summaryrefslogtreecommitdiffstats
path: root/source3
Commit message (Collapse)AuthorAgeFilesLines
...
* s3-waf: convert lib/util_tdb.c into a subsystem.Günther Deschner2010-12-141-2/+5
| | | | Guenther
* s3-waf: use shared LIBASYNC_REQ subsystem.Günther Deschner2010-12-141-2/+3
| | | | Guenther
* s3/net: don't use external "date" to make "net time set" more portableBjörn Jacke2010-12-141-14/+10
| | | | | | | the "date" syntax is different for example on *BSD Autobuild-User: Björn Jacke <bj@sernet.de> Autobuild-Date: Tue Dec 14 15:31:03 CET 2010 on sn-devel-104
* Ensure we use vfs_fsp_stat(), not VFS_STAT directly, and store into ↵Jeremy Allison2010-12-141-19/+20
| | | | | | | | | | | fsp->fsp_name->st instead of a SMB_STRUCT_STAT on the stack. Jeremy. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Dec 14 05:05:50 CET 2010 on sn-devel-104
* s3-libsmb Improve error message when denying LM encryptionAndrew Bartlett2010-12-141-9/+9
| | | | | | | Now that 'client ntlmv2 auth = yes' is the default, make it more clear what options a user may need to enable to get this to work. Andrew Bartlett
* Change crediting so that the credits are returned on the interim async response.Jeremy Allison2010-12-141-4/+7
| | | | | Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Dec 14 01:09:05 CET 2010 on sn-devel-104
* As we handle missing sendfile() inside lib/sendfile.c, remove the ↵Jeremy Allison2010-12-132-9/+0
| | | | | | | WITH_SENDFILE ifdefs. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Mon Dec 13 23:47:07 CET 2010 on sn-devel-104
* We need to start off with smb2.credits_granted == 0. That wayJeremy Allison2010-12-131-2/+3
| | | | | | | when processing the faked up SMB2 NegProt from the SMB1 packet we always allocate one credit on reply. Jeremy.
* Remove extra unused credit arg. to smbd_smb2_request_setup_out()Jeremy Allison2010-12-131-3/+3
|
* s3-waf: try to fix the build with snow leopard.Günther Deschner2010-12-131-1/+5
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Mon Dec 13 15:03:08 CET 2010 on sn-devel-104
* s3:selftest: fix knownfail for ↵Stefan Metzmacher2010-12-131-1/+1
| | | | | | | | | | | | | | samba3.posix_s3.rpc.spoolss.*printserver.enum_printers_old The name is in lowercase since commit 35fbc7bbda5851f7172538f79fc79be201f1d521 (s4-smbtorture: Make test names lowercase and dot-separated.) This should avoid intermittent failures in make test. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Mon Dec 13 13:52:18 CET 2010 on sn-devel-104
* s3-selftest: support differing VFSLIBDIR in autoconf and waf build.Günther Deschner2010-12-132-0/+2
| | | | | | | | | With this change make test in the s3 waf build (w/o s4 smbtorture yet) works! Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Mon Dec 13 13:06:05 CET 2010 on sn-devel-104
* s3-waf: add -Wl,--export-dynamic to LDFLAGS.Günther Deschner2010-12-131-0/+2
| | | | | | | | | | Our binaries did not export symbols so e.g. smbd could not load vfs modules. Patch from tridge. We might remove this later on, once we decide to resolve all symbols and fix all dependencies in s3 modules. Guenther
* s4-smbtorture: Make test names lowercase and dot-separated.Jelmer Vernooij2010-12-112-57/+50
| | | | | | | | This is consistent with the test names used by selftest, should make the names less confusing and easier to integrate with other tools. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sat Dec 11 04:16:13 CET 2010 on sn-devel-104
* Add a SMB2 crediting algorithm, by default the same as Windows. Defaults to ↵Jeremy Allison2010-12-105-28/+163
| | | | | | 128 credits. Jeremy.
