summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2009-05-12s3-samr: implement _samr_RidToSid().Günther Deschner1-10/+30
Guenther
2009-05-12s3-samr: Let _samr_TestPrivateFunctionsDomain() return ↵Günther Deschner1-1/+0
NT_STATUS_NOT_SUPPORTED to make RPC-SAMR happy. Guenther
2009-05-11Fix some nonempty blank linesVolker Lendecke1-37/+37
2009-05-11Correct typos; semicolons instead of commasDerrell Lipman1-7/+7
2009-05-11s3-samr: Fix Bug #5859, renaming of samr objects failed due to samr ↵Günther Deschner1-0/+3
setuserinfo access checks. Torture test to follow... Guenther
2009-05-11Add checks for non_root mode to help buildfarm spoolss tests.Jeremy Allison1-14/+18
Reviewed by Guenther. Jeremy.
2009-05-11s3-lsa: Fix _lsa_LookupNames2() server implementation which always returned ↵Günther Deschner1-0/+1
a NULL sid_array since 3.2.0. Found by torture test. This makes it possible to search for users while adding them to groups via windows usermanager. Guenther
2009-05-11s3-selftest: enable RPC-LSA-LOOKUPNAMES against Samba 3.Günther Deschner1-1/+1
Guenther
2009-05-11s3-net: add "net dom renamecomputer" to rename machines in a domain.Günther Deschner2-3/+114
dmarkey, please test :) Guenther
2009-05-10Provide a libsmbclient interface for programs requiring threadsDerrell Lipman4-1/+288
- This adds two functions: smbc_thread_posix() which provides access to the internal threading implementation using pthread; and smbc_thread_impl() where the user provides each of the functions required by Samba, to give access to the thread implementation's native capabilities. Derrell
2009-05-09wb_int_trans -> wb_simple_trans in wbclient.cVolker Lendecke1-148/+24
2009-05-09Add wb_simple_trans_send/recvVolker Lendecke2-1/+137
2009-05-09Pass also sername to check password scriptSimo Sorce1-4/+12
2009-05-09Fix the mangle1 testVolker Lendecke1-1/+1
2009-05-09Do not call SMB_VFS_GET_REAL_FILENAME if the name is mangledVolker Lendecke1-6/+11
The GPFS get_real_file name does not know about mangled names. Tim, if onefs does not either, you need this bugfix :-) In case onefs does 8.3 names, we need to pass the mangled flag down to SMB_VFS_GET_REAL_FILENAME to give GPFS a chance say ENOTSUPP and do the fallback.
2009-05-09s3:libsmb: fix layering of cli_ntrename_internal and its callersStefan Metzmacher1-29/+35
It's easier to have cli_ntrename_internal as a semetric async tevent_req function. cli_ntrename() and cli_nt_hardlink() should be callers on top of cli_ntrename_internal(). metze
2009-05-08s3: Fix chained sesssetupAndX/tconn messagesTim Prouty1-0/+7
A sesssetupAndX chained with a tconn will not correctly set the TID in the response header. I'm seeing an XP client send this chained sesssetup/tconn when samba has security = share. Samba's current behavior is to return a TID of 0 in the smb header rather than the actual TID. This patch also updates the UID in the header as well.
2009-05-09s3-samr: Fix SetUserInfo level 16 and 21 w.r.t. ACB_AUTOLOCK acct_flag.Günther Deschner1-0/+10
It is not allowed to *set* this flag remotely if it has been not set already. Found by torture test. Guenther
2009-05-09s3-samr: Fix SetUserInfo level 7 when there has been no name change.Günther Deschner1-0/+6
Found by torture test. Guenther
2009-05-08s3-selftest: enable running RPC-SAMR-USERS against Samba3.Günther Deschner1-1/+1
Guenther
2009-05-08s3-samr: more accurateness in _samr_SetDomainInfo().Günther Deschner1-3/+3
Guenther
2009-05-08Fix bug #6330 - DFS doesn't work on AIX. Jeremy.Jeremy Allison2-0/+14
2009-05-08Expand the comment explaining why user_in_group_sid isJeremy Allison1-1/+6
not reliable for winbindd users from foreign domains. Jeremy.
