summaryrefslogtreecommitdiff
path: root/source3/libsmb
AgeCommit message (Collapse)AuthorFilesLines
2002-02-05fixed a bug in qpathinfo client codeAndrew Tridgell1-4/+6
(This used to be commit 22f348a1f9501cc00d46d6c6064f71198558c0ee)
2002-01-31Fix from Michael Steffens <michael_steffens@hp.com> to make signalJeremy Allison1-1/+1
processing work correctly in winbindd. This is a really good patch that gives full select semantics to the Samba modified select. Jeremy. (This used to be commit 3af16ade173cac24c1ac5eff4a36b439f16ac036)
2002-01-31Added addform, setform and deleteform cli functions.Tim Potter1-0/+164
(This used to be commit a7e67dc00ae1a9a80875f2708def6565af0c6f0e)
2002-01-30Removed version number from file header.Tim Potter40-77/+39
Changed "SMB/Netbios" to "SMB/CIFS" in file header. (This used to be commit 6a58c9bd06d0d7502a24bf5ce5a2faf0a146edfa)
2002-01-28Name another talloc.Andrew Bartlett1-1/+1
(This used to be commit 9d62f25f5d3c25d71d8b87801084d42ae9b66f8c)
2002-01-26Back out some of the less well thought out ideas from last weeks work onAndrew Bartlett1-2/+2
winbind default domains, particulary now I understand whats going on a lot better. This ensures that the RPC client code does as little 'magic' as possible - this is up to the application/user. (Where - for to name->sid code - it was all along). This leaves the change that allows the sid->name code to return domains and usernames in seperate paramaters. Andrew Bartlett (This used to be commit 5dfba2cf536f761b0aee314ed9e30dc53900b691)
2002-01-26Fix up a security issue with the way we handle domain groups retuned on theAndrew Bartlett1-9/+15
info3. These are RIDs, and it only makes sense to combine them with the domain SID returned with them. This is important for trusted domains, where that sid might be other than the one we currently reterive from the secrets.tdb. Also remove the become_root()/unbecome_root() wrapper from around both remaining TDB users: Both are now initialised at smbd startup. Andrew Bartlett (This used to be commit 554842e0a55155193f25aefca6480b89d5c512ca)
2002-01-25Removed unused static variable.Tim Potter1-1/+0
(This used to be commit 7c2d7205938ddd958b8399599febbf63ac4c8a88)
2002-01-22Add more string explanations of RAP errors that are already documentedMartin Pool1-8/+17
in clirap2. (This used to be commit 935955b50ff503d18265f745e6e0df90d3e5dd4b)
2002-01-20Spelling fixes.Tim Potter1-0/+2
(This used to be commit e67c7c5852624bcdd5c565ea5f00b143aaf7fee4)
2002-01-20Fix a couple of memory leaks in the cli_establish_connection() code's failureAndrew Bartlett1-0/+2
case. Thanks to Nigel Williams <nigel@wednesday.demon.co.uk> for spotting these! Andrew Bartlett (This used to be commit 20e0b562283f75606ac9a36f3f104c6aaa294c40)
2002-01-20This patch makes the 'winbind use default domain' code interact better withAndrew Bartlett1-10/+18
smbd, and also makes it much cleaner inside winbindd. It is mostly my code, with a few changes and testing performed by Alexander Bokovoy <a.bokovoy@sam-solutions.net>. ab has tested it in security=domain and security=ads, but more testing is always appricatiated. The idea is that we no longer cart around a 'domain\user' string, we keep them seperate until the last moment - when we push that string into a pwent on onto the socket. This removes the need to be constantly parsing that string - the domain prefix is almost always already provided, (only a couple of functions actually changed arguments in all this). Some consequential changes to the RPC client code, to stop it concatonating the two strings (it now passes them both back as params). I havn't changed the cache code, however the usernames will no longer have a double domain prefix in the key string. The actual structures are unchanged - but the meaning of 'username' in the 'rid' will have changed. (The cache is invalidated at startup, so on-disk formats are not an issue here). Andrew Bartlett (This used to be commit e870f0e727952aeb8599cf93ad2650ae56eca033)
