summaryrefslogtreecommitdiff
path: root/source3/rpc_server
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r13316: Let the carnage begin....Gerald Carter9-733/+1129
Sync with trunk as off r13315 (This used to be commit 17e63ac4ed8325c0d44fe62b2442449f3298559f)
2007-10-10r13293: Rather a big patch I'm afraid, but this should fix bug #3347Jeremy Allison6-32/+32
by saving the UNIX token used to set a delete on close flag, and using it when doing the delete. libsmbsharemodes.so still needs updating to cope with this change. Samba4 torture tests to follow. Jeremy. (This used to be commit 23f16cbc2e8cde97c486831e26bcafd4ab4a9654)
2007-10-10r13176: Fix show-stopper bug for 3.0.21b where 4 leg NTLMSSP SPNEGOJeremy Allison1-1/+24
auth was not generating the correct auth header on the 4th packet. This may fix a lot of Windows client complaints and is essential for release. Jeremy. (This used to be commit 48dd8c732b890e3fd3d8e80ace765487601cfb26)
2007-10-10r13147: Raise creds_server_step fail log messages to debug level 2.Jeremy Allison1-3/+3
These can happen in normal operation (I think - not 100% sure) and don't want to alarm admins. Jerry please add this to 3.0.21b. Jeremy. (This used to be commit 47178b1b5ad06905f345a0f6b6267701d8aefddb)
2007-10-10r13138: old fix I forgot to commitSimo Sorce1-2/+5
need to access info when using the ldap backend (This used to be commit 80c0625667f28253e9b6f1ac1a5c88aa8261f9b0)
2007-10-10r13086: hooking max connections into 'add share' as well (although the WinXP ↵Gerald Carter1-6/+13
UI doesn't give you a way to set the value on add (This used to be commit e6afdf1df568921c82ce85fdce9456674c3a9a75)
2007-10-10r13085: hook the max connections spin box in the share properties MMC pluginGerald Carter1-10/+16
dialog to the 'max connections' smb.conf parameter. Also added the max uses int from the SHARE_INFO_2 structure to the 'modify share command' (This used to be commit af68748baae6d2e5ef850c16622d5424fd303ee7)
2007-10-10r13082: revert an accidentally commited patch (still in progress)Gerald Carter1-11/+8
(This used to be commit e43775fb3156bf29e4e412f01ad2d731aa866323)
2007-10-10r13081: correct fix for the segv in nmbd caused by a double free on namerec.Gerald Carter1-8/+11
(This used to be commit c908dbc4b260bac72cbc6d25f4728359a6ec8259)
2007-10-10r12935: After discussion with Volker fix bug #3397 using a variant of the ↵Alexander Bokovoy1-2/+51
patch by Alex Deiter (tiamat@komi.mts.ru). Introduces level 9 of getuserinfo and allows to successfully install MS SMS2003 on a member of a Samba domain. Also added support for this level in rpcclient. The code for infolevel 9 is modelled upon Samba-TNG by Alex Deiter. Jerry, we need this in 3.0.21b. (This used to be commit 93461646ce2ad6e2f8b11d40ce98722d56a83b43)
2007-10-10r12916: use rpcstr_pull() instead of unistr_to_ascii() when validating share ↵Gerald Carter1-7/+3
names (This used to be commit c08bc30698eac2f3f5dd8257b4fd7c3e23e6de39)
2007-10-10r12915: protect against changing the SCM security descriptorGerald Carter1-0/+5
(This used to be commit 5842da99681c15437c11e9925dec24c8c0e3708a)
2007-10-10r12914: adding query/set ops for security descriptors on services.Gerald Carter2-1/+143
(This used to be commit cefd2d7cb6140b068d66e2383e9acfa4c3c4b4c7)
2007-10-10r12262: * patch from Brian Moran to fix segv in eventlogadm when not eventlogsGerald Carter1-0/+2
are listed in smb.conf * initialize the local group description in set_alias_info() (This used to be commit 58f8b42069a69c0b61da2609e5706a6c0d512e09)
2007-10-10r12224: adding more characters to the invalid share name stringGerald Carter1-1/+1
