Andrew Bartlett [Wed, 2 Nov 2005 00:31:22 +0000 (00:31 +0000)]
r11452: Update Heimdal to current lorikeet, including removing the ccache side
of the gsskrb5_acquire_cred hack.
Add support for delegated credentials into the auth and credentials
subsystem, and specifically into gensec_gssapi.
Add the CIFS NTVFS handler as a consumer of delegated credentials,
when no user/domain/password is specified.
Andrew Bartlett
(This used to be commit
55b89899adb692d90e63873ccdf80b9f94a6b448)
Andrew Tridgell [Tue, 1 Nov 2005 23:44:01 +0000 (23:44 +0000)]
r11447: fixed a problem with the ldap server spinning using CPU time
(This used to be commit
c913f466cd27030f8c696ab60b1a4a2eb2ac260c)
Andrew Bartlett [Tue, 1 Nov 2005 14:21:31 +0000 (14:21 +0000)]
r11442: Don't use BASE-NEGNOWAIT any more. It is a mostly meaningless test.
Andrew Bartlett
(This used to be commit
c105112902da45ce8ba9f70bf240dd8201f6fd2c)
Andrew Bartlett [Tue, 1 Nov 2005 13:35:59 +0000 (13:35 +0000)]
r11441: Remove the auth_domain module from Samba4, as we will only do things
via winbindd in Samba4.
Andrew Bartlett
(This used to be commit
e63be25d0b6edbb17f0747663b0570145a4d55fb)
Andrew Bartlett [Tue, 1 Nov 2005 13:33:05 +0000 (13:33 +0000)]
r11440: Actually check the right thing for 'is this a machine account' (thanks metze).
Andrew Bartlett
(This used to be commit
848831a1559d6569359bd6fb4993ccbef6ad86d8)
Andrew Bartlett [Tue, 1 Nov 2005 13:32:09 +0000 (13:32 +0000)]
r11439: Make presedence on strcmp comparison clear, and fill in
logon_parameters for the auth subsystem.
Andrew Bartlett
(This used to be commit
767c5ca7bec3737d1261e209cd895d1300354f25)
Andrew Bartlett [Tue, 1 Nov 2005 13:30:09 +0000 (13:30 +0000)]
r11438: Move enum samr_RejectReason into misc.idl so I can use it in a global
prototype.
Andrew Bartlett
(This used to be commit
a3abffc75805c8e333f387a96a1dbc352669d359)
Andrew Bartlett [Tue, 1 Nov 2005 13:29:22 +0000 (13:29 +0000)]
r11437: Fix (valid!) use of uninitialised value warnings.
Andrew Bartlett
(This used to be commit
64b9ea642bb7443f804e71bb2a6ccad94522d057)
Andrew Tridgell [Tue, 1 Nov 2005 07:07:48 +0000 (07:07 +0000)]
r11436: this is work in progress for generating the schema we need for our ADS
ldap server. It's still not quite right, and I'm chasing down a few
errors that mmc throws up, but its a lot closer than it was. I had to
change the approach quite substantially over the last couple of days,
but this approach now seems to be working out.
