summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2009-08-29s3:winbind: Add an async dsgetdcname callVolker Lendecke9-3/+565
2009-08-29s3:winbind: Convert the GETPWENT routines to the new APIVolker Lendecke8-385/+281
2009-08-29s3:winbind: Add async next_pwentVolker Lendecke4-0/+164
2009-08-29s3:winbind: Add async fill_pwentVolker Lendecke3-0/+163
2009-08-29s3:winbind: Add async query_user_listVolker Lendecke12-5/+547
2009-08-29s3:winbind: simplify wb_seqnums_done a bitVolker Lendecke1-15/+24
2009-08-29s3:winbind: Make wb_seqnums.c update the winbind cache seqnumsVolker Lendecke1-1/+12
2009-08-29s3:winbind: Fix a bug found by RPC-SAMRVolker Lendecke8-47/+59
We need to enumerate passdb alias members Thanks to gd for bugging me :-)
2009-08-29s3:winbind: Fix a typoVolker Lendecke1-1/+1
2009-08-29s3:winbind: Rename wbint_GroupMembers to wbint_PrincipalsVolker Lendecke9-62/+62
2009-08-29s3:winbind: Rename wbint_GroupMember to wbint_PrincipalVolker Lendecke7-45/+44
2009-08-28s3: Add catia to the list of modules compiled by defaultAravind Srinivasan1-1/+1
Signed-off-by: Tim Prouty <tprouty@samba.org>
2009-08-28s3: Major revamp for catia vfs moduleAravind Srinivasan1-145/+837
This patch builds out catia to allow fully configurable mappings, including mappings from single byte to multi-byte characters. Additionally, a much more complete list of vfs operations are now covered. Signed-off-by: Tim Prouty <tprouty@samba.org>
2009-08-28s3: Add a new VFS op called SMB_VFS_TRANSLATE_NAMEAravind Srinivasan11-26/+138
This vop is designed to work in tandem with SMB_VFS_READDIR to allow vfs modules to make modifications to arbitrary filenames before they're consumed by callers. Subsequently the core directory enumeration code in smbd is now changed to free the memory that may be allocated in a module. This vop enables the new version of catia in the following patch. Signed-off-by: Tim Prouty <tprouty@samba.org>
2009-08-28s3-ldb: update dlinklist.h to match main copy (lib/util/dlinklist.h)Michael Adam1-6/+9
This also removes build warnings of redefined macros since it uses the embracing "#ifndef _DLINKLIST_H ... #endif". Michael
2009-08-28s3-ntlmssp: use generated ntlmssp code for debugging purpose.Günther Deschner2-1/+75
Guenther
2009-08-28s3-ntlmssp: add NDR helper routines for ntlmssp.Günther Deschner2-0/+189
Guenther
2009-08-28s3-ntlmssp: use interface constants in TargetInfo blob.Günther Deschner1-5/+5
Guenther
2009-08-28s3-ntlmssp: use NTLMSSP headers from IDL and remove duplicate constants.Günther Deschner4-48/+15
Guenther
2009-08-27s3:smbd: teach filename_convert() about fake files (2nd fix for bug #6642)Stefan Metzmacher1-0/+11
metze
2009-08-27s3:smbd: add is_fake_file_path() that takes only the raw path as stringStefan Metzmacher2-14/+23
metze
2009-08-27s3:streams: check for :$DATA only in the backend (fix bug #6642)Stefan Metzmacher3-5/+11
We need to allow "\\$Extend\\$Quota:$Q:$INDEX_ALLOCATION" to pass check_path(), so that the Quota Dialog works. metze
2009-08-27s3:error_map: make NTSTATUS -> errno -> NTSTATUS mapping consistent for ↵Stefan Metzmacher1-1/+1
NT_STATUS_INVALID_PARAMETER Why have we mapped EINVAL -> NT_STATUS_INVALID_HANDLE before? metze
2009-08-27s3-ntlmssp: remove trailing whitespace.Günther Deschner3-137/+137
Guenther
2009-08-27s3-schannel: remove remaining code that was using "struct dcinfo".Günther Deschner3-192/+0
Guenther
2009-08-27s3-credentials: remove unused code.Günther Deschner4-314/+1
Guenther
2009-08-27s3-schannel: upgrade old format schannel_store.tdb.Günther Deschner1-4/+9
Guenther
2009-08-27s3-netlogon: use shared credential and schannel storage infrastructure for ↵Günther Deschner3-196/+146
netlogon server. Guenther
2009-08-27s3-netlogon: add netr_creds_server_step_check() convenience wrapper.Günther Deschner1-0/+34
Guenther
2009-08-27s3-schannel: add simple wrappers to fetch and store schannel auth info.Günther Deschner4-1/+79
Guenther
2009-08-27s3-schannel: make open_schannel_session_store() public.Günther Deschner2-1/+2
Guenther
2009-08-27libcli/auth: add tdb backend for schannel state.Günther Deschner1-1/+3
Guenther
2009-08-27s3-build: add SCHANNEL_OBJ to Makefile.in.Günther Deschner1-2/+5
Guenther
2009-08-27s3:winbind: Convert WINBINDD_GETUSERSIDS to the new APIVolker Lendecke6-255/+130
2009-08-27s3:winbind: Fix a typoVolker Lendecke1-1/+1
2009-08-27s3:winbind: Remove the manual caching for the async wb_ functionsVolker Lendecke6-80/+15
The generic NDR-based cache in winbindd_dual_ndr.c replaces this.
