Age | Commit message (Collapse) | Author | Files | Lines |
|
Should be ready for the new directory code now...
Jeremy.
(This used to be commit c2eff8ef1b65570d2e590f62f026cc18f9142652)
|
|
a customer hash function for this tdb (yes it does make a difference
on benchmarks). Remove the no longer used hash.c code.
Jeremy.
(This used to be commit 3fbadac85b8cad89b93d295968e99c38c8677575)
|
|
Jelmer, we need to find another way to solve this bug. This way,
rpcclient is linked to libxml2, libmysqlclient and libpg (with according
dependencies in samba-client.rpm's) if one just wants to build the more
experimental pdb-modules as well.
Guenther
(This used to be commit 67bffc5034121cc0069007a7b79ce189ab0d10be)
|
|
(This used to be commit d5c757d89b76bfe5cbd23e4a241971aaa32e4949)
|
|
* add IA64 to the architecture table of printer-drivers
* add new "net"-subcommands:
net rpc printer migrate {drivers|printers|forms|security|settings|all}
[printer]
net rpc share migrate {shares|files|all} [share]
this is the first part of the migration suite. this will will (once
feature-complete) allow to do 1:1 server-cloning in the best possible way by
making heavy use of samba's rpc_client-functions. all migration-steps
are implemented as rpc/smb-client-calls; net communicates via rpc/smb
with two servers at the same time (a remote, source server and a
destination server that currently defaults to the local smbd). this
allows e. g. printer-driver migration including driverfiles, recursive
mirroring of file-shares including file-acls, etc. almost any migration
step can be called with a migrate-subcommand to provide more flexibility
during a migration process (at the cost of quite some redundancy :) ).
"net rpc printer migrate settings" is still in a bad condition (many
open questions that hopefully can be adressed soon).
"net rpc share migrate security" as an isolated call to just migrate
share-ACLs will be added later.
Before playing with it, make sure to use a test-server. Migration is a
serious business and this tool-set can perfectly overwrite your
existing file/print-shares.
* along with the migration functions had to make I the following
changes:
- implement setprinter level 3 client-side
- implement net_add_share level 502 client-side
- allow security descriptor to be set in setprinterdata level 2
serverside
guenther
(This used to be commit 8f1716a29b7e85baf738bc14df7dabf03762f723)
|
|
corruption problem, and smbd_log_tdb happily destoyed the evidence ....
Volker
(This used to be commit 359b9dcffeb66146c5405f8022d5d4e4a833aa51)
|
|
${prefix}/lib. This
helps amd64 systems with /lib and /lib64 and an explicit configure --libdir
setting.
Thanks to Bjoern Jacke <bj@sernet.de>
Volker
(This used to be commit cc1881c143b16fa8f0abd80190877d0018bc282e)
|
|
(This used to be commit 0ca894d5cf8f292e7f560120a28b15b28ba5812c)
|
|
(This used to be commit d08ce198b56b42baef5a0aceae706c006244372c)
|
|
haven't broken krb5 ticket verification in the mainline code path,
also need to check with valgrind. Everything now compiles (MIT, need
to also check Heimdal) and the "net keytab" utility code will follow.
Jeremy.
(This used to be commit f0f2e28958cb9abfed216c71f291f19ea346d630)
|
|
(This used to be commit 1f4db0b847de582387c0244397d1769b35bbcdbb)
|
|
already included in PROTO_OBJ by LIBMSRPC_OBJ
(This used to be commit a9113df6e9d357d334cd9a8dd937df6b3eec322e)
|
|
definitions to be consistent.
(This used to be commit 86e78bf745b4bb10fe60a77c069a9a062aa26637)
|
|
Split off the non-crypto related parts of lib/afs.c into
lib/afs_settoken.c. This makes wbinfo link without -lcrypto.
Commit vfs_afsacl.c, display & set AFS acls via the NT security editor.
