summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2004-01-14bug 770; correct fix this time; Make sure that we send the SMBjobid for ↵Gerald Carter2-10/+19
unix jobs back to the client. Allows windows client to remove print jobs submitted from lpr (This used to be commit 6a7f9ebccd6a40455cb5446551f3d68ea9a7a824)
2004-01-14bug 660; using byte order safe macros (or tdb_unpack) when reading 2 or 4 ↵Gerald Carter1-16/+18
byte values from a tdb buffer; also recognize smbjobs if the jobid < UNIX_JOB_START (This used to be commit ae6feb54a09a69e3a870b1a0d707b23eb8ca356a)
2004-01-14syncing abartlet's cracklib tests from 3.0Gerald Carter2-0/+65
(This used to be commit 64c1db9bce27bbe5bc28acb631b265419d6d6286)
2004-01-14* Revert to using rpc for mixed mode AD domains.Gerald Carter1-3/+9
The reason for this are: (a) the set_dc_type_and_flags() cannot tell the different between connecting to an NT4 domain and an NT4 BDC of a mixed mode domain. (b) the connection management for the rpc backend only provides on named pipe per cli_state. So it is possible to connect to an NT4 BDC for netlogon and an AD mixed mode DC for lsarpc. RPC is the lowest common demonimator here. (c) Issue with the sequence number value between the highestCommittedUSN LDAP attribute and the seq_num returned via RPC. We will revisit this later, but the changes need to make this work right now are too broad and risky. (This used to be commit 86f24908c395cc832ae87b04c9da3d32449acad3)
2004-01-14Remove duplicate extern.Jeremy Allison1-1/+0
Jeremy. (This used to be commit 72d8eea25dbb54d7ef78264cd6f419220dc85fb6)
2004-01-14Remove references to 'jn' which gcc-3.4 with precompiled headersJeremy Allison1-36/+36
doesn't like. Jeremy. (This used to be commit bf3d06a2e483d043c89a6b11ceb283a5b392859b)
2004-01-14merge:Stefan Metzmacher1-2/+2
fix XFS quotas the macro changed from HAVE_XFS_QUOTA -> HAVE_XFS_QUOTAS metze (This used to be commit ae20cf0810b9bef3d460994d5bf5e820c01296f0)
2004-01-13* allow dns lookups to be disabled for DOMAIN#1c (and #1b)Gerald Carter1-7/+26
names * fix some a mispelled variable name (This used to be commit 93fed3074f4384dc658cd0ec81ba2afbe8192417)
2004-01-13sync HEAD with recent changes in 3.0Gerald Carter61-1364/+3485
(This used to be commit c98399e3c9d74e19b7c9d806ca8028b48866931e)
2004-01-11Fix --with-fhs for swatdirJelmer Vernooij1-0/+1
(This used to be commit 69a9cfdad809a9b3fc7f6dc4ad5a708b6559b714)
2004-01-11update copyright to -2004Stefan Metzmacher4-4/+4
metze (This used to be commit fcb3c9c61ecd787b8d3e5a53ee8f9e04daae76fe)
2004-01-09fix some warnings from the Sun compiler; also merge some of abartlet's error ↵Gerald Carter8-36/+45
code changes form 3.0 (This used to be commit 2279e98cb81faaf8a4e971fec339955f14c23858)
2004-01-08fix segfault when sid_ptr == 0 in DsEnumDomainTrusts() replyGerald Carter2-6/+5
(This used to be commit 36d985a75faa5ebda1c8c7de1e3ab5d7a51a9c10)
2004-01-07Fix for bug #922. Fast path not called for strlower_m() and strupper_m().Jeremy Allison1-2/+2
From ab@samba.org (Alexander Bokovoy). Jeremy. (This used to be commit 88c51454327533f8bc06ce1cd479370aabefdf81)
2004-01-07This was cut-n-paste mistake, I guess... :)Rafal Szczesniak1-1/+1
rafal (This used to be commit f912d8c3403071582f776886f9793e3289b285b6)
2004-01-07Typo fix.Rafal Szczesniak1-1/+1
rafal (This used to be commit 4a2bd4de3f5a99bc19013a2878659e8686606e30)
2004-01-07Fixes to doxygen comment.Rafal Szczesniak1-2/+5
