summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r18005: The ntlmssp fix is not correct yet, working on itVolker Lendecke1-6/+5
(This used to be commit 3e4da5541c24b3c3c5104fc5120a9be8a2f9ae69)
2007-10-10r18004: If you're writing out a krb5.conf, at leastJeremy Allison1-2/+2
get the syntax right... :-). Jeremy. (This used to be commit ecca467e463ef5c9acd48ee0a5f446755bd2f306)
2007-10-10r18003: Creating a directory and getting EEXIST isn't an error.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 515f86167bd9ec64170218f2ea4fb20d12a28365)
2007-10-10r18002: Improved debug.Jeremy Allison1-1/+2
Jeremy. (This used to be commit 5f84c8c815ff0c941ef06d682dcc4be52e8867d2)
2007-10-10r18001: Proper error reporting on write/close fail.Jeremy Allison1-1/+7
Jeremy. (This used to be commit ba311ac4eac060c12cafeeb8e458f45c2927aabf)
2007-10-10r18000: Get nelem/size args right for x_fwrite.Jeremy Allison1-1/+1
Jeremy. (This used to be commit f1c5409b9fa201c6d726857b02515167b0d7cef1)
2007-10-10r17999: No need to prevent others from reading. Use 755 insteadJeremy Allison1-2/+2
of 700, and 644 instead of 600. Reading might help debugging. Jeremy. (This used to be commit 99f100cfecb53e00d17f7426251a3d4022db791a)
2007-10-10r17997: Ensure lockdir exists for winbindd. Store tmpJeremy Allison2-1/+5
krb5.conf files under lockdir, not privatedir. Jeremy. (This used to be commit c59eff3e53f5bfae3a9fb136e8566628339863ad)
2007-10-10r17996: Don't talloc free the memory then reference it. Doh !Jeremy Allison1-3/+4
Jeremy. (This used to be commit 188eb9794df265e8a55602d46b6bb4bd7daffa7f)
2007-10-10r17995: Ensure we create the domain-specific krb5 files in aJeremy Allison1-8/+22
separate directory. Jeremy. (This used to be commit 541594153b3a29a4ca30f1897264f2cc715b0698)
2007-10-10r17994: Add debugs that showed me why my site code wasn'tJeremy Allison3-2/+11
working right. Don't update the server site when we have a client one... Jeremy. (This used to be commit 7acbcf9a6c71f8e7f9167880488613c930cef4d9)
2007-10-10r17984: Ensure we never indirect a null opt_username if it wasn'tJeremy Allison1-0/+10
specified. Jeremy. (This used to be commit 5d9bb91ab7bb080b56b25849e646143ab3ad8252)
2007-10-10r17981: Hmmm. Don't break helper functions that don't needJeremy Allison1-5/+7
the username by forcing it to be specified. Still split out domain \ user for the ones that do use it. Jeremy. (This used to be commit c097e107391cd97dd829c19b672b6a7adece504f)
2007-10-10r17979: Make ntlm_auth more intelligent about figuring out it'sJeremy Allison1-14/+31
domain and user args. if only given a parameter of the form --username DOMAIN\user. When called by firefox or other user apps they may not know what the domain is (and they don't care). They just want to pass the contents of $USERNAME without having to parse it or guess a domain. Jeremy. (This used to be commit 5f51417916ed8bfc0dd08f44e669cb044fc83d01)
2007-10-10r17977: To be honest, I have NO idea whatsoever what this does, but it fixes ↵Volker Lendecke1-5/+6
what I have been able to reproduce with smbtorture4 for bug number 4059. It's too late here now to check with W2k native, I'll do that tomorrow or over the weekend. I'll then also check in a samba4 torture test to walk this from now on. Abartlet, can you do me a favor and look over this? It is a 1:1 copy of the corresponding Samba4 code. Thanks, Volker (This used to be commit fb5ebab873ba5196f35a9801ab2e21811b0fa8a0)
2007-10-10r17976: Fix typoVolker Lendecke1-1/+1
(This used to be commit 410d6b9de2ad059fe239c6f155e80a81952ed701)
2007-10-10r17972: revert accidental commit to ads_verify_ticket()Gerald Carter1-7/+5
(This used to be commit 95f6b22e5179e1fb738c07112de2e06024fc9a83)
