summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* r11264: Winbind does not rely on the hostname resolution mechanisms ofVolker Lendecke2005-10-231-1/+5
| | | | | | | | composite_connect, so in io.in.dest_host I'm setting the IP address. Gensec does not like that as a target hostname, so if a called name is present, use that. So we can session setup using kerberos now. Volker
* r11263: Some cleanupVolker Lendecke2005-10-231-133/+38
|
* r11262: Try to get the equivalent of a subcontext in pidl ethereal conformance Tim Potter2005-10-232-0/+6
| | | | | | | | | files working. It doesn't quite work though. (-: This patch also allows a struct.field format to be used in an IMPORT statement instead of a type name. Jelmer, what do you think?
* r11261: Rename access_required field in winreg idl to access_mask so it matches Tim Potter2005-10-224-16/+16
| | | | the other interfaces.
* r11260: Delete a leftover scons file.Tim Potter2005-10-221-21/+0
|
* r11259: Map system_name and handle fields to new hf fields.Tim Potter2005-10-221-0/+40
|
* r11258: Dissect all access_required fields as hex using the same hf.Tim Potter2005-10-221-1/+10
|
* r11257: Add and use output functionJelmer Vernooij2005-10-213-145/+128
|
* r11254: Remove support for [TARGET:foo]-like .mk-file entriesJelmer Vernooij2005-10-212-25/+0
| | | | (it is already possible to include verbatim make data)
* r11252: Make makefile.pm OO and descend from envJelmer Vernooij2005-10-213-126/+127
|
* r11250: Fix a couple of issues in the heimdal/ dirs.Jelmer Vernooij2005-10-211-2/+1
|
* r11249: More OpenBSD make fixes...Jelmer Vernooij2005-10-213-3/+8
|
* r11248: Fix anon fallback with spnegoVolker Lendecke2005-10-211-0/+5
|
* r11247: Add environment classJelmer Vernooij2005-10-213-85/+123
|
* r11246: Another fix for OpenBSD's makeJelmer Vernooij2005-10-211-2/+2
|
* r11245: Hopefully fix heimdal build on some hostsJelmer Vernooij2005-10-212-2/+2
| | | | Fix manpage locations
* r11244: Relative path names in .mk filesJelmer Vernooij2005-10-2158-1388/+1406
|
* r11243: length and size can now be filled in automatically.Jelmer Vernooij2005-10-212-12/+3
|
* r11241: - fix compiler warningStefan Metzmacher2005-10-211-2/+2
| | | | | | - fix comment metze
* r11239: Use ${REALM} for the realm in rootdse.ldifAndrew Bartlett2005-10-218-100/+740
| | | | | | | | | | | | | | Add the kpasswd server to our KDC, implementing the 'original' and Microsoft versions of the protocol. This works with the Heimdal kpasswd client, but not with MIT, I think due to ordering issues. It may not be worth the pain to have this code go via GENSEC, as it is very, very tied to krb5. This gets us one step closer to joins from Apple, Samba3 and other similar implementations. Andrew Bartlett
* r11226: Cope with Samba3's behaviour on LDAP with GSS-SPNEGO.Andrew Bartlett2005-10-201-2/+3
| | | | Andrew Bartlett
* r11225: Remove pointless goto.Andrew Bartlett2005-10-201-2/+0
| | | | Andrew Bartlett
* r11223: Only pass around the ldb handle (make this code easier to seperateAndrew Bartlett2005-10-201-21/+21
| | | | | | into a general lib). Andrew Bartlett
* r11222: Small provision fixes: canonicalName is now generated, and the DC=Andrew Bartlett2005-10-202-2/+1
| | | | | | list should be from the dnsdomain (ie lowercae). Andrew Bartlett
* r11221: I don't quite know how I tested this before, but clearly I didn't.Andrew Bartlett2005-10-201-3/+4
| | | | | | The samdb_set_password_sid helper function now works. Andrew Bartlett
* r11220: Add the ability to handle the salt prinicpal as part of theAndrew Bartlett2005-10-205-29/+51
| | | | | | | | | credentials. This works with the setup/secrets.ldif change from the previous patch, and pretty much just re-invents the keytab. Needed for kpasswdd work. Andrew Bartlett
* r11219: Now that we have the credentials hooked in here, we have a much moreAndrew Bartlett2005-10-201-1/+10
| | | | | | reasonable value to fill in for the mechListMIC. Andrew Bartlett
* r11218: Always return the mutual authentication reply (needed for kpasswd),Andrew Bartlett2005-10-202-45/+13
| | | | | | and remove now duplicated unwrap_pac(). Andrew Bartlett
