Age | Commit message (Collapse) | Author | Files | Lines |
|
responding to
krbtgt/MY.REALM@MY.REALM
TGS ticket requests, but for the moment, these are still marked as
'server' requests by the kerberos5.c caller.
Andrew Bartlett
(This used to be commit afaee0a6b7aba3db118e6529c341c9377bc26546)
|
|
Always remember to free the crypto context (found by Luke Howard)
(This used to be commit 4b44355d42592f4acaae459c6ae09dd928f083b7)
|
|
rafal
(This used to be commit a2f6dc786031aa368b0398c21baf18cf82375c46)
|
|
rafal
(This used to be commit 221907fc0d0141c6c73f10f2dc829879205b9bcb)
|
|
rafal
(This used to be commit 45cd7bc4ec152c8623c134c6f33bcd3edbb1ff5e)
|
|
rafal
(This used to be commit 12d0faf9bc4c97b61879e8f7bb0419f4553bb340)
|
|
This also tests that the server accepts the incorrect GSSAPI checksum,
and that we get the right session key.
Andrew Bartlett
(This used to be commit 888e2b7f4ec8e50869d323e51f191e018f8620ec)
|
|
don't attribute the GSSAPI SASL mech to it.
Andrew Bartlett
(This used to be commit 23a4db28ed825bc8c45e5f704137a72386394f45)
|
|
similarly built clients) behave.
This is better than just ignoring the checksum, if it isn't the GSSAPI
checksum. (Samba4 clients in Samba3 mode use more than just the MD5
checksum, and will use a signed AES checksum if available. Actual
samba3 may well do the same in future, against a suitable KDC).
Also a change for easier debugging of checksum issues.
Andrew Bartlett
(This used to be commit 120374f5f9e9af0653a26e0308e4bfdabbcaa3f3)
|
|
Andrew Bartlett
(This used to be commit ed4ab63c2dd811d07594ba397ed22f9d02eeb63a)
|
|
This includes many useful upstream changes, many of which should
reduce warnings in our compile.
It also includes a change to the HDB interface, which removes the need
for Samba4/lorikeet-heimdal to deviate from upstream for hdb_fetch().
The new flags replace the old entry type enum.
(This required the rework in hdb-ldb.c included in this commit)
Andrew Bartlett
(This used to be commit ef5604b87744c89e66e4d845f45b23563754ec05)
|
|
principal on strdup failure.
Andrew Bartlett
(This used to be commit d72fafc1f0089212634fc1a77352b47970e82410)
|
|
(This used to be commit 1405f59d5501319c7d08861e19165e012c4bc3a9)
|
|
code.
(This used to be commit a2bb0b6012b14787825a9cd5f33e2c0e989b65a7)
|
|
for generating Samba3-style client functions and midl)
(This used to be commit cc2961427fc649185847fffdf583b05305e6b473)
|
|
from returning uninitialised structure member. Thank heavens for build
farm and valgrind :)
rafal
(This used to be commit daca283990c7a8b6efc952c9308c43b68dd49f06)
|
|
large numbers of subkeys.
Patch by Wilco Baan Hofman <wilco@baanhofman.nl>
(This used to be commit 02859870d62b875eca5feff175c489a93fa7ad84)
|
|
(This used to be commit 849818dcdeb8eaf2eb22fea3896a4f7c777d8c5f)
|
|
- create "async" parameter for smbtorture to categorise async tests
potentially hard for windows servers
- create "num-async" parameter to specify the number of simultaneous
async requests to be made
- move RPC-ASYNCBIND test from "dangerous" to "async" (I should probably
do the same for many others async tests...)
It's an interesting way to determine resources availability on windows
servers...
rafal
(This used to be commit 0d008fbea0aec279d389cff676a4319262475d17)
|
|
rafal
(This used to be commit b4c378302bd56e7bbdce6a20b5623d8949d3ecef)
|
|
and comment-fixes.
rafal
(This used to be commit d35f1e07bed594dfae5421209c4318fe5e66a5aa)
|
|
routines.
(This used to be commit 538be4a6319b6f8235ed450740784104671ab0b5)
|
|
information.
rafal
(This used to be commit 76d965b0b04496ae959ba6f13d748c6dfb858591)
|
|
and make it async. Also, update any other usages of old function.
