summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2003-02-25tokenGroups are SIDs, so dump them as such.Andrew Bartlett1-0/+1
(This used to be commit 43f07e9de70ad9993265e28a54239caba0121ab6)
2003-02-25Fix a really nasty bug where some users in AD domains (particularly childAndrew Bartlett1-14/+90
domains) would not have the tokenGroups or memberOf attributes filled in. This would cause a user to have no supplementary group membership. Detect this by the fact that the primaryGid must be present in the tokenGroups, and if it isn't (ie, if there is no tokenGroups at all), do a server-side search on all groups using the 'member' attribute and the user's DN. Andrew Bartlett (This used to be commit a074f74e627e1d947a76bcf3a39e3c5df4d4ffe5)
2003-02-24Whenever we have a password, use the in-memory ccache. This fixes a bug whereAndrew Bartlett1-2/+3
we were overwriting the user's ccache with the machine password (the -P option). Andrew Bartlett (This used to be commit 231d2f84ef36b30be98baf3b56ebf4a5cd8dad11)
2003-02-24Clean up non-krb5 breakages from my modifications to luke howard's patch.Andrew Bartlett2-7/+2
Andrew Bartlett (This used to be commit 32fd0c49009e38022523cc5c14567dd55de08206)
2003-02-24Merge from HEAD. Use pstrcpy not safe_strcpy.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 9634b1fba059228d436198629a5c7cf01fb6736c)
2003-02-24Merge from head. Move off-by-one buggy malloc()/safe_strcpy() combination to ↵Jeremy Allison1-3/+1
strdup() instead. Jeremy. (This used to be commit 6521601bf8013c8809db13ccf7dd256ea4ad5dd7)
2003-02-24Finish removing setenv replacements from smbwrapper.Andrew Bartlett2-20/+2
(This used to be commit 059ac2d839bf258408490f5ceb786a47cb5acb58)
2003-02-24Move off-by-one buggy malloc()/safe_strcpy() combination to strdup() instead.Andrew Bartlett1-3/+1
Andrew Bartlett (This used to be commit c26881633d8a7f6d9b9ed9c6a97ce2b45bf2b317)
2003-02-24typoAndrew Bartlett1-1/+1
(This used to be commit a47dee787413daaf0b550a47bbd78125490c356e)
2003-02-24Patch from Luke Howard to add mutual kerberos authentication, and SMB sessionAndrew Bartlett8-42/+157
keys for kerberos authentication. Andrew Bartlett (This used to be commit 8b798f03dbbdd670ff9af4eb46f7b0845c611e0f)
2003-02-24setenv takes 3 arguments...Andrew Bartlett1-4/+4
(This used to be commit 6d18f64ef518cbb3d522cf1f92dc5cbc2e2cb642)
2003-02-24If it's a pstring, use pstrcpy().Andrew Bartlett1-2/+2
(This used to be commit 34fb5f0b1a6281b3aa7782edb3fcb82cc4ec4877)
2003-02-24Fix off-by-one bugs, and move to strdup() rather than malloc()/strcpy().Andrew Bartlett1-16/+9
Andrew Bartlett (This used to be commit aa486355e282b891b299d63cc07431f32213b1b8)
2003-02-24Quieten compiler warning.Tim Potter1-0/+7
(This used to be commit eb5d1a72dc9dc35997d39f8778ee98163b8cce32)
2003-02-24Merge documentation from HEADMartin Pool1-6/+13
(This used to be commit 3761f8ebe339fbbeffee9d7b69f9483ebfd9ae6b)
2003-02-24Merge documentation from 3_0.Martin Pool1-6/+13
(This used to be commit 5002555a9719987ccdc887ffff64ea8d02c9881d)
2003-02-24Always initialiseAndrew Bartlett1-2/+2
(This used to be commit ff2b5b2f85f2d9dade67077cea1b68719cf65352)
2003-02-24Make sure these values are never uninitialsised.Andrew Bartlett1-2/+2
(This used to be commit eacb8dde7afa16d86586c6c896ffb6692dc53bf6)
2003-02-24Cleint-side-auth/kerberos fixes from HEAD, and don't connect to a shareAndrew Bartlett3-25/+67
twice, let the libsmb code determine what form the share name should take. Andrew Bartlett (This used to be commit a25f6126647c94551c03bfc28e3fb5ec5ef6264a)
2003-02-24Iconv as seperate library fixes from HEADAndrew Bartlett1-0/+5
(This used to be commit 935c66f6a02c7ba764fbcc643a91833deb588bc0)
2003-02-24Signed/unsigned fix from HEADAndrew Bartlett1-2/+2
(This used to be commit 723ce5c531a957f3ea67f6fe74d4263a35083dda)
