summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r20216: Fix fallback code.Simo Sorce1-11/+13
A reversed check made it impossile to fallback to the Unix Domain mapping code. Also fix a potential use of a freed array. Jerry, my tests shows that this code now correctly handle the fallback to Unix Domain when our Domain member is asked for a mapped group that has a unix name different from the Windows name against a Samba DC and we do not use winbindd but share users/groups by other means (ldap / sync of passwd and group files) Immediate Fix would be to discuss if we should answer back when DOMAIN\unixgroup -> SID is asked for, in the case the unixgroup name is mapped to a different name. IE: DOMAIN\Domain Admins -> ntadmins Currently if we are asked for "DOMAIN\Domain Admins" we return the dom admins SID If we are asked for "DOMAIN\ntadmins we return "not found", but we may consider to return the Domain admins SID in this case too. Comments are welcome on this point! Long term fix I think is the unixinfo pipe and of course an idmap_unixinfo moudle. Simo. (This used to be commit 07bdbb4c215461a721f9b608bd375387b96ababb)
2007-10-10r20215: Next step trying to fix the Solaris build.Volker Lendecke2-3/+3
I think "anonimous" is correctly spelled "anonymous". The Solaris compile is referring to this as "anonymous" in line 814 of smbldap.c. Simo, please check. Thanks, Volker (This used to be commit a77d8fa08e5a7c9c0c7c415ce3b7848b265b4b95)
2007-10-10r20214: Fix a type-punned warning. Simo, Jerry, please checkVolker Lendecke1-1/+1
(This used to be commit b459096a151c482d387ec14c965aee43c850e46a)
2007-10-10r20212: Attempt to fix the Solaris buildVolker Lendecke1-2/+4
(This used to be commit 902d81becbd5eac7251e88457be7efc5e951614f)
2007-10-10r20211: send_nt_replies does not need the inbuf argVolker Lendecke1-32/+51
(This used to be commit ab45c50da36be316773f9332925dee7dc3eec025)
2007-10-10r20210: registry_fetch_values is not needed anymore, fix typoVolker Lendecke2-58/+1
(This used to be commit 77e556f4a358fec0d754e50417097bf5a874c500)
2007-10-10r20209: Fix two memleaksVolker Lendecke1-4/+7
(This used to be commit 92bc870768a2ff839b3b10897a4f09a3ece92704)
2007-10-10r20208: Change sprintf_append() never to use malloc,Jeremy Allison2-19/+13
but always use a talloc context. Thanks to simo for pointing this out. Jeremy. (This used to be commit 437cb7c88833d7eab0e3c3dcf175860df74a7a38)
2007-10-10r20207: Fix a couple more places where extra_data wasJeremy Allison2-5/+8
being talloc'ed off the NULL context instead of being malloced. Jeremy. (This used to be commit 47bdeb4efeaa5a441ad2d39bb3b94d72263e66e4)
2007-10-10r20206: Start cleaning up the talloc_ctx mess.Jeremy Allison4-13/+20
child->mem_ctx isn't actually used for anything, so remove it. Jeremy. (This used to be commit a7f294b59238826c11e579a7b1a4dca7284bb89d)
2007-10-10r20202: fix make cleanHerb Lewis1-1/+1
(This used to be commit 339c029521fad391370b99b3b956214608777f32)
2007-10-10r20201: merge makefile changes from 3_0_24Herb Lewis1-34/+42
(This used to be commit 3f8587fc6deb42b5289b5340a6735b1b50b471de)
2007-10-10r20197: merge talloc fixes from samba4:Stefan Metzmacher2-20/+18
- make most static functions inline - handle NULL pointers in talloc_parent_chunk() - use talloc_parent_chunk() in talloc_parent_name() to fix a bug found by the IBM checker metze (This used to be commit c718eb7a7c3cdc4acb25f303a73a3ca478c27af0)
2007-10-10r20186: Fix winbind crash bug in WINBIND_GETGROUPS.Günther Deschner1-2/+3
response_extra_sent() expects to free a malloced extra_data.data while the add_XX_to_array functions all return talloced memory now. Jeremy, please check. Guenther (This used to be commit 9f34c9f3695757819d728a17a1497247ea479ebf)
2007-10-10r20183: Fix the build.Günther Deschner1-6/+6
Guenther (This used to be commit fe3ed63d29e7a68413bffc11d634b61a664ed1a2)
2007-10-10r20181: Improve NT status to pam error mapping.Jeremy Allison1-0/+7
Jeremy. (This used to be commit 794ebd8a84115a636d8fa4a9f859f8a999135e5e)
