cvs2svn Import User [Wed, 19 Dec 2001 13:13:06 +0000 (13:13 +0000)]
This commit was manufactured by cvs2svn to create tag
'release-3-0-alpha10'.
Samba Release Account [Wed, 19 Dec 2001 13:13:05 +0000 (13:13 +0000)]
preparing for release of 3.0-alpha10
Andrew Tridgell [Wed, 19 Dec 2001 12:38:52 +0000 (12:38 +0000)]
add support for mixtures of ADS/NT4 domains, as long as the primary
domain is ADS
Andrew Tridgell [Wed, 19 Dec 2001 12:21:12 +0000 (12:21 +0000)]
much better ADS error handling system
Andrew Tridgell [Wed, 19 Dec 2001 09:58:52 +0000 (09:58 +0000)]
we only have gss_ fns on a krb5 capable box
Andrew Tridgell [Wed, 19 Dec 2001 09:53:30 +0000 (09:53 +0000)]
added trusted realm support to ADS authentication
the method used for checking if a domain is a trusted domain is very
crude, we should really call a backend fn of some sort. For now I'm
using winbindd to do the dirty work.
Andrew Tridgell [Wed, 19 Dec 2001 08:44:23 +0000 (08:44 +0000)]
- added initial support for trusted domains in winbindd_ads
- gss error code patch from a.bokovoy@sam-solutions.net
- better sid dumping in ads_dump
- fixed help in wbinfo
Andrew Tridgell [Wed, 19 Dec 2001 08:40:50 +0000 (08:40 +0000)]
better nsstest error checking
Andrew Tridgell [Wed, 19 Dec 2001 08:37:03 +0000 (08:37 +0000)]
fixed sid_compare_domain()
Martin Pool [Wed, 19 Dec 2001 08:18:07 +0000 (08:18 +0000)]
Use less memory, but scribble all over it, just in case there's
something wrong with the way it's allocated.
Martin Pool [Wed, 19 Dec 2001 07:49:25 +0000 (07:49 +0000)]
Doc how to reply to messages.
Martin Pool [Wed, 19 Dec 2001 07:36:32 +0000 (07:36 +0000)]
Make TALLOC_CTX and talloc_chunk private to talloc.c.
Add a global singly-linked list of all active talloc pools, so that we
can eventually show how much memory is used for different purposes.
This also gives a check that pools are not being doubly freed.
talloc_init_named now handle a NULL name properly (ie does nothing)
Add accessor talloc_pool_name().
Martin Pool [Wed, 19 Dec 2001 06:22:23 +0000 (06:22 +0000)]
Doc
Martin Pool [Wed, 19 Dec 2001 06:00:19 +0000 (06:00 +0000)]
Doc
Martin Pool [Wed, 19 Dec 2001 05:02:42 +0000 (05:02 +0000)]
Put PRINTF_ATTRIBUTE on talloc_init_named, talloc_asprintf,
talloc_vasprintf.
Martin Pool [Wed, 19 Dec 2001 04:55:58 +0000 (04:55 +0000)]
Doc.
Martin Pool [Wed, 19 Dec 2001 04:50:10 +0000 (04:50 +0000)]
Start adding some debugging features to talloc based on Samba's
ancient mem_man.c:
Each TALLOC_CTX now has a field to store its purpose, to aid in
tracking down memory bloat. A new call talloc_init_named() should be
used instead of talloc_init() so that this is set.
Added talloc_vasprintf to be called by varargs functions.
Martin Pool [Wed, 19 Dec 2001 04:46:35 +0000 (04:46 +0000)]
Add a very trivial talloc torture program, bin/talloctort. Not built
by default.
Jeremy Allison [Wed, 19 Dec 2001 03:14:54 +0000 (03:14 +0000)]
Fix for extra capabilities from Urban Widmark <urban@teststation.com>.
Jeremy.
Jeremy Allison [Wed, 19 Dec 2001 02:50:44 +0000 (02:50 +0000)]
Patch from dan_thibadeau@hp.com to allow domain set in authfile.
