summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r21500: Fix inappropriate creation of a krb5 ticket refreshing event when a userGünther Deschner3-6/+68
changed a password via pam_chauthtok. Only do this if a) a user logs on using an expired password (or a password that needs to be changed immediately) or b) the user itself changes his password. Also make sure to delete the in-memory krb5 credential cache (when a user did not request a FILE based cred cache). Finally honor the krb5 settings in the first pam authentication in the chauthtok block (PAM_PRELIM_CHECK). This circumvents confusion when NTLM samlogon authentication is still possible with the old password after the password has been already changed (on w2k3 sp1 dcs). Guenther (This used to be commit c3005c48cd86bc1dd17fab80da05c2d34071b872)
2007-10-10r21483: Fix use of uninitialized variable.Jeremy Allison1-3/+6
Jeremy. (This used to be commit 4a74d042c9108ed68cc92f27b390c261c0bc8885)
2007-10-10r21482: Use IPC$ not ipc$ for consistency.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 42a846b3dfa50eea6592c6bb425f7bdb672c25f9)
2007-10-10r21481: No one said anything, so I'm disallowing anythingJeremy Allison1-7/+17
but explicit shares in "default service" :-). Jeremy. (This used to be commit 90bdcce765998cc0f5768d24926d52b8a4a44f90)
2007-10-10r21480: Make fd_open match fd_close be translatingJeremy Allison1-9/+12
errno into an NTSTATUS immediately. Jeremy. (This used to be commit 71dd02cc164197152e76d8141f906390c4bd1526)
2007-10-10r21478: Add 65k length limit for split SPNEGO blobs.Jeremy Allison1-9/+19
Jeremy (This used to be commit 6be078da267677e3e558033c28099e3932a17712)
2007-10-10r21474: Ensure trustdom_cache_shutdown() gets calledJeremy Allison1-4/+4
on terminate. Pointed out by Herb. Jeremy. (This used to be commit 08998b74a51acd55eb6cbe095e682e2a79334736)
2007-10-10r21467: Add GPFS-provided DMAPI support based on their GPL libraryAlexander Bokovoy2-1/+11
(This used to be commit 5876bedda51fce0c932ca0cdab074629b31a9c94)
2007-10-10r21462: Fix EnumValue (?)Jelmer Vernooij9-126/+65
(This used to be commit e73a418b5b0100936efb4c1133da3cfe3fcb61cd)
2007-10-10r21461: Not strictly necessary, as data_blob() panics if it can't allocate. ↵Volker Lendecke1-0/+4
But I'd see this as a design flaw in data_blob() and it made me look in that routine. Jeremy, revert or merge please :-) Volker (This used to be commit e7e6b8b5e0b00cc0746db4e9baa2e860074f903a)
2007-10-10r21460: Fix for server-side processing of SPNEGO authJeremy Allison4-11/+234
fragmented into "max xmit" size security blob chunks. Bug #4400. Needs limits adding, and also a client-side version. Jeremy. (This used to be commit aa69f2481aafee5dccc3783b8a6e23ca4eb0dbfa)
2007-10-10r21454: Fix debug typo.Günther Deschner1-1/+1
Guenther (This used to be commit 5c4a58ff3ab261e32789f39f2cf478367b727318)
2007-10-10r21453: use the tdb mapping file for groups by default for compatibility ↵Gerald Carter1-1/+1
with the 3.0.25 tree (for now) (This used to be commit 53ab0d1822711038612f2ef9ccffaa3ed394c4ce)
2007-10-10r21450: No need to TALLOC_FREE twice here.Günther Deschner1-2/+0
Guenther (This used to be commit ad063d9a944e923777e538c2cb050d47f9f8bea0)
2007-10-10r21449: Talked to Jerry on irc, he does not see what might break with this: ↵Volker Lendecke1-1/+1
Change back the 'msdfs root = yes' default to 'no'. Volker (This used to be commit ec6ebdcdbf1146af21ab66731e018e2834b2b118)
2007-10-10r21446: Karolins "printjob username"Volker Lendecke2-1/+10
(This used to be commit 19ee6779255a269830fa8ee51468a4738dadf942)
2007-10-10r21445: Apply tdb_parse_record Tridges error return, merge to 3_0_25 and 4_0Volker Lendecke1-9/+2