Volker
(This used to be commit 43870a3fc1073cf7d60f1becae5c2ff98ab49439)
|
|
Move msdfs.c into the source/smbd directory and remove source/msdfs.
metze
(This used to be commit 88e6e6d29ca14e0cddbc1df611051a96568dc0c9)
|
|
Implement vfs_full_audit.c that can log every vfs.h operation. So if you
change vfs.h, from now on you also have to change full_audit :-)
Volker
(This used to be commit 9cb9c5f7c97fe8f76735a77b321c9500d28b55b2)
|
|
I'll add documentation to the Samba-Howto-Collection
metze
(This used to be commit 2bef5d2741807fe3f38a95710533520700e253a4)
|
|
the main ntlm_auth program.
It quite possibly should belong in smbtorture, but relies on the
winbind client for now.
Andrew Bartlett
(This used to be commit 6e1b7a8848062a184ee293cf688135b851f2bd8d)
|
|
(This used to be commit b393469d9581f20e4d4c52633b952ee984cca36f)
|
|
Volker
(This used to be commit b69e8e64d4d89d48f9cb5d07b32110d6ecfc3401)
|
|
stream. This is to implement wbinfo -k that asks winbind for authentication
which then creates the AFS token for the authenticated user.
Volker
(This used to be commit 2df6750a079820826013360fb9e47f90bc8223a5)
|
|
Volker
(This used to be commit 9cb6a4d76f87b28077861d3f4220541fbf704ddf)
|
|
build despite libraries added to LDFLAGS instead of LDPATH.
(This used to be commit 98a25dcda8e53e22b48930131ff394414056f6a1)
|
|
bad time locally, updating the directory only for hitting the policy limit
or resetting.
This needed to be done at the passdb level rather than auth, because some
of the functions need to be supported from tools such as pdbedit. It was
done at the LDAP backend level instead of generically after discussion,
because of the complexity of inserting it at a higher level.
The login cache read/write/delete is outside of the ldap backend, so it could
easily be called by other backends. tdbsam won't call it for obvious
reasons, and authors of other backends need to decide if they want to
implement it.
(This used to be commit 2a679cbc87a2a9111e9e6cdebbb62dec0ab3a0c0)
|
|
(This used to be commit b1115c0fc507e82d828ccbb5853734a964701cd2)
|
|
(This used to be commit e6c2d9a3f7b5e427c6e7139726160d79e1dfc16d)
|
|
(This used to be commit 2367d988ae8d33397cd255d39100ae5791401558)
|
|
Big thanks to tpot and mbp for showing how easy it can be to write a simple
unit test, and for providing the STF.
This also changes the strstr_m() code to use strstr_w() (avoiding
duplication) and fixes it so that it passes the STF.
(We now always restart before doing the unicode run, until sombody can
show me why the testsuite is wrong).
Andrew Bartlett
(This used to be commit a893a324f37e6a171719db8ffffe66df31c2dbaa)
|
|
(This used to be commit 70cc747fdfe1f52b957a2b72a12b199f5daeeb5b)
|
|
* remove corrupt tdb and shutdown (only for printing tdbs, connections,
sessionid & locking)
* decrement smbd counter in connections.tdb in smb_panic()
* various Makefile hack to get things to link
'max smbd processes' looks like it might be broken. The counter KEY is not
being set. Will look into that tomorrow.
(This used to be commit 6e22c5da929b6d9a4e32dc704c83112b2ad8fcfd)
|
|
This should ensure that the value it returns is always consistant.
Andrew Bartlett
(This used to be commit a4392ede33019b7584bf6a2d8445adb5191e640f)
|
|
in lib/smbpasswd.c that were exact duplicates of functions in passdb/passdb.c
(These should perhaps be pulled back out to smbpasswd.c, but that can occour
later).
Andrew Bartlett
(This used to be commit fcdc5efb1e245c8fa95cd031f67ec56093b9056e)
|
|
(This used to be commit b21b36d9270866181891c5c7c5365bae6b40815b)
|
|
remote_password_change().
Sorry for the original bug.
Andrew Bartlett
(This used to be commit 955436a6f6d7c2f580b2c4e1edbb7ee2fe5df858)
|
|
(This used to be commit ec30303669ee4742aef228fc0e4a801ce4918ad8)
|
|
As well as avoiding DOS charset issues, this scheme returns useful error
codes, that we can map back via the pam interface.