(This used to be commit
38ea11510c8824285d072fe0e03e443d9d584271)
Stefan Metzmacher [Mon, 31 Oct 2005 22:48:58 +0000 (22:48 +0000)]
r11429: - add owned,active,sgroup vs. unique, group and mhomed replica
special group vs. special group will be done later
metze
(This used to be commit
25a35c697795ff802d735cfd3e6c11ea73d92126)
Stefan Metzmacher [Mon, 31 Oct 2005 22:25:29 +0000 (22:25 +0000)]
r11426: add owned,active,normalgroup vs. * replica sections
metze
(This used to be commit
70166bb2a9085e08915fc0f560e660b7edd0c2b3)
Stefan Metzmacher [Mon, 31 Oct 2005 21:51:53 +0000 (21:51 +0000)]
r11425: add owned,active,unique vs. multi homed section
metze
(This used to be commit
a70cf6f87b975861bb7af4080c56f146faf3369d)
Volker Lendecke [Mon, 31 Oct 2005 21:37:36 +0000 (21:37 +0000)]
r11424: Fix an uninitialized variable warning
(This used to be commit
fed26bc4fdb47b5bd1aaa6374b09252c239bbac4)
Volker Lendecke [Mon, 31 Oct 2005 20:28:08 +0000 (20:28 +0000)]
r11423: Add some TALLOC_CTX
(This used to be commit
a043ef33dca19d5ac1cdead60a4faa8b3a950bf4)
Volker Lendecke [Mon, 31 Oct 2005 20:12:22 +0000 (20:12 +0000)]
r11422: Remove unused args
(This used to be commit
d5aef4e2f955025266e59227364b5cccccdb9f32)
Stefan Metzmacher [Mon, 31 Oct 2005 18:19:43 +0000 (18:19 +0000)]
r11419: add owned,unique,active vs. special group replica section
metze
(This used to be commit
061e2e67daeb920b2613564814738adc56c58017)
Stefan Metzmacher [Mon, 31 Oct 2005 13:20:47 +0000 (13:20 +0000)]
r11418: - add unique,owned,active vs. normal group section
- we handle incoming release demands for that
metze
(This used to be commit
1db4d8e456895d18a864fa740ec0d8198226cba0)
Jelmer Vernooij [Mon, 31 Oct 2005 13:02:17 +0000 (13:02 +0000)]
r11417: Add TODO for the build system
(This used to be commit
ad0019ad4ebba734ff1db31c53fd8b6ad085ead4)
Stefan Metzmacher [Mon, 31 Oct 2005 11:05:48 +0000 (11:05 +0000)]
r11416: add some more comments
metze
(This used to be commit
dccaceee182066e15e7a4fd9a5f3f0b2e2beda19)
Stefan Metzmacher [Mon, 31 Oct 2005 10:14:05 +0000 (10:14 +0000)]
r11415: - create a seperate nbt socket for handling incoming packets
- remove useless .release attribute, we have seperate tests for this
now
- add first owned,active vs. replica test, including handling incoming
name queries from the server
metze
(This used to be commit
7843b6c5c84b7543fd30242e0d5c8414b56fd383)
Andrew Bartlett [Mon, 31 Oct 2005 06:08:11 +0000 (06:08 +0000)]
r11414: Add passing around of logon_parameters to Samba4 auth_winbind
Andrew Bartlett
(This used to be commit
7e3c22f57be215b483ae15de4f754ed4188b5379)
Andrew Bartlett [Mon, 31 Oct 2005 06:01:55 +0000 (06:01 +0000)]
r11413: More comments, plus always check (and update) the credentials chain,
regardless the authentication result on a particular user.
Andrew Bartlett
(This used to be commit
2ee7ed000ef099b2e38d540be75cbc8de386839a)
Andrew Bartlett [Mon, 31 Oct 2005 05:45:19 +0000 (05:45 +0000)]
r11412: These comments may not be much, but my eyes scan code with even
minimal comments much better (much like volker scans code of less than
80 cols better ;-)
Andrew Bartlett
(This used to be commit
8800e9b5b06701ed1cdf9da0a37291a84eb36f7f)
Andrew Bartlett [Mon, 31 Oct 2005 04:17:51 +0000 (04:17 +0000)]
r11411: Add to Samba4 the Samba3 patch I just posted for machine account
logins (changing the winbindd interface).
Clean up the wbsrv_samba3_async_epilogue() handling, as it was mixing
auth and other replies, such that all replies were having the auth
error strings set. We now do a better job of filling in the right
errors in the right places.
Andrew Bartlett
(This used to be commit
8ed975df52bcac9646672f6a39c51481b5c59226)
Andrew Bartlett [Mon, 31 Oct 2005 03:44:29 +0000 (03:44 +0000)]
r11410: Fix rejoin as a BDC by modifying, rather than trying to recreate, the
server reference.
