summaryrefslogtreecommitdiff
path: root/source3/nsswitch
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r22704: Implement three step method for enumerating domain trusts.Gerald Carter5-21/+319
(a) Query our primary domain for trusts (b) Query all tree roots in our forest (c) Query all forest roots in trusted forests. This will give us a complete trust topology including domains via transitive Krb5 trusts. We also store the trust type, flags, and attributes so we can determine one-way trusted domains (outgoing only trust path). Patch for one-way trusts coming in a later check-in. "wbinfo -m" now lists all domains in the domain_list() as held by the main winbindd process. (This used to be commit 9cf6068f1e0a1063d331af17aa493140497b96ef)
2007-10-10r22703: Convert winbindd_getgrgid() and winbindd_getgetpwnam()Gerald Carter1-113/+113
to use the same code path after we resolve the name/gid to a SID. Use the async lookupname/lookupsid interface. (This used to be commit d12b8147d6bd34fad680cb8705dc6d7bbea1db12)
2007-10-10r22702: Convert both lookup name and lookup sid to follow theGerald Carter2-31/+105
same heuristic. First try our DC and then try a DC in the root of our forest. Use a temporary state since winbindd_lookupXXX_async() is called from various winbindd API entry points. Note this will break the compile. That will be fixed in the next commit. (This used to be commit b442644bac2a7d5853440254257ca34a8e7c25de)
2007-10-10r22700: Add a simple wcache TRUSTDOM api for maintaing a completeGerald Carter2-1/+478
list of trusted domains without requiring each winbindd process to aquire this on its own. This is needed for various idmap plugins and for dealing with different trust topoligies. list_trusted_domain() patches coming next. (This used to be commit 2da62a3d965a9701e16e644fd6bc728b43f28489)
2007-10-10r22677: One line fix to make net idmap restore work againSimo Sorce1-0/+1
Jerry, please add this for 3.0.25 final (This used to be commit e04ca2d7f8ea2d4c70c2a35201a98c5ecd672d59)
2007-10-10r22675: Simo's patch for 0 size allocation. Still needJeremy Allison2-9/+13
to examine parse_misc.c fix. Jeremy. (This used to be commit 80d981265cd3bc9d73c5da3c514ec736e2dfa73a)
2007-10-10r22666: Expand kerberos_kinit_password_ext() to return NTSTATUS codes and makeGünther Deschner2-4/+6
winbindd's kerberized pam_auth use that. Guenther (This used to be commit 0f436eab5b2e5891c341c27cb22db52a72bf1af7)
2007-10-10r22647: Avoid leaking a full info3 structure on each winbindd cached login ↵Günther Deschner2-5/+5
by making netsamlogon_cache_get() return a talloc'ed structure. Guenther (This used to be commit 5b149967cc3ab68057db015e67b688c9b9577f0d)
2007-10-10r22646: segfault fix in idmap_ldap.c from 3_0_25Simo Sorce1-2/+8
(This used to be commit 565d7d0b18f18ba11f186667df95bc608a179efa)
2007-10-10r22643: Don't clear cached U/SID and UG/SID entries when we want to logon ↵Günther Deschner1-1/+8
offline. Guenther (This used to be commit 37f9f466fd05bb06d8539bdb2cb72a730c2af4f4)
2007-10-10r22636: Fix logic bug.Günther Deschner1-6/+6
We certainly don't want to crash winbind on each sucessfull centry_uint{8,16,32,64} read. Jeremy, please check :-) Guenther (This used to be commit bfcd10766bcac1d50f7624bbe5a72eca57b5e278)
2007-10-10r22633: Fix typo in debug message.James Peach1-1/+1
(This used to be commit 4c58b6b1946bf61b24cbdb3c331fee3d48a6b7d2)
2007-10-10r22590: Make TALLOC_ARRAY consistent across all uses.Jeremy Allison2-13/+24
That should be it.... Jeremy. (This used to be commit 603233a98bbf65467c8b4f04719d771c70b3b4c9)
2007-10-10r22589: Make TALLOC_ARRAY consistent across all uses.Jeremy Allison4-29/+57
Jeremy. (This used to be commit 8968808c3b5b0208cbad9ac92eaf948f2c546dd9)
2007-10-10r22553: Fix the buildVolker Lendecke2-2/+2
(This used to be commit 561f3c67f40ed6a983ebf170e4014b256ca71219)
2007-10-10r22542: Move over to using the _strict varients of the tallocJeremy Allison6-15/+15
