samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2010-09-22	s4:libcli:smb2 Rename pending_id to async_id and make 64-bit	Steven Danneman	1	-1/+4
	Match MS-SMB2 - 2.2.1.1 SMB2 Packet Header - ASYNC
2010-09-20	libcli/ldap Add const to ldap_encode_ndr_dom_sid()	Andrew Bartlett	2	-2/+2
	Signed-off-by: Günther Deschner <gd@samba.org>
2010-09-20	libcli: add dom_sid_compare_domain()	Günther Deschner	2	-0/+20
	Guenther
2010-09-18	werror: Add W_ERROR_HAVE_NO_MEMORY_AND_FREE() macro	Kamen Mazdrashki	1	-0/+7

2010-09-16	libcli/auth/ntlmssp Be clear about talloc parents for session keys	Andrew Bartlett	2	-9/+7
	The previous API was not clear as to who owned the returned session key. This fixes a valgrind-found use-after-free in the NTLMSSP key derivation code, and avoids making allocations - we steal and zero instead. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-15	cldap: prevent crashes when freeing cldap socket	Andrew Tridgell	1	-6/+15
	As a callback may destroy the cldap socket we need to ensure we don't reference the cldap structure after the callback Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-09-15	cldap: use ipv4 not up for unbound cldap sockets	Andrew Tridgell	1	-1/+5
	If we use "ip" we end up with a PF_INET6 socket which breaks sendto() for v4 addresses.
2010-09-15	s4-auth: set the RODC bit for RODC schannel	Andrew Tridgell	1	-0/+1
	When we are using SEC_CHAN_RODC we need to set the NETLOGON_NEG_RODC_PASSTHROUGH bit in the negotiated flags in ServerAuthenticate2 Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-09-14	Fix string_to_sid() to allow non '\0' termination of the string - allows	Jeremy Allison	1	-11/+6
	string_to_sid() to be used in formatted strings like FOO/S-1-5-XXXX-YYYY/BAR. Jeremy.
2010-09-14	libcli/security Use sid_append_rid() in dom_sid_append_rid()	Andrew Bartlett	1	-5/+5
	This ensures that the maximum number of sub-authorities is respected, otherwise we may run off the end of the array. Andrew Bartlett
2010-09-14	libcli/security Merge source3/ string_to_sid() to common code	Andrew Bartlett	1	-37/+92
	The source3 code repsects the limit of a maximum of 15 subauths, while the source4 code does not, creating a security issue as we parse string-form SIDs from clients. Andrew Bartlett
2010-09-13	ntlm_check: Fix some nonempty blank lines	Volker Lendecke	1	-21/+21

2010-09-11	libcli/auth/schannel_state_tdb.c - fix includes	Matthias Dieter Wallnöfer	1	-3/+1
	Otherwise we get a "declared inside parameter list" warning.
2010-09-11	libcli/privileges Fix comment	Andrew Bartlett	1	-1/+1

