samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2010-03-26	s3 ntlm_auth: Don't malloc data that will be talloc_free()d	Kai Blin	1	-12/+12
	This fixes bug #7290 Thanks to Mohan <mohann@silver-peak.com> for the bug report.
2010-03-24	s3:ntlmssp: use client.netbios_name instead of workstation	Stefan Metzmacher	1	-3/+4
	metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24	s3:ntlmssp: rename void auth_context; into void callback_private;	Stefan Metzmacher	1	-6/+6
	metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24	s3:ntlmssp: remove unused get_global_myname() and get_domain() from ↵	Stefan Metzmacher	1	-4/+0
	ntlmssp_state Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24	s3:ntlmssp: pass names and use_ntlmv2 to ntlmssp_client_start() and store them	Stefan Metzmacher	1	-1/+5
	Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24	s3:ntlmssp: pass names to ntlmssp_server_start() and store them in ntlmssp_state	Stefan Metzmacher	1	-1/+27
	Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-01-10	s3: Fix some nonempty blank lines	Volker Lendecke	1	-36/+36

2009-12-22	s3:ntlmssp: only include ntlmssp.h where actually needed	Andrew Bartlett	1	-0/+1
	Andrew Bartlett
2009-12-22	s3:ntlmssp: remove the typedef NTLMSSP_STATE	Andrew Bartlett	1	-4/+4
	Andrew Bartlett
2009-11-27	s3-kerberos: only use krb5 headers where required.	Günther Deschner	1	-0/+1
	This seems to be the only way to deal with mixed heimdal/MIT setups during merged build. Guenther
2009-11-21	ntlm_auth: use data_blob_talloc() to allocate session key	Kai Blin	1	-2/+2
	Thanks to Shibu Piriyath <shibunair80@ymail.com> for spotting the issue.
2009-11-06	s3-kerberos: modify cli_krb5_get_ticket to take a new impersonate_princ_s arg.	Günther Deschner	1	-2/+2
	Guenther
2009-09-17	spnego: Support ASN.1 BIT STRING and use it in SPNEGO.	Kouhei Sutou	1	-2/+4
	Signed-off-by: Günther Deschner <gd@samba.org>
2009-09-17	spnego: share spnego_parse.	Günther Deschner	1	-19/+24
	Guenther
2009-05-22	s3: set winbindd request flags in ntlm_auth to make it contact trusted ↵	Bo Yang	1	-1/+56
	domain when krb5 auth is enabled Signed-off-by: Bo Yang <boyang@samba.org>
2009-04-14	s3: Fix ntlm_auth and winbindd to use new common libcli/auth APIs	Andrew Bartlett	1	-2/+2

2009-04-14	Make Samba3 use the new common libcli/auth code	Andrew Bartlett	1	-3/+3
	This is particuarly in the netlogon client (but not server at this stage)
2009-04-14	Rework Samba3 to use new libcli/auth code (partial)	Andrew Bartlett	1	-2/+3
	This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett
2009-04-14	Add some harmless use of talloc_tos() in ntlm_auth	Andrew Bartlett	1	-2/+2

2009-04-07	s3:kerberos Rework smb_krb5_unparse_name() to take a talloc context	Andrew Bartlett	1	-4/+2
	Signed-off-by: Günther Deschner <gd@samba.org>
2009-02-13	Fix an uninitialized variable, introdued with 4d100f2f	Volker Lendecke	1	-1/+1

2009-02-13	Fix Coverity ID 744	Volker Lendecke	1	-1/+1
	This was marked as a resource leak. This change makes the code a bit clearer that we always free error_string.
2009-02-13	Fix Coverity ID 745 (RESOURCE_LEAK)	Volker Lendecke	1	-0/+1

2009-02-10	S3: Fixes for coverity issues.	todd stecher	1	-2/+3

2008-11-30	remove the explicit mem_ctx from ntlmssp_state, use the state itself	Volker Lendecke	1	-3/+4

2008-11-10	ntlm_auth: Put huge NTLMv2 blobs into extra_data on CRAP auth.	Kai Blin	1	-3/+15
	This fixes bug #5865
2008-10-18	Rename hex_encode to hex_encode_talloc,for consistency with samba 4 and heimdal.	Jelmer Vernooij	1	-4/+4

