summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r11413: More comments, plus always check (and update) the credentials chain,Andrew Bartlett1-5/+33
regardless the authentication result on a particular user. Andrew Bartlett (This used to be commit 2ee7ed000ef099b2e38d540be75cbc8de386839a)
2007-10-10r11412: These comments may not be much, but my eyes scan code with evenAndrew Bartlett1-0/+61
minimal comments much better (much like volker scans code of less than 80 cols better ;-) Andrew Bartlett (This used to be commit 8800e9b5b06701ed1cdf9da0a37291a84eb36f7f)
2007-10-10r11411: Add to Samba4 the Samba3 patch I just posted for machine accountAndrew Bartlett3-26/+48
logins (changing the winbindd interface). Clean up the wbsrv_samba3_async_epilogue() handling, as it was mixing auth and other replies, such that all replies were having the auth error strings set. We now do a better job of filling in the right errors in the right places. Andrew Bartlett (This used to be commit 8ed975df52bcac9646672f6a39c51481b5c59226)
2007-10-10r11410: Fix rejoin as a BDC by modifying, rather than trying to recreate, theAndrew Bartlett1-2/+37
server reference. Andrew Bartlett (This used to be commit 302219928f47cdc3822c3a7d9444339092d9d33c)
2007-10-10r11409: The use of 'password server = ' here is still bogus, but for now atAndrew Bartlett1-0/+2
least don't allow binding to become uninitialised. Andrew Bartlett (This used to be commit e754234a17ebc601720caa66a229d9a842dfebda)
2007-10-10r11408: fixed the mapping of ldb errors to ldap errors in the ldap serverAndrew Tridgell1-41/+20
(This used to be commit 647cb90360d1a790c8da34d48c46737762046e1b)
2007-10-10r11407: Push 'recreate account' logic into libnet/libnet_join.c. We don'tAndrew Bartlett3-17/+34
return the pesky USER_EXISTS 'error' code any more, and it is much easier to handle this inline. Andrew Bartlett (This used to be commit a7eb796cf544db3fe16986d8e233d2defe7a7d1b)
2007-10-10r11406: Clean up uninitialised value warnings found by -01.Andrew Bartlett1-23/+17
The warnings were caused by the structure assignements, which we don't need to do. The actual values are filled in by the NDR layer later. Andrew Bartlett (This used to be commit f140117535c3281f0a0a7970ea4127498737d112)
2007-10-10r11405: Ensure we can never have secret4 be uninitialised. Found afterAndrew Bartlett1-3/+5
volker's urging on the use of -O1. Andrew Bartlett (This used to be commit 6a7bb391ba62a4f90f57aa76c5dcc0d35fca54a4)
2007-10-10r11404: Another torture test and a new WERR.Andrew Bartlett3-0/+15
Andrew Bartlett (This used to be commit de83b8cd187b28ecb30550c44f9f84e373df692e)
2007-10-10r11403: improved the error handling in the ildap ldb backend. Now passesAndrew Tridgell1-37/+53
through all ldap errors except on search. Search errors are only available via ldb_errstring() until we decide how to fix ldb_search(). (This used to be commit c192bcb79dda44b5b7a3bc257ba92addf769c8d9)
2007-10-10r11402: In response to comments by volker, expand our Netlogon DsRGetDCNameAndrew Bartlett3-53/+207
IDL and testsuites. The server-side of this remains a stub, we should probably be doing ldb searches for the server reference record. Andrew Bartlett (This used to be commit 0141ed309a664e7a9893c95232c2dcb9768f9315)
2007-10-10r11401: A simple hack to have our central credentials system deny sending LMAndrew Bartlett4-0/+19
authentication for user@realm logins and machine account logins. This should avoid various protocol downgrade attacks. Andrew Bartlett (This used to be commit 76c2d204d0a1ec66d1ef3c935688c7571b051f46)
2007-10-10r11400: fix compiler warningsStefan Metzmacher2-6/+6
metze (This used to be commit a29a107d95b67248ccd6036084829b080c892e40)
2007-10-10r11399: Add another case where we need to fallback, if the KDC isn't there.Andrew Bartlett1-0/+4
Andrew Bartlett (This used to be commit e82fbb58ddaa3d38615d9a2d5e804f614edb2ff3)
2007-10-10r11394: Allow KDC unreachable as another 'forget about gssapi' error on SPNEGO.Andrew Bartlett1-0/+4
