summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* r21526: Fix stray character in sys_memalign() that is only Gerald Carter2007-02-241-1/+1
| | | | is the case where we don't have memalign() or posix_memalign().
* r21525: Go ahead and checkin the mlock() & memalign() fixes so Gerald Carter2007-02-246-22/+61
| | | | | | | | others don't get stuck with the winbindd hang. Still waiting on additional confirmation from Guenther that this fixes thes issues he was observing as well. But it's been running in my local tree for a day without problems.
* r21517: Fix build warnings.Günther Deschner2007-02-231-2/+1
| | | | Guenther
* r21509: Merge lp_passdb_backend() from rev 21506 to 3_0_25.Lars Müller2007-02-221-1/+43
| | | | | Slightly change the DEBUG 0 message as suggested by Volker on samba-technical.
* r21508: Fix memleak in new idmap_tdb, thanks Herb.Simo Sorce2007-02-221-12/+4
| | | | | | Jerry please check. Simo.
* r21507: Fix some "cannot access LDAP when no root" bugs.Gerald Carter2007-02-223-13/+30
| | | | | | | The two culprits were * pdb_get_account_policy() * pdb_get_group_sid()
* r21505: make sure mlock()'d memory is aligned on a page boundaryGerald Carter2007-02-222-7/+26
|
* r21500: Fix inappropriate creation of a krb5 ticket refreshing event when a userGünther Deschner2007-02-223-6/+68
| | | | | | | | | | | | | | | | | | | changed a password via pam_chauthtok. Only do this if a) a user logs on using an expired password (or a password that needs to be changed immediately) or b) the user itself changes his password. Also make sure to delete the in-memory krb5 credential cache (when a user did not request a FILE based cred cache). Finally honor the krb5 settings in the first pam authentication in the chauthtok block (PAM_PRELIM_CHECK). This circumvents confusion when NTLM samlogon authentication is still possible with the old password after the password has been already changed (on w2k3 sp1 dcs). Guenther
* r21483: Fix use of uninitialized variable.Jeremy Allison2007-02-211-3/+6
| | | | Jeremy.
* r21482: Use IPC$ not ipc$ for consistency.Jeremy Allison2007-02-211-1/+1
| | | | Jeremy.
* r21481: No one said anything, so I'm disallowing anythingJeremy Allison2007-02-211-7/+17
| | | | | but explicit shares in "default service" :-). Jeremy.
* r21480: Make fd_open match fd_close be translatingJeremy Allison2007-02-211-9/+12
| | | | | errno into an NTSTATUS immediately. Jeremy.
* r21479: Merge Volker's code simplification for the AIOJeremy Allison2007-02-212-79/+15
| | | | | paths. Jeremy.
* r21478: Add 65k length limit for split SPNEGO blobs.Jeremy Allison2007-02-201-9/+19
| | | | Jeremy
* r21474: Ensure trustdom_cache_shutdown() gets calledJeremy Allison2007-02-201-4/+4
| | | | | on terminate. Pointed out by Herb. Jeremy.
* r21471: Merge from Volker. Jeremy Allison2007-02-201-0/+4
| | | | | | Not strictly necessary, as data_blob() panics if it can't allocate. But I'd see this as a design flaw in data_blob() and it made me look in that routine. Jeremy.
* r21469: Fix nfs4_acls module to follow 3.0.25 deviation in SEC_ACE and ↵Alexander Bokovoy2007-02-201-4/+4
| | | | SEC_ACL definitions
* r21468: Add GPFS-provided DMAPI support based on their GPL libraryAlexander Bokovoy2007-02-202-1/+11
|
* r21460: Fix for server-side processing of SPNEGO authJeremy Allison2007-02-204-11/+234
| | | | | | | fragmented into "max xmit" size security blob chunks. Bug #4400. Needs limits adding, and also a client-side version. Jeremy.
* r21454: Fix debug typo.Günther Deschner2007-02-191-1/+1
| | | | Guenther
* r21452: Revert to tdb group_mapping implementation for 3.0.25 release.Gerald Carter2007-02-19134-39625/+16
| | | | No other changes here.
* r21450: No need to TALLOC_FREE twice here.Günther Deschner2007-02-191-2/+0
| | | | Guenther
* r21449: Talked to Jerry on irc, he does not see what might break with this: ↵Volker Lendecke2007-02-191-1/+1
| | | | | | | | Change back the 'msdfs root = yes' default to 'no'. Volker
* r21446: Karolins "printjob username"Volker Lendecke2007-02-192-1/+10
|
* r21445: Apply tdb_parse_record Tridges error return, merge to 3_0_25 and 4_0Volker Lendecke2007-02-194-13/+94
|
* r21420: Looks big, but isn't really. Move internal namesJeremy Allison2007-02-1820-249/+221
| | | | | | | | | of SEC_DESC over from grp_owner -> group_owner, ace -> aces and info.mask -> mask. Makes it *much* easier to move code within branches as they're now referring to the same names for the same things (which is what the NDR code also uses). Jeremy.