(This used to be commit 4f92db99be8feaccebe654103dd6c227c66e5bdc)
2004-01-07Prototype version of trust passwords moved to SAM/pdb. This isRafal Szczesniak2-1/+195
backend-independent part ie. interface - does build and (it seems) doesn't break anything else. rafal (This used to be commit 9ce6dc6476202d9db6ea1c2deab93e454e4db546)
2004-01-07commiting jra's fix for Exchange clear test authGerald Carter1-1/+2
(This used to be commit 05dd3383010ba6f44370fc302ee00b7680937176)
2004-01-07Fix from Luke Howard <lukeh@PADL.COM> for incorrect early free().Jeremy Allison1-5/+7
Jeremy. (This used to be commit e763a220f492bb8a9cacf31c07809c4866379bb6)
2004-01-07Merge Translation fixesVolker Lendecke1-5/+5
Volker (This used to be commit 70b0fcdeec4810944a4e0d9bbaf6a979b2fb914a)
2004-01-07(merge from 3.0)Andrew Bartlett1-5/+9
Fix segfualt caused by incorrect configuration. If lp_realm() was not set, but security=ADS, we would attempt to free the principal name that krb5 never allocated. Also fix the dump_data() of the session key, now that we use a data_blob to store that. Andrew Bartlett (This used to be commit 24d7eed6cae8015e020ad34c13130ee8afc9052e)
2004-01-06Patch penguin. Cleaning out old mbp patch.Jeremy Allison1-22/+24
Jeremy. (This used to be commit a0dc10bed68ef961609c0a4a456b6a132e2e347b)
2004-01-06remove unused seek_file(); don't hardcode '\' when printing the auth-userGerald Carter2-26/+1
(This used to be commit 175c5c9faa8c1cb3577eb96598434e6097d408c7)
2004-01-06isolate ldap debug messages to the common smbldap_XXX() functionsGerald Carter3-12/+9
(This used to be commit 4c877ccc16bcb69490c4d34d2ef5f727bf98438e)
2004-01-06Correctly detect AFS headers on SuSE in /usr/include/afs/afs/Volker Lendecke1-6/+46
Volker (This used to be commit 9f0292091b37cac637ba86cab6c8fd1800faef5c)
2004-01-06merging from 3.0Gerald Carter23-821/+1253
(This used to be commit 694052f8a9cc703d4e4ec8075c623ab7122a169b)
2004-01-06merge torture changes from Samba 3.0 -> HEADAndrew Bartlett1-6/+6
(This used to be commit 6e9c68217bec1e4138b5eb9a9ed85807b31bbdb8)
2004-01-06Merge NTLMSSP fixes from 3.0 to HEAD.Andrew Bartlett5-42/+109
Andrew Bartlett (This used to be commit f7d39c787771616ddb015bd77e3e6cd33f0c7a15)
2004-01-06GUID is struct uuid in HEAD.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit ec24c7f42ac344d14c0e29d4b49c07d8ce213448)
2004-01-06(merge from 3.0)Andrew Bartlett1-1/+1
Fixes bug 924 Andrew Bartlett (This used to be commit ee18f897f9452a84a6b11c077ff706beb49441ff)
2004-01-06Merge winbind from Samba 3.0 onto HEAD.Andrew Bartlett18-14/+309
Changes include: - header changes for better pre-compiled headers (tridge) - get a list of sids for a given user (tridge) - fix function prototype and a few other minor things Andrew Bartlett (This used to be commit 60107efdc61247034424d008c6f1eb4d46a19881)
2004-01-06Patch based on work from James Peach <jpeach@sgi.com> to convert over toJeremy Allison10-133/+345
using pread/pwrite. Modified a little to ensure fsp->pos is correct. Fix for #889. Jeremy. (This used to be commit 3a24dc868d95c9bcc2ac3a0dbd50e6e226ac0841)
2004-01-06(merge from 3.0)Andrew Bartlett6-17/+22
I think this was tpot's originally: Fix format types for 64 bit systems. Andrew Bartlett (This used to be commit 256b2da7c96e8313f4f98ce700fc7634eaccb72b)
2004-01-06(merge from 3.0)Andrew Bartlett1-0/+6
