summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r25146: rename winbindd_nss.h => winbind_struct_protocol.hStefan Metzmacher3-5/+3
as this header has nothing todo with winbindd nor nss and it contains the definitions for the struct based protocol metze (This used to be commit e9e03aac2221c44eec89cc957b8bb3be721103bd)
2007-10-10r25143: rename public functions from winbind_client.hStefan Metzmacher8-93/+100
init_request => winbindd_init_request free_response => winbindd_free_response read_reply => winbindd_read_reply write_sock => winbind_write_sock read_sock => winbind_read_sock close_sock => winbind_close_sock(void) metze (This used to be commit 8a95d7a7edcfa5e45bccc6eda5c45d9c308cb95d)
2007-10-10r25142: Panic if setting the group list fails while switching securityJames Peach1-1/+4
contexts. Patch from Tim Prouty <tim.prouty@isilon.com>. (This used to be commit a136de663f122603e8d34e06027896ff39b35e11)
2007-10-10r25141: More pstring removal.Jeremy Allison1-3/+14
Jeremy. (This used to be commit cfcf7cf03e1be34e6839c1a659c4e8c1b5358c37)
2007-10-10r25140: Less red bars to hurt my eyes...Michael Adam1-47/+51
(This used to be commit f935d21200294c8d29ce527300f605e721cb3620)
2007-10-10r25139: Avoid code duplication: let regval_ctr_copyvalue() call ↵Michael Adam1-37/+2
regval_ctr_addvalue(). This also corrects regval_ctr_copyvalue() in that it cannot create (invalid) regval containers with dupliacte entries... Michael (This used to be commit 2daaaaa835078c543fa12cd1819e8a3d86cf6e5e)
2007-10-10r25138: More pstring elimination. Add a TALLOC_CTX parameterJeremy Allison12-74/+179
to unix_convert(). Jeremy. (This used to be commit 39c211a702e91c34c1a5a689e1b0c4530ea8a1ac)
2007-10-10r25136: When tallocing a string to uppercase remember the terminatingJeremy Allison1-1/+1
'\0' in size calculations. Jeremy. (This used to be commit 54c658867db3b6c602080d60936abab3af26e112)
2007-10-10r25135: Remove one END_PROFILE(SMBntcreateX) from call_nt_transact_create() ↵Günther Deschner1-1/+0
which appears to be a leftover. Should fix the build with profiling enabled. Jeremy, please check. Guenther (This used to be commit 98f2e10e3f7a86b1b30619a25ee15a489ad10d43)
2007-10-10r25134: Fix Bug #4968 and make dns updates work with heimdal as well (again,Günther Deschner1-21/+3
gss_import_name() needs to follow the same logic as in the LDAP sasl wrapping (see -r25133). Tested with MIT 1.2.7, 1.3.6, 1.4.3, 1.5.1, 1.6.1 and Heimdal 0.7.2, 1.0, 1.0.1. Guenther (This used to be commit 913fb138aa90a6627ee49b2e92d1bbc73e11f9ea)
2007-10-10r25133: Fix sasl wrapping (for ldap sign&seal).Günther Deschner1-46/+5
The gss_import_name() broke as we switched from the internal MIT OID "gss_nt_krb5_principal" to "GSS_KRB5_NT_PRINCIPAL_NAME" and didn't switch from passing the krb5_principal (or better: a pointer to that, see MIT's "*HORRIBLE* bug") to pass the string principal directly. Jerry, Jeremy, neither I could figure out the need of passing in a krb5_principal at all nor could I reproduce the crash you were seeing. I sucessfully tested the code (now importing a string) with MIT 1.2.7, 1.3.6, 1.4.3, 1.5.1, 1.6.1 and Heimdal 0.7.2, 1.0, 1.0.1. Guenther (This used to be commit cb2dc715e33467c8b588161e816e72a948f6860c)
2007-10-10r25130: make use only of base types which are provided by libreplaceStefan Metzmacher7-216/+144
in winbind client and nss/pam stuff metze (This used to be commit 2e13e05fa91788bd128e6940bccc0d2cc7140986)
2007-10-10r25128: _XOPEN_SOURCE_EXTENDED and socklen_t are always provided by libreplaceStefan Metzmacher3-25/+0
metze (This used to be commit b3ee9adf28ee8136528d0236a3a2c894c2223053)
2007-10-10r25127: Add ol-schema-migrate.pl to the repo.Simo Sorce2-8/+402
This script is useful for migrating OpenLDAP schema files to FDS/RHDS lidf schema files. License kindly updated to GPLv3+ at our request. Simo. (This used to be commit ab7770b34b3202a5836cfa098187eeed1bd16be3)
