summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r15976: Set our internal domains to "online" by default in winbindd.Günther Deschner1-1/+1
Guenther (This used to be commit 2678582c6cc7fb100cb3bfd867816878461ae7b4)
2007-10-10r15975: Only call the printer publishing calls if 'security = ads'Gerald Carter1-1/+7
(prevent a segv) (This used to be commit a2ef525d9e3b4f050cb4e02fad67808d3e916373)
2007-10-10r15971: Obey the manpage description and make changesecretpw accept a ↵Simo Sorce2-2/+16
password via stdin (This used to be commit 60d4aabc3205aa80f8d49c3c2db95927c61a81a5)
2007-10-10r15967: enable RAW-OPLOCK in samba3 make testStefan Metzmacher2-1/+3
metze (This used to be commit 6d35268639a7796583f5cc7bee12cf884a207af2)
2007-10-10r15965: Pam modules install fix, thanks to Ryan Novosielski for spotting ↵Simo Sorce1-1/+1
this one (This used to be commit 8f5b198acaca5ce14ab1098d86f34df9a67619d4)
2007-10-10r15960: Don't double-free (ensure we always free file_fsp inJeremy Allison1-1/+0
the same place on error - I missed the extra free in delay_for_oplocks). Jeremy. (This used to be commit 146a2648156563b41642d42c46aff401e435a42b)
2007-10-10r15959: Ooops. Use the right file_free call...Jeremy Allison1-3/+3
Jeremy. (This used to be commit 1117a327bd4fb425d25ea63df782095701fb83bb)
2007-10-10r15958: Make us pass RAW-OPLOCK with kernel oplocks off.Jeremy Allison4-16/+31
This allows a requestor to set FORCE_OPLOCK_BREAK_TO_NONE to ensure we don't break to level 2. Fixed a couple of resource leaks in error paths in open_file_ntcreatex. Jeremy. (This used to be commit c7c9adcce7f13d01445f31b07fb28a76f0a1d6df)
2007-10-10r15951: oplock_request must be an int, not a BOOL. WeJeremy Allison1-3/+3
were getting away with mixing types. Not cool. Jeremy. (This used to be commit ad3bc112a21afd3a04449ec3f604e017d753c224)
2007-10-10r15949: Patch for bug #3308 to stop us returning duplicateJeremy Allison3-17/+27
mid replies on path based set-eof trans2 calls. Needs modification for HEAD (as in head open_file_ntcreateX properly returns NTSTATUS - I'll fix this tomorrow my time). Secondly it still fails the Samba4 RAW-OPLOCK smbtorture because of an interesting case. Our oplock code always returns "break to level 2" if it can. In this case (path-based set-eof or set-allocation size on an exclusive oplocked file) W2K3 always sends a break-to-none. We send the break to none (from level2) after we've done the write for eof or allocation size. I need to work out some way of telling our break code to always break to none (might need to extend the message field). Jeremy. (This used to be commit ad9895c654f400e242adcd4099f7cd004521ee92)
2007-10-10r15943: Update misleading DEBUG statements and comments that refer toJames Peach3-6/+7
open_file_shared. (This used to be commit 784126edff942d1c2f79f7c9feb59980426f331e)
2007-10-10r15936: Fix memory leak on error exit path. Trying toJeremy Allison1-1/+26
track down #3308. Jeremy. (This used to be commit e39c11c91153c1ed547bc635d02769a1cdf3ecc0)
2007-10-10r15928: When we search for clock_gettime, we might find it in librt, but librtJames Peach2-31/+99
might pull in libpthread. This is quite bad, firstly because it can cause oplock signals on Linux to go wonky, and secondly because merely linking with pthreads can cause performance degradations due to implicit locking requirements. The solution is to only search for clock_gettime if --with-profiling-data was specified. If we do end up searching for it, then we test whether linking with librt pulled in libpthread, and we only allow the definition for clock_gettime to succeed if libpthread was NOT linked in. Problem reported by Thomas Bork and diagnosed by Volker Lendecke. (This used to be commit 5712644fcc00939b9101b2e3143674d2cbdf1e12)
2007-10-10r15924: Ok, the Solaris fix broke AIX. Next try :-)Volker Lendecke1-2/+2
Volker (This used to be commit 53bd3fa30ad1f8bada4a49e4c79ea7ff70188174)
2007-10-10r15918: Attempt to bring Solaris into make test. The Solaris shell does not ↵Volker Lendecke1-2/+2
like the isolated !. Metze, can you check this? Thanks, Volker (This used to be commit c9542c64ce2a21671b8f4e30780e8a6e07ab6632)
