summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r11479: fix compiler warningStefan Metzmacher1-2/+2
metze (This used to be commit 5f45d070208eedaef59bff5f7e05f37719285d84)
2007-10-10r11478: add owned,active,multi homed vs. * sectionStefan Metzmacher1-341/+893
metze (This used to be commit 0231926e0a017bb65a900867a6dee7ca52d7ffe9)
2007-10-10r11477: This seems really nasty, but as I understand it an attacker cannotAndrew Bartlett1-2/+11
change this checksum, as it is inside the encrypted packets. Where the client (such as Samba3) fakes up GSSAPI, allow it to continue. We can't rid the world of all Samba3 and similar clients... Andrew Bartlett (This used to be commit e60cdb63fb37e44252f83a56a6302f0bd22dec4d)
2007-10-10r11476: finally fixed the intermittent registry server bug! This has beenAndrew Tridgell1-1/+0
cropping up occasionally for ages. The problem was the generic reg code setting up a backend_data value, which it has no business doing (backend_data is for backends ...) (This used to be commit 9d6d03fd1d360e15883bb1b8917ccedcc0d97a5d)
2007-10-10r11475: removed a extraneous ldb_delete() call (i had it there for debugging)Andrew Tridgell1-1/+0
(This used to be commit daa9dcd8f4b1dde801091ec64faa8158481d171c)
2007-10-10r11474: - enable ldb transactions from ejsAndrew Tridgell2-4/+100
- speed up provisioning a bit using a ldb transaction (also means you can't end up with a ldb being half done) (This used to be commit 91dfe304cf688bb81b69ff3192ac84b78b34b311)
2007-10-10r11473: Based on work by Jelmer, implement the [async] flag for rpc ↵Volker Lendecke8-40/+190
requests. If it's not there (it's not yet on *any* call... :-)), the rpc client strictly sequences calls to an rpc pipe. Might need some more work on the exact sequencing semantics when a pipe with both sync and async calls is actually deployed, but I want it in for winbind simplification. Volker (This used to be commit b8f324e4f000971b7dafc263c16dd4af958ee7f9)
2007-10-10r11472: use talloc_get_type() to try to catch an intermittent failure I'm ↵Andrew Tridgell1-26/+30
seeing in the ldb winreg backend (This used to be commit a56a3696cc6a5186f736e503704c288589e5a833)
2007-10-10r11471: Describe how kerberos forwarding works with the ntvfs.Andrew Bartlett1-1/+25
Andrew Bartlett (This used to be commit 66d7a51394b26bf9e8737477af965d08d9efde6d)
2007-10-10r11470: To a server trusted for delegation (checked for in the gss libs),Andrew Bartlett1-1/+1
delegate by default. Andrew Bartlett (This used to be commit 49d489c81d5b5c86e032ed6edfda4590d1d1f2be)
2007-10-10r11469: Fix typo, and use the correct (RFC4120) session key for delegatingAndrew Bartlett2-11/+13
credentials. This means we now delegate to windows correctly. Andrew Bartlett (This used to be commit d6928a3bf86f1ab89f29eac538ceb701c6669913)
2007-10-10r11468: Merge a bit more of init_sec_context from Heimdal CVS into ourAndrew Bartlett2-5/+29
DCE_STYLE modified version, and add parametric options to control delegation. It turns out the only remaining issue is sending delegated credentials to a windows server, probably due to the bug lha mentions in his blog (using the wrong key). If I turn delgation on in smbclient, but off in smbd, I can proxy a cifs session. I can't wait till Heimdal 0.8, so I'll see if I can figure out the fix myself :-) Andrew Bartlett (This used to be commit fd5fd03570c13f5644e53ff89ac8eca7c0985740)
2007-10-10r11467: yay! mmc now accepts our schema. The trick was to get all the OIDAndrew Tridgell1-0/+14
mappings right for the attributeTypes field of the aggregate schema now to add the display specifiers and I won't need the proxy module any more (This used to be commit 69264362bd408f493487482a8d5e9779d9a0d475)
2007-10-10r11466: Clear up some memory leaks in smbclient.Andrew Bartlett2-18/+23
Andrew Bartlett (This used to be commit 6535959fd7dfddd6bafb77a266ec3a641025f880)
2007-10-10r11463: more progress on the schema generator. mmc now accepts all partsAndrew Tridgell1-3/+23
except the attributeTypes fields of the Aggregrate record. Proxying just that field and the display specifiers gives us a working mmc client hopefully i'll work out what it doesn't like about the attributeTypes field soon (This used to be commit 3af867a3f4a5fd702089400d1687e2aff017f48a)
