samba4 progress and roadmap
play

Samba4 Progress and Roadmap Andrew Tridgell tridge@osdl.org Please - PowerPoint PPT Presentation

Dec 16, 2023 •27 likes •197 views

Samba4 Progress and Roadmap Andrew Tridgell tridge@osdl.org Please ask questions during the talk! Samba4 Progress Samba4 has made a lot of progress in the last year now used in production by some brave soles most of core

  1. Samba4 Progress and Roadmap Andrew Tridgell tridge@osdl.org Please ask questions during the talk!

  2. Samba4 Progress ● Samba4 has made a lot of progress in the last year ● now used in production by some brave soles ● most of core infrastructure finished ● over 50% of code now auto-generated ● But still plenty to do .... ● admin tools almost completely lacking ● no printing support ● significant gaps in security ● lots of features from Samba3 still missing

  3. New Servers ● The last year has produced several new server components ● LDAP server ● built on top of ldb database ● no dependency on external libraries ● NBT server ● fast, event driven netbios server ● handles 20k operations/second ● DGRAM server ● modular architecture, IDL based ● WINS server ● very scalable! ● WINS replication support nearly finished

  4. New RPC servers ● Lots of progress in RPC servers too, building on the IDL based infrastructure ● SAMR server ● LSA server ● netlogon server ● winreg server ● DCOM server ● SRVSVC server ● WKSSVC server ● and the start of a DRSUAPI server

  5. New Client Libraries ● Modular and complete client libraries make test suites much easier to write ● libcli/nbt - a event driven NetBios client library ● libcli/dgram - for mailslot services ● libcli/ldap - our own LDAP client library ● libcli/resolve - a generic async name resolution library ● libcli/wins - an async WINS client library ● To combine them .... ● libnet - a composite library building on the other client libs

  6. New Infrastructure ● Lots of new infrastructure code! ● new talloc - a huge advance in memory management ● lib/events/ - a generic events system, making the async design possible ● composite functions - building blocks for state machines ● gensec - unifying the authentication problem ● Plus lots more .... ● internal messaging system, greatly improved build system, modules support for ldb, NT credentials and ACLs, privileges support etc etc

  7. New Functionality ● Many existing subsystems have been greatly expanded ● NTVFS now has a good quality posix backend ● RPC system now supports many new security modes, and features like multiple binds ● ncalrpc and ncacn_unix_stream transports for librpc and rpc_server ● NTVFS system now stackable and async ● new credentials system unifies command line credentials handling

  8. the rise of pidl ● Our IDL compiler, pidl, has changed a lot in the last year ● now capable of handling a wide range of non-traditional tasks ● support for DCOM, and increasing compatibility with Microsoft IDL ● support for auto generating ethereal modules ● IDL is now the norm for new subsystems ● the amount of IDL has doubled ● more than half our code is now generated from IDL

  9. ldb takes over from tdb ● Our “mini-LDAP” database, ldb, is now playing a central role in Samba4 ● now with a LDAP protocol server, not just LDAP-like API ● ldb modules system for clean extensions ● schema module for more LDAP-like checking ● integration with new talloc makes programming much simpler ● other projects are starting to notice ● interest from yum and dpkg developers to adopt ldb ● but still .... ● we need journaling and/or transactions!

  10. dsdb database ● We now have a SAM database (also called dsdb) ● hooked into our authentication infrastructure ● uses Active Directory attributes and structure ● hooked into our LSA, SAMR and NETLOGON servers ● Samba4 as a PDC ● WinXP sees us as a ADS domain controller ● NT4 can also join and login ● all user/group properties accessible via RPC, LDAP and ldb APIs

  11. what a domain looks like dn: DC=BLUDOM,DC=TRIDGELL,DC=NET objectClass: top objectClass: domain objectClass: domainDNS name: BLUDOM realm: BLUDOM.TRIDGELL.NET dnsDomain: bludom.tridgell.net dc: BLUDOM objectGUID: 35312d6b-58f1-1585-3aca-345bae202b3d creationTime: -1 forceLogoff: 0x8000000000000000 lockoutDuration: -18000000000 lockOutObservationWindow: -18000000000 lockoutThreshold: 0 whenCreated: 20050430065540.0Z uSNCreated: 1 uSNChanged: 1 maxPwdAge: -37108517437440 minPwdAge: 0 minPwdLength: 7 modifiedCountAtLastProm: 0 pwdProperties: 1 pwdHistoryLength: 24 objectSid: S-1-5-21-56816363-61624837-2430098 serverState: 1 nTMixedDomain: 1 msDS-Behavior-Version: 0 ridManagerReference: CN=RID Manager$,CN=System,DC=BLUDOM,DC=TRIDGELL,DC=NET uASCompat: 1 modifiedCount: 1 objectCategory: CN=Domain-DNS,CN=Schema,CN=Configuration,DC=BLUDOM,DC=TRIDGELL ,DC=NET isCriticalSystemObject: TRUE subRefs: CN=Configuration,DC=BLUDOM,DC=TRIDGELL,DC=NET subRefs: CN=Schema,CN=Configuration,DC=BLUDOM,DC=TRIDGELL,DC=NET nextRid: 1002 whenChanged: 20050430101651.0Z

