summaryrefslogtreecommitdiff
path: root/source3/include
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r22800: Add GPO_SID_TOKEN and an LDAP function to get tokensids from the ↵Günther Deschner2-2/+14
tokenGroup attribute. Guenther (This used to be commit e4e8f840605dfdf92ca60cc8fc6a4c85336565fb)
2007-10-10r22798: Add the "apply group policy" access bit (as seen in type 0x05 ↵Günther Deschner1-0/+1
ALLOWED OBJECT ACEs). Guenther (This used to be commit e138cbc876e50ae25cb15c5109a42bc8b800c1ba)
2007-10-10r22797: We are only interested in the DACL of the security descriptor, so ↵Günther Deschner2-0/+11
search with the SD_FLAGS control. Guenther (This used to be commit 648df57e53ddabe74052e816b8eba95180736208)
2007-10-10r22796: Add security descriptor to GROUP_POLICY_OBJECT structure (in ↵Günther Deschner2-1/+2
preparation of adding GPO security filtering for libgpo). Guenther (This used to be commit b376a39fbf42a6a541fd311418c4a980b9fd4b9e)
2007-10-10r22786: Some cleanup by Karolin Seeger: Remove unused pdb_find_alias, and changeVolker Lendecke1-3/+0
return values of some alias-releated pdb functions from BOOL to NTSTATUS Thanks :-) (This used to be commit 590d2164b3a33250410338771e160f6ebd1aa89d)
2007-10-10r22775: For the cluster code I've developed a wrapper around tdb to put ↵Volker Lendecke2-0/+52
different database backends in place dynamically. The main abstractions are db_context and db_record, it should be mainly self-describing, see include/dbwrap.h. You open the db just as you would open a tdb, this time with db_open(). If you want to fetch a record, just do the db->fetch() call, if you want to do operations on it, you need to get it with fetch_locked(). I added dbwrap_file.c (not heavily tested lately) as an example for what can be done with that abstraction, uses a file per key. So if anybody is willing to shape that up, we might have a chance on reiserfs again.... :-) This abstraction works fine for brlock.tdb, locking.tdb, connections.tdb and sessionid.tdb. It should work fine for the others as well, I just did not yet get around to convert them. If nobody loudly screams NO, then I will import the code that uses this soon. Volker (This used to be commit e9d7484ca246cfca4a1fd23be35edc2783136ebe)
2007-10-10r22751: Next step for the cluster merge: sessionid.tdb should contain a 'structVolker Lendecke1-1/+1
server_id' instead of a 'uint32 pid' (This used to be commit be7bac55c37676a8137c59a22dfb2e4c4821ac21)
2007-10-10r22739: Make prototypes in include/util_tdb.h of some functions fromMichael Adam1-6/+6
lib/util_tdb.c exactly match the definitions. (There were some [u]int_32_t instead of [u]int32, which made a gcc 2.95 on an old AIX without system [u]int32[_t] types complain...) (This used to be commit 7cae0d61170485eb220f546899dfa78f1805a272)
2007-10-10r22736: Start to merge the low-hanging fruit from the now 7000-line cluster ↵Volker Lendecke4-18/+10
patch. This changes "struct process_id" to "struct server_id", keeping both is just too much hassle. No functional change (I hope ;-)) Volker (This used to be commit 0ad4b1226c9d91b72136310d3bbb640d2c5d67b8)
2007-10-10r22732: - Testing of libsmbclient against Vista revealed what is likely a bug inDerrell Lipman1-0/+3
Vista. Vista provides a plethora of kludges to simulate older versions of Windows. The kludges are in the form of shortcuts (or more likely symbolic links, but I don't know enough about Vista to determine that definitively) and in most cases, attempts to access them get back an "access denied" error. On one particular folder, however, "<share>/Users/All Users", it returns an unknown (to ethereal and the Samba3 code) NT status code: 0x8000002d. Although this code does not have a high byte of 0xc0 indicating that it is an error, it appears to be an alternate form of "access denied". Without this patch, libsmbclient times out on an attempt to enumerate that folder rather than returning an error to the caller. This patch corrects that problem. (This used to be commit cc0cd3a12f76b8cd711e3165d4cfe920552f256d)
2007-10-10r22712: Inform the user when logging in via pam_winbindGerald Carter1-0/+1
and the krb5 tkt cache could not be created due to clock skew. (This used to be commit 24616f7d6be40b090dc74851b1ea7d09d6976811)
2007-10-10r22704: Implement three step method for enumerating domain trusts.Gerald Carter1-6/+20
