Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-10-12 | libcli/security Provide a common, top level libcli/security/security.h | Andrew Bartlett | 15 | -9/+15 | |
This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104 | |||||
2010-10-03 | s3: Remove talloc_autofree_context from pdb_interface | Volker Lendecke | 1 | -1/+1 | |
None of the pdb backends have special destructors that need to be run at program exit. | |||||
2010-09-27 | s3-waf: rework CLDAP and LIBCLI_LDAP subsystems. | Günther Deschner | 1 | -0/+1 | |
Guenther | |||||
2010-09-27 | s3-waf: move pdb subsystem to pdb/wscript_build. | Günther Deschner | 1 | -0/+48 | |
Guenther | |||||
2010-09-26 | s3: Remove talloc_autofree_context() from guest_user_info() | Volker Lendecke | 1 | -1/+2 | |
pwd is freed a few lines down | |||||
2010-09-26 | s3: Remove talloc_autofree_context() from lookup_unix_user_name() | Volker Lendecke | 1 | -1/+1 | |
pwd is freed in this routine immediately | |||||
2010-09-26 | s3: Remove talloc_autofree_context() from pdb_init_ads() | Volker Lendecke | 1 | -1/+1 | |
2010-09-20 | s3: Replace sid_binstring and sid_guidstring with PIDL-based alternatives | Andrew Bartlett | 1 | -10/+11 | |
This reduces the manual marshalling of these structures by removing the duplication here. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-09-20 | s3-util_sid: use shared dom_sid_compare_auth and dom_sid_equal_X functions. | Günther Deschner | 9 | -17/+26 | |
Guenther | |||||
2010-09-11 | s3-auth Change type of num_sids to uint32_t | Andrew Bartlett | 1 | -2/+3 | |
size_t is overkill here, and in struct security_token in the num_sids is uint32_t. This includes a change to the prototype of add_sid_to_array() and add_sid_to_array_unique(), which has had a number of consequnetial changes as I try to sort out all the callers using a pointer to the number of sids. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org> | |||||
2010-08-30 | s3-passdb: Try to unlock the account if it is locked out. | Andreas Schneider | 1 | -10/+53 | |
Signed-off-by: Simo Sorce <idra@samba.org> | |||||
2010-08-30 | s3-passdb: Added a pdb_try_account_unlock function. | Andreas Schneider | 1 | -0/+74 | |
The function checks if the account has been autolocked. If we have a lockout_duration and a bad password time it checks if we can unlock the account. Signed-off-by: Simo Sorce <idra@samba.org> | |||||
2010-08-26 | s3-build: use dbwrap.h only where needed. | Günther Deschner | 5 | -0/+5 | |
Guenther | |||||
2010-08-26 | s3-idmap: only include idmap headers where needed. | Günther Deschner | 2 | -0/+2 | |
Guenther | |||||
2010-08-26 | s3-build: only include nsswitch header where needed. | Günther Deschner | 1 | -0/+1 | |
Guenther | |||||
2010-08-26 | s3-build: only include memcache.h where needed. | Günther Deschner | 2 | -0/+2 | |
Guenther | |||||
2010-08-14 | s3:pdb_ldap: move some code in ldapsam_create_dom_group() | Michael Adam | 1 | -22/+25 | |
to make the flow more similar to ldapsam_create_user(). This prepares for calling winbind_sid_to_gid() instead of winbind_allocate_gid(): we need the group_sid for this... Michael | |||||
2010-08-06 | s3-passdb: include samr.h where needed. | Günther Deschner | 3 | -0/+3 | |
Guenther | |||||
2010-08-05 | s3-secrets: only include secrets.h when needed. | Günther Deschner | 8 | -0/+8 | |
Guenther | |||||
2010-07-11 | s3: [ug]id_to_unix_... can not fail | Volker Lendecke | 1 | -4/+12 | |
Remove some silly failure checks | |||||
2010-07-06 | s3:pdb_ldap: change LDAP password before samba password hashes | Björn Jacke | 1 | -33/+34 | |
this way we can catch up with password change refuses from ldap password policy overlays and abort the password change early. Thanks to Andy Hanton <andyhanton@gmail.com> for the initial patch. | |||||
2010-07-06 | s3: Fix another aspect of bug 7262 and make paged results work again | Volker Lendecke | 1 | -4/+4 | |
2010-07-05 | s3: Make talloc_attrs() static | Volker Lendecke | 1 | -1/+1 | |
2010-07-01 | s3-libads: only include libds flags where needed. | Günther Deschner | 1 | -0/+1 | |
Guenther | |||||
2010-06-28 | s3-passdb: Make sure dn is initialized and don't free it. | Andreas Schneider | 1 | -3/+1 | |
