sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-03-12 20:58:37 +03:00
Code
1,312 Commits 62 Branches 1,155 Tags
Commit Graph

1312 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Volker Lendecke
2bc6147c11 r1454: Today is the day of broken builds, now I get my share ... :-) 
Add a missing file.

Volker
 2007-10-10 12:56:58 -05:00
Volker Lendecke
1506da85b9 r1453: Change the RAP client to use the ndr routines for moving bytes around. 
Volker
 2007-10-10 12:56:58 -05:00
Andrew Bartlett
8d449bbe2b r1452: Thanks to Volker for spotting that this code was certainly not tested... 
(make sure to actually return the result).

Andrew Bartlett
 2007-10-10 12:56:58 -05:00
Jelmer Vernooij
7e9884799e r1451: More missing files... 2007-10-10 12:56:58 -05:00
Jelmer Vernooij
eaa2940ba0 r1450: Oops.. Missing files :-) 2007-10-10 12:56:57 -05:00
Jelmer Vernooij
69de0d95c5 r1449: Use the config system somewhat better in libcli/auth 2007-10-10 12:56:57 -05:00
Andrew Bartlett
1164be10af r1448: Indent this so proto doesn't pick it up. 
Andrew Bartlett
 2007-10-10 12:56:57 -05:00
Andrew Bartlett
b97ea8a63f r1447: Fix compile. 
Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
310a570936 r1446: Another funciton to avoid in proto.h 
Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
159c234589 r1445: Ensure get_auth_data_from_tkt doesn't get into proto.h 
Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
64e99170c3 r1443: More changes towards Kerberos in Samba4's GENSEC. 
The kerberos context is now tied in life to the GENSEC context.

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
3e9aa67e3f r1442: I was going to rename kerberos.c -> kerberos_kinit.c, but didn't. 
Fix config.mk...

(oh, and this file is somehow marked as binary...)

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
231e505dea r1441: Indentation and comment fixes. 
Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
1c31aa4271 r1440: GENSEC improvements: 
- Infrustructure for kerberos
 - Don't segfault on un-implemented backend functions
 - Add comments.

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
e48557158e r1439: Once we are authenticated, always return NT_STATUS_OK. (Makes SPENGO 
easier to code, as it may return an 'ok' with an empty blob).

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
06b997c826 r1438: Record the principal name we are sent in the SPENGO mechListMIC in a 
seperate char *, not a DATA_BLOB.

This allows us to tell if we were sent a string here, or a real MIC.
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
eb0dd4a821 r1437: Intermediate commit of krb5 for GENSEC. 
The session key in the client is wrong, we don't do signing/sealing
and we are sending raw Kerberos, not GSSAPI.

But it's a start, and if we continue to have to call Krb5 directly,
this will be the basis.

I also intend to provide an alternate implementation, using just
GSSAPI.

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
2de3a30823 r1436: Move GENSEC across to config.mk 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
66d6e26110 r1435: talloc_steal is very useful - add a function to do it with a DATA_BLOB 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
e8de8905b2 r1434: Merge this function in from Samba 3.0, but use a mem_ctx rather than 
an fstring.

Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Jelmer Vernooij
afb5f4d765 r1433: Properly use GtkTreeView: 
- When a key is selected the values are immediately shown in gregedit
 - Only allow deleting jobs if one is selected.
 2007-10-10 12:56:55 -05:00
Jelmer Vernooij
d321cf20f1 r1432: - Move the various Gtk-specific parts from the registry code into a directory gtk/ 
- Move common "Samba-Gtk" code into gtk/common/ ("Connect to RPC pipe"-dialog, etc)
- Add a new utility 'gwcrontab' that can currently list, delete and add 'atsvc' jobs. It still displays times and dates as integers though, will fix that later.

Some screenshots available at:
 http://samba.org/~jelmer/gwcrontab/
 2007-10-10 12:56:55 -05:00
Stefan Metzmacher
ae2e6b5862 r1429: enable spnego in smbclient too. 
metze
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
c283837556 r1426: Fix some of my silly compile errors... 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
c5a1529d54 r1423: Make sure to destory the mem_ctx. 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
6709c7010d r1422: StrnCaseCmp now needs to be non-static. 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Stefan Metzmacher
79953dccc1 r1421: fix a uninitialized var (thanks valgrind:-) 
add a view debug messages

metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
db19d6047c r1420: be more strict reject if the context has the wrong type 
metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
19b0567ee5 r1419: spnego inside of dcerpc using alter_context/alter_context_resp 
instead of auth3

metze
 2007-10-10 12:56:54 -05:00
Andrew Bartlett
7596f311c9 r1418: Merge Samba 3.0's recent kerberos changes into Samba4. None of this 
is used yet.