2007-10-10r11462: Fix the build: somehow I lost the header for this samba-specific hack.Andrew Bartlett1-0/+2
Andrew Bartlett (This used to be commit 0a4194118974bdde4e10fd32578a5beeb6e768ce)
2007-10-10r11459: display a schemaIDGUID as a guid in ldif, making it easier to workAndrew Tridgell1-0/+8
with schemas in ldbedit (This used to be commit ddbca6e83254275568bff4c2f88cdbc4bfa666a6)
2007-10-10r11458: fixed our ejs smbscript interfaces to use arrays where appropriate. InAndrew Tridgell8-42/+48
js arrays are a special type of object where the length property is automatic, and cannot be modified manually. Our code was manually setting length, which made it abort when someone passed in a real ejs array. To fix this we need to create real arrays instead of objects, and remove the code that manually sets the length (This used to be commit ebdd1393fde44a0a35446d1a922d29a7c1769ba7)
2007-10-10r11457: fixed the winreg IDL and torture code so key and value enumerationsAndrew Tridgell2-9/+12
work again. The automatic value() is fine for the length, but cannot be used for the size as the size is not the number of bytes being sent, but the number of bytes that the server is allowed to use in the reply (This used to be commit 46e91f269c83707863a726e716325eade38e1142)
2007-10-10r11456: fixed a ejs parser bug for delete() statementsAndrew Tridgell1-1/+3
(This used to be commit b8694c58f528d9da66cd623076282caece39d8a7)
2007-10-10r11453: Fix warning, for a case that just can't happen.Andrew Bartlett1-0/+3
Andrew Bartlett (This used to be commit c0ba414a38de7ffa7b2a59c664598e64e911fe7c)
2007-10-10r11452: Update Heimdal to current lorikeet, including removing the ccache sideAndrew Bartlett17-171/+427
of the gsskrb5_acquire_cred hack. Add support for delegated credentials into the auth and credentials subsystem, and specifically into gensec_gssapi. Add the CIFS NTVFS handler as a consumer of delegated credentials, when no user/domain/password is specified. Andrew Bartlett (This used to be commit 55b89899adb692d90e63873ccdf80b9f94a6b448)
2007-10-10r11447: fixed a problem with the ldap server spinning using CPU timeAndrew Tridgell1-10/+22
(This used to be commit c913f466cd27030f8c696ab60b1a4a2eb2ac260c)
2007-10-10r11442: Don't use BASE-NEGNOWAIT any more. It is a mostly meaningless test.Andrew Bartlett1-2/+2
Andrew Bartlett (This used to be commit c105112902da45ce8ba9f70bf240dd8201f6fd2c)
2007-10-10r11441: Remove the auth_domain module from Samba4, as we will only do thingsAndrew Bartlett2-169/+0
via winbindd in Samba4. Andrew Bartlett (This used to be commit e63be25d0b6edbb17f0747663b0570145a4d55fb)
2007-10-10r11440: Actually check the right thing for 'is this a machine account' ↵Andrew Bartlett1-1/+1
(thanks metze). Andrew Bartlett (This used to be commit 848831a1559d6569359bd6fb4993ccbef6ad86d8)
2007-10-10r11439: Make presedence on strcmp comparison clear, and fill inAndrew Bartlett1-1/+3
logon_parameters for the auth subsystem. Andrew Bartlett (This used to be commit 767c5ca7bec3737d1261e209cd895d1300354f25)
2007-10-10r11438: Move enum samr_RejectReason into misc.idl so I can use it in a globalAndrew Bartlett3-6/+8
prototype. Andrew Bartlett (This used to be commit a3abffc75805c8e333f387a96a1dbc352669d359)
2007-10-10r11437: Fix (valid!) use of uninitialised value warnings.Andrew Bartlett1-1/+2
Andrew Bartlett (This used to be commit 64b9ea642bb7443f804e71bb2a6ccad94522d057)
2007-10-10r11436: this is work in progress for generating the schema we need for our ADSAndrew Tridgell1-18/+507
ldap server. It's still not quite right, and I'm chasing down a few errors that mmc throws up, but its a lot closer than it was. I had to change the approach quite substantially over the last couple of days, but this approach now seems to be working out. (This used to be commit 38ea11510c8824285d072fe0e03e443d9d584271)
2007-10-10r11429: - add owned,active,sgroup vs. unique, group and mhomed replicaStefan Metzmacher1-0/+321
special group vs. special group will be done later metze (This used to be commit 25a35c697795ff802d735cfd3e6c11ea73d92126)