(This used to be commit e461143639889da78cd4de47df40ac59a5a758a4)
2007-10-10r12177: last of outstanding patches in my queue to deal with MMC.Gerald Carter1-5/+41
Validate the share name and fail when trying to creating a share with bad characters. (This used to be commit 174fe494f9cbec3386ed687007e137fa7064373d)
2007-10-10r12173: doing some service control workGerald Carter1-1/+12
* Add a few new error codes for disabled services * dump some more details about service status in 'net rpc service' * disable the WINS and NetLogon services if not configured in smb.conf Still trying to figure out how to disable the start button on the NetLogon and WINS services. (This used to be commit c0f54eeebc84ec9fab63c5b105511762bcc136be)
2007-10-10r12163: Change lookup_sid and lookup_name to return const char * instead of ↵Volker Lendecke1-3/+4
char *, use a temporary talloc_ctx for clarity. Volker (This used to be commit b15815c804bf3e558ed6357b5e9a6e3e0fac777f)
2007-10-10r12133: Fix an uninitialized variable in new code in rpc_server/srv_samr_nt.c.Volker Lendecke1-5/+8
Fix winbind_lookup_name for the local domain, ie for aliases on a member server. Volker (This used to be commit 4ba50c823e8d61f87ab5627f15e826e73e45ffcc)
2007-10-10r12051: Merge across the lookup_name and lookup_sid work. Lets see how the ↵Volker Lendecke2-114/+153
build farm reacts :-) Volker (This used to be commit 9f99d04a54588cd9d1a1ab163ebb304437f932f7)
2007-10-10r12043: It's amazing the warnings you find when compiling on a 64-bitJeremy Allison6-38/+42
box with gcc4 and -O6... Fix a bunch of C99 dereferencing type-punned pointer will break strict-aliasing rules errors. Also added prs_int32 (not uint32...) as it's needed in one place. Find places where prs_uint32 was being used to marshall/unmarshall a time_t (a big no no on 64-bits). More warning fixes to come. Thanks to Volker for nudging me to compile like this. Jeremy. (This used to be commit c65b752604f8f58abc4e7ae8514dc2c7f086271c)
2007-10-10r11964: rename flag to password_properties in SAM_UNK_INFO_1 because that's whatGünther Deschner1-1/+1
it is. (SAM_UNK_INFO_1 should get a better name as well). Guenther (This used to be commit d94aaeb625c39b6205fe61c274aed57b1399bafc)
2007-10-10r11950: If we got a connection oriented cancel pdu we would spin processing it.Jeremy Allison2-3/+127
Fix that, and also add in comments for all possible CL and CO PDU types. Make sure we process them correctly. Jeremy. (This used to be commit 672113a627aa9060795871bc2ea3a02e696d7d7d)
2007-10-10r11936: Fix bug in returning remote time found by Thomas Bork <tombork@web.de>.Jeremy Allison1-1/+4
get_time_zone() was overwriting static buffer returned by gmtime(). Lars - this is a mandatory fix for the next patch... Jeremy. (This used to be commit 68d03a7a74738ce62e7531127aa4533147217e6d)
2007-10-10r11927: No users or groups to return in BUILTIN domain.Jeremy Allison1-0/+14
Jeremy. (This used to be commit 908e671c75f78b87fe0ee9129f0aca004565c407)
2007-10-10r11924: Added Volkers's (C) to srv_samr_nt.c, removed separate "builtin"Jeremy Allison1-25/+51
search enumeration, fixed count of groups and users to return zero if we're getting domain info on the builtin domain (need to fix the enumgroup and enumuser calls also). Added count_sam_aliases to return the correct alias count. Need to push the SID arg down into the group mapping interface so we only return the correct aliases. Upped passdb version numer for Volkers changes. SAM-MYSQL guys - you will need to fix your backend now. More tests needed. Jeremy. (This used to be commit b53d5cd565b05b0595979efba6176d0cafc8cb03)
