200)]
s4:torture - DsRGetDcSiteCoverageW - adapt test to check for the sitename
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Thu, 22 Apr 2010 08:28:37 +0000 (10:28 +0200)]
s4:dcesrv_netr_DsrGetDcSiteCoverageW - provide a basic implementation
Does for now only return DC's primary site.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Wed, 21 Apr 2010 17:13:11 +0000 (19:13 +0200)]
s4:torture - DsRGetSiteName - move "skip" statement before the "computer_name" check
We don't support the check for the computer name on the RPC server side.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Sun, 18 Apr 2010 17:01:18 +0000 (19:01 +0200)]
s4:dcesrv_netr_DsRGetSiteName - provide an implementation according to the MS-NRPC docs
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Tue, 20 Apr 2010 14:59:48 +0000 (16:59 +0200)]
s4:torture - GetAnyDCName - adaptions
- Check for the various domainname set modes (on NULL and "" the domain should
be the default domain on the server)
- support return value "WERR_NO_SUCH_DOMAIN" (the server is the PDC of the
domain)
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Sun, 18 Apr 2010 13:02:06 +0000 (15:02 +0200)]
s4:dcesrv_netr_GetAnyDCName - improve the call according to the MS-NRPC documentation
This implementation checks if the domainname is valid for us or a trusted domain.
Then I've also added the PDC location functionality. That means that we should
return "WERR_NO_SUCH_DOMAIN" (MS-NRPC 3.5.5.2.5).
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Wed, 21 Apr 2010 19:39:20 +0000 (21:39 +0200)]
s4:torture - DsRAddressesToSitenames - enhance the testsuite
This shows the Windows behaviour of these two calls which we should match.
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 20:49:48 +0000 (22:49 +0200)]
s4:netr_DsRAddressToSitenames[Ex]W calls - implement them correctly with the client site information
This behaviour should be similar to the one of Windows Server (in my case 2008)
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Sun, 11 Apr 2010 11:17:05 +0000 (13:17 +0200)]
s4:CLDAP server - make use of the new "samdb_client_site_name" call
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Matthias Dieter Wallnöfer [Tue, 13 Apr 2010 16:28:53 +0000 (18:28 +0200)]
s4:util - add a function which finds the matching client site using the client address
The lookup of the client site is done using the subnets in the configuration
partition. If no one matches we use the Windows Server fallback mechansim.
This means: if only one site is available just use it. If they're more set the
output variable to "".
Signed-off-by: Andrew Tridgell <tridge@samba.org>
Andrew Tridgell [Tue, 27 Apr 2010 02:18:02 +0000 (12:18 +1000)]
s4-drsdevel: support sites in drs developer scripts
Andrew Tridgell [Tue, 27 Apr 2010 02:17:36 +0000 (12:17 +1000)]
s4-vampire: show main CLDAP response attributes during vampire
Andrew Tridgell [Tue, 27 Apr 2010 02:17:08 +0000 (12:17 +1000)]
s4-repl: added a workaround for WERR_DS_DRA_NO_REPLICA DsReplicaSync errors
The 0xc0002104/WERR_DS_DRA_NO_REPLICA seems to be spurious, and can be
avoided by setting DRSUAPI_DRS_SYNC_ALL in the DsReplicaSync request.
We need to investigate this further, and find out from MS why this is
sometimes being sent, even when the target DC has the right repsFrom
entries
Jeremy Allison [Tue, 27 Apr 2010 04:36:01 +0000 (21:36 -0700)]
Correctly report share types (now Win7 makes RPC calls against us).
Jeremy.
Jeremy Allison [Tue, 27 Apr 2010 03:11:59 +0000 (20:11 -0700)]
Plumb in get_nt_acl into SMB2.
Jeremy.
Andrew Tridgell [Tue, 27 Apr 2010 01:01:12 +0000 (11:01 +1000)]
s4-dns: fixed dc.dc duplication in DNS update list
Andrew Tridgell [Mon, 26 Apr 2010 13:21:10 +0000 (23:21 +1000)]
s4-drs: add entries to repsTo based on calculated repsFrom
This is based on the documentation: "the KCC will automatically create
the Reps-To attributes on destination DSAs based on other DSAs
Reps-From entries."
Andrew Tridgell [Mon, 26 Apr 2010 12:51:11 +0000 (22:51 +1000)]
s4-drepl: don't setup a repsFrom from a DC that isn't a master for a NC
use hasMasterNCs to see what NCs we should be pulling from each DC
Andrew Tridgell [Mon, 26 Apr 2010 11:49:37 +0000 (21:49 +1000)]
s4-getncchanges: honor DRSUAPI_DRS_REF_GCSPN
this is an alternative way of establishing repsTo
Andrew Tridgell [Mon, 26 Apr 2010 11:49:06 +0000 (21:49 +1000)]
s4-repl: these messages are common, and don't deserve debug level 1
getting older attributes is quite common
Andrew Tridgell [Mon, 26 Apr 2010 11:48:29 +0000 (21:48 +1000)]
s4-repl: on a failed request, clear the current ptr
this prevents the queue being stuck on failure
Andrew Tridgell [Mon, 26 Apr 2010 11:48:06 +0000 (21:48 +1000)]
s4-repl: end repl request when not doing an UpdateRefs
otherwise the queue is stuck forever
Andrew Tridgell [Mon, 26 Apr 2010 11:47:29 +0000 (21:47 +1000)]
s4-repl: don't delete repsTo entry on DsReplicaSync
we rely on the highestUSN counters instead. W2K8 does not resend
DsUpdateRefs each time, and the WSPP docs do not indicate that repsTo
should be deleted
Jelmer Vernooij [Mon, 26 Apr 2010 21:50:16 +0000 (23:50 +0200)]
s3-build: Remove --enable-merged support.
