summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r12863: As lha suggested to me a while back, it appears that theAndrew Bartlett5-60/+9
gsskrb5_get_initiator_subkey() routine is bougs. We can indeed use gss_krb5_get_subkey(). This is fortunate, as there was a segfault bug in 'initiator' version. Andrew Bartlett (This used to be commit ec11870ca1f9231dd3eeae792fc3268b31477e11)
2007-10-10r12862: Need to trim spaces off the end of the node status reply.Andrew Bartlett1-1/+10
Andrew Bartlett (This used to be commit 3e90e7edfa7d343a6b6bf073b8f4d018e3b463d0)
2007-10-10r12861: Cope when we are not supplied the messaging context. This is justAndrew Bartlett2-6/+9
another case where we have to fallback to the node status request. Andrew Bartlett (This used to be commit 181064dbcf102de80937fc30b3d3ba5114194a72)
2007-10-10r12860: Remove unused function. (we handle this in the password_hash module).Andrew Bartlett1-22/+0
Andrew Bartlett (This used to be commit daa4b76800024c1494eeda675c46af3790fac788)
2007-10-10r12859: Make Samba4 match the Samba3 winbindd interface. trunk has moved tooAndrew Bartlett1-4/+1
far at this point, and there is no point being in between. Andrew Bartlett (This used to be commit 10fb19add65ba534ea7cf3357b02d642e94fe535)
2007-10-10r12858: This moves the libnet_LookupPdc code to use a GetDC request to findAndrew Bartlett20-156/+451
the remote server's name, or in the absence of a local nbt_server to communicate with (or without root access), a node status request. The result is that we are in a better position to use kerberos, as well as to remove the 'password server' mandatory parameter for the samsync and samdump commands. (I need this to put these into SWAT). The only problem I have is that I must create a messaging context, which requires a server ID. As a client process, I don't expect to get messages, but it is currently required for replies, so I generate a random() number. We probably need the servers to accept connections on streamed sockets too, for client-only tasks that want IRPC. Because I wanted to test this code, I have put the NET-API-* tests into our test scripts, to ensure they pass and keep passing. They are good frontends onto the libnet system, and I see no reason not to test them. In doing so the NET-API-RPCCONNECT test was simplified to take a binding string on the command line, removing duplicate code, and testing the combinations in the scripts instead. (I have done a bit of work on the list shares code in libnet_share.c to make it pass 'make test') In the future, I would like to extend the libcli/findds.c code (based off volker's winbind/wb_async_helpers.c, which is why it shows up a bit odd in the patch) to handle getting multiple name replies, sending a getdc request to each in turn. (posted to samba-technical for review, and I'll happily update with any comments) Andrew Bartlett (This used to be commit 7ccddfd3515fc2c0d6f447c768ccbf7a220c3380)
2007-10-10r12856: make the logic much more saneStefan Metzmacher1-3/+7
metze (This used to be commit ed4a3e53fd71679fbdfc2f2932c1098e03026285)
2007-10-10r12851: Fix some typosJelmer Vernooij2-4/+4
(This used to be commit 61ae77beecd573809d917dd86d1fac6cc40e967d)
2007-10-10r12850: - add Doxygen comments to ldbStefan Metzmacher7-71/+2090
- 'make doxygen' generated the api documentation under apidocs/ Many thanks to Brad Hards <bradh@frogmouth.net> for the patches! metze (This used to be commit e98d483174c555366e62dd27600e6b242cab7a7f)
2007-10-10r12849: fix typoStefan Metzmacher1-1/+1
metze (This used to be commit 552e12c05d10ddad55bfc0997303096055ddecdd)
2007-10-10r12847: add some ldb examples from Brad Hards (bradh@frogmouth.net)Stefan Metzmacher3-3/+263
metze (This used to be commit 4d32d50ccd8bd0bfb3e2d6f5aee23bce38abbc03)
2007-10-10r12846: some fixesStefan Metzmacher1-7/+13
metze (This used to be commit bf6065b11fd84454f8bc881ff96fb1846a59405b)
2007-10-10r12845: fix some typosStefan Metzmacher2-2/+2
metze (This used to be commit 5d0ae1d2aef3fc7ddb4cb9269bb028beeaee6dfb)