* r21412: The last patch also incremented the seqnum when tdb_store failed. ↵Volker Lendecke2007-02-171-8/+10
| | | | | | | | | Not as bad as not doing it at all, but needs fixing. Also simplify the logic, I had missed the "goto out" at the end of the function. Volker
* r21410: We have to increment the sequence number also when tdb_update_hash()Volker Lendecke2007-02-171-1/+1
| | | | | | | | succeeded. Found while testing the brlock seqnum patch. Tridge, please check! Volker
* r21399: need to zero the request and response structuresHerb Lewis2007-02-161-0/+3
|
* r21398: update sharesec to allow add modify and remove commandsHerb Lewis2007-02-161-124/+316
|
* r21397: revert accidential commitHerb Lewis2007-02-161-1/+1
|
* r21396: fix wbinfo --lookup-rids commandHerb Lewis2007-02-163-4/+36
| | | | allow detection of libbiconv if all others fail - need for FreeBSD
* r21394: Prevent nscd crash due to potential NULL pointer dereference inGünther Deschner2007-02-161-0/+4
| | | | | | _nss_winbind_initgroups_dyn() on an empty group list. Guenther
* r21393: Fix typo.Günther Deschner2007-02-161-1/+1
| | | | Guenther
* r21387: Another important fix for non-AD domains:Günther Deschner2007-02-162-7/+3
| | | | | | | Avoid assigning 0 as primary group id for users in NSS calls. Jerry, please check. Guenther
* r21383: More possible "security=share" fixes. If a clientJeremy Allison2007-02-161-0/+3
| | | | | | is sending LMv2 make sure we test with the password blob in the LM field as well as the NT field. Jeremy.
* r21382: Important fix for winbind when using non-AD domains.Günther Deschner2007-02-162-2/+14
| | | | | | | | | | | | | Jeremy, I'm afraid you removed the "domain->initialized" from the set_dc_types_and_flags() call when the connect to PI_LSARPC_DS failed (with rev. 19148). This causes now that init_dc_connection_network is called again and again which in turn rescans the DC each time (which of course fails each time with NT_STATUS_BUFFER_TOO_SMALL). Just continue with the non-PI_LSARPC_DS scan so that the domain is initialized properly. Guenther
* r21379: Attempt to fix the build on "gwen"Volker Lendecke2007-02-161-1/+1
|
* r21370: check into 3.0.25 as wellSimo Sorce2007-02-151-1/+1
|
* r21358: Some more debugging for _nss_winbind_initgroups_dyn() on Linux.Günther Deschner2007-02-151-0/+12
| | | | Guenther
* r21357: Fix typo.Günther Deschner2007-02-151-1/+1
| | | | Guenther
* r21353: In the turn of tracking down nss_winbind related bugs on Linux:Günther Deschner2007-02-151-19/+100
| | | | | | print NSS_STATUS code with DEBUG_NSS when leaving a function. Guenther
* r21352: Let ads_upn_suffixes() return a pointer to an array of suffixes.Günther Deschner2007-02-151-4/+4
| | | | Guenther
* r21349: Fix memleak in ads_upn_suffixes().Günther Deschner2007-02-141-0/+3
| | | | Guenther
* r21346: FIXME ! Our parsing here is wrong I think,Jeremy Allison2007-02-141-1/+10
| | | | | | | | but for a level3 it makes no sense for ptr_sec_desc to be NULL. JRA. Based on a Vista sniff from Martin Zielinski <mz@seh.de>. Jerry - part of the Vista patchset. Jeremy.
* r21345: Smaller fixes for adssearch:Günther Deschner2007-02-141-49/+74
| | | | | | | | * get rid of horrible ads.h parsing * add LDAP_SERVER_SHUTDOWN_NOTIFY_OID * display hex bitmasks Guenther
* r21339: Fix the non-linux build. This is more evidence that this needs to beJim McDonough2007-02-141-0/+2
| | | | moved up one layer.
* r21336: Fix indent (as pointed out by Volker).Günther Deschner2007-02-141-6/+6
| | | | Guenther
* r21327: Jim, thanks for the review! :-)Volker Lendecke2007-02-141-0/+29
| | | | | | Now to test this... Volker
* r21324: Add linux setlease to the vfs layer. Next round, as Volker points out,Jim McDonough2007-02-148-11/+118
| | | | | | | | | it should be abstracted a little higher up so other os'es can have an entry, but it will take a bit more work. Thanks to Chetan Shringarpure and Mathias Dietz. I didn't increment the vfs number again because the kernel change notify stuff hasn't been released yet anyway.
generated by cgit (git 2.34.1) at 2024-07-04 17:58:51 +0000