summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * r14602: Fix another logic bug in new oplock handling. JustJeremy Allison2006-03-211-12/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | because lck->num_share_modes != 0 doesn't mean that there *are* other valid share modes. They may be all marked "UNUSED" or be deferred open entries. In that case don't downgrade the granted oplock to level2 needlessly - a client can have an exclusive oplock in this case. The original code handled this correctly in the lck->num_share_modes == 0 case but not in the case where there were no valid share modes but lck->num_share_modes != 0. I'll clean up my Samba4 torture tester for this and commit it tomorrow. Jeremy.
| * r14600: Refactor capability interface from being IRIX-specific to using onlyJames Peach2006-03-217-88/+111
| | | | | | | | | | the POSIX interface. Note that this removes support for inherited capabilities. This wasn't used, and probably should not be.
| * r14597: Merge DCERPC_FAULT constants from Samba 4.Günther Deschner2006-03-215-9/+19
| | | | | | | | Guenther
| * r14596: Fix a logic bug with multiple oplock contention.Jeremy Allison2006-03-201-18/+33
| | | | | | | | | | | | | | | | | | | | | | | | | | The sad thing is the core of this bug fix is just removing a paranoia "exit_server" call, as the rest of the logic was already correct :-). Lots of comments to explain the logic added. I will look at adding tests to exercise this, might be possible. Jeremy.
| * r14585: Tighten argument list of kerberos_kinit_password again,Günther Deschner2006-03-207-25/+40
| | | | | | | | | | | | kerberos_kinit_password_ext provides access to more options. Guenther
| * r14584: Really follow with roosbindir by defaulr the setting we use for sbindir.Lars Müller2006-03-201-1/+1
| |
| * r14580: add 'net sam createbuiltingroup' to map BUILTIN local groups to a gidGerald Carter2006-03-201-0/+59
| |
| * r14579: Add REJECT_REASON_OTHER in the rpcclient chgpasswd3.Günther Deschner2006-03-201-1/+2
| | | | | | | | Guenther
| * r14578: fix incorrect comment in fill_sam_account(). This function is ↵Gerald Carter2006-03-201-4/+1
| | | | | | | | called from multiple places now (krb5, winbindd auth and domain_client_validate()
| * r14577: BUG Fixes:Gerald Carter2006-03-206-25/+215
| | | | | | | | | | | | * Add back in the import/export support to pdbedit * Fix segv in pam_smbpass * Cleanup some error paths in pdb_tdb and pdb_interface
| * r14576: Skip remaining keytab entries when we have a clear indication thatGünther Deschner2006-03-201-1/+23
| | | | | | | | | | | | | | | | | | krb5_rd_req could decrypt the ticket but that ticket is just not valid at the moment (either not yet valid or already expired). (This also prevents an MIT kerberos related crash) Guenther
| * r14574: Allow use of sendfile as long as the write cache has not been enabledJames Peach2006-03-191-3/+4
| | | | | | | | | | on the particular file we are performing I/O on, irrespective of whether the write cache is globally enabled
| * r14559: Oplocks have changed, process_smb can be static againVolker Lendecke2006-03-191-3/+2
| |
| * r14530: removing unused 'winbind max idle children' parameterGerald Carter2006-03-171-3/+0
| |
| * r14522: sync socket_wrapper code with samba4Stefan Metzmacher2006-03-171-64/+309
| | | | | | | | metze
| * r14515: fix soname breakage caused by mad merge from trunk (missed replacing ↵Gerald Carter2006-03-171-2/+2
| | | | | | | | a AC variable)
| * r14514: Fixing last commit. Thanks Volker.Günther Deschner2006-03-171-1/+1
| | | | | | | | Guenther
| * r14513: Fix winbindd_chauthtok: only fallback when the chgpasswd3 call is notGünther Deschner2006-03-171-2/+5
| | | | | | | | | | | | | | | | supported. Is there a better way to check for the 0x1c010002 status code? Guenther
| * r14512: Guenther, This code breaks winbind with MIT krb1.3.Gerald Carter2006-03-171-2/+12
| | | | | | | | | | | | I'm disabling it for now until we have en effective means of dealing with the ticket request flags for users and computers.
| * r14509: Attempt to fix the build on "sun1"Volker Lendecke2006-03-171-1/+3
| |
| * r14508: Return PAM_SUCCESS in pam_sm_close_session when there is no KRB5CCNAMEGünther Deschner2006-03-171-1/+1
| | | | | | | | | | | | environment. Guenther
| * r14507: Re-disable accidentially re-enabled paranoia check. This should makeGünther Deschner2006-03-171-1/+4
| | | | | | | | | | | | offline logons work again with NT4 and older Samba3 DCs. Guenther
| * r14506: Remove remaining references to a KCM credential cache type.Günther Deschner2006-03-172-5/+1
| | | | | | | | Guenther
| * r14505: Rename the timed_event to lockout_policy_event.Günther Deschner2006-03-172-9/+9
| | | | | | | | Guenther
| * r14503: Fix principal in debug statement.Günther Deschner2006-03-171-2/+1
| | | | | | | | Guenther
| * r14496: Add WBFLAG_PAM_GET_PWD_POLICY bit to only callout for domain passwordGünther Deschner2006-03-163-5/+9
| | | | | | | | | | | | | | | | policies when requested. No panic, the flags is uint32 so we are not running out of WBFLAG bits. Guenther
| * r14495: Allow to play with the logon_param flag when testing samlogons.Günther Deschner2006-03-161-22/+21
| | | | | | | | Guenther
| * r14493: There is no point in falling back to a samlogon when a krb5login hasGünther Deschner2006-03-161-0/+17
| | | | | | | | | | | | | | failed with a clear error indication. This prevents the bad logon count beeing increased on the DC. Guenther
| * r14489: Guard against coverity reversion. #181 is a false positiveJeremy Allison2006-03-161-0/+2
| | | | | | | | | | but make the intent clearer. Jeremy.
