summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2009-08-03s3-pdb_ldap: Make ldapsam_alias_memberships behave like the tdbsam equivalent.Günther Deschner1-0/+7
This lets samr_GetAliasMembership return with NT_STATUS_OK when called with 0 sids (just what w2k3 does). Guenther
2009-08-03s4: Change constant to comply with the merged buildMatthias Dieter Wallnöfer1-1/+1
2009-08-03s3/docs: Fix typos.Karolin Seeger1-2/+2
Thanks to OPC oota <t-oota@dh.jp.nec.com> for reporting! Karolin
2009-08-03s3/s4: Add new autogenerated files from "make idl_full"Matthias Dieter Wallnöfer5-748/+1183
2009-08-03s4: Torture test for enhancements in "netr_LogonGetDomainInformations" callMatthias Dieter Wallnöfer1-26/+275
This corrects and enhances the torture test of the mentioned call.
2009-08-03s4: Enhancements in the "netr_LogonGetDomainInformations" callMatthias Dieter Wallnöfer1-65/+194
This addresses bug #4888 and #6596 in SAMBA 4 Bugzilla - It implements the call in the complete form as specified in the MSPP/WSPP docs and on the discussion on the "cifs-protocol" list - Therefore client informations (OS name, OS version, "servicePrincipalName"...) are now saved in the AD each time the client invokes the call
2009-08-03netlogon.idl: Prework to enhance the "netr_LogonGetDomainInformation" call ↵Matthias Dieter Wallnöfer1-48/+114
correctly This enhances the "netlogon.idl" file to allow enhancements on the mentioned call. Therefore this is also the base for fixing up bug #4888.
2009-08-03netlogon.idl: Removes the form "str[]" for string declarationsMatthias Dieter Wallnöfer1-40/+40
In this file two different forms are used to explain the same datatype ("str[]" and "*str"). I didn't find this very nice and unified the occurrences to always use "*str". This patch is of cosmetic nature.
2009-08-03Return infinite time for last last logoff when last logoff = 0Matthieu Patou3-2/+18
2009-08-03s3: check in .po files for pam_winbind.Bo Yang18-0/+2850
Signed-off-by: Bo Yang <boyang@samba.org>
2009-08-02Fix some nonempty blank linesVolker Lendecke3-56/+56
2009-08-02Fix breakage for connect function after API change (connect -> connect_fn)Alexander Bokovoy2-2/+2
2009-08-02Refactor 9b78af1f: Fix lookupname recursionVolker Lendecke7-30/+24
Pass a "flags" argument instead of the original winbind command down the name_to_sid chain. This way we are independent of the winbind commands and can take the decision at a much higher level
2009-08-01Some mods for recent coding conventionsVolker Lendecke2-3/+6
2009-08-01Place a comment correctlyVolker Lendecke1-1/+4
2009-08-01Fix indentationVolker Lendecke1-1/+1
2009-07-31Refactoring: mem_ctx is not needed as an argument to centry_sidVolker Lendecke1-21/+25
2009-07-31Rename LOOKUP_NAME_EXPLICIT to LOOKUP_NAME_NO_NSSVolker Lendecke3-8/+11
It took me a bit to understand what this flag does. I hope this is a bit clearer, at least it is to me.
2009-07-31Fix some nonempty linesVolker Lendecke2-9/+9
2009-07-31Remove a pointless variableVolker Lendecke1-3/+1
2009-07-31We're not changing last write, but setting this to be ↵Jeremy Allison1-1/+1
FILE_NOTIFY_CHANGE_CREATION doesn't work. So use FILE_NOTIFY_CHANGE_LAST_WRITE (now seems to reliably fix bug #6529 - Offline files conflict with Vista and Office 2003. Jeremy.