(a) Query our primary domain for trusts (b) Query all tree roots in our forest (c) Query all forest roots in trusted forests. This will give us a complete trust topology including domains via transitive Krb5 trusts. We also store the trust type, flags, and attributes so we can determine one-way trusted domains (outgoing only trust path). Patch for one-way trusts coming in a later check-in. "wbinfo -m" now lists all domains in the domain_list() as held by the main winbindd process. (This used to be commit 9cf6068f1e0a1063d331af17aa493140497b96ef)
2007-10-10r22688: Change lock_data in struct byte_range_lock from void * to struct ↵Volker Lendecke1-1/+1
lock_struct * (This used to be commit 8e0e278961ebf2fa4301874d522636699ace1b9b)
2007-10-10r22664: When we have krb5_get_init_creds_opt_get_error() then try to get the ↵Günther Deschner1-0/+6
NTSTATUS codes directly out of the krb5_error edata. Guenther (This used to be commit dcd902f24a59288bbb7400d59c0afc0c8303ed69)
2007-10-10r22564: Move the _strict -> _zeronull functions into lib/util.cJeremy Allison1-9/+9
and out of talloc at tridge's request. Jeremy. (This used to be commit da78488b86c464b6861d36398cca7524ad5906fe)
2007-10-10r22543: Fix bad call to talloc_strict (too few args).Jeremy Allison1-1/+1
Should fix build farm breakage. Jeremy. (This used to be commit efb43432b01f0b55df409225c7526ff232c00171)
2007-10-10r22542: Move over to using the _strict varients of the tallocJeremy Allison1-7/+9
calls. No functional changes. Looks bigger than it is :-). Jeremy. (This used to be commit f6fa3080fee1b20df9f1968500840a88cf0ee592)
2007-10-10r22492: Add objectid code.Jeremy Allison1-1/+1
Jeremy. (This used to be commit d3df922038032b65f52e1e0ac1f2dd53a6933fb7)
2007-10-10r22479: Add "net ads keytab list".Günther Deschner1-0/+4
Guenther (This used to be commit 9ec76c542775ae58ff03f42ebfa1acc1a63a1bb1)
2007-10-10r22468: Fixing implicit declaration of krb5_set_default_tgs_ktypes (which is ↵Günther Deschner1-2/+0
hidden by KRB5_PRIVATE in MIT and doesn't exist on Heimdal). Guenther (This used to be commit 664db1cff674073c8eeaf69256a73d11e7ed9e3c)
2007-10-10r22465: Last attempt to fix the build before dinner.Günther Deschner1-0/+3
Guenther (This used to be commit f6ade770bdd3e2b14e8db367c40167f49d6c6fa0)
2007-10-10r22463: Add prototype.Günther Deschner1-0/+6
Guenther (This used to be commit 4984af2c66754e9b6eed3020b3056ccf14d19617)
2007-10-10r22418: Support running under launchd. We abstract the method of obtainingJames Peach1-0/+43
sockets to listen on a little, because in the launchd case these are provided for us. We also add an idle timeout so that a daemon can exit after a period of inactivity. (This used to be commit fc8589a3371d396197fae508e563f814899c2beb)
2007-10-10r22417: Refactor the various daemon run-mode options to make the semanticsJames Peach1-0/+11
of the various flags explicit. (This used to be commit 19c929c6330a50f278ac322ac5fcb83d03734ea2)
2007-10-10r22391: Looks bigger than it is. Make "inbuf" availableJeremy Allison1-6/+6
to all callers of smb_setlen (via set_message() calls). This will allow the server to reflect back the correct encryption context. Jeremy. (This used to be commit 2d80a96120a5fe2fe726f00746d36d85044c4bdb)
2007-10-10r22390: Patchset sent to samba-technical to address the winbindGerald Carter2-1/+8
loop when allocating a new id for a SID: auth_util.patch Revert create_local_token() to the 3.0.24 codebase idmap_type.patch Have the caller fillin the id_map.xid.type field when resolving a SID so that if we allocate a new id, we know what type to use winbindd_api.patch Remove the WINBINDD_SIDS_TO_XIDS calls from the public winbindd interface for the 3.0.25 release idmap_rid.patch Cleanup the idmap_rid backend to not call back into winbindd to resolve the SID in order to verify it's type. (This used to be commit 3b24dae9e73b244540a68b631b428a4d0f57440b)
2007-10-10r22343: Commit to 3_0 as well after adapting the patch.Simo Sorce2-2/+5
(tdb_delete_bystring instead of tdb_delete is used here) (This used to be commit ee40cead097ed2c005f5f80b24c9f681e054849a)
2007-10-10r22315: move tdbback.c content into tdbbackup.cStefan Metzmacher1-1/+0
and make the functions static. also use libreplace headers in tdbbackup.c metze (This used to be commit 1ca12b1c9e7e8267fa13a40ebeb2bdcd199237de)
2007-10-10r22298: move ZERO_*, ARRAY_SIZE and PTR_DIFF macros into libreplaceStefan Metzmacher1-19/+0
metze (This used to be commit 8a7d2e633b98aa9c73cf1f7d1369015b294cf2e1)
2007-10-10r22277: __location__ is defined in libreplace nowStefan Metzmacher1-5/+0
