sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-20 14:03:59 +03:00
Code
5,563 Commits 60 Branches 1,145 Tags
Commit Graph

1252 Commits

Author SHA1 Message Date
Jeremy Allison
f004471aac Log tdb failures. 
Jeremy.
 -
Jeremy Allison
4338ee78c3 Extra stuff for large readwrite support. 
Jeremy.
 -
Jeremy Allison
30cffea8fa Correctly make max pathlength 255. 
Jeremy.
 -
Jeremy Allison
6d65556ae8 Set correct reply word in large writeX (greater than 64k) replies. 
Also added smbtorture test for this.
Jeremy.
 -
Jeremy Allison
810dae29b8 Deal with incorrect large writes from old NT4.x clients. 
We still need to set the large write reply correctly.
Jeremy.
 -
Andrew Tridgell
8ec9c87b5d use LDSHFLAGS not -shared in several places -
Tim Potter
870e9e4e89 Added *.po to .cvsignore files. -
Jeremy Allison
18e652a5e0 Fix debug statement so it doesn't use lp_workgroup() either. 
Jeremy.
 -
Andrew Tridgell
68c0dcec3d use the new tdb_open_log() fn on connections database -
Tim Potter
d6dcca7cc9 i18n fix for domain_client_validate() -
Andrew Tridgell
ee8cb88682 return an error code on password attack, rather than exiting. 
otherwise security scanners may think we are vulnerable!
 -
Jeremy Allison
cf5015f159 Added tdb_change_int_atomic() to allow atomic updates of a tdb int value. 
Jeremy.
 -
Jeremy Allison
19145bae72 Fixup the large_writex problem (a large_writex can send a full 64k of data, 
we already have space for this we just need to understand the length correctly).
Jeremy.
 -
Jeremy Allison
ec64ddac5f Added tdb_errstr() messages so we can see if these functions fail. 
Jeremy.
 -
Jeremy Allison
c328dda0fa This is *very* cool. I'm pretty convinced we can just set the 
CAP_LARGE_READX|CAP_LARGE_WRITEX bits on negprot and out W2K
performance goes through the roof......
And as we *always* offer 64 buffers we can do this with this
simple change.....
Jeremy.
 -
Jeremy Allison
d7aa42e459 Defensive brlock and locking database cleaning code. 
Jeremy.
 -
Tim Potter
083b74c743 Fixes to get pam_auth() functionality working again. -
Jeremy Allison
87025c223d groupdb/mapping.c: Fix gcc compiler warning. 
smbd/connection.c: Sync up with code in 2.2
Jeremy.
 -
Jeremy Allison
c6cd42a679 Check sizes of data entries in connections.tdb before deciding they're crecs... 
We will need this when we use finer grained locking for max connections.
Jeremy.
 -
Andrew Tridgell
6bdbeb4a32 make the max_connections code less horrendously inefficient 
- it didn't honour the clear flag
- it locked the database (not necessary)

the previous code would do 10^6 kill() operations for 1000 people
logging in - and all with the database locked. Not very scalable.

Still haven't added the counter, that would make it really efficient
 -
Jeremy Allison
6565b8c978 tdb_traverse returns number of records, not zero, on success. 
Now tested max connections and it works again. Hurrah !
Jeremy.
 -
Jeremy Allison
0852465053 Implemented max connections in a similar way to 2.0.x (scan of connection db). 
This needs testing !
Tidied up tabs in tdb.c.
Jeremy.
 -
Andrew Tridgell
572a37534b statcache initialisation fix 
pointed out by Elrond
 -
Jeremy Allison
be7e1d0f2c Now we're doing the substituion in the lp_string code remove the erroneous 
debug 0 warning.
Jeremy.
 -
Jeremy Allison
aba243ca08 Fixed nasty little bug found by Gerald where we were corrupting the mode 
bits before checking if we should change them on non-acl systems.
Jeremy.
 -
Jeremy Allison
0db8a61d71 Made "security XXX" masks apply to ACL set. By default they have no effect. 
Removed "restrict acl with mask" - redundent.
Jeremy.
 -
Tim Potter
88a7b2c3f8 More compiler warning fixes. -
Jeremy Allison
15584d30cd Patch from ackley@cs.unm.edu to clear server_fd/client_fd in root daemon to stop 
%I getpeername() failure.
Jeremy.
 -
Jeremy Allison
f100e091ab Fix for bad profile perms. Ensure r on files and rwx on directories. 
Jeremy.
 -
Gerald Carter
96d0e7c330 Patch from Simo: 
o sed 's/pdb_clear_sam/pdb_free_sam/g'
  o add pdb_reset_sam()
  o password changing should be ok now as well.
 -
Jeremy Allison
e881971503 Patch from David_Tiller@ccnotes.ccity.com finally applied now I've thought 
about it to stop account lockouts with "security=server" mode. Sorry for
the delay David.
Jeremy.
 -
Jean-François Micouleau
a4a4c02b12 Big cleanup of passdb and backends. 
I did some basic tests but I have probably broken something. Notably the
password changing. So don't cry ;-)