| * r14482: Fixes for spoolss code (after coverity fixes) when the Gerald Carter2006-03-161-15/+15
| | | | | | | | client sends a NULL RPC_BUFFER*
| * r14480: Kill one boolean flag passed down :-)Volker Lendecke2006-03-162-9/+7
| |
| * r14475: patch from Oliver Schulze L. <oliver@samera.com.py> for BUG 3580. ↵Gerald Carter2006-03-161-3/+7
| | | | | | | | Make RHEL makerpms.sh script more verbose and add some additional options to the rpmbuild process
| * r14474: Also flush the nscd caches before entering the main winbindd loop.Günther Deschner2006-03-163-16/+25
| | | | | | | | Guenther
| * r14468: Better fix to avoid winbind panic when we have an inproper configurationGünther Deschner2006-03-162-4/+13
| | | | | | | | | | | | and want to just shutdown and exit. Guenther
| * r14467: Reverting 13660. This needs to be fixed differently.Günther Deschner2006-03-162-12/+5
| | | | | | | | Guenther
| * r14462: Fix warning. ber_tag_t is an unsigned int forJeremy Allison2006-03-151-1/+1
| | | | | | | | | | printing purposes. Jeremy.
| * r14460: SMBexit closes by pid and vuid. Tested with smbtorture.Jeremy Allison2006-03-152-4/+4
| | | | | | | | Jeremy.
| * r14457: Add a few more special cases for RID 513 in the samr code.Gerald Carter2006-03-153-3/+49
| | | | | | | | | | | | Now that I know what all the requirements for this group are I can generalize the code some more and make it cleaner. But at least this is working with lusrmgr.msc on XP and 2k now.
| * r14454: Janitor for tridge - same code exists in Samba3 and 4.Jeremy Allison2006-03-151-1/+1
| | | | | | | | | | | | | | Jeremy. ----------------------------- fixed an hmac-md5 error for keys longer than 64 (using deallocated stack variable)
| * r14452: Sorry. Need more coffee....Gerald Carter2006-03-151-1/+1
| | | | | | | | * Fix sprintf() args when createing the group search filter.
| * r14451: In order to get pdb_ldap searching for SID_NAME_ALIASGerald Carter2006-03-152-43/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | groups in the ${MACHINESID} and S_1-5-32 domains correctly, I had to add a substr search on sambaSID. * add substr matching rule to OpenLDAP schema (we need to update the other schema as will since this is a pretty important change). Sites will need to - install the new schema - add 'indea sambaSID sub' to slapd.conf - run slapindex * remove uses of SID_NAME_WKN_GRP in pdb_ldap.c
| * r14450: Fix more get_md4pw() breakage caused by missing "breaks"Gerald Carter2006-03-151-0/+3
| | | | | | | | | | in the switch statement which matched the schannel type against the account type.
| * r14449: fix the build (sorry everyone)Gerald Carter2006-03-151-1/+2
| |
| * r14448: * protect against NULL cli_state* pointers in cli_rpc_pipe_open()Gerald Carter2006-03-152-3/+10
| | | | | | | | * Fix inverted logic check for machine accounts in get_md4pw()
| * r14443: rework get_md4pw() to ease debugging. The only functional change is thatGünther Deschner2006-03-151-24/+69
| | | | | | | | | | | | we now check wheter the sec_channel_type matches the trust account type. Guenther
| * r14432: Give in and grant BUILT\Administrators all privilegesGerald Carter2006-03-152-2/+25
| |
| * r14428: Call fill_share_mode_entry with NO_OPLOCK instead of 0.James Peach2006-03-151-3/+3
| |
| * r14421: This does two thingsGerald Carter2006-03-154-9/+86
| | | | | | | | | | | | | | | | | | | | | | | | | | * Automatically creates the BUILTIN\Users group similar to how BUILTIN\Administrators is done. This code does need to be cleaned up considerably. I'll continue to work on this. * The important fix is for getusergroups() when dealing with a local user and nested groups. Now I can run the following successfully: $ su - jerry -c groups users BUILTIN\users
| * r14418: Try and fix Coverity #39 and #40 by making theJeremy Allison2006-03-151-2/+10
| | | | | | | | | | implicit function contract explicit. Jeremy.
| * r14416: Remove deadcode. Coverity #198.Jeremy Allison2006-03-151-11/+1
| | | | | | | | Jeremy.
generated by cgit (git 2.34.1) at 2025-09-26 05:29:37 +0000