  12. what a user now looks like dn: CN=tridge,CN=Users,DC=BLUDOM,DC=TRIDGELL,DC=NETobjectClass: top objectClass: person objectClass: organizationalPerson instanceType: 4 userAccountControl: 0x202 badPwdCount: 0 codePage: 0 countryCode: 0 badPasswordTime: 0 lastLogoff: 0 lastLogon: 0 pwdLastSet: 0 primaryGroupID: 513 accountExpires: -1 logonCount: 0 sAMAccountType: 0x30000000 sAMAccountName: tridge name: tridge objectSid: S-1-5-21-56816363-61624837-2430098-1001 objectGUID: e21ec6ac-17b7-7755-61a7-6a2dfa719f04 memberOf: CN=Domain Users,CN=Users,DC=BLUDOM,DC=TRIDGELL,DC=NET userAccountControl: 0x10200 sAMAccountType: 0x30000000 objectClass: user unixName: tridge

  13. Admin Tools ● A major missing piece is admin tools ● currently good infrastructure, difficult to administer ● extensive web interface needed ● needs to be much more complete than SWAT ● tab-based, pluggable structure ● each major subsystem will be hooked for monitoring ● using libnet for common operations ● net utility ● similar to Samba3 ● low level admin with ldb tools ● also based on libnet

  14. Missing Servers ● Several more server components have yet to be started ● CLDAP server needed for ADS compatibility ● Winbind server needed - and it needs to scale! ● spoolss server needed - we can't print yet! ● browse server for network neighbourhood operations ● RAP server for old clients ● These will take a lot of work, please be patient!

  15. kernel LSM module ● Samba4 NTVFS layer gives us NTFS on Posix ● not atomic ● not seen by Posix apps ● Solution? a LSM module ● LSM has all the right hooks ● can coherently cache xattr contents ● can map Posix ACLs to/from NT ACLs

  16. What about a release? ● The main questions are? ● When? ● What is vital for initial release? ● What can wait for later releases? ● Who will do what? ● For me, these questions are largely what SambaXP-05 is about

  17. Samba3 goes on! ● Samba3 is still our bread and butter ● our users expect a working solution, now! ● Samba4 is coming, but Samba3 must be maintained A huge thank you to the patient Samba3 maintainers for keeping Samba3 development and maintainence going!

Recommend

Samba4 A New Beginning Andrew Tridgell Samba Team Major Features The basic goals of

Samba4 A New Beginning Andrew Tridgell Samba Team Major Features The basic goals of

Samba4 A New Beginning Andrew Tridgell Samba Team Major Features The basic goals of Samba4 are quite ambitious, but achievable: protocol completeness extreme testability non-POSIX backends fully asynchronous internals

765 views • 19 slides
Samba4 Status - April 2004 Andrew Tridgell Samba Team Major Features The basic goals of

Samba4 Status - April 2004 Andrew Tridgell Samba Team Major Features The basic goals of

Samba4 Status - April 2004 Andrew Tridgell Samba Team Major Features The basic goals of Samba4 are quite ambitious, but achievable: protocol completeness extreme testability non-POSIX backends fully asynchronous internals

519 views • 22 slides
Variance to Progress Further into States COVID -19 19 Resilience Roadmap San Francisco

Variance to Progress Further into States COVID -19 19 Resilience Roadmap San Francisco

Variance to Progress Further into States COVID -19 19 Resilience Roadmap San Francisco Department of Bo Board of of Superv rvis isors brie riefing g Ju June 16, , 2020 Public Health The New Normal Balance competing

143 views • 10 slides
LTTng & Tools Roadmap LTTng & Tools Roadmap Content LTTng new and upcoming

LTTng & Tools Roadmap LTTng & Tools Roadmap Content LTTng new and upcoming

Progress Meeting, December 2017 LTTng & Tools Roadmap LTTng & Tools Roadmap Content LTTng new and upcoming features, release schedule, Babeltrace 2, Restartable Sequences, Membarrier system call LTTng & Tools

1.33k views • 16 slides
HERE AND NOW 2014 Operating Midyear Progress Report SEPTA Youth Advisory Council Roadmap

HERE AND NOW 2014 Operating Midyear Progress Report SEPTA Youth Advisory Council Roadmap

HERE AND NOW 2014 Operating Midyear Progress Report SEPTA Youth Advisory Council Roadmap Background & Logistics Executive Subcommittee Outreach & Education Operation & Service Evaluation Technology Director Conclusion Background

