summaryrefslogtreecommitdiff
path: root/source3/include
AgeCommit message (Collapse)AuthorFilesLines
2004-03-27Merge from HEAD the SMB signing patch that I developed a couple of weeksAndrew Bartlett1-1/+2
ago. This patch re-adds support for 'optional' SMB signing. It also ensures that we are much more careful about when we enable signing, particularly with on-the-fly smb.conf reloads. The client code will now attempt to use smb signing by default, and disable it if the server doesn't correctly support it. Andrew Bartlett (This used to be commit e27b5cbe75d89ec839dafd52dd33101885a4c263)
2004-03-27Working (tested) client code for setting EA's by filename and fnum.Jeremy Allison1-0/+6
Now for parsing out the retrieved EA's. Jeremy. (This used to be commit 5eeeee302cec2cc1f6c130ed44be9df028f73cde)
2004-03-24fixes for prnadmin.dll APIGerald Carter1-1/+1
* force the PRINTER_ATTRIBUTE_LOCAL (nor PRINTER_ATTRIBUTE_NETWORK) * ensure that we return the sec_desc in smb_io_printer_info_2 (allows prnui.dll to restore security descriptors from a data file). (This used to be commit c335cb80d2e4c687279b7a6038a97518770ccae9)
2004-03-24Fix bugzilla # 1208Jim McDonough1-0/+1
Winbind tickets expired. We now check the expiration time, and acquire new tickets. We couln't rely on renewing them, because if we didn't get a request before they expired, we wouldn't have renewed them. Also, there is a one-week limit in MS on renewal life, so new tickets would have been needed after a week anyway. Default is 10 hours, so we should only be acquiring them that often, unless the configuration on the DC is changed (and the minimum is 1 hour). (This used to be commit c2436c433afaab4006554a86307f76b6689d6929)
2004-03-22bug 1195: add flag to ADS_STRUCT so we know who owns the main structure's ↵Gerald Carter1-0/+2
memory (not the members though) (This used to be commit 4449e0e251190b741f51348819669453f0758f36)
2004-03-18Password lockout for LDAP backend. Caches autolock flag, bad count, andJim McDonough2-0/+10
bad time locally, updating the directory only for hitting the policy limit or resetting. This needed to be done at the passdb level rather than auth, because some of the functions need to be supported from tools such as pdbedit. It was done at the LDAP backend level instead of generically after discussion, because of the complexity of inserting it at a higher level. The login cache read/write/delete is outside of the ldap backend, so it could easily be called by other backends. tdbsam won't call it for obvious reasons, and authors of other backends need to decide if they want to implement it. (This used to be commit 2a679cbc87a2a9111e9e6cdebbb62dec0ab3a0c0)
2004-03-15Use "unix netbios name" type unstring - 64 bytes long to manipulate netbiosJeremy Allison3-4/+8
names in nmbd. Allows conversion from dos codepage mb strings (ie. SJIS) to expand to utf8 size on read. Jeremy. (This used to be commit 834d816caf9cd6318da00febde50d9233469dac2)
2004-03-13Modified fix for bugid #784. Based on a patch from moriyama@miraclelinux.com ↵Jeremy Allison1-4/+4
(MORIYAMA Masayuki). Don't use nstrings to hold workgroup and netbios names. The problem with them is that MB netbios and workgroup names in unix charset (particularly utf8) may be up to 3x bigger than the name when represented in dos charset (ie. cp932). So go back to using fstrings for these but translate into nstrings (ie. 16 byte length values) for transport on the wire. Jeremy. (This used to be commit b4ea493599ab414f7828b83f40a5a8b43479ff64)
2004-03-13First part of patch from moriyama@miraclelinux.com (MORIYAMA Masayuki) toJeremy Allison1-1/+2
fix up netbios names with mb strings. Includes reformat of libsmb/nmblib.c so it's readable. Jeremy. (This used to be commit 966e49a48c352563cdd7f75fe2768f2d6612ec7e)