2007-10-10r11923: Add samr_lookup_rids for the builtin domain. Doing it this way feels ↵Volker Lendecke1-8/+0
a bit wrong, but so far we don't have proper multi-domain support in passdb yet... Volker (This used to be commit c917cfc320f0250d23fda3525a7632bc01643707)
2007-10-10r11922: Looks bigger than it is: There's no point in allocating arrays inVolker Lendecke1-2/+2
samr_lookup_rids twice. It was done in the srv_samr_nt.c code as well as in the pdb module. Remove the latter, this might happen more often. Volker (This used to be commit 57f0cf8cdd6928f4759036e5dd53d41736aa910d)
2007-10-10r11921: samr_open_domain can only open "our" domain and BUILTIN.Volker Lendecke1-0/+5
Volker (This used to be commit 049920ce4f78723bc884c46b2ee4ef22f25c482c)
2007-10-10r11919: The generic mappings in srv_samr_nt.c are only used there -- make themVolker Lendecke1-5/+25
static. One long overdue simplification: Change local_lookup_sid to local_lookup_rid its responsible for "our" domain only, in fact it checked for it. Volker (This used to be commit 35ba5e083cddfa5ddba5ad84233262fadfbe87b2)
2007-10-10r11918: Remove two unused variablesVolker Lendecke1-2/+0
(This used to be commit 5524d662954165eef3fdd15986fe0b4de09180d7)
2007-10-10r11917: Move nt_token_to_group_list to srv_netlog_nt.c. srv_util.c is empty now.Volker Lendecke2-29/+29
Volker (This used to be commit ae4ffc1cfb745a756d047c35f947f80acf4b0e55)
2007-10-10r11915: Remove unused extern declarationsVolker Lendecke1-4/+0
(This used to be commit 3c35fb642a187b785816bb8cbb3573df9612a9f8)
2007-10-10r11898: Add a missing become_root().Volker Lendecke1-0/+7
Volker (This used to be commit efb7576d4e970e3cbb4621ebd754d329eec58b5a)
2007-10-10r11865: The only way to stop multiple LDAP searches is to agressively cacheJeremy Allison1-30/+36
results. We now cache them for 10 seconds, down from 30 seconds (however each re-use will refresh the idle timeout). Any set calls will flush the cache. Jeremy. (This used to be commit c9a0720f552719eb77a2c72fc2e942de52fbf1d6)
2007-10-10r11860: BUG 3156: don't use find_service() when explicitly looking for a ↵Gerald Carter1-14/+16
printer as the username map might get in the way (This used to be commit 46bf28c81c27dfdc412318a83bf565211a58a47d)
2007-10-10r11859: Another place where the SE_GROUP constants read better then "7".Günther Deschner1-1/+1
Guenther (This used to be commit 4c4b2096459ffa6ca0130f1259499933e3182d47)
2007-10-10r11856: Replace unknown1 with group_attr.Günther Deschner1-1/+1
Can anyone remember why we initialize groups only with 0x03 instead of 0x07 ? Guenther (This used to be commit 3282c7c458d390547fbaca44821eff376e8f9aaa)
2007-10-10r11793: Fix the SAMR cache so it works across completely insaneJeremy Allison2-135/+407
client behaviour (ie.: open pipe/open SAMR handle/enumerate 0 - 1024 close SAMR handle, close pipe. open pipe/open SAMR handle/enumerate 1024 - 2048... close SAMR handle, close pipe. And on ad-nausium. Amazing.... probably object-oriented client side programming in action yet again. This change should *massively* improve performance when enumerating users from an LDAP database. Jeremy. (This used to be commit 8ce705d9cc1b6a79d710a10ff38f72a0f1006dda)
2007-10-10r11769: Looking at a performance problem enumerating accounts, wonderedJeremy Allison2-1/+87
if changing to support samr_connect5 might help so quickly coded it up. No it doesn't :-(. Don't merge this for 3.0.21 please. Jeremy. (This used to be commit bff1df678a8948d382f4555e83a1df23146a4b12)
2007-10-10r11762: fix my build breakageGerald Carter1-1/+2