2009-08-27s3:winbind: Some calls are not cacheableVolker Lendecke1-0/+19
2009-08-27s3:winbind: Factor out wcache_store_seqnum()Volker Lendecke2-19/+34
2009-08-27s3:winbind: Add a generic cache for NDR based parent-child requestsVolker Lendecke7-21/+157
2009-08-27s3:winbind: Factor out wcache_fetch_seqnumVolker Lendecke1-14/+39
2009-08-26s3/smbd: open the share_info.tdb on startup instead of tconxSteven Danneman3-1/+11
This is a small performance optimization. Instead of opening the tdb on every smb connection in the forked child process, we now open it in the parent and share the fd. This also reduces the total fd usage in the system.
2009-08-26s3/debug: make SPENGO OID list appear under one debug headerSteven Danneman1-1/+4
2009-08-26s3/winbindd: Remove unnecessary check for NULL SIDSteven Danneman2-8/+7
There's a known bug in some Windows implementations of DsEnumerateDomainTrusts() where domain SIDs are not returned for transitively trusted domains within the same forest. Jerry originally worked around this in the winbindd parent by checking for S-0-0 and converting it to S-1-0 in 8b0fce0b. Guenter later moved these checks into the child process in commit 3bdfcbac making the initial patch unecessary. I've removed it and added a clarifying comment to the child process. If ever this SID is needed we could add an extra DsEnumerateDomainTrusts() call in trusted_domains() as suggested by the Microsoft KB.
2009-08-26s3-selftest: enable running RPC-NETLOGON-S3 against samba3.Günther Deschner1-1/+1
Guenther
2009-08-26s3 onefs: Canonicalize the ACL in the correct ordertprouty1-4/+8
2009-08-26s3: Allow full_audit to play nice with smbd if it's using syslogtprouty2-1/+17
Explictly pass the facility from both smbd and full_audit to syslog. Really the only major change is to not call openlog() in full_audit if WITH_SYSLOG is defined, which implies that smbd is already using syslog. This allows full audit to piggy-back on the same ident as smbd, while still differentiating the logging via the facility.
2009-08-26s3 audit: Change create_file in full_audit to print whether a directory or ↵tprouty1-2/+28
file was requested full_audit will now print out whether the createfile was requested for a file or directory. The create disposition is also printed out.
2009-08-26s3:winbind: Fix Coverity ID 942: Resource LeakVolker Lendecke1-0/+2
2009-08-26s3-netlogon: let get_md4pw() return a struct dom_sid.Günther Deschner1-7/+5
Guenther
2009-08-26Add a parameter to disable the automatic creation of krb5.conf filesVolker Lendecke3-1/+19
This is necessary because MIT 1.5 can't deal with certain types (Tree Root) of transitive AD trusts. The workaround is to add a [capaths] directive to /etc/krb5.conf, which we don't automatically put into the krb5.conf winbind creates. The alternative would have been something like a "krb5 conf include", but I think if someone has to mess with /etc/krb5.conf at this level, it should be easy to add the site-local KDCs as well. Next alternative is to correctly figure out the [capaths] parameter for all trusted domains, but for that I don't have the time right now. Sorry :-)