summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* s3-waf: convert PERFCOUNT into a subsystem.Günther Deschner2010-09-271-0/+20
| | | | Guenther
* s3-waf: convert CHARSET into a subsystem.Günther Deschner2010-09-271-0/+34
| | | | Guenther
* s3-waf: convert IDMAP into subsystem.Günther Deschner2010-09-271-0/+55
| | | | Guenther
* s3-waf: convert PDB into subsystem.Günther Deschner2010-09-271-0/+41
| | | | Guenther
* s3-waf: convert AUTH into subsystem.Günther Deschner2010-09-271-0/+59
| | | | Guenther
* s4-ldbmodules: Added new module aclread to handle access checks on LDAP searchNadezhda Ivanova2010-09-264-0/+327
| | | | | | | It is currently enabled only if the request comes from the LDAP server, and is disabled by default. Use acl:search=true in smb.conf to enable it. It filters out all objects the user is not allowed to see, and all attributes the user does not have RP on. Extended access not supported yet.
* s4-tests: Added tests for search checks on attributesNadezhda Ivanova2010-09-262-5/+102
| | | | | The ACL reach tests are in the knowfail because aclread module is not enabled by default
* s4-tests: Removed search tests with anonymous credentials as they fail ↵Nadezhda Ivanova2010-09-262-4/+4
| | | | | | againts Windows These tests will fail in make test as well if the acl_read module is enabled.
* s4-dsdb: Added a function to check access on a particular object by its guidNadezhda Ivanova2010-09-261-0/+37
| | | | Similar to dsdb_check_access_on_dn, only it searches by guid.
* s4-dsdb: A helper to determine if an attribute is part of the search filterNadezhda Ivanova2010-09-261-0/+46
|
* s4-dsdb: Moved some helper functions to a separate fileNadezhda Ivanova2010-09-265-222/+260
| | | | We need these to be accessible to the aclread module as well.
* s4-ldap: Added a control to apply the access checks on read via LDAPNadezhda Ivanova2010-09-263-0/+6
|
* autobuild: use killbysubdir if availableAndrew Tridgell2010-09-261-2/+4
| | | | | this will reduce the spurious test output while processes are being killed
* autobuild: exit immediately if no changes from masterAndrew Tridgell2010-09-261-1/+9
| | | | we don't need to test master in autobuild
* s3-waf: convert LIBGPO into a subsystem.Günther Deschner2010-09-261-2/+5
| | | | Guenther
* s3-waf: convert PLAINTEXT_AUTH, SLCACHE and DCUTIL into subsystems.Günther Deschner2010-09-261-11/+19
| | | | Guenther
* s3-vfs: fix the build of nfs4_acls.cGünther Deschner2010-09-261-1/+2
| | | | Guenther
* s3-waf: Link smbd against RPCECHO.Andreas Schneider2010-09-261-1/+1
|
* s3: Remove talloc_autofree_context() from nametouid()Volker Lendecke2010-09-261-1/+1
| | | | pass is freed a few lines down
* s3: Remove talloc_autofree_context() from guest_user_info()Volker Lendecke2010-09-261-1/+2
| | | | pwd is freed a few lines down
* s3: Remove talloc_autofree_context() from getpwnam_alloc()Volker Lendecke2010-09-261-1/+1
| | | | This is given to the memcache a few lines down
* s3: Remove talloc_autofree_context() from notify_internal_parent_init()Volker Lendecke2010-09-263-6/+5
|
* Fix bug #7698 - Assert causes smbd to panic on invalid NetBIOS session request.Jeremy Allison2010-09-266-57/+134
| | | | | | | | | | | | | | Found by the CodeNomicon test suites at the SNIA plugfest. http://www.codenomicon.com/ If an invalid NetBIOS session request is received the code in name_len() in libsmb/nmblib.c can hit an assert. Re-write name_len() and name_extract() to use "buf/len" pairs and always limit reads. Jeremy.