2010-09-11	s4-privs Seperate rights and privileges	Andrew Bartlett	2	-14/+60
	These are related, but slightly different concepts. The biggest difference is that rights are not enumerated as a system-wide list. This moves the rights to security.idl due to dependencies. Andrew Bartlett
2010-09-11	libcli/security Remove unused SE_NONE define	Andrew Bartlett	1	-1/+0
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Move 'private' privileges functions to another header	Andrew Bartlett	3	-24/+42
	These functions work on the bitmap, and are only exposed because the source3/ privileges storage uses the bitmap in account_policy.tdb Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Remove 'always true' return from se_priv_put_all_privileges	Andrew Bartlett	2	-3/+2
	Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/auth Failure to find the cached session key for SCHANNEL isn't level 0	Andrew Bartlett	1	-1/+1
	This happens all the time, particularly now that we don't keep the db around after a reboot. Don't scare the admins with the level 0. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	privileges: privilege luids are not all below 64	Andrew Tridgell	1	-3/+0
	the ones brought across from s3 have higher values Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-09-11	libcli/security Make sec_privilege_from_index() return SEC_PRIV_INVALID on ↵	Andrew Bartlett	1	-1/+1
	failure This is clearer and more consistent than using a magic -1 return Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Remove unused declarations from privileges.h	Andrew Bartlett	1	-51/+1
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Expose sec_privilege_mask()	Andrew Bartlett	2	-1/+6
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security make sec_privilege_id() return SEC_PRIV_INVALID on failure.	Andrew Bartlett	1	-1/+1
	Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Remove unused functions and constants.	Andrew Bartlett	2	-242/+14
	All the callers to these functions have been removed or reworked. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Rename all privilege bitmaps constants	Andrew Bartlett	1	-28/+28
	The idea here to to make it very clear how they differ from the enumerated LUID values. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Remove luid_to_se_priv() and luid_to_privilege_name()	Andrew Bartlett	1	-43/+4
	These functions duplicate other functions in the merged code. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Improve dump of privileges: Just walk the table	Andrew Bartlett	1	-5/+4
	This removes some logic recently added that was just too smart - it is easier to just walk the table and do a bit match here. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	s3-privs Remove pointer indirection from se_priv_to_privilege_set()	Andrew Bartlett	2	-3/+3
	Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Don't export privs[] as a global variable	Andrew Bartlett	2	-41/+27
	Instead, provide access functions for the LSA and net sam callers for the information they need. They still only enumerate the first 8 privileges that have traditionally been exposed. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Merge privilege lists from source3 and source4	Andrew Bartlett	1	-169/+126
	The LSA enumeration in source3 will not show the new privileges, but otherwise, they are now in common, and can be set by name. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Return number of entries in the old source3 list	Andrew Bartlett	1	-3/+4
	This ensures there isn't a behaviour change when the source3 list is combined with the longer source4 list. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/privileges Simplify get_privilege_luid() to return just the enum	Andrew Bartlett	2	-9/+4
	As Samba only deals with the lower 32 bits of the LUID, just return those and let the LSA layer deal with the upper 0 bits. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Don't memcpy a uint64_t value, just assign it.	Andrew Bartlett	1	-1/+1
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Use ARRAY_SIZE() consistantly.	Andrew Bartlett	1	-15/+16
	This avoids the use of SE_END, and has all callers walking the array using the same termination condition. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Fix and clarify privilege manipulation function comments	Andrew Bartlett	1	-9/+9
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Make the two privileges tables share a common struct definition	Andrew Bartlett	2	-27/+22
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Move source4/ privileges code into the common libcli/security	Andrew Bartlett	3	-4/+331
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	s3-privs Move manual prototypes to common privileges.h	Andrew Bartlett	1	-0/+88
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	s3-privs Inline dump_se_priv into callers now that it's just a uint64_t	Andrew Bartlett	1	-9/+0
	The previous 128 bit structure needed this helper function. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Use talloc_realloc() not TALLOC_REALLOC_ARRAY()	Andrew Bartlett	1	-1/+1
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Use C99 types	Andrew Bartlett	1	-3/+3
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	libcli/security Use true and false, not True and False	Andrew Bartlett	1	-22/+22
	Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11	s3-privs Move source3/ privileges implmentation into common	Andrew Bartlett	2	-0/+531
	Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-10	s3/s4:libcli/tstream - add more "char *" casts in order to suppress Solaris ↵	Matthias Dieter Wallnöfer	2	-14/+14
	warnings
2010-09-09	libcli/netlogon: add LOGON_REQUEST handling to pull_nbt_netlogon_response().	Günther Deschner	1	-0/+1
	Guenther
2010-09-09	libcli/netlogon: add LOGON_RESPONSE2 to pull_nbt_netlogon_response().	Günther Deschner	1	-0/+9
	Guenther
2010-09-09	libcli/netlogon: add NETLOGON_RESPONSE2 to push_nbt_netlogon_response().	Günther Deschner	2	-1/+12
	Guenther
2010-08-26	libcli/auth/ntlm_check.c - fix parameter indentation	Matthias Dieter Wallnöfer	1	-3/+3

2010-08-26	manpages: Avoid using Samba-Team specific DTD, which requires net access	Jelmer Vernooij	1	-11/+1
	or modification of /etc/catalogs.