summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r17945: Store the server and client sitenames in the ADSJeremy Allison8-7/+60
struct so we can see when they match - only create the ugly krb5 hack when they do. Jeremy. (This used to be commit 9be4ecf24b6b5dacf4c2891bddb072fa7543753f)
2007-10-10r17944: Handle locking madness.Jeremy Allison1-11/+32
Jeremy. (This used to be commit 408267a2d725a0596be37b019fe4513502b2c0ec)
2007-10-10r17943: The horror, the horror. Add KDC site support byJeremy Allison6-35/+117
writing out a custom krb5.conf file containing the KDC I need. This may suck.... Needs some testing :-). Jeremy. (This used to be commit d500e1f96d92dfcc6292c448d1b399195f762d89)
2007-10-10r17942: Jerry is right - when no site support is enabledJeremy Allison1-6/+11
the client sitename is "Default-First-Site-Name". Treat this as a blank site (no site configured). Jeremy. (This used to be commit 5c46381bd7dd1b3f11f427d111ded0b76fc1bec8)
2007-10-10r17941: Fix print out of client site name.Jeremy Allison1-1/+1
Jeremy. (This used to be commit b8cedcac933fef9370bd42d1ff7c35c5c27103d1)
2007-10-10r17937: Move the saf_ cache into the tcp ad connection code.Jeremy Allison2-7/+21
Cause winbindd to set site support before doing the generic AD server lookup. Jeremy. (This used to be commit a9833941715472ece747bce69ef53ba8ad98d7a5)
2007-10-10r17934: allow srcdir != builddir for 'make test'Gerald Carter5-8/+9
(This used to be commit 70f223554922947a17e81f1002b184db879a2195)
2007-10-10r17933: Don't print a NULL sitename.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 2829dbc3e01d967887e25d1bcacb1d538fc11e59)
2007-10-10r17929: Ok, I think I finally figured out where to putJeremy Allison2-13/+62
the code to redo the CLDAP query to restrict DC DNS lookups to the sitename. Jerry, please check to stop me going insane :-). Jeremy. (This used to be commit 8d22cc111579c57aec65be8884b41564b79b133a)
2007-10-10r17928: Implement the basic store for CLDAP sitenameJeremy Allison7-16/+106
support when looking up DC's. On every CLDAP call store the returned client sitename (if present, delete store if not) in gencache with infinate timeout. On AD DNS DC lookup, try looking for sitename DC's first, only try generic if sitename DNS lookup failed. I still haven't figured out yet how to ensure we fetch the sitename with a CLDAP query before doing the generic DC list lookup. This code is difficult to understand. I'll do some experiments and backtraces tomorrow to try and work out where to force a CLDAP site query first. Jeremy. (This used to be commit ab3f0c5b1e9c5fd192c5514cbe9451b938f9cd5d)
2007-10-10r17924: Get rid of warnings now that talloc is merged.Volker Lendecke7-21/+9
Destructors now take a pointer to the "real" destroyed object as an argument. Volker (This used to be commit 70edd716ef0ccb218fe18d1233bd30abe46b62bf)
2007-10-10r17923: turn on null_tracking with the first talloc_init() call,Stefan Metzmacher1-0/+3
(this needs to be moved to a samba3 specific place) I commit this because I habe no time to test smbcontrol .... pool-usage and don't want to break it. I'll try to find a better fix tomorrow. metze (This used to be commit ae313ab4caa5652199b9aaceb30b4d432ab4f393)
2007-10-10r17922: sync samba3's talloc with samba4's and move the samba3 specific ↵Stefan Metzmacher4-237/+261
stuff to tallocmsg.c metze (This used to be commit 7704e3e51dec1768772663024a0579cb4a271cc1)
2007-10-10r17921: Comment is obsolte. This is now implemented in winbindd.Jeremy Allison1-3/+1
Jeremy. (This used to be commit 37c636eb480e3736b143653231d73620152eb470)
2007-10-10r17910: remove incorrect comment (code has already been fixed)Gerald Carter1-3/+0
(This used to be commit 9810d74e171542408eea3ec22a0ebb57a9e1e87e)