Jeremy.
Jean-François Micouleau [Wed, 19 Dec 2001 00:15:29 +0000 (00:15 +0000)]
added info level 1 to samr_query_alias()
Jeremy Allison [Tue, 18 Dec 2001 19:44:14 +0000 (19:44 +0000)]
Fixup JF's weird SID return :-).
Jeremy
Jeremy Allison [Tue, 18 Dec 2001 08:19:02 +0000 (08:19 +0000)]
Tidyup utmp code to cope with hostname = NULL.
Jeremy
Andrew Tridgell [Tue, 18 Dec 2001 06:22:15 +0000 (06:22 +0000)]
fixed handling of empty or dead domain in wbinfo -g
Tim Potter [Tue, 18 Dec 2001 06:11:32 +0000 (06:11 +0000)]
A fix to override the location of a user's home directory if it is
specified in the [homes] section of the smb.conf file.
Jeremy, can you take a look at this? This is in response to someone on the
samba mailing list worrying about it.
Tim.
From: Phil Thompson <philnanne@mediaone.net>
To: samba@lists.samba.org
Subject: Different [homes] behavior in 2.2.2
X-Original-Date: Mon, 17 Dec 2001 23:09:28 -0500
Is it possible to configure samba to disregard the home directory in the
passwd file when using [homes]? Even though an alternate "path" is set
in [homes], the service fails since the unix home directory is invalid
(nonexistent) on the server.
[...]
This behavior of validating the user's home dir as set in the passwd
files appears to be new
in 2.2.2 and the latest CVS. Anyway to work around this?
Tim Potter [Tue, 18 Dec 2001 05:08:48 +0000 (05:08 +0000)]
Fixed uninitialised variable warning.
Tim Potter [Tue, 18 Dec 2001 05:04:09 +0000 (05:04 +0000)]
Removed unused function, delete_fn()
Tim Potter [Tue, 18 Dec 2001 05:00:07 +0000 (05:00 +0000)]
Fixed bad args to debug statements.
Jeremy Allison [Tue, 18 Dec 2001 02:17:46 +0000 (02:17 +0000)]
I'm pretty sure we need to return our netbios name for LSA_QUERY_INFO
level 5 when we're a standalone server. This makes the security dialogs
return correct info. JF - please check !
Jeremy.
Jeremy Allison [Tue, 18 Dec 2001 02:09:57 +0000 (02:09 +0000)]
Return NT_STATUS_OBJECT_NOT_FOUND or ERRbadpipe if pipe name not found.
Jeremy.
Jeremy Allison [Tue, 18 Dec 2001 01:26:54 +0000 (01:26 +0000)]
Fixed the bug with descending into mangled directories.
The problem is that name_map_mangle can *change* the length of a patchname.
Ensure that all the character pointer messing about can cope with changing
sizes of components. This code is too ugly to live.....
This also needs *lots* of testing.
Jeremy.
Jean-François Micouleau [Tue, 18 Dec 2001 00:32:45 +0000 (00:32 +0000)]
in lsa_query_info at level 5 in member mode, we must reply our machine
name and not our domain name.
I thought it has been already fixed !
J.F.
Jean-François Micouleau [Tue, 18 Dec 2001 00:30:25 +0000 (00:30 +0000)]
fixing bug I introduced.
J.F.
Jean-François Micouleau [Tue, 18 Dec 2001 00:27:46 +0000 (00:27 +0000)]
initialise strings
Jean-François Micouleau [Mon, 17 Dec 2001 23:03:23 +0000 (23:03 +0000)]
there is no unknown field in LSA_SEC_QOS
some cleanup of the lsa_open_policy and lsa_open_policy2 parser. the
length fields are not correct but that's what NT send. We don't anymore
underflow or overflow the decoding.
added the domain admins group to the default SD.
we are now checking the desired access flag in the lsa_open_policy_X()
calls and in most functions also.
