sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-11 05:18:09 +03:00
Code
19,967 Commits 60 Branches 1,145 Tags 452 MiB
4ef1f8e425
Commit Graph

17000 Commits

Author SHA1 Message Date
Jeremy Allison
4ef1f8e425 r16971: Ensure we use the correct separator for pathnames 
in POSIX mode (clitar needs fixing too). Add test
posix lock/unlock commands.
Jeremy.
(This used to be commit 596497ccc2)
 2007-10-10 11:19:16 -05:00
Jeremy Allison
725d88b6d4 r16968: The function parse_processed_dfs_path() is dependent on the 
fact that check_path_syntax() will convert '\\' characters to '/'.
When POSIX pathnames have been selected this doesn't happen, so we
must look for the unaltered separator of '\\' instead of the modified '/'.
Stevef please check this with the CIFSFS MS-DFS code !
Jeremy
(This used to be commit 883bb398e5)
 2007-10-10 11:19:16 -05:00
Jeremy Allison
760671b0e2 r16962: Add a few utility fns into client. Allow POSIX capabilities 
to be selected.
Jeremy.
(This used to be commit 2d8d4bd77b)
 2007-10-10 11:19:16 -05:00
Volker Lendecke
6dfccad564 r16960: Some warnings from host "opi" 
(This used to be commit 083ef11cc9)
 2007-10-10 11:19:15 -05:00
Gerald Carter
69f0c8aef1 r16957: fix cut-n-paste error. The check for 'if (\!salt)' make no sense when fetching the DES salting principal 
(This used to be commit baf554c793)
 2007-10-10 11:19:15 -05:00
Volker Lendecke
361fef49c5 r16955: Fix an uninitialized var -- Jerry, please check. 
(This used to be commit bf701f5129)
 2007-10-10 11:19:15 -05:00
Gerald Carter
751ad57534 r16954: Volker reminded me we already have code to do this check. 
Reuse can_create() to prevent renameing a group to
an existing user or group.
(This used to be commit ce7091fda1)
 2007-10-10 11:19:15 -05:00
Gerald Carter
7c1f79143b r16953: Don't allow groups to be renamed to an existing user or other group 
(This used to be commit 7d619f127e)
 2007-10-10 11:19:15 -05:00
Gerald Carter
060b155cd2 r16952: New derive DES salt code and Krb5 keytab generation 
Major points of interest:

* Figure the DES salt based on the domain functional level
  and UPN (if present and applicable)
* Only deal with the DES-CBC-MD5, DES-CBC-CRC, and RC4-HMAC
  keys
* Remove all the case permutations in the keytab entry
  generation (to be partially re-added only if necessary).
* Generate keytab entries based on the existing SPN values
  in AD

The resulting keytab looks like:

ktutil:  list -e
slot KVNO Principal
---- ---- ---------------------------------------------------------------------
   1    6 host/suse10.plainjoe.org@COLOR.PLAINJOE.ORG (DES cbc mode with CRC-32)
   2    6 host/suse10.plainjoe.org@COLOR.PLAINJOE.ORG (DES cbc mode with RSA-MD5)
   3    6 host/suse10.plainjoe.org@COLOR.PLAINJOE.ORG (ArcFour with HMAC/md5)
   4    6           host/suse10@COLOR.PLAINJOE.ORG (DES cbc mode with CRC-32)
   5    6           host/suse10@COLOR.PLAINJOE.ORG (DES cbc mode with RSA-MD5)
   6    6           host/suse10@COLOR.PLAINJOE.ORG (ArcFour with HMAC/md5)
   7    6               suse10$@COLOR.PLAINJOE.ORG (DES cbc mode with CRC-32)
   8    6               suse10$@COLOR.PLAINJOE.ORG (DES cbc mode with RSA-MD5)
   9    6               suse10$@COLOR.PLAINJOE.ORG (ArcFour with HMAC/md5)

The list entries are the two basic SPN values (host/NetBIOSName & host/dNSHostName)
and the sAMAccountName value.  The UPN will be added as well if the machine has
one. This fixes 'kinit -k'.

Tested keytab using mod_auth_krb and MIT's telnet.  ads_verify_ticket()
continues to work with RC4-HMAC and DES keys.
(This used to be commit 6261dd3c67)
 2007-10-10 11:19:15 -05:00
Jeremy Allison
65586c226c r16947: Fix warning with profile separator when profiles not 
being used.
Jeremy.
(This used to be commit 441c289fd2)
 2007-10-10 11:19:14 -05:00
Jeremy Allison
fbdcf2663b r16945: Sync trunk -> 3.0 for 3.0.24 code. Still need 
to do the upper layer directories but this is what
everyone is waiting for....