Andrew Bartlett
(This used to be commit
302219928f47cdc3822c3a7d9444339092d9d33c)
Andrew Bartlett [Mon, 31 Oct 2005 03:06:13 +0000 (03:06 +0000)]
r11409: The use of 'password server = ' here is still bogus, but for now at
least don't allow binding to become uninitialised.
Andrew Bartlett
(This used to be commit
e754234a17ebc601720caa66a229d9a842dfebda)
Andrew Tridgell [Mon, 31 Oct 2005 03:05:26 +0000 (03:05 +0000)]
r11408: fixed the mapping of ldb errors to ldap errors in the ldap server
(This used to be commit
647cb90360d1a790c8da34d48c46737762046e1b)
Andrew Bartlett [Mon, 31 Oct 2005 03:03:32 +0000 (03:03 +0000)]
r11407: Push 'recreate account' logic into libnet/libnet_join.c. We don't
return the pesky USER_EXISTS 'error' code any more, and it is much
easier to handle this inline.
Andrew Bartlett
(This used to be commit
a7eb796cf544db3fe16986d8e233d2defe7a7d1b)
Andrew Bartlett [Mon, 31 Oct 2005 03:00:36 +0000 (03:00 +0000)]
r11406: Clean up uninitialised value warnings found by -01.
The warnings were caused by the structure assignements, which we don't
need to do. The actual values are filled in by the NDR layer later.
Andrew Bartlett
(This used to be commit
f140117535c3281f0a0a7970ea4127498737d112)
Andrew Bartlett [Mon, 31 Oct 2005 02:58:29 +0000 (02:58 +0000)]
r11405: Ensure we can never have secret4 be uninitialised. Found after
volker's urging on the use of -O1.
Andrew Bartlett
(This used to be commit
6a7bb391ba62a4f90f57aa76c5dcc0d35fca54a4)
Andrew Bartlett [Mon, 31 Oct 2005 02:46:15 +0000 (02:46 +0000)]
r11404: Another torture test and a new WERR.
Andrew Bartlett
(This used to be commit
de83b8cd187b28ecb30550c44f9f84e373df692e)
Andrew Tridgell [Mon, 31 Oct 2005 02:13:02 +0000 (02:13 +0000)]
r11403: improved the error handling in the ildap ldb backend. Now passes
through all ldap errors except on search. Search errors are only
available via ldb_errstring() until we decide how to fix ldb_search().
(This used to be commit
c192bcb79dda44b5b7a3bc257ba92addf769c8d9)
Andrew Bartlett [Mon, 31 Oct 2005 02:12:13 +0000 (02:12 +0000)]
r11402: In response to comments by volker, expand our Netlogon DsRGetDCName
IDL and testsuites. The server-side of this remains a stub, we should
probably be doing ldb searches for the server reference record.
Andrew Bartlett
(This used to be commit
0141ed309a664e7a9893c95232c2dcb9768f9315)
Andrew Bartlett [Mon, 31 Oct 2005 00:23:38 +0000 (00:23 +0000)]
r11401: A simple hack to have our central credentials system deny sending LM
authentication for user@realm logins and machine account logins.
This should avoid various protocol downgrade attacks.
Andrew Bartlett
(This used to be commit
76c2d204d0a1ec66d1ef3c935688c7571b051f46)
Stefan Metzmacher [Sun, 30 Oct 2005 10:39:52 +0000 (10:39 +0000)]
r11400: fix compiler warnings
metze
(This used to be commit
a29a107d95b67248ccd6036084829b080c892e40)
Andrew Bartlett [Sun, 30 Oct 2005 00:56:39 +0000 (00:56 +0000)]
r11399: Add another case where we need to fallback, if the KDC isn't there.
Andrew Bartlett
(This used to be commit
e82fbb58ddaa3d38615d9a2d5e804f614edb2ff3)
Andrew Bartlett [Sat, 29 Oct 2005 13:13:52 +0000 (13:13 +0000)]
r11394: Allow KDC unreachable as another 'forget about gssapi' error on SPNEGO.