* s3-vfstest: fixed paths in vfstestAndrew Tridgell2010-12-101-0/+2
| | | | | vfstest tries to create /messages.tdb as loadparm has not been initialised
* s3-dns Don't use DELEG_FLAG in DNS update, Windows 2008R2 does not like itAndrew Bartlett2010-12-101-1/+1
|
* s3-dns Don't use SEQUENCE_FLAG in DNS update, Windows 2008R2 does not like itAndrew Bartlett2010-12-101-1/+1
| | | | Andrew Bartlett
* s3-net Allow 'net ads dns register' to take an optional hostname argumentAndrew Bartlett2010-12-101-6/+10
| | | | | | This allows the administrator to more carefully chose what name to register. Andrew Bartlett
* s3-winbind Improve memory handling in NTLMv2-backend plaintext authenticationAndrew Bartlett2010-12-101-17/+6
| | | | Andrew Bartlett
* s3-winbind Don't send the LM password to the server, everAndrew Bartlett2010-12-101-11/+1
| | | | | | | | | | | This is for the case where we have the plaintext password locally, and can construct the challenge-response values here. We should never ever use the LM password in domain authentication. The last domain controller to only have LM passwords stored was NT 3.5. Andrew Bartlett
* s3-libsmb Don't ever ask for machine$ principals as a target.Andrew Bartlett2010-12-101-30/+6
| | | | | | | | | | | | It is never correct to ask for a machine$ principal as the target of a kerberos connection. You should always connect via the servicePrincipalName. This current code appears to have built up from a series of minimal changes, as the codebase adapted the to lack of a SPNEGO principal from Windows 2008. Andrew Bartlett
* s3-client Use NTLMv2 by default in the Samba clientAndrew Bartlett2010-12-101-2/+2
| | | | | | This matches the improved security measures of Windows Vista. Andrew Bartlett
* s3-smbd Don't send SPNEGO principal (rfc4178 hint) by defaultAndrew Bartlett2010-12-103-0/+15
| | | | | | | | | | | | | | This patch, based on the suggestion by Goldberg, Neil R. <ngoldber@mitre.org> turns off the sending of the principal in the negprot by default, matching Windows 2008 behaviour. This slowly works us back from this hack, which from an RFC perspective was never the right thing to do in the first place, but we traditionally follow windows behaviour. It also discourages client implmentations from relying on it, as if they do they are more open to man-in-the-middle attacks. Andrew Bartlett
* s3-libads Default to NOT using the server-supplied principal from SPNEGOAndrew Bartlett2010-12-104-6/+19
| | | | | | | | | | | | | | | | | This principal is not supplied by later versions of windows, and using it opens up some oportunities for man in the middle attacks. (Becuase it isn't the name being contacted that is verified with the KDC). This adds the option 'client use spnego principal' to the smb.conf (as used in Samba4) to control this behaivour. As in Samba4, this defaults to false. Against 2008 servers, this will not change behaviour. Against earlier servers, it may cause a downgrade to NTLMSSP more often, in environments where server names are not registered with the KDC as servicePrincipalName values. Andrew Bartlett
* libcli/auth bring ADS_IGNORE_PRINCIPAL in commonAndrew Bartlett2010-12-081-2/+0
|
* s3-waf: fixed version number handlingAndrew Tridgell2010-12-082-13/+5
|
* s3:ntlm_auth: support clients which offer a spnego mechs we don't supportStefan Metzmacher2010-12-071-110/+169
| | | | | | | | | | | | | Before we rejected the authentication if we don't support the first spnego mech the client offered. We now negotiate the first mech we support. This fix works arround problems, when a client sends the NEGOEX (1.3.6.1.4.1.311.2.2.30) oid, which we don't support. metze
* s3:ntlm_auth: free session key, as we don't use it (at least for now)Stefan Metzmacher2010-12-071-1/+2
| | | | metze