Andrew Bartlett
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
e3760fcc17 r1409: if we have no user name don't use extended security 
the capabilities in the union smb_sesssetup should be used to decide
if we can use extented security

metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
e06898f88c r1406: I got spnego in the smb client working 
so I set 'use spnego = True'

metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
f1bbde6bb4 r1403: commit volkers initial RAP torture test 
we'll try to autogenerate the specific calls in future by pidl
and create a new subsystem for the rap lib

after that the server side will be added

metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
acde1358c9 r1402: we should prompt for a password if it's not given by -U 
metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
afe2efd143 r1377: add examples for config.mk sections 
so you want/need to use the new build system
just look at the top of build/smb_build/public.m4

and look at the examples in the rest of the tree

metze
 2007-10-10 12:56:54 -05:00
Tim Potter
45b4016530 r1374: Fix signed/unsigned warnings (actually found by g++) after unsigned int 
changes in r1018.
 2007-10-10 12:56:54 -05:00
Andrew Bartlett
1a6c2018dd r1372: Remove the 'default' case from the SPENGO state machine, and fix up 
some compiler warnings that allowed us to see.

Andrew Bartlett
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
f737932402 r1367: SPNEGO know uses gensec_subcontext_start() in all places 
metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
ec978555f0 r1366: handle the case where the client need to send the negTokenInit before 
getting something from the server.
(this is needed by SPNEGO in dcerpc)

metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
b1217a4ef6 r1365: in SPNEGO_SERVER_TARG we should not check the spnego_negResult 
because the client don't send this

metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
49e4d375e9 r1364: the SPNEGO_SERVER_TARG state is different from the SPNEGO_CLIENT_TARG 
the client checks but not send spnego_negResult

metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
69d685d817 r1363: add SPNEGO_NONE_RESULT as spnego_negResult value 
this should indicate that we don't send a spnego_negResult t all over the wire

metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
e19e5a91f2 r1360: - remove unused state SPNEGO_CLIENT_SEND_MECHS 
- remove unsed gensec_user forward, it's done by the gensec layer know

metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
264afea9ec r1359: fix uninit var - found by valgrind 
metze
 2007-10-10 12:56:53 -05:00
Andrew Bartlett
73e03596d3 r1358: Re-indent the SPENGO implementation, and work on the basis of a 
switch, rather than a series of if statements.

Also start to use the GENSEC subcontexts, and add some comments
explaining some of the 'odd' logic in parts.

I'll probably break these out into subfunctions soon.

Thanks to metze for getting me to do this :-)

Andrew Bartlett
 2007-10-10 12:56:53 -05:00
Andrew Bartlett
7aedbfbdd9 r1357: Work on GENSEC: 
- Add the concept of a 'subcontext' into gensec, so that the spengo
   code doesn't have to figure out how to make one.
   (A subcontext inherits the username, domain, password (or callback)
   from the main context).

 - Add comments to some other routines, and explain a bit about what
   the various 'start' functions are for.

Andrew Bartlett
 2007-10-10 12:56:53 -05:00
Andrew Bartlett
871e98ce57 r1356: Fix logic bugs in ntlm_auth. 
Andrew Bartlett
 2007-10-10 12:56:52 -05:00
Andrew Bartlett
dbe484a0c2 r1355: Add const (I missed this when I changed the function prototype earlier) 
Andrew Bartlett
 2007-10-10 12:56:52 -05:00
Andrew Bartlett
842a5dfc1f r1354: Make it clear that the first gensec_update takes a NULL data_blob. 
Andrew Bartlett
 2007-10-10 12:56:52 -05:00
Andrew Bartlett
9039a2a112 r1353: Fix compile with new ASN1 peek code. 
Andrew Bartlett
 2007-10-10 12:56:52 -05:00