2004-03-11Get MungedDial actually working with full TS strings in it for pdb_ldap.Jim McDonough1-1/+4
I know this isn't pretty, but neither was our assumption that all strings from the directory fit inside a pstring. There was no way this worked before will all versions of usrmgr (for example, the only version of mine that has the TS Confic button). (This used to be commit d275c0e384db08c2a6efc28e52844f676ff71fb6)
2004-03-11add missing #ifdef HAVE_BICONV stuffHerb Lewis1-0/+3
(This used to be commit 9ea0560b0b62dbefaedd640cf9f4f58a0d337abe)
2004-03-04BUG 1015: patch from jmcd to fix statfs redeclaration of statfs struct on ppcGerald Carter1-1/+3
(This used to be commit fafb243278cd33d696487e477d4685bb79e2e357)
2004-03-04BUG 1080: fix declaration of SMB_BIG_UINTGerald Carter1-12/+12
(This used to be commit 810bc1e2a02c6ab11ef00bf67b49929c596bee33)
2004-03-04another fix for bug 761; don't default to bsd printing on linuxGerald Carter1-9/+0
(This used to be commit d58139d64f37fe9fec34492d7857257d9ad4a808)
2004-03-03Use a common function to parse all pathnames from the wire. This allowsJeremy Allison2-0/+7
much closer emulation of Win2k3 error return codes. Jeremy. (This used to be commit c9f31fafeda6ad79e590276f36e03ecd2e93f818)
2004-03-02fix typo for callback bitJim McDonough1-1/+1
(This used to be commit 31a15164ffb3f551a5f7006e637036dc3b59bd22)
2004-02-26fixed compilation with --enable-dmallocAndrew Tridgell1-1/+1
the macro redefinition of free() means we cannot have a structure element called "free" (This used to be commit d2d653a1a6db9d0407e99affb317a0045e56168a)
2004-02-25Figured out a new flags bit with gentest and ethereal....Jeremy Allison1-0/+1
Jeremy. (This used to be commit b4b684f1155b1abccb69cca7bca9819625dbfead)
2004-02-24Add 'net rpc group add'. For this parse_samr.c had to be changed: TheVolker Lendecke1-0/+1
group_info4 in set_dom_group_info also has the level in the record itself. This seems not to be an align. Tested with NT4 usrmgr.exe. It can still create a domain group on a samba machine. Volker (This used to be commit 76c75bb8a7ad2a2e719dbbe997abf8aefe2fbbb4)
2004-02-24Added NTrename SMB (0xA5) - how did we miss this.... ?Jeremy Allison2-1/+4
Jeremy. (This used to be commit dfd7d1c2b7b577a084a94926abfce82c91f20b7e)
2004-02-23Add bad password count/time attributesJim McDonough1-0/+1
(This used to be commit 003318939f7e476f5f2a5f345e8a81a228fc89a7)
2004-02-20just say no to crackGerald Carter1-1/+1
(This used to be commit 66be4492aade625417a6cd727bbe8c6bfb224368)
2004-02-20<attr/xattr.h> & <sys/xattr.h> are mutually exclusive it seems; fix build on ↵Gerald Carter1-3/+2
SuSE 8.2 (This used to be commit 34e6c5f8f3829e9ff6dd3f1377170fb150bfcec1)
2004-02-19sys/xattr.h merge from HEADGerald Carter1-0/+4
(This used to be commit 798dd7299e3ba5cd7e829f48bb42eb9cbfc71dd4)
2004-02-19Add bad password time fieldsJim McDonough1-0/+2
(This used to be commit 59e7c3ababd0bb8bc91cbc421b7a842cca38101f)
2004-02-13Fixup the 'multiple-vuids' bugs.Jeremy Allison1-10/+19
Jeremy. (This used to be commit f0f7a48327ba1808088bc8c4e5d48b5cbeaeb4e3)
2004-02-12More sync between passdb on 3.0 and HEAD.Jim McDonough2-4/+41
Replace unknown_3 with fields_present. Also causes rpc_samr structure field changes. (This used to be commit 1976843345efb6ca4f9cebd964a61acd8ae11d41)
2004-02-09Apply James' printf format checking patch for SGI MIPSPro compiler.Tim Potter1-0/+3
(This used to be commit 27242f44e6cfa10b7b7f74bcfb6c81786aaffae0)
2004-02-08Remove more unused portions of the 'password cache'.Andrew Bartlett1-13/+0
Andrew Bartlett (This used to be commit 318e11748a86d92bfc6ebf0e58f3c8360cbf4b69)
