summaryrefslogtreecommitdiff
path: root/source3/winbindd/winbindd.h
AgeCommit message (Collapse)AuthorFilesLines
2011-02-04s3-winbindd: let winbind try to use samlogon validation level 6. (bug #7945)Günther Deschner1-0/+1
The benefit of this that it makes us more robust to secure channel resets triggered from tools outside the winbind process. Long term we need to have a shared tdb secure channel store though as well. Guenther Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Feb 4 18:11:04 CET 2011 on sn-devel-104
2011-01-21s3:winbind: Fork multiple children per domainVolker Lendecke1-1/+1
This makes us scale better with many simultaneous winbind requests, some of which might be slow. This implementation breaks offline logons, as the cached credentials are maintained in a child (this needs fixing). So, if the offline logons are active, only allow one DC connection. Probably the offline logon and the scalable file server cases are separate enough so that this patch is useful even with the restriction.
2010-11-14Move error reporting of messaging context creation fail intoJeremy Allison1-1/+0
the daemons themselves. Allows client utilities to silently fail to create a messaging context due to access denied on the messaging tdb (which I need for the following patch). Jeremy.
2010-09-10s3/winbind: use mono time for startup timeout checkBjörn Jacke1-1/+1
2010-08-26s3-build: use talloc_dict.h only where needed.Günther Deschner1-0/+2
Guenther
2010-08-16s3:winbindd: remove rpc_pipe_client references from winbind_dual_ndr codeStefan Metzmacher1-1/+0
metze
2010-08-16s3:winbindd: add binding_handle to struct winbindd_childStefan Metzmacher1-0/+1
metze
2010-06-10s3:winbindd use common server context functionsSimo Sorce1-0/+3
2010-05-21s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett1-18/+18
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-05s3:winbindd: add DEBUG(10,...) for the end of each top levelStefan Metzmacher1-0/+1
That will hopefully make debugging a bit easier (at least for me). metze
2009-12-28s3: Pass netr_DomainTrustList instead of names and sids through ↵Volker Lendecke1-4/+1
(*trusted_domains)
2009-12-26s3: Replace IS_DOMAIN_OFFLINE by a functionVolker Lendecke1-5/+0
2009-12-26s3: winbindd_cli_state->getgrent_state is no longer usedVolker Lendecke1-11/+0
2009-12-23s3: Remove some unused codeVolker Lendecke1-2/+0
2009-09-22s3-winbindd: Fix Bug #6711: trusts to windows 2008 (2008 r2) not working.Günther Deschner1-0/+2
Winbindd should always try to use LSA via an schannel authenticated ncacn_ip_tcp connection when talking to AD for LSA lookup calls. In Samba <-> W2k8 interdomain trust scenarios, LookupSids3 and LookupNames4 via an schannel ncacn_ip_tcp LSA connection are the *only* options to successfully resolve sids and names. Guenther
2009-09-22s3-winbindd: add cm_connect_lsa_tcp().Günther Deschner1-0/+1
Guenther
2009-08-29s3:winbind: Add async wb_next_grentVolker Lendecke1-0/+8
2009-08-29s3:winbind: Convert the GETPWENT routines to the new APIVolker Lendecke1-1/+2
2009-08-29s3:winbind: Add async next_pwentVolker Lendecke1-0/+7
2009-08-29s3:winbind: Fix a bug found by RPC-SAMRVolker Lendecke1-0/+1
We need to enumerate passdb alias members Thanks to gd for bugging me :-)
2009-08-16s3:winbind: WINBIND_USERINFO -> wbint_userinfoVolker Lendecke1-16/+4
2009-08-05s3:winbind: Add NDR-based parent-child communication to winbindVolker Lendecke1-0/+1
2009-08-03Add some const to winbind_userinfoVolker Lendecke1-5/+5
2009-08-02Refactor 9b78af1f: Fix lookupname recursionVolker Lendecke1-1/+1
Pass a "flags" argument instead of the original winbind command down the name_to_sid chain. This way we are independent of the winbind commands and can take the decision at a much higher level
2009-07-31Fix some nonempty linesVolker Lendecke1-4/+4
2009-07-31Slightly restructure the async winbind request calling conventionVolker Lendecke1-2/+2
The main loop now allocates the response, this has to be done everywhere
2009-06-14Remove "winbindd_request" and "winbindd_response" from winbindd_cli_stateVolker Lendecke1-3/+1
This shrinks the memory footprint of an idle client by 5592 bytes to 60 bytes on my 32-bit box.
