samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2007-10-10	r6882: Put in configure tests and #ifdef to keep Samba building on older ↵	Andrew Bartlett	1	-1/+2
	Heimdal. Andrew Bartlett (This used to be commit f2e926192595c74bd9cc8a3343e0fcf27a1de38b)
2007-10-10	r6819: More notes on krb5 requirements	Andrew Bartlett	1	-18/+66
	Andrew Bartlett (This used to be commit dbd845998723987c75dc0e6a427330116dce0bf4)
2007-10-10	r6810: Rename auth/{ntlmssp,gensec,kerberos} mk and m4 files to be called	Tim Potter	2	-0/+1
	config.mk and config.m4 to be consistent with the rest of Samba. (This used to be commit f377c71e4f0d60684326906dfb65e4581294ec34)
2007-10-10	r6805: Remove two remaining references to gensec_gsskrb5	Jelmer Vernooij	1	-1/+0
	(This used to be commit a02e07739781eb00b521d050ab06d6b0aedf47bc)
2007-10-10	r6803: Try to bring in the correct GSSAPI headers for the krb5 mech. This	Andrew Bartlett	1	-1/+1
	should allow us to ditch the local static storage for OIDs, as well as fix the build on non-heimdal platforms. Andrew Bartlett (This used to be commit a7e2ecfac9aaacd673e3583b62139e4f4e114429)
2007-10-10	r6801: It appears that krb5_make_principal, while convenient, is not portable.	Andrew Bartlett	1	-4/+13
	Andrew Bartlett (This used to be commit c8e8fa129ed0c80bcd289445935047c28d48da64)
2007-10-10	r6800: A big GENSEC update:	Andrew Bartlett	4	-4/+131
	Finally remove the distinction between 'krb5' and 'ms_krb5'. We now don't do kerberos stuff twice on failure. The solution to this is slightly more general than perhaps was really required (as this is a special case), but it works, and I'm happy with the cleanup I achived in the process. All modules have been updated to supply a NULL-terminated list of OIDs. In that process, SPNEGO code has been generalised, as I realised that two of the functions should have been identical in behaviour. Over in the actual modules, I have worked to remove the 'kinit' code from gensec_krb5, and placed it in kerberos/kerberos_util.c. The GSSAPI module has been extended to use this, so no longer requires a manual kinit at the command line. It will soon loose the requirement for a on-disk keytab too. The general kerberos code has also been updated to move from error_message() to our routine which gets the Heimdal error string (which may be much more useful) when available. Andrew Bartlett (This used to be commit 0101728d8e2ed9419eb31fe95047944a718ba135)
2007-10-10	r6797: Typo fix.	Rafal Szczesniak	1	-1/+1
	rafal (This used to be commit 0f9a2aef6c87bd53c962b33bf78bf773d2319b97)
2007-10-10	r6795: Make some functions static and remove some unused ones.	Jelmer Vernooij	1	-1/+1
	(This used to be commit 46509eb89980bfe6dabd71264d570ea356ee5a22)
2007-10-10	r6794: spellfix	Simo Sorce	1	-3/+3
	(This used to be commit f5956d150154cb4393dc323ae8ae1f936adee355)
2007-10-10	r6791: My early notes on the particular things I have discovered as I learn	Andrew Bartlett	1	-0/+176
	kerberos, and how Microsoft constructs their kerberos implementation. Andrew Bartlett (This used to be commit 5fa9be75d987af106fd798f6d5379b637a170b00)
2007-10-10	r6727: One more step down the long march to the 'Kerberos domain join'.	Andrew Bartlett	1	-0/+3
	This patch allows a suitably patched Heimdal GSSAPI library (detected in configure) to supply to us the session keys, and further compleats the gensec_gssapi module. This is tested for CIFS, but fails for LDAP at this point (that is what I'll work on next). We currently fill out the 'session info' from the SAM, like gensec_krb5 does, but both will need to use the PAC extraction functions in the near future. Andrew Bartlett (This used to be commit 937ee361615a487af9e0279145e75b6c27720a6b)
2007-10-10	r6711: Clarify that we are dealing with a salting principal in the kerberos	Andrew Bartlett	1	-40/+60
	code, which is certainly not in the form of machine$. Rework the default salt to match what I just added to the heimdal server (Samba4 is back on speaking terms with lorikeet heimdal now), from Luke Howard's post to samba-technical in Nov 2004. Now to test compatability with MS... Andrew Bartlett (This used to be commit d719a0093bfe37fc62f28c7c02f17f93eec16abf)
2007-10-10	r6703: fix the build	Stefan Metzmacher	1	-1/+1
	metze (This used to be commit 333f9bdf585db3df455009667d94deae568be02a)
2007-10-10	r6701: Updates to our server-side ticket verification code, we now use the	Andrew Bartlett	1	-57/+44
	client credentials code to read the secrets.ldb. Also clean up error handling, and ensure to always set the last_error_message stuff. Andrew Bartlett (This used to be commit 435d229e5d1da349f00d80a36b599ae70468e99d)
2007-10-10	r6521: Include system/network.h to fix compiler warning.	Tim Potter	1	-0/+1
	(This used to be commit 45383f6cec3c380043be59f1e1c5bf82f3095abb)
2007-10-10	r6359: Fix compiler warning with struct sockaddr. I'm sure I fixed this a few	Tim Potter	1	-0/+1
	weeks ago - weird. (This used to be commit 1738761d895461260dcba0dd81630cfa0ec43ae8)
2007-10-10	r6113: Move GENSEC and the kerberos code out of libcli/auth, and into	Andrew Bartlett	7	-0/+2447
	auth/gensec and auth/kerberos. This also pulls the kerberos configure code out of libads (which is otherwise dead), and into auth/kerberos/kerberos.m4 Andrew Bartlett (This used to be commit e074d63f3dcf4f84239a10879112ebaf1cfa6c4f)