summaryrefslogtreecommitdiffstats
path: root/source/libads
Commit message (Collapse)AuthorAgeFilesLines
* r25407: Revert Longhorn join patch as it is not correct for the 3.2 tree.Gerald Carter2007-09-282-24/+34
| | | | | | The translate_name() used by cli_session_setup_spnego() cann rely Winbindd since it is needed by the join process (and hence before Winbind can be run).
* r25403: grab latest changes form 3.2 tree in preparation for release of ↵Gerald Carter2007-09-282-34/+24
| | | | 3.2.0pre1
* r25387: Sync with 3.2.0 svn treeGerald Carter2007-09-274-55/+25
|
* r25030: ip_srv_nonsite and count_nonsite are initialized in get_kdc_list() ↵Lars Müller2007-09-081-2/+2
| | | | | | in any case.
* r24836: Initialize some uninitialized variables.Michael Adam2007-08-311-3/+5
| | | | | | | This prevents a segfault when get_kdc_ip_string() is called with sitename == NULL. Michael
* r24833: Move locator to nsswitch (does not belong to libads anymore).Günther Deschner2007-08-311-395/+0
| | | | Guenther
* r24832: In the winbind-locator recursion case, try to pick up the kdc from theGünther Deschner2007-08-311-3/+22
| | | | | | environment. Guenther
* r24804: As a temporary workaround, also try to guess the server's principal ↵Günther Deschner2007-08-302-41/+70
| | | | | | | | | in the "not_defined_in_RFC4178@please_ignore" case to make at least LDAP SASL binds succeed with windows server 2008. Guenther
* r24769: Merge error handling for locator plugin.Günther Deschner2007-08-291-17/+5
| | | | Guenther
* r24752: Make sure to return properly when the locator is called from within ↵Günther Deschner2007-08-281-6/+9
| | | | | | winbindd. Guenther
* r24748: Remove all dependencies to samba internals and convert the krb5 ↵Günther Deschner2007-08-281-100/+96
| | | | | | | | | | locator plugin into a tiny winbindd DsGetDcName client. This still does not solve the case of using the locator from within winbindd itself but at least gencache.tdb and others are no longer corrupted. Guenther
* r24739: With resolve_ads() allow to query for PDCs as well.Günther Deschner2007-08-281-28/+109
| | | | | | Also add dns query functions to find GCs and DCs by GUID. Guenther
* r24654: Adapt to coding conventions.Günther Deschner2007-08-241-21/+25
| | | | Guenther
* r24653: Some trivial 3_2->3_2_0 mergesVolker Lendecke2007-08-241-2/+0
|
* r24432: Expand kerberos_return_pac() so that it can be used in winbindd.Günther Deschner2007-08-141-6/+72
| | | | Guenther
* r24424: Fix the build.Günther Deschner2007-08-141-5/+5
| | | | Guenther
* r24252: Dump guid of msExchMailboxGuid when returned.Günther Deschner2007-08-061-0/+1
| | | | Guenther
* r24251: Neverending fun:Günther Deschner2007-08-061-1/+1
| | | | | | | | Heimdal doesn't accept all OIDs and gss_import_name() fails with GSS_S_BAD_NAMETYPE using this one. Use the GSS_KRB5_NT_PRINCIPAL_NAME OID instead (which works with at least MIT 1.6.1 and Heimdal 1.0.1). Guenther
* r24166: Fix Coverity ID 391Volker Lendecke2007-08-041-1/+1
|
* r24158: SE_GROUP_RESOURCE in the other_sids list apparently means a Gerald Carter2007-08-031-1/+1
| | | | | | domain local group. Fix a typo in the PAC debugging routine
* r24132: merge from SAMBA_3_2:Stefan Metzmacher2007-08-022-37/+48
| | | | | | | | | | - make it more clear what the different min and max fields mean - with the "GSSAPI" sasl mech the plain, sign or seal negotiation is independed from the req_flags and ret_flags - verify the server supports the wrapping type we want - better handling on negotiated buffer sizes metze
* r24129: merge from SAMBA_3_2:Stefan Metzmacher2007-08-021-6/+7
| | | | | | fix double free in error path metze
* r24105: merge from SAMBA_3_2:Stefan Metzmacher2007-07-311-3/+20
| | | | | | | add some useful debug messages, as not all LDAP libraries support wrapping hooks... metze
* r24099: merge from SAMBA_3_2:Stefan Metzmacher2007-07-311-61/+32
| | | | | | | | | - make use of the ads_service_principal abstraction also for the "GSSAPI" sasl mech. - also use the ads_kinit_password() fallback logic from the "GSS-SPNEGO" sasl mech. metze