2007-10-10r17909: ensure we do not call map_username() twice on Krb5 session setupsGerald Carter1-1/+5
(This used to be commit 779eba0a7cab3156b8580410cfe288609a288548)
2007-10-10r17906: Port the snprintf bugfix from 4. I wonder why we never hit this....Volker Lendecke1-2/+2
(This used to be commit b9227bde1328c09c61cc23fdbb4fa756e919c4a6)
2007-10-10r17903: Fix null deref caught by Stanford checker. Don'tJeremy Allison1-1/+0
call ntlmssp_end on a null pointer ! (Doh !). Jeremy. (This used to be commit 7b53932b5190c78b2b483f36af95174fe38ed45e)
2007-10-10r17902: Fix possible null deref caught by Stanford checker.Jeremy Allison1-1/+3
Jeremy. (This used to be commit e8b0649fe167c3446eb6121ed666254fdf53aa58)
2007-10-10r17901: Stanford checker fix. cookie here can't be null or we'dJeremy Allison1-1/+1
deref null. Make interface explicit. Jeremy. (This used to be commit 4e99606ec16b978a76219b5362a23a7b06ee5468)
2007-10-10r17900: Fix from Michael Adam <ma@sernet.de> - make internal_resolve_nameJeremy Allison1-62/+62
do what it's supposed to. Jeremy. (This used to be commit 4b7387a054bfc1587e0b9b7088f420a5bcf0bad9)
2007-10-10r17899: Fix Stanford checker bug - possible null deref.Jeremy Allison1-2/+5
Jeremy. (This used to be commit e77949175144cbe4cfa58788d13acc704eebc251)
2007-10-10r17897: Store the uid in the memory creds. Don't request theJeremy Allison4-11/+27
krb5 refresh creds when doing cached NTLM auth, request the memory creds instead. Jeremy. (This used to be commit 310ac0b226edcfd5bedc2c3305a05993db20c7af)
2007-10-10r17896: Reformatting. I did not want to do it anymore, but these ones looked ↵Volker Lendecke1-12/+19
just silly :-) Volker (This used to be commit 8b6f5937db4b18db711dd0c4f1ae904087249000)
2007-10-10r17881: Another microstep towards better error reporting: Make ↵Volker Lendecke5-23/+43
get_sorted_dc_list return NTSTATUS. If we want to differentiate different name resolution problems we might want to introduce yet another error class for Samba-internal errors. Things like no route to host to the WINS server, a DNS server explicitly said host not found etc might be worth passing up. Because we can not stash everything into the existing NT_STATUS codes, what about a Samba-specific error class like NT_STATUS_DOS and NT_STATUS_LDAP? Volker (This used to be commit 60a166f0347170dff38554bed46193ce1226c8c1)
2007-10-10r17880: On host "tridge" in the build farm the tests fail because smbd hangs ↵Volker Lendecke1-0/+3
in in 'connecting to cups server on localhost'. There is no cups on that host, but the TCP connection hangs in SYN_SENT. Probably some firewall rule. Work around that. Volker (This used to be commit ab4e7b34da00c2a8f3244d84f08037ddfadf85d5)
2007-10-10r17879: Make it explicit that we can never pass NULL for buflen or stringlen.Jeremy Allison1-6/+2
Stanford Checker fix. Jeremy. (This used to be commit 2d8bdd2dce633253780a5b0378f229893d049666)
2007-10-10r17878: Fix possible null deref found by Stanford checker.Jeremy Allison1-0/+4
Jeremy. (This used to be commit ae20201494f44cb98e58ba98531a79feeeb82b47)
2007-10-10r17877: Make it explicit to the checker that we can never passJeremy Allison1-2/+1
in NULL as ctr to a void returning fn. Jeremy. (This used to be commit 397ab2b1ab72093ba0572493b2e97a93dfc75478)
2007-10-10r17875: Fix (rather theoretical, but still...) null deref found byJeremy Allison1-8/+11
Stanford checker. Jeremy. (This used to be commit 45d77ae12235e6b39cc30845d69ac3777d3eefd0)
2007-10-10r17874: Fix possible null deref found by Stanford checker.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 2894310cc8cddaec2a67f1af0ab62cc559283e77)
2007-10-10r17873: Fix possible null deref found by Stanford checker.Jeremy Allison1-2/+3
Jeremy. (This used to be commit 1adb3b2432187e9a19b78cfa5762c3e05a357392)
