samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2024-12-27 03:21:53 +03:00

Author	SHA1	Message	Date
Stefan Metzmacher	e217c2e30a	s3:rpc_server: move gensec_update() out of auth_generic_server_authtype_start*() We let the caller use auth_generic_server_step() instead. This allows us to request GENSEC_FEATURE_SIGN_PKT_HEADER before starting the gensec_update() dance. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2017-05-21 21:05:09 +02:00
Andrew Bartlett	85536c1ff3	auth: Always supply both the remote and local address to the auth subsystem This ensures that gensec, and then the NTLM auth subsystem under it, always gets the remote and local address pointers for potential logging. The local address allows us to know which interface an authentication is on Signed-off-by: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-by: Gary Lockyer <gary@catalyst.net.nz> Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>	2017-03-29 02:37:26 +02:00
Andrew Bartlett	d82ac32eb7	s3-auth: Pass service_description into gensec via auth_generic_prepare() This allows the GENSEC service description to be set from the various callers that go via this function. The RPC service description is the name of the interface from the IDL. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-by: Gary Lockyer <gary@catalyst.net.nz> Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>	2017-03-29 02:37:25 +02:00
Andreas Schneider	bfdd22b316	s3-rpc_server: Return the status code from gensec. We need to know the difference between NT_STATUS_OK and NT_STATUS_MORE_PROCESSING_REQUIRED. Signed-off-by: Andreas Schneider <asn@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>	2014-04-24 11:21:05 +02:00
Stefan Metzmacher	2c5ed102b7	s3:rpc_server: let auth_generic_server_step() handle gensec_security == NULL This simplifies the caller, we don't need to look at the auth_type anymore. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>	2014-04-24 11:21:05 +02:00
Stefan Metzmacher	2103c373b4	auth/gensec: remove tevent_context argument from gensec_update() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2014-03-27 00:36:32 +01:00
Andrew Bartlett	10f6926aaa	s3-rpc_server: Ensure we are root when starting and usiing gensec This fixes bug 9465. Andrew Bartlett Reviewed-by: Stefan Metzmacher <metze@samba.org>	2013-05-16 19:02:00 +02:00
Andrew Bartlett	757c9b79ea	s3-rpc_server Remove unused function auth_generic_server_start()	2012-02-23 16:14:18 +11:00
Andrew Bartlett	16e463e169	s3-auth Remove ntlmssp_wrap.h which is no longer required Signed-off-by: Stefan Metzmacher <metze@samba.org>	2012-01-05 17:17:28 +01:00
Andrew Bartlett	3042e38d51	s3-auth use gensec directly rather than via auth_generic_state This is possible because the s3 gensec modules are started as normal gensec modules, so we do not need a wrapper any more. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>	2012-01-05 17:17:28 +01:00
Andrew Bartlett	1075efabc7	s3-auth Add TALLOC_CTX * to auth_generic_prepare() This makes the long term owner of this memory more clear. So far only the clear cases have been moved from NULL however. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>	2012-01-05 17:17:28 +01:00
Andrew Bartlett	06498637bb	s3-rpc_server: Rework pipe_ntlmssp_auth_bind() to be generic Signed-off-by: Stefan Metzmacher <metze@samba.org>	2011-12-22 19:25:11 +01:00
Andrew Bartlett	d52e5473ef	s3-rpc_server: Allow gensec mechanisms to return NT_STATUS_OK If a kerberos mechanism is added, then it can return OK after just one packet. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>	2011-12-22 19:25:11 +01:00
Andrew Bartlett	43f35f1826	s3-rpc_server: Rename dcesrv_ntlmssp.[ch] to dcesrv_auth_generic.[ch] Signed-off-by: Stefan Metzmacher <metze@samba.org>	2011-12-22 19:25:11 +01:00

14 Commits