summaryrefslogtreecommitdiffstats
path: root/source3/auth/pass_check.c
Commit message (Collapse)AuthorAgeFilesLines
* More simple const fixes.Jeremy Allison2011-05-051-8/+8
|
* s3: try to fix the build on some non-linux buildfarm machines.Günther Deschner2011-03-301-0/+1
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Mar 30 11:39:31 CEST 2011 on sn-devel-104
* s3-auth: use auth.h where needed.Günther Deschner2011-03-301-0/+1
| | | | Guenther
* s3-includes: move some chgpasswd related defines to the locations where they ↵Günther Deschner2011-02-221-0/+6
| | | | | | are used. Guenther
* s3: Lift smbd_server_fd() from pass_check()Volker Lendecke2010-08-281-7/+1
|
* s3: Lift smbd_server_fd() from password_check()Volker Lendecke2010-08-281-11/+13
|
* s3: Fix some nonempty blank linesVolker Lendecke2010-08-281-15/+15
|
* s3: Lift smbd_server_fd() from smb_pam_passcheckVolker Lendecke2010-08-271-1/+8
|
* s3: Pass "private_data" through string_combinations()Volker Lendecke2010-08-271-12/+24
|
* s3-auth: Remove obsolete 'update encrypted' option.Andreas Schneider2010-08-161-9/+4
|
* s3:auth Make Samba3 use the new common struct auth_usersupplied_infoAndrew Bartlett2010-08-141-4/+4
| | | | | | | | | | | | | This common structure will make it much easier to produce an auth module for s3compat that calls Samba4's auth subsystem. In order the make the link work properly (and not map twice), we mark both that we did try and map the user, as well as if we changed the user during the mapping. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* Correctly define prototypes for accessor functions.Jeremy Allison2007-12-171-3/+3
| | | | | Jeremy. (This used to be commit 299ea5d122e173adf6edb6399fc90798747b0c97)
* More static fstring removal.Jeremy Allison2007-12-171-33/+116
| | | | | Jeremy. (This used to be commit dcf624aa02cf7415a4a55e6d45606e813ae6b91f)
* Remove pstring from auth/*Jeremy Allison2007-11-141-2/+5
| | | | | Jeremy. (This used to be commit 72c19d114b40ee307bbe45d9828667165a26d7a3)
* RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison2007-10-181-4/+4
| | | | | | | | bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
* r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell2007-10-101-2/+1
| | | | (This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
* r23779: Change from v2 or later to v3 or later.Jeremy Allison2007-10-101-1/+1
| | | | | Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
* r16230: Fix Klocwork #861 and others. localtime and asctimeJeremy Allison2007-10-101-2/+8
| | | | | | can return NULL. Ensure we check all returns correctly. Jeremy. (This used to be commit 6c61dc8ed6d84f310ef391fb7700e93ef42c4afc)
* r12522: Try and fix bug #2926 by removing setlocale(LC_ALL, "C")Jeremy Allison2007-10-101-2/+2
| | | | | | | and replace calls to isupper/islower/toupper/tolower with ASCII equivalents (mapping into _w variants). Jeremy. (This used to be commit c2752347eb2deeb2798c580ec7fc751a847717e9)
* r2899: Change some #if DEBUG_PASSWORD's to #ifdef DEBUG_PASSWORD.Tim Potter2007-10-101-1/+1
| | | | | Bugzilla #1903. (This used to be commit 1327d83d902b6a39096d387d734e73d85ed53f85)
* Removed strupper/strlower macros that automatically map to ↵Jeremy Allison2003-07-031-3/+2
| | | | | | | | strupper_m/strlower_m. I really want people to think about when they're using multibyte strings. Jeremy. (This used to be commit ff222716a08af65d26ad842ce4c2841cc6540959)
* Cleanups: (merge from HEAD)Andrew Bartlett2003-02-101-1/+1
| | | | | | | | | | | - use safe_strcpy() instead of pstrcpy() for malloc()ed strings - CUPS: a failure in an attempt to automaticly add a printer is not level 0 stuff. - Fix up a possible Realloc() failure segfault Andrew Bartlett (This used to be commit c1cfc296c2efdb2b5972202146e80f0e3b6a3da4)
* Updates from Samba HEAD:Andrew Bartlett2002-10-011-4/+4
| | | | | | | | | | | | | | | | | - Fix segfaults in the 'net ads' commands when no password is provided - Readd --with-ldapsam for 2.2 compatability. This conditionally compiles the old options, but the actual code is available on all ldap systems. - Fix shadow passwords (as per work with vl) - Fix sending plaintext passwords to unicode servers (again vl) - Add a bit of const to secrets.c functions - Fix some spelling and grammer by vance. - Document the -r option in smbgroupedit. There are more changes in HEAD, I'm only merging the changes I've been involved with. Andrew Bartlett (This used to be commit 83973c389355a5cc9ca74af467dfd8b5dabd2c8f)