2007-10-10r17971: Disable storing SIDs in the S-1-22-1 and S-1-22-2 domain to the ↵Gerald Carter2-5/+17
SID<->uid/gid cache. FIxes a bug in token creation (This used to be commit fa05708789654a8a34cb4a4068514a0b3d950653)
2007-10-10r17970: Add missing include-guards around ads.h and ads_cldap.h.Jeremy Allison3-12/+7
Remove all reference to "Default-First-Site-Name" and treat it like any other site. Jeremy. (This used to be commit 5ae3564d6844f44a6943b2028917bd457371af1e)
2007-10-10r17959: sync with samba4Stefan Metzmacher1-0/+2
metze (This used to be commit 69a7a83b103adb1494c15a96318aa34ebd354749)
2007-10-10r17953: run bin/talloctort with samba3's make testStefan Metzmacher2-0/+21
metze (This used to be commit 2d3ab069ddcb28ebd7cc72021a3510a606b50630)
2007-10-10r17951: sync talloctort.c with samba4Stefan Metzmacher1-32/+246
metze (This used to be commit f862195efd2b8c1137ae8e0cb8cb252dcf4f19b6)
2007-10-10r17949: change the comment, talloc_enable_null_tracking() shouldStefan Metzmacher1-1/+5
stay here. metze (This used to be commit 8eff4787428fddf83cd9d7ea07645f8640157db2)
2007-10-10r17947: Remove extra const.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 86bfac33e35ee636581b88eb2ff55800c48b9a7b)
2007-10-10r17946: Fix couple of typos...Jeremy Allison2-3/+3
Jeremy. (This used to be commit 638d53e2ad524dfe4666b79d36997dea8a44c8cd)
2007-10-10r17945: Store the server and client sitenames in the ADSJeremy Allison8-7/+60
struct so we can see when they match - only create the ugly krb5 hack when they do. Jeremy. (This used to be commit 9be4ecf24b6b5dacf4c2891bddb072fa7543753f)
2007-10-10r17944: Handle locking madness.Jeremy Allison1-11/+32
Jeremy. (This used to be commit 408267a2d725a0596be37b019fe4513502b2c0ec)
2007-10-10r17943: The horror, the horror. Add KDC site support byJeremy Allison6-35/+117
writing out a custom krb5.conf file containing the KDC I need. This may suck.... Needs some testing :-). Jeremy. (This used to be commit d500e1f96d92dfcc6292c448d1b399195f762d89)
2007-10-10r17942: Jerry is right - when no site support is enabledJeremy Allison1-6/+11
the client sitename is "Default-First-Site-Name". Treat this as a blank site (no site configured). Jeremy. (This used to be commit 5c46381bd7dd1b3f11f427d111ded0b76fc1bec8)
2007-10-10r17941: Fix print out of client site name.Jeremy Allison1-1/+1
Jeremy. (This used to be commit b8cedcac933fef9370bd42d1ff7c35c5c27103d1)
2007-10-10r17937: Move the saf_ cache into the tcp ad connection code.Jeremy Allison2-7/+21
Cause winbindd to set site support before doing the generic AD server lookup. Jeremy. (This used to be commit a9833941715472ece747bce69ef53ba8ad98d7a5)
2007-10-10r17934: allow srcdir != builddir for 'make test'Gerald Carter5-8/+9
(This used to be commit 70f223554922947a17e81f1002b184db879a2195)
2007-10-10r17933: Don't print a NULL sitename.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 2829dbc3e01d967887e25d1bcacb1d538fc11e59)
2007-10-10r17929: Ok, I think I finally figured out where to putJeremy Allison2-13/+62
the code to redo the CLDAP query to restrict DC DNS lookups to the sitename. Jerry, please check to stop me going insane :-). Jeremy. (This used to be commit 8d22cc111579c57aec65be8884b41564b79b133a)
2007-10-10r17928: Implement the basic store for CLDAP sitenameJeremy Allison7-16/+106
support when looking up DC's. On every CLDAP call store the returned client sitename (if present, delete store if not) in gencache with infinate timeout. On AD DNS DC lookup, try looking for sitename DC's first, only try generic if sitename DNS lookup failed. I still haven't figured out yet how to ensure we fetch the sitename with a CLDAP query before doing the generic DC list lookup. This code is difficult to understand. I'll do some experiments and backtraces tomorrow to try and work out where to force a CLDAP site query first. Jeremy. (This used to be commit ab3f0c5b1e9c5fd192c5514cbe9451b938f9cd5d)
