| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
| |
the server.
Guenther
|
| | |
|
| |
|
|
| |
not really needed.
|
| |
|
|
|
|
|
|
| |
Change the handling of the developer CFLAGS so that they are always
emited to the Makefile in the DEVELOPER_CFLAGS variable. This makes
it easy to turn developer mode on and off without waiting for
configure to run. The developer flags are only added to CFLAGS for
the --enable-developer and --enable-krb5developer cases.
|
| |
|
|
| |
context flags.
|
| |
|
|
|
| |
Fix the prototype for sys_broken_setgroups and log *BSD group list
truncation a bit more verbosely.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
when verifying a ticket from winbindd_pam.c.
I've found during multiple, fast, automated SSH logins (such
as from a cron script) that the replay cache in MIT's krb5
lib will occasionally fail the krb5_rd_req() as a replay attack.
There seems to be a small window during which the MIT krb5
libs could reproduce identical time stamps for ctime and cusec
in the authenticator since Unix systems only give back
milli-seconds rather than the micro-seconds needed by the
authenticator. Checked against MIT 1.5.1. Have not
researched how Heimdal does it.
My thinking is that if someone can spoof the KDC and TDS
services we are pretty hopeless anyways.
|
| |
|
|
|
|
| |
Fix supplementary group list truncation for *BSD. We need to pass
the correct group list length and only truncate to NGROUPS_MAX if
it is too long.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
in the winbindd_getgrnam() call. Couple of comments:
* Adds "winbind expand groups" parameter which defines the
max depth winbindd will expand group members. The default
is the current behavior of one level of expansion.
* The entire getrgnam() interface should be async. I
haven't done that.
* Refactors the domain users hack in fill_grent_mem() into
its own function.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
Add a function to retrieve the registry db sequence number.
This is in preparation of loadparm integration of registry global
smb.conf options: this will allow to detect changes in order to trigger reload.
Michael
|
| |
|
|
|
|
| |
first ask for existence of a file when we do the open_file_ntcreate in
can_rename later on anyway. That also gets us the right error message in
case the file is not there automatically.
|
| |
|
|
| |
inside close_file() already.
|
| |
|
|
|
|
|
|
|
|
|
| |
before writing to secdesc_buf->sd,
3_0 checked secdesc_buf->sd while 3_0_26 checked secdesc_buf->sd_size.
This patch makes both revisions check _both_ befor writing.
Jerry / Jeremy : please check if this is correct!
Michael
|
| |
|
|
| |
Fix a const warning.
|
| |
|
|
| |
fix a memleak, add a const, update a link
|
| |
|
|
| |
Fix two memleaks.
|
| |
|
|
|
|
| |
little cosmetic change to remove a local var that's not really needed
Michael
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
The attached patch removes a little race condition for
people with real kernel oplock support, and reduces some
code paths. It changes reply_unlink to open_file_ntcreate,
set_delete_on_close and close_file.
The race condition happens if we break the oplock in
can_delete via open_file_ntcreate, we close the file,
someone else gets a batch oplock and we try to unlink.
It reduces code paths by calling SMB_VFS_UNLINK in 2 fewer
places.
|
| |
|
|
| |
Fix a memleak in reg_createkey
|
| |
|
|
|
|
|
|
|
| |
only used in rpc_server/srv_winreg_nt.c.
By moving them to a module of their own, this patch reduces the
diff between the registry code of 3_0 and 3_0_26 even more.
Michael
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Refactor the code in registry/ essentially by moving functions
around and creating a new reg_frontend_hilvl.c to minimize the
linker dependencies for parts of the registry code.
This initial refactoring allows to link registry code to e.g. "bin/net"
* Add the "net conf" utility: It gives convenient local acces to the
HKLM\Software\Samba\smconf key in the registry, where the samba
registry shares are stored.
* make reg_enumvalue return WERR_NO_MORE_ITEMS instead of
WERR_BAD_FILE when all items have been successfully enumerated.
Besides seeming the reasonable code to return,
this is what I have seen from w2k3, w2k, wxp. (r22496)
Michael
|
| |
|
|
|
|
| |
Fix a memleak found by the IBM checker.
Michael
|
| |
|
|
|
|
| |
request. Ignore it. Should fix bug #4689 but more tests and
valgrinding will follow.
Jeremy.
|
| |
|
|
|
| |
kill call as that sets pid = 0 ! :-).
Jeremy.
|
| |
|
|
|
| |
to Jerry add to 3.0.25b.
Jeremy.
|
| | |
|
| |
|
|
|
| |
if the name wasn't changed.
Jeremy.
|
| |
|
|
|
|
|
| |
* registry_fetch_values is not needed anymore
* fix comment typo
Michael
|
| |
|
|
|
|
| |
Convert the registry shares to use the new API (reg_api.c)
Michael
|
| |
|
|
|
|
| |
Remove a const, "name" is allocated anyway.
Michael
|
| |
|
|
|
|
| |
"Reduce code size slightly by shuffling stuff around."
Michael
|
| |
|
|
|
|
| |
Add two utility functions for easy opening/creating registry keys.
Michael
|
| |
|
|
|
|
|
| |
new function reg_open_path should become the replacement for
regkey_open_internal
Michael
|
| |
|
|
| |
Michael
|
| |
|
|
|
|
| |
Refuse registry shares without path.
Michael
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* Introduce registry/reg_api.c, which closely resembles the winreg api.
This is important for the subsequent merges of the "net conf" code.
* The rewrite of rpc_server/srv_winreg_nt.c is _not_ merged since the
preliminary changes have not been merged.
* Change some routines from NTSTATUS to WERROR.
* Remove "parent" argument to regkey_open_internal (and rewrite to
use the new api functions like reg_openhive and so on).
Michael
|
| |
|
|
|
|
| |
Make regsubkey_ctr_addkey return WERROR.
Michael
|
| |
|
|
| |
Michael
|
| |
|
|
|
|
| |
Add 'registry shares = yes' and registry key security descriptors.
Michael
|
| |
|
|
| |
Michael
|
| |
|
|
|
|
|
|
|
|
|
| |
Change regkey_open_internal to take the parent key and a talloc_ctx as
arguments. This also replaces regkey_close_internal by TALLOC_FREE.
(The modification to srv_winreg_nt.c differs from the original patch
and is kept as minimal as possible due to preliminary commits not
having been merged.)
Michael
|
| |
|
|
|
|
|
|
| |
there, do some reformatting.
Jeremy, I think we should also kill the child. It might hang in
something (an fcntl lock for example) that the next child might run into
immediately again.
|
| |
|
|
|
| |
code :-). Thanks Volker !
Jeremy.
|
| |
|
|
|
|
| |
winbindd: Exceeding 200 client connections, no idle connection found"
bug #3204. This fixes it in Jerry's testing !
Jeremy.
|
| |
|
|
|
| |
clear to my why the catia module feels it's necessary to implement
these operations, but at least they're now the right type.
|
| |
|
|
|
|
| |
Preleminary merge for subsequent merge of restructuring of registry code.
Michael
|
| |
|
|
|
|
|
|
| |
Move defines from rpc_reg.h to reg_object.h.
rpc_reg.h is not completely removed, since not all of
the hand-marshalled code is replaced by ndr code in 3_0_26.
Michael
|
| |
|
|
| |
Michael
|
| |
|
|
|
|
| |
(Can't find logs/diffs from trunk anymore.)
Michael
|