* r11217: Ensure the realm is substituted in UPPER case.Andrew Bartlett2005-10-201-2/+2
| | | | Andrew Bartlett
* r11216: Upgrade to gd's PAC extraction code from Samba3. While I still wantAndrew Bartlett2005-10-204-47/+140
| | | | | | | to make some this the kerberos library's problem, we may as well use the best code that is around. Andrew Bartlett
* r11215: Remove no-op prompter intended to work around bugs in old kerberos ↵Andrew Bartlett2005-10-201-27/+1
| | | | | | | | | libs. I'm also worried this might cause loops, if we get a 'force password change', and the prompter tries to 'deal with it'. Andrew Bartlett
* r11214: Remove scons files (see ↵Jelmer Vernooij2005-10-2053-1243/+0
| | | | http://lists.samba.org/archive/samba-technical/2005-October/043443.html)
* r11212: Enable sealing of data with raw krb5, consolidate some code into theAndrew Bartlett2005-10-201-61/+63
| | | | | | main gensec_krb5_start and always ask for sequence numbers. Andrew Bartlett
* r11211: Append an error message to COL_INFO if the RPC call returned an error.Tim Potter2005-10-201-2/+8
|
* r11210: Log registry open function name when starting hive tests.Tim Potter2005-10-201-6/+12
|
* r11209: We can't read the priorSecret unless we ask for it.Andrew Bartlett2005-10-201-0/+1
| | | | Andrew Bartlett
* r11208: Add DNS entries for finding the kpasswd server to the default zone.Andrew Bartlett2005-10-201-0/+7
| | | | Andrew Bartlett
* r11207: Correct principal search defineAndrew Bartlett2005-10-201-1/+1
|
* r11206: It appears to me that any account may operate as a server.Andrew Bartlett2005-10-201-1/+5
| | | | Andrew Bartlett
* r11205: Another test for cracknames.Andrew Bartlett2005-10-201-1/+10
| | | | Andrew Bartlett
* r11204: Allow us to read credentials from secrets.ldb without aAndrew Bartlett2005-10-201-6/+2
| | | | | | secureChannelType (non machine join records). Andrew Bartlett
* r11203: Use different variable names to make it easier to tell which assert ↵Andrew Bartlett2005-10-201-4/+4
| | | | | | fired. Andrew Bartlett
* r11202: Add more structs to structs.hAndrew Bartlett2005-10-201-0/+3
|
* r11201: New filters for searching in secrets.ldbAndrew Bartlett2005-10-201-1/+3
| | | | Andrew Bartlett
* r11200: Reposition the creation of the kerberos keytab for GSSAPI and Krb5Andrew Bartlett2005-10-2017-286/+389
| | | | | | | | | | | | | | | | | | authentication. This pulls the creating of the keytab back to the credentials code, and removes the special case of 'use keberos keytab = yes' for now. This allows (and requires) the callers to specify the credentials for the server credentails to GENSEC. This allows kpasswdd (soon to be added) to use a different set of kerberos credentials. The 'use kerberos keytab' code will be moved into the credentials layer, as the layers below now expect a keytab. We also now allow for the old secret to be stored into the credentials, allowing service password changes. Andrew Bartlett
* r11199: Push an objectSid into the schannel state database, to match the new ↵Andrew Bartlett2005-10-201-10/+2
| | | | | | header. Andrew Bartlett
* r11198: The recent changes to netlogon changed this from a RID to a SID.Andrew Bartlett2005-10-201-1/+1
| | | | Andrew Bartlett
* r11197: indentAndrew Bartlett2005-10-201-2/+2
|
* r11196: Clean up memory leaks (pointed out by vl), and handle the case whereAndrew Bartlett2005-10-201-11/+47
| | | | | | | | | | | the client doesn't guess correctly on the mech to use. It must back off and try the mech the server selected from the list. I'm not particularly attached to our SPNEGO parser, so while I can't easily use the SPNEGO application logic in Heimdal, I'm going to look closely at using the asn1 routines to avoid some pain here. Andrew Bartlett
* r11195: Add a new helper function (needed by my kpasswdd work, but hooked inAndrew Bartlett2005-10-202-242/+136
| | | | | | | | | | | for netlogon as well) to change/set a user's password, given only their SID. This avoids the callers doing the lookups, and also performs the actual 'set', as these callers do not wish any further buisness with the entry. Andrew Bartlett
generated by cgit (git 2.34.1) at 2025-10-02 11:30:10 +0000