Gerald Carter [Mon, 9 Feb 2004 17:45:29 +0000 (17:45 +0000)]
bring release notes in the 3.0 branch up to date
Volker Lendecke [Mon, 9 Feb 2004 15:21:42 +0000 (15:21 +0000)]
And another build fix.
Volker
Volker Lendecke [Mon, 9 Feb 2004 14:43:18 +0000 (14:43 +0000)]
Fix the build & get rid of a compiler warning.
Volker
Tim Potter [Mon, 9 Feb 2004 00:59:22 +0000 (00:59 +0000)]
Apply James' printf format checking patch for SGI MIPSPro compiler.
Andrew Bartlett [Sun, 8 Feb 2004 11:28:51 +0000 (11:28 +0000)]
Add more static...
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 11:26:46 +0000 (11:26 +0000)]
nsswitch/winbindd_util.c:
add static
smbd/uid.c:
remove unused function
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 11:05:34 +0000 (11:05 +0000)]
When we set a domain sid, force get_global_sam_sid() to do it's work again.
This should ensure that the value it returns is always consistant.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 11:02:11 +0000 (11:02 +0000)]
Add static, and assert that we will never overflow the static fstring
in pdb_encode_acct_ctrl() (All current callers are fine)
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 11:00:25 +0000 (11:00 +0000)]
More 'static' work.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 10:59:09 +0000 (10:59 +0000)]
Make it possible to 'net rpc samdump' of any domain you are currently joined
to, despite any smb.conf settings.
Work to allow the same for 'net rpc vampire', but instead give a clear
error message on what is incorrect.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 09:25:58 +0000 (09:25 +0000)]
Add some help for 'net rpc password'.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 08:38:42 +0000 (08:38 +0000)]
Make more functions static, and remove duplication in the use of functions
in lib/smbpasswd.c that were exact duplicates of functions in passdb/passdb.c
(These should perhaps be pulled back out to smbpasswd.c, but that can occour
later).
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 07:17:30 +0000 (07:17 +0000)]
Samba hasn't used this function for ages - it's now handled deep in the
auth subsystem.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 05:31:01 +0000 (05:31 +0000)]
Remove more unused portions of the 'password cache'.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 02:49:30 +0000 (02:49 +0000)]
Remove more unused functions - this time parts of the 'password cache'.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 01:30:59 +0000 (01:30 +0000)]
Another static function.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 01:02:12 +0000 (01:02 +0000)]
Make this table static const.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 00:58:56 +0000 (00:58 +0000)]
Remove unused utility function.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 00:54:32 +0000 (00:54 +0000)]
Make get_dc_list static - we only ask for a sorted list externally.
Andrew Bartlett
Andrew Bartlett [Sun, 8 Feb 2004 00:31:36 +0000 (00:31 +0000)]
Bug found by gd - the new range-reterival code did still had 'member'
hardcoded into it.
This didn't matter, as we only use it for 'member' so far...
Andrew Bartlett
Andrew Bartlett [Sat, 7 Feb 2004 03:54:39 +0000 (03:54 +0000)]
I should have done this years ago...
This adds the very simple 'admin set password' capability to 'net rpc',
much as we have it for 'net ads'.
Andrew Bartlett
Tim Potter [Fri, 6 Feb 2004 01:20:45 +0000 (01:20 +0000)]
Replace .po with .@PICSUFFIX@
Eloy Paris [Thu, 5 Feb 2004 17:30:56 +0000 (17:30 +0000)]
Updating the Debian packaging stuff in packaging/Debian/. This hadn't
been updated since the 3.0.0 release so it was broken for 3.0.1 and
later. It's nice that now the Makefile supports a $DESTDIR for "make
install" :-)
Jeremy Allison [Wed, 4 Feb 2004 20:28:51 +0000 (20:28 +0000)]
Fix final valgrind errors with #830. Catch mb conversion error that may not
terminate correctly.
Jeremy.
Gerald Carter [Wed, 4 Feb 2004 19:46:29 +0000 (19:46 +0000)]
move disabling code to context functions instead of backwards compatible wrappers
Jeremy Allison [Wed, 4 Feb 2004 19:13:45 +0000 (19:13 +0000)]
Fixup the allocate version of the function to do "crap" conversions too.
Embarrassing number of goto's in this :-(. Fixes #830 I think.