2007-10-10r15917: Activate RPC-AUTHCONTEXT in "make test"Volker Lendecke1-1/+3
(This used to be commit 17f701ab4f46502ca7a957d3e79b005a0acebdc1)
2007-10-10r15911: Make us survive rpc-authcontext committed nextVolker Lendecke2-0/+16
(This used to be commit c24bfdce625782637b5f4d11a5117ef795ddfc2f)
2007-10-10r15910: vfs_full_audit does not need current_userVolker Lendecke1-2/+0
(This used to be commit 09f3c7a86f931371dc6f886edccc15d3f5437d34)
2007-10-10r15909: Implement recycle:subdir_modeVolker Lendecke1-0/+18
(This used to be commit 4dd8694a250e4d064a790fe8f422c965ab533880)
2007-10-10r15906: smbpasswd help text for -W option (patch from Aruna Prabakar ↵Gerald Carter1-0/+1
<aruna.prabakar@hp.com> (This used to be commit 0a81af4fef5b794fea257d9e3e11b16c3a4de12f)
2007-10-10r15904: This does two things:Volker Lendecke1-25/+37
Fix more potential segfaults when something on our way to a DC connection fails. We can not continue if dcip_to_name() fails. With 192.168.234.100 nt4pdc 192.168.234.100 windows#1c 192.168.234.100 windows#1b in the lmhosts file when nt4pdc is rebooted, we do find the DC's IP address, we can connect to TCP 139 while it is booting but anything else fails. So we fall back to put the IP address into domain->dcname. When the DC is fully up later on we try to do the auth2 against \\192.168.234.100 which gives INVALID_COMPUTER_NAME. And we never get out of this loop again. Fix this. Jerry, maybe you can take a look. Thanks, Volker (This used to be commit b1244e79068af9e287252b2dfbb8d612e717674a)
2007-10-10r15895: Ensure all new rid allocation goes throughJeremy Allison1-6/+12
the same function (deals with races). Jeremy. (This used to be commit 4962548dfe8ec2854e209217066556f339d3186e)
2007-10-10r15890: Use correct enum type (bug #3722) from Jason Mader <jason@ncac.gwu.edu>.Jeremy Allison1-1/+1
Jeremy. (This used to be commit a8eb1186a12b44178a28b013373f6f8a4356d9ec)
2007-10-10r15888: Fix bug #3804 from jason@ncac.gwu.eduJeremy Allison1-2/+2
Invalid comparisons. Jeremy. (This used to be commit 9890a31c5f4a8911b0f56eee67cfbcc46f15ee43)
2007-10-10r15887: Ensure we use sys_write so we're not interrupted.Jeremy Allison1-1/+1
Jeremy. (This used to be commit c66620770d2154543a6ec99d369771b339df5463)
2007-10-10r15884: Fix bug #3803 from jason@ncac.gwu.edu - bad comparison.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 1d9dbe3b662ea757224ca4d8c991ae73bb92ae8d)
2007-10-10r15873: Use short signal names to placate ksh trap. bash seems to accept eitherJim McDonough1-2/+2
and even uses them on the manpage. this should now enable make test on AIX. (This used to be commit de836d2077e53c07a50c51d1580f8e93700eb5bd)
2007-10-10r15872: Take one step toward getting this working on AIX. the [-z ] stuffJim McDonough1-2/+2
doesn't work there. (This used to be commit 0ee78d96d9bd039084a270172316d80df4c00248)
2007-10-10r15864: build fixes for IRIX 6.4 in the build farm; only enable the C++ ↵Gerald Carter1-1/+5
reserved word check when we selecte --enable-developer (This used to be commit ece5fe3e78da460fb1c0eca3185da7f80c5cfdc4)
2007-10-10r15863: trying to fix a compile issue on HP-UX 11.x caused by conflicts of ↵Gerald Carter1-15/+19
int16 and int32 definitions in internal and system headers (This used to be commit 094443ed6c0fdd06f459211dbca50feed58463ef)
2007-10-10r15848: Introduce commandline options to set the remainder of the parameters inJames Peach5-25/+162
dynconfig.c. This is mainly useful for test harness scripts, hence the lack of short options. (This used to be commit bf3b71c84595608d71e0f15a6158adacb295518e)
2007-10-10r15845: Ok. This was a tough one. If for some reason the tconX fails towards ↵Volker Lendecke1-0/+1
a domain controller the next time we connect this child ran into a segfault because it tried to reference a half-baked connection. Volker (This used to be commit c8a8204c744cf7aa1a1a6992a3433d99b6bb73a1)
2007-10-10r15842: patch from volker to instruct winbindd to find a trusted DC on its ↵Gerald Carter1-1/+1
own when runing on a Samba DC (since we don't implement the getdcname() call that well (This used to be commit 39f7ff75a7a21b85b54cba954f1c5552e562be5c)