(This used to be commit 9ee851630ec3443f27a61de6eaf222c74d2d064a)
2007-10-10r11761: * fix clearing of event logs by truncating the tdb.Gerald Carter2-77/+94
This feature got broken in some of the other updates. Now each open handle stores an pointer to an open tdb data structure (not the tdb pointer itself). Clearing can be done with a simple elog_close_tdb( elog, True ) to force a close and then calling elog_open_tdb( logname, True ) to force an tdb truncate. Permissions on existing tdbs are maintained which is important. * We don't currently handle backup. Haven't looked at the format of a backuped up eventlog to know what the deal is. (This used to be commit 2df34c9403446d12f1ceeac38cbda5d3ba805b02)
2007-10-10r11760: fix sequential reads in the eventlog; event viewer is behaving ↵Gerald Carter1-81/+105
better now as well but needs more testing (This used to be commit ba2f94aeae1f8e69d53fc360785adf222a8c9c6e)
2007-10-10r11617: fix typoGerald Carter1-1/+1
(This used to be commit 37d2bf02f37f6d1b5bac9523f085c00625722761)
2007-10-10r11573: Adding Andrew Bartlett's patch to make machine accountJeremy Allison1-1/+4
logons work if the client gives the MSV1_0_ALLOW_SERVER_TRUST_ACCOUNT or MSV1_0_ALLOW_WORKSTATION_TRUST_ACCOUNT flags. This changes the auth module interface to 2 (from 1). The effect of this is that clients can access resources as a machine account if they set these flags. This is the same as Windows (think of a VPN where the vpn client authenticates itself to a VPN server using machine account credentials - the vpn server checks that the machine password was valid by performing a machine account check with the PDC in the same was as it would a user account check. I may add in a restriction (parameter) to allow this behaviour to be turned off (as it was previously). That may be on by default. Andrew Bartlett please review this change carefully. Jeremy. (This used to be commit d1caef866326346fb191f8129d13d98379f18cd8)
2007-10-10r11511: A classic "friday night check-in" :-). This moves muchJeremy Allison1-3/+3
of the Samba4 timezone handling code back into Samba3. Gets rid of "kludge-gmt" and removes the effectiveness of the parameter "time offset" (I can add this back in very easily if needed) - it's no longer being looked at. I'm hoping this will fix the problems people have been having with DST transitions. I'll start comprehensive testing tomorrow, but for now all modifications are done. Splits time get/set functions into srv_XXX and cli_XXX as they need to look at different timezone offsets. Get rid of much of the "efficiency" cruft that was added to Samba back in the day when the C library timezone handling functions were slow. Jeremy. (This used to be commit 414303bc0272f207046b471a0364fa296b67c1f8)
2007-10-10r11451: Fix -O1 "might be using uninitialized" errors.Jeremy Allison1-1/+1
Jeremy. (This used to be commit cab76c3c33883aad444eefb6562ab1b27d9ca88a)
2007-10-10r11433: Fix for bug #3223 - ensure we're root before doingJeremy Allison1-5/+53
any potential lib/smbldap.c calls. Jeremy. (This used to be commit 915cfb48f08b3748e22e68ed028eaca6d558cbad)
2007-10-10r11332: eventlog API uses NTSTATUS, not WERROR for return codesGerald Carter1-34/+33
(This used to be commit f5f40633bc3f641a0fef4934375d0d829899b0d7)
2007-10-10r11292: Missed merge from Samba 2.2 many years ago....Gerald Carter1-5/+0
Don't count open pipes in the num_files_open on a connection. conn_idle_all() handles this by looking for open rpc handles If there are no open handles, we can close the IPC$ share. (This used to be commit 747fba4dbf06c42495c430cd78c1cded3445f821)