2007-10-10r11426: add owned,active,normalgroup vs. * replica sectionsStefan Metzmacher1-0/+428
metze (This used to be commit 70166bb2a9085e08915fc0f560e660b7edd0c2b3)
2007-10-10r11425: add owned,active,unique vs. multi homed sectionStefan Metzmacher1-0/+135
metze (This used to be commit a70cf6f87b975861bb7af4080c56f146faf3369d)
2007-10-10r11424: Fix an uninitialized variable warningVolker Lendecke1-1/+1
(This used to be commit fed26bc4fdb47b5bd1aaa6374b09252c239bbac4)
2007-10-10r11423: Add some TALLOC_CTXVolker Lendecke4-13/+16
(This used to be commit a043ef33dca19d5ac1cdead60a4faa8b3a950bf4)
2007-10-10r11422: Remove unused argsVolker Lendecke3-8/+4
(This used to be commit d5aef4e2f955025266e59227364b5cccccdb9f32)
2007-10-10r11419: add owned,unique,active vs. special group replica sectionStefan Metzmacher1-0/+109
metze (This used to be commit 061e2e67daeb920b2613564814738adc56c58017)
2007-10-10r11418: - add unique,owned,active vs. normal group sectionStefan Metzmacher1-24/+210
- we handle incoming release demands for that metze (This used to be commit 1db4d8e456895d18a864fa740ec0d8198226cba0)
2007-10-10r11417: Add TODO for the build systemJelmer Vernooij1-0/+12
(This used to be commit ad0019ad4ebba734ff1db31c53fd8b6ad085ead4)
2007-10-10r11416: add some more commentsStefan Metzmacher1-0/+51
metze (This used to be commit dccaceee182066e15e7a4fd9a5f3f0b2e2beda19)
2007-10-10r11415: - create a seperate nbt socket for handling incoming packetsStefan Metzmacher1-151/+234
- remove useless .release attribute, we have seperate tests for this now - add first owned,active vs. replica test, including handling incoming name queries from the server metze (This used to be commit 7843b6c5c84b7543fd30242e0d5c8414b56fd383)
2007-10-10r11414: Add passing around of logon_parameters to Samba4 auth_winbindAndrew Bartlett1-0/+3
Andrew Bartlett (This used to be commit 7e3c22f57be215b483ae15de4f754ed4188b5379)
2007-10-10r11413: More comments, plus always check (and update) the credentials chain,Andrew Bartlett1-5/+33
regardless the authentication result on a particular user. Andrew Bartlett (This used to be commit 2ee7ed000ef099b2e38d540be75cbc8de386839a)
2007-10-10r11412: These comments may not be much, but my eyes scan code with evenAndrew Bartlett1-0/+61
minimal comments much better (much like volker scans code of less than 80 cols better ;-) Andrew Bartlett (This used to be commit 8800e9b5b06701ed1cdf9da0a37291a84eb36f7f)
2007-10-10r11411: Add to Samba4 the Samba3 patch I just posted for machine accountAndrew Bartlett3-26/+48
logins (changing the winbindd interface). Clean up the wbsrv_samba3_async_epilogue() handling, as it was mixing auth and other replies, such that all replies were having the auth error strings set. We now do a better job of filling in the right errors in the right places. Andrew Bartlett (This used to be commit 8ed975df52bcac9646672f6a39c51481b5c59226)
2007-10-10r11410: Fix rejoin as a BDC by modifying, rather than trying to recreate, theAndrew Bartlett1-2/+37
server reference. Andrew Bartlett (This used to be commit 302219928f47cdc3822c3a7d9444339092d9d33c)
2007-10-10r11409: The use of 'password server = ' here is still bogus, but for now atAndrew Bartlett1-0/+2
least don't allow binding to become uninitialised. Andrew Bartlett (This used to be commit e754234a17ebc601720caa66a229d9a842dfebda)
2007-10-10r11408: fixed the mapping of ldb errors to ldap errors in the ldap serverAndrew Tridgell1-41/+20
(This used to be commit 647cb90360d1a790c8da34d48c46737762046e1b)
2007-10-10r11407: Push 'recreate account' logic into libnet/libnet_join.c. We don'tAndrew Bartlett3-17/+34
return the pesky USER_EXISTS 'error' code any more, and it is much easier to handle this inline. Andrew Bartlett (This used to be commit a7eb796cf544db3fe16986d8e233d2defe7a7d1b)
2007-10-10r11406: Clean up uninitialised value warnings found by -01.Andrew Bartlett1-23/+17
The warnings were caused by the structure assignements, which we don't need to do. The actual values are filled in by the NDR layer later. Andrew Bartlett (This used to be commit f140117535c3281f0a0a7970ea4127498737d112)