summaryrefslogtreecommitdiffstats
path: root/source3/winbindd
Commit message (Collapse)AuthorAgeFilesLines
* Enable AES in winbind.Andreas Schneider2012-07-171-1/+1
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* Fix bug #9016 - Connection to outbound trusted domain goes offline.Jeremy Allison2012-07-141-6/+0
| | | | | | | | | | | | By the time we've gotten to init_dc_connection_network() we shouldn't be second guessing the caller by calling winbindd_can_contact_domain(). If for some reason we do need to restrict the contact list here we can add a condition to only contact the primary domain or domains listed in the tdc cache, but I don't think that's neccessary. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Sat Jul 14 03:17:57 CEST 2012 on sn-devel-104
* s3: rename sid_check_is_in_our_domain() to sid_check_is_in_our_sam()Michael Adam2012-07-124-5/+5
| | | | | | | | | This does not check whether the given sid is in our domain, but but whether it belongs to the local sam, which is a different thing on a domain member server. Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Thu Jul 12 18:36:02 CEST 2012 on sn-devel-104
* s3: rename sid_check_is_domain() to sid_check_is_our_sam()Michael Adam2012-07-127-10/+10
| | | | | | This does not check whether the given sid is the domain sid, but whether it is the sid of the local sam, which is different for a domain member server.
* s3-winbind: Remove obsolte idmap_adex.Andreas Schneider2012-07-038-3781/+0
|
* dbwrap: remove get_flags().Rusty Russell2012-06-221-17/+2
| | | | | | | | | | | | The flags returned were TDB-specific: this was only used for detecting the endianness of obsolete databases (the conversion code was put in in 2003, with reference to Samba 2.3). It's easier to remove it than to translate the NTDB flags to TDB flags, and it's a really weird thing to ask for anyway. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
* s3:winbindd: do not expose negative cache idmap entries as valid mappings ↵Stefan Metzmacher2012-06-211-6/+19
| | | | | | (bug #9002) metze
* s3:winbindd: discard the expired gid cache if we're online (bug #9002)Stefan Metzmacher2012-06-211-1/+1
| | | | | | This matches the uid case... metze
* s3: Remove an unnecessary ()Volker Lendecke2012-06-211-1/+1
| | | | | | | Signed-off-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Thu Jun 21 16:05:30 CEST 2012 on sn-devel-104
* idmap-hash: Attempt to fix Coverity ID 709116 Overflowed array index writeVolker Lendecke2012-06-201-1/+6
| | | | | | | Signed-off-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Wed Jun 20 12:53:59 CEST 2012 on sn-devel-104
* idmap-hash: Fix Coverity ID 709117 Dereference before null checkVolker Lendecke2012-06-201-5/+5
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* idmap-hash: Fix Coverity 709118 Dereference before null checkVolker Lendecke2012-06-201-5/+5
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* idmap-hash: Adapt mapfile_read_line to README.CodingVolker Lendecke2012-06-201-1/+2
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* idmap-hash: Fix Coverity ID 709119 Unused pointer valueVolker Lendecke2012-06-201-1/+1
| | | | | | "p" is overwritten further down again before it's first use Signed-off-by: Michael Adam <obnox@samba.org>
* Fix unused variable warnings.Jeremy Allison2012-06-191-5/+12
|
* Remove unused variables.Jeremy Allison2012-06-191-8/+0
|
* TDB2: make SAMBA use tdb1 again for the moment.Rusty Russell2012-06-191-4/+0
| | | | | | | Otherwise the following surgery will break the SAMBA build and testsuite. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
* s3:idmap_tdb: fix miss in rename of dbwrap_trans_store_uint32() to ↵Michael Adam2012-06-181-4/+4
| | | | dbwrap_trans_store_uint32_bystring()
* dbwrap: Rename dbwrap_fetch_uint32->dbwrap_fetch_uint32_bystringAmitay Isaacs2012-06-181-2/+2
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* s3-winbindd: fix the build of idmap_ad modules.Günther Deschner2012-06-151-1/+2
| | | | | | | Guenther Autobuild-User(master): Günther Deschner <gd@samba.org> Autobuild-Date(master): Fri Jun 15 18:16:11 CEST 2012 on sn-devel-104
* dbwrap: dbwrap_trans_store_int32->dbwrap_trans_store_int32_bystringVolker Lendecke2012-06-151-1/+1
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* dbwrap: dbwrap_change_uint32_atomic->dbwrap_change_uint32_atomic_bystringVolker Lendecke2012-06-152-2/+2
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* dbwrap: dbwrap_store_uint32->dbwrap_store_uint32_bystringVolker Lendecke2012-06-152-3/+5
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* dbwrap: dbwrap_fetch_uint32->dbwrap_fetch_uint32_bystringVolker Lendecke2012-06-153-8/+9