2004-01-25If we are providing strndup(), ensure we provide a prototype too.Andrew Bartlett1-0/+4
Andrew Bartlett (This used to be commit 109627145463fc4c00b8f6664e3f2e48e0305d56)
2004-01-15* Fix XFS quotas: XFS_USER_QUOTA -> USRQUOTAStefan Metzmacher1-0/+1
XFS_GROUP_QUOTA -> GRPQUOTA * Fix disk_free calculation with group quotas. * Add debug class 'quota' and a lot of DEBUG()'s to the quota code. metze (This used to be commit e9e5e2036f13ff847aa3ef52e8be657bef7d5774)
2004-01-14bug 770; correct fix this time; Make sure that we send the SMBjobid for ↵Gerald Carter1-1/+2
unix jobs back to the client. Allows windows client to remove print jobs submitted from lpr (This used to be commit 514561118860f982c458930c34763dac9ce0554e)
2004-01-09fix some warnings from the Sun compilerGerald Carter2-14/+14
(This used to be commit ebabf72a78f0165521268b73e0fcabe1ea7834fd)
2004-01-06Patch based on work from James Peach <jpeach@sgi.com> to convert over toJeremy Allison3-2/+21
using pread/pwrite. Modified a little to ensure fsp->pos is correct. Fix for #889. Jeremy. (This used to be commit 019aaaf0df091c3f67048f591e70d4353a02bb9b)
2004-01-05Oops. Broke the build. Added missing files.Jeremy Allison2-0/+501
Jeremy. (This used to be commit 52eafc131e26ecc2c4ce8df856c380eb7fd8af69)
2004-01-05Patch from Stefan (metze) Metzmacher <metze at metzemix.de> to revert to ↵Jeremy Allison1-148/+4
2.2.x quota methods. :-). "here's a patch which ports the samba 2.2 samba_linux_quota.h stuff to 3_0. This is needed because of so many broken quota files outthere. Please, test this with old, new kernels (strucr dqblk, struct mem_dqblk, and struct if_dqblk) , quota.user, aquota.user formats what is when a user is over soft quota and over hard quotas..." Jeremy. (This used to be commit 4350aa6ce6cfdaf71cdcfd2aebcdc9560fa7efcf)
2004-01-05rpc_client/cli_lsarpc.c:Andrew Bartlett1-0/+13
rpc_parse/parse_lsa.c: nsswitch/winbindd_rpc.c: nsswitch/winbindd.h: - Add const libads/ads_ldap.c: - Cleanup function for use nsswitch/winbindd_ads.c: - Use new utility function ads_sid_to_dn - Don't search for 'dn=', rather call the ads_search_retry_dn() nsswitch/winbindd_ads.c: include/rpc_ds.h: rpc_client/cli_ds.c: - Fixup braindamage in cli_ds_enum_domain_trusts(): - This function was returning a UNISTR2 up to the caller, and was doing nasty (invalid, per valgrind) things with memcpy() - Create a new structure that represents this informaiton in a useful way and use talloc. Andrew Bartlett (This used to be commit 06c3f15aa166bb567d8be0a8bc4b095b167ab371)
2004-01-05Make arbitary binary data unsigned char.Andrew Bartlett1-4/+4
(This used to be commit a78b0205622f10e0acfdf54915df6864608ab928)
2004-01-04- Put functions for generating SQL queries in pdb_sql.cJelmer Vernooij1-0/+2
- Add pgSQL backend (based on patch by Hamish Friedlander) - Use query generate functions from pdb_mysql and pdb_pgsql - Only pdb_pgsql.c needs to be changed whenever the fields in SAM_ACCOUNT change (This used to be commit 65ad2c02fd2bf36d535c279ad290ab81e39f6816)
2003-12-25This is metze's LDAP rebind sleep patch:Volker Lendecke1-0/+2
When smb.conf tells us to write to a read-only LDAP replica and we are redirected by the LDAP server, the replication might take some seconds, especially over slow links. This patch delays the next read after a rebind for 'ldap rebind sleep' milliseconds. Metze, thanks for your patience. Volker (This used to be commit 63ffa770b67d700f138d19b4982da152f57674fc)
2003-12-22add well known rid for pre win2k compatible access group; bug 897Gerald Carter1-0/+1
(This used to be commit 33a1a374ebb44c839d995d11e1229767fc679678)
2003-12-10Fix UNISTR2 length bug in LsaQueryInfo(3) that cause SID resolution to fail ↵Gerald Carter1-1/+1