* updated the 3.0 branch from the head branch - ready for alpha18Andrew Tridgell2002-07-151-37/+28
| | | | (This used to be commit 03ac082dcb375b6f3ca3d810a6a6367542bc23ce)
* Removed version number from file header.Tim Potter2002-01-301-2/+1
| | | | | Changed "SMB/Netbios" to "SMB/CIFS" in file header. (This used to be commit 6a58c9bd06d0d7502a24bf5ce5a2faf0a146edfa)
* A nice *big* change to the fundemental way we do things.Andrew Bartlett2002-01-171-3/+21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Samba (ab)uses the returns from getpwnam() a lot - in particular it keeps them around for a long time - often past the next call... This adds a getpwnam_alloc and a getpwuid_alloc to the collection. These function as expected, returning a malloced structure that can be free()ed with passwd_free(&passwd). This patch also cuts down on the number of calls to getpwnam - mostly by taking advantage of the fact that the passdb interface is already case-insensiteve. With this patch most of the recursive cases have been removed (that I know of) and the problems are reduced further by not using the sys_ interface in the new code. This means that pointers to the cache won't be affected. (This is a tempoary HACK, I intend to kill the password cache entirly). The only change I'm a little worried about is the change to rpc_server/srv_samr_nt.c for private groups. In this case we are getting groups from the new group mapping DB. Do we still need to check for private groups? I've toned down the check to a case sensitve match with the new code, but we might be able to kill it entirly. I've also added a make_modifyable_passwd() function, that copies a passwd struct into the form that the old sys_getpw* code provided. As far as I can tell this is only actually used in the pass_check.c crazies, where I moved the final 'special case' for shadow passwords (out of _Get_Pwnam()). The matching case for getpwent() is dealt with already, in lib/util_getent.c Also included in here is a small change to register the [homes] share at vuid creation rather than just in one varient of the session setup. (This picks up the SPNEGO cases). The home directory is now stored on the vuid, and I am hoping this might provide a saner way to do %H substitions. TODO: Kill off remaining Get_Pwnam_Modify calls (they are not needed), change the remaining sys_getpwnam() callers to use getpwnam_alloc() and move Get_Pwnam to return an allocated struct. Andrew Bartlett (This used to be commit 1d86c7f94230bc53daebd4d2cd829da6292e05da)
* Remove built-in support for clear-text kerberos authentication.Andrew Bartlett2001-11-111-123/+3
| | | | | | | | | | | This should remove some confusion from the ./configure, but does not affect the 'real' kerberos support currently residing in smbd/sesssetup.c. This code is vunerable to a spoofed KDC, and is best replaced by --with-pam and the pam_krb5 module. This module includes measures to prevent such spoofing. Andrew Bartlett (This used to be commit 3235880b41ee5dd5ef171195489fb9254f5d89b0)
* Merge the become_XXX -> change_to_XXX fixes from 2.2.2 to HEAD.Jeremy Allison2001-10-181-1/+1
| | | | | | Ensure make_conection() can only be called as root. Jeremy. (This used to be commit 8d23a7441b4687458ee021bfe8880558506eddba)
* Removed 'extern int DEBUGLEVEL' as it is now in the smb.h header.Tim Potter2001-10-021-5/+0
| | | | (This used to be commit 2d0922b0eabfdc0aaf1d0797482fef47ed7fde8e)
* Move pass_check.c over to NTSTATUS, allowing full NTSTATUS from PAM to wire!Andrew Bartlett2001-09-201-80/+118
| | | | | | Add the ability for swat to run in non-root-mode (ie non-root from inetd). - we still need some of the am_root() calls fixed however. (This used to be commit 2c2317c56ee13abdbdbc866363c3b52dab826e3c)
* Remove the ugly hacks to get around the Get_Pwnam() calls in pass_check.c byAndrew Bartlett2001-09-191-5/+6
| | | | | | | | | | | | | | simply not doing Get_Pwnam() calls in pass_check.c We now make *one* sys_getpnam() call in cgi.c and we always call PAM no matter what it returns. We also no longer run the password cracker for these logins. The truly parinod will note the slight difference in call paths, in that we only call crypt for valid password structs (if not --with-pam). The truly parinoid don't run SWAT either, so I don't think this is an issue. Andrew Bartlett (This used to be commit 9020d884935243f28c19cedc88f076f0709e12cb)
* the next stage in the NTSTATUS/WERROR change. smbd and nmbd now compile, but ↵Andrew Tridgell2001-09-041-1/+1
| | | | | | the client code still needs some work (This used to be commit dcd6e735f709a9231860ceb9682db40ff26c9a66)
