Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | r21526: Fix stray character in sys_memalign() that is only | Gerald Carter | 2007-02-24 | 1 | -1/+1 |
| | | | | is the case where we don't have memalign() or posix_memalign(). | ||||
* | r21525: Go ahead and checkin the mlock() & memalign() fixes so | Gerald Carter | 2007-02-24 | 6 | -22/+61 |
| | | | | | | | | others don't get stuck with the winbindd hang. Still waiting on additional confirmation from Guenther that this fixes thes issues he was observing as well. But it's been running in my local tree for a day without problems. | ||||
* | r21517: Fix build warnings. | Günther Deschner | 2007-02-23 | 1 | -2/+1 |
| | | | | Guenther | ||||
* | r21509: Merge lp_passdb_backend() from rev 21506 to 3_0_25. | Lars Müller | 2007-02-22 | 1 | -1/+43 |
| | | | | | Slightly change the DEBUG 0 message as suggested by Volker on samba-technical. | ||||
* | r21508: Fix memleak in new idmap_tdb, thanks Herb. | Simo Sorce | 2007-02-22 | 1 | -12/+4 |
| | | | | | | Jerry please check. Simo. | ||||
* | r21507: Fix some "cannot access LDAP when no root" bugs. | Gerald Carter | 2007-02-22 | 3 | -13/+30 |
| | | | | | | | The two culprits were * pdb_get_account_policy() * pdb_get_group_sid() | ||||
* | r21505: make sure mlock()'d memory is aligned on a page boundary | Gerald Carter | 2007-02-22 | 2 | -7/+26 |
| | |||||
* | r21500: Fix inappropriate creation of a krb5 ticket refreshing event when a user | Günther Deschner | 2007-02-22 | 3 | -6/+68 |
| | | | | | | | | | | | | | | | | | | | changed a password via pam_chauthtok. Only do this if a) a user logs on using an expired password (or a password that needs to be changed immediately) or b) the user itself changes his password. Also make sure to delete the in-memory krb5 credential cache (when a user did not request a FILE based cred cache). Finally honor the krb5 settings in the first pam authentication in the chauthtok block (PAM_PRELIM_CHECK). This circumvents confusion when NTLM samlogon authentication is still possible with the old password after the password has been already changed (on w2k3 sp1 dcs). Guenther | ||||
* | r21483: Fix use of uninitialized variable. | Jeremy Allison | 2007-02-21 | 1 | -3/+6 |
| | | | | Jeremy. | ||||
* | r21482: Use IPC$ not ipc$ for consistency. | Jeremy Allison | 2007-02-21 | 1 | -1/+1 |
| | | | | Jeremy. | ||||
* | r21481: No one said anything, so I'm disallowing anything | Jeremy Allison | 2007-02-21 | 1 | -7/+17 |
| | | | | | but explicit shares in "default service" :-). Jeremy. | ||||
* | r21480: Make fd_open match fd_close be translating | Jeremy Allison | 2007-02-21 | 1 | -9/+12 |
| | | | | | errno into an NTSTATUS immediately. Jeremy. | ||||
* | r21479: Merge Volker's code simplification for the AIO | Jeremy Allison | 2007-02-21 | 2 | -79/+15 |
| | | | | | paths. Jeremy. | ||||
* | r21478: Add 65k length limit for split SPNEGO blobs. | Jeremy Allison | 2007-02-20 | 1 | -9/+19 |
| | | | | Jeremy | ||||
* | r21474: Ensure trustdom_cache_shutdown() gets called | Jeremy Allison | 2007-02-20 | 1 | -4/+4 |
| | | | | | on terminate. Pointed out by Herb. Jeremy. | ||||
* | r21471: Merge from Volker. | Jeremy Allison | 2007-02-20 | 1 | -0/+4 |
