| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
| |
* Set VERSION to 3.0.25rc1
* Update release notes.
|
| |
|
|
| |
* Set version to 3.0.25pre2
|
| |
|
|
|
|
|
|
| |
Still todo:
* release notes
* few minor outstanding patches
* additional idmap man pages
|
| |
|
|
| |
to warrant one)
|
| |
|
|
|
|
|
| |
* DNS SRV fixes
* fd leak fix in async dns lookup code (nmbd)
* krb5 sesssetup double username map fix
* NULL deref fix in reg_objects.c
|
| | |
|
| | |
|
| |
|
|
|
| |
data blob is added if the logon call failed.
Jeremy.
|
| |
|
|
| |
Jeremy.
|
| |
|
|
|
| |
Fix Coverity bug #26. Guard against NULL ref.
Jeremy.
|
| |
|
|
|
|
| |
warning as it seems to get confused with assignment
and comparison. Clarify the code anyway.
Jeremy.
|
| |
|
|
|
|
| |
already do what we need.
Guenther
|
| |
|
|
|
|
|
| |
fail and we would still return success in the SMBsesssetup reply :-(
* Make sure to create the local token for the server_fino struct
in reply_spnego_kerberos() so that register_vuid() does not fail.
(how did this ever work?)
|
| |
|
|
|
|
|
|
| |
client to disconnect after negprot"
We missed one case of ignoring "BSRSPYL ".
Merge for 3.0.21c.
Jeremy.
|
| |
|
|
| |
Sync with trunk as off r13315
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
session
setup comes in with the vc (virtual connection) field set to zero. This is
done by Windows, probably you can tweak that by some registry key.
This boolean option controls whether an incoming session setup
should kill other connections coming from the same IP. This matches
the default Windows 2003 behaviour.
Setting this parameter to yes becomes necessary when you have a flaky
network and windows decides to reconnect while the old connection
still has files with share modes open. These files become inaccessible
over the new connection.
The client sends a zero VC on the new connection, and Windows 2003
kills all other connections coming from the same IP. This way the
locked files are accessible again.
Please be aware that enabling this option will kill connections behind
a masquerading router.
Volker
|
| |
|
|
|
|
| |
more precise inline comment why PAC verification may fail.
Guenther
|
| |
|
|
|
|
|
| |
Also remove the mem_ctx from the netsamlogon_cache_store() API.
Guenther, what should we be doing with the other fields in
the PAC_LOGON_INFO?
|
| |
|
|
|
|
|
|
|
|
|
| |
* remove redundant call to sub_set_smb_name() in session setup code.
* Fix lockup when running 'wbinfo -t' on a Samba PDC. Cause
was new authenticated session setup from winbindd which
resulted in a mangled username (machine_) that was not found
in the local files and so was queiued up to nss_winbindd.
Deadlock....
So now make sure to keep the trailing '$' for machine account
names when calling sub_set_smb_name().
|
| |
|
|
| |
Guenther
|
| |
|
|
| |
Guenther
|
| |
|
|
|
|
|
| |
* \PIPE\unixinfo
* winbindd's {group,alias}membership new functions
* winbindd's lookupsids() functionality
* swat (trunk changes to be reverted as per discussion with Deryck)
|
| |
|
|
|
|
| |
'twice'.
Andrew Bartlett
|
| |
|
|
|
|
|
| |
NTLMSSP (not wrapped in SPNEGO). We really should have supported this
anyway, but we got away with it for a while...
Andrew Bartlett
|
| |
|
|
| |
supporttrunk/source/smbd/sesssetup.c
|
| |
|
|
| |
Jeremy.
|
| |
|
|
|
|
| |
safe for using our headers and linking with C++ modules. Stops us
from using C++ reserved keywords in our code.
Jeremy
|
| |
|
|
| |
keytab and security != ads
|
| |
|
|
|
|
|
|
|
| |
aruna.prabakar@hp.com).
This re-enables the Samba 2.2 behavior where a user that was
successfully authenticated by a remote DC would be mapped
to the guest account if there was not existing UNIX account
for that user and we could not create one.
|
| | |
|
| |
|
|
| |
version to 3.0.20pre1
|
| | |
|
| |
|
|
| |
about unitialized variable
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
1. using smbc_getxattr() et al, one may now request all access control
entities in the ACL without getting all other NT attributes.
2. added the ability to exclude specified attributes from the result set
provided by smbc_getxattr() et al, when requesting all attributes,
all NT attributes, or all DOS attributes.
3. eliminated all compiler warnings, including when --enable-developer
compiler flags are in use. removed -Wcast-qual flag from list, as that
is specifically to force warnings in the case of casting away qualifiers.
Note: In the process of eliminating compiler warnings, a few nasties were
discovered. In the file libads/sasl.c, PRIVATE kerberos interfaces
are being used; and in libsmb/clikrb5.c, both PRIAVE and DEPRECATED
kerberos interfaces are being used. Someone who knows kerberos
should look at these and determine if there is an alternate method
of accomplishing the task.
|
| |
|
|
|
|
| |
client caps.
Jeremy.
|
| |
|
|
| |
using krb5
|
| |
|
|
| |
Jeremy.
|
| |
|
|
|
|
|
| |
consistent
enum type for Protocol extern.
Jeremy.
|
| | |
|
| |
|
|
|
|
| |
any more.
Andrew Bartlett
|
| |
|
|
|
|
| |
kawasa_r@itg.hitachi.co.jp. A couple of mem leak fixes in
mainline code paths though :-).
Jeremy.
|
| |
|
|
|
|
|
| |
key could
be anything, and may not be based on anything 'NT'. This is also what microsoft
calls it.
|
| | |
|
| |
|
|
|
| |
LANMAN password. This also corrects the 'session key'
for these connections.
|
|
|
metze
|