Jeremy.
(This used to be commit 9dafb7f48c)
 2007-10-10 11:19:14 -05:00
Günther Deschner
6139f49d60 r16941: Fix crash bug when the pam conversation receives an empty token. 
Thanks to Bjoern Jacke for the report and test-case.

Guenther
(This used to be commit f2ebc0e3de)
 2007-10-10 11:19:13 -05:00
Günther Deschner
510b81b428 r16940: libnscd sets errno, use that to display error message. 
Guenther
(This used to be commit df10448e2c)
 2007-10-10 11:19:12 -05:00
Günther Deschner
44f2d54db2 r16939: Still clear the winbind_cache.tdb when offline logons are not enabled. 
Guenther
(This used to be commit 4121ccfc3e)
 2007-10-10 11:19:12 -05:00
Volker Lendecke
66259d06fb r16866: No idea why I did not see the warning, sorry.... 
(This used to be commit 84913caebd)
 2007-10-10 11:19:12 -05:00
Volker Lendecke
3899f95e1f r16865: This is a proposal to fix bug 3915. Before sending patches around, this is 
what svn is for.

The idea is that we fall back to a pure unix user with S-1-22 SIDs in the
token in case anything weird is going on with the 'force user'.

Volker
(This used to be commit 9ec5ccfe85)
 2007-10-10 11:19:12 -05:00
Volker Lendecke
fc4abcf028 r16864: Intermediate checkin -- swap the sid_check_is_in_unix_users and 
sid_check_is_in_our_domain cases.

Volker
(This used to be commit dc403cec88)
 2007-10-10 11:19:12 -05:00
Günther Deschner
7048040be8 r16862: Reverting accidential changes in ads_try_connect() from previous commit. 
Guenther
(This used to be commit 6257f9af93)
 2007-10-10 11:19:12 -05:00
Günther Deschner
f3e71c6072 r16861: Fixing crash bug when passing no domain/realm name to the CLDAP request. 
Guenther
(This used to be commit 863aeb621a)
 2007-10-10 11:19:11 -05:00
Gerald Carter
03d116a1b7 r16845: Properly report the error during join when the set password fails 
(This used to be commit ef6e9ca527)
 2007-10-10 11:19:11 -05:00
Günther Deschner
67d8c7432f r16836: When receiving a CLDAP reply make sure that we always store the correct 
netbios domain name in server affinity cache.

Guenther
(This used to be commit 08958411ee)
 2007-10-10 11:19:11 -05:00
Günther Deschner
57dd09939a r16823: Allow to call wbinfo --domain-info="" or --domain-info="." to get domain 
info for our own domain.

Guenther
(This used to be commit ebd3c547e5)
 2007-10-10 11:19:11 -05:00
Simo Sorce
99a0d5ca1e r16800: correct a probable cut&paste error 
(This used to be commit c139a2293b)
 2007-10-10 11:19:11 -05:00
Günther Deschner
d1a9ac533b r16799: Fix remote smbd crash bug by removing half-implemented info level 4 
dfs_Enum.

Guenther
(This used to be commit 4e5ea585c3)
 2007-10-10 11:19:11 -05:00
Günther Deschner
3dc4d79a44 r16797: Add msdfs proxy junctions in the netdfs rpc enumeration. 
Guenther
(This used to be commit 6bf350895a)
 2007-10-10 11:19:11 -05:00
Günther Deschner
ed8a9c82fe r16790: Fix memleak. 
Guenther
(This used to be commit 48ab7f4681)
 2007-10-10 11:19:10 -05:00
Jeremy Allison
192062c4a6 r16789: Fix bug #3909, when using ea's getting a directory tries to 
read ea's from an msdfs link. Stop it from doing that.
Jerry please merge to 3.0.23.
Jeremy.
(This used to be commit 95e5ace6b4)
 2007-10-10 11:19:10 -05:00
Gerald Carter
26c0b81d75 r16785: BUG 3908: Fix rpc bin authentication failure which broke user password changes 
Jeremy, please review.
(This used to be commit 154e4a2815)
 2007-10-10 11:19:10 -05:00
Volker Lendecke
355cbde8df r16766: A warning found by RHEL3. This might actually be 3.0.23 code, maybe there are 
vasprintf implementations that don't like a NULL format.

Volker
(This used to be commit 03c665c307)
 2007-10-10 11:19:10 -05:00
Volker Lendecke
fe33a3829a r16755: Hunting warning has some benefits.... 
Solaris found this one that needs to go into 3.0.23, actually munlock the
password memory.

