Age | Commit message (Collapse) | Author | Files | Lines |
|
includes a --with-idmap=no switch to disable idmap usage if you find
problems.
cosmetic fixes and param aliases to separate winbind from idamp roles.
A temporarily remote idmap winbind compatibility backend.
As I have time I will further change code to not call directly winbind
(partly done but not tested) and a specilized module will be built in place
for the current glue hack.
The patch has been tested locally in my limited time, the patch is simple and
clear and should not reserve problems, if any just disable it.
As usual, comments and fisex are welcome :-)
Simo.
(This used to be commit 02781320476ed1b7ee5d943fa36f9a66ab67f208)
|
|
- Fix typo in Makefile.in
- Fix compatibility with older vfs modules (from patch by metze)
- Build some modules shared by default and some static (and fall
back to static when dlopen() is not available)
(This used to be commit aa36f462d95f8a3a3a81a89c210b98a6f9fd295f)
|
|
Mostly this consists of untangling the existing code and moving it in
to operating system specific files. The winbind client code for all
supported operating systems is now in nsswitch/winbind_nss_OSNAME.[ch]
to make things a bit clearer.
(This used to be commit 93ea047a16a292b23a1d8736ce9bc4098ba142ba)
|
|
include/tdbsam2_parse_info.h which is included by sam/gumm_tdb.c which
doesn't seem to be used anywhere.
It would be nice to have the tdbsam2 stuff hidden behind a --with
configuration parameter so it doesn't interfere with normal builds.
(One of the build farm machines doesn't have perl installed).
(This used to be commit 58924582e8bb922680860a13a89381b44906e9bc)
|
|
(This used to be commit 3776840227104b1d7d3b7aeceba5d84ded6cfeec)
|
|
(This used to be commit 2a281784c95854e13076b21f8043cd624063d461)
|
|
(This used to be commit 0133c0a2ee36015f6f459da6f4d9472bf5a4dec4)
|
|
(This used to be commit afda828b388381742b4d980b21bed953273eb3aa)
|
|
new modules system, we still fall back to the old system.
(This used to be commit cebe8d8b424f10006f2f791a8f086c6c8a7f5d57)
|
|
fix this better later.
(This used to be commit c6807d20457325012c4c9edd137b2f1f67e98ec4)
|
|
(This used to be commit 1e1544ecc12d1e7c00080894786f500cd774a6b3)
|
|
(This used to be commit cf73797d110d271fc7a30c11e023c4d1ba2b5c9b)
|
|
most elegant solution, but it works.
(This used to be commit 02d202034dad56365a15c4e9fdcb7c420a77e1ed)
|
|
undefined symbol errors)
(This used to be commit e193b47259d11b0eaef4071acb406d6433426733)
|
|
- Change 2 variable names to avoid conflicts (patch by Stephan Kulow <coolo@kde.org>)
(This used to be commit 71b05cd14ae6df8340730e7bad1c783dc278c5d3)
|
|
- Quite some small fixes (also fixes the build)
(This used to be commit 3defbd5e0633acfa4631531b49601c7706072d86)
|
|
(This used to be commit cf3d31b9801d7ccb30334a92d4dc8a0ced2ecd31)
|
|
(This used to be commit 18d52ce914715d188966be95f9e4466666a04f74)
|
|
(This used to be commit 691c63ad6b522ae7984017ebadffb5c7c13f6992)
|
|
(This used to be commit 83c7f1e1661da14ee46d4ca7a698728fb1beb23b)
|
|
(This used to be commit 5f12b246b03aef93165059f632012b6fc4706c70)
|
|
(This used to be commit 633b3eb7812dc0a58785536a1e7d28329d488b43)
|
|
(This used to be commit 8f285878b30bad7388f69075538c628a7e18ac8a)
|
|
- safe_string.h - don't assume that __FUNCTION__ is available
- process.c - use new workaround from safe_string.h for the same
- util.c - Show how many bytes we smb_panic()ed trying to smb_xmalloc()
- gencache.c - Keep valgrind quiet by always null terminating.
- clistr.c - Add copyright
- srvstr.h - move srvstr_push into a .c file again, as a real function.
- srvstr.c - revive, with 'safe' checked srvstr_push
- loadparm.c - set a default for the display charset.
Andrew Bartlett
(This used to be commit a7eba37aadeb0b04cb1bd89deddb58be8aba825c)
|
|
(This used to be commit 45e5374e89730e7ad497edf9e344fbd1b8992589)
|
|
(This used to be commit 3cd1650d389850c2a36997a1a404d37bb28130e4)
|
|
(This used to be commit ea85f8ff21bfad378eb8464a94bb182cb3e4f988)
|
|
put a doc about it in dev-doc later today.
(This used to be commit af7bfee0c6902c07fdb8d3abccf4c8d6bab00b5a)
|
|
Add in new ones that run STF, after setting up a PATH and
LD_LIBRARY_PATH that will let them find samba in the build directory.
LD_LIBRARY_PATH is probably not portable but without libtool I don't
know a portable way to do it. Perhaps the simple solution is just to
link these things statically?
(This used to be commit 27c1626ae0a30bf0f01ea6d6df5836425e6f9547)
|
|
(This used to be commit 2c17cb1bd27658ac7a72cb9eccb4b048e9d0ec5f)
|
|
grows too much larger.
