samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2008-10-24	Remove iconv_convenience argument from convert_string{,talloc}() but	Jelmer Vernooij	1	-1/+1
	make them wrappers around convert_string{,talloc}_convenience().
2008-10-24	Eliminate another instance of global_loadparm.	Jelmer Vernooij	1	-0/+2

2008-10-24	Remove iconv_convenience parameter from simple string push/pull	Jelmer Vernooij	5	-14/+7
	functions.
2008-10-20	Make sure prototypes are always included, make some functions static and	Jelmer Vernooij	14	-16/+14
	remove some unused functions.
2008-10-16	Create a 'straight paper path' for UTF16 passwords.	Andrew Bartlett	1	-1/+1
	This uses a virtual attribute 'clearTextPassword' (name chosen to match references in MS-SAMR) that contains the length-limited blob containing an allegidly UTF16 password. This ensures we do no validation or filtering of the password before we get a chance to MD4 it. We can then do the required munging into UTF8, and in future implement the rules Microsoft has provided us with for invalid inputs. All layers in the process now deal with the strings as length-limited inputs, incluing the krb5 string2key calls. This commit also includes a small change to samdb_result_passwords() to ensure that LM passwords are not returned to the application logic if LM authentication is disabled. The objectClass module has been modified to allow the clearTextPassword attribute to pass down the stack. Andrew Bartlett
2008-10-15	Remove unused variable.	Jelmer Vernooij	1	-1/+0

2008-10-12	Use common util_file code.	Jelmer Vernooij	1	-1/+1

2008-10-12	Use common strlist implementation in Samba 3 and Samba 4.	Jelmer Vernooij	1	-1/+1

2008-10-11	Fix include paths to new location of libutil.	Jelmer Vernooij	7	-7/+7

2008-10-11	Move lib/util from source4 to top-level libutil.	Jelmer Vernooij	1	-1/+1
	Conflicts: source4/Makefile
2008-10-11	Provide the same set of helper functions for DEBUG in Samba 3 and Samba	Jelmer Vernooij	1	-11/+11
	4, even though the macros are still different. This makes it possible to use object code compiled with one DEBUG() macro from the other sourceX directory.
2008-10-06	s4:gensec: pass down want_features to the spnego backend mech	Stefan Metzmacher	3	-1/+24
	metze
2008-09-30	Merge branch 'master' of ssh://git.samba.org/data/git/samba	Andrew Tridgell	1	-0/+1

2008-09-30	Pass session options around; saves another use of global_loadparm.	Jelmer Vernooij	1	-0/+1

2008-09-29	make the schannel creentials persistent	Andrew Tridgell	1	-1/+1
	this makes testing with the WSPP test suite much easier over samba restarts
2008-09-24	Cosmetic corrections for the KERBEROS library	Matthias Dieter Wallnöfer	1	-3/+1
	This commit applies some cosmetic corrections for the KERBEROS library.
2008-09-24	Kerberos cosmetic changes: Revert a part of the patch	Matthias Dieter Wallnöfer	1	-1/+3
	Reverts a part of the patch because it changes the function of the code (suggested by Jelmer).
2008-09-24	Cosmetic corrections for the KERBEROS library	Matthias Dieter Wallnöfer	4	-15/+13
	This commit applies some cosmetic corrections for the KERBEROS library.
2008-09-24	Merge branch 'master' of ssh://git.samba.org/data/git/samba into crypto	Jelmer Vernooij	2	-6/+8

2008-09-24	Move source4/lib/crypto to lib/crypto.	Jelmer Vernooij	6	-6/+6

2008-09-24	Fix nasty bug that would come up only if a client connection to a remote	Simo Sorce	2	-6/+8
	ldap server suddenly dies. We were creating a wrong talloc hierarchy, so the event.fde was not freed automatically as expected. This in turn made the event system call the ldap io handlers with a null packet structure, causing a segfault. Fix also the ordering in ldap_connection_dead() Thanks to Metze for the huge help in tracking down this one.
2008-09-23	Merge ldb_search() and ldb_search_exp_fmt() into a simgle function.	Simo Sorce	1	-1/+1
	The previous ldb_search() interface made it way too easy to leak results, and being able to use a printf-like expression turns to be really useful.
2008-09-23	gensec_krb5: only give away the session key, when the authentication is done	Stefan Metzmacher	1	-0/+4
	metze
2008-09-23	gensec_gssapi: only give away the session key, when the authentication is done	Stefan Metzmacher	1	-4/+5
	metze
2008-09-23	ntlmssp: only give away the session key, when the authentication is done	Stefan Metzmacher	1	-0/+4
	metze
2008-09-19	NTLMSSP Server: Correctly fills in the DNS server name and server domain	Matthias Dieter Wallnöfer	1	-21/+17
	Don't rely on "get" system calls but rather on SAMBA "lp_" calls. Signed-off-by: Stefan Metzmacher <metze@samba.org>
2008-09-18	Generate with 1.3.36.	Jelmer Vernooij	4	-27/+38

