summaryrefslogtreecommitdiff
path: root/source3/libads
AgeCommit message (Collapse)AuthorFilesLines
2008-01-28Restrict the enctypes in the generated krb5.conf files to Win2003 types.Gerald W. Carter1-4/+8
This fixes the failure observed on FC8 when joining a Windows 2008 RC1 domain. We currently do not handle user session keys correctly when the KDC uses AES in the ticket replies. (This used to be commit 8039a2518caae54bc876368c73ec493f3cd4eb73)
2008-01-23strtok -> strtok_rVolker Lendecke1-3/+4
(This used to be commit fd34ce437057bb34cdc37f4b066e424000d36789)
2008-01-17Finally enable pidl generated SAMR & NETLOGON headers and clients.Günther Deschner1-6/+6
Guenther (This used to be commit f7100156a7df7ac3ae84e45a47153b38d9375215)
2008-01-16Tidy up code and debug for non-default krb5 IPv6 port.Jeremy Allison1-9/+15
Jeremy. (This used to be commit 79b7972de4c2a8c71e37642ddf7e5bbed53dd58a)
2008-01-16Fix IPv6 bug #5204, which caused krb5 DNS lookupsJeremy Allison1-13/+56
for a name '[<ipv6 addr>'. Jeremy. (This used to be commit f2aa921505e49f894bfed4e5e2f9fc01918b1bb0)
2008-01-16Fix memleak in ads_build_path().Günther Deschner1-5/+11
Guenther (This used to be commit b7a06b54e0a58c4cd6c5351b1e4a0a2c253cfea1)
2008-01-14Print principal in debug statement in kerberos_kinit_password() as well.Günther Deschner1-1/+2
Guenther (This used to be commit 44d67e84625a2a1a93baecef0e418b48e982443b)
2008-01-11Fix CID 476. Ensure a valid pac_data pointer is always passed toJeremy Allison1-2/+1
ads_verify_ticket as it's always derefed. Jeremy. (This used to be commit 0599d57efff0f417f75510e8b08c3cb7b4bcfcd8)
2008-01-11Coverity 512, uninitialized var.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 1b7cc80c61ccbf766801080f5a3f0260f40ccc17)
2008-01-08Do not ignore provided machine_name in ads_get_upn().Günther Deschner1-5/+5
Guenther (This used to be commit ddc1307844379f99b3dde48fc351d0326d22a7ce)
2008-01-04Re-Indent function ldap_open_with_timeout().Michael Adam1-1/+1
This reverts commit #cafda34783f0961c9b463803c19cfcb69f836e3f . I just learned (the hard way) that these indeted functions are not indented by accident but that the intention of this is to not include the prototype into proto.h. Michael (This used to be commit 2e5d01b2146bb9e057b2779d9fe7691ed46d9f45)
2008-01-04Add a debug message (when the LDAP server has really been connected).Michael Adam1-0/+1
Michael (This used to be commit 7d9d2de39072b3291b95ac3965df0d19f83792b9)
2008-01-04Untangle assignment and result check.Michael Adam1-3/+3
Michael (This used to be commit 465a3b356cffb855e26569d3752f15cac07208c0)
2008-01-04Enhance DEBUG-verbosity of ldap_open_with_timeout().Michael Adam1-1/+7
Michael (This used to be commit 9e70d1f24dd304c363a1bde97b5af618b46edc49)
2008-01-04Unindent function header.Michael Adam1-1/+1
Michael (This used to be commit cafda34783f0961c9b463803c19cfcb69f836e3f)
2008-01-04Fix a misleading DEBUG message.Michael Adam1-1/+1
At this stage, the (tcp) connection to the LDAP server has not been established, this is what is about to be attempted. What has been succesfully done, is a CLDAP netlogon query. Michael (This used to be commit 71c3c8ad4c92c5f6267b84ee1d207e5e49e9a4ec)
2008-01-03Add ads_get_joinable_ous().Günther Deschner1-0/+60
Guenther (This used to be commit 5bbceac88159ef6ff83d9cc62c77c7af2116967d)
2007-12-29Make use of [un]marshall_sec_descVolker Lendecke1-9/+11