2007-10-10r20180: Ensure that pam returns the correct error messagesJeremy Allison2-48/+91
when offline and or doing password changes. Jeremy. (This used to be commit 4a74c553845c960a355ddb86abaadfe0d550271f)
2007-10-10r20179: Sync up with Samba4 - remove blank lines at theJeremy Allison1-3/+9
end parsing a file. Jeremy. (This used to be commit ea8215935e5f3952a4480c1f7dafafa9458f66a9)
2007-10-10r20178: Ensure we allocate the intermediate trans structsJeremy Allison4-3/+14
off conn->mem_ctx, not the null context so we can safefy free everything on conn close. Should fix possible memleak. Jeremy. (This used to be commit b33bde7b39953e171f05cdb53b6345ee3a9ec6e7)
2007-10-10r20174: If we're only going to call one handler per messageJeremy Allison1-4/+4
then terminate the traversal once we've done that. Jeremy. (This used to be commit da3d0b62340b545950ea2081f30c252fd4609981)
2007-10-10r20173: DNS update fixes:Gerald Carter5-70/+90
* Fix DNS updates for multi-homed hosts * Child domains often don't have an NS record in DNS so we have to fall back to looking up the the NS records for the forest root. * Fix compile warning caused by mismatched 'struct in_addr' and 'in_addr_t' parameters called to DoDNSUpdate() (This used to be commit 3486acd3c3ebefae8f98dcc72d1c3d6b06fffcc7)
2007-10-10r20171: Don't delete the krb5 credential if others still reference to it.Günther Deschner2-21/+37
Guenther (This used to be commit a1378979be4fe5ac5148b0a7830859aebb97838c)
2007-10-10r20170: Fix secure DNS updates to work againstGerald Carter4-21/+53
Wnidows 2000 DNS which expects the TKEY payload to be in the answer section and not in the additional set of records (like Windows 2003 and the RFC). (This used to be commit a3b6734fdad5fd92dbec075ebcd8d7044aac45c2)
2007-10-10r20169: Support for fallback to legacy mapping code was not completely tested.Simo Sorce2-22/+42
Add necessary fixes. (This used to be commit 4a81ee9608d45f95eaaccc78a080e717cb7d4682)
2007-10-10r20165: Change messaging subsystem to only allow one messageJeremy Allison1-3/+11
per type - this is all we use right now and makes re-entrancy problems with deleting handlers with a message dispatch loop go away. Jeremy. (This used to be commit 2e9b6faeae1474d65a5c12f5a19b0ae045d47c2e)
2007-10-10r20160: Fix long-standing (ie. from initial code I think) bugJeremy Allison1-2/+5
in tdb message processing. If we're inside a dispatch function and we delete our own handler we'd walk onto the next pointer from a deleted memory block. Fixes crash bug in winbindd (and goodness knows where else). Jeremy. (This used to be commit 27a4c1121404e346432d90b97b518861e038e9f2)
2007-10-10r20155: revert, I misreadSimo Sorce1-1/+1
(This used to be commit 20aa6322efe617f928c5cf2224a7660ca6525297)
2007-10-10r20154: Fix nasty typo, hunting another bugSimo Sorce1-1/+1
(This used to be commit bf8dc44cc2892a784ec3a118abc0abb1018fbde4)
2007-10-10r20151: remove meaningless checksSimo Sorce1-8/+0
(This used to be commit 33a55f0cfc0c5eb3f3cfa8276fa258349ad42f8d)
2007-10-10r20150: better memory handling for some functions, make sure we don'tSimo Sorce5-19/+39
leak memory by using the wrong(long lived) mem context (This used to be commit a28cdd6e742cb72a728bd337546ee95fd4160ed8)
2007-10-10r20148: Forgot to merge. Ensure open_any_socket_out()Jeremy Allison1-1/+1
is safe from signals. Jeremy. (This used to be commit c264a0aa4a83a3d47db33446b16a8766bc14824f)
2007-10-10r20146: Now online checks are fully async we can do themJeremy Allison1-7/+1
every cache timeout times. Jeremy. (This used to be commit 5d364bc5ccc45b8d7bf3e484d16b37ac9e06b5cf)
2007-10-10r20140: Make online/offline detection completely asynchronous.Jeremy Allison3-23/+183
Now I've done this I might be able to reduce the probe timeout and reduce the backoff algorithm, going back to checking every cache time seconds (5 mins by default), as the parent or forked domain child will never block. Jeremy. (This used to be commit d0add5f946cf63ea43067e8e935876b5346d11de)
2007-10-10r20136: Fix #4290. Properly compute time to password expiration in message fromJim McDonough1-1/+2