* r24096: merge from SAMBA_3_2:Stefan Metzmacher2007-07-311-0/+20
| | | | | | | add one more fallback alternative to construct the principal metze
* r24094: merge from SAMBA_3_2:Stefan Metzmacher2007-07-311-88/+146
| | | | | | move gssapi/krb5 principal handling into a function metze
* r24073: merge from SAMBA_3_2:Stefan Metzmacher2007-07-301-0/+8
| | | | | | | Add "client ldap sasl wrapping" parameter. Possible values are "plain" (default), "sign" or "seal". metze
* r24066: Fix memleak found by Volker. We don't leak keys now with MIT and ↵Günther Deschner2007-07-271-0/+1
| | | | | | Heimdal. Guenther
* r24065: According to gd, this breaks heimdal. Thanks for checking!Volker Lendecke2007-07-271-3/+0
|
* r24063: merge from SAMBA_3_2:Stefan Metzmacher2007-07-271-1/+2
| | | | | | | fix logic for broken krb5 libs which always force sign and seal... metze
* r24058: Fix some memory leaks in ads_secrets_verify_ticket.Volker Lendecke2007-07-261-0/+3
| | | | | | | | Jeremy, Günther, please review! Thanks, Volker
* r24045: merge from SAMBA_3_2:Stefan Metzmacher2007-07-251-1/+309
| | | | | | add support for krb5 sign and seal in LDAP via "GSS-SPNEGO" metze
* r24043: merge from SAMBA_3_0 (r22092-r22093):Stefan Metzmacher2007-07-251-1/+1
| | | | | | | | | | | | - make spnego_parse_auth_response() more generic and not specific for NTLMSSP - it's possible that the server sends a mechOID and authdata if negResult != SPNEGO_NEG_RESULT_INCOMPLETE, but we still force the mechOID to be present if negResult == SPNEGO_NEG_RESULT_INCOMPLETE - send also the correct OID_KERBEROS5 not only the broken OID_KERBEROS_OLD one. metze
* r24038: merge from SAMBA_3_2:Stefan Metzmacher2007-07-251-2/+4
| | | | | | only setup sasl wrapping after a successful bind metze
* r23973: For debugging, add (undocumented) net ads kerberos commands (kinit, ↵Günther Deschner2007-07-191-1/+1
| | | | | | | | renew, pac). Guenther
* r23970: Allow to set the debuglevel at which to dump the PAC logon info.Günther Deschner2007-07-191-18/+18
| | | | Guenther
* r23969: Some helper routines to retrieve a PAC and PAC elements.Günther Deschner2007-07-191-0/+160
| | | | Guenther
* r23953: Some C++ warningsVolker Lendecke2007-07-182-4/+7
|
* r23951: Fix segfault.Günther Deschner2007-07-181-1/+1
| | | | Guenther
* r23949: merge from SAMBA_3_2:Stefan Metzmacher2007-07-181-5/+135
| | | | | | | | add gsskrb5 sign and seal support for LDAP connections NOTE: only for the "GSSAPI" SASL mech yet metze
* r23947: merge from SAMBA_3_2:Stefan Metzmacher2007-07-181-1/+122
| | | | | | | | add support for NTLMSSP sign and seal NOTE: windows servers are broken with sign only... metze
* r23944: merge from SAMBA_3_2:Stefan Metzmacher2007-07-183-6/+33
| | | | | | | - always provide ads_setup_sasl_wrapping() function - read/write returning 0 means EOF and we need to return direct metze
* r23937: Use ads_config_path() when we need to know the configration context.Günther Deschner2007-07-171-26/+11
| | | | Guenther
* r23934: merge from SAMBA_3_2:Stefan Metzmacher2007-07-171-6/+26
| | | | | | | | - implement ctrl SASL wrapping hook - pass down sign or seal hooks - some sasl wrapping fixes metze
* r23927: merge from SAMBA_3_2:Stefan Metzmacher2007-07-171-1/+67
| | | | | | implement output buffer handling for the SASL write wrapper metze
* r23923: merge from SAMBA_3_2:Stefan Metzmacher2007-07-171-2/+129
| | | | | | implement buffer handling for the SASL read wrapper metze
* r23919: merge from SAMBA_3_2:Stefan Metzmacher2007-07-171-18/+0
| | | | | | not all ldap libraries support debugging metze
* r23917: merge from SAMBA_3_2:Stefan Metzmacher2007-07-171-4/+6
| | | | | | use the correct io operations for debugging metze
* r23899: merge from SAMBA_3_2:Stefan Metzmacher2007-07-161-0/+109
| | | | | | | | rename HAVE_ADS_SASL_WRAPPING -> HAVE_LDAP_SASL_WRAPPING + adding missing file libads/sasl_wrapping.c metze
* r23889: merge from SAMBA_3_2:Stefan Metzmacher2007-07-164-55/+55
| | | | | | | move elements belonging to the current ldap connection to a substructure. metze
generated by cgit (git 2.34.1) at 2025-09-26 07:45:41 +0000