sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-25 23:21:54 +03:00
Code
75,541 Commits 60 Branches 1,144 Tags 452 MiB
7e70f85350
Commit Graph

64 Commits

Author SHA1 Message Date
Volker Lendecke
7e70f85350 s3: Pass smbd_server_connection to srv_encrypt_buffer 2011-08-25 21:36:19 +02:00
Volker Lendecke
d4c4705e55 s3: Pass smbd_server_connection to srv_decrypt_buffer 2011-08-25 21:36:19 +02:00
Volker Lendecke
08262fe964 s3: Pass smbd_server_connection to srv_free_enc_buffer 2011-08-25 21:36:19 +02:00
Volker Lendecke
f9ef138ec7 s3: Pass smbd_server_connection to is_encrypted_packet 2011-08-25 21:36:19 +02:00
Volker Lendecke
4cb6e1284c s3: Explicitly pass smb_srv_trans_enc_ctx to srv_enc_ctx 2011-08-25 21:36:18 +02:00
Volker Lendecke
dfa8a5fca5 s3: Make srv_enc_ctx static 
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Fri Aug  5 18:29:24 CEST 2011 on sn-devel-104
 2011-08-05 18:29:24 +02:00
Volker Lendecke
eb2d3961d8 s3: Fix some nonempty blank lines 2011-08-05 17:12:06 +02:00
Andrew Bartlett
8b983d2326 s3-ntlmssp Split auth_ntlmssp_start into two functions 
This helps map on to the GENSEC semantics better, and ensures that the
full set of desired features are set before the mechanism starts.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-08-03 18:48:04 +10:00
Andrew Bartlett
778bf87d8d s3-ntlmssp Remove calls to auth_ntlmssp_and_flags from the server 
This is changed so that the callers ask for the additional flags
that they need, starting with no additional flags.

This helps to create a proper abstraction layer in
ntlmssp_wrap/auth_ntlmssp.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-08-03 18:48:03 +10:00
Andrew Bartlett
6d7ac4f1ad s3-ntlmssp Add mem_ctx argument to auth_ntlmssp_update 
This clarifies the lifetime of the returned token.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-08-03 18:48:03 +10:00
Andrew Bartlett
a942401c1f s3-ntlmssp Use auth_ntlmssp_*() functions in more places 
This allows auth_ntlmssp_get_ntlmssp_state() to be removed.

Andrew Bartlett

Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2011-08-03 18:48:02 +10:00
Andreas Schneider
45f70db010 s3-auth: Added remote_address to ntlmssp server. 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2011-07-04 18:28:00 +10:00
Andrew Bartlett
74eed8f3ed s3-param Remove special case for global_myname(), rename to lp_netbios_name() 
There is no reason this can't be a normal constant string in the
loadparm system, now that we have lp_set_cmdline() to handle overrides
correctly.

Andrew Bartlett
 2011-06-09 12:40:09 +02:00
Günther Deschner
27022587e3 s3-libsmb: move protos to libsmb/proto.h 
Guenther
 2011-05-06 16:37:18 +02:00
Jeremy Allison
4f41be356a Fix many const compiler warnings. 2011-05-05 10:41:59 -07:00
Günther Deschner
af300a9fcb s3-auth: smbd needs auth.h 
Guenther
 2011-03-30 01:13:09 +02:00
Günther Deschner
8c24ebf371 s3: include smbd/smbd.h where needed. 
Guenther
 2011-03-30 01:13:08 +02:00
Günther Deschner
3aa9d3005a s3-build: only include asn1 headers where actually needed. 
Guenther
 2011-03-16 23:46:18 +01:00
Günther Deschner
6c8d802391 s3-libsmb: move smb encryption structs into own header. 
Guenther
 2011-03-16 10:11:16 +01:00
Volker Lendecke
7915142848 s3: Fix input check in is_encrypted_packet 
Autobuild-User: Volker Lendecke <vlendec@samba.org>
Autobuild-Date: Fri Oct  8 07:40:52 UTC 2010 on sn-devel-104
 2010-10-08 07:40:51 +00:00
Jeremy Allison
5002b3a90d Add approriate TALLOC_CTX's thoughout the spnego code. No more implicit NULL contexts. 
Jeremy.
 2010-07-20 16:17:58 -07:00
Jeremy Allison
4ed9437b7e Add TALLOC_CTX argument to spnego_parse_negTokenInit, reduce 
use of malloc, and data_blob().

Jeremy.
 2010-07-20 13:35:43 -07:00
Simo Sorce
e958b39042 s3-auth: Move auth_ntlmssp wrappers in their own file 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-20 15:52:31 +10:00
Simo Sorce
c09dcb903c s3-auth: Use talloc hierarchies to properly free auth_ntlmssp_state contexts 
Turn auth_ntlmssp_end into a destructor and attach it to auth_ntlmssp_state.
Remote auth_ntlmssp_end and use TALLOC_FREE in the callers.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-19 14:20:04 +10:00
Andrew Bartlett
ebae21f023 ntlmssp: Make the ntlmssp.h from source3/ a common header 
The code is not yet in common, but I hope to fix that soon.

Andrew Bartlett

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Günther Deschner <gd@samba.org>
 2010-05-31 15:10:56 +02:00
Andrew Bartlett
723ea68d3b s3:auth Remove AUTH_NTLMSSP_STATE typedef. 
typedefs are no longer preferred Samba style.