Jeremy.
Gerald Carter [Wed, 4 Feb 2004 17:22:36 +0000 (17:22 +0000)]
return NSS_SUCCESS if we have found the max number of gids possible on Solaris; patch from John Klinger <john.klinger@lmco.com>
Andrew Bartlett [Wed, 4 Feb 2004 11:41:22 +0000 (11:41 +0000)]
Fix const warning
Andrew Bartlett [Wed, 4 Feb 2004 11:12:25 +0000 (11:12 +0000)]
This should be the correct fix for the lack of a prototype for
remote_password_change().
Sorry for the original bug.
Andrew Bartlett
Jeremy Allison [Wed, 4 Feb 2004 02:09:41 +0000 (02:09 +0000)]
Working on #830. Cope with bad conversions better - don't just memcpy but
try a crap conversion instead. Next this needs to be done to the convert_alloc
function.
Actually fixes some valgrind warnings as well - cool !
Jeremy.
Jeremy Allison [Tue, 3 Feb 2004 03:23:18 +0000 (03:23 +0000)]
Fix for a bug where the mutex could be left locked. Also remove the
memory keytab code which has no effect. Driven by bug report from
"Rob J. Caskey" <rcaskey@uga.edu>.
Jeremy.
Jeremy Allison [Mon, 2 Feb 2004 21:14:55 +0000 (21:14 +0000)]
A few fixes from "L. Lucius" <ib@digicron.com>. Don't use int when it's
really a size_t.
Jeremy.
Gerald Carter [Mon, 2 Feb 2004 20:54:14 +0000 (20:54 +0000)]
fix installmodules problem with make on True64
Gerald Carter [Mon, 2 Feb 2004 20:16:24 +0000 (20:16 +0000)]
fix problems with proto.h
Gerald Carter [Mon, 2 Feb 2004 14:46:20 +0000 (14:46 +0000)]
update script to build a tarball from the cvs tree
Andrew Tridgell [Mon, 2 Feb 2004 12:09:35 +0000 (12:09 +0000)]
there are places in the samba3 code that don't check properly for
packet-termination of strings. This change ensures that when we go
past the end of a packet we hit 2 null bytes, thus terminating. We are
relying on the SAFETY_MARGIN packet allocation stuff here.
Andrew Tridgell [Mon, 2 Feb 2004 12:02:43 +0000 (12:02 +0000)]
the conversion from int to size_t in charcnv did not take into account
one place where we checked "if (src_len > 0)".
I actually would greatly prefer to switch back to int for src_len. The
type *can* be negative, which means an unsigned type is
inappropriate. There is absolutely no reason why "int" should not be
used for a parameter like this.
I didn't change back to int as we are close to a release and I wanted
a mininal change, but please don't go changing types like this in
future without very careful testing and a damn good reason.
this bug broke pull_ucs2(), I would not be surprised if it caused all
sorts of nastiness. Thanks to vl for noticing the symptoms!
Volker Lendecke [Mon, 2 Feb 2004 07:53:56 +0000 (07:53 +0000)]
Remove bogus check. No functional change, just cosmetics.
Volker
Andrew Bartlett [Mon, 2 Feb 2004 07:47:25 +0000 (07:47 +0000)]
Always at least try to compile in cracklib support.
Andrew Bartlett
Andrew Bartlett [Mon, 2 Feb 2004 07:45:50 +0000 (07:45 +0000)]
Merge the 'use cracklib' parameter from HEAD back to 3.0
Andrew Bartlett
Gerald Carter [Mon, 2 Feb 2004 00:08:35 +0000 (00:08 +0000)]
remerge andrew's cracklib patch from HEAD and fix a compile warnings
Tim Potter [Sun, 1 Feb 2004 22:17:36 +0000 (22:17 +0000)]
Include sys/acl.h in check for broken nisplus include files. Bug #1025.
Tim Potter [Sun, 1 Feb 2004 10:55:54 +0000 (10:55 +0000)]
Don't log an error in tdb_brlock() if a non-blocking lock returns EAGAIN -
it's supposed to do that.
Gerald Carter [Sat, 31 Jan 2004 18:25:57 +0000 (18:25 +0000)]
* BUG 101: patch from j.lu@tiesse.com to set the SV_TYPE_PRINTQ_SERVER;
* don't set the unix_ERR_XX code in mkdir_internal, let the error mapping
handle it.