2002-01-18This is the 'winbind default domain' patch from Alexander BokovoyAndrew Bartlett1-3/+3
<a.bokovoy@sam-solutions.net>. The idea is the domain\username is rather harsh for unix systems - people don't expect to have to FTP, SSH and (in particular) e-mail with a username like that. This 'corrects' that - but is not without its own problems. As you can see from the changes to files like username.c and wb_client.c (smbd's winbind client code) a lot of assumptions are made in a lot of places about lp_winbind_seperator determining a users's status as a domain or local user. The main change I will shortly be making is to investigate and kill off winbind_initgroups() - as far as I know it was a workaround for an old bug in winbind itself (and a bug in RH 5.2) and should no longer be relevent. I am also going to move to using the 'winbind uid' and 'winbind gid' paramaters to determine a user/groups's 'local' status, rather than the presence of the seperator. As such, this functionality is recommended for servers providing unix services, but is currently less than optimal for windows clients. (TODO: remove all references to lp_winbind_seperator() and lp_winbind_use_default_domain() from smbd) Andrew Bartlett (This used to be commit 07a21fcd2311d2d9b430b99303e3532a8c1159e4)
2002-01-17Made a debug look nicer.Tim Potter1-1/+2
(This used to be commit aca0edc819e892944c65b3feb60250994a79e88a)
2002-01-17fixed a typo in the error map for WRONG_PASSWORDAndrew Tridgell1-1/+1
(This used to be commit fb300e411bb385dcba2c3ca166598a71ed693b35)
2002-01-16Merged in %S fixes and XX_NOT_CHANGED fixes from 2.2.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 0fcca6c627a5c9c2219ec9714df5e0bc1a44cc29)
2002-01-16Fixup error mapping so we have only one table containing errno -> dos error ↵Jeremy Allison1-0/+1
-> NT STATUS maps. Fixes problem with disk full returning incorrect error. Jeremy. (This used to be commit 16fcbf3c1ccf1d704765653f68395dd596c0d841)
2002-01-16Added CIFS UNIX extension code to client.Jeremy Allison1-0/+164
Jeremy. (This used to be commit 794c3e2c76aae57d054e46b185def104ca02977c)
2002-01-16Merge of name_status_find() debugs.Tim Potter1-5/+18
(This used to be commit cfac669017afa763100e335d1516fbed18049e00)
2002-01-14Removed fprintf(stderr, ...); calls which should not be present in libraryTim Potter1-4/+0
functions. (This used to be commit e69a22290e5c923f31223906461df4874e3b2aac)
2002-01-12Many thanks to Alexander Bokovoy <a.bokovoy@sam-solutions.net>.Andrew Bartlett1-0/+152
This work was sponsored by Optifacio Software Services, Inc. Andrew Bartlett (various e-mails announcements merged into some form of commit message below:) This patch which adds basics of universal groups support into Samba 3. Currently, only Winbind with RPC calls supports this, ADS support requires additional (possibly huge) work on KRB5 PAC. However, basic infrastructure is here. This patch adds: 1. Storing of universal groups for particular user logged into Samba software (smbd/ two winbind-pam methods) into netlogon_unigrp.tdb as array of uint32 supplemental group rids keyed as DOMAIN_SID/USER_RID in tdb. 2. Fetching of unversal groups for given user rid and domain sid from netlogon_unigrp.tdb. Since this is used in both smbd and winbindd, main code is in source/lib/netlogon_uingrp.c. Dependencies are added to AUTH_OBJ as UNIGRP_OBJ and WINBINDD_OBJ as UNIGRP_OBJ. This patch has had a few versions, the final version in particular: Many thanks to Andrew Bartlett for critics and comments, and partly rewritten code. New: - updated fetching code to changed byte order macros - moved functions to proper namespace - optimized memory usage by reusing caller's memory context - enhanced code to more follow Samba coding rules Todo: - proper universal group expiration after timeout (This used to be commit 80c2aefbe7c1aa363dd286a47d50c5d8b4595f43)
