summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2002-01-12Many thanks to Alexander Bokovoy <a.bokovoy@sam-solutions.net>.Andrew Bartlett7-2/+173
This work was sponsored by Optifacio Software Services, Inc. Andrew Bartlett (various e-mails announcements merged into some form of commit message below:) This patch which adds basics of universal groups support into Samba 3. Currently, only Winbind with RPC calls supports this, ADS support requires additional (possibly huge) work on KRB5 PAC. However, basic infrastructure is here. This patch adds: 1. Storing of universal groups for particular user logged into Samba software (smbd/ two winbind-pam methods) into netlogon_unigrp.tdb as array of uint32 supplemental group rids keyed as DOMAIN_SID/USER_RID in tdb. 2. Fetching of unversal groups for given user rid and domain sid from netlogon_unigrp.tdb. Since this is used in both smbd and winbindd, main code is in source/lib/netlogon_uingrp.c. Dependencies are added to AUTH_OBJ as UNIGRP_OBJ and WINBINDD_OBJ as UNIGRP_OBJ. This patch has had a few versions, the final version in particular: Many thanks to Andrew Bartlett for critics and comments, and partly rewritten code. New: - updated fetching code to changed byte order macros - moved functions to proper namespace - optimized memory usage by reusing caller's memory context - enhanced code to more follow Samba coding rules Todo: - proper universal group expiration after timeout (This used to be commit 80c2aefbe7c1aa363dd286a47d50c5d8b4595f43)
2002-01-12updates from 2.2Simo Sorce6-95/+141
(This used to be commit 398b4ff0d40d89b3e96d481807f85f15b7a7966a)
2002-01-12Added PRINTER_INFO_4/PRINTER_INFO_5, we're seeing level 5 requested on the ↵Jeremy Allison3-0/+224
wire... so. Jeremy. (This used to be commit b63b76297835ab8227b98925fa8120ffce1a37d9)
2002-01-12Thanks to vance for spotting the missing Makefile.in commit.Andrew Bartlett1-1/+1
This should make things a little happier... Andrew Bartlett (This used to be commit 6ce467a65fdaabbcfac258a1b899c833602b6d92)
2002-01-12Move all the pdb_get...() and pdb_set...() functions to a new file.Andrew Bartlett2-798/+825
This brings passdb.c down to a much more manageable ~1100 lines and makes it a little easier to comprehend whats going on here. Andrew Bartlett (This used to be commit 28d5ab269cfba5e8410163edb3e0c222ed7f0be1)
2002-01-12Added the O_NOFOLLOW flag if follow symlinks is set off.Jeremy Allison1-0/+6
Jeremy. (This used to be commit 4f1f5f28b514dda86f6f49465bd5887357e37bc6)
2002-01-11Round and round we go....Jeremy Allison3-3/+5
Jeremy. (This used to be commit 2603ab3c6870f3697751b887e940910713f08985)
2002-01-11Latest attempt at changeid.Jeremy Allison2-6/+31
Jeremy. (This used to be commit 24ee18c77e1b61004d8ed817118a481f3d43e34c)
2002-01-11Same fix as went into 2.2 (I'm waiting for jerry to finish some code).Jeremy Allison20-156/+162
Jeremy. (This used to be commit 01ff6ce4963e1daff019f2b936cef218e1c93f67)
2002-01-11fixed a crash bug in domain auth caused by an uninitialised nt_statusAndrew Tridgell2-1/+3
(This used to be commit 0b0b937b58f4bf4e005fb622f0db19175fc46a47)
2002-01-11fixed a crash in merge_aces()Andrew Tridgell1-0/+1
when we free curr_ace_outer we need to not try to use it again :) (This used to be commit 1c5e19a418136c0ae524e62a4907501212ebac3d)
2002-01-11force the time difference in cache comparisons to be unsigned to copeAndrew Tridgell1-1/+4
with the local machine time changing (This used to be commit 116c0a0e3baa6a100a816f1ff2722782941ac3dc)
2002-01-11make the winbind sequence number code more robustAndrew Tridgell1-1/+1
when switching from rpc to ADS this now should make sense (This used to be commit ec73d26c7f9a2bbd4b91e9c22850e032b91666e2)
2002-01-11cope with direct IP addresses in resolve_name()Andrew Tridgell1-0/+5
(This used to be commit 73a59170e6fab3b0f91938a74302750915a04a7a)
2002-01-11preparing for release of 3.0-alpha13Samba Release Account1-1/+1
(This used to be commit 4f4f898348c5719b745ff358463fd7d59e3da495)
2002-01-11Make this error match Win2k.Andrew Bartlett1-1/+1
(This used to be commit 490d3aaf20f04d04c91c4748896d7a021581a229)
2002-01-11The DC is meant to be sent the *unmapped* username...Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit d7fca1806a304cb6eeecfe34d6c5c012c745114f)
2002-01-11Always query the PDC for the list of trusted domains rather than interatingTim Potter7-114/+179