2007-10-10r15838: Back-port tridge's talloc fixes (r15824, r15828) from Samba4.Jeremy Allison2-3/+37
Jeremy. (This used to be commit f6c110ddb8cfaa1a57dea52818e7611134c2dcfe)
2007-10-10r15822: Add suggestion made by Ralf Haferkamp.Lars Müller1-1/+1
(This used to be commit 7c375fd540fa54ac8ae71c42ed07e01c593044b3)
2007-10-10r15817: Remove some unused codeVolker Lendecke1-20/+0
(This used to be commit 72f103708d17aa86e09fa7a02699f969f7ee9190)
2007-10-10r15755: Fix Coverity bug # 294. Apparently password can be NULL, but ↵Volker Lendecke1-0/+4
cli_session_setup derefences it. Volker (This used to be commit b013b6908d22cfd38fcc56a9cb2ca675d75996d1)
2007-10-10r15735: also export PREFIX as testit from test_functions.sh needs itStefan Metzmacher1-1/+1
metze (This used to be commit 8709bba24a2359aff14920b1dab6b51f21401149)
2007-10-10r15732: samba3 now passes BASE-DENY1Stefan Metzmacher1-1/+1
metze (This used to be commit e5a8553a57e0b1463a421ba69631f234184404b0)
2007-10-10r15729: Second part of Aleksey Fedoseev <fedoseev@ru.ibm.com> patch.Jeremy Allison1-1/+54
Jeremy. (This used to be commit 5137006233a0c2de94ce3da7340ff0032ef7426d)
2007-10-10r15727: Fix msgtest - noticed by Aleksey Fedoseev <fedoseev@ru.ibm.com>.Jeremy Allison1-0/+2
Jeremy. (This used to be commit 9f5c95c41872deac5e029b69daa5004d5c0fb4cc)
2007-10-10r15717: BUG 3711: patch from Leonid Kabanov <lkabanov@mail.ru> for some ↵Gerald Carter1-2/+2
solaris sheel scripting bugs with 'make test' (This used to be commit 94e0bc50135646039a2ebcf5c922a82cc0c4a2e7)
2007-10-10r15712: BUG 3435: patch from volker to fix 'msdfs root = yes' in [homes]Gerald Carter1-1/+4
(This used to be commit 466478f07e6233b89f442660ad42ef7ee870ad48)
2007-10-10r15705: Fix bug number 3788. Thanks to Jeff Wright.Volker Lendecke1-0/+3
Volker (This used to be commit e4a2cb4b9143394a54ae1de91e59722c11a0b2e4)
2007-10-10r15704: Prefer LDAP error codes in ads_search_retry_sid().Günther Deschner1-2/+2
Guenther (This used to be commit 6cfc65ea20793a72ff1666759bd4e8e446247071)
2007-10-10r15703: Fix d_printf call.Günther Deschner1-1/+1
Guenther (This used to be commit 741602e03ad2404d4e38e55b9e5fd20b85fd205d)
2007-10-10r15701: change 'net ads leave' to disable the machine account in the domain ↵Gerald Carter5-397/+396
(since removal implies greater permissions that Windows clients require) (This used to be commit ad1f947625612ef16adb69fc2cfeffc68a9a2e02)
2007-10-10r15700: Make nmbd udp sockets non-blocking to prevent problemJeremy Allison6-9/+14
with select returning true but no data being available. Fix for bug #3779. Jeremy. (This used to be commit e5787cf75b2e7d50f551f34f28d280c27b0aa134)
2007-10-10r15698: An attempt to make the winbind lookup_usergroups() call in security=adsGünther Deschner5-38/+369
more scalable: The most efficient way is to use the "tokenGroups" attribute which gives the nested group membership. As this attribute can not always be retrieved when binding with the machine account (the only garanteed way to get the tokenGroups I could find is when the machine account is a member of the "Pre Win2k Access" builtin group). Our current fallback when "tokenGroups" failed is looking for all groups where the userdn was in the "member" attribute. This behaves not very well in very large AD domains. The patch first tries the "memberOf" attribute on the user's dn in that case and directly retrieves the group's sids by using the LDAP Extended DN control from the user's object. The way to pass down the control to the ldap search call is rather painfull and probably will be rearranged later on. Successfully tested on win2k sp0, win2k sp4, wink3 sp1 and win2k3 r2. Guenther (This used to be commit 7d766b5505e4099ef7dd4e88bb000ebe38d71bd0)
2007-10-10r15697: I take no comments as no objections :)Günther Deschner10-214/+548
Expand the "winbind nss info" to also take "rfc2307" to support the plain posix attributes LDAP schema from win2k3-r2. This work is based on patches from Howard Wilkinson and Bob Gautier (and closes bug #3345). Guenther (This used to be commit 52423e01dc209ba5abde808a446287714ed11567)