(This used to be commit 4bbddbfc6a97ebb11e299aa7bd07ebebeab42c65)
|
|
Add bin/t_stringoverflow test case. Not built by default.
(This used to be commit 7741bb8d18e7ba16522c00513174f2909d75535d)
|
|
(This used to be commit 97daece056516e52e56bf5a749676e7c53e087e3)
|
|
This patch enables the compile-time checking of strings assable by means of
sizeof(). (Original code had the configure check reversed).
This is extended to all safe_strcpy() users, push_string and pull_string,
as well as the cli and srv derivitives. There is an attempt to cap strings
at the end of the cli buffer, and clobber_region() of the speified length
(when not -1 :-).
Becouse of the way they are declared, the 'overmalloc a string' users of
safe_strcpy() have been changed to use overmalloc_safe_strcpy() (which skips
some of the checks).
This whole ball of mud worked fine, until I pulled out my 'fix' for our
statcache. When jeremy fixes that, we should be able to get back to testing
this stuff.
This patch also includes a 'marker' of the last caller to clobber_region (ie,
the function that called pstrcpy() that called clobber_region) to assist in
debugging problems that may have smashed the stack. This is printed at
smb_panic() time. (Original idea and patch by metze).
It also removes some unsused functions, and #if 0's some others that are
unused but probably should be used in the near future.
For now, this patch gives us some confidence on one class of trivial parsing
error in our code.
Andrew Bartlett
(This used to be commit 31f4827acc2a2f00399a5528fc83a0dae5cebaf4)
|
|
dereferencing
(This used to be commit 2487480228b99183cab9e34ab497997e0c144ed6)
|
|
(This used to be commit 3f4cb7b2c4d9b54b41bcc184ccfd00032e2b021b)
|
|
for testing than the .so. (http://www.laputan.org/mud/mud.html)
(This used to be commit 386087d77f836b8133afc977c9c3e8e7845125dc)
|
|
(This used to be commit 7717555438e4d74bb63d12abde3573933c15342a)
|
|
The intention is to allow for NTLMSSP and kerberos signing of packets, but
for now it's just what I call 'simple' signing. (aka SMB signing per the SNIA
spec)
Andrew Bartlett
(This used to be commit b9cf95c3dc04a45de71fb16e85c1bfbae50e6d8f)
|
|
The intention is to remove the muliple passdb backends, but we need the
'guest' account to always be there. If the admin adds the guest account to
(say) LDAP, there will only be one backend required for operation.
This helps remove some nasty behaviours with adding accounts to the system
for both the RPC 'create user' and the SAMSYNC code. Users 'added' with
an 'add user/machine' script won't magicly appear, and machine accounts
'pre-added' to unix, but not the smbpasswd file will not cause mayhem.
This commit also implements somthing tridge discussed with me, the concept
of 'default' passdb operation pointers - so that each backend does not
need it's own stub funcitons wrapping the default tdb privilages/group
mapping code.
This also removes an implicit 'sid->name' and 'name->sid' mapping from our
own local SID space, to winbind usernames. When adding mapping for NIS/LDAP
non-sam users in future, we need to be careful.
Andrew Bartlett
(This used to be commit 6f32fa234961a525760a05418a08ec48d22d7617)
|
|
(This used to be commit 3805a9c5d5e98e089e1cd9e794f7204fc354a311)
|
|
This patch adds the architecture for an IDMAP backend system including a new
smb.conf parameter "winbind backend". Right now, the only valid value is "tdb"
but I'm currently working on an LDAP backend.
(This used to be commit 35e4448dcb2deb0d5d34d9e974a49f2fb31f1356)
|
|
(pdbedit already has a -V option..)
(This used to be commit 5de622968d95c1436dbd34edc8d0a9bbff68916b)
|
|
(This used to be commit 8d166ae093655a5a14a7478c7a84474b43e8ee97)
|
|
and vfstest.
(This used to be commit bcbc2213230e95d732a774b5aee67295fba4380b)
|
|
(This used to be commit 651be759b3db98133feb6fe8c578964ec7b5cf71)
|
|
(This used to be commit ba25db83f241a28200132f3dc52f7f5f93a3b00e)
|
|
users w/o full administrative access on computer accounts to join a
computer into AD domain.
The patch and detailed changelog is available at:
http://www.itcollege.ee/~aandreim/samba
This is a list of changes in general:
1. When creating machine account do not fail if SD cannot be changed.
setting SD is not mandatory and join will work perfectly without it.
2. Implement KPASSWD CHANGEPW protocol for changing trust password so
machine account does not need to have reset password right for itself.
3. Command line utilities no longer interfere with user's existing
kerberos ticket cache.
4. Command line utilities can do kerberos authentication even if
username is specified (-U). Initial TGT will be requested in this case.
I've modified the patch to share the kinit code, rather than copying it,
and updated it to current CVS. The other change included in the original patch
(local realms) has been left out for now.
Andrew Bartlett
(This used to be commit ce52f1c2ed4d3ddafe8ae6258c90b90fa434fe43)
|
|
of libsmb.
Andrew Bartlett
(This used to be commit b5ec7efa80478187124c1cfa8c7fcc4036506a37)
|
|
(This used to be commit b44be1c7c4b8c7a8c1d35fe8b24aeff0ff0af32b)
|