588 views • 21 slides
ASEAN ATFM Implementation: Progress and Roadmap ARISE Plus Workshop # 1 10 12 September 2018

ASEAN ATFM Implementation: Progress and Roadmap ARISE Plus Workshop # 1 10 12 September 2018

ASEAN ATFM Implementation: Progress and Roadmap ARISE Plus Workshop # 1 10 12 September 2018 Bangkok, Thailand Outline The Guidance: ASEAN ATM Master Plan The Project: Distributed Multi-Nodal ATFM The Road Forward: ASEAN ATFM

1.03k views • 40 slides
Human Exploration Systems and Mobility Capability Roadmap Progress Review Chris Culbert, NASA

Human Exploration Systems and Mobility Capability Roadmap Progress Review Chris Culbert, NASA

https://ntrs.nasa.gov/search.jsp?R=20050205039 2018-06-04T19:24:30+00:00Z Human Exploration Systems and Mobility Capability Roadmap Progress Review Chris Culbert, NASA Chair Jeff Taylor, External Chair March 29, 2005 1 Agenda

159 views • 13 slides
Human Planetary Landing System (HPLS) Capability Roadmap NRC Progress Review Rob Manning - NASA

Human Planetary Landing System (HPLS) Capability Roadmap NRC Progress Review Rob Manning - NASA

https://ntrs.nasa.gov/search.jsp?R=20050205032 2018-06-10T21:48:09+00:00Z Human Planetary Landing System (HPLS) Capability Roadmap NRC Progress Review Rob Manning - NASA Chair Dr. Harrison Schmitt - External Chair Claude Graves - NASA Deputy

624 views • 36 slides
LDB and the LDAP server in Samba4 Simo Sorce Samba Team idra@samba.org simo.sorce@quest.com

LDB and the LDAP server in Samba4 Simo Sorce Samba Team idra@samba.org simo.sorce@quest.com

LDB and the LDAP server in Samba4 Simo Sorce Samba Team idra@samba.org simo.sorce@quest.com http://www.samba.org/~idra What is LDB ? LDB is an LDAP-like database interface LDAP-like data model support LDAP like search expressions but it

1.03k views • 24 slides
January 29, 2014 Nebraska East Union Roadmap for Todays Conversation Fiscal outlook /

January 29, 2014 Nebraska East Union Roadmap for Todays Conversation Fiscal outlook /

ALL HANDS January 29, 2014 Nebraska East Union Roadmap for Todays Conversation Fiscal outlook / factors to watch Quick check on UNL strategic goals timelines and progress Welcoming new faculty! Roadmap for Todays

1.57k views • 133 slides
FIFE Roadmap Workshop Mike Kirby FIFE Roadmap Workshop Dec 5, 2017 FIFE Roadmap Workshop The

FIFE Roadmap Workshop Mike Kirby FIFE Roadmap Workshop Dec 5, 2017 FIFE Roadmap Workshop The

FIFE Roadmap Workshop Mike Kirby FIFE Roadmap Workshop Dec 5, 2017 FIFE Roadmap Workshop The goal of the roadmap discussion is to both inform experiments and gather feedback about strategic infrastructure changes and computing service

943 views • 63 slides
EfficiOS Projects Status Update and Roadmap jdesfossez@efcios.com

EfficiOS Projects Status Update and Roadmap jdesfossez@efcios.com

Progress Report Meeting, December 2016 EfficiOS Projects Status Update and Roadmap jdesfossez@efcios.com alexandre.montplaisir@efcios.com jonathan.rajotte-julien@efcios.com Content New LTTng Features (2016), Project updates for

585 views • 34 slides
Roadmap: Transition to College Professor Doug Szajda Roadmap, Fall 2017 Welcome This is my

Roadmap: Transition to College Professor Doug Szajda Roadmap, Fall 2017 Welcome This is my

Roadmap: Transition to College Professor Doug Szajda Roadmap, Fall 2017 Welcome This is my second Roadmap Course Its a great way to get to know my advisees, and have them get to know me One of the purposes of the Roadmap

469 views • 22 slides
Defining Encryption Lecture 2 1 Roadmap 2 Roadmap First, Symmetric Key Encryption 2 Roadmap

Defining Encryption Lecture 2 1 Roadmap 2 Roadmap First, Symmetric Key Encryption 2 Roadmap

Defining Encryption Lecture 2 1 Roadmap 2 Roadmap First, Symmetric Key Encryption 2 Roadmap First, Symmetric Key Encryption Defining the problem Well do it elaborately, so that it will be easy to see different levels of security 2

1.67k views • 136 slides
Progress Apama & Event Processing Mark Palmer, Vice President of Event Processing Agenda

Progress Apama & Event Processing Mark Palmer, Vice President of Event Processing Agenda

