summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r3604: fix bug in Fedora packaging scriptsGerald Carter1-0/+1
(This used to be commit fdc84a04fe8989e36442d09136ededa0c73dae5f)
2007-10-10r3569: Fix for bug #1651, added extra servicePrincipalNames for kerberos ↵Jeremy Allison1-6/+44
interop. Modified the redhat patch some... Jeremy. (This used to be commit 2ae717cd2c876649464f91093e55bed64ac5588d)
2007-10-10r3566: Completely replace the queryuseraliases call. The previous ↵Volker Lendecke9-281/+131
implementation does not exactly match what you would expect. XP workstations during login actually do this, so we should better become a bit more correct. The LDAP query issued is not really fully optimal, but it is a lot faster and more correct than what was there before. The change in passdb.h makes it possible that queryuseraliases is done with a single ldap query. Volker (This used to be commit 2508d4ed1e16c268fc9f3676b0c6a122e070f93d)
2007-10-10r3563: During a typical logon a modern workstation makes a lot of anonymous ↵Volker Lendecke5-1/+74
session setups on its way to open a pipe. This gets rid of many round-trips to the LDAP server during logon by setting up the server_info_guest once and not asking the LDAP server and nss every time. Make sure that the ldap connection is reopened in the child. (I did not look at the sql backends.) Volker (This used to be commit 3298f6105e6a88c9390cac02245c8f2eee1e5046)
2007-10-10r3561: Since we have tdb_reopen_all() after all forks, the local_pid logic ↵Volker Lendecke2-8/+2
is not correct anymore. If we actually open the tdb before the fork, we end up opening the tdb twice. Jerry, jra, this also happens in the locking and printing subsystems. You might want to check it there (not that it actually happens right now, but this gave me some confusion lately...). Volker (This used to be commit 40cad9dcc14ddec0ce74bb9010d13bd82e4d10af)
2007-10-10r3559: If called interactively, on shutdown dump the talloc contexts left. IdeaVolker Lendecke1-0/+9
stolen from samba4 ... ;-) Volker (This used to be commit b111bb46afc247e034a11e953b9d243cde69cc07)
2007-10-10r3538: Fix the build with the latest Heimdal code.Jeremy Allison3-7/+15
Jeremy. (This used to be commit 34275bae787762646f02ea1dec19d7b3a9a733a3)
2007-10-10r3535: Tidy up error reporting. Memory leak with MIT krb5 1.3.5 turnsJeremy Allison1-11/+13
out to be in the kerberos libraries, not in Samba. Now to test with Heimdal. Jeremy (This used to be commit b08e3bf6fb1052285e4efd669d9717d3a617499d)
2007-10-10r3525: Fix a memleakVolker Lendecke1-1/+5
Volker (This used to be commit 4c4da26aa19bedcbb52ed3e6d43ca380a7c1603c)
2007-10-10r3504: Fix incorrectly applied patch. My fault - sorry!Tim Potter1-1/+2
(This used to be commit 43a7f7db3d1995089ac8fb279f36e9e8edb1d8bb)
2007-10-10r3502: Tidy up debugging in kerberos_keytab code.Jeremy Allison1-32/+48
Jeremy. (This used to be commit 82651c1b1704d90ca52be1463ee871801c607d3b)
2007-10-10r3498: Optimisation of idmap_rid init: Avoid calling a DC for the domain-sidGünther Deschner1-28/+42
when trusted domains are disabled anyway. Guenther (This used to be commit cd30a0b14adf1e58c19bcbfec385a5794d4ca112)
2007-10-10r3496: Fix calling of get_acl_group_bits().Günther Deschner2-2/+4
Guenther (This used to be commit 3acc74eef5dae16d7e2792206640904265c42494)
2007-10-10r3495: Fix the build (recent kerberos-changes).Günther Deschner3-4/+7
Guenther (This used to be commit c7eab285d967345510a15e83bce508edb8e06e99)
2007-10-10r3492: Fixes from testing kerberos salted principal fix.Jeremy Allison3-24/+66
Jeremy. (This used to be commit b356a8fdc5a1ac45f2f7f56a0836e794bdecddc6)
2007-10-10r3469: Fix build of smbmount.Günther Deschner1-1/+1
Guenther (This used to be commit d22b29ee9c37b9d35e0d785632a10856045df0dc)
2007-10-10r3451: Finish off kerberos salting patch. Needs testing !Jeremy Allison3-54/+63