(This used to be commit c852d9b56971673fc62eec3460720478d81c279d)
2007-10-10r21444: Check in tdb_parse_record. Not merging to the other branches yet, we ↵Volker Lendecke4-13/+101
need to agree on the behaviour of non-existing records. Tridge, can you comment? Should we change tdb_fetch, or should we have different concepts in tdb_fetch() and tdb_parse_record() ? Volker (This used to be commit fba79e75c0138c3ae4e73014a1d1a2c2045c35bb)
2007-10-10r21417: Janitor for Herb. Make sure sharesec.c is functionallyJeremy Allison1-127/+319
identical in 3.0.25 and 3.0. Jeremy. (This used to be commit eabe14825877a05d544bb61080701170449c7d26)
2007-10-10r21412: The last patch also incremented the seqnum when tdb_store failed. ↵Volker Lendecke1-8/+10
Not as bad as not doing it at all, but needs fixing. Also simplify the logic, I had missed the "goto out" at the end of the function. Volker (This used to be commit 101789946130d51f3092d19f081071bdb5e43c21)
2007-10-10r21410: We have to increment the sequence number also when tdb_update_hash()Volker Lendecke1-1/+1
succeeded. Found while testing the brlock seqnum patch. Tridge, please check! Volker (This used to be commit 815f2b19409dc015bb2a04b16224a7ac8071a991)
2007-10-10r21409: saved_status1 is not used anymore after aio write behind was removedVolker Lendecke1-5/+2
(This used to be commit 29a1892c131ed41a06d3dcfdb5d21371e60c1ba6)
2007-10-10r21399: need to zero the request and response structuresHerb Lewis1-0/+3
(This used to be commit aa8f306fa545af653d8288919fa5a3b80f447bec)
2007-10-10r21397: revert accidential commitHerb Lewis1-1/+1
(This used to be commit 9fe5f7885771e68b11c7794653d0e4771eeac403)
2007-10-10r21396: fix wbinfo --lookup-rids commandHerb Lewis3-4/+36
allow detection of libbiconv if all others fail - need for FreeBSD (This used to be commit 7acc9421b0643cb04bff1f1d98ecb899f9b09601)
2007-10-10r21394: Prevent nscd crash due to potential NULL pointer dereference inGünther Deschner1-0/+4
_nss_winbind_initgroups_dyn() on an empty group list. Guenther (This used to be commit 155b9e7c74d1a623e018fc2f8ca2e32e4aa3f213)
2007-10-10r21393: Fix typo.Günther Deschner1-2/+2
Guenther (This used to be commit 7bbb3409a530a6ac9712992c87c63e056511517b)
2007-10-10r21388: Merge support for providing replacement system headers.Jelmer Vernooij3-1/+17
(This used to be commit 78d6c88f10d600e05c4346affbba1d95c614dc34)
2007-10-10r21387: Another important fix for non-AD domains:Günther Deschner2-7/+3
Avoid assigning 0 as primary group id for users in NSS calls. Jerry, please check. Guenther (This used to be commit 03f5f7d0140c99411c137e7e2eac7e2d0c08202e)
2007-10-10r21385: Regenerate IDL after pidl changes, sync winreg.idl from samba4.Jelmer Vernooij28-618/+694
(This used to be commit b84370513fbf790e599c33f177fb271a2a992b72)
2007-10-10r21383: More possible "security=share" fixes. If a clientJeremy Allison1-0/+3
is sending LMv2 make sure we test with the password blob in the LM field as well as the NT field. Jeremy. (This used to be commit a6b55beae7ae0c70cf955d01f51f881f9f962910)
2007-10-10r21382: Important fix for winbind when using non-AD domains.Günther Deschner2-2/+14
Jeremy, I'm afraid you removed the "domain->initialized" from the set_dc_types_and_flags() call when the connect to PI_LSARPC_DS failed (with rev. 19148). This causes now that init_dc_connection_network is called again and again which in turn rescans the DC each time (which of course fails each time with NT_STATUS_BUFFER_TOO_SMALL). Just continue with the non-PI_LSARPC_DS scan so that the domain is initialized properly. Guenther (This used to be commit c6f63a08f55a4121cbe5aac537d2ef983dc25a97)