Andrew Bartlett
(This used to be commit
da24074860cb7029ef0ff45105170642174f45c1)
Andrew Bartlett [Sat, 29 Oct 2005 11:11:05 +0000 (11:11 +0000)]
r11393: Avoid error messages and get more correctness with long plaintext passwords.
Andrew Bartlett
(This used to be commit
cb0b3c00572958f5ac8413cc651f627ca1871295)
Volker Lendecke [Sat, 29 Oct 2005 06:59:54 +0000 (06:59 +0000)]
r11392: After confirmation from Love, fix a compiler warning
(This used to be commit
a0b4036ba6ae423bab3ec698d3e404f03bb0f9d5)
Jelmer Vernooij [Sat, 29 Oct 2005 00:45:40 +0000 (00:45 +0000)]
r11391: Add includedir to the list of directories to create
(This used to be commit
dab450a50194181aed14e93130eb2a1c42e616d0)
Jelmer Vernooij [Fri, 28 Oct 2005 23:28:37 +0000 (23:28 +0000)]
r11388: Move dot-generating to a seperate perl executable
(This used to be commit
31406f7aa540efc4c11e7546a12fdeee80e8db6c)
Jelmer Vernooij [Fri, 28 Oct 2005 23:16:27 +0000 (23:16 +0000)]
r11387: Remove pidl from the default 'install' target as it doesn't obey the
user specified install paths.
(This used to be commit
d537a35ec3d5fb2dc5143c1fb880faab5c64a862)
Jelmer Vernooij [Fri, 28 Oct 2005 22:40:31 +0000 (22:40 +0000)]
r11386: Add install rule for pidl
(This used to be commit
b740d0d28043e37ba3f0bec0c1bfbd68c0fb56e6)
Jelmer Vernooij [Fri, 28 Oct 2005 22:32:22 +0000 (22:32 +0000)]
r11385: Fix issues in module.c. Calling function should pass in path
to directory rather then subsystem name now.
(This used to be commit
2a868ab3b57f64a27416c7a24c8d1ae112fc0c53)
Jelmer Vernooij [Fri, 28 Oct 2005 21:13:30 +0000 (21:13 +0000)]
r11382: Require number of required M4 macros
Make MODULE handling a bit more like BINARY, LIBRARY and SUBSYSTEM
Add some more PUBLIC_HEADERS
(This used to be commit
875eb8f4cc658e6aebab070029fd499a726ad520)
Volker Lendecke [Fri, 28 Oct 2005 19:14:46 +0000 (19:14 +0000)]
r11378: Fix an uninitialized variable warning. Tridge, I'm 99.999% sure this was a
simple cut&paste error, but you might recheck this.
Volker
(This used to be commit
55b5b100e9ef7e04832d5ba4c10c45916be3513e)
Jelmer Vernooij [Fri, 28 Oct 2005 18:26:26 +0000 (18:26 +0000)]
r11377: Add support for building LIBRARY elements as shared libraries:
- Adds -rpath bin/ so you don't have to install Samba in order to use compiled binaries.
- Writes out pkg-config files when building shared libs
- Supports automatic fallback to MERGEDOBJ (which is the default) or
OBJ_LIST (if ld -r is not supported)
Building with shared libs reduces the size of the Samba binaries from
197 Mb to 60 Mb (including libraries) on my system (GCC4, with debugging).
To build with shared libraries support enabled, run:
LIBRARY_OUTPUT_TYPE=SHARED_LIBRARY ./config.status
init functions don't get called correctly yet when using shared libs, so
you won't be able to actually run anything with success :-)
Once init functions are done, I'll look at support for loading shared
modules once again.
Based on a patch by Peter Novodvorsky (nidd on IRC).
(This used to be commit
0b54405685674a2b19a28d77aae5b1136b5a4728)
Andrew Bartlett [Fri, 28 Oct 2005 13:42:00 +0000 (13:42 +0000)]
r11374: On request from VL, put the plaintext auth patch in.
I still have some gremlins that get in the my way in testing this.