(This used to be commit 54576733d6c0511dc7379f964b1cb035913b7c8d)
2007-12-26Add SMB encryption. Still fixing client decrypt butJeremy Allison1-0/+9
negotiation works. Jeremy. (This used to be commit d78045601af787731f0737b8627450018902b104)
2007-12-17While 'data' is usually 0 terminated, nothing in the spec requires that. The ↵Simo Sorce1-1/+4
correct way is to copy only 'length' bytes. Simo. (This used to be commit 814c1b0e0034fb67c7718760dfcf913904f3e7fa)
2007-12-16make use of unmarshall_sec_descVolker Lendecke1-19/+12
(This used to be commit ced0c42f055a672f6b4ab6ba809b0f63c83b431e)
2007-12-15Doh, fix typo in error exit.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 44918f39c0598eec681eb9e5c65452f04809c375)
2007-12-15Added patch originally by Andreas Schneider <anschneider@suse.de>Jeremy Allison1-0/+52
to cause us to behave like Vista when looking for remote machine principal. Modified by me. Jeremy. (This used to be commit d0e33840fb4cfc85990d3ee327428b0854a22722)
2007-12-15s/sid_to_string/sid_to_fstring/Volker Lendecke1-1/+1
least surprise for callers (This used to be commit eb523ba77697346a365589101aac379febecd546)
2007-12-15Replace sid_string_static with sid_to_stringVolker Lendecke1-1/+2
This adds 28 fstrings on the stack, but I think an fstring on the stack is still far better than a static one. (This used to be commit c7c885078be8fd3024c186044ac28275d7609679)
2007-12-15Use sid_string_talloc where we have a tmp talloc ctxVolker Lendecke1-3/+3
(This used to be commit 0a911d38b8f4be382a9df60f9c6de0c500464b3a)
2007-12-15Replace sid_string_static by sid_string_dbg in DEBUGsVolker Lendecke2-7/+10
(This used to be commit bb35e794ec129805e874ceba882bcc1e84791a09)
2007-12-06Remove an incredible amount of whitespace.Michael Adam1-1/+1
Sorry - could not resist. Michael (This used to be commit 1000c98eae0886dbdf60beb1fe64d66ec009746b)
2007-12-06libads: fix typoStefan Metzmacher1-1/+1
metze (This used to be commit b55b19190d9c1199be13727a75a5936d6f5f15a8)
2007-12-05Remove some globalsVolker Lendecke1-1/+1
(This used to be commit 31d0a846db08d845e6cdfd85def4ac1c34031e02)
2007-12-03Make strhex_to_str clear on string limits. Remove pstring from web/*.cJeremy Allison1-2/+2
Jeremy. (This used to be commit f9c8d62389f8cb47837e5360209936176537df13)
2007-11-27Remove some staticsVolker Lendecke2-6/+9
(This used to be commit 1fab16ffb888cd4ec18e52d9da33976a67a5d104)
2007-11-26Remove a globalVolker Lendecke1-5/+4
(This used to be commit 3088bc76f1ceffecaa5aea039be79973c9876f0c)
2007-11-20More pstring removal....Jeremy Allison2-22/+22
Jeremy. (This used to be commit 809f5ab4c595740b28425e1667e395a6058b76a8)
2007-11-15Add MAX_DNS_NAME_LENGTH, remove more pstrings.Jeremy Allison1-4/+4
Jeremy. (This used to be commit a1725f4ff7ed375808c78ac661b539557748d0a5)
2007-10-29Fix the setup_kaddr() call to cope with IPv6.Jeremy Allison1-11/+7
This is the last obvious change I can see. At this point we can start claiming IPv6 support (Hurrah !:-). Jeremy. (This used to be commit bda8c0bf571c994b524a9d67eebc422033d17094)
2007-10-29Change our DNS code to cope with AAAA records. A6 recordsJeremy Allison1-105/+189
look like a nightmare to use, so ignore them for now. Jeremy. (This used to be commit 814daded90781dc5a5bdd522ea8cfe5d47e6d7a7)
2007-10-24This is a large patch (sorry). Migrate from struct in_addrJeremy Allison3-32/+69