2007-10-10r21379: Attempt to fix the build on "gwen"Volker Lendecke1-1/+1
(This used to be commit 3d85eb758d2261e0749f6db0ce368a7c0d4df149)
2007-10-10r21369: sys_disk_free return type is SMB_BIG_UINT.Simo Sorce1-1/+1
Fix dfree_retval to be SMB_BIG_UINT as well, otherwise we may wrap up on > 2T file systems. Simo. (This used to be commit 0bb7f6492ccf4a965d70d43ee1483959c71bcdba)
2007-10-10r21365: Lets see which build farm machines have makecontext & friendsVolker Lendecke1-0/+1
(This used to be commit ab053a3b7186989b41180857e21e7d837de81cbd)
2007-10-10r21358: Some more debugging for _nss_winbind_initgroups_dyn() on Linux.Günther Deschner1-0/+12
Guenther (This used to be commit 639b7989b3ad1438a443a33dc41115bcc90f72d2)
2007-10-10r21357: Fix typo.Günther Deschner1-1/+1
Guenther (This used to be commit e3c32583795631212dc0d5cd01981b27cde2a489)
2007-10-10r21353: In the turn of tracking down nss_winbind related bugs on Linux:Günther Deschner1-19/+100
print NSS_STATUS code with DEBUG_NSS when leaving a function. Guenther (This used to be commit 53ecd63d94fd0a502ef5cdeb512c8e38795698e1)
2007-10-10r21352: Let ads_upn_suffixes() return a pointer to an array of suffixes.Günther Deschner1-4/+4
Guenther (This used to be commit 7ad7847e5bbdd90fa6ae9ce91e5962f524ac2890)
2007-10-10r21349: Fix memleak in ads_upn_suffixes().Günther Deschner1-0/+3
Guenther (This used to be commit 8462f323cf86f90b1bdf14a3953c5a4bda1b9533)
2007-10-10r21346: FIXME ! Our parsing here is wrong I think,Jeremy Allison1-1/+10
but for a level3 it makes no sense for ptr_sec_desc to be NULL. JRA. Based on a Vista sniff from Martin Zielinski <mz@seh.de>. Jerry - part of the Vista patchset. Jeremy. (This used to be commit 60e26a9039fbe0fd632e306bf545331195fb1ce6)
2007-10-10r21345: Smaller fixes for adssearch:Günther Deschner1-49/+74
* get rid of horrible ads.h parsing * add LDAP_SERVER_SHUTDOWN_NOTIFY_OID * display hex bitmasks Guenther (This used to be commit 97ce4ccea215098f574a40a3192d37910f30c79a)
2007-10-10r21339: Fix the non-linux build. This is more evidence that this needs to beJim McDonough1-0/+2
moved up one layer. (This used to be commit 552ae93b14ff1674a8b2f369e57ad2d7d0712a70)
2007-10-10r21336: Fix indent (as pointed out by Volker).Günther Deschner1-6/+6
Guenther (This used to be commit dcbf7a1250aa5c6293ffba6a930ee23537ec9484)
2007-10-10r21324: Add linux setlease to the vfs layer. Next round, as Volker points out,Jim McDonough8-10/+97
it should be abstracted a little higher up so other os'es can have an entry, but it will take a bit more work. Thanks to Chetan Shringarpure and Mathias Dietz. I didn't increment the vfs number again because the kernel change notify stuff hasn't been released yet anyway. (This used to be commit 9463211bf3b46ee408b88dfbf42d498e3839d4cc)
2007-10-10r21320: Display query_user info level 16 in rpcclient.Günther Deschner1-3/+14
Guenther (This used to be commit bc77622134e606b8a643454493ba316f84312d52)
2007-10-10r21319: Remove functions not needed anymoreVolker Lendecke1-44/+0
(This used to be commit 0c8a364aec68bc7338d034b6f8223ec4085c9e07)
2007-10-10r21318: Fix Bug #4225.Günther Deschner2-11/+69
Cached logon with pam_winbind should work now also for NT4 and samba3 domains. Guenther (This used to be commit b2f91154820219959b8008b15802c70e1d76d158)
2007-10-10r21312: merge from SAMBA_4_0:Stefan Metzmacher1-1/+1
fix memory hierachy, and access to already freed memory metze (This used to be commit 05a23dd75655a80667627e00e0a441b54ec92b22)
2007-10-10r21310: Fix invalid printfs in pam_winbind.Günther Deschner1-12/+20
Guenther (This used to be commit 5a7b2fccb3cdc6a849aedcd256eea86faec1d54c)