summaryrefslogtreecommitdiffstats
path: root/source3
Commit message (Collapse)AuthorAgeFilesLines
...
* r17064: lsa_GetUserName needs to return the name for S-1-5-7 on an anonymous ↵Volker Lendecke2007-10-101-4/+16
| | | | | | | | | | | | | login. Found that because I want to play around with setsharesecurity, for this I need the "whoami" call figuring out the SID of the currently connected user. Not activating this test yet until the build farm has picked up the new samba4 revision. Volker (This used to be commit 5cfe482841b77208b68376f9e2b8a4a62271f7c9)
* r17060: Some c++ warningsVolker Lendecke2007-10-101-3/+4
| | | | (This used to be commit 2e7afa9e19b117d7a8ce1238c1b9b80ececec729)
* r17047: Fix a typo and a possible NULL dereferenceVolker Lendecke2007-10-101-2/+4
| | | | (This used to be commit c0d9114706345c6bc1fa392bbf9ee81b146cba85)
* r17046: Ensure we're using the right pointers ...Jeremy Allison2007-10-101-11/+7
| | | | | Jeremy. (This used to be commit a8df1863bf2817a82a55c816ba1f685828c5b6ec)
* r17043: Fix memleak when processing CIFS POSIX lock/unlockJeremy Allison2007-10-101-4/+5
| | | | | | | | requests. Maybe the Linux kernel OOM killer will be kinder to smbd now :-). Back to tdbtorture tests on cifsfs. Jeremy. (This used to be commit 1201383e7ab2413795a395491af0a4d3877b1c8b)
* r17041: Trying to track down a *big* memory leak in the new lock code.Jeremy Allison2007-10-102-1/+2
| | | | | | Fix a small one first.... (easy to valgrind). Jeremy (This used to be commit 43d24fbd41ed745a5b21514b526e655663c509ee)
* r17039: Eliminate snum from enumshares and getshareinfo. Get rid of some ↵Volker Lendecke2007-10-105-127/+244
| | | | | | | pstrings. Volker (This used to be commit c5e393d5eda4e13a844171d9ff319d1f1bac3d84)
* r17033: Restructure init_srv_share_info_ctr so that there's only one loop, ↵Volker Lendecke2007-10-101-185/+119
| | | | | | | | | not a dozen or so. Next step will be to eliminate the explicit snum reference. Volker (This used to be commit 6e98f8d6c6cc126b0d27ac574c128be96e50abf3)
* r17032: I thought I had already merged this from trunk:Volker Lendecke2007-10-104-8/+13
| | | | | | | | | > r16959 | vlendec | 2006-07-11 23:10:44 +0200 (Di, 11 Jul 2006) | 1 line > > get_share_security does not need snum, activate RPC-SAMBA3-SRVSVC Volker (This used to be commit c89471e15766fcdbfa4f40701e12c19f95c2d8ef)
* r17030: Partially fix standalone build of tdb directoryJeremy Allison2007-10-102-2/+1
| | | | | | (tdbtool still fails). Jeremy. (This used to be commit 50dbb66d73c8c25755e675876dd55000ca8bfd12)
* r17025: Remove one blank line - test checking in to twoJeremy Allison2007-10-101-1/+0
| | | | | | branches simultaneously..... Jeremy. (This used to be commit 13e7fe540acf575c3b4503050a25cbe4d30b8835)
* r17023: security = server should not be considerd ROLE_DOMAIN_MEMBERGerald Carter2007-10-101-1/+2
| | | | (This used to be commit 6eb77442a570b4ef3bb71dd5a1b7ea81ad18f09c)
* r17022: Fix the build farm -- maybe this is the real fix, testing moreVolker Lendecke2007-10-101-1/+2
| | | | (This used to be commit 19d02690002a35cb6e0204db236d2b768e48c6d8)
* r17021: remove unsupported smbwrapper codeGerald Carter2007-10-1017-4463/+12
| | | | (This used to be commit 07c67fbfc0790169ee748c0e62da14c89d3add23)
* r17017: BUG 3916: fix pam config file parsing in pam_winbind.Gerald Carter2007-10-101-15/+17