2009-05-08s3:smbd: fix posix acls when setting an ACL without explicit ACE for the ↵Stefan Metzmacher1-3/+18
owner (bug#2346) The problem of bug #2346 remains for users exported by winbindd, because create_token_from_username() just fakes the token when the user is not in the local sam domain. This causes user_in_group_sid() to give totally wrong results. In uid_entry_in_group() we need to check if we already have the full unix token in the current_user struct. If so we should use the current_user unix token, instead of doing a very complex user_in_group_sid() which doesn't give reliable results anyway. metze
2009-05-08s3:smbd: fix the fix for mapped IPv4 address handling in release_ip().Michael Adam1-2/+2
It was too late... Thanks Metze for noticing. Michael
2009-05-08s3-selftest: run RPC-LSA-GETUSER against Samba 3.Günther Deschner1-1/+2
Guenther
2009-05-08s3-samr: implement more info levels in _samr_QueryDomainInfo().Günther Deschner1-0/+82
Gets us closer to pass RPC-SAMR. Guenther
2009-05-08s3-samr: Fix potential memory leak in _samr_ChangePasswordUser().Günther Deschner1-1/+2
Guenther
2009-05-08s3: make release_ip() call (ctdb) cope with IPv4 mapped addressesMichael Adam1-1/+8
Michael
2009-05-08s3-selftest: finally enable RPC-SAMR-PASSWORDS which samba3 now passes.Günther Deschner1-1/+1
Guenther
2009-05-08s3-selftest: need to enable lanman auth in order make RPC-SAMR-PASSWORDS pass.Günther Deschner2-0/+5
Guenther
2009-05-08s3-samr: Do not leak information whether a user exist or not in pwd change ↵Günther Deschner1-0/+11
calls. Found by torture test. Guenther
2009-05-08s3-samr: implement _samr_ChangePasswordUser().Günther Deschner1-10/+106
This is vastly copied from samba4 samr server. Guenther
2009-05-08s3-samr: implement _samr_OemChangePasswordUser2().Günther Deschner1-10/+48
Guenther
2009-05-08s3-samr: disable check for ACB_DISABLED in check_oem_password().Günther Deschner1-1/+4
It is a bad idea to just tell everyone that an account is disabled without really having checked the password first. Found by torture test. Guenther
2009-05-08s3-samr: rework check_oem_password() to take a struct samu, not to return one.Günther Deschner1-39/+27
Guenther
2009-05-08s3-samr: Let _samr_TestPrivateFunctionsUser() return not supported.Günther Deschner1-1/+0
This is to get us closer to pass RPC-SAMR-USERS. Guenther
2009-05-08s3-samr: Do not return users in _samr_QueryDisplayInfo() for builtin domain.Günther Deschner1-0/+5
Found by torture test. Guenther
2009-05-08s3-samr: let set_user_info_16 and 20 follow the same pattern as all other ↵Günther Deschner3-29/+40
levels. Guenther
2009-05-08s3-samr: support some more info levels in samr_SetUserInfo calls.Günther Deschner3-0/+468
Guenther
2009-05-08s3-samr: support some more info levels in samr_QueryUser calls.Günther Deschner1-0/+266
Guenther
2009-05-08s3/ldap: also handle DirX return codesBjörn Jacke1-0/+2
2009-05-08s3:configure: "test" only takes one "="Björn Jacke1-1/+1
2009-05-07Fix some type-punned warningsVolker Lendecke3-7/+13
2009-05-07Remove a misleading commentVolker Lendecke1-2/+0
2009-05-07Fix some nonempty blank linesVolker Lendecke1-11/+10
2009-05-07Convert lib/wb_reqtrans.c to unix calling conventionsVolker Lendecke3-97/+113
2009-05-07Adapt wb_reqtrans to "recent" coding conventionsVolker Lendecke1-44/+28
2009-05-07s3-auth: use full 16byte session key in make_user_info_netlogon_interactive().Günther Deschner2-3/+2
Patch from Jeremy. With this patch, I was able to join Windows 7 RC to a Samba3 DC, and login into a Samba 3 Domain. There are still two registry settings required: HKLM\System\CCS\Services\LanmanWorkstation\Parameters DWORD DomainCompatibilityMode = 1 DWORD DNSNameResolutionRequired = 0 Do *not* modify the other netlogon registry parameters that were passed around, they weaken security. Guenther (cherry picked from commit b5097d54cb74ca0ea328f9e029562f65f4a01134)
2009-05-07Async API needs all parameters to be kept around until sent,Jeremy Allison1-55/+15
ensure they're attached to the state structure. Thanks to Metze for pointing this out. Jeremy.