Günther Deschner [Mon, 26 Apr 2010 20:09:00 +0000 (22:09 +0200)]
s4: remove unused rap.h.
Guenther
Günther Deschner [Mon, 26 Apr 2010 13:48:50 +0000 (15:48 +0200)]
s3: remove unused rap.h.
Guenther
Günther Deschner [Mon, 26 Apr 2010 20:09:44 +0000 (22:09 +0200)]
s4: fix some build warnings.
Guenther
Günther Deschner [Mon, 26 Apr 2010 20:09:21 +0000 (22:09 +0200)]
s3: fix some build warnings.
Guenther
Günther Deschner [Mon, 26 Apr 2010 13:42:47 +0000 (15:42 +0200)]
s3: use generated rap header.
Guenther
Günther Deschner [Mon, 26 Apr 2010 13:41:17 +0000 (15:41 +0200)]
s4: use generated rap header.
Guenther
Günther Deschner [Mon, 26 Apr 2010 11:23:03 +0000 (13:23 +0200)]
s3: re-run make samba3-idl and add generated header file.
Guenther
Günther Deschner [Mon, 26 Apr 2010 11:19:56 +0000 (13:19 +0200)]
rap: add rap idl.
Guenther
Günther Deschner [Mon, 26 Apr 2010 20:06:47 +0000 (22:06 +0200)]
s4: rename RAP share_enum_info to share_info.
Guenther
Jeremy Allison [Mon, 26 Apr 2010 19:29:03 +0000 (12:29 -0700)]
When walking the SMB2 requests queue, ensure the request is still "in flight"
before examining the details.
SMB2 requests stay on the queue until their out.vector has been
send, only then are they talloc_free'd.
Thanks for Ira Cooper <ira@wakeful.net> for giving me the
backtrace showing this.
Jeremy.
Jeremy Allison [Mon, 26 Apr 2010 17:54:33 +0000 (10:54 -0700)]
Fix crash when rescheduling oplock open.
Jeremy.
Volker Lendecke [Mon, 26 Apr 2010 14:44:34 +0000 (16:44 +0200)]
s3: Implement "net rpc user setprimarygroup"
Andrew Tridgell [Mon, 26 Apr 2010 05:46:37 +0000 (15:46 +1000)]
s4-ddb: don't create partitions with the UNINSTANT flag set
these partitions and not on the server we are replicating from. Also
check for deleted partitions.
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Mon, 26 Apr 2010 06:44:44 +0000 (16:44 +1000)]
s4-drs: allow getncchanges requests to non WRIT_REP partitions for extended ops
Needed for RID allocation
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Mon, 26 Apr 2010 07:02:25 +0000 (17:02 +1000)]
s4-drs: don't send uninstantiated objects in getncchanges
This includes deleted partitions
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Mon, 26 Apr 2010 08:43:46 +0000 (18:43 +1000)]
s4-drepl: don't send an UpdateRefs unless its a plain replication
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Mon, 26 Apr 2010 09:04:33 +0000 (19:04 +1000)]
build: cope with realname for install of non-python libs
this fixes the install of mit_samba.so
Andrew Tridgell [Mon, 26 Apr 2010 04:39:15 +0000 (14:39 +1000)]
s4-drs: make links to foreign partitions non-fatal
DN links outside the set of partitions we are replication should be
allowed.
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Andrew Tridgell [Mon, 26 Apr 2010 03:24:10 +0000 (13:24 +1000)]
build: automatically run autogen-waf.sh when needed
Andrew Tridgell [Mon, 26 Apr 2010 01:12:05 +0000 (11:12 +1000)]
s4-heimdalbuild: remove LIBNETIF dependency from HEIMDAL_GSSAPI
this avoids the s3compat layer from getting duplicate interfaces code
Andrew Tridgell [Mon, 26 Apr 2010 01:11:21 +0000 (11:11 +1000)]
build: normalise paths in unique source checking
Andrew Tridgell [Sun, 25 Apr 2010 11:00:44 +0000 (21:00 +1000)]
build: a library is only empty if it has no deps
Andrew Tridgell [Sun, 25 Apr 2010 02:58:52 +0000 (12:58 +1000)]
build: use option_group() not add_option_group()
option_group() ensures we don't end up with duplicate groups
Andrew Tridgell [Sun, 25 Apr 2010 02:41:41 +0000 (12:41 +1000)]
build: cope with duplicates in source lists
Volker Lendecke [Sun, 25 Apr 2010 09:42:44 +0000 (11:42 +0200)]
s3: async_domain_request is no longer used
Volker Lendecke [Sun, 25 Apr 2010 09:40:30 +0000 (11:40 +0200)]
s3: Convert add_trusted_domains() to wb_domain_request_send()
Volker Lendecke [Sun, 25 Apr 2010 08:36:58 +0000 (10:36 +0200)]
s3: Simplify trustdom_state
Don't store information explicitly as boolean flags that can be easily
retrieved from the domain when it's actually needed.