2003-02-24Merge crypt(), ACL lib and shared lib changes from HEAD.Andrew Bartlett3-57/+252
(This used to be commit e380224d8cd265b9845ad80af2b053a56078e790)
2003-02-24Merge paramaters for client-side-auth updates.Andrew Bartlett1-0/+11
(This used to be commit 68d34711279aa5959778974018df77726b915858)
2003-02-24Fix a small stuffup in the HEAD -> 3.0 mergeAndrew Bartlett1-1/+0
(This used to be commit cccec78cf241a9f69c363f0ecdd2e934c8b21f19)
2003-02-24Merge doxygen, signed/unsigned, const and other small fixes from HEAD to 3.0.Andrew Bartlett13-247/+284
Andrew Bartlett (This used to be commit 9ef0d40c3f8aef52ab321dc065264c42065bc876)
2003-02-24Makefile updates for the client-side auth/kerberos merge.Andrew Bartlett1-39/+53
(This used to be commit b32f3ecaf65f5f433d3b95802b45216689d56d75)
2003-02-24Missed a couple of files from the client-side kerberos mergeAndrew Bartlett3-4/+19
(This used to be commit 56934f303c0551df858cc6d6ad32d0b37fcd1307)
2003-02-24Merge off-by-one fix from HEAD (caused crash with --enable-developer)Andrew Bartlett1-1/+1
(This used to be commit d71425413075af25f91f715950c06ab698cf5fb7)
2003-02-24Merge from HEAD client-side authentication changes:Andrew Bartlett16-673/+1121
- new kerberos code, allowing the account to change it's own password without special SD settings required - NTLMSSP client code, now seperated from cliconnect.c - NTLMv2 client code - SMB signing fixes Andrew Bartlett (This used to be commit 837680ca517982f2e5944730581a83012d4181ae)
2003-02-24Missed one in the previous merge - user_ok() and user_in_group() now takeAndrew Bartlett1-1/+1
an optional list of groups the user is in. (This used to be commit 39f3bec0f62520e49a087403287330ed5f3a79c5)
2003-02-24Merge of server-side authentication changes to 3.0:Andrew Bartlett13-153/+224
- user_ok() and user_in_group() now take a list of groups, instead of looking for the user in the members of all groups. - The 'server_info' returned from the authentication is now kept around - in future we won't copy the sesion key, username etc, we will just referece them directly. - rhosts upgraded to use the SAM if possible, otherwise fake up based on getpwnam(). - auth_util code to deal with groups upgraded to deal with non-winbind domain members again. Andrew Bartlett (This used to be commit 74b5436c75114170ce7c780c19226103d0df9060)
2003-02-24Merge:Tim Potter1-7/+5
> Exit path cleanup for cli_samr_enum_dom_users() (This used to be commit 655c1e03519d4fa174a85534c165bdd1ce163ae8)
2003-02-24Add constAndrew Bartlett1-4/+4
(This used to be commit ffaa608be01d72075942ca3aff2325c6364e0556)
2003-02-24Fix 2 off-by-one bugs in the use of malloc()ed strings and safe_strcpy().Andrew Bartlett2-3/+5
safe_strcpy() isn't particularly safe (this has been noted before) as it does not take the size of the buffer, but instead the size of the buffer *minus 1* The locking.c fix was causing segfaults on machines running with --enable-developer, and was tracked down thanks to the fact that vance's build farm machine runs with such an option, and smbtorture's DIR1 test hits this bug very well. (The --enable-developer code writes to the last byte of the string, to check for incorrect use of safe_strcpy()). Andrew Bartlett (This used to be commit e908fd164d1b11b6f76a6fdffb22e139813cb3c0)
2003-02-24Add comment about Samba character sets, from explanation by abartlet.Martin Pool1-0/+13
(This used to be commit 822f6c2f38b9b30dca2358e99ad6a379f5890c89)
2003-02-23forgot the altered include fileSimo Sorce1-4/+4
(This used to be commit f3be08472b8b34d8921ff23c52dd2ba030c96f25)
2003-02-23move genparser to use talloc contexts instead of [m|c|re]alloc() and free()sSimo Sorce2-152/+163
(This used to be commit 70fce680c01fa1baa65fb3cbc83dfaf822fdadd7)
2003-02-22Make sure we set the error code to indicate failure...Andrew Bartlett1-2/+11