Gerald Carter [Sat, 31 Jan 2004 14:44:27 +0000 (14:44 +0000)]
cleanup patch for bug 977 so we don't display incorrect debug messages
Andrew Bartlett [Fri, 30 Jan 2004 23:37:38 +0000 (23:37 +0000)]
If we are setting the NT or LM password to NULL, remove the attribute
rather than writing XXXXX
Andrew Bartlett
Gerald Carter [Fri, 30 Jan 2004 20:27:58 +0000 (20:27 +0000)]
fix pam config file
Gerald Carter [Fri, 30 Jan 2004 20:26:03 +0000 (20:26 +0000)]
fix a few more bugs in Fedora scripts (files not getting installed)
Jeremy Allison [Fri, 30 Jan 2004 18:38:48 +0000 (18:38 +0000)]
Fix up name canonicalization (needed for krb5 keytab support later).
Remove source_env handler (no longer used in any codepath).
Jeremy.
Gerald Carter [Fri, 30 Jan 2004 16:00:42 +0000 (16:00 +0000)]
fixes for fedora packaging
Gerald Carter [Fri, 30 Jan 2004 14:59:40 +0000 (14:59 +0000)]
disable any account that doesn't have a password and doesn't had the ACB_PWNOTREQ bit set
Gerald Carter [Thu, 29 Jan 2004 22:16:58 +0000 (22:16 +0000)]
more initialization fixes
Gerald Carter [Thu, 29 Jan 2004 20:15:12 +0000 (20:15 +0000)]
disable template accounts by default
Gerald Carter [Thu, 29 Jan 2004 20:14:50 +0000 (20:14 +0000)]
initialization fixes
Gerald Carter [Thu, 29 Jan 2004 17:28:45 +0000 (17:28 +0000)]
removing more unused parameters
Gerald Carter [Thu, 29 Jan 2004 14:03:48 +0000 (14:03 +0000)]
BUG 570: don't overwrite LDFLAGS; patch from MORIYAMA Masayuki <moriyama@miraclelinux.com>
Andrew Tridgell [Thu, 29 Jan 2004 06:14:13 +0000 (06:14 +0000)]
completely rewrote the AIX UESS backend (UESS is the AIX equivalent of
NSS). This time I think I've actually got it right. I wrote a fairly
good test suite for UESS modules (similar to nsstest.c) that allowed
me to explore how the modules supplied with AIX actually work.
This new module also incorporates authentication features, so you
don't need a PAM module at all. Just install this UESS module and
authentication will "just work". It also handles password change, so
/usr/bin/passwd can be used to change windows password.
Richard Sharpe [Thu, 29 Jan 2004 00:10:40 +0000 (00:10 +0000)]
Remove an unused parameter from reload_services_file.
Jeremy Allison [Wed, 28 Jan 2004 23:41:55 +0000 (23:41 +0000)]
Merge of Chris's fix.
Jeremy.
Gerald Carter [Tue, 27 Jan 2004 19:00:06 +0000 (19:00 +0000)]
forgotten commit -- version == 3.0.3pre1
Gerald Carter [Tue, 27 Jan 2004 15:48:43 +0000 (15:48 +0000)]
fix typo in init script
Gerald Carter [Tue, 27 Jan 2004 15:29:30 +0000 (15:29 +0000)]
prepping the SAMBA_3_0 branch for 3.0.3 work
Gerald Carter [Tue, 27 Jan 2004 15:28:33 +0000 (15:28 +0000)]
bug 977 - don't create a homes share for a user if a static share already exists by the same name
Andrew Bartlett [Tue, 27 Jan 2004 10:01:30 +0000 (10:01 +0000)]
Clarify comment on set_effective_uid()
Andrew Bartlett
Andrew Bartlett [Mon, 26 Jan 2004 09:03:09 +0000 (09:03 +0000)]
Revise our server-side password change code to cope with the various
different feilds that different clients send. (For example, not all clients
send both password types).
This also cleans up the code to make it clearer what is really going on,
and to make better use of common functions.
Andrew Bartlett
Andrew Bartlett [Mon, 26 Jan 2004 08:45:02 +0000 (08:45 +0000)]
This adds client-side support for the unicode/SAMR password change scheme.
