| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | kerberos: fix indent of enc type lines in generated krb5.conf files. | Günther Deschner | 2008-09-04 | 1 | -3/+3 |
| | | | | | Guenther | ||||
| * | libads: add ADS_AUTH_USER_CREDS to avoid magic overwriting of usernames. | Günther Deschner | 2008-06-24 | 1 | -0/+6 |
| | | | | | Guenther | ||||
| * | Memory leak fixes from Chere Zhou <czhou@isilon.com>. | Jeremy Allison | 2008-05-27 | 1 | -0/+4 |
| | | | | | Jeremy. | ||||
| * | Fix some comments to match get_kdc_ip_string()'s behaviour | root | 2008-05-19 | 1 | -1/+7 |
| | | |||||
| * | Coverity fixes | Marc VanHeyningen | 2008-03-17 | 1 | -2/+4 |
| | | |||||
| * | Fix Coverity ID 551 | Volker Lendecke | 2008-03-08 | 1 | -0/+2 |
| | | | | | | | Correctly return if we can't create the temporary krb5.conf Jeremy, please check! | ||||
| * | Fix some warnings | Volker Lendecke | 2008-02-25 | 1 | -7/+15 |
| | | | | | warning: ignoring return value of 'asprintf', declared with attribute warn_unused_result | ||||
| * | Restrict the enctypes in the generated krb5.conf files to Win2003 types. | Gerald W. Carter | 2008-01-28 | 1 | -4/+8 |
| | | | | | | | This fixes the failure observed on FC8 when joining a Windows 2008 RC1 domain. We currently do not handle user session keys correctly when the KDC uses AES in the ticket replies. | ||||
| * | Tidy up code and debug for non-default krb5 IPv6 port. | Jeremy Allison | 2008-01-16 | 1 | -9/+15 |
| | | | | | Jeremy. | ||||
| * | Fix IPv6 bug #5204, which caused krb5 DNS lookups | Jeremy Allison | 2008-01-16 | 1 | -13/+56 |
| | | | | | | for a name '[<ipv6 addr>'. Jeremy. | ||||
| * | Print principal in debug statement in kerberos_kinit_password() as well. | Günther Deschner | 2008-01-14 | 1 | -1/+2 |
| | | | | | Guenther | ||||
| * | While 'data' is usually 0 terminated, nothing in the spec requires that. The ↵ | Simo Sorce | 2007-12-17 | 1 | -1/+4 |
| | | | | | | | correct way is to copy only 'length' bytes. Simo. | ||||
| * | Doh, fix typo in error exit. | Jeremy Allison | 2007-12-15 | 1 | -2/+2 |
| | | | | | Jeremy. | ||||
| * | Added patch originally by Andreas Schneider <anschneider@suse.de> | Jeremy Allison | 2007-12-15 | 1 | -0/+52 |
| | | | | | | | to cause us to behave like Vista when looking for remote machine principal. Modified by me. Jeremy. | ||||
| * | More pstring removal.... | Jeremy Allison | 2007-11-20 | 1 | -9/+9 |
| | | | | | Jeremy. | ||||
| * | This is a large patch (sorry). Migrate from struct in_addr | Jeremy Allison | 2007-10-24 | 1 | -13/+25 |
| | | | | | | | | | | | | | | to struct sockaddr_storage in most places that matter (ie. not the nmbd and NetBIOS lookups). This passes make test on an IPv4 box, but I'll have to do more work/testing on IPv6 enabled boxes. This should now give us a framework for testing and finishing the IPv6 migration. It's at the state where someone with a working IPv6 setup should (theorecically) be able to type : smbclient //ipv6-address/share and have it work. Jeremy. | ||||
| * | RIP BOOL. Convert BOOL -> bool. I found a few interesting | Jeremy Allison | 2007-10-18 | 1 | -12/+12 |
| | | | | | | | | bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. | ||||
| * | r25030: ip_srv_nonsite and count_nonsite are initialized in get_kdc_list() ↵ | Lars Müller | 2007-10-10 | 1 | -2/+2 |