to struct sockaddr_storage in most places that matter (ie. not the nmbd and NetBIOS lookups). This passes make test on an IPv4 box, but I'll have to do more work/testing on IPv6 enabled boxes. This should now give us a framework for testing and finishing the IPv6 migration. It's at the state where someone with a working IPv6 setup should (theorecically) be able to type : smbclient //ipv6-address/share and have it work. Jeremy. (This used to be commit 98e154c3125d5732c37a72d74b0eb5cd7b6155fd)
2007-10-18RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison12-84/+84
bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
2007-10-10[GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch.Gerald (Jerry) Carter2-30/+17
(This used to be commit 5c6c8e1fe93f340005110a7833946191659d88ab)
2007-10-10r25422: Get rid of some cast warnings.Michael Adam1-3/+3
(This used to be commit 3e155b249e03cc9f7bd0cbf3a3ab8a57536bf0ce)
2007-10-10r25407: Revert Longhorn join patch as it is not correct for the 3.2 tree.Gerald Carter2-24/+34
The translate_name() used by cli_session_setup_spnego() cann rely Winbindd since it is needed by the join process (and hence before Winbind can be run). (This used to be commit 00a93ed336c5f36643e6e33bd277608eaf05677c)
2007-10-10r25400: Windows 2008 (Longhorn) Interop fixes for AD specific auth2 flags,Gerald Carter2-34/+24
and client fixes. Patch from Todd Stetcher <todd.stetcher@isilon.com>. (This used to be commit 8304ccba7346597425307e260e88647e49081f68)
2007-10-10r25328: When using ldap sasl wrapping with gssapi it's important to receive ↵Günther Deschner1-0/+5
warnings for clock-skew errors. Guenther (This used to be commit 53c99d415d605ab03e3646f6096aff794457dd33)
2007-10-10r25165: Use talloc_asprintf_append_buffer with an unmodifiedJeremy Allison1-2/+2
string. Jeremy. (This used to be commit fe30a523dfc77cc373145624246fd3ad5c62b9ac)
2007-10-10r25133: Fix sasl wrapping (for ldap sign&seal).Günther Deschner1-46/+5
The gss_import_name() broke as we switched from the internal MIT OID "gss_nt_krb5_principal" to "GSS_KRB5_NT_PRINCIPAL_NAME" and didn't switch from passing the krb5_principal (or better: a pointer to that, see MIT's "*HORRIBLE* bug") to pass the string principal directly. Jerry, Jeremy, neither I could figure out the need of passing in a krb5_principal at all nor could I reproduce the crash you were seeing. I sucessfully tested the code (now importing a string) with MIT 1.2.7, 1.3.6, 1.4.3, 1.5.1, 1.6.1 and Heimdal 0.7.2, 1.0, 1.0.1. Guenther (This used to be commit cb2dc715e33467c8b588161e816e72a948f6860c)
2007-10-10r25109: Remove obsolete argument from ads_guess_service_principal().Günther Deschner2-4/+2
Guenther (This used to be commit 2dea9464bba76af4315a8207ccd3e564ec19d146)
2007-10-10r25108: Make ifdef labyrinth in sasl code a bit more readable.Günther Deschner1-2/+2
Guenther (This used to be commit f31949ec3456134de474a0219a8cd5dcd15adea6)
2007-10-10r25080: Once we decrypted the packet but have timing problems (closkew, tkt ↵Günther Deschner1-1/+9
not yet or no longer valid) there is no point to bother the keytab routines. Guenther (This used to be commit 7e4dcf8e7ecfd35668e86e22bed5a9280ae83959)
2007-10-10r25030: ip_srv_nonsite and count_nonsite are initialized in get_kdc_list() ↵Lars Müller1-2/+2
in any case. (This used to be commit 287604a1c7dc7dede4b278de92ad8233f597d0b6)