This patch also cleans up the interfaces used for password buffers, to
avoid duplication of code.
Andrew Bartlett
(This used to be commit 2a2b1f0c872d154fbcce71a250e23dfad085ba1e)
|
|
anymore.
(This used to be commit 67d25f3de803f7e599c51cacd51367f124151d6b)
|
|
(This used to be commit d12b793d9ca10f966da3446982a5b1d987d51814)
|
|
domains, this patch ensures that we always use the ADS backend when
security=ADS, and the remote server is capable.
The routines used for this behaviour have been upgraded to modern Samba
codeing standards.
This is a change in behaviour for mixed mode domains, and if the trusted
domain cannot be reached with our current krb5.conf file, we will show
that domain as disconnected.
This is in line with existing behaviour for native mode domains, and for
our primary domain.
As a consequence of testing this patch, I found that our kerberos error
handling was well below par - we would often throw away useful error
values. These changes move more routines to ADS_STATUS to return
kerberos errors.
Also found when valgrinding the setup, fix a few memory leaks.
While sniffing the resultant connections, I noticed we would query our
list of trusted domains twice - so I have reworked some of the code to
avoid that.
Andrew Bartlett
(This used to be commit 7c34de8096b86d2869e7177420fe129bd0c7541d)
|
|
Supports recursive downloads and resume, progress indication and shows
estimated time remaining.
(This used to be commit 82bd1b45a4205706b57bae42c7b03974f8b44753)
|
|
Jeremy.
(This used to be commit cae5f158e583572436a2f4c20d919816d763f93d)
|
|
2.2.x quota methods.
:-).
"here's a patch which ports the samba 2.2 samba_linux_quota.h stuff to 3_0.
This is needed because of so many broken quota files outthere.
Please, test this with old, new kernels
(strucr dqblk, struct mem_dqblk, and struct if_dqblk)
, quota.user, aquota.user formats
what is when a user is over soft quota and over hard quotas..."
Jeremy.
(This used to be commit 4350aa6ce6cfdaf71cdcfd2aebcdc9560fa7efcf)
|
|
- Add pgSQL backend (based on patch by Hamish Friedlander)
- Use query generate functions from pdb_mysql and pdb_pgsql
- Only pdb_pgsql.c needs to be changed whenever the fields in SAM_ACCOUNT change
(This used to be commit 65ad2c02fd2bf36d535c279ad290ab81e39f6816)
|
|
subsystem into a seperate file - ntlm_check.c.
This allows us to call these routines from ntlm_auth. The purpose of this
exercise is to allow ntlm_auth (when operating as an NTLMSSP server) to
avoid talking to winbind. This should allow for easier debugging.
ntlm_auth itself has been reorgainised, so as to share more code between
the SPNEGO-wrapped and 'raw' NTLMSSP modes. A new 'client' NTLMSSP mode
has been added, for use with a Cyrus-SASL module I am writing (based on vl's
work)
Andrew Bartlett
(This used to be commit 48315e8fd227978e0161be293ad4411b45e3ea5b)
|
|
(This used to be commit 8f6cd36fa03edf75e8e3a806ab178d8563dea081)
|
|
(This used to be commit b19472e108508935e6c80f61fd1394e852cb0902)
|
|
tells me that this should not be expanded, so I implemented
net status [sessions|shares] [parseable]
Volker
(This used to be commit 63d877c6b4786dcddf5f389842f798857be282c0)
|
|
MacOSX (Darwin) specific charset module code. Also had to add AC_CHECK_CPP
to configure.in (this took a *long* time to track down) to make autoconf
work correctly on Fedora Core 1.
Jeremy.
(This used to be commit c51d974b18e31a38608a3837d3fee04a209f91c8)
|
|
(This used to be commit 92a138f027cf2f1c2b13c6f3d59493fb21885d5e)
|
|
this is not called by default and I don't think it should be - I think
the programmer should specifically ask for pch generation when they
want it.
(This used to be commit ef01aedfb4e97af9283b0d54dd362aad809016af)
|