sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-11 05:18:09 +03:00
Code
17,050 Commits 60 Branches 1,145 Tags 452 MiB
c1efe587cf
Commit Graph

17050 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andrew Bartlett
c1efe587cf We can't use ndr_pull_struct_blob_all in combinatin with relative pointers 
(This used to be commit 931890e028)
 2008-08-08 10:32:21 +10:00
Andrew Bartlett
8930a2159d Start implementind domain trusts in our KDC. 
Andrew Bartlett
(This used to be commit 8aba7c3623)
 2008-08-05 12:46:57 +10:00
Jelmer Vernooij
b1f85bfb00 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into manpage 
(This used to be commit 8e201ecf3e)
 2008-08-01 21:36:49 +02:00
Jelmer Vernooij
47124efe42 Add helper object Hostconfig to make it easier to get to e.g. the 
SAM database.
(This used to be commit be75b2a36e)
 2008-08-01 21:12:37 +02:00
Stefan Metzmacher
d9ad17f945 heimdal: add experimental --enable-external-heimdal 
This should only be used for testing and when you're
absolutly sure the installed heimdal libraries
support the features we need.

(E.g. heimdal-1.2 or lower should NOT work)

metze
(This used to be commit 66b76b018d)
 2008-08-01 21:10:40 +02:00
Stefan Metzmacher
5fd1c5445b libreplace: include <krb5.h> and <com_err.h> and no heimdal specific headers 
metze
(This used to be commit cffed8e19e)
 2008-08-01 21:10:40 +02:00
Stefan Metzmacher
d0f0d5e691 auth/kerberos: remove dependencies to internal heimdal 
metze
(This used to be commit ed0fc19ac6)
 2008-08-01 21:10:40 +02:00
Stefan Metzmacher
d96c5758f6 heimdal_build/internal: add some useful defines 
metze
(This used to be commit b9727d612b)
 2008-08-01 21:10:39 +02:00
Stefan Metzmacher
59737cddfb heimdal: fix dependency 
metze
(This used to be commit 9e8b95dc8d)
 2008-08-01 21:10:39 +02:00
Stefan Metzmacher
112084929e lib/crypto: remove dependency to internal heimdal 
metze
(This used to be commit 9138fc6639)
 2008-08-01 21:10:39 +02:00
Stefan Metzmacher
b2023570c4 build: remove warning about missing generated include file 
metze
(This used to be commit 495d068df5)
 2008-08-01 21:10:39 +02:00
Jelmer Vernooij
1c94f3e95d Use new style python classes. 
(This used to be commit 2a39aae0ce)
 2008-08-01 21:00:09 +02:00
Jelmer Vernooij
fff006bd84 Move domain DN determination out of newuser function. 
(This used to be commit cbac27e6fa)
 2008-08-01 20:47:22 +02:00
Jelmer Vernooij
3b4ff07ded Actually fix missing substitution variables. 
(This used to be commit 783412ecb2)
 2008-08-01 20:47:03 +02:00
Jelmer Vernooij
2fbe25b39d Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into manpage 
(This used to be commit c87a8ba1fe)
 2008-08-01 20:17:56 +02:00
Jelmer Vernooij
3573420d7d Fix some forgotten substitute variables in provision, add check to prevent this sort of regression in the future. 
(This used to be commit a461118f3b)
 2008-08-01 20:17:29 +02:00
Stefan Metzmacher
f2ac351d6e kdc: use mostly only public kerberos headers 
We shoule avoid using the private heimdal function
_krb5_principalname2krb5_principal()

metze
(This used to be commit 10db07c69a)
 2008-08-01 17:54:34 +02:00
Stefan Metzmacher
9cc663af6e auth/kerberos: we don't need to include heimdal private headers 
metze
(This used to be commit 6ec3887aee)
 2008-08-01 17:52:37 +02:00
Stefan Metzmacher
c251443e73 gensec_gssapi: include <gssapi/gssapi.h> 
metze
(This used to be commit 49e01d00bd)
 2008-08-01 17:52:37 +02:00
Stefan Metzmacher
fed1cc2c6d heimdal_build: we should only use PRIVATE_DEPENDENCIES 
metze
(This used to be commit 694f5124a5)
 2008-08-01 17:52:36 +02:00
Stefan Metzmacher
f4140cfdb0 build: autogenerate heimdal basics 
metze
(This used to be commit f19d2182b8)
 2008-08-01 17:52:36 +02:00
Stefan Metzmacher
8dede49961 build: autogenarate VPATH by configure 
metze
(This used to be commit 16147753ad)
 2008-08-01 17:52:36 +02:00
Stefan Metzmacher
86c9db8d4a heimdal: add missing files 
metze
(This used to be commit b395cd7acd)
 2008-08-01 17:49:45 +02:00
Stefan Metzmacher
ca086c9e2c auth_server: set the workstation name 
metze
(This used to be commit 6d640ee4b8)
 2008-08-01 17:27:18 +02:00
Stefan Metzmacher
9f5325ce39 heimdal: add missing file heimdal/lib/gssapi/mech/gss_pseudo_random.c 
metze
(This used to be commit 3bd7e68a5c)
 2008-08-01 17:27:18 +02:00
Stefan Metzmacher
35cd60b002 build with the new heimdal version 
(This used to be commit 3817d653fa)
 2008-08-01 16:11:00 +02:00
Stefan Metzmacher
a925f039ee heimdal: update to lorikeet-heimdal rev 801 
metze
(This used to be commit d6c54a66fb)
 2008-08-01 16:11:00 +02:00
Stefan Metzmacher
cf875a5621 build: allow flex-2.34 together with bison-2.3 
metze
(This used to be commit 8bd30a7b43)
 2008-08-01 16:10:59 +02:00
Stefan Metzmacher
d087545deb auth/ntlmssp: don't crash when the backend give no challenge 
metze
(This used to be commit c01fee80a7)
 2008-08-01 16:10:59 +02:00
Stefan Metzmacher
f1cdce5963 auth_server: fix the logic of server_get_challenge() 
metze
(This used to be commit 699e3cdb52)
 2008-08-01 15:54:57 +02:00
Stefan Metzmacher
5d68244a27 auth_server: fix segfault reported by Julien Kerihuel <j.kerihuel@openchange.org> 
metze
(This used to be commit c2cc8ef943)
 2008-08-01 15:22:25 +02:00
Stefan Metzmacher
7b4081da8f Revert "Start implementind domain trusts in our KDC." 
This reverts commit 736ce50afd.