As well as avoiding DOS charset issues, this scheme returns useful error
codes, that we can map back via the pam interface.
This patch also cleans up the interfaces used for password buffers, to
avoid duplication of code.
Andrew Bartlett
Andrew Bartlett [Mon, 26 Jan 2004 08:38:34 +0000 (08:38 +0000)]
Add a few more NTSTATUS <=> PAM error mappings.
Andrew Bartlett
Andrew Bartlett [Mon, 26 Jan 2004 02:19:44 +0000 (02:19 +0000)]
Patch by Luca Bolcioni <Luca.Bolcioni@yacme.com>. Ensure we always
initialise the session key. Fixes segfaults with security=server, and
encrypt passwords = no.
Andrew Bartlett
Volker Lendecke [Sun, 25 Jan 2004 10:14:50 +0000 (10:14 +0000)]
Fix memleak just introduced. Thanks to abartlet :-)
Volker
Volker Lendecke [Sun, 25 Jan 2004 10:04:10 +0000 (10:04 +0000)]
On my SuSE 8.2 (glibc 2.3.2) the getpwnam inside pdb_getsampwnam reset
the surrounding getpwent loop to the first entry. So smbd went into an
endless loop.
Volker
Andrew Bartlett [Sun, 25 Jan 2004 01:11:10 +0000 (01:11 +0000)]
Fix the initialisation vectors for NTLM2, so that they at least make sense,
even if they don't work yet.
Andrew Bartlett
Andrew Bartlett [Sun, 25 Jan 2004 01:02:39 +0000 (01:02 +0000)]
If we are providing strndup(), ensure we provide a prototype too.
Andrew Bartlett
Andrew Bartlett [Sun, 25 Jan 2004 00:50:39 +0000 (00:50 +0000)]
Fix removal of attributes in LDAP - we would not actually remove the old
value in the previous code.
Andrew Bartlett
Andrew Bartlett [Sat, 24 Jan 2004 10:46:55 +0000 (10:46 +0000)]
A Samba DC is nothing special these days - so every domain controller
location packet from the client is not a DEBUG(1) event anymore...
(Yes, we printed this for each of these UDP packets...)
Andrew Bartlett
Volker Lendecke [Fri, 23 Jan 2004 12:57:29 +0000 (12:57 +0000)]
Fix typo
Volker Lendecke [Fri, 23 Jan 2004 12:04:07 +0000 (12:04 +0000)]
Fix decoding of base64. We got the length wrong when the result was not
an exact multiple of 3.
I also wrote a torture test and it survived some minutes of random stuff
coded/decoded up to 16 MB data. But that would be a bit too embarassing to
commit... :-)
Volker
Andrew Bartlett [Thu, 22 Jan 2004 10:12:26 +0000 (10:12 +0000)]
Fix for debian Bug#225328 by LaMont Jones <lamont@debian.org>, where
the failure of our LFS test caused the _GNU_SOURCE define not to be
added, causeing strndup() not to be defined...
I'll into when we really should define _GNU_SOURCE shortly, but the
fix is correct anyway.
Andrew Bartlett
Stefan Metzmacher [Thu, 22 Jan 2004 01:50:58 +0000 (01:50 +0000)]
* Add SIGABRT to fault handling
so we now got a backtrace, if we crash
in libldap with SIGABRT
metze
Volker Lendecke [Wed, 21 Jan 2004 14:48:02 +0000 (14:48 +0000)]
Fix compiler warning
Volker Lendecke [Wed, 21 Jan 2004 14:36:56 +0000 (14:36 +0000)]
Display some nicer error messages for login via 'net'. I don't
see a reason why we have so many special cases and not simply use
nt_errstr(nt_status).
Comments?
Volker
Gerald Carter [Sat, 17 Jan 2004 01:48:36 +0000 (01:48 +0000)]
include tdbdump man page in file list
Jeremy Allison [Sat, 17 Jan 2004 00:30:35 +0000 (00:30 +0000)]
Fix for a signing bug when the mid wraps.
Found by Fran Fabrizio <fran@cis.uab.edu>.
Add to the *start* of the list not the end of the list.
This ensures that the *last* send sequence with this mid
is returned by preference.
This can happen if the mid wraps and one of the early
mid numbers didn't get a reply and is still lurking on
the list.
