sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-12 09:18:10 +03:00
Code
52,472 Commits 60 Branches 1,145 Tags 452 MiB
1dc5b90e86
Commit Graph

996 Commits

Author SHA1 Message Date
Jelmer Vernooij
7972d82436 Remove -L/usr/lib from a couple more make variables. 2009-03-15 00:54:55 +01:00
Jelmer Vernooij
7ab8f373c8 Use common header file for character set handling in Samba 3 and Samba 4. 2009-03-01 22:24:34 +01:00
Jelmer Vernooij
94069bd274 s4: Use same function signature for convert_* as s3. 2009-03-01 19:55:46 +01:00
Jelmer Vernooij
9ffb6d2d9e Add allow_badcharcnv argument to all conversion function, for 
consistency with Samba 3.
 2009-03-01 06:33:40 +01:00
Andrew Bartlett
cd6026135d Push sam_get_server_info_principal into the auth subsystem 
This means it must be accessed via the supplied auth_context in the
GENSEC server, and should remove the hard depenceny of GENSEC on the
auth subsystem and ldb (allowing LDB not to rely on LDB is considered
a good thing, apparently)

Andrew Bartlett
 2009-02-13 14:02:49 +11:00
Andrew Bartlett
71632a1697 Remove auth/ntlm as a dependency of GENSEC by means of function pointers. 
When starting GENSEC on the server, the auth subsystem context must be
passed in, which now includes function pointers to the key elements.

This should (when the other dependencies are fixed up) allow GENSEC to
exist as a client or server library without bundling in too much of
our server code.

Andrew Bartlett
 2009-02-13 10:24:16 +11:00
Stefan Metzmacher
40c3ab2fbc s4:auth/ntlm: fix c++ warning 
metze
 2009-02-05 18:18:09 +01:00
Stefan Metzmacher
c8b9679e40 s4:pyauth: fix compiler warnings 
metze
 2009-02-05 17:48:13 +01:00
Stefan Metzmacher
0872fa7b1f s4:pycredentials: fix compiler warnings 
metze
 2009-02-05 17:48:12 +01:00
Stefan Metzmacher
eb012dd212 s4:auth/credentials: the python bindings don't use swig anymore 
metze
 2009-02-02 15:16:09 +01:00
Stefan Metzmacher
426dc44c5c s4:auth: the python bindings don't use swig anymore 
metze
 2009-02-02 15:16:09 +01:00
Stefan Metzmacher
2e82a4ced2 s4:auth/kerberos: s/private/private_data 
metze
 2009-02-02 13:08:05 +01:00
Stefan Metzmacher
e7454d46d4 s4:auth/gensec: s/private/private_data 
metze
 2009-02-02 13:08:04 +01:00
Simo Sorce
1dc745ec89 Make schannel not depend on samdb anymore. 2009-02-01 13:06:38 -05:00
Stefan Metzmacher
582b27be24 s4:auth: try to fix the build on Solaris 
MAXHOSTNAMELEN comes in via system/network.h now.

metze
 2009-01-31 11:34:12 +01:00
Jelmer Vernooij
c9d193eb08 Add prototypes required by samba-gtk. 2009-01-25 05:32:30 +01:00
Stefan Metzmacher
a83feb2fe3 s4:auth: move make_server_info_netlogon_validation() function arround 
metze
 2009-01-21 13:36:11 +01:00
Jelmer Vernooij
ba5d6e6d70 Avoid using a utility header for Python replacements included in Samba, 
since this will not be shipped with talloc/tdb/tevent/etc.
 2009-01-08 12:20:20 +01:00
Tim Prouty
61a23c5eea s3/s4 build: Fix Py_RETURN_NONE to work with python versions < 2.4 2009-01-07 15:03:16 -08:00
Jelmer Vernooij
d2c70d24e1 py: Properly increase the reference counter of Py_None. 2009-01-06 04:13:57 +01:00
Stefan Metzmacher
c72cbce6ee s4:auth/kerberos: convert to tevent_* api 
metze
 2009-01-03 19:58:56 +01:00
Stefan Metzmacher
5fa0d3d568 s4:socket: use a socket_wrapper aware function to auto close the fd event for sockets 
metze
 2009-01-03 19:58:53 +01:00
Stefan Metzmacher
183c379fe5 s4:lib/tevent: rename structs 
list=""
list="$list event_context:tevent_context"
list="$list fd_event:tevent_fd"
list="$list timed_event:tevent_timer"

for s in $list; do
	o=`echo $s | cut -d ':' -f1`
	n=`echo $s | cut -d ':' -f2`
	r=`git grep "struct $o" |cut -d ':' -f1 |sort -u`
	files=`echo "$r" | grep -v source3 | grep -v nsswitch | grep -v packaging4`
	for f in $files; do
		cat $f | sed -e "s/struct $o/struct $n/g" > $f.tmp
		mv $f.tmp $f
	done
done