2008-04-06	Remove external refs to winbindd_fd	Volker Lendecke	1	-2/+0
	(This used to be commit 18bf2b2028e64403a79b7cc06d3185a3e526d97d)
2008-03-19	ntlm_auth: Improve compliance to the Squid helper protocol	Kai Blin	1	-31/+44
	This fixes bug #4235. Patch from Pawel Worach <pawel.worach@gmail.com> with some linebreaks added by me. Also fix one BH message that the original patch didn't fix. (This used to be commit 098380760d20bad2a45c3b12ab2a5e4d2b856175)
2008-02-28	winbind: use a struct element for WBFLAG_PAM_UNIX_NAME	Stefan Metzmacher	1	-1/+1
	To not conflict with WBFLAG_PAM_INFO3_TEXT. This should fix pam_winbind. metze (This used to be commit 1b8ed6c0ffb2548442bb7e9d848117ce9b1c65c0)
2008-02-17	Fix some more callers of PAC_DATA.	Günther Deschner	1	-1/+1
	Guenther (This used to be commit ea609d1b0e82d7c366dd73013228003136264b64)
2008-01-31	ntlm_auth: Parse configfile after parsing it's location, not before.	Kai Blin	1	-9/+14
	(This used to be commit cf671ca35bff09af56c67e789a86a3b86093b5fb)
2008-01-19	ntlm_auth: Get rid of statics in manage_squid_ntlmssp_request	Kai Blin	1	-37/+50
	(This used to be commit 97768628f5ec533818b7f5165e92c156d668b79b)
2008-01-19	ntlm_auth: Rewrite manage_client_ntlmssp_request without statics.	Kai Blin	1	-55/+66
	(This used to be commit af438426222f4990f3e4103babbbb5de03ade93d)
2008-01-19	nltm_auth: Use struct ntlm_auth_state in helper functions.	Kai Blin	1	-34/+40
	Now rewriting the helpers one after the other can start. (This used to be commit 2479a0c3adf46b2d0a9b109ce689c93296f16a62)
2008-01-19	ntlm_auth: Prepare for a deeper rewrite of the helper functions	Kai Blin	1	-4/+43
	(This used to be commit f8243d1913cd19401ce6a13f53c6b84a36fc9dd6)
2008-01-19	ntlm_auth: Dynamically allocate the read buffer.	Kai Blin	1	-28/+43
	This ports over my changes from Samba4 (This used to be commit 4a475baf26ba9f99bc05f13dd2745494174a00c1)
2008-01-19	util_str: Don't return memory from talloc_tos(), use mem_ctx instead.	Kai Blin	1	-10/+15
	(This used to be commit ab0ee6e9a6a9eee317228f0c2bde254ad9a59b85)
2008-01-11	Fix CID 476. Ensure a valid pac_data pointer is always passed to	Jeremy Allison	1	-1/+2
	ads_verify_ticket as it's always derefed. Jeremy. (This used to be commit 0599d57efff0f417f75510e8b08c3cb7b4bcfcd8)
2007-12-10	Remove the char[1024] strings from dynconfig. Replace	Jeremy Allison	1	-2/+2
	them with malloc'ing accessor functions. Should save a lot of static space :-). Jeremy. (This used to be commit 52dc5eaef2106015b3a8b659e818bdb15ad94b05)
2007-12-03	Getting to the home stretch for elimination of pstrings...	Jeremy Allison	1	-37/+55
	Jeremy. (This used to be commit 041163551194102ca67fef52c57d87020a1d09bc)
2007-11-20	Add talloc stackframe for ntlm_auth.c	Jeremy Allison	1	-0/+2
	Jeremy. (This used to be commit 6f9c2910bdda605f90967e0aa6a84b8094f3a197)
2007-11-09	Make base64_encode_data_blob return a talloced string	Volker Lendecke	1	-10/+10
	(This used to be commit 5f205ab48d8ac3b7af573ea0be1ce095ab835448)
2007-10-18	RIP BOOL. Convert BOOL -> bool. I found a few interesting	Jeremy Allison	1	-14/+14
	bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
2007-10-10	r25143: rename public functions from winbind_client.h	Stefan Metzmacher	1	-10/+10
	init_request => winbindd_init_request free_response => winbindd_free_response read_reply => winbindd_read_reply write_sock => winbind_write_sock read_sock => winbind_read_sock close_sock => winbind_close_sock(void) metze (This used to be commit 8a95d7a7edcfa5e45bccc6eda5c45d9c308cb95d)
2007-10-10	r23784: use the GPLv3 boilerplate as recommended by the FSF and the license text	Andrew Tridgell	1	-2/+1
	(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10	r23779: Change from v2 or later to v3 or later.	Jeremy Allison	1	-1/+1
	Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10	r23474: Here's a small patch that disables the libkrb5.so replay cache	Gerald Carter	1	-1/+1
	when verifying a ticket from winbindd_pam.c. I've found during multiple, fast, automated SSH logins (such as from a cron script) that the replay cache in MIT's krb5 lib will occasionally fail the krb5_rd_req() as a replay attack. There seems to be a small window during which the MIT krb5 libs could reproduce identical time stamps for ctime and cusec in the authenticator since Unix systems only give back milli-seconds rather than the micro-seconds needed by the authenticator. Checked against MIT 1.5.1. Have not researched how Heimdal does it. My thinking is that if someone can spoof the KDC and TDS services we are pretty hopeless anyways. (This used to be commit cbd33da9f78373e29729325bbab1ae9040712b11)
2007-10-10	r22844: Introduce const DATA_BLOB data_blob_null = { NULL, 0, NULL }; and	Volker Lendecke	1	-26/+26
	replace all data_blob(NULL, 0) calls. (This used to be commit 3d3d61687ef00181f4f04e001d42181d93ac931e)
2007-10-10	r22001: change prototype of dump_data(), so that it takes unsigned char * now,	Stefan Metzmacher	1	-3/+3
	which matches what samba4 has. also fix all the callers to prevent compiler warnings metze (This used to be commit fa322f0cc9c26a9537ba3f0a7d4e4a25941317e7)