summaryrefslogtreecommitdiffstats
path: root/source3/libads
Commit message (Collapse)AuthorAgeFilesLines
...
* s3-libads Move variables into if (socket_wrapper_dir()) where they are used.Andrew Bartlett2011-04-291-4/+4
|
* s3-libads: Use ldap_init_fd() to connect to AD server in socket_wrapperAndrew Bartlett2011-04-281-1/+35
| | | | | | | | | | | | | | | | This means that we control the connection setup, don't rely on signals for timeouts and the connection uses socket_wrapper where that is required in our test environment. According to bug reports, this method is also used by curl and other tools, so we are not the first to (ab)use the OpenLDAP libs in this way. It is ONLY enabled for socket_wrapper at this time, as this is the best way to get 'make test' working for S3 winbind tests in an S4 domain. Andrew Bartlett
* s3-libads Pass a struct sockaddr_storage to cldap routinesAndrew Bartlett2011-04-283-42/+17
| | | | | | | This avoids these routines doing a DNS lookup that has already been done, and ensures that the emulated DNS lookup isn't thrown away. Andrew Bartlett
* s3-libsmb Use 'resolv:hosts file' as a DNS emulation when specified.Andrew Bartlett2011-04-271-0/+15
| | | | | | This allows make test to operate without making real DNS calls. Andrew Bartlett
* s3-libads Don't start a DEBUG with 'time'Andrew Bartlett2011-04-271-1/+1
| | | | | | This strange requirement comes from our subunit test harness. Andrew Bartlett
* s3-libads Remove KRB5_DNS_HACKAndrew Bartlett2011-04-261-12/+0
| | | | | | | We have winbindd write a custom krb5.conf or use a kdc locator plugin to do this properly now. Andrew Bartlett
* libcli/dns Improve dns_hosts_file, using Samba3's struct dns_rr_srvAndrew Bartlett2011-04-261-36/+1
| | | | | | | | | By reworking the 'fake DNS' file to use struct dns_rr_srv it should be possible to emulate that resolver layer as well as the Samba4 sockaddr_storage* based layer. This will then give us a common DNS emulation for 'make test'. Andrew Bartlett
* s3: Fix Coverity ID 2336, NULL_RETURNSVolker Lendecke2011-04-221-0/+4
|
* libcli/auth Move PAC parsing and verification in common.Andrew Bartlett2011-04-202-320/+3
| | | | | | | | This uses the source3 PAC code (originally from Samba4) with some small changes to restore functionality needed by the torture tests, and to have a common API. Andrew Bartlett
* s3-waf: try to fix the non-ldap-but-krb5 build.Günther Deschner2011-04-151-0/+4
| | | | Guenther
* s3-rpc_client: add and use rpc_client/rpc_client.h.Günther Deschner2011-04-131-0/+1
| | | | Guenther
* s3-libndr: add ../librpc/ndr/libndr.h include in some places.Günther Deschner2011-03-312-0/+2
| | | | Guenther
* s3-includes: no point in including all security headers globally.Günther Deschner2011-03-301-0/+1
| | | | Guenther
* s3-includes: only include system/filesys.h when needed.Günther Deschner2011-03-301-0/+1
| | | | Guenther
* s3-prototypes: remove protos of some dead functions.Günther Deschner2011-03-241-1/+0
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Thu Mar 24 00:52:01 CET 2011 on sn-devel-104
* s3: Fix Coverity ID 770, REVERSE_INULLVolker Lendecke2011-03-211-15/+7
| | | | | We dereference "res" in various places, no point in checking. All current callers send "res!=NULL".
