samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2009-11-19	s3: Avoid races to change the machine password in winbind	Volker Lendecke	1	-0/+18
	The machine password handler has code to deal with every node in the cluster trying to change the machine password at the same time. However, it is not very nice to the DC if everyone tries this simultaneously. This adds a random 0-255 second offset to our timed event. When this fires a bit later than strictly calculated, someone else might have stepped in and have already changed it. The timed event handler will handle this gracefully, it won't even try to do it again.
2009-11-19	s3: Protect against flooding the DC with pwchange requests	Volker Lendecke	1	-14/+24
	When there is a temporary problem changing passwords we flooded the DC with pwchange requests. This gives the DC a 60-second break to recover.
2009-11-19	s3: Re-check the timeout in machine_password_change_handler()	Volker Lendecke	1	-0/+6
	Someone else might have come in between and changed the password since we created that timed request
2009-11-19	s3: Add some debugs to the winbind machine pwchange machinery	Volker Lendecke	1	-0/+16

2009-11-19	s3: Factor timeval_string out of current_timestring()	Volker Lendecke	2	-12/+14

2009-11-19	s3: Do not kill the whole smb session if a machine pwchange failed	Volker Lendecke	1	-1/+1

2009-11-19	s3:pdb_ldap: fix a comment typo	Michael Adam	1	-1/+1
	Michael
2009-11-19	s3: shortcut uid_to_sid when "ldapsam:trusted = yes"	Michael Adam	1	-0/+75
	The normal uid_to_sid behaviour is to call sys_getpwuid() to get the name for the given uid and then call the getsampwnam passdb method for the resulting name. In the ldapsam:trusted case we can reduce the uid_to_sid operation to one simple search for the uidNumber attribute and only get the sambaSID attribute from the correspoinding LDAP object. This reduces the number of ldap roundtrips for this operation. Michael
2009-11-19	s3-build: really fix build of winbind_krb5_locator.	Günther Deschner	1	-1/+1
	Guenther
2009-11-19	s3-build: make sure to remove libds and client object files on make clean.	Günther Deschner	1	-1/+3
	Guenther
2009-11-18	s3: Replace some create_synthetic_smb_fname() calls	Volker Lendecke	7	-115/+63
	In very hot codepaths like the statcache copy_smb_filename and the subsequent recursive talloc_free is noticable in the CPU load.
2009-11-18	s3: Do not talloc in readdir	Volker Lendecke	12	-141/+198
	This is a hot codepath (called from the stat cache)
2009-11-18	s3:load_interfaces(): use function gfree_interfaces() that we have.	Michael Adam	1	-9/+1
	To reduce code duplication. Michael
2009-11-17	Start removing SMB_STRUCT_STAT variables except for	Jeremy Allison	1	-15/+13
	the directory enumeration code (which needs it). Jeremy.
2009-11-17	Remove "store create time" code, cause create time to be stored	Jeremy Allison	13	-165/+231
	in the "user.DOSATTRIB" EA. From the docs: In Samba 3.5.0 and above the "user.DOSATTRIB" extended attribute has been extended to store the create time for a file as well as the DOS attributes. This is done in a backwards compatible way so files created by Samba 3.5.0 and above can still have the DOS attribute read from this extended attribute by earlier versions of Samba, but they will not be able to read the create time stored there. Storing the create time separately from the normal filesystem meta-data allows Samba to faithfully reproduce NTFS semantics on top of a POSIX filesystem. Passes make test but will need more testing. Jeremy.
2009-11-17	s3: Fix the build on Solaris	Volker Lendecke	2	-7/+7

2009-11-16	Don't overwrite a dynamic pointer with the address of a stack	Jeremy Allison	3	-17/+12
	variable. Jeremy.
2009-11-16	s3:libsmb: avoid passing a function call as function parameter	Stefan Metzmacher	2	-21/+21
	Using a helper variable makes it easier to "step" into the desired function within gdb. metze
2009-11-15	s3: Fix a memleak in sys_popen	Volker Lendecke	1	-0/+1
	Found with "dfree command" set
2009-11-14	s3: Add min_setup, min_param and min_data to cli_trans_recv	Volker Lendecke	7	-129/+72
	Every caller that expects to receive something needs to check if enough was sent. Make this check mandatory for everyone. Yes, this makes the parameter list for cli_trans a bit silly, but that's just the way it is: A silly protocol request :-) While there, convert some _done functions to tevent_req_simple_finish_ntstatus.
2009-11-14	Attempt to fix the s4 build -- we can not use map_nt_error_from_unix in lib/	Volker Lendecke	2	-0/+14

2009-11-14	s3: Convert cli_set_unix_extensions_capabilities_send to async	Volker Lendecke	4	-44/+96