the list received at startup or we get an out of date list. I thought there might be some sequence number that is incremented when a trusted domain is added or removed - perhaps there is but I just haven't found it yet. - Renamed get_domain_info() to init_domain_list() - Made an accessor function to return the list of trusted domains rather than using a global so we don't have to remember to put a magic init function - The getent state can not keep a pointer to a winbind_domain structure as it may be freed if init_domain_list() is called again so we keep the domain name instead (This used to be commit 37216c649a394b449eaaaa6644709eafb3bf37ff)
2002-01-11Back out the crazy notion that the NTLMSSP flags actually mean anything...Andrew Bartlett4-30/+47
Replace this with some flags that *we* define. We can do a mapping later if we actually get some more reliable info about what passwords are actually valid. Andrew Bartlett (This used to be commit 7f7a42c3e4d5798ac87ea16a42e4976c3778a76b)
2002-01-11Correct4ed comment.Tim Potter1-1/+1
(This used to be commit 78814664ef7d41c2f6637b508711ab45647a64f9)
2002-01-11Fix up 'net ads join' to delete and rejoin if the account already exists.Andrew Bartlett2-3/+8
This fixes up a problem where a machine would join (or downgrade by trust password change) to NT4 membership and not be able to regain full ADS membership until a 'net ads leave'. Andrew Bartlett (This used to be commit ab8ff85f03b25a0dfe4ab63886a10da81207393c)
2002-01-11Some memory leak fixes.Tim Potter1-17/+23
(This used to be commit da4db0373b65d975d5129715d6b1fa725b188766)
2002-01-11make sure resolve_name() only returns valid IP addressesAndrew Tridgell1-4/+13
this is actually a workaround for old broken nmbd daemons, especially from Samba 2.0 (This used to be commit 12021a8de6a1dc2e43cc62f094a57c57283dfaf4)
2002-01-10Since AB has been changing the winbind interface it's time to add the "mockTim Potter3-21/+21
swedish" test to client calls. This is putting a length field at the start of a request so we can disconnect clients talking with an out of date libnss_winbind.so rather than deadlock them. Misc cleanups: - made some int values uint32 - moved WINBIND_INTERFACE_VERSION to start of cmd list (This used to be commit a4af65b9b93671f13f277d49279a85042a8fd1d5)
2002-01-10added structure members referred to by recent changes in vfs-wrap.cHerb Lewis1-1/+5
(This used to be commit c5e14d73dffee86ef2dabcf7031eea0da9e32f3d)
2002-01-10merge tpots name changes into IRIX part of code. When you change the nameHerb Lewis1-8/+8
of a define you need to grep for the old name and change ALL places. (This used to be commit 09e3276fb7207dff73f181072851bd542fb64263)
2002-01-10Return the winbind separator over the socket, so programs don't have to parseAndrew Bartlett5-18/+78
smb.conf to get it right. While wb_client needs its lp_load() for samba dependency reasons, it now uses the new method both to example and test the new code. Also add an interface version function, and return the winbind's samba version string. In preperation for default domains, its now up to winbindd to reject plaintext auths that don't have a seperator, but NTLM (CRAP) auths now have two feilds, hence need parsing. Andrew Bartlett (This used to be commit 2bd2a092ee3d49a74d896385688d7c7256aa297e)
2002-01-10This changes the winbind protcol a bit:Andrew Bartlett6-38/+84
It adds a 'ping' request, just to check winbind is in fact alive It also changes winbindd_pam_auth_crap to take usernames and domain seperatly. (backward incompatible change, needs merge to 2.2, but this is not yet released code, so no workarounds) Finally, it adds some debugs and fixes a few memory leaks (uses talloc to do it). Andrew Bartlett (This used to be commit 6df29bfe335144a968f5367f624ef2b4cf9e69b0)
2002-01-10Quieten warning about uninitialized variable.Martin Pool1-1/+3
(This used to be commit 63ea2bb0adf5ae742658f479613de90b1eec3db5)
2002-01-10A big tidyup while thinking about getting trusted domains being re-readTim Potter8-132/+142
when they are added or removed on the PDC. - renamed GETPWNAM_FROM_{UID,USER} constants and functions to GETPW{NAM,UID} - renamed GETGRNAM_FROM_{GID,GROUP} constants and functions to GETGR{NAM,GID} - use SIGUSR2 in winbindd for debugging/logging instead of SIGUSR1 in preparation for moving to smbcontrol type messages (not sure whether to ditch this altogether or not) - tidy debugging messages in top level winbind user and group routines - convert talloc_init() to talloc_init_named() - make enumerations of the domain list use the same local variable names (This used to be commit eeb8af9c1a66bfcd80823d7b406acbab79857a16)
