sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-11-22 16:23:49 +03:00
Code Activity
1,320 Commits 64 Branches 1,179 Tags
fc8d00b8ab28535da4ec0b7e6931bbf402a37013
Commit Graph

1301 Commits

Author SHA1 Message Date
Stefan Metzmacher
fc8d00b8ab r1463: fix the krb5 build 
metze
 2007-10-10 12:57:32 -05:00
Andrew Bartlett
cea578d6f3 r1462: GENSEC Kerberos and SPENGO work: 
- Spelling - it's SPNEGO, not SPENGO
 - SMB signing - Krb5 logins are now correctly signed
 - SPNEGO - Changes to always tell GENSEC about incoming packets, empty or not.

Andrew Bartlett
 2007-10-10 12:57:32 -05:00
Andrew Bartlett
67ac960066 r1461: ntlm_check.c is a server-side peice of code, so it belongs in AUTH. 
Andrew Bartlett
 2007-10-10 12:57:32 -05:00
Andrew Bartlett
10a973da88 r1460: Avoid a compile warning. 
Andrew Bartlett
 2007-10-10 12:57:32 -05:00
Andrew Bartlett
54c3d98baf r1458: Add a new configure option, to make it possible to both find errors, 
and compile with gtk.

The --enable-developer option was just too noisy with buggy GTK headers.

Andrew Bartlett
 2007-10-10 12:56:58 -05:00
Andrew Bartlett
893a9a3865 r1457: Add the GSSAPI layer to our gensec_krb5 code. 
Andrew Bartlett
 2007-10-10 12:56:58 -05:00
Andrew Bartlett
39d8949d25 r1456: Rename this parameter to avoid shadowing a badly-named GTK global. 
Andrew Bartlett
 2007-10-10 12:56:58 -05:00
Jelmer Vernooij
bea47671aa r1455: More Gtk+ updates: 
- Start working on 'gwsam'
 - Add GtkSelectDomainDialog and GtkSelectHostDialog
 2007-10-10 12:56:58 -05:00
Volker Lendecke
2bc6147c11 r1454: Today is the day of broken builds, now I get my share ... :-) 
Add a missing file.

Volker
 2007-10-10 12:56:58 -05:00
Volker Lendecke
1506da85b9 r1453: Change the RAP client to use the ndr routines for moving bytes around. 
Volker
 2007-10-10 12:56:58 -05:00
Andrew Bartlett
8d449bbe2b r1452: Thanks to Volker for spotting that this code was certainly not tested... 
(make sure to actually return the result).

Andrew Bartlett
 2007-10-10 12:56:58 -05:00
Jelmer Vernooij
7e9884799e r1451: More missing files... 2007-10-10 12:56:58 -05:00
Jelmer Vernooij
eaa2940ba0 r1450: Oops.. Missing files :-) 2007-10-10 12:56:57 -05:00
Jelmer Vernooij
69de0d95c5 r1449: Use the config system somewhat better in libcli/auth 2007-10-10 12:56:57 -05:00
Andrew Bartlett
1164be10af r1448: Indent this so proto doesn't pick it up. 
Andrew Bartlett
 2007-10-10 12:56:57 -05:00
Andrew Bartlett
b97ea8a63f r1447: Fix compile. 
Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
310a570936 r1446: Another funciton to avoid in proto.h 
Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
159c234589 r1445: Ensure get_auth_data_from_tkt doesn't get into proto.h 
Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
64e99170c3 r1443: More changes towards Kerberos in Samba4's GENSEC. 
The kerberos context is now tied in life to the GENSEC context.

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
3e9aa67e3f r1442: I was going to rename kerberos.c -> kerberos_kinit.c, but didn't. 
Fix config.mk...

(oh, and this file is somehow marked as binary...)

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
231e505dea r1441: Indentation and comment fixes. 
Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
1c31aa4271 r1440: GENSEC improvements: 
- Infrustructure for kerberos
 - Don't segfault on un-implemented backend functions
 - Add comments.

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
e48557158e r1439: Once we are authenticated, always return NT_STATUS_OK. (Makes SPENGO 
easier to code, as it may return an 'ok' with an empty blob).

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
06b997c826 r1438: Record the principal name we are sent in the SPENGO mechListMIC in a 
seperate char *, not a DATA_BLOB.

This allows us to tell if we were sent a string here, or a real MIC.
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
eb0dd4a821 r1437: Intermediate commit of krb5 for GENSEC. 
The session key in the client is wrong, we don't do signing/sealing
and we are sending raw Kerberos, not GSSAPI.