* Fixed silly typo.Jeremy Allison2001-08-301-3/+3
| | | | | Jeremy. (This used to be commit 6ee2b41429e43f6a9a58eba3cb01b952be3d5ca5)
* Fix from Paul Green to set correct lengths.Jeremy Allison2001-08-301-3/+3
| | | | | Jeremy. (This used to be commit 52b9b6d519c38b2a3e524d098a09fb996e8a2047)
* converted another bunch of stuff to NTSTATUSAndrew Tridgell2001-08-271-1/+1
| | | | (This used to be commit 1d36250e338ae0ff9fbbf86019809205dd97d05e)
* This removes unused paramaters from various authtication functions, and shouldAndrew Bartlett2001-07-081-7/+2
| | | | | | | | | | not change behaviour. This should make my later diffs smaller, where I actualy start cleaning up this mess... Andrew Bartlett (This used to be commit 04f090c224bb7ac3b53c430a591fce1fc939a81c)
* Added Andrew Bartlett's fixes to my changes to his original patch (at theJeremy Allison2001-05-011-1/+1
| | | | | | court of king caractacus, was just passing by... :-). Jeremy. (This used to be commit acc3e7a057ad7fb0c2fb1cafff0c623ec0524d04)
* Added smb_ prefix to all Samba wrapper pam functions.Jeremy Allison2001-04-231-1/+1
| | | | | | Fixed off by one bug using StrnCpy instead of strdup(). Jeremy. (This used to be commit d4b1c0be2e700c86a4338bb497777f97e3c960a7)
* Commit of a modified version of Andrew Bartlett's patch that removes theJeremy Allison2001-04-221-2/+17
| | | | | | | | | | | horrid utmp hostname parameter - now uses the client name instead. Also tidies up some of the unencrypted password checking when PAM is compiled in. FIXME ! An pam_accountcheck() is being called even when smb encrypted passwords are negotiated. Is this the correct thing to do when winbindd is running ! This needs *SEVERE* testing.... Jeremy. (This used to be commit 071c799f479dd25efdb9c41745fc8f2beea7b568)
* passdb/pass_check.c: Ensure second check is done only if given username is ↵Jeremy Allison2001-04-101-62/+26
| | | | | | | | all in caps. rpc_server/srv_srvsvc_nt.c: Added "CONFIGFILE" arg to scripts so path to smb.conf is given. Jeremy. (This used to be commit 3c4c649951464be51541d5890afb997e3ecfcd23)
* Added JohnT and Andrew Bartlett's PAM changes.Jeremy Allison2001-04-101-134/+4
| | | | | Jeremy. (This used to be commit ecd00e258c6fe4e8d90f48da74874e090dce4a40)
* add pam_setcred() call to pam_auth(). Patch was submited last Oct.Gerald Carter2001-02-081-0/+8
| | | | | jerry (This used to be commit 57165d1578eefa270d5c0bd8697a774eb8cb06cf)
* Getting back to a compilable state (not there yet but close).Jeremy Allison2000-06-011-14/+2
| | | | | | | | Added patches for random -> sys_random. Added set_effective_xxx patches for AFS code. Memory allocation changes in spoolss code. Jeremy. (This used to be commit c2099cfb033c2cdb6035f4f7f50ce21b98e1584d)
* Added sys_fork() and sys_getpid() functions to stop the overheadJeremy Allison2000-05-021-3/+3
| | | | | | of doing a system call every time we want to just get our pid. Jeremy. (This used to be commit 148628b616b5c29ba6340d65fc3ddbcabba6e67a)
* indent update to make t easier to see setuid mods in TNG. someLuke Leighton2000-03-211-366/+459
| | | | | code from these modules i had to leave out (nothing to do withj setuid) (This used to be commit 96717211edcc389daa4494907251ffb79ffa56d9)
* first pass at updating head branch to be to be the same as the SAMBA_2_0 branchAndrew Tridgell1999-12-131-54/+129
| | | | (This used to be commit 453a822a76780063dff23526c35408866d0c0154)
* Moved code that changes the pw_passwd entry (i.e shadow password andTim Potter1999-06-131-63/+1
| | | | | | | | | weird unixware stuff) into _Get_Pwnam() to fix a memory allocation bug. Note that the Get_Pwnam() function now returns a const struct passwd * as a hint to other developers not to change entries in the struct passwd. (This used to be commit 36d7cb4ccc42268e8e6a7b783c945d1853624958)
* pass_check.c could receive encrypted password: printing it out as a %sLuke Leighton1999-03-081-1/+2
| | | | | | results in garbage. with no password length argument doing dump_data( 100, password, strlen(password)) is the next best alternative. (This used to be commit 073c8652c13408b883fc73203e5558b1a9a64d62)
* Added Kerberos4 support patches from Johan Hedin <johanh@fusion.kth.se>Jeremy Allison1998-09-261-1/+3
| | | | | Jeremy. (This used to be commit 548634915f21f774b7efb06f138c8fb7bc089daa)
* some cleanups to use ZERO_STRUCT() and friendsAndrew Tridgell1998-09-051-1/+1
| | | | (This used to be commit 7b154dc4313324dfad6cf0117b8ce246bf12bf16)
generated by cgit (git 2.34.1) at 2024-06-12 06:47:54 +0000