	J.F.
 -
Gerald Carter
d5d6f01aaf merge from 2.2 in password_ok() to ensure that we check the 
return code from smb_pam_accountcheck()
 -
Jeremy Allison
7792e32ba7 Fixed SHM_R/SHM_W warnings by moving sys/ipc.h and sys/shm.h into includes.h 
and using autoconf tests.
Added "restrict acl with mask" parameter.
Jeremy.
 -
Jeremy Allison
47b4d82536 Had to add a "pam password change" parameter (defaults to "off") and inlined 
the pam password change code to ensure that existing and working password
chat scripts don't break with 2.2.1. PAM password changing has to be explicitly
requested.
Allowed wildcards in pam password change matching (matches password chat
script matching). Had to add const (sorry Tim :-) to ms_fnmatch() to
stop warnings. Don't worry - the const changes are isolated and don't
cause any other warnings :-).
Jeremy.
 -
Jeremy Allison
1648ac64a7 Based on an original PAM patch by Andrew Bartlett, re-written by me to 
remove global static PAM variables, and to tidy up the PAM internals code.
Now looks like the rest of Samba.
Still needs testing.
Jeremy.
 -
Andrew Tridgell
c986a3c51e - fixed some compiler warnings 
- fixed slprintf and vsprintf macros
 -
Andrew Tridgell
c7aeb2254d - added test for vasprintf 
- cleaned up GNUC printf attribute macros
- added enum handling in mkproto
- removed non-vararg code
- made slprintf and vslprintf just macros for snprintf and vsnprintf
- don't need slprintf code any more
 -
Andrew Tridgell
338d5ca8ad use asprintf for hideunreadable option -
Jeremy Allison
1be60597cd rpcclient/rpcclient.c: Non-void return in void function. 
smbd/sec_ctx.c: Fixed potential memory leak spotted by
Kenichi Okuyama@Tokyo Research Lab, IBM-Japan, Co.
utils/nmblookup.c: gcc warning on Solaris fix.
Jeremy.
 -
Jeremy Allison
6fcb600dcd More debug %d -> %u issues. 
Jeremy.
 -
Jeremy Allison
a60ecb4e53 Tidy up args to DEBUG Statements - found by gcc on Solaris. 
Jeremy.
 -
Jeremy Allison
2fd5e0bf14 Fixes for problems in NFS server code from Michael Gerdts <Michael.Gerdts@usa.alcatel.com>. 
Jeremy.
 -
Jeremy Allison
b35ca2c6b1 Fix from matthew.hart@veritas.com - bad error return from linux_oplock_receive_message(). 
Jeremy.
 -
Jeremy Allison
f02e67a096 Sync with default perm changes in 2.2. 
Jeremy.
 -
Jeremy Allison
43b69e5d6e Fixed memory leak in new session code. 
Jeremy.
 -
Jeremy Allison
d4b1c0be2e Added smb_ prefix to all Samba wrapper pam functions. 
Fixed off by one bug using StrnCpy instead of strdup().
Jeremy.
 -
Jeremy Allison
071c799f47 Commit of a modified version of Andrew Bartlett's patch that removes the 
horrid utmp hostname parameter - now uses the client name instead.
Also tidies up some of the unencrypted password checking when PAM
is compiled in.
FIXME ! An pam_accountcheck() is being called even when smb encrypted
passwords are negotiated. Is this the correct thing to do when winbindd
is running ! This needs *SEVERE* testing....
Jeremy.
 -
Jeremy Allison
1e09874467 Fixed compile bug when using --with-pam but not --with-utmp. 
Jeremy.
 -
Jean-François Micouleau
9513eb87c2 a missing string conversion. 
J.F.
 -