Always call the auto-init funciton - this avoids tdb segfaulting under us if we failed to open it earlier. Andrew Bartlett (This used to be commit 34f16eaeaa81a0cc6ae564f4be8a02752ee5624d)
2004-01-06(merge from 3.0)Andrew Bartlett1-2/+2
Ensure that for wbinfo --set-auth-user, we actually use the domain. Andrew Bartlett (This used to be commit 8a63bed29315acb3fe9cc2973426ef8392987c8c)
2004-01-06(merge from 3.0)Andrew Bartlett4-19/+34
Try to keep vl happy - shorten some of these lines. -- Grumble... grumble... fix the build... -- Show the sid type in name->sid translatons in a way that can be easily understood by humans. Andrew Bartlett (This used to be commit c5d1e2112baa7d87cd6b9f0855c2fd8b006af01d)
2004-01-06(merge from 3.0)Andrew Bartlett9-121/+144
Change our Domain controller lookup routines to more carefully seperate DNS names (realms) from NetBIOS domain names. Until now, we would experience delays as we broadcast lookups for DNS names onto the local network segments. Now if DNS comes back negative, we fall straight back to looking up the short name. Andrew Bartlett (This used to be commit 4c3bd0a99e464198d243da302ff1868189b4dcff)
2004-01-06(merge from 3.0)Andrew Bartlett1-3/+3
Add const. Andrew Bartlett (This used to be commit b08502a8fb1083cc49fd2976880b7bef3f14a72a)
2004-01-06(merge from 3.0)Andrew Bartlett1-4/+8
There is some memory corruption hidden somewhere in our winbind code. If I could reproduce it, I would fix it, but for now just make sure we always SAFE_FREE() and set our starting pointers to NULL. Andrew Bartlett (This used to be commit a00f29624d10df7f31fa978b79bc71b40d696359)
2004-01-06(merge from 3.0)Andrew Bartlett1-1/+1
Change (unused) structure parameter for cli_ds_enum_domain_trusts() cleanup. Andrew Bartlett (This used to be commit 3c02aad8b3a4b28ca492ca1abbbd594ba75975e4)
2004-01-05rpc_client/cli_lsarpc.c:Andrew Bartlett8-87/+159
rpc_parse/parse_lsa.c: nsswitch/winbindd_rpc.c: nsswitch/winbindd.h: - Add const libads/ads_ldap.c: - Add ads_sid_to_dn utility function nsswitch/winbindd_ads.c: - Use new utility function ads_sid_to_dn - Don't search for 'dn=', rather call the ads_search_retry_dn() nsswitch/winbindd_ads.c: include/rpc_ds.h: rpc_client/cli_ds.c: - Fixup braindamage in cli_ds_enum_domain_trusts(): - This function was returning a UNISTR2 up to the caller, and was doing nasty (invalid, per valgrind) things with memcpy() - Create a new structure that represents this informaiton in a useful way and use talloc. Andrew Bartlett (This used to be commit 627d33d1667f0d4b1070f988494885b74c4c04dd)
2004-01-05(merge from 3.0)Andrew Bartlett2-30/+202
Fix for bug 707, getent group for huge ads groups (>1500 members) This introduces range retrieval of ADS attributes. VL rewrote most of Güther's patch, partly to remove code duplication and partly to get the retrieval of members in one rush, not interrupted by the lookups for the DN. I rewrote that patch, to ensure that we can keep an eye on the USN (sequence number) of the entry - this allows us to ensure the read was atomic. In particular, the range retrieval is now generic, for strings. It could easily be made generic for any attribute type, if need be. Andrew Bartlett (This used to be commit 08e851c7417d52a86e31982fcfce695c8a6360b7)
2004-01-05(merge from 3.0)Andrew Bartlett1-1/+1
Even if the 'device type' is always an ascii string, use push_string to get it out onto the wire. Avoids valgrind warnings because the fstrcpy() causes part of the wire buffer to be 'marked'. Andrew Bartlett (This used to be commit 326becbde23c8039e1f0f00930bcab094bf91ed2)