metze
 2008-12-29 20:46:40 +01:00
Jelmer Vernooij
1feab85be6 Rename samba-socket -> samba_socket to fix a couple more compiler 
warnings.
 2008-12-24 00:15:43 +01:00
Matthias Dieter Wallnöfer
7c6a20a439 Add missing includes, required for use of gensec by 3rd-party 
applications.
 2008-12-23 20:17:59 +01:00
Jelmer Vernooij
05adbbc8c9 s4: Always link in auth, as some of the core infrastructure depends on it. 2008-12-22 18:12:22 +01:00
Jelmer Vernooij
d58270c537 Add header for pyparam. 2008-12-22 04:38:57 +01:00
Jelmer Vernooij
6efb7ff981 Fix various Python-related bugs. 2008-12-21 07:34:27 +01:00
Jelmer Vernooij
f36ff0bac2 Include errors.i verbatim in security.i, as it's the only file still using it. 2008-12-21 05:35:39 +01:00
Jelmer Vernooij
263c6670fc Convert credentials Python module to "manual" C - no SWIG used to generate 
the C code.
 2008-12-21 05:29:23 +01:00
Jelmer Vernooij
bfb29e94b1 Convert auth python module to "plain" C rather than using SWIG. 2008-12-21 03:37:31 +01:00
Stefan Metzmacher
fc31f2c526 s4:lib/socket: socket_connect_send() and socket_connect_ev() should only wrok with addresses 
metze
 2008-12-18 13:32:51 +01:00
Stefan Metzmacher
081f8883ba s4: fix LIBEVENTS dependencies and use more forward declarations 
We should only include events.h where we really need it
and prefer forward declarations of 'struct event_context'

metze
 2008-12-17 11:04:45 +01:00
Stefan Metzmacher
180245fce0 s4:kdc: allow a trusted domain to get kerberos tickets 
metze
 2008-12-04 15:45:16 +01:00
Tim Prouty
1115b7b342 s3/s4 build: Fix execinfo and sasl build error when the libs/headers are in non-standard locations. 
These configure checks have the correct flags at configure time, so
let's pass them through so they are used at compile time.
 2008-11-18 17:43:51 -08:00
Jelmer Vernooij
b45caa44e1 Fix the build. 2008-11-02 23:58:49 +01:00
Jelmer Vernooij
1e053df95c Remove use of global_loadparm for disabled gensec backends. 2008-11-02 19:28:17 +01:00
Jelmer Vernooij
ff36c52d8c Remove another use of global_loadparm. 
Eventually, we should move some of these parameters into a separate
struct (perhaps into smb_transport_options?), to avoid the long lists of
parameters.
 2008-11-02 16:07:28 +01:00
Jelmer Vernooij
c537f7a914 Fix the build. 2008-11-02 05:49:36 +01:00
Jelmer Vernooij
b034c519f5 Add gensec_settings structure. This wraps loadparm_context for now, but 
should in the future only contain some settings required for gensec.
 2008-11-02 02:05:48 +01:00
Jelmer Vernooij
a76adc5397 Remove two debug parameters, not used anywhere. 
Andrew, I was pretty sure these could be removed but if not, please let
me know.
 2008-11-02 01:03:46 +01:00
Jelmer Vernooij
7a6190e9a7 Remove another use of global_loadparm. 2008-11-02 01:03:26 +01:00
Jelmer Vernooij
3a6b88f9f9 Remove unused argument iconv_convenience. 2008-11-01 20:58:41 +01:00
Jelmer Vernooij
8c4e2eb49d Remove use of lp_*() from ntlm_check.c. 2008-11-01 17:55:57 +01:00
Jelmer Vernooij
23302413b3 Remove unused include param/param.h. 2008-10-24 16:37:56 +02:00
Jelmer Vernooij
37d885c51a Remove iconv_convenience argument from convert_string{,talloc}() but 
make them wrappers around convert_string{,talloc}_convenience().
 2008-10-24 14:26:46 +02:00
Jelmer Vernooij
8b06312f7e Eliminate another instance of global_loadparm. 2008-10-24 13:13:27 +02:00
Jelmer Vernooij
922a29992e Remove iconv_convenience parameter from simple string push/pull 
functions.
 2008-10-24 03:40:09 +02:00
Jelmer Vernooij
87ec1d2532 Make sure prototypes are always included, make some functions static and 
remove some unused functions.
 2008-10-20 18:59:51 +02:00
Andrew Bartlett
7c88ea8aad Create a 'straight paper path' for UTF16 passwords. 
This uses a virtual attribute 'clearTextPassword' (name chosen to
match references in MS-SAMR) that contains the length-limited blob
containing an allegidly UTF16 password.  This ensures we do no
validation or filtering of the password before we get a chance to MD4
it.  We can then do the required munging into UTF8, and in future
implement the rules Microsoft has provided us with for invalid inputs.

All layers in the process now deal with the strings as length-limited
inputs, incluing the krb5 string2key calls.

This commit also includes a small change to samdb_result_passwords()
to ensure that LM passwords are not returned to the application logic
if LM authentication is disabled.

The objectClass module has been modified to allow the
clearTextPassword attribute to pass down the stack.

Andrew Bartlett
 2008-10-16 12:48:16 +11:00