summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r11573: Adding Andrew Bartlett's patch to make machine accountJeremy Allison15-55/+92
logons work if the client gives the MSV1_0_ALLOW_SERVER_TRUST_ACCOUNT or MSV1_0_ALLOW_WORKSTATION_TRUST_ACCOUNT flags. This changes the auth module interface to 2 (from 1). The effect of this is that clients can access resources as a machine account if they set these flags. This is the same as Windows (think of a VPN where the vpn client authenticates itself to a VPN server using machine account credentials - the vpn server checks that the machine password was valid by performing a machine account check with the PDC in the same was as it would a user account check. I may add in a restriction (parameter) to allow this behaviour to be turned off (as it was previously). That may be on by default. Andrew Bartlett please review this change carefully. Jeremy. (This used to be commit d1caef866326346fb191f8129d13d98379f18cd8)
2007-10-10r11566: From metze. Use "interpret_addr(lp_socket_address())" for port 138.Jeremy Allison1-1/+3
Jeremy. (This used to be commit d398a1aeb48422a89cee59d5760a87bbb2d50b03)
2007-10-10r11560: Fix core dump if setmntent returns NULL.Jeremy Allison1-0/+3
Pointed out by Jay Fanlason @ Red Hat. Jeremy. (This used to be commit e8136ae746b5be51b252d900aa732c8106fefcaf)
2007-10-10r11556: Fix "make everything"Volker Lendecke1-3/+3
(This used to be commit bff03f0cd484c04d5ab6d6b66f30191bef368b68)
2007-10-10r11551: Add a few more initialize_krb5_error_tableVolker Lendecke4-0/+6
(This used to be commit d92c83aa42fe64a0e996094d1a983f0279c7c707)
2007-10-10r11530: Add the "time offset" parameter back in for people whoJeremy Allison1-1/+1
might use it. Jeremy. (This used to be commit b745114423a482ea8cd1ea4f80ec3fc2a9caa971)
2007-10-10r11511: A classic "friday night check-in" :-). This moves muchJeremy Allison24-649/+685
of the Samba4 timezone handling code back into Samba3. Gets rid of "kludge-gmt" and removes the effectiveness of the parameter "time offset" (I can add this back in very easily if needed) - it's no longer being looked at. I'm hoping this will fix the problems people have been having with DST transitions. I'll start comprehensive testing tomorrow, but for now all modifications are done. Splits time get/set functions into srv_XXX and cli_XXX as they need to look at different timezone offsets. Get rid of much of the "efficiency" cruft that was added to Samba back in the day when the C library timezone handling functions were slow. Jeremy. (This used to be commit 414303bc0272f207046b471a0364fa296b67c1f8)
2007-10-10r11508: Removed incorrect patch hunk. Thanks to AndrewJeremy Allison1-2/+0
Bartlett for pointing this out. Jeremy. (This used to be commit c93a08be4a29854354a16c6e8f984477e19f41c0)
2007-10-10r11506: Added description of ACL in usage message.Jeremy Allison1-1/+2
Jeremy. (This used to be commit 7795fce24e1e6dfe55360bb62617b922973f5f95)
2007-10-10r11504: Added Andrew Bartletts removal of another NTLMSSP implementationJeremy Allison2-85/+91
patch. Jeremy. (This used to be commit 4591984176fd32ba25155fbc6889a1c637019a08)
2007-10-10r11494: Finally fix #3192 - remember iDiskfreeCacheTime isJeremy Allison1-1/+1
an *integer*, not a pointer. Doh ! Jeremy. (This used to be commit f1e0c863637f11f5857663d1980ba7f40fce7357)
2007-10-10r11492: Fix bug #3224 (I hope). Correctly use machine_account_nameJeremy Allison7-24/+35
and client_name when doing netlogon credential setup. Jeremy. (This used to be commit 37e6ef9389041f58eada167239fd022f01c5fecb)
2007-10-10r11491: If we get a reject ensure we're printing out the server/domain/machineJeremy Allison1-2/+2
a/c we were asking for. Jeremy. (This used to be commit 3ba5d02cff61d64dbab1fef28f74ea6509f4f8e9)
2007-10-10r11482: Arrg. Can't believe this code was in this state. If youJeremy Allison1-1/+3
don't initialize the mask then setting "special" access gets set to *random* permissions ! Jeremy. (This used to be commit f1616911a858886da0a635a2f9b95d471215e84c)
2007-10-10r11464: Allow smbcacls to modify a SD on W2K3. This may fix severalJeremy Allison1-1/+14
bugzilla bugs - I need to go through and check. I also need to test against WNT/W2K and WXP. Jeremy. (This used to be commit 881dd7dbf6de0e11a3703afd2a1ba286ff0d62ad)