2007-10-10r25125: create prototypes for 'bool ' functionsStefan Metzmacher1-1/+1
metze (This used to be commit 5afa66970ee831a8be887c9e7eeeaceead6049db)
2007-10-10r25121: Remove pstring limits from much of our string handling function.Jeremy Allison1-54/+174
Still a few left (mainly the substitute ones). Jeremy. (This used to be commit 6552e52979a7c6954faa8b2c9c0f08b3779835c4)
2007-10-10r25120: One more warning.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 9cc70e3ccff9c3b20076572235d9dcbfd23e97e5)
2007-10-10r25119: Fix a couple of warnings.Jeremy Allison2-2/+3
Jeremy. (This used to be commit 0e655ac94653128566a8764ea804f37c4c7b300f)
2007-10-10r25118: More pstring elimination.Jeremy Allison5-57/+84
Jeremy. (This used to be commit 7632f8fb4003657591778d2b55f546d1737859d1)
2007-10-10r25117: The mega-patch Jerry was waiting for. Remove all pstrings fromJeremy Allison15-481/+755
the main server code paths. We should now be able to cope with paths up to PATH_MAX length now. Final job will be to add the TALLOC_CTX * parameter to unix_convert to make it explicit (for Volker). Jeremy. (This used to be commit 7f0db75fb0f24873577dcb758a2ecee74fdc4297)
2007-10-10r25116: Fix talloc_asprintf_append to do the right thing withJeremy Allison1-5/+2
truncated strings. Jeremy. (This used to be commit 93c42fd9b52d9135d8c8b52e97cf342c1c5b5010)
2007-10-10r25111: Move to talloced pathnames on most code paths.Jeremy Allison7-341/+438
There are now ony 17 pstrings left in reply.c, and these will be easy to remove (and I'll be doing that shortly). Had to fix an interesting bug in pull_ucs2_base_talloc() when a source string is not null terminated :-). Jeremy. (This used to be commit 0c9a8c4dff10974dbffd2a302ae982896122fcc0)
2007-10-10r25109: Remove obsolete argument from ads_guess_service_principal().Günther Deschner2-4/+2
Guenther (This used to be commit 2dea9464bba76af4315a8207ccd3e564ec19d146)
2007-10-10r25108: Make ifdef labyrinth in sasl code a bit more readable.Günther Deschner1-2/+2
Guenther (This used to be commit f31949ec3456134de474a0219a8cd5dcd15adea6)
2007-10-10r25107: Fix const warning caused by the way I reformatted thisSimo Sorce1-3/+4
(This used to be commit 6ce01bf41339b4c48aa458bb0667664727d3dac3)
2007-10-10r25104: Fix extra lines added by mistake.Jeremy Allison1-2/+2
Jeremy. (This used to be commit a28a35f9cdddb9da1b2adb9e2e6c86d78cf07ea6)
2007-10-10r25103: Ensure we don't return unwritten memory (valgrind caught).Jeremy Allison3-67/+83
Jeremy. (This used to be commit b3f0d39d11fa18b7bfef6cec88efaf4a2be2d6e0)
2007-10-10r25102: Rewrite msdfs code to use talloced filenames. Passes make testJeremy Allison8-485/+946
and make valgrindtest. Final step will be to change srvstr_get_path() to return talloced memory in the major codepaths. Jeremy. (This used to be commit cf6b6f9c3a38b68d2671c753f412772344506742)
2007-10-10r25099: Commit fix for CVE-2007-4138 from 3.0.26 release.Gerald Carter1-1/+1
(This used to be commit aa768a4a20930833d6921ed112601873b228a64d)
2007-10-10r25092: Add support for storing trusted domain passwords in LDAP forMichael Adam2-5/+278
passdb backend = ldapsam. Along with reproducing the functionality of the secrets.tdb code, I have prepared the handling of the previous trust password (in case we are contacting a dc which does not yet know of a recent password change). This information has still to be propagated to the outside, but this requires a change of the api and also a change of the secrets.tdb code. Michael (This used to be commit 6c3c20e6c4a2b04de8111f2c79b431f0775c2a0f)
2007-10-10r25091: Start adding support for storing trusted domain passwords in LDAPMichael Adam1-0/+44
(for passdb backen = ldapsam). At a first step, add the hooks, calling the secrets_ functions. Michael (This used to be commit 9c03cdf3a449149c50451a44deb420341e65af34)
