summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2010-09-14libcli/security Merge source3/ string_to_sid() to common codeAndrew Bartlett2-143/+92
The source3 code repsects the limit of a maximum of 15 subauths, while the source4 code does not, creating a security issue as we parse string-form SIDs from clients. Andrew Bartlett
2010-09-14s3-util_sid use ARRAY_SIZE() to ensure we never overflow the dom_sidAndrew Bartlett1-1/+1
This ensures that this, unlike the MAXSUBAUTHS macro, can't get out of sync with the structure. Andrew Bartlett
2010-09-14s3-util_sid Accept S-1-5 as a SIDAndrew Bartlett1-2/+10
2010-09-14s3-dom_sid Use C99 types in dom_sid handlingAndrew Bartlett1-7/+7
Andrew Bartlett
2010-09-14s3/profile: remove the magical clock initialization from the profile codeBjörn Jacke2-64/+3
there's no point in not profiling times if no monotonic clock is found - monotonic and realtime clock are equally fast. Just use clock_gettime_mono instead.
2010-09-14s3/profiling: don't use CLOCK_PROCESS_CPUTIME_IDBjörn Jacke3-36/+0
that clock is a CPU burnometer but we need a chronometer for profiling.
2010-09-14libreplace: use CLOCK_HIGHRES when availableBjörn Jacke1-3/+5
in Solaris 8 CLOCK_HIGHRES was the (only) name for CLOCK_MONOTONIC
2010-09-14ntlmssp: when pushing an ntlmssp NEGOTIATE_MESSAGE deal with NULL strings.Günther Deschner1-2/+2
Guenther
2010-09-14rpc_server: Remove unnecessary dependency on server modules, buildJelmer Vernooij1-1/+1
system will take care of that.
2010-09-14waf: work around circular dependency finder erroneously removing dependency ↵Jelmer Vernooij1-1/+4
of gensec on dcerpc.
2010-09-14selftest: Error out rather than die() when setting up an environmentJelmer Vernooij1-55/+117
fails.
2010-09-14selftest: If setting up environment fails, mark testsuites that use it asJelmer Vernooij1-12/+5
errorring, don't skip it.
2010-09-14s4-smbtorture: try to fix spoolss winreg Form tests on bigendian machines.Günther Deschner1-15/+36
Guenther
2010-09-14tdb: add ABI/tdb-1.2.4.sigsStefan Metzmacher1-0/+60
metze
2010-09-14nss_winbind: Fix soname.Jelmer Vernooij1-1/+1
2010-09-14subunit: Use RemoteError when passing errors to upstream subunit.Jelmer Vernooij2-19/+26
2010-09-14param: Add prototype for lpcfg_private_dir(), used by openchange.Jelmer Vernooij1-0/+1
2010-09-14subunit.pm: Fold Subunit::Filter into Subunit, trim further.Jelmer Vernooij3-111/+11
2010-09-14subunit.pm: Remove output_msg/control_msg functions.Jelmer Vernooij2-15/+1
2010-09-14selftest: Remove testsuite parsing.Jelmer Vernooij2-40/+10
2010-09-14subunit.pm: Simplify subunit handling in perl.Jelmer Vernooij4-159/+19
2010-09-14subunit.pm: Pass through milliseconds in time reports.Jelmer Vernooij3-12/+10
2010-09-14selftest: Report times in milliseconds rather than seconds.Jelmer Vernooij1-0/+7
2010-09-14subunit: Use standard subunit functions for reproducing subunit streams.Jelmer Vernooij2-50/+38
2010-09-14subunit: Remove unused methods.Jelmer Vernooij1-14/+2
2010-09-14subunit: Use standard functions for addSuccess, addExpectedFail,Jelmer Vernooij1-27/+62
addFailure, addSkip.