Jeremy.
Gerald Carter [Fri, 16 Jan 2004 22:48:59 +0000 (22:48 +0000)]
starting WHATSNEW for thepost 3.0.2rc1 release
Gerald Carter [Fri, 16 Jan 2004 22:15:35 +0000 (22:15 +0000)]
fix another bug caused by cli_lsa_query_info_policy() changes
Gerald Carter [Fri, 16 Jan 2004 19:01:20 +0000 (19:01 +0000)]
remove unneeded man pages from packages
Gerald Carter [Fri, 16 Jan 2004 17:46:38 +0000 (17:46 +0000)]
BUG 891 & 949: Fedora Packaging Fixes
Jim McDonough [Fri, 16 Jan 2004 15:07:28 +0000 (15:07 +0000)]
Fix another join problem. Don't use a TALLOC_CTX before it has been
initialized.
Also split out the oldstyle join into a new fn, allowing us to call it
with no failure message from net rpc join, but displaying a failure message
when used with net rpc oldjoin.
Volker Lendecke [Fri, 16 Jan 2004 15:01:09 +0000 (15:01 +0000)]
Patch from "Stoian Ivanov" <sdr@bultra.com>: Add -g (greppable..) to
smbclient -L to make the output usable in pipes.
Volker
Volker Lendecke [Fri, 16 Jan 2004 13:11:01 +0000 (13:11 +0000)]
Commit sid<->[ug]id extensions to libnss_winbind.so on Linux, as well as a
factored-out nss_winbind.[ch]. I took tridge's public domain license comment
for the nss_winbind.[ch].
This is probably not the last word on that extension, but as it is quite
non-intrusive to the main samba code, I would like to give it a start.
Volker
Gerald Carter [Thu, 15 Jan 2004 20:47:30 +0000 (20:47 +0000)]
Bug 381: check builtin (not local) group SID. Patch from Jianliang Lu <j.lu@tiesse.com>
Gerald Carter [Thu, 15 Jan 2004 20:32:27 +0000 (20:32 +0000)]
setting version to 3.0.2rc2
Gerald Carter [Thu, 15 Jan 2004 20:14:02 +0000 (20:14 +0000)]
adding changelog for 3.0.2rc1
Jim McDonough [Thu, 15 Jan 2004 19:45:36 +0000 (19:45 +0000)]
Fix net rpc join (at least newstyle) after it was broken by changing
the parms to cli_lsa_query_info_policy without changing them here...
Gerald Carter [Thu, 15 Jan 2004 19:03:18 +0000 (19:03 +0000)]
* BUG 446
- setup_logging() in smbclient to be interactive (remove the timestamps)
- Fix bad return value in pull_ucs2( needs more testing to make sure this
didn't break something else) that caused clistr_pull() to always read
the same string from the buffer (pull_usc2() could return -1 if the original
source length was given as -1)
- increment some debugging messages to avoid printing them out so often
Gerald Carter [Thu, 15 Jan 2004 17:18:39 +0000 (17:18 +0000)]
BUG 958; don't use the -N option when invoking smbclient from the smbtar script
Volker Lendecke [Thu, 15 Jan 2004 17:17:58 +0000 (17:17 +0000)]
reply_spnego_kerberos did not set the domain of the user handed to
register_vuid correctly. We ended up with the local netbios name in
substitutions for %D later.
Volker
P.S: Tridge, I can *really* see why you want to get rid of global variables
:-)
Volker Lendecke [Thu, 15 Jan 2004 17:05:08 +0000 (17:05 +0000)]
Don't substitute stuff in lp_afs_username_map, this is explicitly
done later.
Volker
Volker Lendecke [Thu, 15 Jan 2004 15:36:01 +0000 (15:36 +0000)]
And another memory corruption in winbind. Arg 3 of safe_strcpy does not
include the terminating 0.
Volker
Volker Lendecke [Thu, 15 Jan 2004 15:00:44 +0000 (15:00 +0000)]
Fix a segfault in winbindd. Calling getusersids with a SID that results in 0
groups winbind ended up freeing an uninitialised pointer.
Volker
Stefan Metzmacher [Thu, 15 Jan 2004 09:08:06 +0000 (09:08 +0000)]
* Fix sys_chown() when no chown() is presend
metze