| | | | | | | Not strictly necessary, as data_blob() panics if it can't allocate. But I'd see this as a design flaw in data_blob() and it made me look in that routine. Jeremy. | ||||
* | r21469: Fix nfs4_acls module to follow 3.0.25 deviation in SEC_ACE and ↵ | Alexander Bokovoy | 2007-02-20 | 1 | -4/+4 |
| | | | | SEC_ACL definitions | ||||
* | r21468: Add GPFS-provided DMAPI support based on their GPL library | Alexander Bokovoy | 2007-02-20 | 2 | -1/+11 |
| | |||||
* | r21460: Fix for server-side processing of SPNEGO auth | Jeremy Allison | 2007-02-20 | 4 | -11/+234 |
| | | | | | | | fragmented into "max xmit" size security blob chunks. Bug #4400. Needs limits adding, and also a client-side version. Jeremy. | ||||
* | r21454: Fix debug typo. | Günther Deschner | 2007-02-19 | 1 | -1/+1 |
| | | | | Guenther | ||||
* | r21452: Revert to tdb group_mapping implementation for 3.0.25 release. | Gerald Carter | 2007-02-19 | 134 | -39625/+16 |
| | | | | No other changes here. | ||||
* | r21450: No need to TALLOC_FREE twice here. | Günther Deschner | 2007-02-19 | 1 | -2/+0 |
| | | | | Guenther | ||||
* | r21449: Talked to Jerry on irc, he does not see what might break with this: ↵ | Volker Lendecke | 2007-02-19 | 1 | -1/+1 |
| | | | | | | | | Change back the 'msdfs root = yes' default to 'no'. Volker | ||||
* | r21446: Karolins "printjob username" | Volker Lendecke | 2007-02-19 | 2 | -1/+10 |
| | |||||
* | r21445: Apply tdb_parse_record Tridges error return, merge to 3_0_25 and 4_0 | Volker Lendecke | 2007-02-19 | 4 | -13/+94 |
| | |||||
* | r21420: Looks big, but isn't really. Move internal names | Jeremy Allison | 2007-02-18 | 20 | -249/+221 |
| | | | | | | | | | of SEC_DESC over from grp_owner -> group_owner, ace -> aces and info.mask -> mask. Makes it *much* easier to move code within branches as they're now referring to the same names for the same things (which is what the NDR code also uses). Jeremy. | ||||
* | r21412: The last patch also incremented the seqnum when tdb_store failed. ↵ | Volker Lendecke | 2007-02-17 | 1 | -8/+10 |
| | | | | | | | | | Not as bad as not doing it at all, but needs fixing. Also simplify the logic, I had missed the "goto out" at the end of the function. Volker | ||||
* | r21410: We have to increment the sequence number also when tdb_update_hash() | Volker Lendecke | 2007-02-17 | 1 | -1/+1 |
| | | | | | | | | succeeded. Found while testing the brlock seqnum patch. Tridge, please check! Volker | ||||
* | r21399: need to zero the request and response structures | Herb Lewis | 2007-02-16 | 1 | -0/+3 |
| | |||||
* | r21398: update sharesec to allow add modify and remove commands | Herb Lewis | 2007-02-16 | 1 | -124/+316 |
| | |||||
* | r21397: revert accidential commit | Herb Lewis | 2007-02-16 | 1 | -1/+1 |
| | |||||
* | r21396: fix wbinfo --lookup-rids command | Herb Lewis | 2007-02-16 | 3 | -4/+36 |
| | | | | allow detection of libbiconv if all others fail - need for FreeBSD | ||||
* | r21394: Prevent nscd crash due to potential NULL pointer dereference in | Günther Deschner | 2007-02-16 | 1 | -0/+4 |
| | | | | | | _nss_winbind_initgroups_dyn() on an empty group list. Guenther | ||||
* | r21393: Fix typo. | Günther Deschner | 2007-02-16 | 1 | -1/+1 |
| | | | | Guenther | ||||