* s3:ntlm_auth: fix memory leak in the raw ntlmssp code pathStefan Metzmacher2010-12-071-0/+2
| | | | metze
* Make sure that user exists after running add user script before adding sam ↵Bjoern Baumbach2010-12-071-0/+5
| | | | | | | account. Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Tue Dec 7 17:37:52 CET 2010 on sn-devel-104
* s3-waf: add configure/declaration checks for fdatasync, readahead and splice.Günther Deschner2010-12-071-0/+12
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Tue Dec 7 16:50:23 CET 2010 on sn-devel-104
* s3-waf: add valgrind configure checks.Günther Deschner2010-12-071-0/+4
| | | | Guenther
* s3:registry: improve debug messages about regdb refcount changesMichael Adam2010-12-071-5/+10
| | | | | Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Tue Dec 7 15:18:03 CET 2010 on sn-devel-104
* s3-waf: build vfs_fileid module if possible.Günther Deschner2010-12-071-0/+9
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Tue Dec 7 14:01:46 CET 2010 on sn-devel-104
* s3-waf: add support for --with-dnsupdate.Günther Deschner2010-12-072-2/+11
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Tue Dec 7 13:07:51 CET 2010 on sn-devel-104
* s3-waf: fix the build of nsstest in the non-devel build.Günther Deschner2010-12-071-1/+1
| | | | Guenther
* s3-waf: fix library names (we installed liblibsmbclient, etc.)Günther Deschner2010-12-072-38/+38
| | | | Guenther
* s3-waf: fix pam dependencies of the RPC_SAMR server.Günther Deschner2010-12-072-0/+2
| | | | Guenther
* s3: Fix bug 7844: Race in winbindVolker Lendecke2010-12-061-4/+8
| | | | | | | | | | | | | | | | If a child dies, the parent process right away closes the socket. This is wrong, with tevent we still have events pending. This works fine for epoll but does not for at least the FreeBSD select variant. Tevent sticks a closed socket into the select masks. This then returns an error EBADF. When this happens, the parent winbind dies instead of forking a new child. This moves the socket close from the SIGCHLD cleanup function to the socket receiver. I could not reproduce the parent death anymore and it did not create an obvious fd leak. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Mon Dec 6 23:21:02 CET 2010 on sn-devel-104
* s3: Fix bug 7842: WINBIND_LOOKUPRIDS does not return the proper domain nameVolker Lendecke2010-12-063-1/+5
| | | | | Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Mon Dec 6 21:18:07 CET 2010 on sn-devel-104
* s3: Fix bug 7841: WINBINDD_LOOKUPRIDS asks the wrong domainVolker Lendecke2010-12-061-1/+1
|
* s3: Fix bug 7843: Expand the local SAMs aliasesJeremy Allison2010-12-061-2/+2
|
* s3-waf: add pam configure checks.Günther Deschner2010-12-061-2/+69
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Mon Dec 6 17:34:45 CET 2010 on sn-devel-104
* Updated french translations from Jean Delvare <jdelvare@suse.de>Holger Hetterich2010-12-041-111/+96
| | | | | Autobuild-User: Jim McDonough <jmcd@samba.org> Autobuild-Date: Sat Dec 4 18:23:54 CET 2010 on sn-devel-104
* s3-waf: add krb5 configure check for WRFILE_KEYTAB.Günther Deschner2010-12-031-0/+10
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Fri Dec 3 13:54:25 CET 2010 on sn-devel-104
* s3-waf: add krb5 configure checks for enctype 23.Günther Deschner2010-12-031-0/+25
| | | | Guenther
* s3-waf: more krb5 configure checks.Günther Deschner2010-12-031-2/+11
| | | | Guenther
* Replace lseek()/write()/lseek() triple with pwrite call. We already emulate thisJeremy Allison2010-12-031-12/+2
| | | | | | | | | inside pwrite under the covers. Jeremy. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Fri Dec 3 03:39:42 CET 2010 on sn-devel-104
* posix_fallocate() returns an errno, not -1 on error.Jeremy Allison2010-12-031-1/+1
|
generated by cgit (git 2.34.1) at 2025-09-28 08:31:14 +0000