2002-01-10Spelling fix.Tim Potter1-1/+1
(This used to be commit 85d3ffb2709258e576191adade9c61b11e83eec5)
2002-01-10browse_fn: FIXME: If the remote machine returns non-ascii charactersMartin Pool1-0/+3
in any of these fields, they can corrupt the output. We should remove them. (This used to be commit 934aacdb39a0c21c43505dbba696b746f1333df3)
2002-01-10First part of UNIX extensions (#ifdefed out) more to follow.Jeremy Allison4-2/+177
Jeremy. (This used to be commit 02b18f2cca6d6d046d2d8fd7375b207d44031ddc)
2002-01-10Oh joy - the original code didn't do mapping of the perms onto the wire.Jeremy Allison1-11/+41
Make it up as we go along... :-). Jeremy. (This used to be commit 4289fe3499e49c3ed356eff55ffbcfef4dca72af)
2002-01-10Ensure this is committed last.Jeremy Allison1-288/+370
Jeremy. (This used to be commit 2591361fa860b3f9480c0c29e433c15d45d9abe4)
2002-01-10We need to test for major/minor macros.Jeremy Allison4-0/+39
Jeremy. (This used to be commit ee8c8add7f83d7a794546769c59c85ef8bb5b89a)
2002-01-10Although configure.in and configure were checked in at the same timeTim Potter1-9/+9
I think configure.in just beat it to the repository so the timestamp of configure.in is newer than configure. )-: (This used to be commit ee0a6f8d26a594bb3d0ee266a0229f3046590270)
2002-01-10Getting ready to add UNIX extensions in HEAD also.Jeremy Allison10-495/+860
Jeremy (This used to be commit 6210d4aa196c944e47076e316980f76ac9c6b02d)
2002-01-09Added tests for st_blocks in struct stat, and added a (hateful) constantJeremy Allison4-311/+389
the specifies the units that st_blocks is in. The reason for this is that HPUX uses 8k, AIX uses a #defined constant and everyone else (tm) uses 512 byte units. Needed for the CIFS UNIX extensions - coming to a Samba server near you soon.... :-). Jeremy. (This used to be commit 38cfffea5f0d7f5ff676f83204a2923247dce9d5)
2002-01-09Fixed typo.Jeremy Allison1-1/+1
Jeremy. (This used to be commit a99e0cec1e2596c5bc89932e64de301f3fb9ae86)
2002-01-09Move SAFE_FREE into tdb.c to stop exporting it into tdb.h namespace.Jeremy Allison2-5/+5
Jeremy. (This used to be commit 4f703b84cd7f258ae0169d52ca761b9404ccb348)
2002-01-09Add two more memory-debug smbcontrol messages: these ones shouldMartin Pool5-7/+97
prompt dmalloc to log information about what happening, so you can see in flight why smbd is getting bloated. (This used to be commit bcb443c5c4bf97fe6b5b0993e42496c2e64f0124)
2002-01-09FIXME: At the moment, if the user should happen to give the optionsMartin Pool1-1/+7
ahead of the service name (in standard Unix fashion) then smbclient just spits out the usage message with no explanation of what in particular was wrong. Is there any reason we can't just parse out the service name and password after running getopt?? (This used to be commit 5f6feb55d7e7566549141ebb1786b6f2f9f2645b)
2002-01-09Better explanation message for dmalloc.Martin Pool8-15/+15
Also more insertion of parenthesis to handle struct members called 'free'. You can now get useful dmalloc output, as long as it is compatible with your C library. On RH7.1 it looks like you have to rebuild dmalloc to allow free(0) by default, because something in libcrypt does that. (sigh) (This used to be commit 391cbb690196537c8b6292b42c2e27408cc7e249)
2002-01-09With --enable-dmalloc, also use dmalloc's wrappers around routinesMartin Pool3-785/+791
like strcat (This used to be commit fb8ab69b6f638c41d734282488be91d85b4ec057)
2002-01-09Sample configuration for dmalloc.Martin Pool1-0/+2
(This used to be commit 7bbfb29842b27938862a63834eef9b60ac568256)
2002-01-09Add UNUSED(paramname) macro to be used in parameter lists, to quietenMartin Pool2-2/+12
gcc warnings about unused parameters. (This used to be commit b29775d442c36f667a6db5ba9dbe47d1a133525f)
2002-01-09Add UNUSED(paramname) macro to be used in parameter lists, to quietenMartin Pool1-1/+4
gcc warnings about unused parameters. msg_pool_usage: assert msg_type is as expected. (This used to be commit 3ef135e91aaebf9648c4dd13f59686f57f4cff70)
2002-01-09When re-writing tdb version numbers as little endian int32, we mustJeremy Allison3-27/+33
change the version number also. Jeremy. (This used to be commit 3dec9cf99a82bd15626eb99e7d937ff00183cc05)
2002-01-09Fix macro name controlling inclusion of DMALLOC.Martin Pool1-1/+1
(This used to be commit a57e13b8b661dd41e8036f862c708b5d3ced82e6)