J.F.
Jean-François Micouleau [Mon, 17 Dec 2001 22:57:06 +0000 (22:57 +0000)]
tidy up debug
J.F.
Jeremy Allison [Mon, 17 Dec 2001 19:16:22 +0000 (19:16 +0000)]
Made "hide unreadable" work much more reliably (just for Volker :-).
Jeremy.
Jim McDonough [Mon, 17 Dec 2001 18:53:57 +0000 (18:53 +0000)]
make sure we pass the lm and nt data in the right order. They were swapped, and somehow this worked when both were provided, but not when only one was.
Samba Release Account [Mon, 17 Dec 2001 11:29:48 +0000 (11:29 +0000)]
preparing for release of 3.0-alpha9
Andrew Tridgell [Mon, 17 Dec 2001 11:16:22 +0000 (11:16 +0000)]
allow selection of the organisational unit when joining a realm
Andrew Tridgell [Mon, 17 Dec 2001 11:13:57 +0000 (11:13 +0000)]
obey "use mmap" on case tables
Andrew Tridgell [Mon, 17 Dec 2001 11:13:03 +0000 (11:13 +0000)]
removed unused variable
Tim Potter [Mon, 17 Dec 2001 01:53:02 +0000 (01:53 +0000)]
Replaced some hardcoded hex numbers with constants.
Made a note about NOTIFY_OPTION_TYPE and NOTIFY_OPTION_TYPE_DATA - they are
actually one structure. The latter is just the deferred referrant of the
former.
Tim Potter [Mon, 17 Dec 2001 01:45:20 +0000 (01:45 +0000)]
Added some constants for registry data types.
Jeremy Allison [Sun, 16 Dec 2001 23:44:38 +0000 (23:44 +0000)]
Moved fchown_acl change to the point where we *really* know if we
created the file or not.
Jeremy.
Jeremy Allison [Sun, 16 Dec 2001 21:04:19 +0000 (21:04 +0000)]
Ensured filetimes set (by name) after close. Ignore errors. This is the
correct way to ensure times set in 'pending modtime' and 'time close'
are always set correctly. Inspired by patch from Juergen Hasch.
Jeremy.
Jeremy Allison [Sat, 15 Dec 2001 02:46:48 +0000 (02:46 +0000)]
Allow HPUX to link with new ACL code.
Jeremy.
Jeremy Allison [Sat, 15 Dec 2001 02:40:16 +0000 (02:40 +0000)]
Added HPUX ACL code.
Jeremy.
Jeremy Allison [Fri, 14 Dec 2001 21:51:09 +0000 (21:51 +0000)]
Added the group enum code from 2.2
Jeremy.
Jim McDonough [Fri, 14 Dec 2001 21:37:56 +0000 (21:37 +0000)]
If domain SID can't be fetched, we shouldn't return NT_STATUS_NO_MEMORY. It causes a confusing client error. Changed to NT_STATUS_CANT_ACCESS_DOMAIN_INFO.
Gerald Carter [Fri, 14 Dec 2001 20:38:04 +0000 (20:38 +0000)]
ChangeID fixe from APPLIANCE_HEAD
Simo Sorce [Fri, 14 Dec 2001 18:49:02 +0000 (18:49 +0000)]
I see no reasons why we should limit username lenght while checking
see bug 22130
jeremy, probably this should be fixed also in 2_2
Jean-François Micouleau [Fri, 14 Dec 2001 17:31:48 +0000 (17:31 +0000)]
add lsa_query_secobj server code. level 4 is the ACL, level 1 is the
owner. that's basic stuff.
got the POLICY_ define from TNG but they are also in an include file in
the NT SDK.
J.F.
Jeremy Allison [Fri, 14 Dec 2001 16:31:41 +0000 (16:31 +0000)]
Updated Solaris link options from DaveCB.
Jeremy.
Jean-François Micouleau [Fri, 14 Dec 2001 14:35:38 +0000 (14:35 +0000)]
Rafal (mimir) patch for trusts r.