Andrew Bartlett (This used to be commit da24074860cb7029ef0ff45105170642174f45c1)
2007-10-10r11393: Avoid error messages and get more correctness with long plaintext ↵Andrew Bartlett1-14/+15
passwords. Andrew Bartlett (This used to be commit cb0b3c00572958f5ac8413cc651f627ca1871295)
2007-10-10r11392: After confirmation from Love, fix a compiler warningVolker Lendecke1-1/+1
(This used to be commit a0b4036ba6ae423bab3ec698d3e404f03bb0f9d5)
2007-10-10r11391: Add includedir to the list of directories to createJelmer Vernooij1-1/+1
(This used to be commit dab450a50194181aed14e93130eb2a1c42e616d0)
2007-10-10r11388: Move dot-generating to a seperate perl executableJelmer Vernooij3-28/+32
(This used to be commit 31406f7aa540efc4c11e7546a12fdeee80e8db6c)
2007-10-10r11387: Remove pidl from the default 'install' target as it doesn't obey theJelmer Vernooij1-1/+1
user specified install paths. (This used to be commit d537a35ec3d5fb2dc5143c1fb880faab5c64a862)
2007-10-10r11386: Add install rule for pidlJelmer Vernooij2-2/+8
(This used to be commit b740d0d28043e37ba3f0bec0c1bfbd68c0fb56e6)
2007-10-10r11385: Fix issues in module.c. Calling function should pass in pathJelmer Vernooij2-16/+6
to directory rather then subsystem name now. (This used to be commit 2a868ab3b57f64a27416c7a24c8d1ae112fc0c53)
2007-10-10r11382: Require number of required M4 macrosJelmer Vernooij19-109/+79
Make MODULE handling a bit more like BINARY, LIBRARY and SUBSYSTEM Add some more PUBLIC_HEADERS (This used to be commit 875eb8f4cc658e6aebab070029fd499a726ad520)
2007-10-10r11378: Fix an uninitialized variable warning. Tridge, I'm 99.999% sure this ↵Volker Lendecke1-1/+1
was a simple cut&paste error, but you might recheck this. Volker (This used to be commit 55b5b100e9ef7e04832d5ba4c10c45916be3513e)
2007-10-10r11377: Add support for building LIBRARY elements as shared libraries:Jelmer Vernooij20-66/+137
- Adds -rpath bin/ so you don't have to install Samba in order to use compiled binaries. - Writes out pkg-config files when building shared libs - Supports automatic fallback to MERGEDOBJ (which is the default) or OBJ_LIST (if ld -r is not supported) Building with shared libs reduces the size of the Samba binaries from 197 Mb to 60 Mb (including libraries) on my system (GCC4, with debugging). To build with shared libraries support enabled, run: LIBRARY_OUTPUT_TYPE=SHARED_LIBRARY ./config.status init functions don't get called correctly yet when using shared libs, so you won't be able to actually run anything with success :-) Once init functions are done, I'll look at support for loading shared modules once again. Based on a patch by Peter Novodvorsky (nidd on IRC). (This used to be commit 0b54405685674a2b19a28d77aae5b1136b5a4728)
2007-10-10r11374: On request from VL, put the plaintext auth patch in.Andrew Bartlett2-31/+170
I still have some gremlins that get in the my way in testing this. Andrew Bartlett (This used to be commit 3353e906adb3b3116551026e3ae18fd4d7ae1764)
2007-10-10r11373: Handle an apparent alias in NBT ntlogin replies.Andrew Bartlett2-3/+6
Andrew Bartlett (This used to be commit 51d55d2211195fe5d345ce130001dff1bfbfcef3)
2007-10-10r11372: Now RPC-SAMLOGON works, place it into the default 'make test'.Andrew Bartlett1-14/+14
Andrew Bartlett (This used to be commit 381c4f9fef00cd65ebcbf41ab0cf62fd69ffc8cf)
2007-10-10r11371: Fix the ntlm_auth build.Andrew Bartlett1-0/+2
Andrew Bartlett (This used to be commit 708476d0b2d178b9fd80583ac02fdadd4f9650b0)
2007-10-10r11370: Samba4 now passes it's own RPC-SAMLOGON test again.Andrew Bartlett5-9/+52
This avoids the nasty user@DOMAIN test for now, as it has very odd semantics with NTLMv2. Allow only user accounts to do an interactive login. Andrew Bartlett (This used to be commit 690cad8083e176b2e58fc243a11a003a78ce4074)
2007-10-10r11369: Implement socket_connect_multi: Connect to multiple ipv4 tcp ports inVolker Lendecke10-426/+437