Andrew Bartlett (This used to be commit 5a472e2a3cffe175ac4341e19c153a931505a2e8)
2003-02-22See if I can make this look slightly like C. It compiled locally, honest...Andrew Bartlett1-3/+4
Andrew Bartlett (This used to be commit cfc4cc776899da92a5c9a17f0ea36c7cb65d7a80)
2003-02-22More signed/unsigned fixes (yes, I run with funny compiler options) andAndrew Bartlett9-19/+20
make x_fwrite() match fwrite() in returning a size_t. Andrew Bartlett (This used to be commit 2943c695787b742e9a96b2eefe2d75f681bacf7c)
2003-02-22Fixes from Paul Green and vorlon@debian.org for building shared librariesAndrew Bartlett2-32/+99
(make it possible to build both shared and static) and -lcrypt handling. (This used to be commit 30510f50077fd157664c127ac0182ce26843d43f)
2003-02-22Fix comment - the other bits of code don't call this any more.Andrew Bartlett1-4/+1
(This used to be commit 523d1429b1072c999d376d2b4e13a1c08349990a)
2003-02-22Add staticAndrew Bartlett2-8/+8
(This used to be commit d0365f20c242bcfc4f5d8286c6c5654e310a9d45)
2003-02-22With assuptions about unixsam gone, we can forget about looking upAndrew Bartlett1-4/+1
the user a second time now. Andrew Bartlett (This used to be commit a1e27a02f52315df0dd05ab8a94ae5a2bf398655)
2003-02-22Remove 'unixsam' from the default passdb backends.Andrew Bartlett10-283/+264
The intention is to remove the muliple passdb backends, but we need the 'guest' account to always be there. If the admin adds the guest account to (say) LDAP, there will only be one backend required for operation. This helps remove some nasty behaviours with adding accounts to the system for both the RPC 'create user' and the SAMSYNC code. Users 'added' with an 'add user/machine' script won't magicly appear, and machine accounts 'pre-added' to unix, but not the smbpasswd file will not cause mayhem. This commit also implements somthing tridge discussed with me, the concept of 'default' passdb operation pointers - so that each backend does not need it's own stub funcitons wrapping the default tdb privilages/group mapping code. This also removes an implicit 'sid->name' and 'name->sid' mapping from our own local SID space, to winbind usernames. When adding mapping for NIS/LDAP non-sam users in future, we need to be careful. Andrew Bartlett (This used to be commit 6f32fa234961a525760a05418a08ec48d22d7617)
2003-02-22First check if the user is in the passdb, then check Get_Pwnam().Andrew Bartlett2-31/+61
We check passdb becouse the user might have things like a logon script set, but we have to check the passdb becouse the user might not be in smbpasswd at all. This is in preperation for the removal of unixsam as an assuption. Andrew Bartlett (This used to be commit 61e3e2695860c58f9b0e8d1856972318666682c8)
2003-02-22When checking is_locked() new WRITE locks conflict with existing READ locks evenJeremy Allison1-3/+10
if the context is the same. See LOCKTEST7 in smbtorture. Jeremy. (This used to be commit 1698092ba5a169de369ad1182a6f270de174c3f5)
2003-02-22When checking is_locked() new WRITE locks conflict with existing READ locks evenJeremy Allison1-3/+10
if the context is the same. See LOCKTEST7 in smbtorture. Jeremy. (This used to be commit b362cc241b829f585a96b5d285ed12db50b21e2e)
2003-02-22New locktest7 code based on patch from "Srikanta Shivanna" ↵Jeremy Allison1-0/+134
<sshivanna@pillardata.com> Jeremy. (This used to be commit caf298c3808cbdd683e884b32b7a0538505a3066)
2003-02-22Fix a DEBUG() formatting, add some more debug to our SID pulling code andAndrew Bartlett2-19/+34
inline the call to prs_copy_all_data_out() so that we can know we are not overrunning our buffer. Also check more return values. Andrew Bartlett (This used to be commit e3b73d5d658584428c81c9ef3ccf024687a56e2f)
generated by cgit (git 2.34.1) at 2025-03-15 12:08:27 +0000