2007-10-10r25090: Fix a syntax error just introduced into the LDAP schema.Michael Adam1-2/+2
Michael (This used to be commit 7dc68ce0fb4490761326eaaca516fde3bf642ed5)
2007-10-10r25088: Change the objectclass sambaTrustedDomainPassword toMichael Adam1-1/+13
have the current and possibly the previous trust password stored as clear text passwords. (Previous use of NTPassword was a mistake - this is a hash value.) Michael (This used to be commit 0beae52ff469903adbfefdffd93a34bb7ad7d68d)
2007-10-10r25087: Reformatting: Get rid of an abundance of leading tabs...Michael Adam1-11/+11
(This used to be commit d8676f30d5b8168ff0c82993fb51cff18bea1f96)
2007-10-10r25086: Fix interdomain trusts (this povides the fix expected in r22709):Michael Adam1-2/+2
Fix winbindd on a Samba DC talking to a trusted domain DC by making it use the trusted domain password... Michael I hope this does not brake any other setup. (This used to be commit 2322fe5cd76c5b7214c66f8a403debe1e36a82d6)
2007-10-10r25080: Once we decrypted the packet but have timing problems (closkew, tkt ↵Günther Deschner1-1/+9
not yet or no longer valid) there is no point to bother the keytab routines. Guenther (This used to be commit 7e4dcf8e7ecfd35668e86e22bed5a9280ae83959)
2007-10-10r25074: as all requests in the winbindd child are sync, we can use talloc_tos()Stefan Metzmacher1-5/+2
metze (This used to be commit 6e238fe5b458fc6b9184144fa124f497c81eec8d)
2007-10-10r25068: Older samba3 DCs will return DCERPC_FAULT_OP_RNG_ERROR for every ↵Günther Deschner1-0/+10
opcode on the LSARPC_DS pipe, continue with no_lsarpc_ds mode here as well to get domain->initialized set to True. This avoids permanent scanning of Samba3 DCs in winbindd. Thanks Michael, for pointing this out. Guenther (This used to be commit 9b85f7ca43896ddd40dd8cb4a52969e94914db43)
2007-10-10r25064: We use BOOL/True/False not bool/true/falseSimo Sorce1-4/+4
(This used to be commit f624a269bf242630e9bda7a89b9b0e8e12646982)
2007-10-10r25063: Fix segfault in smbldp_set_creds when we want to use anonymous, theSimo Sorce1-3/+4
code was not passing in the "anon" flag correctly and was passing NULL pointers. (This used to be commit 6316a9c14d8bc467c84c1604248a9e30abaacd2f)
2007-10-10r25062: Reformat, remove trailing spaces and fit lines into 80 columnsSimo Sorce1-156/+237
(This used to be commit 1850d1c10f1fe77402e0ed79d6980d55d90637fb)
2007-10-10r25061: Pro-actively shut up Coverity :-)Volker Lendecke1-3/+5
(This used to be commit f2ce4a803cfd04fa993d2d87720b4b6f67fc46db)
2007-10-10r25060: Fix formatting, remove trailing spaces and cut lines longer than 80 ↵Simo Sorce1-160/+255
chars (This used to be commit 7a4d4658904a601ae42ec1804db06cda734553d2)
2007-10-10r25059: Apply to 3.2 as wellSimo Sorce1-24/+12
(This used to be commit 17a7d33b3bede85d6d64ecadfa065e71739517be)
2007-10-10r25057: Add a schema file ready to be used in Fedora/RedHat Directory ServerSimo Sorce1-0/+156
(This used to be commit 501e8b6c79afdefb9955b92e5c25dbe1033ab518)
2007-10-10r25055: Add file_id_string_tosVolker Lendecke14-54/+40
This removes file_id_string_static and file_id_string_static2 (This used to be commit 638c848c9afe374feb30e34c494f89b2a6c64f7b)
2007-10-10r25049: Set new, more secure defaults for Samba 3.2.Andrew Bartlett1-4/+4
Andrew Bartlett (This used to be commit 87d39f61b498c1327c2b3a818e41bb6451fe7518)
2007-10-10r25040: Add "net sam rights"Volker Lendecke3-5/+175
Not strictly in the SAM, but close enough. This command acts directly on the local tdb, no running smbd required This also changes the root-only check to a warning (This used to be commit 0c5657b5eff60e3c52de8fbb4ce9346d0341854c)
2007-10-10r25036: Fix a become/unbecome_root() pairVolker Lendecke1-1/+1
(This used to be commit 9e53f50e9489a5f6cfa40eed59be39e8a294db7d)
2007-10-10r25032: Contact an off site DC if non is available on site.Lars Müller2-22/+37
(This used to be commit 50879e6de5101b6c5ab8b3fb954f1d2a48530716)