2009-11-14	s3: Tiny logic simplification	Volker Lendecke	1	-10/+11

2009-11-14	s3:fix a comment typo	Michael Adam	1	-1/+1
	Michael
2009-11-14	s3:is_trusted_domain: shortcut if domain name == global_sam_name	Michael Adam	1	-0/+4
	A domain can't have a trust with itself. This saves some roundtrips to the ldap server for ldapsam. Michael
2009-11-14	s3:is_trusted_domain: shortcut if domain name is NULL or empty	Michael Adam	1	-0/+4
	This saves some roundtrips to LDAP in an ldapsm setup. Michael
2009-11-14	s3:passdb: bump interface VERSION 18->19 (removed uid_to_rid)	Michael Adam	1	-1/+2
	Michael
2009-11-14	s3:passdb: remove the uid_to_rid method - we only need uid_to_sid	Michael Adam	5	-42/+1
	Michael
2009-11-14	s3:pdb_default_uid_to_sid: fix some debug statements.	Michael Adam	1	-3/+3
	Michael
2009-11-13	s3/pam: move variable declaration into belonging ifdef section	Björn Jacke	1	-1/+1
	This fixes a unused variable 'addr' warning on some platforms
2009-11-13	s3:smbd: also fill the memcache with sid<->id mappings in ldapsam_sid_to_id()	Michael Adam	1	-0/+2
	not only the persistent idmap cache. Michael
2009-11-13	s3:smbd: make idmap cache persistent for "ldapsam:trusted".	Michael Adam	1	-0/+4
	This stores the mappings found in the idmap cache (which lives inside gencache). This cache is already read in sid_to_Xid() and Xid_to_sid() for ldapsam:trusted, this fills the opposite direction, massively reducing the number of ldap roundtrips across smbd restarts. Michael
2009-11-13	Fix large paged search	Volker Lendecke	1	-0/+1
	Signed-off-by: Michael Adam <obnox@samba.org>
2009-11-13	fix bogus "out of memory" winbind msg	Volker Lendecke	1	-1/+2
	Signed-off-by: Michael Adam <obnox@samba.org>
2009-11-13	s3: Convert cli_unix_extensions_version to async	Volker Lendecke	5	-55/+159

2009-11-13	s3-rpcclient: use the parsed binding string flags for auth choice.	Günther Deschner	1	-0/+18
	This allows rpcclient to be called like this: rpcclient ncacn_ip_tcp:w2k8r2[sign,seal] -U administrator%secret -c "dscracknames gd" Guenther
2009-11-12	Remove unused variable warning.	Jeremy Allison	1	-1/+0
	Jeremy.
2009-11-12	Remove erroneous 'presult = NULL' changes. Now presult only gets set	Jeremy Allison	1	-9/+2
	if NTSTATUS == OK. Jeremy.
2009-11-12	Revert "Ensure every return path initializes presult as NULL."	Jeremy Allison	1	-40/+0
	Vl is correct, this is the wrong way to fix this. This reverts commit 83c2c177a5e86d04da37384f1f04230c8274e1e6.
2009-11-12	Ensure all callers to the rpc_client/cli_pipe functions correctly	Jeremy Allison	13	-34/+21
	initialize return variables. Jeremy.
2009-11-12	Fix bug 6891 - using windows explorer to change ownership on a folder fails ↵	Jeremy Allison	1	-1/+11
	with Bad File Descriptor. Jeremy.
2009-11-12	Ensure every return path initializes presult as NULL.	Jeremy Allison	1	-0/+40
	Ensures no crashes in calling code that forgets to init return as null. Jeremy.
2009-11-12	s3-kerberos: remove smb_krb5_get_tkt_from_creds().	Günther Deschner	1	-60/+4
	Now that cli_krb5_get_ticket() already handles S4U2SELF impersonation, remove smb_krb5_get_tkt_from_creds() which is not required anymore. Guenther
2009-11-12	s3-kerberos: avoid using ERROR_TABLE_BASE_krb5 without checking.	Günther Deschner	1	-0/+4
	Guenther
2009-11-12	s3: Fix debug messages in check_reduced_name	Volker Lendecke	1	-13/+24

2009-11-12	s3-kerberos: add smb_krb5_principal_get_realm().	Günther Deschner	2	-0/+27
	Guenther
2009-11-11	Second part of bugfix for 6865 - acl_xattr module: Has dependency that ↵	Jeremy Allison	4	-15/+10
	inherit acls = yes or xattrs are removed. We also need dos filemode = true set as well. Jeremy.
2009-11-11	Fix bug 6878 - Cannot change ACL's inherit flag.	Jeremy Allison	1	-44/+108
	Based on a patch submitted by Tsukasa Hamano <hamano@osstech.co.jp>, this is a change in the POSIX ACL mapping to deal with the lossy mapping for directory ACE entries: We have a lossy mapping: directory ACE entries CREATOR_OWNER ------\ (map to) +---> SMB_ACL_USER_OBJ owning sid ------/ CREATOR_GROUP ------\ (map to) +---> SMB_ACL_GROUP_OBJ primary group sid --/ on set. And on read of a directory ACL SMB_ACL_USER_OBJ ----> CREATOR_OWNER SMB_ACL_GROUP_OBJ ---> CREATOR_GROUP. Deal with this on set by duplicating owning sid and primary group sid ACE entries into the directory ACL. Jeremy.
2009-11-11	s3:vfs_fs_capabilities: fix a debug message	Michael Adam	1	-1/+1
	Michael
2009-11-10	s3: Convert libsmb/cli_message to the async API	Volker Lendecke	3	-142/+372