2007-10-10r17872: Fix possible null deref found by the Stanford checker.Jeremy Allison1-1/+3
Jeremy. (This used to be commit ac06fc42cb9b1e2304d44653614aeaa7c537f34b)
2007-10-10r17869: More sensible fix for Stanford Checker null deref.Jeremy Allison1-4/+2
Jeremy. (This used to be commit 2a73e82f9663fc0e14b4c2af94de3b4216f1eece)
2007-10-10r17867: Fix null deref in error code path. Found by theJeremy Allison1-0/+1
Stanford checker. Jeremy. (This used to be commit 09652dc71ce13bd305e653557e43731378398dd6)
2007-10-10r17866: Fix possible null deref - found by Stanford checker.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 84e8cc0593c20b1262965a320d89b72a3dc9b402)
2007-10-10r17865: Fix what the Stanford checker reported as a possibleJeremy Allison1-1/+3
deref. I think this is a false positive, but it's an easy extra check to add here. Jeremy. (This used to be commit 7d3b11ab18e2c793d43b6eed1803f2183b7b2daa)
2007-10-10r17864: Fix possible null deref if client doesn't give usJeremy Allison1-1/+9
an answer record. Found by the Stanford checker. Jeremy. (This used to be commit 1ec77c50118de808f710b17f878b1e80d4e351d5)
2007-10-10r17863: Fix unneeded NULL check on pointer parameters causing theJeremy Allison1-7/+2
Stanford checker to flag null deref. Jeremy. (This used to be commit b7fc023e9025127855fab71002d556e5f84e00b4)
2007-10-10r17862: Fix possible NULL deref (like rev 17861) found by theJeremy Allison1-1/+3
Stanford group. Jeremy. (This used to be commit cfd39c2804df3f67637adf223542daa208c893c7)
2007-10-10r17861: Fix inconsistency found in checking for NULL in DLIST_REMOVEJeremy Allison1-1/+1
macro. Don't check for NULL if we would have already derefed. Jeremy. (This used to be commit 1cb379315a45a0c47feab0df1f07ec5d808a4259)
2007-10-10r17855: Fix the build on systems without LDAPVolker Lendecke1-0/+2
(This used to be commit 2e9f5c520a843ad22088388d155a172a63c140d5)
2007-10-10r17854: Steal the LDAP in NTSTATUS trick from Samba4Volker Lendecke4-16/+39
Thanks to Michael Adam <ma@sernet.de> Volker (This used to be commit 91878f9b6fbe5187fb7d0464008ea0abe7f11a73)
2007-10-10r17853: Fix an uninitialized variable (m_time2). Jeremy, please check.Volker Lendecke1-2/+3
Thanks, Volker (This used to be commit 389910b2d376bc5795b0afacb86e45d7a6987491)
2007-10-10r17852: Remove a pointless NULL assignmentVolker Lendecke1-1/+0
(This used to be commit 9f27824257924485a39bb60f00c9de02f869c4ff)
2007-10-10r17851: Fix a warning & attempt to fix the Tru64 buildVolker Lendecke2-1/+25
(This used to be commit b05cac3cb5b35fa305f3d881012cc8e7eca87bd8)
2007-10-10r17850: Another dummy checkin for the build farm to retryVolker Lendecke1-1/+1
(This used to be commit ac7087a6516fa7e0d10523a892acae852a80e29e)
2007-10-10r17847: Dummy commitVolker Lendecke1-1/+1
(This used to be commit cdcea36095a50a92ec1311979b8b2c572b971eaf)
2007-10-10r17845: Remove a Solaris warningVolker Lendecke1-1/+1
(This used to be commit ec42ec31c05afb785adbe3c14f903889178df184)
2007-10-10r17837: Split out the storing of memory cached credentialsJeremy Allison4-201/+422
from the krb5 ticket renewal code. This allows cached credentials to be stored for single sign-on via ntlm_auth for machines in a domain still using NTLM. Also (hopefully) fixes the reference counting problem with pam_logon/logoff so multiple logons/logoffs won't lose cached credentials. This compiles, but I'm intending to test it over the weekend so don't complain too much :-). I also want it in the tree so Coverity can scan it for errors. Guenther, check this over please - I ran through the architecture with Jerry and he's ok with it, but this is modifying your code a lot. Jeremy. (This used to be commit 679eeeb91155dad3942efde6ae9f8d81faf18c5b)