2002-01-11Same fix as went into 2.2 (I'm waiting for jerry to finish some code).Jeremy Allison9-62/+62
Jeremy. (This used to be commit 01ff6ce4963e1daff019f2b936cef218e1c93f67)
2002-01-11fixed a crash bug in domain auth caused by an uninitialised nt_statusAndrew Tridgell1-0/+2
(This used to be commit 0b0b937b58f4bf4e005fb622f0db19175fc46a47)
2002-01-11cope with direct IP addresses in resolve_name()Andrew Tridgell1-0/+5
(This used to be commit 73a59170e6fab3b0f91938a74302750915a04a7a)
2002-01-11Fix up 'net ads join' to delete and rejoin if the account already exists.Andrew Bartlett1-1/+1
This fixes up a problem where a machine would join (or downgrade by trust password change) to NT4 membership and not be able to regain full ADS membership until a 'net ads leave'. Andrew Bartlett (This used to be commit ab8ff85f03b25a0dfe4ab63886a10da81207393c)
2002-01-11make sure resolve_name() only returns valid IP addressesAndrew Tridgell1-4/+13
this is actually a workaround for old broken nmbd daemons, especially from Samba 2.0 (This used to be commit 12021a8de6a1dc2e43cc62f094a57c57283dfaf4)
2002-01-09Merge from appliance-head:Tim Potter1-4/+72
- put in some level 10 debugs so we can see what internal_resolve_name() is doing - remove duplicates from returned ip list of internal_resolve_name() (This used to be commit 08d2bcef1a4fc77d28bc0fa9e4ff5f3131cedea5)
2002-01-07Converted getprinterdriver to WERROR - it always returns dos error 6Tim Potter1-54/+64
(invalid handle) though. )-: (This used to be commit 7bfd1f35e4e194f8a2f07046e4a6c005c256c05b)
2002-01-06Converted enumprinters and enumports cli functions to return WERRORs.Tim Potter1-106/+129
Make the offered and needed buffer size into parameters. (This used to be commit 9d9e7fb74d420913cda1c592765b498fd64384f0)
2002-01-06Check for winbind separator in user name for cli_session_setup()Tim Potter1-1/+2
Patch from Alexander Bokovoy <a.bokovoy@sam-solutions.net> (This used to be commit 6c42bf208976ed3020e57efff6281f984d9fe893)
2002-01-06spoolss rpc client cleanup:Tim Potter1-56/+60
- converted OpenPrinterEx and ClosePrinter to WERROR instead of NT_STATUS - doc (This used to be commit 248d114f856f1adb76c903b683e0927530771443)
2002-01-06Define a rpc_client doc group.Tim Potter1-0/+3
(This used to be commit 87bc0a71ecb0fc047fec5e0d240045fab09dd5d0)
2002-01-06Minor doc cleanups.Tim Potter1-2/+2
(This used to be commit 5c8f6be290e78c4e72c821abdc9f06b7150e68e7)
2002-01-06Added a get_dos_error_msg() function to mirror the get_nt_error_msg()Tim Potter1-0/+11
One day I'll get around to refactoring the DOS error handling so it mirrors the NT error handling code. (This used to be commit f4535721d350f3068e8dfb612331eb609ea03da0)
2002-01-06DOS error 31 is ERRgeneral, General Failure. This is the WERROR equivalentTim Potter1-1/+1
to NT_STATUS_UNSUCCESSFUL according to AB's funky new error map. (This used to be commit 9c968fbb017d3369ac207e65348a9a22dbed0213)
2002-01-05fixed another DATA_BLOB constructorAndrew Tridgell1-6/+1
(This used to be commit c6affae4bf749a67c90468702eb6d4eeb97a4363)
2002-01-05simple fix for creating blank data blobsAndrew Tridgell1-3/+1
(This used to be commit 08bb2dfec2ca0282e9268d09da2b966d3bdf493a)
2002-01-05Add a comment on how this error map was derrived.Andrew Bartlett1-0/+22
