Age | Commit message (Collapse) | Author | Files | Lines |
|
Volker
(This used to be commit 71906a5b4e4f93ebd4c27a0d22d74aad62e14924)
|
|
This patch catches up on the rest of the work - as much string checking
as is possible is done at compile time, and the rest at runtime.
Lots of code converted to pstrcpy() etc, and other code reworked to correctly
call sizeof().
Andrew Bartlett
(This used to be commit c5b604e2ee67d74241ae2fa07ae904647d35a2be)
|
|
(This used to be commit 067810ed4a38c567e64e683a24cdd405479b5ee1)
|
|
Original message:
This patch attemptes to clean up winbindd's mutex locking.
The current locking scheme in winbind is a complete mess - indeed, the
next step should be to push the locking into cli_full_connection(), but
I'll leave it for now.
This patch works on the noted behaviour that 2 parts of the connection
process need protection - and independent protection. Tim Potter did
some work on this a little while back, verifying the second case.
The two cases are:
- between connect() and first session setup
- during the auth2 phase of the netlogon pipe setup.
I've removed the counter on the lock, as I fail to see what it gains us.
This patch also adds 'anonymous fallback' to our winbindd -> DC connection.
If the authenticated connection fails (wbinfo -A specifed) - say that
account isn't trusted by a trusted DC - then we try an anonymous.
Both tpot and mbp like the patch.
Andrew Bartlett
(This used to be commit b5283c00a900393b83f0edb2785c5caf402404eb)
|
|
(This used to be commit 560deeb4ece9dd4a65e10b0aae20f8ab1fe0d24c)
|
|
the unix domain sockets used by winbindd (also solves FD_SETSIZE problem
in winbindd to boot !). Adds a "last_access" field to winbindd connections,
and will close the oldest idle connection once the number of open connections
goes over WINBINDD_MAX_SIMULTANEOUS_CLIENTS (defined in local.h as 200
currently).
Jeremy.
(This used to be commit 7a586552a3aeb4a26495f0965af4bd027456a011)
|
|
(This used to be commit df49463e62e4be7535485b668f00db287ff581f3)
|
|
(This used to be commit 8de62f7896a53084e87b95c013d8693214c8ab85)
|
|
- new kerberos code, allowing the account to change it's own password
without special SD settings required
- NTLMSSP client code, now seperated from cliconnect.c
- NTLMv2 client code
- SMB signing fixes
Andrew Bartlett
(This used to be commit 837680ca517982f2e5944730581a83012d4181ae)
|
|
winbindd build again.
(This used to be commit c4f46890fe7f0dc16520cd5ed0fd06dcd7682703)
|
|
(This used to be commit cd6ad1f13b481ab22d98993db3fa80ec43dc1c8c)
|
|
- setenv() replacement
- mimir's ASN1/SPNEGO typo fixes
- (size_t)-1 fixes for push_* returns
- function argument signed/unsigned correction
- ASN1 error handling (ensure we don't use initiailsed data)
- extra net ads join error checking
- allow 'set security discriptor' to fail
- escape ldap strings in libads.
- getgrouplist() correctness fixes (include primary gid)
Andrew Bartlett
(This used to be commit e9d6e2ea9a3dc01d3849b925c50702cda6ddf225)
|
|
(This used to be commit 606bb47f241d2916d039b38f48b50474a3e0dadc)
|
|
all cm_get_XX calls and their subsequent requests in a retry loop in case
we've temporarily lost connection to the DC. Makes winbindd more reliable.
Jeremy.
(This used to be commit 20798ac739682884b5c1340e3bd55a95eefb4b0f)
|
|
Needed to move to disk based i/o later.
Jeremy.
(This used to be commit a823fee5b41a5b6cd4ef05aa1f85f7725bd272a5)
|
|
(This used to be commit 5cfb30551a713caa3d69406450c1eac4541a30fa)
|
|
Jeremy.
(This used to be commit efc4b738aef08604947dcc1ab5c6383e9ee6d783)
|
|
Jeremy.
(This used to be commit 4af9e8052186f0d2e5ef10879990ec92dc7c5feb)
|
|
from HEAD. I had to do this for him as he was *so* tired, the poor
chap, plus he has this bad leg, plus the dog ate his homework etc. etc.
Jeremy.
(This used to be commit 1e752b48a12cdcf2cb6343705be83f304e5ee2b6)
|
|
- NTLMSSP over SPENGO (sesssion-setup-and-x) cleanup and code refactor.
