diff options
| author | Jeremy Allison <jra@samba.org> | 2007-03-17 00:32:54 +0000 |
|---|---|---|
| committer | Gerald (Jerry) Carter <jerry@samba.org> | 2007-10-10 12:18:40 -0500 |
| commit | ecd496f06654e8316260c9a6ddab5e473f9cc452 (patch) | |
| tree | 818b389212a4939094eebb4f60ee2ce83d1d7527 /source3/include | |
| parent | c2fd7de44e7ba8a7d93110a6f579878697ceaa8d (diff) | |
| download | samba-ecd496f06654e8316260c9a6ddab5e473f9cc452.tar.gz samba-ecd496f06654e8316260c9a6ddab5e473f9cc452.tar.bz2 samba-ecd496f06654e8316260c9a6ddab5e473f9cc452.zip | |
r21865: Add in the stubs for SMB transport encryption. Will flesh
these out as I implement. Don't add to SAMBA_3_0_25, this
is experimental code.
NFSv4 you're now officially on notice... :-).
Jeremy.
(This used to be commit 5bfe638f2172e272741997100ee5ae8ff280494d)
Diffstat (limited to 'source3/include')
| -rw-r--r-- | source3/include/smb.h | 1 | ||||
| -rw-r--r-- | source3/include/trans2.h | 23 |
2 files changed, 23 insertions, 1 deletions
diff --git a/source3/include/smb.h b/source3/include/smb.h index a54cebac10..2eed76eb80 100644 --- a/source3/include/smb.h +++ b/source3/include/smb.h @@ -79,6 +79,7 @@ #define WRITE_ERROR 4 /* This error code can go into the client smb_rw_error. */ #define READ_BAD_SIG 5 #define DO_NOT_DO_TDIS 6 /* cli_close_connection() check for this when smbfs wants to keep tree connected */ +#define READ_BAD_DECRYPT 7 #define DIR_STRUCT_SIZE 43 diff --git a/source3/include/trans2.h b/source3/include/trans2.h index 67a0e0fc52..32ea7d927f 100644 --- a/source3/include/trans2.h +++ b/source3/include/trans2.h @@ -529,7 +529,7 @@ findfirst/findnext is SMB_FIND_FILE_UNIX_INFO2. (chflags) and lsattr */ #define CIFS_UNIX_POSIX_PATHNAMES_CAP 0x10 /* Use POSIX pathnames on the wire. */ #define CIFS_UNIX_POSIX_PATH_OPERATIONS_CAP 0x20 /* We can cope with POSIX open/mkdir/unlink etc. */ - +#define CIFS_UNIX_TRANSPORT_ENCRYPTION_CAP 0x40 /* We can do SPNEGO negotiations for encryption. */ #define SMB_QUERY_POSIX_FS_INFO 0x201 @@ -652,6 +652,27 @@ enum smb_whoami_flags { DOM_SID[] - list of SIDs (may be empty) */ +/* + * The following trans2 is done between client and server + * as a FSINFO call to set up the encryption state for transport + * encryption. + * + * The request looks like : + * + * [data block] -> SPNEGO framed GSSAPI request. + * + * The reply looks like : + * + * [data block] -> SPNEGO framed GSSAPI reply - if error + * is NT_STATUS_OK then we're done, if it's + * NT_STATUS_MORE_PROCESSING_REQUIRED then the + * client needs to keep going. If it's an + * error it can be any NT_STATUS error. + * + */ + +#define SMB_REQUEST_TRANSPORT_ENCRYPTION 0x203 + /* The query/set info levels for POSIX ACLs. */ #define SMB_QUERY_POSIX_ACL 0x204 #define SMB_SET_POSIX_ACL 0x204 |