pam_winbind. Thanks to Andrew Benham <andrew.benham@thus.net> (This used to be commit 0d03f5137936546253a8b3334995f536f3621d57)
2007-10-10r20133: get rid of defined but not used warning - static function only usedHerb Lewis1-5/+2
inside the #ifdef HAVE_NATIVE_ICONV (This used to be commit 43ab1d2ba5eb24fc22f8d53c650bf39e95fb133b)
2007-10-10r20132: get rid of defined but not used warning - static function only usedHerb Lewis1-0/+2
inside the #ifdef HAVE_KRB5 (This used to be commit c6cdf76c5809b4a4b145acb7dd4a695aaf7fcd28)
2007-10-10r20131: get rid of a few no previous prototype warningsHerb Lewis8-1/+12
(This used to be commit e710a7d39a662a1a339f3f71c4b051fde1bb5a16)
2007-10-10r20124: clean up nested extern declaration warningsHerb Lewis15-34/+37
(This used to be commit ac3eb7813e33b9a2e78c9158433f7ed62c3b62bb)
2007-10-10r20119: Update help info indicating how to use separators (forward slash only)Jim McDonough1-0/+2
and properly use backslashes in "net ads join computername=" (This used to be commit cc26e2f9a155529b8ac2122bd2bec401bb516264)
2007-10-10r20118: Fix some more warningsSimo Sorce2-8/+3
(This used to be commit b6db21ff65139f45a1789105241e4018b61ca472)
2007-10-10r20117: 1st Error in the mergeSimo Sorce1-1/+1
(This used to be commit 5e46c43a2e4b9a3ee8f1f219c96a6b132bb09322)
2007-10-10r20116: Start merging in the work done to create the new idmap subsystem.Simo Sorce42-4514/+7013
Simo. (This used to be commit 50cd8bffeeed2cac755f75fc3d76fe41c451976b)
2007-10-10r20110: Fix interaction between paranoid malloc checkerJeremy Allison1-0/+17
and lib/replace. Found by Herb - thanks ! Jeremy. (This used to be commit 67c4d5e73fe066910f7b1ca4624541a9bbbf7750)
2007-10-10r20098: Properly fix issues with create_token_from_username()Jeremy Allison4-49/+29
reported by James. Ensure that this function allocates everything on the temporary context except the return memory. Never call this with a null mem context, and now use conn->mem_ctx instead in smbd/service.c. Remove separate free functions for conn->ngroups and conn->nt_user_token as they are now always talloc'ed off the conn->mem_ctx. Future optimization will be to remove conn->mem_ctx and make all objects pointed to in the conn struct talloc'ed off conn itself. Easy to free then :-). Jeremy. (This used to be commit f83b6de44f1058811ff94ac72a8a71bd8e49e4e8)
2007-10-10r20097: Ensure found_username is freed correctly whenJeremy Allison1-2/+7
talloced on the null context. Jeremy. (This used to be commit 2c59c4dddceb9cb12848d7ee48257c5e93ea2667)
2007-10-10r20090: Fix a class of bugs found by James Peach. EnsureJeremy Allison20-159/+290
we never mix malloc and talloc'ed contexts in the add_XX_to_array() and add_XX_to_array_unique() calls. Ensure that these calls always return False on out of memory, True otherwise and always check them. Ensure that the relevent parts of the conn struct and the nt_user_tokens are TALLOC_DESTROYED not SAFE_FREE'd. James - this should fix your crash bug in both branches. Jeremy. (This used to be commit 0ffca7559e07500bd09a64b775e230d448ce5c24)
2007-10-10r20089: Put gpfs acl function into vfs_gpfs module. Thanks to Gomati MohananJim McDonough3-1/+659
<gomati.mohanan@in.ibm.com>. Also fix fields for sec_desc differences between 3.0 and 3.0.24 in nfs4_acls.c. (This used to be commit 3d6f387783467bbd7ea88d6a853b41572badf1ef)
2007-10-10r20087: Ensure we clean up any random pending events weJeremy Allison2-2/+23
may have inherited from our parent in the winbindd forked child. Jeremy. (This used to be commit 0a1352f440a9d9b974ad8d571b2e48a43a15b6cc)
2007-10-10r20082: When fork_domain_child is forked when we're offlineJeremy Allison1-0/+11
the child inherits *all* active check_online timout handlers. This is bad when it's not our domain (ie. BUILTIN). Jeremy. (This used to be commit 8d815ec4c103a83ef7cea0ae5fc64681f6bcb48a)
2007-10-10r20069: Fix logic bug I introducedVolker Lendecke1-1/+1
(This used to be commit d935ecec98747dfd9f35ab81760ef95a0d983ed7)