Progress Apama & Event Processing Mark Palmer, Vice President of Event Processing Agenda (based on Symposium Guidelines) Major Characteristics of the Progress Approach Usage Scenarios Major Trends & Roadmap for EP Major

577 views • 35 slides
E-Submission Roadmap Veterinary perspective Presented by Anne-Christine Lantin on 13 March 2015

E-Submission Roadmap Veterinary perspective Presented by Anne-Christine Lantin on 13 March 2015

E-Submission Roadmap Veterinary perspective Presented by Anne-Christine Lantin on 13 March 2015 An agency of the European Union Co-chair of the Vet e-Submission Harmonisation Group Agenda Update of progress along the road Where we

370 views • 13 slides
SOCIAL PROGRESS INDEX SOCIAL SOCIAL PROGRESS PROGRESS IMPERATIVE IMPERATIVE Social Progress

SOCIAL PROGRESS INDEX SOCIAL SOCIAL PROGRESS PROGRESS IMPERATIVE IMPERATIVE Social Progress

SOCIAL PROGRESS INDEX SOCIAL SOCIAL PROGRESS PROGRESS IMPERATIVE IMPERATIVE Social Progress Index #socialprogress 2 ADVISORY BOARD Judith Rodin Hernando de Soto Michael E. Porter, President, The Rockefeller President, Institute for Chair

429 views • 16 slides
A roadmap for geo-neutrinos: A roadmap for geo-neutrinos: theory and experiment theory and

A roadmap for geo-neutrinos: A roadmap for geo-neutrinos: theory and experiment theory and

Fabio Mantovani Siena University & INFN Ferrara A roadmap for geo-neutrinos: A roadmap for geo-neutrinos: theory and experiment theory and experiment arXiv:0707.3203 Summary Geo-neutrinos: a new Geo-neutrinos: a new probe of

674 views • 24 slides
IANR to 2017 to 2025 All Hands Meeting February 10, 2012 Nebraska East Union Roadmap for

IANR to 2017 to 2025 All Hands Meeting February 10, 2012 Nebraska East Union Roadmap for

IANR to 2017 to 2025 All Hands Meeting February 10, 2012 Nebraska East Union Roadmap for Conversation What has changed since September 16 th ? Updates on Nebraska Innovation Campus, Foundation Initiatives, New Talent Progress

1.22k views • 103 slides
PNGs Medium Term Revenue Strategy The roadmap for reforming PNGs taxation system and

PNGs Medium Term Revenue Strategy The roadmap for reforming PNGs taxation system and

PNGs Medium Term Revenue Strategy The roadmap for reforming PNGs taxation system and mobilising domestic revenue 1 PNG MTRS 2018-22 Overview of Presentation Background Reasons for Reform MTRS Implementation Progress

597 views • 18 slides
unification 2016 unification strategic roadmap succession unification strategic roadmap

unification 2016 unification strategic roadmap succession unification strategic roadmap

unification 2016 unification strategic roadmap succession unification strategic roadmap succession Board rd CE CEO Committe ttees unification strategic roadmap succession Global Member Value Centre Advocacy & Education

347 views • 30 slides
EfficiOS Projects Status Update and Roadmap jdesfossez@efcios.com alexmonthy@efcios.com

EfficiOS Projects Status Update and Roadmap jdesfossez@efcios.com alexmonthy@efcios.com

Progress Report Meeting, May 2017 EfficiOS Projects Status Update and Roadmap jdesfossez@efcios.com alexmonthy@efcios.com Content Project updates for 2017: LTTng Babeltrace 2 New LTTng Features (2.10) LTTng is a low-overhead

252 views • 8 slides
ICCA/IEA/DECHEMA Roadmap Catalysis ICCA/IEA/DECHEMA Roadmap Catalysis ICCA/IEA/DECHEMA Roadmap

ICCA/IEA/DECHEMA Roadmap Catalysis ICCA/IEA/DECHEMA Roadmap Catalysis ICCA/IEA/DECHEMA Roadmap

ICCA/IEA/DECHEMA Roadmap Catalysis ICCA/IEA/DECHEMA Roadmap Catalysis ICCA/IEA/DECHEMA Roadmap Catalysis ICCA/IEA/DECHEMA Roadmap Catalysis Disclaimer Disclaimer This presentation contains preliminary results from an ongoing project. g g

297 views • 29 slides
Plug & Abandonment Forum (PAF) Desired P&A direction - P&A Technology Roadmap Martin

Plug & Abandonment Forum (PAF) Desired P&A direction - P&A Technology Roadmap Martin

Plug & Abandonment Forum (PAF) Desired P&A direction - P&A Technology Roadmap Martin Straume, chairman PAF P&A Engineering Manager, AkerBP Topics - History of Technology Roadmap 2015 - 2018 - Technology Roadmap 2017 2020

104 views • 7 slides

More recommend