This breaks the build...

metze
(This used to be commit afd07073b9)
 2008-08-01 15:22:25 +02:00
Andrew Bartlett
43d2329da6 Update to a working trustAuthIncoming and trustAuthOutgoing parser. 
This is based on the docs, as well as testing against a domain trust
in windows.

Clearly it needs to be more general - perhaps a non IDL parser?

Andrew Bartlett
(This used to be commit 816bb64a56)
 2008-07-31 23:17:20 +10:00
Andrew Bartlett
358a11c6f3 Print trustAuthOutgoing and trustAuthIncoming in RPC-DSSYNC 
(This used to be commit 6673a6e623)
 2008-07-31 21:23:48 +10:00
Andrew Bartlett
2cc32c4988 Use the cldap reply to avoid segfaulting in RPC-DSSYNC 
Also don't fail the test if the server does not implement the NT4
changelog.

Andrew Bartlett
(This used to be commit 514d88580b)
 2008-07-31 10:51:59 +10:00
Andrew Bartlett
2afd7d6d66 Don't fail if the domain has a trust already. 
Andrew Bartlett
(This used to be commit c2df7ffa6d)
 2008-07-31 09:07:57 +10:00
Andrew Bartlett
337752cfd8 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local 
(This used to be commit 15d0951b74)
 2008-07-31 07:48:16 +10:00
Andrew Bartlett
2a0677e514 Start implementind domain trusts in our KDC. 
Andrew Bartlett
(This used to be commit 736ce50afd)
 2008-07-31 07:47:01 +10:00
Andrew Bartlett
2b0ed1832a Update trustAuthInOutBlob in line with MS-ADTS 7.1.6.8.1 
(This used to be commit 26c2a34dec)
 2008-07-31 07:45:30 +10:00
Jelmer Vernooij
ee505f36dd Be more pythonic. 
(This used to be commit 20d40e3194)
 2008-07-30 13:29:29 +02:00
Stefan Metzmacher
e45c3e127d Revert "gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes keys work" 
This reverts commit 73964f0690.

This breaks more than it gains:-( It seems to break the ncacn_np session key

metze
(This used to be commit 9678085f75)
 2008-07-28 17:59:17 +02:00
Stefan Metzmacher
14900695da rpc_server: remove unused variable 
metze
(This used to be commit c2186d5d60)
 2008-07-28 16:40:21 +02:00
Stefan Metzmacher
c4c79aa1b6 gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes keys work 
SMB signing with aes doesn't work, but still works with
arcfour-hmac-md5, des-cbc-md5 and des-cbc-crc.

metze
(This used to be commit 73964f0690)
 2008-07-28 16:15:23 +02:00
Stefan Metzmacher
2d2911c788 libcli/smb2: the session key for SMB2 signing is truncated to 16 bytes 
To make that work (as a client) with aes128 and aes256 krb5 keys
we need to use gsskrb5_get_subkey().

metze
(This used to be commit 0c6d988f20)
 2008-07-28 16:15:23 +02:00
Stefan Metzmacher
0251096a89 smb2srv: sign SMB2 Logoff replies 
metze
(This used to be commit 2844e36173)
 2008-07-28 14:09:46 +02:00
Stefan Metzmacher
8623e2cc4c smb2srv: correctly hold the signing state per session 
metze
(This used to be commit 5b3ba3f355)
 2008-07-28 14:09:45 +02:00
Stefan Metzmacher
35bd7a6378 libcli/smb2: fix per session signing state 
metze
(This used to be commit 8bc12dc77a)
 2008-07-28 14:09:45 +02:00
Stefan Metzmacher
1a4f4d2cf0 SMB2-CONNECT: remove reference to req->session before calling smb2_logoff_recv() on the invalid session 
metze
(This used to be commit 93203e8e31)
 2008-07-28 14:09:45 +02:00
Stefan Metzmacher
4355b31730 libcli/smb2: sign SMB2 Logoff requests 
metze
(This used to be commit 35ee165b14)
 2008-07-28 14:09:45 +02:00
Andrew Bartlett
e80115deb9 We don't use EXTENSIBLEOBJECT any more. 
(This used to be commit 4b137085c8)
 2008-07-28 20:51:02 +10:00