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* dbwrap: dbwrap_store_int32->dbwrap_store_int32_bystringVolker Lendecke2012-06-151-3/+4
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* dbwrap: dbwrap_fetch_int32->dbwrap_fetch_int32_bystringVolker Lendecke2012-06-151-4/+4
| | | | Signed-off-by: Michael Adam <obnox@samba.org>
* s3-winbindd: add comments about dump_core_setupMatthieu Patou2012-06-111-0/+11
| | | | | | | | This patch is related to change 0ea7152ff479e32e25817e4ddb1c2a1569bad81d Comments are added to explain why we call dump_core_setup 3 times. Autobuild-User(master): Matthieu Patou <mat@samba.org> Autobuild-Date(master): Mon Jun 11 21:21:11 CEST 2012 on sn-devel-104
* s3-winbindd: call dump_core_setup after command line option has been parsedMatthieu Patou2012-06-081-0/+2
| | | | | | | | | | | | | | | | | | Without this fix in some situations winbindd can't coredump. Such cases append when samba is compiled in a custom prefix (ie. /home/build/mat/prod/1/) in this case get_dyn_LOGFILEBASE or basename(lp_logfile) before the configuration file and the command line is parsed will be something like /home/build/mat/prod/1/var which might not exists on the host where you run it (where it's most probably more "normal" directories). Specifying --log-basename didn't help as dump_core_setup is called before the command line and the config file is read so it didn't help getting a correct value in dump_core_setup. We fix this issue by calling dump_core_setup() also after the command line has been read and also after the configfile has been parsed so that the final location for the coredump is coherent with the final logile location. Autobuild-User(master): Matthieu Patou <mat@samba.org> Autobuild-Date(master): Fri Jun 8 06:33:33 CEST 2012 on sn-devel-104
* s3-waf: Fix the winbindd active directory idmap support build.Ira Cooper2012-06-081-1/+1
| | | | | | | This fixes the SAMBA3_MODULE for idmap_ad so it will actually attempt to build. Autobuild-User(master): Ira Cooper <ira@samba.org> Autobuild-Date(master): Fri Jun 8 04:38:04 CEST 2012 on sn-devel-104
* Forward port of Richard Sharpe's <realrichardsharpe@gmail.com> fix for bug ↵Jeremy Allison2012-05-311-1/+2
| | | | #8970 - Possible memory leaks in the samba master process.
* s3:libsmb: get rid of cli_negprotLuk Claes2012-05-281-1/+2
| | | | | Signed-off-by: Luk Claes <luk@debian.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3:libsmb: get rid of cli_state_disconnectLuk Claes2012-05-281-2/+2
| | | | | Signed-off-by: Luk Claes <luk@debian.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3:libsmb: get rid of cli_state_security_modeLuk Claes2012-05-281-1/+1
| | | | | Signed-off-by: Luk Claes <luk@debian.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3:libsmb: get rid of cli_state_capabilitiesLuk Claes2012-05-281-1/+1
| | | | | Signed-off-by: Luk Claes <luk@debian.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3:libsmb: get rid of cli_state_protocolLuk Claes2012-05-281-2/+2
| | | | | Signed-off-by: Luk Claes <luk@debian.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3:libsmb: get rid of cli_state_remote_nameLuk Claes2012-05-281-2/+2
| | | | | Signed-off-by: Luk Claes <luk@debian.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3:libsmb: get rid of cli_state_*_sockaddrLuk Claes2012-05-281-2/+3
| | | | | Signed-off-by: Luk Claes <luk@debian.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-winbindd: Always map the LDAP error code to an NTSTATUSAndrew Bartlett2012-05-261-4/+20
| | | | | | | | | We do this so that we catch LDAP_TIMELIMIT_EXCEEDED as NT_STATUS_IO_TIMEOUT, which has special handling in winbindd_cache.c Andrew Bartlett Signed-off-by: Jeremy Allison <jra@samba.org>
* Introduce system MIT krb5 build with --with-system-mitkrb5 option.Alexander Bokovoy2012-05-231-2/+2
| | | | | | | | | | | | | | | | | System MIT krb5 build also enabled by specifying --without-ad-dc When --with-system-mitkrb5 (or --withou-ad-dc) option is passed to top level configure in WAF build we are trying to detect and use system-wide MIT krb5 libraries. As result, Samba 4 DC functionality will be disabled due to the fact that it is currently impossible to implement embedded KDC server with MIT krb5. Thus, --with-system-mitkrb5/--without-ad-dc build will only produce * Samba 4 client libraries and their Python bindings * Samba 3 server (smbd, nmbd, winbindd from source3/) * Samba 3 client libraries In addition, Samba 4 DC server-specific tests will not be compiled into smbtorture. This in particular affects spoolss_win, spoolss_notify, and remote_pac rpc tests.