Andrew Bartlett
(This used to be commit
3353e906adb3b3116551026e3ae18fd4d7ae1764)
Andrew Bartlett [Fri, 28 Oct 2005 13:22:09 +0000 (13:22 +0000)]
r11373: Handle an apparent alias in NBT ntlogin replies.
Andrew Bartlett
(This used to be commit
51d55d2211195fe5d345ce130001dff1bfbfcef3)
Andrew Bartlett [Fri, 28 Oct 2005 12:08:03 +0000 (12:08 +0000)]
r11372: Now RPC-SAMLOGON works, place it into the default 'make test'.
Andrew Bartlett
(This used to be commit
381c4f9fef00cd65ebcbf41ab0cf62fd69ffc8cf)
Andrew Bartlett [Fri, 28 Oct 2005 11:21:33 +0000 (11:21 +0000)]
r11371: Fix the ntlm_auth build.
Andrew Bartlett
(This used to be commit
708476d0b2d178b9fd80583ac02fdadd4f9650b0)
Andrew Bartlett [Fri, 28 Oct 2005 11:20:48 +0000 (11:20 +0000)]
r11370: Samba4 now passes it's own RPC-SAMLOGON test again.
This avoids the nasty user@DOMAIN test for now, as it has very odd
semantics with NTLMv2.
Allow only user accounts to do an interactive login.
Andrew Bartlett
(This used to be commit
690cad8083e176b2e58fc243a11a003a78ce4074)
Volker Lendecke [Fri, 28 Oct 2005 11:02:42 +0000 (11:02 +0000)]
r11369: Implement socket_connect_multi: Connect to multiple ipv4 tcp ports in
sequence, with a 2-millisecond timeout between firing the syn packets. Build
smbcli_sock_connect_send upon that.
Volker
(This used to be commit
5718df44d90d113304c5deed1e2e7f82ff9e928f)
Andrew Bartlett [Fri, 28 Oct 2005 09:14:16 +0000 (09:14 +0000)]
r11367: Ensure to intialise the new logon_parameters (0 for session setups).
Andrew Bartlett
(This used to be commit
abff53b6339b7924ff705c7e3685135e85d8ed7a)
Andrew Bartlett [Fri, 28 Oct 2005 08:54:37 +0000 (08:54 +0000)]
r11366: Pass around the flags which indicate if we should support plaintext
logins and NTLM machine account logins.
Andrew Bartlett
(This used to be commit
421e64c2b4192bb13d2857d6c8648ff687ed653e)
Andrew Tridgell [Fri, 28 Oct 2005 07:05:56 +0000 (07:05 +0000)]
r11365: fixed a comment typo
(This used to be commit
3333d71ab6594c1e8977098c31c9437686039f1c)
Andrew Tridgell [Fri, 28 Oct 2005 07:05:32 +0000 (07:05 +0000)]
r11364: added a ldb_attr_dn() function for testing if an attribute name is
"dn" or "distinguishedName". This makes us a bit more consistent
(This used to be commit
b41b374b55f9a056c47ffa2ff88aa5272dbc42fc)
Andrew Tridgell [Fri, 28 Oct 2005 07:00:52 +0000 (07:00 +0000)]
r11363: fixed a problem with provisioning when hklm already exists (the
problem is really caused by hklm not having objectclass attributes on
its records, but this is a workaround)
(This used to be commit
62d5253a033f47335ceefade9ad7d98ddfc19584)
Tim Potter [Fri, 28 Oct 2005 06:51:44 +0000 (06:51 +0000)]
r11362: Remove attempt to decode uint8 array as a security descriptor. Pidl thinks
that because it is an array, the import should also be an array, i.e of
security descriptors.
(This used to be commit
fb313c19c60f6e0f69411a3bb96cd9d19fde7685)
Andrew Bartlett [Fri, 28 Oct 2005 06:44:24 +0000 (06:44 +0000)]
r11361: Test user@DOMAIN userPrincipalNames
Andrew Bartlett
(This used to be commit
75b002746af3788c71f99854ce983ff807f12b37)
Andrew Bartlett [Fri, 28 Oct 2005 05:57:35 +0000 (05:57 +0000)]
r11360: Pass down a flag indicating that this is an 'old password', and to
expect funny buisness.