2007-10-10r11460: Improve error messages in parsing security descriptors.Jeremy Allison1-5/+38
Jeremy. (This used to be commit 385f128de716b62bdfc82627a403fe6dd69bd39d)
2007-10-10r11454: Last 2 uninitialized warnings.Jeremy Allison1-17/+11
Jeremy. (This used to be commit 5f10368ff0f5eae646533280a444dc091d732c0d)
2007-10-10r11451: Fix -O1 "might be using uninitialized" errors.Jeremy Allison3-3/+3
Jeremy. (This used to be commit cab76c3c33883aad444eefb6562ab1b27d9ca88a)
2007-10-10r11448: Move decl before code.Jeremy Allison1-1/+2
Jeremy. (This used to be commit f22822790cdbbe7d5a237421c1eda73a504e488d)
2007-10-10r11446: Remove unused fn. Remove unneeded strncpy use.Jeremy Allison2-33/+2
Jeremy. (This used to be commit d202aae3c821f3d78ff063d867bac1f84dca3548)
2007-10-10r11443: Fix error code returns on client spoolss code. Fix themJeremy Allison1-117/+280
up a *lot*. Jeremy. (This used to be commit 762fff4ddb505b90ada1ea54348dba1a8b9af631)
2007-10-10r11435: Allow the hash size of the tdb open (locking) databaseJeremy Allison2-3/+6
to be set in local.h. Change from the default (131) to another prime (1049). Should this be an smb.conf tunable parameter based on the number of open file descriptors available ? If so what scaling factor ? More tests to follow. Jeremy. (This used to be commit 6a902ec49ffea5d0ca0308d5ff51584cece41043)
2007-10-10r11433: Fix for bug #3223 - ensure we're root before doingJeremy Allison1-5/+53
any potential lib/smbldap.c calls. Jeremy. (This used to be commit 915cfb48f08b3748e22e68ed028eaca6d558cbad)
2007-10-10r11428: Fix bug #3192 by actually hooking up the dfree cachingJeremy Allison3-5/+5
function. Oops. Jeremy. (This used to be commit 7edb26e7657fc01710abe563b941779749409ef2)
2007-10-10r11420: Fix issue pointed out by Dina Fine <dina@exanet.com>. We canJeremy Allison8-90/+150
only tell at parse time from the wire if an incoming name has wildcards or not. If it's a mangled name and we demangle the demangled name may contain wildcard characters. Ensure these are ignored. Jeremy. (This used to be commit 4cd8e2a96b98ff711905e8c6f416b22440c16062)
2007-10-10r11389: Attempt to fix bug #3212 - ignore bogus OS/2 EA set values onJeremy Allison1-4/+25
trans2_mkdir/trans2_open/trans2_setfilepathingo. Jeremy. (This used to be commit 71c037dfbb0b51e750f2e14533b03d9932778cb0)
2007-10-10r11383: Patch from Alex Masterov <alex@infobit.ru> to fixJeremy Allison1-3/+83
XATTR calls on *BSD systems (bug #3218). Jeremy. (This used to be commit 3d8faf42e854a720aca5c2e0a4682c85a3dfd365)
2007-10-10r11381: Correctly connect to 445 and 139 after a successful getdcname.Volker Lendecke1-3/+10
Volker (This used to be commit 440e7b3342e6b7b12208b789853962de72a9cac2)
2007-10-10r11379: Remove external dependencies from sharemodes library.Jeremy Allison1-4/+20
Jeremy. (This used to be commit 7fb05872612c9e1816ac24d25a020073e3b41950)
2007-10-10r11375: Update to the latest config.guess and config.sub files.Paul Green2-328/+364
(This used to be commit eee397ea15d0804d541be9707158a5240996aeae)
2007-10-10r11368: Remove a memleak that just cost me half an hour: If we terminate ↵Volker Lendecke1-1/+1
inside a message handler, the list of messages from retrieve_all_messages is not properly freed. Not important, just confusing :-) Volker (This used to be commit d20388750dcfe7e0680246f7e3e6beb3a6d51a4a)
2007-10-10r11346: Fix for bug found by Dina Fine. If in case sensitive mode thenJeremy Allison1-1/+10
the mangle cache is no good (3 letter extension could be wrong case - so don't demangle in this case - leave as mangled and allow the mangling of the directory entry read (which is done case insensitively) to match instead. This will lead to more false positive matches but we fail completely without it. Jeremy. (This used to be commit 238b35d2e6e21d0e07d500d446f08ec128ea7720)
2007-10-10r11344: I don't think share mode conflicts occur on deletingJeremy Allison2-20/+10
a directory when you've got permissions. Need to write a smbtorture test for this. Jeremy. (This used to be commit e959a5be393eb59b8987eb6967a2ee5d11978f41)
2007-10-10r11341: Put directory opens into the share mode db so weJeremy Allison3-8/+70