sequence, with a 2-millisecond timeout between firing the syn packets. Build smbcli_sock_connect_send upon that. Volker (This used to be commit 5718df44d90d113304c5deed1e2e7f82ff9e928f)
2007-10-10r11367: Ensure to intialise the new logon_parameters (0 for session setups).Andrew Bartlett1-0/+2
Andrew Bartlett (This used to be commit abff53b6339b7924ff705c7e3685135e85d8ed7a)
2007-10-10r11366: Pass around the flags which indicate if we should support plaintextAndrew Bartlett5-16/+31
logins and NTLM machine account logins. Andrew Bartlett (This used to be commit 421e64c2b4192bb13d2857d6c8648ff687ed653e)
2007-10-10r11365: fixed a comment typoAndrew Tridgell1-1/+1
(This used to be commit 3333d71ab6594c1e8977098c31c9437686039f1c)
2007-10-10r11364: added a ldb_attr_dn() function for testing if an attribute name isAndrew Tridgell4-7/+17
"dn" or "distinguishedName". This makes us a bit more consistent (This used to be commit b41b374b55f9a056c47ffa2ff88aa5272dbc42fc)
2007-10-10r11363: fixed a problem with provisioning when hklm already exists (theAndrew Tridgell1-2/+1
problem is really caused by hklm not having objectclass attributes on its records, but this is a workaround) (This used to be commit 62d5253a033f47335ceefade9ad7d98ddfc19584)
2007-10-10r11362: Remove attempt to decode uint8 array as a security descriptor. Pidl ↵Tim Potter1-2/+0
thinks that because it is an array, the import should also be an array, i.e of security descriptors. (This used to be commit fb313c19c60f6e0f69411a3bb96cd9d19fde7685)
2007-10-10r11361: Test user@DOMAIN userPrincipalNamesAndrew Bartlett1-0/+14
Andrew Bartlett (This used to be commit 75b002746af3788c71f99854ce983ff807f12b37)
2007-10-10r11360: Pass down a flag indicating that this is an 'old password', and toAndrew Bartlett1-18/+50
expect funny buisness. Andrew Bartlett (This used to be commit b2810bd702b14375ddc237ba39be0badbae20aa5)
2007-10-10r11359: More lovely cracknames tests...Andrew Bartlett1-0/+31
Andrew Bartlett (This used to be commit 35cbdd5c9ddb95a78fd56b854edca1b62f118fa7)
2007-10-10r11358: Ensure domains are always upper-case as well. Helps NTLMv2.Andrew Bartlett1-1/+4
Andrew Bartlett (This used to be commit 82527491b2212d34b676be1e26cc875ae2828e42)
2007-10-10r11357: Add more standard 'servicePrincaipalName' entries to our host accountAndrew Bartlett1-0/+4
in provision. Andrew Bartlett (This used to be commit 8ed61562803f92eb110742ac45cff36c8fe8eca3)
2007-10-10r11356: More cracknames work. This copes with a lookup for aAndrew Bartlett1-1/+21
servicePrincipalName with a realm, which always returns 'domain only', with the realm as the domain. Andrew Bartlett (This used to be commit 476cd0c649d69f682dee27c1ae2a73b870b300d0)
2007-10-10r11355: Test for error returns when we don't specify the newly discoveredAndrew Bartlett1-0/+9
'workstation for account on NTLM' flag. Andrew Bartlett (This used to be commit aa5b6cf7c4cabd25655dc11d90d00c5faec67d6c)
2007-10-10r11354: - generate a ejs error on bad ldif to add/modifyAndrew Tridgell1-3/+7
- fixed a double free error in ldb.close() (This used to be commit 7f797e7097cffa1f5b5bac34e100af77d4026f89)
2007-10-10r11353: a bit of an improvement to the ldb_tdb error handlingAndrew Tridgell3-28/+61
(This used to be commit 896704f5c139c8bce30dfc898bb3a12be10035ed)
2007-10-10r11352: Add newly discovered (via the radiator lists) flags for controllingAndrew Bartlett2-14/+55
plaintext and machine account logins. Update tests to confirm this behaviour. Andrew Bartlett (This used to be commit a0ed41d379f4b15a7f44ca93de9907f02bada163)
2007-10-10r11351: Another add-hoc test.Andrew Bartlett1-0/+7
Andrew Bartlett (This used to be commit 326ffb2cc03bfde37b6fe34779848e9a191198e2)
2007-10-10r11350: Add some debugs to assist tracking down kerberos issues in future.Andrew Bartlett1-2/+26
(Make it easy to see what was put into the keytab, so we can tell when gssapi screams that it can't pull it out). Andrew Bartlett (This used to be commit c56142c4ac7541fc30bdf4c77e34f5a50d80da76)
generated by cgit (git 2.34.1) at 2024-12-01 05:06:46 +0000