metze (This used to be commit 9b45075a265d00847cf77b549759ad9373a16615)
2007-10-10r22266: Fix bug #4512 - we were returning a volume label greater thanJeremy Allison1-1/+1
32 unicode chars. Windows XP doesn't like that :-). Jeremy (This used to be commit e59b5276b56d6963ddd0598bbd1b15426d2d13e8)
2007-10-10r22172: FSCTL_RECALL_FILE is 0x90117 according to my traces. Record it here.Alexander Bokovoy1-1/+1
(This used to be commit f36bc61d17baf468ec66151dda347fdfc40e0297)
2007-10-10r22154: Make struct smbdb_ctx an opaque pointer so users of the APIJeremy Allison1-6/+2
don't need to have tdb.h. Jeremy. (This used to be commit 512542c90a78006bda3470eed7fb6d3f6e708eed)
2007-10-10r22123: Try and fix the csc (#4404) bug by supporting the extendedJeremy Allison1-4/+7
response to NTCreateX - need to fix this also for pipe open and NTTransCreate as well so this isn't finished. Jeremy. (This used to be commit be742f248178ae606dfa3a90c6148a18b42128e3)
2007-10-10r22122: Start to fix csc issue with Vista. Make smbd supportJeremy Allison1-0/+7
the extended 7 word response for tconX rather than the 3 word one we supported previously. Jeremy. (This used to be commit 137953226a2d691259e7e84d6ae0dc24755e5a3a)
2007-10-10r22108: Fix from <don.mccall@hp.com> to try and fix the HPUX builds.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 4de297112b9d87e58d870889007001169265e084)
2007-10-10r22104: BUG 4439: Fix the object picket on x64 WIndopws XP/2003.Gerald Carter1-7/+3
Enable the DsRoleGetPrimaryDomainInfo() server code. Tested by Win2000/XP/2003/Vista (x86) and WinXP (x64) (This used to be commit eab9ca7e7d8d7dc3e705720f8bc5dff5c8ec5f5f)
2007-10-10r22062: Fix the parsing of info level 3. Flags is not a flagsJeremy Allison1-1/+0
field, but an offset. Fixed 64-bit display of ACLs on printers. Jeremy. (This used to be commit 0c8949ff5d742dbe59f2af0f57a289f238e3592c)
2007-10-10r22055: Port the endpoint mapper (and functions it requires) to Samba 3.Jelmer Vernooij2-2/+6
(This used to be commit ad981261877e6a2dce0c4f4e71fd9127aa31538a)
2007-10-10r22049: HPUX build fixes from <don.mccall@hp.com>.Jeremy Allison1-0/+9
Jeremy. (This used to be commit b70af25e851b2695e552b10f1befb16e336fb36f)
2007-10-10r22020: Make it more clear that both the vuser struct and it's contents areAndrew Bartlett1-3/+3
talloc_free()'ed at the end of a session. Rework the passwd cache code to use talloc_unlink and talloc_reference, to more carefully manage the cache. Andrew Bartlett (This used to be commit e3e0ec25e67308de314aa61852905ee42aa2c8fe)
2007-10-10r22009: change TDB_DATA from char * to unsigned char *Stefan Metzmacher1-3/+4
and fix all compiler warnings in the users metze (This used to be commit 3a28443079c141a6ce8182c65b56ca210e34f37f)
2007-10-10r22003: Fix from Jiri.Sasek@Sun.COM to wrap our krb5_locate_kdcJeremy Allison1-0/+3
call as smb_krb5_locate_kdc to prevent incorrect linking and crashes on Solaris. Jeremy. (This used to be commit 7d30737c8d851505e81a60443baf9a8c7e523472)
2007-10-10r21991: I hate Steve French :-). Add support for encryptionJeremy Allison2-8/+1
contexts.... Jeremy. (This used to be commit ae8f3649f773b8a8dcb55921536d038d3475322e)
2007-10-10r21969: Start working on the gss-side of the server negotiation.Jeremy Allison3-3/+11
Jeremy. (This used to be commit fbc569b530104679e47fe743963eb0c4384de6ae)
2007-10-10r21926: Fix missing enum specifier pointed out by Don McCall @ HP.Jeremy Allison1-1/+1
Thanks Don ! Jeremy. (This used to be commit 662344d1ec3593689de7602afa518ed98e10dc37)
2007-10-10r21917: Start to do the gss versions of sign+seal.Jeremy Allison2-4/+4
Jeremy. (This used to be commit a226645353a40047b72de1b96c3a7676a2bf1034)
2007-10-10r21883: Try and fix the build by removing the prototypes forJeremy Allison1-0/+8
functions that take a gss context handle in includes.h Jeremy. (This used to be commit 638b03242d4a6b1df2477dad19240ed61a14a5a3)
2007-10-10r21880: Make client and server calls into encryption code symetrical,Jeremy Allison1-0/+1
depending on encryption context pointer. Jeremy. (This used to be commit d3f3ced6c8a03d971143baf878158d671dfcbc3b)
2007-10-10r21876: Start adding in the seal implementation - prototype codeJeremy Allison1-2/+16
for the server side enc. (doesn't break anything). I'll keep updating this until I've got NTLM seal working on both client and server, then add in the gss level seal. Jeremy. (This used to be commit 530ac29abf23e920baa549e7cec55199edd8bd74)