2007-10-10r17924: Get rid of warnings now that talloc is merged.Volker Lendecke7-21/+9
Destructors now take a pointer to the "real" destroyed object as an argument. Volker (This used to be commit 70edd716ef0ccb218fe18d1233bd30abe46b62bf)
2007-10-10r17923: turn on null_tracking with the first talloc_init() call,Stefan Metzmacher1-0/+3
(this needs to be moved to a samba3 specific place) I commit this because I habe no time to test smbcontrol .... pool-usage and don't want to break it. I'll try to find a better fix tomorrow. metze (This used to be commit ae313ab4caa5652199b9aaceb30b4d432ab4f393)
2007-10-10r17922: sync samba3's talloc with samba4's and move the samba3 specific ↵Stefan Metzmacher4-237/+261
stuff to tallocmsg.c metze (This used to be commit 7704e3e51dec1768772663024a0579cb4a271cc1)
2007-10-10r17921: Comment is obsolte. This is now implemented in winbindd.Jeremy Allison1-3/+1
Jeremy. (This used to be commit 37c636eb480e3736b143653231d73620152eb470)
2007-10-10r17910: remove incorrect comment (code has already been fixed)Gerald Carter1-3/+0
(This used to be commit 9810d74e171542408eea3ec22a0ebb57a9e1e87e)
2007-10-10r17909: ensure we do not call map_username() twice on Krb5 session setupsGerald Carter1-1/+5
(This used to be commit 779eba0a7cab3156b8580410cfe288609a288548)
2007-10-10r17906: Port the snprintf bugfix from 4. I wonder why we never hit this....Volker Lendecke1-2/+2
(This used to be commit b9227bde1328c09c61cc23fdbb4fa756e919c4a6)
2007-10-10r17903: Fix null deref caught by Stanford checker. Don'tJeremy Allison1-1/+0
call ntlmssp_end on a null pointer ! (Doh !). Jeremy. (This used to be commit 7b53932b5190c78b2b483f36af95174fe38ed45e)
2007-10-10r17902: Fix possible null deref caught by Stanford checker.Jeremy Allison1-1/+3
Jeremy. (This used to be commit e8b0649fe167c3446eb6121ed666254fdf53aa58)
2007-10-10r17901: Stanford checker fix. cookie here can't be null or we'dJeremy Allison1-1/+1
deref null. Make interface explicit. Jeremy. (This used to be commit 4e99606ec16b978a76219b5362a23a7b06ee5468)
2007-10-10r17900: Fix from Michael Adam <ma@sernet.de> - make internal_resolve_nameJeremy Allison1-62/+62
do what it's supposed to. Jeremy. (This used to be commit 4b7387a054bfc1587e0b9b7088f420a5bcf0bad9)
2007-10-10r17899: Fix Stanford checker bug - possible null deref.Jeremy Allison1-2/+5
Jeremy. (This used to be commit e77949175144cbe4cfa58788d13acc704eebc251)
2007-10-10r17897: Store the uid in the memory creds. Don't request theJeremy Allison4-11/+27
krb5 refresh creds when doing cached NTLM auth, request the memory creds instead. Jeremy. (This used to be commit 310ac0b226edcfd5bedc2c3305a05993db20c7af)
2007-10-10r17896: Reformatting. I did not want to do it anymore, but these ones looked ↵Volker Lendecke1-12/+19
just silly :-) Volker (This used to be commit 8b6f5937db4b18db711dd0c4f1ae904087249000)
2007-10-10r17881: Another microstep towards better error reporting: Make ↵Volker Lendecke5-23/+43
get_sorted_dc_list return NTSTATUS. If we want to differentiate different name resolution problems we might want to introduce yet another error class for Samba-internal errors. Things like no route to host to the WINS server, a DNS server explicitly said host not found etc might be worth passing up. Because we can not stash everything into the existing NT_STATUS codes, what about a Samba-specific error class like NT_STATUS_DOS and NT_STATUS_LDAP? Volker (This used to be commit 60a166f0347170dff38554bed46193ce1226c8c1)