* Second part of fix for bug 8953 - winbind can hang as nbt_getdc() has no ↵Herb Lewis2012-05-231-0/+1
| | | | | | | | | | | | | timeout. If we're running with SEC_ADS and we don't get a cldap response from the server when querying its name, don't fall back to NetBIOS requests as they're unlikely to succeed. Signed-off-by: Jeremy Allison <jra@samba.org> Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed May 23 03:49:36 CEST 2012 on sn-devel-104
* Fix bug #8953 - winbind can hang as nbt_getdc() has no timeout.Jeremy Allison2012-05-221-1/+1
| | | | | Add a timeout_in_seconds parameter to nbt_getdc() to make it fail after that time with NT_STATUS_IO_TIMEOUT.
* s3-auth: Rename to init_system_session_info().Andreas Schneider2012-05-151-1/+1
| | | | | Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Tue May 15 13:56:00 CEST 2012 on sn-devel-104
* s3: Fix Coverity ID 241320 Array compared against 0Volker Lendecke2012-05-141-1/+1
| | | | | | | domain->alt_name is an array, not a pointer Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Mon May 14 15:11:47 CEST 2012 on sn-devel-104
* s3: Fix Coverity ID 242184 Dereference after null checkVolker Lendecke2012-05-101-5/+3
| | | | rpc_query_user unconditionally dereferences user_info if successfull
* s3:winbindd:autorid check that transaction start did workChristian Ambach2012-05-091-1/+5
| | | | | | | this fixes Coverity #700172 CHECKED_RETURN Autobuild-User: Christian Ambach <ambi@samba.org> Autobuild-Date: Wed May 9 00:27:08 CEST 2012 on sn-devel-104
* s3:winbindd/autorid add ignore builtin parameterChristian Ambach2012-05-081-0/+13
| | | | | | | BUILTIN should be handled by passdb, however if passdb does not know about a SID, autorid creates a range for BUILTIN and does deterministic mapping make it possible to turn off this behavior
* s3:winbindd/autorid add support for read-only modeChristian Ambach2012-05-081-6/+38
| | | | | | | make it possible to set read-only = yes for the backend so users can replicate an autorid.tdb to another server to use the same mappings without risking that updates are done on both sides
* s3:winbindd/autorid preallocate well-known SIDsChristian Ambach2012-05-081-0/+42
| | | | | | | | preallocate the list of well-known SIDs that Win2008R2 reports to be groups and that are on the list in KB243330 This will allow for deterministic mapping of these SIDs, even if they are stored in the allocation pool as this is the first thing that autorid will allocate from the pool during module initialization
* s3-idmap: convert most idmap_cache callers to unixid APIAndrew Bartlett2012-05-022-36/+23
| | | | | | | | | This will eventually allow the struct unixid to be passed all the way up and down the stack. Andrew Bartlett Signed-off-by: Michael Adam <obnox@samba.org>
* s3-winbindd: Do not use WBC_ types internally in winbinddAndrew Bartlett2012-05-021-3/+5
| | | | | | Use the types from idmap.idl instead Signed-off-by: Michael Adam <obnox@samba.org>
generated by cgit (git 2.34.1) at 2025-09-27 05:51:36 +0000