* s3-build: only include asn1 headers where actually needed.Günther Deschner2011-03-161-0/+1
| | | | Guenther
* s3-build: stop including ldap and lber headers everywhere in the code.Günther Deschner2011-03-161-0/+1
| | | | | | | | | | Instead use new header smb_ldap.h where all LDAP API related things are handled, while smbldap.h only deals with our smbldap_X() API. Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Mar 16 10:54:51 CET 2011 on sn-devel-104
* Quite some callers of sid_split_rid do not care about the ridVolker Lendecke2011-03-101-2/+1
|
* s3: Fix some nonempty blank linesVolker Lendecke2011-02-271-10/+9
|
* s3-libads: make ndr_print_ads_auth_flags() static.Günther Deschner2011-02-252-2/+2
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Fri Feb 25 01:55:26 CET 2011 on sn-devel-104
* s3-libads Remove MIT-specific krb5_princ_realm macro calls.Andrew Bartlett2011-02-181-55/+19
| | | | | | When compiled against heimdal, we need to use a more elegant API. Andrew Bartlett
* s3-libads: make ads_guess_service_principal static.Günther Deschner2011-02-113-71/+69
| | | | Guenther
* s3: give ../librpc/ndr/util.c its own header.Günther Deschner2011-02-101-0/+1
| | | | Guenther
* s3:libads: use dcerpc_spoolss_X() functionsStefan Metzmacher2011-01-211-2/+4
| | | | | | metze Signed-off-by: Andreas Schneider <asn@samba.org>
* s3: Fix some nonempty blank linesVolker Lendecke2011-01-121-8/+8
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Wed Jan 12 19:04:25 CET 2011 on sn-devel-104
* netlogon: move netlogon helpers to ../libcli/netlogon.Günther Deschner2011-01-071-1/+1
| | | | Guenther
* s3-libads Default to NOT using the server-supplied principal from SPNEGOAndrew Bartlett2010-12-101-3/+5
| | | | | | | | | | | | | | | | | This principal is not supplied by later versions of windows, and using it opens up some oportunities for man in the middle attacks. (Becuase it isn't the name being contacted that is verified with the KDC). This adds the option 'client use spnego principal' to the smb.conf (as used in Samba4) to control this behaivour. As in Samba4, this defaults to false. Against 2008 servers, this will not change behaviour. Against earlier servers, it may cause a downgrade to NTLMSSP more often, in environments where server names are not registered with the KDC as servicePrincipalName values. Andrew Bartlett
* s3: Remove unused ads_get_attrname_by_oidVolker Lendecke2010-11-202-42/+0
|
* s3: Make ads_get_attrnames_by_oids staticVolker Lendecke2010-11-202-8/+7
|
* s3: Make ads_ranged_search_internal staticVolker Lendecke2010-11-202-14/+16
|
* s3: Fix some nonempty blank linesVolker Lendecke2010-11-201-8/+8
|
* s3: Remove unused ads_search_retry_extended_dnVolker Lendecke2010-11-202-19/+0
|
* s3: Make ads_do_search_retry_args() staticVolker Lendecke2010-11-202-8/+4
|
* libcli/security Provide a common, top level libcli/security/security.hAndrew Bartlett2010-10-121-0/+1
| | | | | | | | | | | | | | This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
* Fix bug 7694 - Crash bug with invalid SPNEGO token.Jeremy Allison2010-09-231-1/+2
| | | | | | | | | | | Found by the CodeNomicon test suites at the SNIA plugfest. http://www.codenomicon.com/ If an invalid SPNEGO packet contains no OIDs we crash in the SMB1/SMB2 server as we indirect the first returned value OIDs[0], which is returned as NULL. Jeremy.
* s3-libads call common GUID_from_ndr_blob()Andrew Bartlett2010-09-201-19/+17
| | | | | | | | | This does a length-limited check, and so avoids reading beyond the allocated memory if the server sends less than 16 bytes. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3: Replace sid_binstring and sid_guidstring with PIDL-based alternativesAndrew Bartlett2010-09-201-1/+2
| | | | | | | | | This reduces the manual marshalling of these structures by removing the duplication here. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3-build: only include smbldap.h where needed.Günther Deschner2010-09-201-0/+1
| | | | Guenther
* Fix all sid_parse returns to be checked. Tidy up some checks and errorJeremy Allison2010-09-151-1/+3
| | | | | | messages. Jeremy.
* Fox missing SMB_MALLOC return checks noticed by "Andreas Moroder ↵Jeremy Allison2010-09-091-3/+13
| | | | | | <andreas.moroder@gmx.net>". Jeremy.
* s3/libads: use monotonic clock for ldap connection timeoutsBjörn Jacke2010-09-072-2/+2
|
* s3/libads: use monotonic clock for DNS timeoutsBjörn Jacke2010-09-071-5/+5
|
* s3-libads: avoid crashing in ads_keytab_list().Günther Deschner2010-08-311-0/+1
| | | | | | | Heimdal's krb5_kt_start_seq_get() will leave a non 0 fd in the krb5_kt_cursor struct when it cannot find a given keytab. Guenther
* s3-krb: Reformat and add doxygen comment to decode_pac_data()Simo Sorce2010-08-301-63/+91
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-ads: Fix wrong test in if statementSimo Sorce2010-08-191-1/+1
|
* s3-ads: Remove unused wrapper and make function staticSimo Sorce2010-08-181-27/+12
|
* s3-ads: cleanup ads_keytab_list()Simo Sorce2010-08-181-13/+16
|
* s3-ads: cleanup ads_keytab_create_default()Simo Sorce2010-08-181-113/+136
|
* s3-ads: cleanup ads_keytab_add_entry()Simo Sorce2010-08-181-57/+80
|
generated by cgit (git 2.34.1) at 2025-10-02 13:48:46 +0000