Build goes fine and so do tests, comments to follow.
rafal
(This used to be commit aef0a2de9d2f01a6f619e3fccc8715288f5c37a3)
|
|
Andrew Bartlett
(This used to be commit 437ce4123761b65edebc9b9432515a62348f360b)
|
|
we care about in Samba3)
(This used to be commit eb07aea711a5e3606e169d77b208b03bd876c639)
|
|
this isn't supported, fallback to NTLM.
Also, where we get a failure as 'logon failure', try and do a '3
tries' for the password, like we already do for CIFS. (Incomplete:
needs a mapping between RPC errors and the logon failure NTSTATUS).
Because we don't yet support Kerberos sign/seal to win2k3 SP1 for
DCE/RPC, disable this (causing SPNEGO to negotiate NTLM) when kerberos
isn't demanded.
Andrew Bartlett
(This used to be commit b3212d1fb91b26c1d326a289560106dffe1d2e80)
|
|
callback code.
(This used to be commit edf0701e877592695bd69124e528338c27f24efd)
|
|
Andrew Bartlett
(This used to be commit f9899277898ee7ef1118cbc49f5f277623ff7444)
|
|
usernames.
This is used in the password prompt, and should be reversable by the
parse string function.
Also, don't look at the ccache, even for the guess code, if kerberos
is disabled.
Andrew Bartlett
(This used to be commit 4c4b8e4b396ca44270a0456c732d3b9c3c34d69d)
|
|
don't care...
Andrew Bartlett
(This used to be commit 8abe7ba619a9499229937435b66005e278bcbf38)
|
|
attempts for the password, when talking to a remote CIFS server.
Andrew Bartlett
(This used to be commit 3a4ddc8f5978210ab3ad79f0332cee80a0d6e6c9)
|
|
(This used to be commit 5de894fb8bac8efa5bff004dbfc2e8b386d4003b)
|
|
(This used to be commit 95cca6a881ea8ead80646eced9c0a917bffebf7b)
|
|
rafal
(This used to be commit 52b4ef14a02ca1c72cef2467b214518bbe32c8f6)
|
|
(This used to be commit e8de80afb9d13c5c84bf70c9de3083d8caba9eb8)
|
|
(This used to be commit 5be3627cc6e666e6dbbf146c47bb093f66124f87)
|
|
Add utility function for connection to an interface
(This used to be commit 266f7472209e6ae4f70688cf06b8efa63d036d04)
|
|
(This used to be commit 897329c2534dc8e24670b91bc448939141f27417)
|
|
not available on some platforms but is a Samba-specific library.
(This used to be commit e9d3660fa6678424e5159708a1aa572824926c8e)
|
|
as it's not used anywhere and it doesn't belong to check_ld.m4
metze
(This used to be commit 86a9b17b3a1de0bd893a276597c9377e305ef535)
|
|
This reduces caller complexity, because the TLS code is now called
just like any other socket. (A new socket context is returned by the
tls_init_server and tls_init_client routines).
When TLS is not available, the original socket is returned.
Andrew Bartlett
(This used to be commit 09b2f30dfa7a640f5187b4933204e9680be61497)
|
|
(This used to be commit 74bd8170fc9d53403899721bc4b620121946e4d2)
|
|
This stuff should be common somewhere.
(This used to be commit e906781cbd7a9d782e028fb0497de739ac6fb797)
|
|
it only tests multiple simultaneous bind requests using transport
specified in command line. It will be interesting to use various
transports at the same time and test it agains windows servers...
rafal
(This used to be commit 7e4756116e59f9a0599a80fb5ac06118817f4326)
|
|
seemed to work quite well and this technique might be good for
generating an interface to use for automated testing.
Tested by doing a nbt lookup against smbd.
(This used to be commit 11150b3140c91459f17c767adf07a54524338c18)
|
|
(This used to be commit 7e4d3bb81859d27424edf5cbcc1101c414160c0c)
|
|
Fix up behaviour of Ldb.__setitem__() function. It should overwrite the
element data.
Add wrapper for ldb_msg_sanity_check().
(This used to be commit d67e055f86a62d0e61fd20d75b252a6211618f7b)
|
|
(This used to be commit 88e854929f10947aa1a7f57bbfef436bc8832529)
|
|
(This used to be commit 9e9bfd04c6db013453b900e201df9c09e8777a22)
|