summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r17813: Remove another instance of manually setting the group SID.Gerald Carter1-1/+7
The would have been primaryly used when adding a user to an smbpasswd file, but could have been introduce to other backends by using pdbedit -i -e. The symptom was [2006/08/09 13:07:43, 0] rpc_parse/parse_samr.c:init_sam_user_info21A(6276) init_sam_user_info_21A: User nobody has Primary Group SID S-1-22-2-99, which conflicts with the domain sid S-1-5-21-1825997848-4107600307-1754506280. Failing operation. (This used to be commit 0a3aa8b43ace8c635423c2df10827e81d145b58f)
2007-10-10r17812: Fix bad unsigned comparisons with TIME_T_MIN/TIME_T_MAX.Jeremy Allison1-3/+3
Jeremy. (This used to be commit bd1fbdfb824883060b02be969a10f999d387973f)
2007-10-10r17810: Use datarootdir variable generated by newer autoconf versions. ↵Jelmer Vernooij1-0/+1
(fixes warning) (This used to be commit 836f04134f95d8452cee58a72438b4387103ce11)
2007-10-10r17809: Add in 64-bit integer time calculations (taken fromJeremy Allison1-41/+160
Samba4) for machines that have 64-bit integers. Leave the (double) code for machines that don't. Needs testing.... :-). Jeremy. (This used to be commit 9e65c175b0794bea3082785b5da6f5b281887ce7)
2007-10-10r17807: Fix a file descriptor leak pointed out by John Malmberg. Thanks!Volker Lendecke1-0/+1
Volker (This used to be commit fac007ccbec75f5ee9ff2769d8add4d27e62167d)
2007-10-10r17806: Make NTTIME a UINT64_S rather than a separate structure consisting ofJelmer Vernooij2-8/+6
two uint32s. (This used to be commit 3556a9c26cf7728e2435bb28e69958751e883ab9)
2007-10-10r17805: Sorry Jerry, I could not stand the warnings... :-)Volker Lendecke10-62/+67
(This used to be commit f5fcafd77e8a749659ef90296402c5130f45419b)
2007-10-10r17804: Fix a enum/int mixup found by the IRIX compiler.Volker Lendecke2-1/+2
Volker (This used to be commit 3a1cf623765cd8b6615ad317d25cebc379c762a2)
2007-10-10r17803: finally get the new libaddns code to build on Solaris 9Gerald Carter2-1/+6
(This used to be commit 6a4f4ce016dc47ff4b433208266c4616be7e2770)
2007-10-10r17802: trying to fix more build farm hostsGerald Carter4-21/+51
(This used to be commit d16fea385aba11b6dad141298694320c803bf3eb)
2007-10-10r17801: bad merge ? No sure how the second half of the LIBNDR_OBJ value got ↵Gerald Carter1-1/+3
cut... (This used to be commit 3662f86f41b83a5c944294ca02b6e216ee87f88c)
2007-10-10r17800: Start using struct timespec internally for file timesJeremy Allison14-239/+378
on the wire. This allows us to go to nsec resolution for systems that support it. It should also now be easy to add a correct "create time" (birth time) for systems that support it (*BSD). I'll be watching the build farm closely after this one for breakage :-). Jeremy. (This used to be commit 425280a1d23f97ef0b0be77462386d619f47b21d)
2007-10-10r17799: Start fixing the building carnage. Only include calls toGerald Carter1-0/+2
uuid lib fucntions when WITH_DNS_UPDATES is defined. (This used to be commit 3c547202856378cb1b6895b8c5dd0c9e43c66a1f)
2007-10-10r17798: Beginnings of a standalone libaddns library released underGerald Carter18-15/+6110
the LGPL. Original code by Krishna Ganugapati <krishnag@centeris.com>. Additional work by me. It's still got some warts, but non-secure updates do currently work. There are at least four things left to really clean up. 1. Change the memory management to use talloc() rather than malloc() and cleanup the leaks. 2. Fix the error code reporting (see initial changes to dnserr.h) 3. Fix the secure updates 4. Define a public interface in addns.h 5. Move the code in libads/dns.c into the libaddns/ directory (and under the LGPL). A few notes: * Enable the new code by compiling with --with-dnsupdate * Also adds the command 'net ads dns register' * Requires -luuid (included in the e2fsprogs-devel package). * Has only been tested on Linux platforms so there may be portability issues. (This used to be commit 36f04674aeefd93c5a0408b8967dcd48b86fdbc1)
2007-10-10r17797: Just say "ok" when trying to rename a local group to its same name.Gerald Carter1-4/+11
(This used to be commit e6e54125003373f83e6900668ceb9981e8620776)
2007-10-10r17795: Finally track down the "ads_connect: Interrupted system call"Gerald Carter3-18/+70
error. Fix our DNS SRV lookup code to deal with multi-homed hosts. We were noly remembering one IP address per host from the Additional records section in the SRV response which could have been an unreachable address. (This used to be commit 899179d2b9fba13cc6f4dab6efc3c22e44e062bc)