2007-10-10r12844: don't include system headers directlyStefan Metzmacher2-9/+9
metze (This used to be commit 75a98047d6829cadf4b9082bec2733055dad3465)
2007-10-10r12843: get special objects with ldbsearch -a too, to match ldbedit -aStefan Metzmacher3-3/+3
metze (This used to be commit bb68f2e602dbcc94c05b2dd764c163be1e5a583d)
2007-10-10r12842: don't include system headers directlyStefan Metzmacher1-1/+1
metze (This used to be commit 976052c6561dee7232c1a10fb977b1c4776825a2)
2007-10-10r12838: make the ntvfs function publicStefan Metzmacher4-124/+124
metze (This used to be commit 41a564fdba5969fc7e518439520764fd56cfa280)
2007-10-10r12836: use: -fvisibility=hidden ↵Stefan Metzmacher2-2/+21
-D_PUBLIC_="__attribute__((visibility(\"default\")))" if the compiler supports it, this will cause that modules can only access public functions (gcc 4 supports this) metze (This used to be commit bcf4c362556b8168fc0b63af5708e4a78c7b93fb)
2007-10-10r12835: RpcConnect test expansion to test connecting using ncacp_ip_tcpRafal Szczesniak1-12/+74
as well as ncacn_np. rafal (This used to be commit 70cf8a4b67657f7c51e95ae5321e5a2e7f52832d)
2007-10-10r12833: complete ldbsearch support for controlsSimo Sorce2-40/+138
now the three supported controls (paged_results, server_sort, extended_dn) are fully functional and the infrastructure to add more is in place. valgrind is happy too :) Simo. (This used to be commit bd8e2629378700198e16287823970f52d1150a86)
2007-10-10r12832: make it possible to pass -D_PUBLIC_... to the compilerStefan Metzmacher1-0/+2
metze (This used to be commit 5540509f10e3fee4c653081a3bc56213d40869df)
2007-10-10r12831: add 'extern' to public prototypesStefan Metzmacher1-2/+4
metze (This used to be commit d4d2f011e2ba11dee67aa6933a75bb6088f92fc0)
2007-10-10r12830: this can be constStefan Metzmacher1-1/+1
metze (This used to be commit 1876e245c49d521e89674dc1662a61e8f4cdc9b5)
2007-10-10r12829: fix ldb headers, to not include '<...>' files in .c filesStefan Metzmacher41-171/+78
this helps in getting symbol -fvisibility=hidden (GCC 4 feature) working later. metze (This used to be commit 380938e97f31c7860aed1e73cc0110c6e17b472e)
2007-10-10r12828: add a test to check white spaces comparisonSimo Sorce2-1/+10
(This used to be commit ad189553f420d70c4a726cf118e1273ea053f4d6)
2007-10-10r12827: This was a very well concealed bug.Simo Sorce1-2/+9
Thank to Andrew Bartlet for finding out a test case that showed it up. Simo. (This used to be commit 72a86d74a95c2b38d25159027f612075c50a1f3c)
2007-10-10r12826: The base DN is very tied to the realm. Allowing it to be changed hereAndrew Bartlett2-2/+0
only allows stuffups, but doesn't benifit anyone. (If we were to allow it, we should have it change every time the realm is modified, character by character). The command line provision script doesn't allow this either. Andrew Bartlett (This used to be commit fd176997b691ecf8a1126b0afba3a5cb28818ed1)
2007-10-10r12825: Add \nGünther Deschner1-1/+1
Guenther (This used to be commit 909ef011b1343a33c4da4b2230062fd0468736ce)
2007-10-10r12824: Another typo.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 08f8b2aadbc815f91fbe50a5ebcbf33504bcd7cc)
2007-10-10r12823: Fix up the provison and newuser code in SWAT. This also cleans up theAndrew Bartlett5-38/+58
main provision script a bit, as the argument list was getting out of control. (It has been replaced in part with an object). This also returns the session_info from the auth code into ejs. We still need access control allowing only root to re-provision. Andrew Bartlett (This used to be commit 002cdcf3cab6563909d31edc5d825e857dc0a732)
2007-10-10r12822: Given that talloc gives us this extra level of safety, use it.Andrew Bartlett1-2/+2
Andrew Bartlett (This used to be commit a6028558dc19b0d105b1bfe4126a2b24afaf8dd2)
2007-10-10r12821: Fix typos.Andrew Bartlett1-3/+3
Andrew Bartlett (This used to be commit f4386f7af17add82e88373adb1d585261d13355c)
2007-10-10r12820: Remove duplicate entry caused by merge.Andrew Bartlett1-4/+0
Andrew Bartlett (This used to be commit 8d5156f98c452b051a8ddc14fc7c5733e2f171d9)