* | r21387: Another important fix for non-AD domains: | Günther Deschner | 2007-02-16 | 2 | -7/+3 |
| | | | | | | | Avoid assigning 0 as primary group id for users in NSS calls. Jerry, please check. Guenther | ||||
* | r21383: More possible "security=share" fixes. If a client | Jeremy Allison | 2007-02-16 | 1 | -0/+3 |
| | | | | | | is sending LMv2 make sure we test with the password blob in the LM field as well as the NT field. Jeremy. | ||||
* | r21382: Important fix for winbind when using non-AD domains. | Günther Deschner | 2007-02-16 | 2 | -2/+14 |
| | | | | | | | | | | | | | Jeremy, I'm afraid you removed the "domain->initialized" from the set_dc_types_and_flags() call when the connect to PI_LSARPC_DS failed (with rev. 19148). This causes now that init_dc_connection_network is called again and again which in turn rescans the DC each time (which of course fails each time with NT_STATUS_BUFFER_TOO_SMALL). Just continue with the non-PI_LSARPC_DS scan so that the domain is initialized properly. Guenther | ||||
* | r21379: Attempt to fix the build on "gwen" | Volker Lendecke | 2007-02-16 | 1 | -1/+1 |
| | |||||
* | r21370: check into 3.0.25 as well | Simo Sorce | 2007-02-15 | 1 | -1/+1 |
| | |||||
* | r21358: Some more debugging for _nss_winbind_initgroups_dyn() on Linux. | Günther Deschner | 2007-02-15 | 1 | -0/+12 |
| | | | | Guenther | ||||
* | r21357: Fix typo. | Günther Deschner | 2007-02-15 | 1 | -1/+1 |
| | | | | Guenther | ||||
* | r21353: In the turn of tracking down nss_winbind related bugs on Linux: | Günther Deschner | 2007-02-15 | 1 | -19/+100 |
| | | | | | | print NSS_STATUS code with DEBUG_NSS when leaving a function. Guenther | ||||
* | r21352: Let ads_upn_suffixes() return a pointer to an array of suffixes. | Günther Deschner | 2007-02-15 | 1 | -4/+4 |
| | | | | Guenther | ||||
* | r21349: Fix memleak in ads_upn_suffixes(). | Günther Deschner | 2007-02-14 | 1 | -0/+3 |
| | | | | Guenther | ||||
* | r21346: FIXME ! Our parsing here is wrong I think, | Jeremy Allison | 2007-02-14 | 1 | -1/+10 |
| | | | | | | | | but for a level3 it makes no sense for ptr_sec_desc to be NULL. JRA. Based on a Vista sniff from Martin Zielinski <mz@seh.de>. Jerry - part of the Vista patchset. Jeremy. | ||||
* | r21345: Smaller fixes for adssearch: | Günther Deschner | 2007-02-14 | 1 | -49/+74 |
| | | | | | | | | * get rid of horrible ads.h parsing * add LDAP_SERVER_SHUTDOWN_NOTIFY_OID * display hex bitmasks Guenther | ||||
* | r21339: Fix the non-linux build. This is more evidence that this needs to be | Jim McDonough | 2007-02-14 | 1 | -0/+2 |
| | | | | moved up one layer. | ||||
* | r21336: Fix indent (as pointed out by Volker). | Günther Deschner | 2007-02-14 | 1 | -6/+6 |
| | | | | Guenther | ||||
* | r21327: Jim, thanks for the review! :-) | Volker Lendecke | 2007-02-14 | 1 | -0/+29 |
| | | | | | | Now to test this... Volker | ||||
* | r21324: Add linux setlease to the vfs layer. Next round, as Volker points out, | Jim McDonough | 2007-02-14 | 8 | -11/+118 |
| | | | | | | | | | it should be abstracted a little higher up so other os'es can have an entry, but it will take a bit more work. Thanks to Chetan Shringarpure and Mathias Dietz. I didn't increment the vfs number again because the kernel change notify stuff hasn't been released yet anyway. |