2008-09-03	Implement NETLOGON PAC verfication on the server-side	Andrew Bartlett	1	-5/+5
	This is implemented by means of a message to the KDC, to avoid having to link most of the KDC into netlogon. Andrew Bartlett (This used to be commit 82fcd7941f5c54da2d994c8bd99dd8d86299a296)
2008-08-28	Heimdal provides Kerberos PAC parsing routines. Use them.	Andrew Bartlett	4	-89/+170
	This uses Heimdal's PAC parsing code in the: - LOCAL-PAC test - gensec_gssapi server - KDC (where is was already used, the support code refactored from here) In addition, the service and KDC checksums are recorded in the struct auth_serversupplied_info, allowing them to be extracted for validation across NETLOGON. Andrew Bartlett (This used to be commit 418b440a7b8cdb53035045f3981d47b078be6c1e)
2008-08-27	Put the internal gensec_gssapi state into a header.	Andrew Bartlett	2	-43/+69
	This will allow a torture suite to inspect some otherwise internal details. Andrew Bartlett (This used to be commit 9701149ef75f9771f42000e2b6f44963abfee938)
2008-08-14	gensec_gssapi: only cache the session key in STAGE_DONE	Stefan Metzmacher	1	-5/+9
	The key may change because we switch from initiator to acceptor subkey. metze (This used to be commit 66244092a457b2cde6339cb31dcfa73b122ba9b5)
2008-08-12	gensec_gssapi: add support for GENSEC_FEATURE_NEW_SPNEGO	Stefan Metzmacher	1	-0/+25
	metze (This used to be commit 9246924effd4d0b08ca1ef87e45ad510020df93e)
2008-08-12	gensec_gssapi: fix compiler warnings	Stefan Metzmacher	1	-2/+2
	metze (This used to be commit f4f4bb7fe977301e468ab164ba750b69d9a92306)
2008-08-12	gensec_gssapi: add a function to load the lucid structure once	Stefan Metzmacher	1	-15/+44
	metze (This used to be commit daa986d1d04e59550bb5d33b5075daa414d087ba)
2008-08-12	gensec: add support for new style spnego and correctly handle mechListMIC	Stefan Metzmacher	3	-7/+135
	metze (This used to be commit 05a3403967d3cf64bca8b06536dc1b20cf835396)
2008-08-08	gensec_gssapi: use the correct signature size for cfx/rfc4121 style signatures	Stefan Metzmacher	1	-1/+1
	metze (This used to be commit fcabe24f96c9677146ca754a502f336c23050339)
2008-08-08	gensec_gssapi: use gsskrb5_get_subkey() to get the session key	Stefan Metzmacher	1	-3/+3
	This is needed to get the correct key, when aes keys are used. metze (This used to be commit 7587a7d8b65f27a5865d6873f63a450488da02c9)
2008-08-08	Always set a session key, even for the 'no password' case.	Andrew Bartlett	1	-0/+2
	This is for bug 5664 reported by Tom <hto@arcor.de>. Andrew Bartlett (This used to be commit b345c9cf535af35c83da040ac965d9690dc802fe)
2008-08-08	Clarify comment	Andrew Bartlett	1	-2/+2
	(This used to be commit 580cce9de38ddd9d59b272b58caadce528321d09)
2008-08-07	gensec_gssapi: add support for GENSEC_FEATURE_SIGN_PKT_HEADER	Stefan Metzmacher	1	-4/+82
	This only works for sign/verify_packet() yet, seal/unseal_packet() doesn't work yet... metze (This used to be commit c62e5d23a69789d23516a6d150fd3b756e270998)
2008-08-07	gensec: add GENSEC_FEATURE_SIGN_PKT_HEADER flag	Stefan Metzmacher	1	-0/+1
	metze (This used to be commit d7dfdbaf34843cb6783d8e686e659c53c5ac27ef)
2008-08-01	auth/kerberos: remove dependencies to internal heimdal	Stefan Metzmacher	2	-2/+1
	metze (This used to be commit ed0fc19ac6a1194e6fd9a6534cbf7453fa870066)
2008-08-01	auth/kerberos: we don't need to include heimdal private headers	Stefan Metzmacher	1	-2/+0
	metze (This used to be commit 6ec3887aee9bbb9c182ab966d37212edeaa16b5a)
2008-08-01	gensec_gssapi: include <gssapi/gssapi.h>	Stefan Metzmacher	1	-1/+1
	metze (This used to be commit 49e01d00bded74190c8e3049ac5883fe211e86fd)
2008-08-01	auth_server: set the workstation name	Stefan Metzmacher	1	-0/+4
	metze (This used to be commit 6d640ee4b84c72f6c2da0ee047c9bac916bf3e57)
2008-08-01	build with the new heimdal version	Stefan Metzmacher	2	-1/+3
	(This used to be commit 3817d653faecb70bfafb850fe7d6e83aaed7e6d1)
2008-08-01	auth/ntlmssp: don't crash when the backend give no challenge	Stefan Metzmacher	1	-0/+6
	metze (This used to be commit c01fee80a79cd9e0f7bb295333bb03bd37328d05)
2008-08-01	auth_server: fix the logic of server_get_challenge()	Stefan Metzmacher	1	-4/+4
	metze (This used to be commit 699e3cdb52acdf2524347d8c053730306c579dd9)
2008-08-01	auth_server: fix segfault reported by Julien Kerihuel ↵	Stefan Metzmacher	1	-1/+1
	<j.kerihuel@openchange.org> metze (This used to be commit c2cc8ef943e8c2e02edb1eb20214de245cc6914c)
2008-07-28	Revert "gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with ↵	Stefan Metzmacher	1	-3/+3
	aes keys work" This reverts commit 73964f069056f46f2f27fc690e42e5c91ae1fe19. This breaks more than it gains:-( It seems to break the ncacn_np session key metze (This used to be commit 9678085f75b6cb0ed068e22f3d9f94247b200ce2)