can treat them similarly to file opens (delete on close, share mode violations etc.). This fixes bug #3216 I will up the default hash size on the locking db in a later commit as this means more entries. Jeremy. (This used to be commit 1134abbbb3fd8e8b88e1a5817aae106476a4c126)
2007-10-10r11338: Move knowledge of \\ needed into rpc_client/cli_netlogonJeremy Allison2-8/+4
(this is the way it's been done in other functions). Instead of moving this into the IDL, I think the best solution would be to write a wrapper function around any call that needs this (this is what we already do for many of the calls). Jeremy. (This used to be commit aeca4efa11728be53b81967bb5442b5b09d1a975)
2007-10-10r11336: Start to get my control back :-). Volker, I thinkJeremy Allison2-22/+62
Andrew Bartlett is right - making lsa code do it the netlogon way, not vica-versa. Jeremy. (This used to be commit f313757e36215cb3dd956e4a73de6d30258a6974)
2007-10-10r11332: eventlog API uses NTSTATUS, not WERROR for return codesGerald Carter3-46/+45
(This used to be commit f5f40633bc3f641a0fef4934375d0d829899b0d7)
2007-10-10r11328: Actually verify that the bind on a pipe succeeded with a samr_connect orVolker Lendecke1-167/+196
lsa_openpolicy and fall back appropriately. In particular an ntlmssp bind failure can not be detected before the first real rpc request, at least according to abartlet :-) Works for me against w2k3, w2k and nt4. Sooner or later I should test against samba4 ... :-) Volker (This used to be commit 48a9e35208ae7b6271508085f59833e5def640e8)
2007-10-10r11327: Make user domain settable by pdbeditVolker Lendecke1-2/+9
(This used to be commit 37267d5ab018bb6df9e297ea68e57deb9a908f28)
2007-10-10r11326: Fix alignment in getdc responseVolker Lendecke1-0/+3
(This used to be commit 9741818d2c54240ef1f38762396828adceb92b2a)
2007-10-10r11324: Re-formatting before I can get a very *narrow* focus on the bugs in ↵Volker Lendecke1-59/+61
here. ;-) We can only tell if the bind succeeded on the first real RPC call. So we have to decide according to success of samrconnect whether we have to fall back. Similarly for lsaopenpolicy. Volker (This used to be commit 0603e1c8456ee87b87b051e0303a35fdbfbcf7ca)
2007-10-10r11323: Fix usage of rpccli_netlogon_getdcname. Add some debug messages.Volker Lendecke1-3/+18
Volker (This used to be commit 770ad2a8a72ae7bfcdc1b86b72142e11f662d975)
2007-10-10r11320: Fix error handling for rpccli_netlogon_getdcname. Jeremy, the other ↵Volker Lendecke1-2/+2
functions in cli_netlogon look similarly suspicious. Volker (This used to be commit 8d7713431efd80bd358daffcbbc4d715611b8b4b)
2007-10-10r11319: read_buf_len and write_buf_len are no longer used, remove them.Volker Lendecke2-6/+3
Volker (This used to be commit 6948f748f689708c396e52097553ff222b1af744)
2007-10-10r11301: why would you look for printf in -lnsl[_s]? Fixing configure checksGerald Carter1-2/+2
(This used to be commit c495059de1675676fe4d9a87ce516a54f16e9c66)
2007-10-10r11296: removing unused variable and ifdef'd out codeGerald Carter1-14/+0
(This used to be commit 88a33c4cf87ada17637579d9261471c219e88de0)
2007-10-10r11295: new service hashing code has assumign that the serviceGerald Carter1-12/+40
name stored in the array was normalized. This was causing records to not be deleted on a reload. As a result, I was getting the wrong path for various services. Seems to be ok after this change. Also converted canonicalize_servicename() to just use strupper_m() rather than doing the conversion itself. Jeremy, i think this should be ok but please check. also cleaned up some things in the hash service code and added debug messages for sanity purposes. (This used to be commit e0bf0581f0aaf1505f653f2101eed61352d03da8)
2007-10-10r11292: Missed merge from Samba 2.2 many years ago....Gerald Carter1-5/+0
Don't count open pipes in the num_files_open on a connection. conn_idle_all() handles this by looking for open rpc handles If there are no open handles, we can close the IPC$ share. (This used to be commit 747fba4dbf06c42495c430cd78c1cded3445f821)
2007-10-10r11286: Fix a potential segfaultVolker Lendecke1-7/+10
(This used to be commit f4c310d55624ab726e3cdc49dcc69f9162c797aa)
2007-10-10r11283: Move to using sival_int from sival_ptr. Part of bug #2922.Jeremy Allison1-4/+10
Jeremy. (This used to be commit f68ff32630ee3b06b69bac59674ecc1496880a47)
generated by cgit (git 2.34.1) at 2024-11-06 02:41:24 +0000