summaryrefslogtreecommitdiffstats
path: root/source/libads/kerberos.c
Commit message (Collapse)AuthorAgeFilesLines
* r25030: ip_srv_nonsite and count_nonsite are initialized in get_kdc_list() ↵Lars Müller2007-09-081-2/+2
| | | | | | in any case.
* r24836: Initialize some uninitialized variables.Michael Adam2007-08-311-3/+5
| | | | | | | This prevents a segfault when get_kdc_ip_string() is called with sitename == NULL. Michael
* r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell2007-07-101-2/+1
|
* r23780: Find and fix more GPL2 -> GPL3.Jeremy Allison2007-07-091-1/+1
| | | | Jeremy.
* r23147: Patch #4566 from jacob berkman <jberkman@novell.com>. Pass password ↵Jeremy Allison2007-05-251-1/+2
| | | | | | data to krb5_prompter. Jeremy.
* r22795: Merge krb5_get_init_creds_opt_get_error() usage from 3_0.Günther Deschner2007-05-111-55/+182
| | | | Guenther
* r22370: Merge -r21777:21779 from 3_0 to fix the build with Heimdal 0.8.Günther Deschner2007-04-191-3/+3
| | | | Guenther
* r21241: Merge from 3_0:Günther Deschner2007-02-081-1/+5
| | | | | | | | | | | | | | | | | | | Fix longstanding Bug #4009. For the winbind cached ADS LDAP connection handling (ads_cached_connection()) we were (incorrectly) assuming that the service ticket lifetime equaled the tgt lifetime. For setups where the service ticket just lives 10 minutes, we were leaving hundreds of LDAP connections in CLOSE_WAIT state, until we fail to service entirely with "Too many open files". Also sequence_number() in winbindd_ads.c needs to delete the cached LDAP connection after the ads_do_search_retry() has failed to submit the search request (although the bind succeeded (returning an expired service ticket that we cannot delete from the memory cred cache - this will get fixed later)). Guenther
* r21238: Fix tab indent in self-written krb5.confs.Günther Deschner2007-02-081-1/+1
| | | | Guenther
* r21110: Fix kinit with Heimdal (Bug #4226).Günther Deschner2007-02-011-13/+26
| | | | Guenther
* r20860: Adding some small tweaks. When we have no sitename, there is no need toGünther Deschner2007-01-171-11/+14
| | | | | | ask for the list of DCs twice. Guenther
* r20857: Silence gives assent :-). Checking in the fix forJeremy Allison2007-01-171-14/+51
| | | | | | | | | site support in a network where many DC's are down. I heard via Volker there is still a bug w.r.t the wrong site being chosen with trusted domains but we'll have to layer that fix on top of this. Gd - complain if this doesn't work for you. Jeremy.
* r19488: British trains are at least good for something...Jeremy Allison2006-10-241-3/+221
| | | | | | | Merge back the winbindd changes from SAMBA_3_0 to a release branch. This compiles, but hasn't been valgrinded or tested. That will come... Jeremy.
* r17090: merge initial DES salt & keytab patch for 3.0.23aGerald Carter2006-07-171-471/+96
|
* r16348: * merging changes from SAMBA_3_0 r16346Gerald Carter2006-06-191-1/+2
| | | | * updating release notes to match
* r15837: starting sync up for 3.0.23rc1 (in sync with SAMBA_3_0 r15822)Gerald Carter2006-05-231-17/+37
|
* r14611: Fix init_creds_opts issue jerry discovered when using MIT krb5 1.3: Günther Deschner2006-03-211-10/+0
| | | | | | | | We were using a far too short renewable_time in the request; newer MIT releases take care interally that the renewable time is never shorter then the default ticket lifetime. Guenther
* r14585: Tighten argument list of kerberos_kinit_password again,Günther Deschner2006-03-201-4/+20
| | | | | | kerberos_kinit_password_ext provides access to more options. Guenther
* r14512: Guenther, This code breaks winbind with MIT krb1.3.Gerald Carter2006-03-171-2/+12
| | | | | | I'm disabling it for now until we have en effective means of dealing with the ticket request flags for users and computers.
* r14503: Fix principal in debug statement.Günther Deschner2006-03-171-2/+1
| | | | Guenther
* r13316: Let the carnage begin....Gerald Carter2006-02-031-9/+31
| | | | Sync with trunk as off r13315
* r11651: After talking to Jeremy, commit my winbindd "Do the Right Thing" patch.Gerald Carter2005-11-101-1/+18
| | | | Still needs some more testing ni domains with multiple DCs. Coming next....