on local files on on domain members; bug 875 (This used to be commit c6594e35573186966a4d57404f1c06b98670db06)
2003-12-04support munged dial for ldapsam; patch from Aurélien Degrémont; bug 800Gerald Carter1-0/+1
(This used to be commit 1c3c16abc94d197e69e3350de1e5cc1e99be4322)
2003-12-04* fix RemoveSidForeignDomain() ; bug 252Gerald Carter1-7/+7
* don't fall back to unmapped UNIX group for get_local_group_from_sid() * remove an extra become/unbecome_root() pair from group enumeration (This used to be commit da12bbdb0dd9179b1ed457fa009679e2da4a8440)
2003-11-22Changes all over the shop, but all towards:Andrew Bartlett6-42/+73
- NTLM2 support in the server - KEY_EXCH support in the server - variable length session keys. In detail: - NTLM2 is an extension of NTLMv1, that is compatible with existing domain controllers (unlike NTLMv2, which requires a DC upgrade). * This is known as 'NTLMv2 session security' * (This is not yet implemented on the RPC pipes however, so there may well still be issues for PDC setups, particuarly around password changes. We do not fully understand the sign/seal implications of NTLM2 on RPC pipes.) This requires modifications to our authentication subsystem, as we must handle the 'challege' input into the challenge-response algorithm being changed. This also needs to be turned off for 'security=server', which does not support this. - KEY_EXCH is another 'security' mechanism, whereby the session key actually used by the server is sent by the client, rather than being the shared-secret directly or indirectly. - As both these methods change the session key, the auth subsystem needed to be changed, to 'override' session keys provided by the backend. - There has also been a major overhaul of the NTLMSSP subsystem, to merge the 'client' and 'server' functions, so they both operate on a single structure. This should help the SPNEGO implementation. - The 'names blob' in NTLMSSP is always in unicode - never in ascii. Don't make an ascii version ever. - The other big change is to allow variable length session keys. We have always assumed that session keys are 16 bytes long - and padded to this length if shorter. However, Kerberos session keys are 8 bytes long, when the krb5 login uses DES. * This fix allows SMB signging on machines not yet running MIT KRB5 1.3.1. * - Add better DEBUG() messages to ntlm_auth, warning administrators of misconfigurations that prevent access to the privileged pipe. This should help reduce some of the 'it just doesn't work' issues. - Fix data_blob_talloc() to behave the same way data_blob() does when passed a NULL data pointer. (just allocate) REMEMBER to make clean after this commit - I have changed plenty of data structures... (This used to be commit f3bbc87b0dac63426cda6fac7a295d3aad810ecc)
2003-11-20Typo fix.Rafal Szczesniak1-2/+2
(This used to be commit 5054a1731e3bf3bec0687304af63fed475d5f864)
2003-11-12a small include file rearrangement that doesn't affect normalAndrew Tridgell1-2/+0
compilation, but that allows Samba3 to take advantage of pre-compiled headers in gcc if available. (This used to be commit b3e024ce1da7c7e24fcacd8a2964dd2e4562ba39)
2003-11-03removing #include <compat.h> in hopes to avoid problems with apache header ↵Gerald Carter1-4/+0
files; will watch the build farm on this to make sure things don't blow up (This used to be commit e92583cecd79adea25caedd1599ac8f36733a923)
2003-11-02Add prototype for smbc_remove_unused_server() to fix compiler warning.Tim Potter1-0/+11
Bug #706. (This used to be commit eaf69b1ae7883573830244664cb0a81661541d92)
2003-10-29parameterise the listen backlog in smbd and make it larger by default. A ↵Andrew Tridgell1-0/+3
backlog of 5 is way too small these days. (This used to be commit bbb92d2b0ea6bc10c71bed62924bfc95c11172a5)