2007-10-10r17767: Argggg. Broke the build. Need to fix callers of put_long_date()Jeremy Allison1-68/+29
and interpret_long_date() first. Reverting... Jeremy. (This used to be commit 5d9c308e7b780c956f9810c9f345d1ef32d0f528)
2007-10-10r17766: Getting ready to properly expose 100ns times onJeremy Allison1-29/+68
the wire. Move the internals of nt_time functions to use struct timespecs. Jeremy. (This used to be commit 4ece92f7ef070c86ee7c6f523a207cfaccf84478)
2007-10-10r17761: Handle times consistently across all client utils.Jeremy Allison4-47/+34
Fixes bugs reported in libsmbclient. Jeremy. (This used to be commit 42a417fb75313b093948602c3be8e2f386048b5f)
2007-10-10r17760: The DNS SRV lookup already sorts by priority and weight so don'tGerald Carter1-3/+9
use the generic IP list sort in get_sorted_dc_list(). (This used to be commit 03a767539d5b09ebd6564c0c9157de2a6e0e6b89)
2007-10-10r17736: Apply the Unix group patch when creating the token for aGerald Carter1-1/+28
username map. (This used to be commit 0298a3466bc6c5e322db7dac386e4e5eef0e2702)
2007-10-10r17723: * BUG 3969: Fix unsigned time comparison with expiration policy from ↵Gerald Carter5-47/+35
AD DC * Merge patches from SLES10 to make sure we talk to the correct winbindd process when performing pam_auth (and pull the password policy info). (This used to be commit 43bd8c00abb38eb23a1497a255d194fb1bbffffb)
2007-10-10r17710: Thanks to Thomas Bork for testing and continued feedback on this.Gerald Carter1-2/+25
Comments from the patch: /* Add the "Unix Group" SID for each gid to catch mapped groups and their Unix equivalent. This is to solve the backwards compatibility problem of 'valid users = +ntadmin' where ntadmin has been paired with "Domain Admins" in the group mapping table. Otherwise smb.conf would need to be changed to 'valid user = "Domain Admins"'. --jerry */ (This used to be commit 3848199287c5829aef66d0dee38a79056fe1ff5c)
2007-10-10r17709: Fix cut-n-paste error with the name of gid_to_unix_group_sid().Gerald Carter2-2/+2
(This used to be commit dda0b8bce6b7e0146badd8aeb52b5cce6289de21)
2007-10-10r17677: There is no need for a 2nd krb5_to_nt_status function, is there?Günther Deschner3-38/+2
Michael Adam/Volker, please check. Guenther (This used to be commit d0feb85781f69325ee70aff98370cfac037c4cc2)
2007-10-10r17676: Fix printing bug found by kukks. Don't copy a returnJeremy Allison1-1/+1
value into an auto on the stack that gets removed when we return from the frame :-). Jeremy. (This used to be commit 85bf8a16116e5eb9d4400e809531737d45890abb)
2007-10-10r17673: volker's patch for re-adding Getpwnam() lookups to smbpasswd backend ↵Gerald Carter1-5/+1
(I hate username level) (This used to be commit 0939b6e20c6aef7a203c92fb0afa207c9fa779dd)
2007-10-10r17672: remove duplicate description on NT_STATUS_INVALID_PARAMETER (from ↵Gerald Carter1-1/+0
Michael Adam <ma@sernet.de>) (This used to be commit 7b51e27d026f2511edcde054f0d2deb9932d2fe8)
2007-10-10r17669: Remove RID algorithm support from unmapped users and groupsGerald Carter7-96/+30
when using smbpasswd (This used to be commit dde552336c732ddd6076a6a32575a37cb51aa94c)
2007-10-10r17668: Fix the miscalculations in pushing announces. FixesJeremy Allison1-6/+6
problems Kukks reported. Jeremy. (This used to be commit 426d722029b245e239f0ee39b6be249c59e1918c)
2007-10-10r17667: Merge snprintf fixes from tridge (Samba4).Jeremy Allison1-16/+41
Jeremy. ---------- several replacement snprintf() fixes. 1) when running the testsuite, actually test against the system sprintf(), not against ourselves (doh!) 2) fix the buffer termination to terminate buf2 as well 3) fix handling of %llu, and add a simple test This fixes a bug with password expiry on solaris ---------- (This used to be commit 64fd96666f391101c41b7a564fd20ab2e93e3923)
2007-10-10r17630: Looks like getpeerid() is a system function onJeremy Allison2-2/+2
FreeBSD. Change to sys_getpeerid(). Thanks to vl for pointing this out. Jeremy. (This used to be commit dd0069cfcabb25dc7dc0d336696a5f2580abb5a1)
2007-10-10r17626: Some C++ WarningsVolker Lendecke5-9/+16
(This used to be commit 09e7c010f03ac3c621f7a7fad44685d278c1481a)
2007-10-10r17625: Fix the buildVolker Lendecke1-1/+1
(This used to be commit 76ef8af881843685a5b14c9017cba32f6867bd28)
2007-10-10r17623: Revert accidential commitVolker Lendecke2-3/+2