Andrew Bartlett
(This used to be commit
b2810bd702b14375ddc237ba39be0badbae20aa5)
Andrew Bartlett [Fri, 28 Oct 2005 05:46:22 +0000 (05:46 +0000)]
r11359: More lovely cracknames tests...
Andrew Bartlett
(This used to be commit
35cbdd5c9ddb95a78fd56b854edca1b62f118fa7)
Andrew Bartlett [Fri, 28 Oct 2005 05:17:19 +0000 (05:17 +0000)]
r11358: Ensure domains are always upper-case as well. Helps NTLMv2.
Andrew Bartlett
(This used to be commit
82527491b2212d34b676be1e26cc875ae2828e42)
Andrew Bartlett [Fri, 28 Oct 2005 05:16:25 +0000 (05:16 +0000)]
r11357: Add more standard 'servicePrincaipalName' entries to our host account
in provision.
Andrew Bartlett
(This used to be commit
8ed61562803f92eb110742ac45cff36c8fe8eca3)
Andrew Bartlett [Fri, 28 Oct 2005 05:14:51 +0000 (05:14 +0000)]
r11356: More cracknames work. This copes with a lookup for a
servicePrincipalName with a realm, which always returns 'domain only',
with the realm as the domain.
Andrew Bartlett
(This used to be commit
476cd0c649d69f682dee27c1ae2a73b870b300d0)
Andrew Bartlett [Fri, 28 Oct 2005 04:58:33 +0000 (04:58 +0000)]
r11355: Test for error returns when we don't specify the newly discovered
'workstation for account on NTLM' flag.
Andrew Bartlett
(This used to be commit
aa5b6cf7c4cabd25655dc11d90d00c5faec67d6c)
Andrew Tridgell [Fri, 28 Oct 2005 04:10:47 +0000 (04:10 +0000)]
r11354: - generate a ejs error on bad ldif to add/modify
- fixed a double free error in ldb.close()
(This used to be commit
7f797e7097cffa1f5b5bac34e100af77d4026f89)
Andrew Tridgell [Fri, 28 Oct 2005 03:43:39 +0000 (03:43 +0000)]
r11353: a bit of an improvement to the ldb_tdb error handling
(This used to be commit
896704f5c139c8bce30dfc898bb3a12be10035ed)
Andrew Bartlett [Fri, 28 Oct 2005 03:40:10 +0000 (03:40 +0000)]
r11352: Add newly discovered (via the radiator lists) flags for controlling
plaintext and machine account logins.
Update tests to confirm this behaviour.
Andrew Bartlett
(This used to be commit
a0ed41d379f4b15a7f44ca93de9907f02bada163)
Andrew Bartlett [Fri, 28 Oct 2005 03:39:14 +0000 (03:39 +0000)]
r11351: Another add-hoc test.
Andrew Bartlett
(This used to be commit
326ffb2cc03bfde37b6fe34779848e9a191198e2)
Andrew Bartlett [Fri, 28 Oct 2005 02:29:32 +0000 (02:29 +0000)]
r11350: Add some debugs to assist tracking down kerberos issues in future.
(Make it easy to see what was put into the keytab, so we can tell when
gssapi screams that it can't pull it out).
Andrew Bartlett
(This used to be commit
c56142c4ac7541fc30bdf4c77e34f5a50d80da76)
Andrew Bartlett [Fri, 28 Oct 2005 02:13:14 +0000 (02:13 +0000)]
r11349: Actually add all the new spns...
Andrew Bartlett
(This used to be commit
63eede2ad3f0238e1a925325c0be08d79f48c33b)
Andrew Bartlett [Fri, 28 Oct 2005 02:09:35 +0000 (02:09 +0000)]
r11348: Fixes for 'net join':
- Add more servicePrincipalNames
- Always add them, not just for BDC accounts, and not just the first
time the account is created (it might be an upgrade from an NT4
account).