This applies only to the NT->Dos map, I'm still trying to come up with a way to do the reverse. (This used to be commit 323dd422bd4bdeeee72c9200821e28f86d3072c8)
2002-01-05Add a touch of constAndrew Bartlett1-1/+1
(This used to be commit b2af4372b1dac2e8f283184191fbb0231409a625)
2002-01-03Update the NT_STATUS -> DOS error table.Andrew Bartlett2-407/+430
This new table is rather different to the old one (see diff posted to the list for a sorted list of differences) and needs a *lot* of testing. It does however seem to line up much better with what NT is using, as exampled by the change to the OBJECT_NAME_COLLISION DOS error, it now matches win2k where it didn't before. I can't see any critical errors we now get wrong, and I know that the auth errors are correct as per my on-the-wire observations. This table was produced (and I hope to comment this better later) by using the ERRMAPEXTRACT smbtorture tool, a Win2k domain member and the 'name_to_ntstatus' auth module on the HEAD PDC. This module returned the username as the error, and the NT box was forced to give me a dos error becouse thats all I negotiated on that connection. Hence the map. Andrew Bartlett (This used to be commit a855dfb2e0b899d03087860e5462c2aed3ca4cad)
2002-01-03Initialise result on success in cli_spoolss_enum_printers() so we don't getTim Potter1-0/+2
stuck in an infinite loop. (This used to be commit fe1fb6589a0a4b4cff7a0ee0267f6e09e10e2a85)
2002-01-03The werror<->nt status code map has changed and has broken all the spoolssTim Potter1-7/+7
commands in rpcclient. Replacing ERROR_INSUFFICIENT_BUFFER with NT_STATUS_BUFFER_TOO_SMALL fixes it. Yay! I always thought the caller (i.e cmd_spoolss.c) should take care of the whole requested/needed buffer size thingy though... (This used to be commit 6c950db05a2772f11b20cc13c65a123ea8b878c2)
2002-01-01This brings the NT->DOS error mapping into better line with what NT does.Andrew Bartlett1-2/+2
I'll post the changes to the actual map to the list for comment, but this fixes the 'unknown' case. Andrew Bartlett (This used to be commit 024843a2cedb0b9f06a3351c5838caea372b6c5c)
2002-01-01Add a function to convert 'NT_STATUS...' strings back into their actual errorAndrew Bartlett1-0/+16
code. Andrew Bartlett (This used to be commit f0089b089b319009576bb39a076397bb44aff628)
2002-01-01Add a specialised version of tpot's libsmb samlogon code for use withAndrew Bartlett1-0/+86
presupplied challange-response pairs, and only using the 'network' version. This will be used to move the auth subsystem over to a libsmb (rather than rpc_client) base. Andrew Bartlett (This used to be commit fe9d77791583737320f8c7560861168df7388c2f)
2001-12-31Ensure the output cli can't have spurious values if the connection fails...Andrew Bartlett1-1/+7
(This used to be commit 2d1612dd3560bb5ef35fa1eeee00e3d7976bcd62)
2001-12-31Fix up the comment in the copyright headerAndrew Bartlett1-2/+1
(This used to be commit 45042bef7cdede6f991572677654903bbf7d9144)
2001-12-30util_sid.c - respect a const variabile (addedd strdup)Simo Sorce1-3/+2
cli_reg.c - indentation pdb_ldap.c - some checks on init fns parameters pdb_tdb.c - some checks on init fns parameters + make sure we close the db on failure (This used to be commit 49f5cb7a3df6d673f86e6769319aa657e30d8380)
2001-12-30Finish idra's cleanup of the RPC remote shutdown code.Andrew Bartlett1-3/+2
(This used to be commit 79031b68ce6bdf882d9c9bd4f3310f597e0c1fda)
2001-12-21- handle kerberos session setup reply with broken null terminationAndrew Tridgell1-4/+5
- don't display Domain=[] for auth protocols that don't give us a domain (This used to be commit 20368455ea59e6e9b85632848bbe92069e7b0f38)