1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
samba-mirror/source4
Joseph Sutton 3358b04a58 s4:kdc: Remove device PAC validation
In the first place, this check was only applicable to the Heimdal KDC,
the MIT KDC not having support for compounded authentication. Secondly,
it was redundant, because _kdc_fast_check_armor_pac() would have already
been called to verify the armor ticket; a second round of validation
achieved nothing. And finally, the check was flawed: it checked only
*explicitly* armored PACs, and so would have done nothing for an armored
*AS‐REQ*.

In short, this check was useless; remove it.

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-10-01 22:45:38 +00:00
..
auth s4:kdc: Add parameters for claims and device info to authn_policy_authenticate_to_service() 2023-10-01 22:45:38 +00:00
cldap_server s4:cldap_server: Add missing newline to logging message 2023-08-08 04:39:38 +00:00
client s4:client: Fix code spelling 2023-09-11 02:42:41 +00:00
cluster
dns_server s4-auth: pass lp_ctx to auth_generate_session_info() where possible 2023-09-26 23:45:35 +00:00
dsdb s4:dsdb: Add session info flag to indicate authentication with a device 2023-10-01 22:45:38 +00:00
echo_server s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
include lib: Remove smb_threads from includes.h 2022-04-26 21:41:29 +00:00
kdc s4:kdc: Remove device PAC validation 2023-10-01 22:45:38 +00:00
ldap_server s3:ldap_server: Fix code spelling 2023-08-14 21:45:29 +00:00
lib s4:lib: Fix code spelling 2023-08-14 21:45:29 +00:00
libcli s4:libcli: Fix code spelling 2023-09-11 02:42:41 +00:00
libnet s4:libnet: Fix code spelling 2023-09-11 02:42:41 +00:00
librpc libcli/security: Pass in claims evaluation state when building any security token 2023-09-26 23:45:35 +00:00
nbt_server librpc/nbt: Avoid reading invalid member of union 2023-07-07 01:14:06 +00:00
ntp_signd s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
ntvfs s4:ntvfs: Fix building with FORTIFY_SOURCE=2 2023-10-01 22:45:38 +00:00
param s4:param: Add missing newlines to logging messages 2023-08-08 04:39:38 +00:00
rpc_server s4:rpc_server: Use Builtin SID constant 2023-09-27 02:43:28 +00:00
samba s4:samba: Fix code spelling 2023-09-11 02:42:41 +00:00
script s4:script: Fix shellcheck errors in find_unused_options.sh 2022-08-22 14:20:36 +00:00
scripting s4:scripting: Prefer ‘x not in y’ to ‘not x in y’ 2023-09-14 21:35:29 +00:00
selftest tests/krb5: Add samba.tests.krb5.conditional_ace_tests 2023-09-28 04:35:05 +00:00
setup s4:setup: Fix script usage line 2023-09-14 21:35:29 +00:00
smb_server s4:smb_server: Fix code spelling 2023-08-21 23:37:29 +00:00
torture s4:torture: Fix building with FORTIFY_SOURCE=2 2023-10-01 22:45:38 +00:00
utils s4:utils: Fix shellcheck errors in test_samba_tool.sh 2022-08-22 20:35:36 +00:00
winbind CVE-2022-32746 ldb: Make use of functions for appending to an ldb_message 2022-07-27 10:52:36 +00:00
wrepl_server s4:wrepl_server: Correctly read ‘type’ element 2023-09-14 21:35:29 +00:00
.clang_complete
.valgrind_suppressions
wscript_build s4:client: Migrate cifsdd to new cmdline option parser 2021-06-16 00:34:38 +00:00