2009-07-31s3: Remove invalid constantMatthias Dieter Wallnöfer1-1/+0
2009-07-31Merge branch 'master' of git://git.samba.org/sambaMatthias Dieter Wallnöfer1-0/+1
2009-07-31s4: Correct renamed constantsMatthias Dieter Wallnöfer2-6/+6
2009-07-31Provide a mem_ctx for child requestsVolker Lendecke1-0/+1
2009-07-31s4: Adds a small test for the new enhanced error messages from the AD LDAP ↵Matthias Dieter Wallnöfer1-4/+183
server
2009-07-31s4: Enhances the LDAP server to display error messages like Windows ServerMatthias Dieter Wallnöfer1-27/+178
Those error messages also include the WERROR code of the failed operation(s) in this manner: <error code eight chars in HEX>: <further error message> This also addresses bug #4949
2009-07-31Adds new error codes (needed for enhancing error messages for SAMBA 4 AD ↵Matthias Dieter Wallnöfer4-18/+83
LDAP server)
2009-07-31Slightly restructure the async winbind request calling conventionVolker Lendecke4-20/+17
The main loop now allocates the response, this has to be done everywhere
2009-07-31s4:libcli/ldap: the tls code steals the original socket on its own nowStefan Metzmacher1-3/+0
metze
2009-07-31s4:ldap_server: the tls code steals the original socket on its own nowStefan Metzmacher2-2/+2
metze
2009-07-31s4:tls: avoid using talloc_reference() in tls_init_client()Stefan Metzmacher1-6/+2
metze
2009-07-31s4:tls: avoid using talloc_reference() in tls_init_server()Stefan Metzmacher1-8/+1
metze
2009-07-31s4:libnet: use talloc_strdup() instead of talloc_reference()Stefan Metzmacher2-2/+2
metze
2009-07-31s4:build: make sure that we regenerate proto headers when source files changeStefan Metzmacher1-0/+2
metze
2009-07-31librpc/ndr_drsuapi: fix a memory leak on ndr_push_drsuapi_DsReplicaOID()Stefan Metzmacher1-0/+1
metze
2009-07-31util/asn1: fix potential memory leak in asn1_write_OID()Stefan Metzmacher1-0/+1
metze
2009-07-31s4:auth: make sure we have elements returned at all in ↵Stefan Metzmacher1-0/+6
authsam_expand_nested_groups() metze
2009-07-31s4: Patch to implement nested group and privilegesMatthias Dieter Wallnöfer1-34/+100
This patch adds a function "authsam_expand_nested_groups" (calculation of rights through expanding groups of a certain SID) which basically collects all memberships through "memberOf" attributes. It works with either user or group SIDs. For avoiding loops it tests on each call if the SID hasn't been added yet (through the helper function "sids_contains_sid"). The function itself is called by "authsam_make_server_info".
2009-07-31tdb: don't alter tdb->flags in tdb_reopen_all()Rusty Russell1-6/+13
The flags are user-visible, via tdb_get_flags/add_flags/remove_flags. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> Signed-off-by: Stefan Metzmacher <metze@samba.org>
2009-07-31tdb: Reimplementation of Metze's "lib/tdb: if we know pwrite and pread are ↵Rusty Russell1-5/+10
thread/fork safe tdb_reopen_all() should be a noop". This version just wraps the reopen code, so we still re-grab the lock and do the normal sanity checks. The reason we do this at all is to avoid global fd limits, see: http://forums.fedoraforum.org/showthread.php?t=210393 Note also that this whole reopen concept is fundamentally racy: if the parent goes away before the child calls tdb_reopen_all, the database can be left without an active lock and another TDB_CLEAR_IF_FIRST opener will clear it. A fork_with_tdbs() wrapper could use a pipe to solve this, but it's hardly elegant (what if there are other independent things which have similar needs?). Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> Signed-off-by: Stefan Metzmacher <metze@samba.org>
2009-07-31tdb: Revert "lib/tdb: if we know pwrite and pread are thread/fork safe ↵Rusty Russell1-5/+0
tdb_reopen_all() should be a noop" This reverts commit e17df483fbedb81aededdef5fbb6ae1d034bc2dd. tdb_reopen_all also restores the active lock, required for TDB_CLEAR_IF_FIRST. Signed-off-by: Stefan Metzmacher <metze@samba.org>
2009-07-31.gitignore: ignore more generated filesStefan Metzmacher1-0/+5
metze
2009-07-31winsif.idl: add definition of winsif_WinsDoScanvengingNew()Stefan Metzmacher1-1/+14
metze
2009-07-31winsif.idl: add definition of winsif_WinsStatusWHdl()Stefan Metzmacher1-1/+5
metze
2009-07-31winsif.idl: add definition of winsif_WinsStatusNew()Stefan Metzmacher1-1/+17
metze
2009-07-31winsif.idl: add definition of winsif_WinsGetDbRecsByName()Stefan Metzmacher1-2/+9
metze
2009-07-31winsif.idl: add definition of winsif_WinsGetBrowserNames()Stefan Metzmacher1-1/+10
metze
2009-07-31winsif.idl: add definition of winsif_WinsSetFlags()Stefan Metzmacher1-1/+3
metze
2009-07-31winsif.idl: add definition of winsif_WinsDeleteWins()Stefan Metzmacher1-1/+3
metze