Tim Potter [Fri, 14 Dec 2001 04:43:31 +0000 (04:43 +0000)]
FALSE -> False
Tim Potter [Fri, 14 Dec 2001 03:55:44 +0000 (03:55 +0000)]
Display a nice error message if the user%password specified for net rpc
join does not have administrator privileges.
Tim Potter [Fri, 14 Dec 2001 03:55:09 +0000 (03:55 +0000)]
Display a nice error message for NT_STATUS_LOGON_FAILURE in connect_to_ipc()
Samba Release Account [Fri, 14 Dec 2001 03:47:30 +0000 (03:47 +0000)]
preparing for release of 3.0-alpha8
Jim McDonough [Fri, 14 Dec 2001 02:45:13 +0000 (02:45 +0000)]
More help/messages/formatting cleanup.
Tim Potter [Fri, 14 Dec 2001 02:17:18 +0000 (02:17 +0000)]
Merge from 2.2 to allow net rpc join -U to complete even if the workstation
account already exists.
# net rpc join --user=Administrator%password
It's kind of weird seeing the mix of NET.EXE style of options (net command
subcommand /arg:value) with the GNU-style long options. I think it works.
Jim McDonough [Fri, 14 Dec 2001 02:15:04 +0000 (02:15 +0000)]
Restoration of at least some help function and format. First round of cleanup. Printq function cannot exactly mimic windows output using d_printf...oh well. Add some more command-specific options back into help.
Tim Potter [Fri, 14 Dec 2001 02:14:59 +0000 (02:14 +0000)]
Set the debuglevel after the call to lp_load() so the change sticks.
Andrew Tridgell [Fri, 14 Dec 2001 01:15:14 +0000 (01:15 +0000)]
don't use -u switch to /bin/date - too many systems don't honor it
Tim Potter [Thu, 13 Dec 2001 23:43:44 +0000 (23:43 +0000)]
Added comment.
Jeremy Allison [Thu, 13 Dec 2001 23:43:15 +0000 (23:43 +0000)]
Patch for string legths from TAKAHASHI, Motonobu(monyo).
Jeremy.
Jean-François Micouleau [Thu, 13 Dec 2001 18:09:29 +0000 (18:09 +0000)]
update the ldap support code. it compiles.
Ignacio you can update your howto ;-)
samsync: a small patch to try chaning challenges.
J.F.
Gerald Carter [Thu, 13 Dec 2001 17:18:15 +0000 (17:18 +0000)]
merge from 2.2
Gerald Carter [Thu, 13 Dec 2001 16:35:43 +0000 (16:35 +0000)]
merge from appliance_head
Andrew Tridgell [Thu, 13 Dec 2001 13:54:39 +0000 (13:54 +0000)]
-Insswitch/ breaks the build by preventing include of <nss.h> from working
Samba Release Account [Thu, 13 Dec 2001 13:24:12 +0000 (13:24 +0000)]
preparing for release of 3.0-alpha7
Andrew Tridgell [Thu, 13 Dec 2001 13:19:20 +0000 (13:19 +0000)]
added "net ads info" to fetch basic ADS info without any auth
Andrew Tridgell [Thu, 13 Dec 2001 11:58:38 +0000 (11:58 +0000)]
make sure we find NSS_STATUS struct
Andrew Tridgell [Thu, 13 Dec 2001 11:30:13 +0000 (11:30 +0000)]
better error handling
Andrew Tridgell [Thu, 13 Dec 2001 11:29:49 +0000 (11:29 +0000)]
try the PDC for our workgroup if we can't find the ldap server
Andrew Tridgell [Thu, 13 Dec 2001 08:54:51 +0000 (08:54 +0000)]
improved error message from failed connect
Jeremy Allison [Thu, 13 Dec 2001 02:34:43 +0000 (02:34 +0000)]
Must check against -1 for fcntl error check.