calls. No functional changes. Looks bigger than it is :-). Jeremy. (This used to be commit f6fa3080fee1b20df9f1968500840a88cf0ee592)
2007-10-10r22511: Remove unused LDAPMessage.Günther Deschner1-3/+0
Guenther (This used to be commit 31a193b02a08d2323d93659105c0fd5650b33419)
2007-10-10r22507: Wrap the method of obtaining sockets to listen on.James Peach3-103/+128
(This used to be commit e027322b769b896184484155fef7c2ba247412a4)
2007-10-10r22473: Correct fix for setting a default compat tdb idmap backend.Gerald Carter1-29/+30
Previous code would always fill in "idmap backend = tdb" even if you defined idmap domains. My fault. I should have tested the original patch more before committing. (This used to be commit a60c3f6a5a92722552197f7ab133f2ec3af377f9)
2007-10-10r22466: Fix build warning.Günther Deschner1-1/+1
Guenther (This used to be commit d6f259e91862df043f14430a60e9d646e30fe632)
2007-10-10r22461: Use ranged LDAP queries in lookup_usergroups_member() and start to ↵Günther Deschner1-99/+75
optinmize lookup_groupmem(). In the later, at least try to avoid those massive LDAP dn_lookups by looking in the cache before. Guenther (This used to be commit eb1566869c5493f2a1d1ff9fcaaa45c143ad12a0)
2007-10-10r22447: Patch from Ying Li <ying.li2@hp.com> to default tdb idmapGerald Carter1-0/+8
plugin when neither idmap domains nor idmap backend have been defined. (This used to be commit 2fa12753da22551c9d5e6ca1bea95884e02ef7b2)
2007-10-10r22444: * Validate a SID before trying to convert it to a uid/gid via the publicGerald Carter1-3/+3
winbindd interface * Add nss_info/*so files to the RHEL/Fedora packaging (This used to be commit 1787fcb8c1199215fcec74472c727b8c8fbf5473)
2007-10-10r22430: Add SID validate to sid2uid() and sid2gid() public entry points in ↵Gerald Carter1-4/+81
winbindd (This used to be commit 0890cb941ed5d87a919edb5a896f331e900af007)
2007-10-10r22418: Support running under launchd. We abstract the method of obtainingJames Peach2-17/+104
sockets to listen on a little, because in the launchd case these are provided for us. We also add an idle timeout so that a daemon can exit after a period of inactivity. (This used to be commit fc8589a3371d396197fae508e563f814899c2beb)
2007-10-10r22417: Refactor the various daemon run-mode options to make the semanticsJames Peach1-20/+23
of the various flags explicit. (This used to be commit 19c929c6330a50f278ac322ac5fcb83d03734ea2)
2007-10-10r22402: Fix build warning.Günther Deschner1-1/+1
Guenther (This used to be commit bf9131fed30b3d6f80c41734c04450a1e6bcba5b)
2007-10-10r22393: fix cut&paste errorSimo Sorce1-1/+1
(This used to be commit 70878d698532aa8b0e151e7772894e251290186e)
2007-10-10r22392: Remove leftover potentially segfaulty code.Simo Sorce1-6/+5
Check we are online before actually trying to connect anywhere (This used to be commit ff5e0b2986d43de1e88c85783b451fcb9828d6a8)
2007-10-10r22390: Patchset sent to samba-technical to address the winbindGerald Carter5-164/+63
loop when allocating a new id for a SID: auth_util.patch Revert create_local_token() to the 3.0.24 codebase idmap_type.patch Have the caller fillin the id_map.xid.type field when resolving a SID so that if we allocate a new id, we know what type to use winbindd_api.patch Remove the WINBINDD_SIDS_TO_XIDS calls from the public winbindd interface for the 3.0.25 release idmap_rid.patch Cleanup the idmap_rid backend to not call back into winbindd to resolve the SID in order to verify it's type. (This used to be commit 3b24dae9e73b244540a68b631b428a4d0f57440b)
2007-10-10r22388: clearer message, thanks DavidSimo Sorce1-1/+1
(This used to be commit 7961476784713267efc19d305aa66c68275ccaa1)
2007-10-10r22348: 3_0 as wellSimo Sorce1-1/+1
(This used to be commit ad57434faf806a6ad27beb0f75b73d5389a35382)
2007-10-10r22343: Commit to 3_0 as well after adapting the patch.Simo Sorce7-204/+347
(tdb_delete_bystring instead of tdb_delete is used here) (This used to be commit ee40cead097ed2c005f5f80b24c9f681e054849a)