Volker
(This used to be commit 6fa928f96a)
 2007-10-10 11:19:10 -05:00
Gerald Carter
05089818a0 r16751: The precompiled header should really be in the $(buildir) and 
not the $(srcdir) to allow multiple concurrent compiles when the
source tree is shared via nfs.
(This used to be commit b79e1c011d)
 2007-10-10 11:19:09 -05:00
Gerald Carter
9d0ccba34c r16749: BUG 3905: don't fail in create_local_nt_token() when a 
checking for the builtin Administrators group membership.
security = server has no domain info in secrets.tdb
(This used to be commit fa477969fb)
 2007-10-10 11:19:09 -05:00
Jeremy Allison
acebbb7cd9 r16720: Fix bug #3874 (warning) reported by Jason Mader. 
Jeremy.
(This used to be commit 0606c95466)
 2007-10-10 11:19:09 -05:00
Stefan Metzmacher
1f914279f9 r16717: patch from Bjoern Jacke to fix compiler warnings on AIX 
metze
(This used to be commit a558abb40d)
 2007-10-10 11:19:09 -05:00
Gerald Carter
c6f068355c r16713: BUG 3904: fix broken smbwrapper compile 
(This used to be commit 9ae1d016d4)
 2007-10-10 11:19:09 -05:00
Gerald Carter
be25a49a94 r16701: Fix segv when adding a printer caused by not initializing the 
realm name in ads_init() in nt_printer_publish().
(This used to be commit a25e75e78d)
 2007-10-10 11:19:09 -05:00
Jeremy Allison
d0b0ed90eb r16696: Fix the multiple-outstanding write and trans client 
signing bug.
Jeremy.
(This used to be commit 3b7fbe856c)
 2007-10-10 11:19:08 -05:00
Jeremy Allison
8bd19b15e3 r16687: Fix bugs #3901, #3902, #3903 reported by jason@ncac.gwu.edu. 
Jeremy
(This used to be commit c4896b17fa)
 2007-10-10 11:19:08 -05:00
Jeremy Allison
8f0ea257b6 r16685: Fix bug #3901 reported by jason@ncac.gwu.edu. 
Jeremy.
(This used to be commit d48655d9c0)
 2007-10-10 11:19:07 -05:00
Jeremy Allison
ae30a44bc0 r16683: Fix bug #3900 reported by jason@ncac.gwu.edu. 
Jeremy.
(This used to be commit 8c7e40f2a4)
 2007-10-10 11:19:07 -05:00
Jeremy Allison
5e924c3962 r16681: Fix bug #3899 reported by jason@ncac.gwu.edu. 
Jeremy.
(This used to be commit 1cd9a0ef83)
 2007-10-10 11:19:07 -05:00
Jeremy Allison
b85c276e95 r16678: Fix bug #3898 reported by jason@ncac.gwu.edu. 
Jeremy.
(This used to be commit 5c5ea3152f)
 2007-10-10 11:19:07 -05:00
Volker Lendecke
48229b35d7 r16676: .o generates other warnings, use the Solaris trick with .po.o also for AIX. 
Fix a configure.in output line

Volker
(This used to be commit 1a80266d77)
 2007-10-10 11:19:07 -05:00
Jeremy Allison
d88926f6b4 r16665: Fix a couple of bugs I discovered now I've looked 
closer at the wins server code. Firstly, it needs
to do the searches on the SELF_NAMES correctly,
secondly it needs to flush the in-memory cache
out before returning the 1b names - else it might
get duplicates returned if many 1b queries are
done in quick succession. Jerry, I hate to say
this but you might want to consider this for 3.0.23....
Jeremy.
(This used to be commit b36b9befbb)
 2007-10-10 11:19:07 -05:00
Jeremy Allison
124cd3c604 r16663: Fix coverity #301, memleak in error path. 
Jeremy.
(This used to be commit dfdb4ce891)
 2007-10-10 11:19:06 -05:00
Jeremy Allison
cc1457beb0 r16661: Fix from jason@ncac.gwu.edu for bug #3875, 
bad cast warning.
Jeremy.
(This used to be commit d60e6e0abc)
 2007-10-10 11:19:06 -05:00
Jeremy Allison
c7d2deb151 r16656: Fix #3894 and #3895 reported by jason@ncac.gwu.edu. 
Jeremy.
(This used to be commit ddf35ad692)
 2007-10-10 11:19:06 -05:00
Jeremy Allison
3c9a5c7b58 r16654: Fix bug #3893 reported by jason@ncac.gwu.edu. 
Jeremy.
(This used to be commit 7875394898)
 2007-10-10 11:19:06 -05:00
Jeremy Allison
55f8ed0a81 r16652: Fix bug #3891 reported by jason@ncac.gwu.edu. 
Jeremy.
(This used to be commit 9b0df8d008)
 2007-10-10 11:19:06 -05:00
Jeremy Allison
68e4fc8066 r16650: Fix bug #3890 reported by jason@ncac.gwu.edu. 
Jeremy.
(This used to be commit 590b58cb50)
 2007-10-10 11:19:06 -05:00