2010-09-14subunit: Use standard addError method implementation.Jelmer Vernooij1-9/+11
2010-09-14subunit: Pass TestCase objects to startTest rather than test name strings.Jelmer Vernooij2-8/+5
2010-09-14subunit: Use subunit standard functions for handling time and progress.Jelmer Vernooij2-35/+15
2010-09-14subunit: Use standard subunit test protocol client, use standard name for ↵Jelmer Vernooij3-24/+27
startTest.
2010-09-14subunit: Initial work on using the standard TestResult class.Jelmer Vernooij2-4/+6
2010-09-14s3-waf: fix the build after privilege code changes.Günther Deschner1-1/+1
Guenther
2010-09-13s3: Remove some unnecessary if-statementsVolker Lendecke1-10/+5
2010-09-13Fix bug 7409 - Thousands of reduce_name: couldn't get realpath.Jeremy Allison1-1/+1
Don't log this at level 1 - every EACCES will generate one. Thanks to muehlfeld@medizinische-genetik.de for pointing this out. Jeremy.
2010-09-13ntlm_auth: Fix a valgrind errorVolker Lendecke1-1/+1
2010-09-13s4:SID handling - always encode the SID using "ldap_encode_ndr_dom_sid" for ↵Matthias Dieter Wallnöfer4-12/+16
LDAP filters This makes also lookups through special backends as "samba3sam" work.
2010-09-13s4:cosmetic - the SID attribute is called objectSid - not objectSIDMatthias Dieter Wallnöfer6-17/+17
2010-09-13testdata/samba3/provision_samba3sam.ldif - update also here the maximum ↵Matthias Dieter Wallnöfer1-1/+2
domain controller functionality And we do support also LDAPv2.
2010-09-13param: Only include param_proto.h for Samba builds, provide thoseJelmer Vernooij2-1/+7
prototypes necessary for external users (OpenChange) manually.
2010-09-13s3: Fix a typoVolker Lendecke1-1/+1
2010-09-13s3: Fix a typo (authentictaion->authentication)Volker Lendecke1-1/+3
2010-09-13s3: Do not directly log off after a pam_logonVolker Lendecke1-0/+1
2010-09-13s3: Fix wbinfo arg for --pam-logonVolker Lendecke1-1/+1
2010-09-13ntlm_check: Fix some nonempty blank linesVolker Lendecke1-21/+21
2010-09-13lib/tdb: change version to 1.2.4 after hash checking improvmentsStefan Metzmacher2-2/+2
lib/tdb: change version to 1.2.4 after hash checking improvments metze Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2010-09-13tdb: put example hashes into header, so we notice incorrect hash_fn.Rusty Russell3-2/+65
This is Stefan Metzmacher <metze@samba.org>'s patch with minor changes: 1) Use the TDB_MAGIC constant so both hashes aren't of strings. 2) Check the hash in tdb_check (paranoia, really). 3) Additional check in the (unlikely!) case where both examples hash to 0. 4) Cosmetic changes to var names and complaint message. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2010-09-13tdb: fix tdb_check() on other-endian tdbs.Rusty Russell1-1/+1
We must not endian-convert the magic string, just the rest. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2010-09-13tdb: fix tdb_check() on read-only TDBs to actually work.Rusty Russell1-5/+17
Commit bc1c82ea137 "Fix tdb_check() to work with read-only tdb databases." claimed to do this, but tdb_lockall_read() fails on read-only databases. Also make sure we can still do tdb_check() inside a transaction (weird, but we previously allowed it so don't break the API). Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2010-09-13tdb: make check more robust against recovery failures.Rusty Russell1-5/+36
We can end up with dead areas when we die during transaction commit; tdb_check() fails on such a (valid) database. This is particularly noticable now we no longer truncate on recovery; if the recovery area was at the end of the file we used to remove it that way. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2010-09-13Revert "s4:samldb LDB module - simplify the message handling on add and ↵Matthias Dieter Wallnöfer1-26/+33
modify operations" This reverts commit 1d94bb3ad4d9c6de3b77ed4690a54ebf2399cc0d. This commit causes unconditional behaviour (sometimes it works, sometimes not) -sorry for introducing this. I will rework this further.