| | | | | Patch from Dietrich Streifert <dietrich.streifert@visionet.de> (This used to be commit 8d6218825827a54ca69e462c00a3dc9e25ef3ddf)
* r17016: Different and smaller fix for the valid users = username problem.Volker Lendecke2007-10-101-1/+7
| | | | | | | | | If no winbind is around, the best we can do to get the user's token correct is to ask unix via create_token_from_username. More investigation is needed if this also fixes the +groupname for unmapped groups problems more cleanly. Volker (This used to be commit f6e3ee147ffde572532fb44b619dda01388d4a31)
* r17011: Back out r17010 after talking to Jerry. Another fix pending...Volker Lendecke2007-10-101-34/+9
| | | | | Volker (This used to be commit 7a629118ee6f468505172147724f7f532f0f4a4f)
* r17010: If winbind is not around, add S-1-22-1-<uid> to the user's token.Volker Lendecke2007-10-101-9/+34
| | | | | | | See the comment in the patch for the reason. Volker (This used to be commit 5e07ab750af3744e1ee5bfc813d5c6532aff4ecb)
* r17007: Increment winbind protocol version number.Andrew Bartlett2007-10-101-1/+1
| | | | | Andrew Bartlett (This used to be commit ed51b6293b7577cb2d9e661a8491606abf349406)
* r17005: Add a new helper mode to ntlm_auth: ntlm-change-password-1Andrew Bartlett2007-10-106-1/+502
| | | | | | | | | | | | This mode proxies pre-calculated blobs from a remote (probably VPN) client into the domain. This allows clients to change their password over a PPTP connection (where they would not be able to connect to SAMR directly). The precalculated blobs do not reveal the plaintext password. Original patch by Alexey Kobozev <cobedump@gmail.com> (This used to be commit 967292b7136c5100c0b9a2783c34b1948b16dad4)
* r17003: Fix coverity #303 - possible null deref. Jerry pleaseJeremy Allison2007-10-101-0/+1
| | | | | | check this is your new code. Jeremy. (This used to be commit 144067783d1c56b574911532f074bdaa7cea9c6e)
* r17000: Allow CIFS POSIX locks to coexist with Windows locks.Jeremy Allison2007-10-101-1/+1
| | | | | | | | We shouldn't allow this on the same smbd, but the cifsfs client negotiates POSIX locks then sends Windows ones. Doh ! Can't fix shipped client code.... Jeremy. (This used to be commit 2f8cabe98d3776cb0bdf6b4ef1490fe0119e260a)
* r16997: Simo's patch (based on repotr from Seth Elssworth of Quest) to try ↵Gerald Carter2007-10-101-2/+21
| | | | | | to be more robust in the precense of more broken /etc/hosts files when determining our fwdn (This used to be commit 6413df8348829659807c0c30e6eaef511815e0ed)
* r16994: Fix bug #3923, reported by jason@ncac.gwu.edu. Incorrect typeJeremy Allison2007-10-101-1/+1
| | | | | | used. Jeremy. (This used to be commit 738b99078c6e0ececa6c0268258510a4e97f84e7)
* r16992: Fix bug #3922 reported by jason@ncac.gwu.edu, correctlyJeremy Allison2007-10-101-1/+1
| | | | | | look at the return code. Jeremy. (This used to be commit f11933b3ac91c6fbacd6b410f4d2c0d400df23ee)
* r16990: Fix bug #3921 spotted by jason@ncac.gwu.edu. CorrectlyJeremy Allison2007-10-101-1/+1
| | | | | | obey blocking/non-blocking request for POSIX locks. Jeremy. (This used to be commit f62c01316ef3ce0351f8b34229307a75d8f9f156)
* r16987: Fix the logic errors in ref-counting Windows locks.Jeremy Allison2007-10-102-9/+14
| | | | | | | Hopefully will fix the build farm. Still a few errors in RAW-LOCK to look at though... Jeremy. (This used to be commit edd72d37de570fdad09f7ee983b5b22a1613e558)
