samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2007-10-10	r10853: Convert wbinfo -n to properly init the domain.	Volker Lendecke	1	-401/+18
	Volker (This used to be commit 512ae49270197146e5967acd654dd97452cf4e77)
2007-10-10	r10852: Continuation-based programming can become a bit spaghetti...	Volker Lendecke	1	-245/+9
	Initialize a domain structure properly. Excerpt from wb_init_domain.c: /* * Initialize a domain: * * - With schannel credentials, try to open the SMB connection with the machine * creds. Fall back to anonymous. * * - If we have schannel creds, do the auth2 and open the schannel'ed netlogon * pipe. * * - Open LSA. If we have machine creds, try to open with ntlmssp. Fall back * to schannel and then to anon bind. * * - With queryinfopolicy, verify that we're talking to the right domain * * A bit complex, but with all the combinations I think it's the best we can * get. NT4, W2k3SP1 and W2k all have different combinations, but in the end we * have a signed&sealed lsa connection on all of them. * * Is this overkill? In particular the authenticated SMB connection seems a * bit overkill, given that we do schannel for netlogon and ntlmssp for * lsa later on w2k3, the others don't do this anyway. */ Thanks to Jeremy for his detective work, and to the Samba4 team for providing such a great infrastructure. Next step is to connect to SAM. Do it via LDAP if we can, fall back to samr with all we have. Volker (This used to be commit 3e69fdc07cd76b4bc01b032148609ee4b59b8be7)
2007-10-10	r10846: Create a "wbsrv_domain", change wb_finddcs to the style of the rest ↵	Volker Lendecke	1	-180/+213
	of the async helpers. Volker (This used to be commit 10585ba4e81e979a03aec747db6fc059978fa566)
2007-10-10	r10838: Get us an schannel'ed netlogon pipe.	Volker Lendecke	1	-13/+123
	Abartlet, now I think I need some assistance to implement the pam auth & crap auth calls. Volker (This used to be commit 90a30c8b6585ed48b50e6aed75f3ecfd3543bbdc)
2007-10-10	r10834: Work in progress on winbind. With some helper routines the composite ↵	Volker Lendecke	1	-356/+444
	functions start to look sane. Question: What about providing all winbind commands as irpc interfaces that are called from the samba3 compatibility layer? This way it would be easy for other samba components to access its functionality. Does that make sense? Volker (This used to be commit 2a6b8053859ea5690f90a8d2074d2bb4f06551f8)
2007-10-10	r10825: Complete wbinfo -n	Volker Lendecke	1	-6/+317
	(This used to be commit 1afa893506f3d7157e251eec9baeba28dc011587)
2007-10-10	r10691: This gets half-way to wbinfo -n. It acquires an lsa pipe, and does a	Volker Lendecke	1	-5/+323
	queryinfopolicy. Idea is to get a consistency check between that and our notion of the domain name and sid, and take the lsa pipe as the holder of the central smbcli_tree that netlogon and samr use as well. Volker (This used to be commit 126c80aefc4f53c4ba79afc12d70602ef9055ddb)
2007-10-10	r10687: Another one...	Volker Lendecke	1	-1/+0
	(This used to be commit d18f7edf92e8420f30cae01649d18f0ae20a80aa)
2007-10-10	r10683: Samba3's wbinfo -t should give the correct answer now.	Volker Lendecke	1	-1/+223
	Tridge, if you have time, you might want to look at the segfault I was still seeing. Now I store the handle to the netlogon pipe in the global winbind state and free it on the next entry into check_machacc. The problem seems to be that talloc_free()ing a pipe struct from within a callback function on that pipe is not possible. I think I can live with that, but it has been not really obvious. To reproduce the segfault you might want to look at putting a talloc_free(state->getcreds->out.netlogon) into wbsrv_samba3_check_machacc_receive_creds. This is called from a dcerpc callback function. In particular if the check failed it would be nice if I could delete the pipe directly and not post a different event to some winbind queue. I tried to delete the pipe from a timed event triggered immediately, but this also fails because the inner loop seems to hit the same event again, calling it twice. Volker (This used to be commit 5436d7764812bb632ba865e633005ed07923b57f)
2007-10-10	r10675: Connect to the DC's IPC$	Volker Lendecke	1	-0/+1
	Volker (This used to be commit c7557884843a5b2bac9e21ec81cafcaadf436bca)
2007-10-10	r10504: - seperate implementation specific stuff, from the generic composite	Stefan Metzmacher	1	-19/+18
	stuff. - don't use SMBCLI_REQUEST_* state's in the genreic composite stuff - move monitor_fn to libnet. NOTE: I have maybe found some bugs, in code that is dirrectly in DONE or ERROR state in the _send() function. I haven't fixed this bugs in this commit! We may need some composite_trigger_*() functions or so. And maybe some other generic helper functions... metze (This used to be commit 4527815a0a9b96e460f301cb1f0c0b3964c166fc)
2007-10-10	r10491: First step towards wbinfo -t: This issues a name request for the primary	Volker Lendecke	1	-0/+206
	domain and gets the DC's name via a mailslot call. Metze, I renamed wbsrv_queue_reply to wbsrv_send_reply in accordance with irpc_send_reply. Having _queue_ here and _send_ there is a bit confusing. And as everything is async anyway, the semantics should not be too much of a problem. Volker (This used to be commit 4637964b19c6e9f7d201b287e2d409d029fced01)