dn is just a pointer to a memory which hasn't been duplicated. Found by clang-analyzer. | |||||
2010-06-28 | s3-passdb: Make sure we don't call free on a garbage pointer. | Andreas Schneider | 1 | -1/+1 | |
Found by clang-analyzer. | |||||
2010-06-28 | s3-passdb: Make sure that we don't assign garbage. | Andreas Schneider | 1 | -1/+1 | |
2010-06-10 | s3: Fix EnumDomainAliases when no aliases are in LDAP | Volker Lendecke | 1 | -6/+4 | |
We used to return NT_STATUS_ACCESS_DENIED, now we just return 0 entries, just like W2k8 does. usrmgr.exe was pretty unhappy with the NT_STATUS_ACCESS_DENIED | |||||
2010-06-10 | s3:pdb_ldap: fix bug 7505 - init_sam_from_ldap stores group in sid2uid cache | Michael Adam | 1 | -1/+1 | |
2010-06-10 | s3-passdb: Fix typo in comment. | Karolin Seeger | 1 | -1/+1 | |
Karolin | |||||
2010-06-09 | s3: Fix bug 7253 | Volker Lendecke | 1 | -1/+8 | |
acct_ctrl is 32 bit in LOGIN_CACHE, but "w" as a format specifier for tdb_unpack only writes 16 bits. Okay on x86, not okay on Solaris. Thanks to Vladimir.Marek@Sun.COM! Volker | |||||
2010-06-07 | s3:passdb Export function to calculate the proper primary group sid | Simo Sorce | 2 | -86/+132 | |
Don't keep it buried in passdb, this function need to be available for use in places where we do not want to construct an artificial samu struct just to play tricks. Signed-off-by: Andrew Bartlett <abartlet@samba.org> | |||||
2010-06-02 | s3: Allow previous password to be stored and use it to check tickets | Matthieu Patou | 1 | -4/+77 | |
This patch is to fix bug 7099. It stores the current password in the previous password key when the password is changed. It also check the user ticket against previous password. Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-31 | s3-build: only use ndr_security.h where needed. | Günther Deschner | 1 | -0/+1 | |
Guenther | |||||
2010-05-29 | s3:passdb Fix memory leak | Simo Sorce | 1 | -0/+1 | |
We were allocating this passwd structure on sampass, but never freeing it nor assigning it to unix_pw where it could be reused. | |||||
2010-05-21 | s3:dom_sid Global replace of DOM_SID with struct dom_sid | Andrew Bartlett | 15 | -221/+221 | |
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-21 | s3:passdb Remove use of uint8 uint16 and uint32 in favour of C99 types | Andrew Bartlett | 5 | -229/+229 | |
Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-18 | s3-passdb: move get_logon_hours_from_pdb() into samr server. | Günther Deschner | 1 | -23/+0 | |
Guenther | |||||
2010-05-18 | s3:split secrets.c to put machine account secrets in a new file | Andrew Bartlett | 2 | -366/+398 | |
This helps the s3compat effort by allowing these functions to be replaced by functions that query the cli_credentials and secrets.ldb APIs. Also, this changes a couple of DOM_SID to struct dom_sid along the way. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-18 | s3: Remove use of iconv_convenience. | Jelmer Vernooij | 2 | -11/+11 | |
2010-05-18 | s3-tldap: only include tldap when actually needed. | Günther Deschner | 1 | -0/+2 | |
Guenther | |||||
2010-05-18 | security: merge builtin rid tables. | Günther Deschner | 1 | -18/+18 | |
Guenther | |||||
2010-05-18 | s3-rpc_misc: clean out include/rpc_misc.h. | Günther Deschner | 5 | -13/+13 | |
Well known rids don't really belong into an rpc header, just use the ones defined in security.idl. Guenther | |||||
2010-05-08 | s3-passdb: moving account_pol.c into passdb. | Günther Deschner | 1 | -0/+453 | |
Guenther | |||||
2010-04-29 | s3-pdb_ldap: fix memleak. | Günther Deschner | 1 | -2/+2 | |
Guenther | |||||
2010-04-28 | s3: Make a debug msg more readable | Volker Lendecke | 1 | -1/+1 | |
2010-03-25 | s3:passdb: avoid sid_to_gid() if the sid is "domain users" | Stefan Metzmacher | 1 | -3/+7 | |
If the call fails we would use the "domain users" sid anyway. metze | |||||
2010-03-25 | Fix some nonempty blank lines | Volker Lendecke | 1 | -3/+3 | |
2010-03-23 | s3-builtin: Add missing builtin groups. | Karolin Seeger | 1 | -0/+8 | |
Karolin | |||||
2010-03-23 | s3-builtin: Add some builtin groups. | Karolin Seeger | 1 | -1/+8 | |
Karolin |