| | | | | | | | in any case. | ||||
| * | r24836: Initialize some uninitialized variables. | Michael Adam | 2007-10-10 | 1 | -3/+5 |
| | | | | | | | | This prevents a segfault when get_kdc_ip_string() is called with sitename == NULL. Michael | ||||
| * | r23784: use the GPLv3 boilerplate as recommended by the FSF and the license text | Andrew Tridgell | 2007-10-10 | 1 | -2/+1 |
| | | |||||
| * | r23779: Change from v2 or later to v3 or later. | Jeremy Allison | 2007-10-10 | 1 | -1/+1 |
| | | | | | Jeremy. | ||||
| * | r23147: Patch #4566 from jacob berkman <jberkman@novell.com>. Pass password ↵ | Jeremy Allison | 2007-10-10 | 1 | -1/+2 |
| | | | | | | | data to krb5_prompter. Jeremy. | ||||
| * | r22666: Expand kerberos_kinit_password_ext() to return NTSTATUS codes and make | Günther Deschner | 2007-10-10 | 1 | -3/+29 |
| | | | | | | | winbindd's kerberized pam_auth use that. Guenther | ||||
| * | r22664: When we have krb5_get_init_creds_opt_get_error() then try to get the ↵ | Günther Deschner | 2007-10-10 | 1 | -0/+121 |
| | | | | | | | | | NTSTATUS codes directly out of the krb5_error edata. Guenther | ||||
| * | r22663: Restructure kerberos_kinit_password_ext() error path. | Günther Deschner | 2007-10-10 | 1 | -53/+33 |
| | | | | | Guenther | ||||
| * | r21779: I missd a call to krb5_get_init_creds_opt_alloc in r21778. | James Peach | 2007-10-10 | 1 | -1/+1 |
| | | |||||
| * | r21778: Wrap calls to krb5_get_init_creds_opt_free to handle the different | James Peach | 2007-10-10 | 1 | -2/+2 |
| | | | | | | calling convention in the latest MIT changes. Apparantly Heimdal is also changing to this calling convention. | ||||
| * | r21240: Fix longstanding Bug #4009. | Günther Deschner | 2007-10-10 | 1 | -1/+5 |
| | | | | | | | | | | | | | | | | | | For the winbind cached ADS LDAP connection handling (ads_cached_connection()) we were (incorrectly) assuming that the service ticket lifetime equaled the tgt lifetime. For setups where the service ticket just lives 10 minutes, we were leaving hundreds of LDAP connections in CLOSE_WAIT state, until we fail to service entirely with "Too many open files". Also sequence_number() in winbindd_ads.c needs to delete the cached LDAP connection after the ads_do_search_retry() has failed to submit the search request (although the bind succeeded (returning an expired service ticket that we cannot delete from the memory cred cache - this will get fixed later)). Guenther | ||||
| * | r21238: Fix tab indent in self-written krb5.confs. | Günther Deschner | 2007-10-10 | 1 | -1/+1 |
| | | | | | Guenther | ||||
| * | r21110: Fix kinit with Heimdal (Bug #4226). | Günther Deschner | 2007-10-10 | 1 | -13/+26 |
| | | | | | Guenther | ||||
| * | r20860: Adding some small tweaks. When we have no sitename, there is no need to | Günther Deschner | 2007-10-10 | 1 | -11/+14 |
| | | | | | | | ask for the list of DCs twice. Guenther | ||||
| * | r20857: Silence gives assent :-). Checking in the fix for | Jeremy Allison | 2007-10-10 | 1 | -14/+51 |
| | | | | | | | | | | site support in a network where many DC's are down. I heard via Volker there is still a bug w.r.t the wrong site being chosen with trusted domains but we'll have to layer that fix on top of this. Gd - complain if this doesn't work for you. Jeremy. | ||||