2007-10-10r22340: Fix another segfault in idmap_ldap.c caused by setting the iteratorGerald Carter1-1/+1
LDAPMessage * to NULL on each loop rotation. (This used to be commit 356dd0dd3a36a8f6061ba60f556e889de7c28140)
2007-10-10r22313: as discussed with simo:Stefan Metzmacher1-28/+4
remove the only usage of backup_tdb() in samba3. As backup_tdb() will go completely soon. metze (This used to be commit 363d1d676c568e10bbcbe2b95e422067a4740161)
2007-10-10r22298: move ZERO_*, ARRAY_SIZE and PTR_DIFF macros into libreplaceStefan Metzmacher1-12/+0
metze (This used to be commit 8a7d2e633b98aa9c73cf1f7d1369015b294cf2e1)
2007-10-10r22283: Remove very old bug where we assigned the online mode ofGerald Carter1-2/+0
the domain to queried to our own domain. (This used to be commit 2abeec576805b5e921b3606ab09ce9c1fd809566)
2007-10-10r22230: Let's just cast here, the 2 calls have different allocation mechanisms.Simo Sorce1-7/+9
We just let domname and name hang on the mem ctx until the call returns, and the context will be destroyed. Simo. (This used to be commit c38d8396c513d4c418f64b27a9f7c25757388674)
2007-10-10r22214: Fix incompatible pointer type warnings. Simo, please check and merge ↵Volker Lendecke1-1/+5
to 3_0_25 if appropriate. Volker (This used to be commit 6a4f6c5177b4837fe7a238f067abbc5739ab0812)
2007-10-10r22211: Don't return a value from void functions !Jeremy Allison1-1/+1
Jeremy. (This used to be commit 1dd8d3a723ac2262a45fcd717daef79bffbf30d5)
2007-10-10r22210: Fix typo in testing for non-centry entries.Jeremy Allison1-1/+1
Jeremy. (This used to be commit b89ecbcac651034d818a41d8a1d0c5e7313f37b8)
2007-10-10r22209: Fix the storage of time_t -> make it 64 bits (use theJeremy Allison2-14/+117
same load/store function as NTTIME). Add a version number string to the winbindd cache so we can tell if it needs upgrading. THIS WILL DELETE ANY EXISTING winbindd_cache.tdb on first startup regardless of offline auth status. Once this is done we're in good shape though. Jeremy. (This used to be commit c52c7f91af80d5fbb2574b5acf10e6afef3b0c7e)
2007-10-10r22207: Fill in the validation functions. Now to test...Jeremy Allison1-28/+73
Jeremy. (This used to be commit fc2b9e860ef9512eb074622e0ad134ff3f30bfe7)
2007-10-10r22206: Added boilerplate to be filled in for other validation functions.Jeremy Allison1-0/+163
Jeremy. (This used to be commit 9be463eb0cb4d65c40e35c504059289696419486)
2007-10-10r22205: Add some flesh to the bones of the cache validation code.Jeremy Allison1-59/+209
Jeremy (This used to be commit b773ea2c8a107344fc524b41a2c81ecc723bd9ec)
2007-10-10r22204: Workaround to quickly close bug #4508Simo Sorce3-6/+36
This hack makes thing work, but we will need to try again to make the getpw* calls fully async, that's the real fix. (This used to be commit 2552859b3d9e28d5f25b339f5d24a8d2dc36b46b)
2007-10-10r22202: Volker is clever :-). Use TDB_NOMMAP to prevent any wild pointerJeremy Allison1-1/+4
problems when validating the winbindd cache. Wish I'd have thought of that. Jeremy. (This used to be commit 6b0a8cbbb883b7041ed4b1f6c1ae90233921d154)
2007-10-10r22173: BUG 4491, 4501: Additional fixes for protecting againstGerald Carter2-45/+62
crashes in allocate_id(). BUG 4501: Fix segv in idmap_ad caused by resetting the entry iterator when parsing search results. (This used to be commit bd6ebbfb9fb9d95bdf41eab1fd134170fcf6b6bf)
2007-10-10r22159: BUG 4501 (second half of fix): Just disable theGerald Carter1-8/+8
uid/gid allocation if no idmap alloca backend has been defined and we are not using a 3.0.24 idmap backend compatible configuration. (This used to be commit 0b700456f45d2bdfe8538bcfd0fce8ec2b9c3adb)
2007-10-10r22158: BUG 4501 (partial): Fix a crash caused by not using theGerald Carter1-6/+16
nss_info_{rfc2307,sfu} plugin with idmap_ad. (This used to be commit f640f056bfbf1013d6b3df89632109011fc42361)
generated by cgit (git 2.34.1) at 2024-11-06 20:45:19 +0000