2007-10-10r12819: Fix swat authentication again. We need to pass the socket_addressAndrew Bartlett2-10/+22
structure around, so the auth code knows where the request came from. Andrew Bartlett (This used to be commit 7a7b2668c00d4d22bcf8aa3ba256af88f70c38c4)
2007-10-10r12818: When denying an operation, include what we think the username is inAndrew Bartlett1-1/+16
the error message. Andrew Bartlett (This used to be commit 36c1f67f12d5ac83a7a205c0ec152a79c4a8ba4b)
2007-10-10r12817: Create a ESP variable with the struct socket_address * in it, so weAndrew Bartlett1-1/+5
can pass that do the auth subsystem. Andrew Bartlett (This used to be commit 699f06e5e8ef326808d010fadb51da04972ab385)
2007-10-10r12816: Ugly hacks to the auth_unix code to make a SYSTEM token for root. IfAndrew Bartlett2-62/+90
we are going to try and have a 'real' NT token for these users, it is going to get messy fast. I want to go down the idmap road, but we don't have the infrustucure for that yet. Andrew Bartlett (This used to be commit c90d5e82ff4836765f328b2acf20fd09ec91189b)
2007-10-10r12815: try to fix the build on AIXStefan Metzmacher3-0/+3
metze (This used to be commit 21bc072c7addafc6f692fb8e998bd4dd9ab88b49)
2007-10-10r12814: we need this here too, as we'll include replace.h for building heimdal/*Stefan Metzmacher1-0/+12
too, and for this we don't include includes.h (hopefully) fix the build on AIX metze (This used to be commit 32f2cf433f65aaa9bcc5e33958d6f9c72c7f13d9)
2007-10-10r12813: Remove unused file to avoid confusion. We now go via the authAndrew Bartlett1-341/+0
subsystem. Andrew Bartlett (This used to be commit 15a6f098ff28369bd7fa0a215e2ab150d18ac9f3)
2007-10-10r12812: speed up RPC-ECHO with validate some more, and re-enable it underAndrew Tridgell2-12/+12
valgrind in 'make valgrindtest' (This used to be commit b2030d527a75fecd907148d13860b4ba5193f218)
2007-10-10r12811: valgrind on RPC-ECHO with validate is extremely slow - speed it up ifAndrew Tridgell1-2/+16
torture:quick is set (This used to be commit b591b28567eba148509c5dec060efaef2fd95ff6)
2007-10-10r12810: handle control options gracefully and don't segfaultSimo Sorce1-9/+49
(This used to be commit 300d48bc9daa13e1475c10eaa1ec0717c822a7f7)
2007-10-10r12808: Actually, with that we can avoid roken compleatly.Andrew Bartlett1-1/+0
Andrew Bartlett (This used to be commit 37f342b01095787d4a63a419c6ab3657680c2637)
2007-10-10r12807: I'm wondering if this might fix AIX on the build farm...Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 8f70d6270a788494dd07430f778ee90a51551e66)
2007-10-10r12806: tridge: in revision 12634 you introduced to validate the ndr_print ↵Stefan Metzmacher1-5/+12
output and RPC-ECHO doesn't pass under valgrind anymore with this metze (This used to be commit 2482bf969d5b903a01ace8fa9237dd440b98196c)
2007-10-10r12805: merge from samba3Stefan Metzmacher1-2/+2
metze (This used to be commit e6dff57793c302f8537274a628dba8ab01a2fed8)
2007-10-10r12804: This patch reworks the Samba4 sockets layer to use a socket_addressAndrew Bartlett68-854/+1356
structure that is more generic than just 'IP/port'. It now passes make test, and has been reviewed and updated by metze. (Thankyou *very* much). This passes 'make test' as well as kerberos use (not currently in the testsuite). The original purpose of this patch was to have Samba able to pass a socket address stucture from the BSD layer into the kerberos routines and back again. It also removes nbt_peer_addr, which was being used for a similar purpose. It is a large change, but worthwhile I feel. Andrew Bartlett (This used to be commit 88198c4881d8620a37086f80e4da5a5b71c5bbb2)
2007-10-10r12803: if we free the ndr structure how should we access the private ↵Stefan Metzmacher1-1/+3
pointer anymore? thanks valgrind! metze (This used to be commit ab58decf8248f3923703fabdaab697f1a8d116c8)
2007-10-10r12801: Some more include/ cleanups (remove unused macros + move filesJelmer Vernooij13-55/+19
to specific dirs) (This used to be commit 243cf760b077e155f5ac508aeebf819f7708a84e)