sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-07-21 12:59:09 +03:00
Code Activity
96,413 Commits 62 Branches 1,163 Tags
4cc86bb5051c7bf6d29e8aea03ec973c901b4bf2
Commit Graph

12 Commits

Author SHA1 Message Date
Björn Baumbach
e0248cde8d CVE-2013-4476: s4:libtls: Create tls private key file (key.pem) with mode 0600 
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10234

Signed-off-by: Björn Baumbach <bb@sernet.de>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
 2013-11-11 11:14:36 +01:00
Matthias Dieter Wallnöfer
32c82fe69b s4:lib/tls - include GNUTLS headers consistently using <...> 
These are system-specific.

Reviewed-by: Jelmer

Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org>
Autobuild-Date: Sat Feb 18 00:43:58 CET 2012 on sn-devel-104
 2012-02-18 00:43:58 +01:00
Matthieu Patou
f8d49958b2 tls: Inform the user if the cert/ca/private key can't be saved 
Most of the time this problem is due to a missing <private>/tls dir.
Should close bug 7640.

Autobuild-User: Matthieu Patou <mat@samba.org>
Autobuild-Date: Wed Oct 27 20:08:54 UTC 2010 on sn-devel-104
 2010-10-27 20:08:54 +00:00
Andrew Tridgell
b1ff79dbb2 fixed some of the TLS problems 
This fixes two things in the TLS support for Samba4. The first is to
use a somewhat more correct hostname instead of 'Samba' when
generating the test certificates. That allows TLS test clients (such
as gnutls-cli) to connect to Samba4 using auto-generated certificates.

The second fix is to add a call to gcry_control() to tell gcrypt to
use /dev/urandom instead of /dev/random (on systems that support
that). That means that test certificate generation is now very fast,
which was previously an impediment to putting the TLS tests on the
build farm.
 2009-02-18 14:46:57 +11:00
Jelmer Vernooij
87ec1d2532 Make sure prototypes are always included, make some functions static and 
remove some unused functions.
 2008-10-20 18:59:51 +02:00
Jelmer Vernooij
98b57d5eb6 r25035: Fix some more warnings, use service pointer rather than service number in more places. 
(This used to be commit df9cebcb97)
 2007-10-10 15:05:43 -05:00
Andrew Tridgell
0479a2f1cb r23792: convert Samba4 to GPLv3 
There are still a few tidyups of old FSF addresses to come (in both s3
and s4). More commits soon.
(This used to be commit fcf38a38ac)
 2007-10-10 14:59:12 -05:00
Andrew Tridgell
714f3991a1 r17674: fixed a problem on with our configure logic on systems that have 
libgnutls but not some of the crt functions
(This used to be commit 7a0264c52d)
 2007-10-10 14:16:22 -05:00
Jelmer Vernooij
e0e8743baf r15363: Fix dependencies for shared library 
(This used to be commit f2ca71f122)
 2007-10-10 14:05:26 -05:00
Jelmer Vernooij
7eb440f2f7 r14806: Fix compiler warnings 
(This used to be commit b38a834077)
 2007-10-10 13:59:22 -05:00
Andrew Tridgell
7b8332369f r8482: gnutls_x509_crt_set_subject_key_id is not available in some versions 
of gnutls. Thanks to ab for spotting this.
(This used to be commit 437c4057ae)
 2007-10-10 13:23:08 -05:00
Andrew Tridgell
225d5a334f r7742: abstracted out the tls code from the web server, so that our other servers 
can easily become tls enabled. This will be used to add support for ldaps
(This used to be commit 950500f603)
 2007-10-10 13:18:29 -05:00