Volker Lendecke [Sun, 25 Apr 2010 08:25:55 +0000 (10:25 +0200)]
s3: Make "struct trustdom_state" its own talloc context
Volker Lendecke [Sun, 25 Apr 2010 08:15:43 +0000 (10:15 +0200)]
libwbclient: Talloc is no longer used
Stefan Metzmacher [Sat, 24 Apr 2010 17:36:01 +0000 (19:36 +0200)]
Revert "tsocket: not all systems have IPV6_V6ONLY"
This reverts commit
63fc3978089df403d7e63462593784ff3d05e6e7.
We now don't support IPv6 when IPV6_V6ONLY isn't available,
as we rely on the behavior.
metze
Stefan Metzmacher [Sat, 24 Apr 2010 11:07:50 +0000 (13:07 +0200)]
lib/replace/wscript: make sure IPV6_V6ONLY is available for IPv6 support
We really on IPV6_V6ONLY being supported.
metze
Stefan Metzmacher [Sat, 24 Apr 2010 11:07:50 +0000 (13:07 +0200)]
lib/replace: make sure IPV6_V6ONLY is available for IPv6 support
We really on IPV6_V6ONLY being supported.
metze
Stefan Metzmacher [Sat, 24 Apr 2010 17:28:48 +0000 (19:28 +0200)]
lib/replace/wscript: add replacement for IPV6_V6ONLY on linux systems with broken headers
This is needed on SLES8.
metze
Stefan Metzmacher [Sat, 24 Apr 2010 17:02:22 +0000 (19:02 +0200)]
lib/replace: add replacement for IPV6_V6ONLY on linux systems with broken headers
This is needed on SLES8.
metze
Stefan Metzmacher [Sat, 24 Apr 2010 16:10:37 +0000 (18:10 +0200)]
buildtools/wafsamba: inline defines during configure into the tests
There 2 reasons for this change:
- This is how autoconf tests work and it makes config.log much more useful
- The waf c preprocessor ignored changes in bin/default/__confdefs.h when using
waf configure -C, because is outside of the configure tests project path
and handled like a system header.
Many thanks to ita for pointing out the fix.
metze
Stefan Metzmacher [Sat, 24 Apr 2010 18:02:44 +0000 (20:02 +0200)]
buildtools/wafsamba: make sure we create bin/default/ before trying to create symlinks in it
metze
Matthieu Patou [Fri, 23 Apr 2010 13:27:05 +0000 (17:27 +0400)]
s4 dns: Allow to specify static grant entries to be added to the dynamicaly generated named.conf.update
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Tim Potter [Sat, 24 Apr 2010 01:04:32 +0000 (11:04 +1000)]
s4-smbd: Fix compiler warning in prefork smbd.
My first patch in a while...
Tim.
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Stefan Metzmacher [Fri, 23 Apr 2010 06:11:44 +0000 (08:11 +0200)]
lib/zlib/wscript: fix system zlib detection
metze
Volker Lendecke [Sat, 24 Apr 2010 10:40:10 +0000 (12:40 +0200)]
Revert "nsswitch: Fix a memleak in wbinfo"
This reverts commit
a97f2a0a9c0f1c148a0152202296bb078103b40c.
This was not a memleak, it was a valgrind false positive. We store "details" in
a static.
Volker Lendecke [Sat, 24 Apr 2010 09:11:45 +0000 (11:11 +0200)]
s3: sendto_domain() is lo longer used
Volker Lendecke [Sat, 24 Apr 2010 08:49:06 +0000 (10:49 +0200)]
s3: Simplify (bool != True) to !bool
Jeremy Allison [Sat, 24 Apr 2010 07:29:41 +0000 (00:29 -0700)]
Implement oplocks within SMB2. Plumb into the existing SMB1 oplock system.
Seems to work but needs more tests (to be added).
Jeremy.
Jeremy Allison [Fri, 23 Apr 2010 22:35:34 +0000 (15:35 -0700)]
When sending the initial async response, this is never part of a chain.
Get the reply flags correct.
Jeremy.
Jeremy Allison [Fri, 23 Apr 2010 22:34:58 +0000 (15:34 -0700)]
Don't free the entire tevent_req on cancel, only the part we need (the immediate event).
Jeremy.
Volker Lendecke [Fri, 23 Apr 2010 17:46:03 +0000 (19:46 +0200)]
libwbclient: Test WBC_CHANGE_PASSWORD_LEVEL_RESPONSE