Jeremy. (This used to be commit ff4cb6b5e80731856d6f3f7eebd8fc23902e3580)
2007-10-10r3439: Finally fix build for platforms without kerberos.Günther Deschner2-6/+6
Guenther (This used to be commit 05619cfdbf814e5c79e65934b82424eca00c76c4)
2007-10-10r3438: fix some kerberos-related prototype warningsGünther Deschner1-0/+3
Guenther (This used to be commit 43c8a9e25961f65677a55e701f54c0227329a756)
2007-10-10r3437: fix the build.Günther Deschner1-4/+4
Guenther (This used to be commit c4cb2ffa611f79ab3ba17f2afd8e4cd99b0afad3)
2007-10-10r3436: Fix build with recent heimdal-versions (0.6.3) as pointed out by LukeGünther Deschner1-0/+2
Mewburn <lukem@NetBSD.org> and close Bugzilla #1661. Leaving the old define for KRB5_KPASSWD_VERS_SETPW (added by Antti Andreimann) as fallback when the library does not provide one. Guenther (This used to be commit 00598877dfb7aab48d1b5d58b3a69ed2dd8a36a8)
2007-10-10r3420: install smbwrapper and add the include directory in the packageGerald Carter2-0/+8
(This used to be commit fbde364882151f8fac000b9a547eb9d57bb78786)
2007-10-10r3417: BUG 350: patch from Matt Selsky <selsky@columbia.edu> to use autoconf ↵Gerald Carter1-4/+6
feature preopcessing header file only (3 problematic headers on solaris) (This used to be commit b4da6bd0f12d599eff4a90a91ca469145bee6275)
2007-10-10r3408: Another build fixVolker Lendecke1-1/+1
(This used to be commit 0bc5105f71c79e8c709d3bdfcc57cf8621e6fad5)
2007-10-10r3407: Fix the buildVolker Lendecke1-1/+1
(This used to be commit b144ce557f516f62ab802fbb277799b10153c8fb)
2007-10-10r3399: a few more packaging fixesGerald Carter2-18/+17
(This used to be commit 662415454b1fa91e2bd5f6cab30ec902f5f1fa9f)
2007-10-10r3398: fixing up solaris packaging for 3.0.xGerald Carter9-234/+530
(This used to be commit 7b66980f4fbeac66ea8c3e9c32f1543df923a4a5)
2007-10-10r3381: More merging of the #1717 patch. Fixup some erroneous assumptions aboutJeremy Allison2-62/+77
memcpy's into fqdn names. I think the original intent was to create MYNAME.fqdn.tail.part. Will need testing to see I haven't broken keytab support. Jeremy. (This used to be commit 82acf83040654eb8b7e261518a3e5eb9caea7750)
2007-10-10r3379: More merging of kerberos keytab and salting fixes from Nalin ↵Jeremy Allison3-17/+91
Dahyabhai <nalin@redhat.com> (bugid #1717). Jeremy. (This used to be commit 30b8807cf6d5c3c5b9947a7e841d69f0b22eb019)
2007-10-10r3377: Merge in first part of modified patch from Nalin Dahyabhai ↵Jeremy Allison6-19/+592
<nalin@redhat.com> for bug #1717.The rest of the code needed to call this patch has not yet been checked in (that's my next task). This has not yet been tested - I'll do this once the rest of the patch is integrated. Jeremy. (This used to be commit 7565019286cf44f43c8066c005b1cd5c1556435f)
2007-10-10r3345: More MIT/Heimdal tests for comparing enctypes now.Jeremy Allison2-0/+16
Jeremy. (This used to be commit eefb911d0c66bdee586a86446e16723013f84101)
2007-10-10r3342: More MIT/Heimdal fixes to allow an enctype to be explicitly set in a ↵Jeremy Allison2-0/+35
krb5_creds struct. Jeremy. (This used to be commit c9b80490128e09442a01dd8ec6f4b453769e82c1)
2007-10-10r3339: allow tdbtool to be builtHerb Lewis1-1/+8
(This used to be commit 682b746ab6ff10bf9970e808f0032066e5f3b783)
2007-10-10r3326: BUG 1782: reorder loadparm.c to prevent testparm from displaying ↵Gerald Carter1-5/+5
synonyms; patch from Luke Mewburn <lukem@NetBSD.org> (This used to be commit c8101dbb6561267298728714e5b82591138c56e6)
2007-10-10r3298: turning sendfile back off by defaultGerald Carter1-1/+1
(This used to be commit 7dc28014860a5c5bbe78dc22628301ea8dc245ee)
2007-10-10r3296: Fix to ensure entries are stored in correct order. Bug #1498. Patch fromJeremy Allison1-2/+2
SATOH Fumiyasu <fumiya@samba.gr.jp>. Jeremy. (This used to be commit 7e35900bc6894d69f83c99ac6eb260d7cc35683a)