2009-06-14Make winbindd_cli_state->response a pointer instead of a struct memberVolker Lendecke1-1/+2
Same comment as in baa6084378e530b: This is just a preparatory checkin. Volker
2009-06-14Remove an unused struct member in winbindd_cli_stateVolker Lendecke1-1/+0
2009-06-14Avoid scanning the client list when a client exitsVolker Lendecke1-1/+0
2009-06-14Add an async wb request loopVolker Lendecke1-0/+2
2009-06-14Remove some unused codeVolker Lendecke1-11/+0
2009-06-14Convert the winbind parent->child communication to wb_reqtransVolker Lendecke1-2/+3
2009-06-14Convert the main winbind client communication to wb_reqtrans.cVolker Lendecke1-1/+1
2009-06-14Make winbindd_cli_state->request a pointer instead of a struct memberVolker Lendecke1-1/+2
In itself, this is pretty pointless. But in the next steps I'll convert the winbind internal communication to wb_reqtrans which allocates the request properly. This minimizes the later diff. Volker
2009-03-18s3: remove POLICY_HND.Günther Deschner1-2/+2
Guenther
2009-01-07Remove unused struct CLI_POLICY_HNDVolker Lendecke1-7/+0
2009-01-05s3:winbindd: rename fd_event => winbindd_fd_eventStefan Metzmacher1-9/+5
It's really confusing to have two versions of 'fd_event' metze
2009-01-05s3:winbindd: move WINBINDD_CCACHE_ENTRY and WINBINDD_MEMORY_CREDS to winbindd.hStefan Metzmacher1-1/+28
metze
2008-08-23winbindd: add event based machine password change.Günther Deschner1-0/+1
Guenther (This used to be commit 15b72d44cbde0b8a375d8ed3d045c40ae97ec05a)
2008-08-20Here is a re-working of the winbinddJeremy Allison1-0/+1
reconnect code to cope with rebooting a DC. This replaces the code I asked Volker to revert. The logic is pretty simple. It adds a new parameter, "winbind reconnect delay", set to 30 seconds by default, which determines how long to wait between connection attempts. To avoid overwhelming the box with DC-probe forked children, the code now keeps track of the DC probe child per winbindd_domain struct and only starts a new one if the existing one has died. I also added a little logic to make sure the dc probe child always sends a message whatever the reason for exit so we will always reschedule another connect attempt. Also added documentation. Jeremy. (This used to be commit 8027197635b988b3dcf9d3d00126a024e768fa62)
2008-08-12idmap rewriteVolker Lendecke1-0/+7
(This used to be commit 30a180f2fce8cf6a3e5548f6bba453272ba70b33)
2008-08-12Move the uid2sid cache to the parent winbind processVolker Lendecke1-0/+2
(This used to be commit 6e885aeabba2265a06b726f567cb14dde12c8ccb)
2008-07-11Revert "Convert idmap_cache to gencache"Volker Lendecke1-1/+0
This reverts commit 0bf0434f22b0ea46fda3ccc4dd612adbc88dd4f2. (This used to be commit cc536677735ecc318cbd2176ce53b124f44d85a0)
2008-07-05Convert idmap_cache to gencacheVolker Lendecke1-0/+1
(This used to be commit 0bf0434f22b0ea46fda3ccc4dd612adbc88dd4f2)
2008-06-26From Steve Danneman @ Isilon.Jeremy Allison1-1/+6
Attached is the companion patch to (037b9689d9042a398cb91e4628a82fcdfa913c21), which made handling of WINBINDD_LIST_GROUPS asynchronous. Because most all of the list_groups code was reusable, I abstracted it, and implemented both list_groups and list_users on top of it. On my large test domain a "wbinfo -u" call went from 70 seconds to 30 seconds with this patch. Plus, the parent process is no longer blocked from receiving new requests during that time. Steven Danneman | Software Development Engineer Isilon Systems P +1-206-315-7500 F +1-206-315-7501 www.isilon.com (This used to be commit 5188f2861137ff06d5399561d55d7d00c3a08644)
2008-05-13libwbclient: Abstract the DS_XXX flags for DsGetDcName().coffeedude1-0/+1
The wbcLookupDomainController() call supports a set of flags defined in wbclient.h. Add a mapping function between these flags and the original DS_XXX flags in order to prevent having to include the generated RPC headers in wbclient.h. (This used to be commit 31614cd5e08dd6389c66e6ddf9f2d5429c6ab033)
2008-03-19Merge dd9e0bea31751 from 3-0-ctdb -- use NetSamLogonEx when possibleVolker Lendecke1-0/+8
NetSamLogonEx has the advantage that it does not use the credential chain (This used to be commit cfceb063f559f8549b8f24ce347be213c89303b0)
2008-02-06Use rpccli_samr_QueryDomainInfo() in winbindd.Günther Deschner1-6/+6
Guenther (This used to be commit dd9fa33e968d4e641460fe1c6beb05dfe12fa918)
2008-01-29Remove include/rpc_ds.h and all references to it completly.Günther Deschner1-3/+3
Jerry, please have a look if you're fine with that. Guenther (This used to be commit beae25c808a3a03d645f247e9befcd05e3ecca2c)