sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-25 23:21:54 +03:00
Code
58,638 Commits 60 Branches 1,144 Tags 452 MiB
53d10d139e
Commit Graph

1113 Commits

Author SHA1 Message Date
Stefan Metzmacher
d5cbfbb93a s4:ntlmssp: remove mem_ctx from check_password() callback to match s3 
metze
 2009-12-29 17:06:25 +01:00
Stefan Metzmacher
f31d144e70 s4:ntlmssp_server: always call ntlmssp_server_postauth() and decide there if it's a noop 
metze
 2009-12-29 17:06:25 +01:00
Stefan Metzmacher
994d34b949 s4:ntlmssp_server: don't use a mem_ctx for ntlmssp_server_auth() 
metze
 2009-12-29 17:06:25 +01:00
Stefan Metzmacher
3f04b60fb9 s4:ntlmssp_server: don't use mem_ctx in auth_ntlmssp_check_password() 
metze
 2009-12-29 17:06:24 +01:00
Stefan Metzmacher
7d4692fa43 s4:ntlmssp_server: clear session key in ntlmssp_server_preauth() 
metze
 2009-12-29 17:06:24 +01:00
Stefan Metzmacher
dea456089a s4:ntlmssp: use data_blob_null in ntlmssp_server_auth() 
metze
 2009-12-29 17:06:24 +01:00
Stefan Metzmacher
60b9434492 s4:ntlmssp_server: remove unused variable 
metze
 2009-12-29 17:06:23 +01:00
Stefan Metzmacher
a8e61ac084 s4:auth/ntlmssp: let get_challenge() return a NTSTATUS and fill a stack buffer 
metze
 2009-12-29 17:06:23 +01:00
Jelmer Vernooij
fbb59b2dca dsdb: Fix dependencies when building against system ldb. 2009-12-29 16:26:21 +01:00
Stefan Metzmacher
8b68349442 s4:auth: add auth_get_server_info_principal() prototype to auth.h 
metze
 2009-12-29 12:13:30 +01:00
Stefan Metzmacher
27349a68ea s4:auth: make auth_challenge_may_be_modified() public 
metze
 2009-12-29 12:13:29 +01:00
Stefan Metzmacher
af25fb55c0 s4:auth: remove autogenerated auth/ntlm/auth_proto.h 
metze
 2009-12-29 12:13:23 +01:00
Stefan Metzmacher
8ab62799ed s4:ntlmssp: fix whitespaces in ntlmssp.h 
metze
 2009-12-29 08:18:52 +01:00
Stefan Metzmacher
078482ad0e s4:auth: change auth_check_password_send/recv to tevent_req 
metze
 2009-12-24 17:38:34 +01:00
Stefan Metzmacher
577857d351 s4:gensec: change gensec_update_send/recv to tevent_req 
metze
 2009-12-24 17:38:34 +01:00
Andrew Bartlett
585900deb5 s4:gensec Don't give a warning when Windows client connects with NTLM 
We have had the workaround for a long time, but at the time the log
warnings remained.

Andrew Bartlett
 2009-12-22 17:30:05 +11:00
Andrew Bartlett
0809696dbf s4:auth Change 'get_challenge' API to be more like Samba3 
It is just easier to fill in the known to be 8 byte challenge than
stuff about with allocated pointers.

Andrew Bartlett
 2009-12-22 17:29:15 +11:00
Andrew Bartlett
383369e8f2 s4:auth generate the prototype file in the right place 2009-12-22 17:29:13 +11:00
Stefan Metzmacher
fae70e1f54 s4:gensec: allow clearing local and remote address by passing NULL 
metze
 2009-12-16 20:34:15 +01:00
Andreas Schneider
c457d54434 s4-gensec: Remove obsolete socket_address vars and fns. 2009-12-16 20:28:39 +01:00
Andreas Schneider
1e5488859a s4-gensec: Replace gensec_get_peer_addr with new tsocket based fn. 2009-12-16 20:28:38 +01:00
Andreas Schneider
ac2d31e24c s4-gensec: Replace gensec_set_peer_addr with new tsocket based fn. 2009-12-16 20:28:38 +01:00
Andreas Schneider
8ca88042f0 s4-gensec: Replace gensec_get_my_addr with new tsocket based fn. 2009-12-16 20:28:38 +01:00
Andreas Schneider
226a9db2d9 s4-gensec: Replace gensec_set_my_addr() with new tsocket based fn. 2009-12-16 20:28:38 +01:00
Andreas Schneider
743e6363d5 s4-gensec: Added remote and local setter/getter using tsocket. 2009-12-16 20:28:37 +01:00
Andrew Bartlett
609b831462 s4:credentials Put the 'secrets.keytab' in the same directory as secrets.ldb 
This avoids trouble when the secrets.ldb is updated with ldbedit but
an smb.conf is not specified.