* s4:schannel: handle move flag combinations in the serverStefan Metzmacher2010-09-261-13/+23
| | | | | | This fixes some testsuites in the CIFS plugfest. metze
* s4-auth: fixed the SID list for DCs in the PACAndrew Tridgell2010-09-264-29/+16
| | | | | | | | | | | the S-1-5-9 SID is added in the PAC by the KDC, not on the server that receives the PAC Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Sun Sep 26 07:09:08 UTC 2010 on sn-devel-104
* autobuild: fixed detection of master changesAndrew Tridgell2010-09-261-3/+4
|
* s3-selftest: added samba3.posix_s3.rap.printing as a knownfailAndrew Tridgell2010-09-261-0/+1
| | | | | this fails intermittently on sn-devel, Günther suggests adding this to knownfail for now
* idl-pac: add a decoder for the pac info ctrAndrew Tridgell2010-09-261-0/+4
| | | | | Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-drs: use the system sam_ctx for updaterefsAndrew Tridgell2010-09-261-8/+9
| | | | this is needed for RODC clients calling updaterefs
* s4-spn: don't try to do SPN updates as a RODCAndrew Tridgell2010-09-261-0/+4
| | | | we don't have the permissions to do it
* libcli/ldap: let ldap_full_packet() use asn1_peek_tag_needed_size()Stefan Metzmacher2010-09-261-1/+1
| | | | | | | This allows us to read a full packet without read byte after byte or possible read to much. metze
* lib/util/asn1: add asn1_peek_tag_needed_size() and asn1_peek_full_tag()Stefan Metzmacher2010-09-262-0/+85
| | | | | | | We need a way to ask for the length of a tag without having the full buffer yet. metze
* libcli/util: let tstream_read_pdu_blob_* cope with variable length headersStefan Metzmacher2010-09-261-5/+13
| | | | metze
* s4-kerberos Don't segfault if the password isn't specified in keytab generationAndrew Bartlett2010-09-261-0/+7
| | | | | | | Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Sep 26 03:29:34 UTC 2010 on sn-devel-104
* upgradeprovision: fix a typoMatthieu Patou2010-09-261-1/+1
|
* upgradeprovision: Fix a bug with renamed entriesMatthieu Patou2010-09-261-2/+13
| | | | | The SD was not refetched for renamed entries, resulting with a try to add an additional SD when there was already one.
* upgradeprovision: fix a bug with not updated linksMatthieu Patou2010-09-261-0/+1
|
* s4 provision: start with gpo of version 0 and be consistent between ↵Matthieu Patou2010-09-262-3/+3
| | | | different policies
* s4 upgradeprovision: fix a bug with empty reference objectsMatthieu Patou2010-09-261-1/+9
| | | | Thanks to lukas@eecs.qmul.ac.uk for poiting it to me
* s4 upgradeprovision: Copy versionNumber if not present it helps to make gpo ↵Matthieu Patou2010-09-261-3/+3
| | | | valid
* s4 provision: Make GPO folder group writableMatthieu Patou2010-09-261-3/+3
| | | | | | The group of this folder is domain administrator and it seems sensible that all domain administrators have the right to modify the gpo (they have it at the NT ACLs level ...)
* s3: Remove talloc_autofree_context() from change_to_guest()Volker Lendecke2010-09-261-1/+1
| | | | pass is freed at the exit of this routine
* s3: Remove talloc_autofree_context() from swatVolker Lendecke2010-09-261-2/+2
| | | | In both cases, pass is freed immediately
* s3: Remove talloc_autofree_context() from smbpasswdVolker Lendecke2010-09-261-2/+2
| | | | In both cases, pwd is freed immediately
* s3: Remove talloc_autofree_context() from net_sam_provision()Volker Lendecke2010-09-261-1/+1
|
* s3: Remove talloc_autofree_context() from lookup_unix_user_name()Volker Lendecke2010-09-261-1/+1
| | | | pwd is freed in this routine immediately
* s3: Remove talloc_autofree_context() from pdb_init_ads()Volker Lendecke2010-09-261-1/+1
|
* s3: Remove two talloc_autofree_context() callsVolker Lendecke2010-09-261-2/+2
| | | | Both allocated blobs are freed in their routines
* s3: Remove talloc_autofree_context() from serverid_db()Volker Lendecke2010-09-261-2/+2
| | | | | If we needed an explicit tdb_close() in the destructor, we'd be hosed long ago.
* s3: Remove talloc_autofree_context() from serverid_parent_init()Volker Lendecke2010-09-263-5/+4
|
generated by cgit (git 2.34.1) at 2025-09-26 16:10:04 +0000