* r11551: Add a few more initialize_krb5_error_tableVolker Lendecke2005-11-071-0/+2
|
* r11137: Compile with only 2 warnings (I'm still working on that code) on a gcc4Jeremy Allison2005-10-181-1/+1
| | | | | x86_64 box. Jeremy.
* r7415: * big change -- volker's new async winbindd from trunkGerald Carter2005-06-081-2/+1
|
* r6586: get rid of a few more compiler warningsHerb Lewis2005-05-021-1/+1
|
* r6149: Fixes bugs #2498 and 2484.Derrell Lipman2005-03-311-1/+1
| | | | | | | | | | | | | | | | | | 1. using smbc_getxattr() et al, one may now request all access control entities in the ACL without getting all other NT attributes. 2. added the ability to exclude specified attributes from the result set provided by smbc_getxattr() et al, when requesting all attributes, all NT attributes, or all DOS attributes. 3. eliminated all compiler warnings, including when --enable-developer compiler flags are in use. removed -Wcast-qual flag from list, as that is specifically to force warnings in the case of casting away qualifiers. Note: In the process of eliminating compiler warnings, a few nasties were discovered. In the file libads/sasl.c, PRIVATE kerberos interfaces are being used; and in libsmb/clikrb5.c, both PRIAVE and DEPRECATED kerberos interfaces are being used. Someone who knows kerberos should look at these and determine if there is an alternate method of accomplishing the task.
* r6127: Eliminated all compiler warnings pertaining to mismatched ↵Derrell Lipman2005-03-301-1/+2
| | | | | | | | | | | | | | | | | | | | | | "qualifiers". The whole of samba comiles warning-free with the default compiler flags. Temporarily defined -Wall to locate other potential problems. Found an unused static function (#ifdefed out rather than deleted, in case it's needed for something in progress). There are also a number of uses of undeclared functions, mostly krb5_*. Files with these problems need to have appropriate header files included, but they are not fixed in this update. oplock_linux.c.c has undefined functions capget() and capset(), which need to have "#undef _POSIX_SOURCE" specified before including <sys/capability.h>, but that could potentially have other side effects, so that remains uncorrected as well. The flag -Wall should be added permanently to CFLAGS, and all warnings then generated should be eliminated.
* r4736: small set of merges from rtunk to minimize the diffsGerald Carter2005-01-141-1/+1
|
* r4334: Fix for bugid #2186 - from Buck Huppmann <buckh@pobox.com>Jeremy Allison2004-12-221-1/+2
| | | | | to prevent uninitialized creds being freed. Jeremy.
* r3495: Fix the build (recent kerberos-changes).Günther Deschner2004-11-031-2/+4
| | | | Guenther
* r3492: Fixes from testing kerberos salted principal fix.Jeremy Allison2004-11-021-23/+51
| | | | Jeremy.
* r3439: Finally fix build for platforms without kerberos.Günther Deschner2004-11-011-2/+2
| | | | Guenther
* r3379: More merging of kerberos keytab and salting fixes from Nalin ↵Jeremy Allison2004-10-301-0/+15
| | | | | | | Dahyabhai <nalin@redhat.com> (bugid #1717). Jeremy.
* r3377: Merge in first part of modified patch from Nalin Dahyabhai ↵Jeremy Allison2004-10-291-7/+548
| | | | | | | | | <nalin@redhat.com> for bug #1717.The rest of the code needed to call this patch has not yet been checked in (that's my next task). This has not yet been tested - I'll do this once the rest of the patch is integrated. Jeremy.
* r1967: Fix a couple of krb5-DEBUG-messages.Günther Deschner2004-08-201-4/+6
| | | | Guenther
* r1245: I think the parameter for "password" and "data" was reversed.Jeremy Allison2004-06-241-2/+2
| | | | | CHECK THIS ! Jeremy.
* r541: fixing segfault in winbindd caused -r527 -- looks like a bug in ↵Gerald Carter2004-05-071-4/+4
| | | | heimdal; also initialize some pointers
* r2: import HEAD into svn+ssh://svn.samba.org/home/svn/samba/trunkCVS Import User2004-04-041-0/+175
metze
generated by cgit (git 2.34.1) at 2025-09-26 19:29:25 +0000