2004-01-05(merge from 3.0)Andrew Bartlett1-2/+2
Match Win2k, and return NT_STATUS_INVALID_PARAMETER if this parameter is not an account type Andrew Bartlett (This used to be commit 43ee2e0b6a6f95ce2864befeb08b5de2ace41c7c)
2004-01-05(merge from 3.0)Andrew Bartlett1-0/+7
Having no members of a group is a perfectly valid (if unusual) situation. Andrew Bartlett (This used to be commit bc77b586be6992a662422304dbefbd4b833818fb)
2004-01-05(merge from 3.0)Andrew Bartlett5-133/+118
JHT came up with a nasty (broken) torture case in preparing examples for his book. This prompted me to look at the code that reads the unix group list. This code did a lot of name -> uid -> name -> sid translations, which caused problems. Instead, we now do just name -> sid I also cleaned up some interfaces, and client tools. Andrew Bartlett (This used to be commit cc535a6c70d8dcf677322e31b24dec58b23d80f0)
2004-01-05(merge from 3.0)Andrew Bartlett2-16/+36
Changes to our PAM code to cope with the fact that we can't handle some domains (in particular, the domain of the current machine, if it is not a PDC) By changing the error codes, we now return values that PAM can correctly use for better stacking of PAM modules - in particular of the password change module. This allows pam_winbind to co-exist with other pam modules for password changes. Andrew Bartlett (This used to be commit 06b4eb4b9f867998c8faf9a91830ba3181cdf605)
2004-01-05(merge from 3.0)Andrew Bartlett8-23/+74
auth/auth_util.c: - Fill in the 'backup' idea of a domain, if the DC didn't supply one. This doesn't seem to occour in reality, hence why we missed the typo. lib/charcnv.c: lib/smbldap.c: libads/ldap.c: libsmb/libsmbclient.c: printing/nt_printing.c: - all the callers to pull_utf8_allocate() pass a char ** as the first parammeter, so don't make them all cast it to a void ** nsswitch/winbind_util.c: - Allow for a more 'correct' view of when usernames should be qualified in winbindd. If we are a PDC, or have 'winbind trusted domains only', then for the authentication returns stip the domain portion. - Fix valgrind warning about use of free()ed name when looking up our local domain. lp_workgroup() is maniplated inside a procedure that uses it's former value. Instead, use the fact that our local domain is always the first in the list. -- Jerry rightly complained that we can't assume that the first domain is our primary domain - new domains are added to the front of the list. :-( Use a much more reliable 'flag test' instead. (note: changes winbind structures, make clean). -- Forgot to commit this for the 'get our primary domain' change. Andrew Bartlett (This used to be commit acacd27ba25f7ebfec40bfa66d34ece543569e23)
2004-01-05(merge from 3.0)Andrew Bartlett3-11/+52
Try to gain a bit more consistancy in the output of usernames from ntlm_auth: Instead of returning a name in DOMAIN\user format, we now return it in the same way that nsswtich does - following the rules of 'winbind use default domain', in the correct case and with the correct seperator. This should help sites who are using Squid or the new SASL code I'm working on, to match back to their unix usernames. -- Get the DOMAIN\username around the right way (I had username\domain...) Push the unix username into utf8 for it's trip across the socket. Andrew Bartlett (This used to be commit 4c2e1189ff84d254f19b604999d011fdb17e538d)