Andrew Bartlett
 2009-11-02 16:36:52 +11:00
Stefan Metzmacher
fab9aff6a2 s4:gensec/schannel: remove unused talloc_reference() in schannel_update() 
We never expose creds to the caller in schannel_update().

metze
 2009-10-24 11:59:14 +02:00
Andrew Tridgell
3050f83288 s4-python: we need to include Python.h first 
If we don't include Python.h first then we get a pile of warnings due
to broken redefines of XOPEN_SOURCE in the Python includes.
 2009-10-23 16:23:01 +11:00
Andrew Bartlett
b7f71c9407 s4:gensec Use an index on computerName in schannel.ldb 2009-10-23 15:41:35 +11:00
Andrew Tridgell
4ad0397d8a s4-ldbwrap: added re-use of ldb contexts in ldb_wrap_connect() 
This allows us to reuse a ldb context if it is open twice, instead
of going through the expensive process of a full ldb open. We can
reuse it if all of the parameters are the same.

The change relies on callers using talloc_unlink() or free of a parent
to close a ldb context.
 2009-10-23 14:52:17 +11:00
Andrew Tridgell
98e4393df9 s4-dsdb: create a static system_session context 
This patch adds a system_session cache, preventing us from having to
recreate it on every ldb open, and allowing us to detect when the same
session is being used in ldb_wrap
 2009-10-23 14:52:17 +11:00
Andrew Tridgell
5e79a86298 s4: ran minimal_includes.pl on source4/auth/gensec 2009-10-20 16:05:24 +11:00
Andrew Tridgell
f8109b0f49 s4: ran minimal_includes.pl on source4/auth/ntlmssp 2009-10-20 16:05:07 +11:00
Andrew Tridgell
49650a226e s4: ran minimal_includes.pl on source4/auth/ntlm 2009-10-20 16:05:03 +11:00
Endi S. Dewata
180ca8ed88 s4:auth - fixed problem reading bind DN from secrets database 2009-10-16 14:08:11 +02:00
Matthias Dieter Wallnöfer
925e96029e s4:auth_sam: Restructure tail in "authsam_get_server_info_principal" and fix a memory leak 2009-10-16 14:06:30 +02:00
Matthias Dieter Wallnöfer
ea60b72c46 s4:ntlmssp server - use also here the new "lp_dnsdomain()" call 2009-10-15 10:32:16 +02:00
Matthias Dieter Wallnöfer
3bd452e3f6 s4:auth/credentials/credentials - fix uninitalised pointers 
This should fix bug #6755.
 2009-10-15 10:32:12 +02:00
Matthias Dieter Wallnöfer
e9686985cb s4: Changes the old occurences of "lp_realm" in "lp_dnsdomain" where needed 
For KERBEROS applications the realm should be upcase (function "lp_realm") but
for DNS ones it should be used lowcase (function "lp_dnsdomain"). This patch
implements the use of both in the right way.
 2009-10-14 10:50:43 +02:00
Andrew Tridgell
5a5c30cb38 s4-pygensec: a bit closer to working 
I'll need help from Andrew on how to get gensec to initialise it's ops
element
 2009-10-02 18:50:59 +10:00
Jelmer Vernooij
6a79ad7664 gensec: Avoid exposing lp_ctx on the API level. 2009-09-26 20:55:18 +02:00
Jelmer Vernooij
52a17e5c32 pygensec: Add initial work on a gensec Python module. 2009-09-26 19:41:59 +02:00
Matthias Dieter Wallnöfer
85276e120c s4:auth/gensec/schannel - fix a const warning 2009-09-25 10:59:13 +02:00
Stefan Metzmacher
36e889f2cf s4:schannel: fix some compiler warnings 
If we only do signing we can pass down a const data buffer.

metze
 2009-09-25 05:20:16 +02:00
Andrew Tridgell
ced2429dfa s4-auth: add SID_NT_ENTERPRISE_DCS is a server trust account 2009-09-19 19:40:03 -07:00
Andrew Tridgell
52f2e26a25 s4-sam: add a note about the solaris client 2009-09-17 15:19:31 -07:00
Kouhei Sutou
f8dae40fc8 spnego: Support ASN.1 BIT STRING and use it in SPNEGO. 
Signed-off-by: Günther Deschner <gd@samba.org>
 2009-09-17 20:10:54 +02:00
Günther Deschner
503d035814 spnego: share spnego_parse. 
Guenther
 2009-09-17 01:12:20 +02:00
Stefan Metzmacher
033ced60ac libcli/auth: rewrite schannel sign/seal code to be more generic 
This prepares support for HMAC-SHA256/AES.

metze
 2009-09-16 12:29:06 +02:00
Günther Deschner
f3979b50a9 schannel: move schannel_sign to main directory. 
Guenther
 2009-09-16 01:54:59 +02:00