2007-10-10r3294: Fix for SMB signing with 56-bit DES session keys. From Nalin ↵Jeremy Allison1-2/+9
Dahyabhai <nalin@redhat.com>. Jeremy. (This used to be commit 55d23cb253d869e58bd51cf179c6dc0f3cfab9d2)
2007-10-10r3292: A fix from Narayana Pattipati ↵Richard Sharpe2-3/+3
<narayana[dot]pattipati[at]wipro\dotty/com> for Solaris to ensure we distinguish properly between 5.1 and 5.10. (This used to be commit 96baa5bb6c908fa5e870d86d3f380fd368ada658)
2007-10-10r3275: Fix from Michael Sweet <mike@easysw.com> for bug #1892.Jeremy Allison1-4/+4
Jeremy. (This used to be commit 13278744cce43060379b7bbebcdf90b41546d43d)
2007-10-10r3273: Ensure we're consistent in the use of strchr_m for '@'.Jeremy Allison3-4/+4
Jeremy. (This used to be commit 0f3f7b035b37bfc51d3a59d0472003c3d4ac1511)
2007-10-10r3264: fix lmhosts lookup so that we don't say we found something when we ↵Gerald Carter1-24/+29
really didn't (This used to be commit c7036f824627dc555185a52ed95d3e0132babcd8)
2007-10-10r3230: swat/lang/*/include/*html are no installed anymoreGerald Carter1-1/+0
(This used to be commit 28c449ac50bf7659672c1feb86a05068f75c79df)
2007-10-10r3228: Fix for bugzilla #1884 from Brett Funderburg. Use the value ofTim Potter1-2/+2
desired_access passed in to the lsa open policy routine. Use a default value that netapps and windows likes as well. (This used to be commit 9c3cffaf22c69b8c7fae12adf02aa1679de546b3)
2007-10-10r3225: Fix correct use of resume name. Cope with the resumeJeremy Allison1-3/+7
name not existing. Found using Samba4 RAW-SEARCH. Jeremy. (This used to be commit 74dd2b33ff1ecba752682937c792628e081f17f5)
2007-10-10r3221: Remove check for allow-trusted-domains so that this thing does not ↵John Terpstra1-1/+1
throw-up. (This used to be commit 3d8e19468b8dda3bc84f0bc9174944c8275ed024)
2007-10-10r3151: Add the "no warranty"-section in the licence header.Günther Deschner1-0/+10
Guenther (This used to be commit c9a7bc10b7aa5e1cb7d37ba9b1a8ddb9b0b2dd5e)
2007-10-10r3146: Some cleanup for idmap_rid:Günther Deschner1-155/+150
- fix several memleaks found by valgrind - turn off support for trusted domains (can be reenabled with #define IDMAP_RID_SUPPORT_TRUSTED_DOMAINS 1) - improve readability Guenther (This used to be commit 351a1227e80db5d87b71e17cd1443c11ea6ace4e)
2007-10-10r3145: Add experimental idmap_rid-Plugin.Günther Deschner3-0/+519
Written by Sumit Bose <sbose@suse.de> and myself a while ago. idmap_rid does a direct, static mapping between RIDs and UIDs/GIDs using the idmap-range as offset. It does thus allow to have a unified mapping over several winbindd-systems without having the need of a central LDAP-Server (and all related dependencies and problems this solution can bring). Compile: ./configure --with-shared-modules=idmap_rid Usage: idmap backend = idmap_rid idmp_rid does even allow you to have multiple mappings (for trusted domains). This is a rather problemtic feature and will be turned off by default rather soon. The problem is that ranges can quickly overlap when not measured with caution. idmap backend = idmap_rid:"MYDOMAIN=1000-9999 OTHER=10000-19999" Will valgrind idmap_rid later today and fix a couple of things. Guenther (This used to be commit 49a238bd37105bf1a33d4a230ca594c4cf304dd3)
2007-10-10r3143: Allow for multiple DC's to be named as #1c names in lmhosts.Volker Lendecke1-13/+26
Volker (This used to be commit 2af98ec054508055a63552cfdb48cfaf43f76b62)
2007-10-10r3140: * try to ensure consistent usage of the username map.Gerald Carter2-14/+27
Use the fully qualified DOMAIN\user format for 'security = domain|ads' and apply after authentication has succeeded. * also change fill_domain_username() to only lowercase the username and not the domain+username. This was a cosmetic fix only. makes the output more consistent with %D and %U. (This used to be commit 30ee2d5b0906d5cd73a8faf5170e5aebcc6d69c8)