| * | r18512: Add krb5conf file environment to debug statement. | Günther Deschner | 2007-10-10 | 1 | -2/+3 |
| | | | | | Guenther | ||||
| * | r18241: If replacing the krb5.conf, ensure it's readable. | Jeremy Allison | 2007-10-10 | 1 | -0/+10 |
| | | | | | Jeremy. | ||||
| * | r18226: Ensure we only do this evil thing if it's our realm. | Jeremy Allison | 2007-10-10 | 1 | -2/+1 |
| | | | | | Jeremy. | ||||
| * | r18225: If we're going to overwrite krb5.conf, at least | Jeremy Allison | 2007-10-10 | 1 | -20/+42 |
| | | | | | | be polite enough to make a backup. Jeremy. | ||||
| * | r18201: Make explicit what's going on here. | Jeremy Allison | 2007-10-10 | 1 | -1/+2 |
| | | | | | Jeremy. | ||||
| * | r18200: Experimental code to allow system /etc/krb5.conf to be | Jeremy Allison | 2007-10-10 | 1 | -42/+63 |
| | | | | | | overwritten by winbindd. Don't enable this :-). Jeremy. | ||||
| * | r18010: Ensure we don't timeout twice to the same | Jeremy Allison | 2007-10-10 | 1 | -0/+3 |
| | | | | | | | | server in winbindd when it's down and listed in the -ve connection cache. Fix memory leak, reduce timeout for cldap calls - minimum 3 secs. Jeremy. | ||||
| * | r18006: Actually a smaller change than it looks. Leverage | Jeremy Allison | 2007-10-10 | 1 | -2/+49 |
| | | | | | | | | | | the get_dc_list code to get the _kerberos. names for site support. This way we don't depend on one KDC to do ticket refresh. Even though we know it's up when we add it, it may go down when we're trying to refresh. Jeremy. | ||||
| * | r18004: If you're writing out a krb5.conf, at least | Jeremy Allison | 2007-10-10 | 1 | -2/+2 |
| | | | | | | get the syntax right... :-). Jeremy. | ||||
| * | r18003: Creating a directory and getting EEXIST isn't an error. | Jeremy Allison | 2007-10-10 | 1 | -1/+1 |
| | | | | | Jeremy. | ||||
| * | r18002: Improved debug. | Jeremy Allison | 2007-10-10 | 1 | -1/+2 |
| | | | | | Jeremy. | ||||
| * | r18001: Proper error reporting on write/close fail. | Jeremy Allison | 2007-10-10 | 1 | -1/+7 |
| | | | | | Jeremy. | ||||
| * | r18000: Get nelem/size args right for x_fwrite. | Jeremy Allison | 2007-10-10 | 1 | -1/+1 |
| | | | | | Jeremy. | ||||
| * | r17999: No need to prevent others from reading. Use 755 instead | Jeremy Allison | 2007-10-10 | 1 | -2/+2 |
| | | | | | | | of 700, and 644 instead of 600. Reading might help debugging. Jeremy. | ||||
| * | r17997: Ensure lockdir exists for winbindd. Store tmp | Jeremy Allison | 2007-10-10 | 1 | -1/+1 |
| | | | | | | krb5.conf files under lockdir, not privatedir. Jeremy. | ||||
| * | r17996: Don't talloc free the memory then reference it. Doh ! | Jeremy Allison | 2007-10-10 | 1 | -3/+4 |
| | | | | | Jeremy. | ||||
| * | r17995: Ensure we create the domain-specific krb5 files in a | Jeremy Allison | 2007-10-10 | 1 | -8/+22 |
| | | | | | | separate directory. Jeremy. | ||||
| * | r17994: Add debugs that showed me why my site code wasn't | Jeremy Allison | 2007-10-10 | 1 | -0/+3 |
| | | | | | | | working right. Don't update the server site when we have a client one... Jeremy. | ||||
 |
index : samba.git | |
| Unnamed repository; edit this file 'description' to name the repository. | Sumit Bose |
| summaryrefslogtreecommitdiffstats |