Jeremy
Tim Potter [Thu, 13 Dec 2001 00:02:37 +0000 (00:02 +0000)]
Fix some compiler warnings.
Jeremy Allison [Wed, 12 Dec 2001 19:40:22 +0000 (19:40 +0000)]
Always use ASCII strings when changing passwords with RAP.
Jeremy.
Herb Lewis [Wed, 12 Dec 2001 16:13:52 +0000 (16:13 +0000)]
ran autoconf
Herb Lewis [Wed, 12 Dec 2001 16:08:32 +0000 (16:08 +0000)]
allow IRIX to build nsswitch/libnss_wins.so
Herb Lewis [Wed, 12 Dec 2001 16:04:37 +0000 (16:04 +0000)]
add *.po32 to ignore list
Jean-François Micouleau [Wed, 12 Dec 2001 15:25:22 +0000 (15:25 +0000)]
added a -V[erbose] option to samsync. Decode a lot of information
I'm looking at chaining the credentials
J.F.
Jean-François Micouleau [Wed, 12 Dec 2001 11:38:57 +0000 (11:38 +0000)]
decoded SAM_DELTA 0x0e and 0x12.
One is an entry for the trusted domains
The other is an entry for the trusting domains
They are pretty basic, I'll improve them.
J.F.
Samba Release Account [Wed, 12 Dec 2001 10:22:34 +0000 (10:22 +0000)]
preparing for release of 3.0-alpha6
Jean-François Micouleau [Wed, 12 Dec 2001 09:43:56 +0000 (09:43 +0000)]
a ugly decoder for SAM_DELTA_DOM_INFO (0x0d)
a correct decoder for SAM_PRIVS_INFO (0x10)
this code is totally useless right now, it's just fun to decode those and
will save tpot some time.
J.F.
Andrew Tridgell [Wed, 12 Dec 2001 09:37:17 +0000 (09:37 +0000)]
added "net time zone" command to show the timezone on a computer
Andrew Tridgell [Tue, 11 Dec 2001 23:44:33 +0000 (23:44 +0000)]
pam_smbpass updates from a.bokovoy@sam-solutions.net
Tim Potter [Tue, 11 Dec 2001 23:27:45 +0000 (23:27 +0000)]
Oops, the -a option disappeared.
Andrew Tridgell [Tue, 11 Dec 2001 22:53:21 +0000 (22:53 +0000)]
ads howto update
Herb Lewis [Tue, 11 Dec 2001 20:41:31 +0000 (20:41 +0000)]
add PATH_FLAGS to .po32 objects so dynconfig builds with smbwrapper
Herb Lewis [Tue, 11 Dec 2001 20:20:30 +0000 (20:20 +0000)]
sync with 2.2
added multiple include protection
added IRIX defines
Jim McDonough [Tue, 11 Dec 2001 19:27:40 +0000 (19:27 +0000)]
Replace backslash with winbind separator before calling parse_domain_user(). Winbind separators other than backslash didn't work.
Herb Lewis [Tue, 11 Dec 2001 18:08:48 +0000 (18:08 +0000)]
fix for IRIX compilers
Volker Lendecke [Tue, 11 Dec 2001 17:45:51 +0000 (17:45 +0000)]
Clarify a little
Volker
Andrew Tridgell [Tue, 11 Dec 2001 12:29:03 +0000 (12:29 +0000)]
allow join of already joined domain
Andrew Tridgell [Tue, 11 Dec 2001 10:37:00 +0000 (10:37 +0000)]
prevent double free
Jeremy Allison [Tue, 11 Dec 2001 08:31:58 +0000 (08:31 +0000)]
Fix up warnings. Make tdb_openXX() names const.
Jeremy.
Jeremy Allison [Tue, 11 Dec 2001 08:24:36 +0000 (08:24 +0000)]
Tidyups to remove warnings on tdb standalone code.
Jeremy.
Samba Release Account [Tue, 11 Dec 2001 06:35:00 +0000 (06:35 +0000)]
preparing for release of 3.0-alpha5