* r16973: Fix subtle logic error in lock ref counting found byJeremy Allison2007-10-102-11/+11
| | | | | | cifsfs client code. Jeremy. (This used to be commit 53094435d89088124041d57078c21a12e761e2bf)
* r16971: Ensure we use the correct separator for pathnamesJeremy Allison2007-10-101-34/+135
| | | | | | | in POSIX mode (clitar needs fixing too). Add test posix lock/unlock commands. Jeremy. (This used to be commit 596497ccc250896025253be1d67711d6d7f059f0)
* r16968: The function parse_processed_dfs_path() is dependent on theJeremy Allison2007-10-101-5/+11
| | | | | | | | | fact that check_path_syntax() will convert '\\' characters to '/'. When POSIX pathnames have been selected this doesn't happen, so we must look for the unaltered separator of '\\' instead of the modified '/'. Stevef please check this with the CIFSFS MS-DFS code ! Jeremy (This used to be commit 883bb398e58f54ee79160487b49b79a4774ef939)
* r16962: Add a few utility fns into client. Allow POSIX capabilitiesJeremy Allison2007-10-102-2/+122
| | | | | | to be selected. Jeremy. (This used to be commit 2d8d4bd77bac6f5e7865657e12affd8b94aa85c3)
* r16960: Some warnings from host "opi"Volker Lendecke2007-10-103-9/+10
| | | | (This used to be commit 083ef11cc9be8f1299f233bde194173e092e2c3c)
* r16957: fix cut-n-paste error. The check for 'if (\!salt)' make no sense ↵Gerald Carter2007-10-101-5/+0
| | | | | | when fetching the DES salting principal (This used to be commit baf554c7934cbd591635196453c19d402358e073)
* r16955: Fix an uninitialized var -- Jerry, please check.Volker Lendecke2007-10-101-2/+2
| | | | (This used to be commit bf701f51294dacd0d4077b5304772c40119460eb)
* r16954: Volker reminded me we already have code to do this check.Gerald Carter2007-10-101-8/+4
| | | | | | Reuse can_create() to prevent renameing a group to an existing user or group. (This used to be commit ce7091fda1eb3c7ea0900f455cec48c3b95a17f6)
* r16953: Don't allow groups to be renamed to an existing user or other groupGerald Carter2007-10-101-5/+22
| | | | (This used to be commit 7d619f127ee70fdd486ffaab4546a53d76a2288c)
* r16952: New derive DES salt code and Krb5 keytab generationGerald Carter2007-10-107-749/+573
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Major points of interest: * Figure the DES salt based on the domain functional level and UPN (if present and applicable) * Only deal with the DES-CBC-MD5, DES-CBC-CRC, and RC4-HMAC keys * Remove all the case permutations in the keytab entry generation (to be partially re-added only if necessary). * Generate keytab entries based on the existing SPN values in AD The resulting keytab looks like: ktutil: list -e slot KVNO Principal ---- ---- --------------------------------------------------------------------- 1 6 host/suse10.plainjoe.org@COLOR.PLAINJOE.ORG (DES cbc mode with CRC-32) 2 6 host/suse10.plainjoe.org@COLOR.PLAINJOE.ORG (DES cbc mode with RSA-MD5) 3 6 host/suse10.plainjoe.org@COLOR.PLAINJOE.ORG (ArcFour with HMAC/md5) 4 6 host/suse10@COLOR.PLAINJOE.ORG (DES cbc mode with CRC-32) 5 6 host/suse10@COLOR.PLAINJOE.ORG (DES cbc mode with RSA-MD5) 6 6 host/suse10@COLOR.PLAINJOE.ORG (ArcFour with HMAC/md5) 7 6 suse10$@COLOR.PLAINJOE.ORG (DES cbc mode with CRC-32) 8 6 suse10$@COLOR.PLAINJOE.ORG (DES cbc mode with RSA-MD5) 9 6 suse10$@COLOR.PLAINJOE.ORG (ArcFour with HMAC/md5) The list entries are the two basic SPN values (host/NetBIOSName & host/dNSHostName) and the sAMAccountName value. The UPN will be added as well if the machine has one. This fixes 'kinit -k'. Tested keytab using mod_auth_krb and MIT's telnet. ads_verify_ticket() continues to work with RC4-HMAC and DES keys. (This used to be commit 6261dd3c67d10db6cfa2e77a8d304d3dce4050a4)