- also consequential changes to the NTLMSSP and SPNEGO parsing functions
- and the client code that uses the same functions
- Add ntlm_auth, a NTLMSSP authentication interface for use by applications
like Squid and Apache.
- also consquential changes to use common code for base64 encode/decode.
- Winbind changes to support ntlm_auth (I don't want this program to need
to read smb.conf, instead getting all it's details over the pipe).
- nmbd changes for fstrcat() instead of fstrcpy().
Andrew Bartlett
(This used to be commit fbb46da79cf322570a7e3318100c304bbf33409e)
|
|
Jeremy.
(This used to be commit daf179bcd6297b525bfc644efb154734723f4d58)
|
|
Jeremy.
(This used to be commit ea4fe9baadd70e6fc22c5e33de66165895d2e42c)
|
|
(This used to be commit bf8bb62023bcd38e5bc53ef1ac2183360d6ff734)
|
|
(This used to be commit c8e77809adfb2ace18c219d9291651a4959bbcb7)
|
|
*sync up configure.in
*don't build torture tools in make all
*make sure to remove torture tools as part of make clean
(This used to be commit 0fb724b3216eeeb97e61ff12755ca3a31bcad6ef)
|
|
(This used to be commit 8bd91a50d4e743935196ca258d06a3e43392140d)
|
|
(This used to be commit 01757e8b510e5475c76423ffe5e3c16b2aca134e)
|
|
groups.
Jeremy.
(This used to be commit c3a779fc0d9be38f6aa2569c36916a76e1a04359)
|
|
include it in the struct. (Important becouse it currently has the same version
number as the one in HEAD, which also doesn't have this).
Andrew Bartlett
(This used to be commit 0d2da985906219d68e2558a840905a272803bfcc)
|
|
(This used to be commit a8db1b611d83bfd8dcf60f1e6d8fcbf57c798528)
|
|
warnings. (Adds a lot of const).
Andrew Bartlett
(This used to be commit 3a7458f9472432ef12c43008414925fd1ce8ea0c)
|
|
Jeremy
(This used to be commit 899d353a56f52a28f53386fabdb4bf8e0af637ca)
|
|
Jeremy.
(This used to be commit 339f4fe15efbf67157c8e61b98c6ea983e6b4674)
|
|
Jeremy.
(This used to be commit aa8439a49ec4b9f433745fefa1e769e45398f4df)
|
|
named. Ensure we can query them.
Jeremy.
(This used to be commit 09a218a9f6fb0bd922940467bf8500eb4f1bcf84)
|
|
(This used to be commit 0637f582fe1d41f8ef247e5989f84caa72162f05)
|
|
(This used to be commit 4277262c74ef16971658f53edd403b335542d9f2)
|
|
- null termination of winbind request fix
- bail out if we can't open winbind socket
(This used to be commit 102e490d683c0758a9798a3c15e748509690c95b)
|
|
server = DC1 *
(This used to be commit f49de4c5176bf635ac080e082fda412066b466c8)
|
|
90% fix for CR 1076. The password server parameter will no take things
like
password server = DC1 *
which means to contact DC1 first and the go to auto lookup if it
fails.
jerry
(This used to be commit 016ef8b36b30846311a5321803298f8e28719244)
|
|
(This used to be commit 58fa6bfee8ba35cc182c18c980e0a4040ddd7d09)
|
|
before reading smb.conf parameters, not after.
(This used to be commit 7bdaa03f2fc7ea6ef0f56f7c73b951c177d64a2e)
|
|
>must add one to the extra_data size to transfer the 0 string terminator.
>This was causing "wbinfo --sequence" to access past the end of malloced
>memory.
(This used to be commit a3c4f013d679c97dd56779c927884deae0c1027a)
|
|
domain)
(This used to be commit ff4b2411d146b72f5f578b2e78701f125fec8f08)
|
|
dashes of const. This is a rather large check-in, some things may break.
It does compile though :-).
Jeremy.
(This used to be commit f755711df8f74f9b8e8c1a2b0d07d02a931eeb89)
|
|
(This used to be commit 1175b62337f5c29954cd5e8dfdc2327c9c80748c)
|
|
(This used to be commit 9bba2199e3127c8a7bcb3143d962a6660c125d88)
|
|
(This used to be commit 856678d69fac9849c689c485fc727fca300eb152)
|
|
(This used to be commit 3810f13682617d043d3cffaafe8a7cb7125c4ecd)
|
|
Jeremy.
(This used to be commit faf92207e71980aaaad8b5487f5c2d6a60f7ddd1)
|