But it's a start, and if we continue to have to call Krb5 directly,
this will be the basis.

I also intend to provide an alternate implementation, using just
GSSAPI.

Andrew Bartlett
 2007-10-10 12:56:56 -05:00
Andrew Bartlett
2de3a30823 r1436: Move GENSEC across to config.mk 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
66d6e26110 r1435: talloc_steal is very useful - add a function to do it with a DATA_BLOB 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
e8de8905b2 r1434: Merge this function in from Samba 3.0, but use a mem_ctx rather than 
an fstring.

Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Jelmer Vernooij
afb5f4d765 r1433: Properly use GtkTreeView: 
- When a key is selected the values are immediately shown in gregedit
 - Only allow deleting jobs if one is selected.
 2007-10-10 12:56:55 -05:00
Jelmer Vernooij
d321cf20f1 r1432: - Move the various Gtk-specific parts from the registry code into a directory gtk/ 
- Move common "Samba-Gtk" code into gtk/common/ ("Connect to RPC pipe"-dialog, etc)
- Add a new utility 'gwcrontab' that can currently list, delete and add 'atsvc' jobs. It still displays times and dates as integers though, will fix that later.

Some screenshots available at:
 http://samba.org/~jelmer/gwcrontab/
 2007-10-10 12:56:55 -05:00
Stefan Metzmacher
ae2e6b5862 r1429: enable spnego in smbclient too. 
metze
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
c283837556 r1426: Fix some of my silly compile errors... 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
c5a1529d54 r1423: Make sure to destory the mem_ctx. 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Andrew Bartlett
6709c7010d r1422: StrnCaseCmp now needs to be non-static. 
Andrew Bartlett
 2007-10-10 12:56:55 -05:00
Stefan Metzmacher
79953dccc1 r1421: fix a uninitialized var (thanks valgrind:-) 
add a view debug messages

metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
db19d6047c r1420: be more strict reject if the context has the wrong type 
metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
19b0567ee5 r1419: spnego inside of dcerpc using alter_context/alter_context_resp 
instead of auth3

metze
 2007-10-10 12:56:54 -05:00
Andrew Bartlett
7596f311c9 r1418: Merge Samba 3.0's recent kerberos changes into Samba4. None of this 
is used yet.

Andrew Bartlett
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
e3760fcc17 r1409: if we have no user name don't use extended security 
the capabilities in the union smb_sesssetup should be used to decide
if we can use extented security

metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
e06898f88c r1406: I got spnego in the smb client working 
so I set 'use spnego = True'

metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
f1bbde6bb4 r1403: commit volkers initial RAP torture test 
we'll try to autogenerate the specific calls in future by pidl
and create a new subsystem for the rap lib

after that the server side will be added

metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
acde1358c9 r1402: we should prompt for a password if it's not given by -U 
metze
 2007-10-10 12:56:54 -05:00
Stefan Metzmacher
afe2efd143 r1377: add examples for config.mk sections 
so you want/need to use the new build system
just look at the top of build/smb_build/public.m4

and look at the examples in the rest of the tree

metze
 2007-10-10 12:56:54 -05:00
Tim Potter
45b4016530 r1374: Fix signed/unsigned warnings (actually found by g++) after unsigned int 
changes in r1018.
 2007-10-10 12:56:54 -05:00
Andrew Bartlett
1a6c2018dd r1372: Remove the 'default' case from the SPENGO state machine, and fix up 
some compiler warnings that allowed us to see.

Andrew Bartlett
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
f737932402 r1367: SPNEGO know uses gensec_subcontext_start() in all places 
metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
ec978555f0 r1366: handle the case where the client need to send the negTokenInit before 
getting something from the server.
(this is needed by SPNEGO in dcerpc)

metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
b1217a4ef6 r1365: in SPNEGO_SERVER_TARG we should not check the spnego_negResult 
because the client don't send this

metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
49e4d375e9 r1364: the SPNEGO_SERVER_TARG state is different from the SPNEGO_CLIENT_TARG 
the client checks but not send spnego_negResult

metze
 2007-10-10 12:56:53 -05:00
Stefan Metzmacher
69d685d817 r1363: add SPNEGO_NONE_RESULT as spnego_negResult value 
this should indicate that we don't send a spnego_negResult t all over the wire

metze
 2007-10-10 12:56:53 -05:00