* r16947: Fix warning with profile separator when profiles notJeremy Allison2007-10-101-0/+2
| | | | | | being used. Jeremy. (This used to be commit 441c289fd21d00398fb7c4c7c0338b03129a7545)
* r16945: Sync trunk -> 3.0 for 3.0.24 code. Still needJeremy Allison2007-10-10259-9042/+19090
| | | | | | | | to do the upper layer directories but this is what everyone is waiting for.... Jeremy. (This used to be commit 9dafb7f48ca3e7af956b0a7d1720c2546fc4cfb8)
* r16941: Fix crash bug when the pam conversation receives an empty token.Günther Deschner2007-10-101-2/+2
| | | | | | | Thanks to Bjoern Jacke for the report and test-case. Guenther (This used to be commit f2ebc0e3de396f44f49dabbfe42cb3ad1c1a7ec1)
* r16940: libnscd sets errno, use that to display error message.Günther Deschner2007-10-101-2/+2
| | | | | Guenther (This used to be commit df10448e2c6166d1c129c2d9a9a74c5b4a42555f)
* r16939: Still clear the winbind_cache.tdb when offline logons are not enabled.Günther Deschner2007-10-101-2/+4
| | | | | Guenther (This used to be commit 4121ccfc3e39001d5b7b8288e3bc27d919f79167)
* r16866: No idea why I did not see the warning, sorry....Volker Lendecke2007-10-101-1/+1
| | | | (This used to be commit 84913caebdb461fed2c94fadfa0039b32a83cb6d)
* r16865: This is a proposal to fix bug 3915. Before sending patches around, ↵Volker Lendecke2007-10-103-8/+24
| | | | | | | | | | | | this is what svn is for. The idea is that we fall back to a pure unix user with S-1-22 SIDs in the token in case anything weird is going on with the 'force user'. Volker (This used to be commit 9ec5ccfe851ac8a1f88b88c8c8461a5cf75b4c57)
* r16864: Intermediate checkin -- swap the sid_check_is_in_unix_users andVolker Lendecke2007-10-101-38/+38
| | | | | | | sid_check_is_in_our_domain cases. Volker (This used to be commit dc403cec88d91fdeb09cbd04321d88bbdc0f490c)
* r16862: Reverting accidential changes in ads_try_connect() from previous commit.Günther Deschner2007-10-101-2/+2
| | | | | Guenther (This used to be commit 6257f9af93f2391940b2c60fe39c0bf106de15dd)
* r16861: Fixing crash bug when passing no domain/realm name to the CLDAP request.Günther Deschner2007-10-102-7/+10
| | | | | Guenther (This used to be commit 863aeb621afa7dcec1bfef8e503ef8ed363e3742)
* r16845: Properly report the error during join when the set password failsGerald Carter2007-10-101-0/+7
| | | | (This used to be commit ef6e9ca5276586c081fcf18bb178a2326309b539)
* r16836: When receiving a CLDAP reply make sure that we always store the correctGünther Deschner2007-10-101-1/+3
| | | | | | | netbios domain name in server affinity cache. Guenther (This used to be commit 08958411eeff430fb523d9b73e0259d060bac17b)
* r16823: Allow to call wbinfo --domain-info="" or --domain-info="." to get domainGünther Deschner2007-10-101-4/+7
| | | | | | | info for our own domain. Guenther (This used to be commit ebd3c547e508e191d5e1b5bb001797666db7b269)
generated by cgit (git 2.34.1) at 2025-09-27 16:42:53 +0000