Andrew Bartlett

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Günther Deschner <gd@samba.org>
 2010-05-31 15:10:44 +02:00
Andrew Bartlett
3b706865f6 s3:auth Make AUTH_NTLMSSP_STATE a private structure. 
This makes it a little easier for it to writen in terms of GENSEC in future.

Andrew Bartlett

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Günther Deschner <gd@samba.org>
 2010-05-31 15:10:33 +02:00
Andrew Bartlett
802e9328ed s3:ntlmssp: only include ntlmssp.h where actually needed 
Andrew Bartlett
 2009-12-22 21:07:53 +01:00
Günther Deschner
503d035814 spnego: share spnego_parse. 
Guenther
 2009-09-17 01:12:20 +02:00
Stefan Metzmacher
3dde0cbb76 s3:smbd: move all globals and static variables in globals.[ch] 
The goal is to move all this variables into a big context structure.

metze
 2009-01-08 12:22:21 +01:00
Jeremy Allison
d0eeb9aa8d Fix more asprintf warnings and some error path errors. 
Jeremy.
 2008-12-23 12:11:12 -08:00
Günther Deschner
053da4ba0a s3: fix another build warning. 
Guenther
 2008-10-13 12:32:44 +02:00
Jelmer Vernooij
d68168e633 Cope with the fact that the data blobs returned are now 
talloc-allocated. Ideally, this memory should be talloc-stolen
(and perhaps have DATA_BLOB in the interface everywhere), but
that requires some more complex changes so I've just changed it to copy
it for now.
 2008-10-12 04:00:55 +02:00
James Peach
f863cb2ef4 Remove unused variable. 
(This used to be commit 3ed2c65bde)
 2008-04-07 15:28:10 -07:00
Bill Ricker
f700ee6418 Fix Kerberos interop with Mac OS X 10.5 clients. 
Ignore optional req_flags. Use the Kerberos mechanism OID negotiated
with the client rather than hardcoding OID_KERBEROS5_OLD.
(This used to be commit 59a2bcf30f)
 2008-04-07 15:05:51 -07:00
Jeremy Allison
81d6133b03 Currently we don't SPNEGO negotiate back to NTLMSSP. Note this. 
Jeremy.
(This used to be commit 8cd04b948b)
 2008-02-14 18:07:27 -08:00
Jeremy Allison
7febec3c58 Simplify... plus add a debug message. 
Jeremy.
(This used to be commit bedc493874)
 2008-01-08 16:08:39 -08:00
Jeremy Allison
80158198ee Correctly identify enc/non-enc packets. 
Jeremy.
(This used to be commit 647f13d0f1)
 2008-01-08 15:57:08 -08:00
Jeremy Allison
9254bb4ef1 Refactor the crypto code after a very helpful conversation 
with Volker. Mostly making sure we have data on the incoming
packet type, not stored in the smb header.
Jeremy.
(This used to be commit c4e5a50504)
 2008-01-04 12:56:23 -08:00
Jeremy Allison
c6646f115e As the encryption is stream based there's no reason 
oplock breaks can't be encrypted. If we have multiple
contexts I should probably attach them to the connection
struct, but for now use the global context number.
Jeremy.
(This used to be commit 5b4b335ed0)
 2007-12-30 13:10:29 -08:00
Jeremy Allison
afc93255d1 Add SMB encryption. Still fixing client decrypt but 
negotiation works.
Jeremy.
(This used to be commit d78045601a)
 2007-12-26 17:12:36 -08:00
Gerald (Jerry) Carter
e5a951325a [GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch. 
(This used to be commit 5c6c8e1fe9)
 2007-10-10 15:34:30 -05:00
Andrew Tridgell
5e54558c6d r23784: use the GPLv3 boilerplate as recommended by the FSF and the license text 
(This used to be commit b0132e94fc)
 2007-10-10 12:28:22 -05:00
Jeremy Allison
d824b98f80 r23779: Change from v2 or later to v3 or later. 
Jeremy.
(This used to be commit 407e6e695b)
 2007-10-10 12:28:20 -05:00
Volker Lendecke
b4a7b7a888 r22844: Introduce const DATA_BLOB data_blob_null = { NULL, 0, NULL }; and 
replace all data_blob(NULL, 0) calls.
(This used to be commit 3d3d61687e)
 2007-10-10 12:22:01 -05:00
Volker Lendecke
7192160599 r22747: Fix some C++ warnings 
(This used to be commit a66a04e9f1)
 2007-10-10 12:21:54 -05:00
Jeremy Allison
d47868cb5e r22352: Wow - working gss SMB sealing ! 
Jeremy.
(This used to be commit abcb2a4b07)
 2007-10-10 12:19:28 -05:00
Jeremy Allison
226d96337f r22351: Making progress in tests... 
Jeremy.
(This used to be commit f1726e04eb)
 2007-10-10 12:19:28 -05:00
Jeremy Allison
1adbf4af06 r22350: Add some helpful debug messages. 
Jeremy.
(This used to be commit bf2e6bd82d)
 2007-10-10 12:19:28 -05:00
Jeremy Allison
9812a7e32e r22327: Finish the gss-spnego part of the seal code. Now 
for testing....
Jeremy.
(This used to be commit 1c1f5360b6)
 2007-10-10 12:19:27 -05:00