This should fix us for being a domain member in ADS again.
(This used to be commit
3821821d4cb459edd331d40be8b84b3c82616a0a)
Jelmer Vernooij [Thu, 27 Oct 2005 23:02:47 +0000 (23:02 +0000)]
r11343: Remove dependency on DEBUG()
(This used to be commit
407b5e615f80ab2f7a3d10bafd9284de7f02fe60)
Andrew Bartlett [Thu, 27 Oct 2005 22:37:48 +0000 (22:37 +0000)]
r11342: Remove unused variables.
Andrew Bartlett
(This used to be commit
eed8f4a03168a72910c829e490937c696c00b697)
Andrew Bartlett [Thu, 27 Oct 2005 22:27:51 +0000 (22:27 +0000)]
r11339: Fix the build by adding the serviceprincial name cracknames helper.
Andrew Bartlett
(This used to be commit
0a5bf9348ae179698daa291b94546c893e258097)
Andrew Bartlett [Thu, 27 Oct 2005 14:33:12 +0000 (14:33 +0000)]
r11334: Print error status in debug.
Andrew Bartlett
(This used to be commit
3b5ef4208d8e9492fbed1b68251bc62063909854)
Andrew Bartlett [Thu, 27 Oct 2005 13:54:30 +0000 (13:54 +0000)]
r11333: Push service principal lookups into the cracknames code, rather than
in the hdb-ldb code.
Andrew Bartlett
(This used to be commit
f71149c88d9648f5b2b1d1480dc8d45c551b0231)
Stefan Metzmacher [Thu, 27 Oct 2005 13:12:35 +0000 (13:12 +0000)]
r11331: add conflict cases owned,released vs. replica
metze
(This used to be commit
d3049936a574e35eb00f072a3c378db0b69170aa)
Stefan Metzmacher [Thu, 27 Oct 2005 13:11:33 +0000 (13:11 +0000)]
r11330: - split up owned,active vs replica and owned,released vs. replica
- complete owned,released tests
metze
(This used to be commit
ba82ffb261d5ef59216cec75fb617b4d7022aaee)
Stefan Metzmacher [Thu, 27 Oct 2005 13:09:52 +0000 (13:09 +0000)]
r11329: the 0x1C must be registered as group name
metze
(This used to be commit
657d45d3e0d57c3457c5e84b732914918db815e6)
Andrew Bartlett [Thu, 27 Oct 2005 12:26:28 +0000 (12:26 +0000)]
r11325: Fix up some kerberos notes.
Andrew Bartlett
(This used to be commit
89623af30f25150da42a17f825e202b2ae9f7898)
Andrew Bartlett [Thu, 27 Oct 2005 10:45:16 +0000 (10:45 +0000)]
r11322: Start moving towards using the cracknames code in the KDC.
Andrew Bartlett
(This used to be commit
cf67af421686e7a89334e10296a3a07c1f8f6298)
Andrew Bartlett [Thu, 27 Oct 2005 10:44:41 +0000 (10:44 +0000)]
r11321: Fix typos in warnings.
Andrew Bartlett
(This used to be commit
81f020d3a4982842b770b9eeb82851cf2cd35fe2)
Tim Potter [Thu, 27 Oct 2005 07:32:04 +0000 (07:32 +0000)]
r11318: Tweak import statement for decoding KeySecurityData as a NT security
descriptor in ethereal.
(This used to be commit
5af1b6df0afac28fb041b5b374b5c5b5e4ef15b3)
Andrew Bartlett [Thu, 27 Oct 2005 05:33:49 +0000 (05:33 +0000)]
r11317: An ugly hack to setup the global gssapi_krb5_context early, when we
have easy access to the event context.
This stops Samba dead-locking against itself when the winbindd client
tries to contact the KDC.