(This used to be commit 8dcc4e7dd6dd879f341b58fc04cb1308c0463862)
2007-10-10r17622: Add a framework for a printing backend designed to support the build ↵Volker Lendecke5-3/+89
farm. If we want to walk more printing code in the build farm I think doing that with a customized printing backend is much easier than with a set of shell scripts. Jerry, comments? Volker (This used to be commit 949cd6b992364d2bc60fd59051b6ac1c4cc4288c)
2007-10-10r17620: Fix two C++ Warnings and a memleakVolker Lendecke1-2/+6
(This used to be commit d7246284e0117f7a97b3cbb80ff45b532559bf63)
2007-10-10r17618: Not using a cache version number (yet). We really should...Jeremy Allison1-1/+0
Jeremy (This used to be commit b711587f6e33bc5781b15da7bc49b31db4653073)
2007-10-10r17617: Take Andrew Bartletts excellent advice and don't storeJeremy Allison3-10/+63
the nt hash directly in the winbindd cache, store a salted version (MD5 of salt + nt_hash). This is what we do in the LDAP password history code. We store this salted cache entry under the same name as an old entry (CRED/<sid>) but detect it on read by checking if there are 17 bytes of data after the first stored hash (1 byte len, 16 bytes hash). GD PLEASE CHECK. Jeremy. (This used to be commit 89d0163a97edaa46049406ea3e2152bee4e0d1b2)
2007-10-10r17616: Add the lm and nt hashes to the cached credentialsJeremy Allison3-28/+52
stored - only store the password if we're going to be doing a krb5 refresh. GD please review this change ! Now to add code to reference count the cached creds (to allow multiple pam_logon/pam_logoffs to keep the creds around), ensure that the cred cache is called on all successful pam_logons (if we have winbindd cache pam credentials = true, set this by default) and finally ensure the creds cache is changed on successful password change. GD - you *really* need to review this :-). Jeremy. (This used to be commit 017e7e14958d29246a1b221e33755bb91e96b08f)
2007-10-10r17612: Modify NTLMSSP session code so that it doesn't storeJeremy Allison3-41/+86
a copy of the plaintext password, only the NT and LM hashes (all it needs). Fix smbencrypt to expose hash verions of plaintext function. Andrew Bartlett, you might want to look at this for gensec. This should make it easier for winbindd to store cached credentials without having to store plaintext passwords in an NTLM-only environment (non krb5). Jeremy. (This used to be commit 629faa530f0422755823644f1c23bea74830912f)
2007-10-10r17610: Added the ability for firefox to drive the winbinddJeremy Allison9-15/+448
ntlm_auth module to allow it to use winbindd cached credentials.The credentials are currently only stored in a krb5 MIT environment - we need to add an option to winbindd to allow passwords to be stored even in an NTLM-only environment. Patch from Robert O'Callahan, modified with some fixes by me. Jeremy. (This used to be commit ae7cc298a113d8984557684bd6ad216cbb27cff3)
2007-10-10r17607: Adapt the Samba4 directory structure for tdb. Makes it easier to diff.Volker Lendecke35-45/+631
Let's see what it breaks. For me it works :-) Volker (This used to be commit 337be14b432e5dfd80c7418b2db4fe0087259b77)
2007-10-10r17606: Introduce krb5_to_ntstatus.Volker Lendecke2-18/+54
Thanks to Michael Adam <ma@sernet.de> Volker (This used to be commit 6e641c90b8f52a822a83701cdf305c60416d7f0c)
2007-10-10r17605: Some C++ warningsVolker Lendecke10-43/+63
(This used to be commit 05268d7a731861b10ce8556fd32a004808383923)
2007-10-10r17604: Fix a bug caught by g++.Volker Lendecke1-1/+1
Jeremy, please check this! Volker (This used to be commit 8117a7b3bf3f273dd018c42864b3136dec47ec79)
2007-10-10r17603: Make net_ads_join_ok return NTSTATUS.Volker Lendecke1-7/+12
Thanks to Michael Adam <ma@sernet.de> hop, hop, hop... ;-) Volker (This used to be commit 47facab798bdc6e20b2620972f1b8f2338fac239)
2007-10-10r17602: Make check_ads_config return NTSTATUS, set some error codes in ↵Volker Lendecke1-10/+18
net_ads_join. Thanks to Michael Adam <ma@sernet.de> Volker (This used to be commit 27cca861507afa9caf694ef89e543c86de01c2cd)
2007-10-10r17595: Fix from Ben Winslow <rain@bluecherry.net> to allowJeremy Allison1-0/+4
client smb signing to be correctly turned off. Jeremy. (This used to be commit 61f052b0a67b8a05b5d925bf8bbad73369ac03bd)
2007-10-10r17592: Remove some unused functions pointed out by John E. Malmberg, makeVolker Lendecke2-235/+46
do_file_lock static to pdb_smbpasswd.c, the only user of it. Volker (This used to be commit 543f77a45f0a75ede48b0f2c674a0abdd386fed5)