Andrew Bartlett
(This used to be commit
57f811115ed768ea1f170dcd71038398bf2ab6e9)
Andrew Bartlett [Thu, 27 Oct 2005 05:31:20 +0000 (05:31 +0000)]
r11316: Kill off a bit more of the old secrets system...
Andrew Bartlett
(This used to be commit
c46ef43224ce0384297ffe1934f9ff0a00a4be45)
Andrew Bartlett [Thu, 27 Oct 2005 00:05:07 +0000 (00:05 +0000)]
r11315: Sorry gd, I just removed all of your code that I just merged...
(We now ask the kerberos libraries to handle getting and unwapping the PAC).
Andrew Bartlett
(This used to be commit
6a0beb29da2aaa4d432cf9643924db3c2e77a858)
Andrew Bartlett [Wed, 26 Oct 2005 23:41:01 +0000 (23:41 +0000)]
r11314: Use a patch from lha to have the kerberos libs extract the PAC, rather
than doing ASN.1 parsing in Samba.
Also use the API function for getting a client from a ticket, rather
than just digging in the structure.
Andrew Bartlett
(This used to be commit
25d5ea6d724bd2b64a6086ae6e2e1c5148b8ca4a)
Andrew Bartlett [Wed, 26 Oct 2005 23:39:04 +0000 (23:39 +0000)]
Andrew Bartlett [Wed, 26 Oct 2005 23:38:37 +0000 (23:38 +0000)]
r11312: Make it clear we are looking at the 'domain ref', not the domain
itself in the auth_sam module.
Andrew Bartlett
(This used to be commit
0800942dbb1511586a896c6376c436a4552c54be)
Jelmer Vernooij [Wed, 26 Oct 2005 23:36:04 +0000 (23:36 +0000)]
r11311: Move some more logic to env
(This used to be commit
990419bac7ce335ffcec84017614eb9642a6ece6)
Andrew Bartlett [Wed, 26 Oct 2005 23:34:15 +0000 (23:34 +0000)]
r11310: Free the 'if_relevent' portion of the PAC when we build it.
Andrew Bartlett
(This used to be commit
ede638c00b574bf4149d11844c0adf8e0f5c4efb)
Rafal Szczesniak [Wed, 26 Oct 2005 21:05:27 +0000 (21:05 +0000)]
r11309: A trivial test script for ejs libnet interface.
rafal
(This used to be commit
deb561ea4a00730787d129ae5eda38ceefe129f6)
Rafal Szczesniak [Wed, 26 Oct 2005 21:04:53 +0000 (21:04 +0000)]
r11308: Correctly return status code in case of js error or libnet
function execution error.
rafal
(This used to be commit
a50a5bef6e4c0051d13ed59fe5ddade709a98ba7)
Jelmer Vernooij [Wed, 26 Oct 2005 20:06:26 +0000 (20:06 +0000)]
r11307: Add support for generating pkg-config files
(This used to be commit
9c211507c15092ce09fd519cd0ffadf4b9f69492)
Jelmer Vernooij [Wed, 26 Oct 2005 19:07:01 +0000 (19:07 +0000)]
r11306: Move more static Makefile data to main.mk
Clean up smb_build::makefile a bit
(This used to be commit
28931219a19317f6c7208086416bc675bb259179)
Jelmer Vernooij [Wed, 26 Oct 2005 18:12:47 +0000 (18:12 +0000)]
r11305: Use more recent guess and sub files
(This used to be commit
20870508dd3e3a41b8a531b0830003735803fddf)
Jelmer Vernooij [Wed, 26 Oct 2005 15:07:13 +0000 (15:07 +0000)]
r11304: Add support back in for loading shared modules (not used yet)
(This used to be commit
90f49b6f70c4aaf0e4ab4fad2e6f9caeb0f6f3a6)
Jelmer Vernooij [Wed, 26 Oct 2005 14:18:27 +0000 (14:18 +0000)]
r11303: Support defining and installing public headers for libraries.
Support installing libraries.
Get rid of pkg-config file (will be autogenerated later on).
(This used to be commit
b4745032a2c55752c527026feb221ccc3dce10c8)