Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-06-01 | s4:ntlmssp Use common code for ntlmssp_sign.c | Andrew Bartlett | 2 | -18/+19 | |
The common code does not have a mem_ctx on ntlmssp_check_packet() and ntlmssp_unseal_packet(). We do however need some internal working of the code exposed, so some structures are moved to ntlmssp_sign.h Andrew Bartlett | |||||
2010-05-31 | s3:ntlmssp Move ntlmssp_sign.c from source3 to common code. | Andrew Bartlett | 4 | -0/+696 | |
This needs a small re-arrangement of the supporting code. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-31 | ntlmssp: Make the ntlmssp.h from source3/ a common header | Andrew Bartlett | 1 | -0/+139 | |
The code is not yet in common, but I hope to fix that soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-20 | Fix what looks like a cut-and-paste error in our read_negTokenInit() function. | Jeremy Allison | 1 | -4/+4 | |
We should never be calling asn1_push_XXX functions inside an asn1 reading function. Change asn1_push_tag() -> asn1_start_tag() and asn1_pop_tag() -> asn1_end_tag(). This allows us to connect to a NetApp filer at the Microsoft plugfest. Andrew PLEASE CHECK ! Jeremy. | |||||
2010-05-19 | Thanks to Andrew Bartlett's advice, fix the NTLMSSP version problem the ↵ | Jeremy Allison | 1 | -1/+4 | |
correct way. No more magic blobs :-). Use ndr_push_struct_blob() to push a properly formatted VERSION struct. Jeremy. | |||||
2010-05-18 | s3: Remove use of iconv_convenience. | Jelmer Vernooij | 1 | -8/+2 | |
2010-05-18 | Finish removal of iconv_convenience in public API's. | Jelmer Vernooij | 4 | -34/+14 | |
2010-04-11 | libcli/auth: Fix an uninitialized variable | Volker Lendecke | 1 | -2/+1 | |
value.dptr was used uninitialized in the "goto done;" | |||||
2010-04-06 | s4-waf: more dependencies on talloc | Andrew Tridgell | 1 | -1/+2 | |
these are needed so we can support a system talloc without using the bundled talloc.h | |||||
2010-04-06 | s4-waf: mark the wscript files as python so vim/emacs knows how to highlight ↵ | Andrew Tridgell | 1 | -0/+2 | |
them | |||||
2010-04-06 | s4-waf: install the rest of the headers | Andrew Tridgell | 1 | -5/+1 | |
2010-04-06 | build: commit all the waf build files in the tree | Andrew Tridgell | 1 | -0/+27 | |
2010-03-16 | libcli/auth/schannel_state_tdb.c - fix a memory leak | Matthias Dieter Wallnöfer | 1 | -0/+1 | |
2010-03-09 | libcli/auth/schannel_state_tdb.c - fix an obviously wrong error handling | Matthias Dieter Wallnöfer | 1 | -1/+0 | |
2010-03-05 | libcli/auth: add a const to des_crypt112_16() | Stefan Metzmacher | 2 | -2/+2 | |
metze | |||||
2010-03-03 | Fix typo in comments. | Karolin Seeger | 1 | -1/+1 | |
2010-02-26 | libcli/auth: print the error in the debug message | Stefan Metzmacher | 1 | -1/+2 | |
metze | |||||
2010-02-23 | s4:cleanup remove unused schannel ldb code | Simo Sorce | 2 | -339/+0 | |
2010-02-23 | s4:schannel merge code with s3 | Simo Sorce | 1 | -2/+2 | |
After looking at the s4 side of the (s)channel :) I found out that it makes more sense to simply make it use the tdb based code than redo the same changes done to s3 to simplify the interface. Ldb is slow, to the point it needs haks to pre-open the db to speed it up, yet that does not solve the lookup speed, with ldb it is always going to be slower. Looking through the history it is evident that the schannel database doesn't really need greate expanadability. And lookups are always done with a single Key. This seem a perfet fit for tdb while ldb looks unnecessarily complicated. The schannel database is not really a persistent one. It can be discared during an upgrade without causing any real issue. all it contains is temproary session data. | |||||
2010-02-23 | schannel_tdb: make code compilable in both trees | Simo Sorce | 2 | -51/+98 | |
2010-02-23 | s3:schannel streamline interface | Simo Sorce | 2 | -42/+181 | |
Make calling schannel much easier by removing the need to explicitly open the database. Let the abstraction do it instead. | |||||
2010-02-23 | s3:schannel fix memory hierarchy | Simo Sorce | 1 | -1/+1 | |
passing mem_ctx was causing creds->sid to be allocated on mem_ctx and not be child of creds as expected. When later in schannel_check_creds_state() we stole the creds on a different memory context the sid was left behind and the memory it points to freed when the temporary context was freed. | |||||
2010-02-23 | schannel: merge header files | Simo Sorce | 2 | -48/+34 | |
One almost empty header file was simply including another not included by anything else. Just merge them together. | |||||
2010-02-23 | s4:schannel more readable check logic | Simo Sorce | 2 | -12/+0 | |
Make the initial schannel check logic more understandable. Make it easy to define different policies depending on the caller's security requirements (Integrity/Privacy/Both/None) This is the same change applied to s3 | |||||
2010-02-23 | s3:schannel more readable check logic | Simo Sorce | 2 | -17/+0 | |
Make the initial schannel check logic more understandable. Make it easy to define different policies depending on ther caller's security requirements (Integrity/Privacy/Both/None) | |||||
2010-02-02 | Change uint_t to unsigned int in libcli | Matt Kraai | 3 | -3/+3 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
2010-01-07 | Simplify E_md5hash a bit | Volker Lendecke | 1 | -6/+2 | |
2009-12-22 | libcli/auth Make gd's NDR NTLMSSP parsers helpers common | Andrew Bartlett | 2 | -0/+189 | |
(but not built in Samba4 for now) | |||||
2009-10-24 | libcli/auth: initialize creds in netlogon_creds_client_init_session_key() | Stefan Metzmacher | 1 | -2/+3 | |
metze | |||||
2009-10-24 | libcli/auth: fix memory leak in schannel_creds_server_step_check_ldb() | Stefan Metzmacher | 1 | -24/+37 | |
metze | |||||
2009-10-24 | libcli/auth: don't leak the ldb_msg in schannel_store_session_key_ldb() | Stefan Metzmacher | 1 | -1/+1 | |
metze | |||||
2009-10-04 | s3/s4 common: fix up header file | Matthias Dieter Wallnöfer | 1 | -2/+1 | |
2009-09-17 | spnego: Support ASN.1 BIT STRING and use it in SPNEGO. | Kouhei Sutou | 2 | -8/+9 | |
Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2009-09-17 | spnego: add spnego_proto.h. | Günther Deschner | 2 | -1/+29 | |
Guenther | |||||
2009-09-17 | spnego: share spnego_parse. | Günther Deschner | 2 | -0/+477 | |
Guenther | |||||
2009-09-16 | libcli/auth: remove trailing whitespace. | Günther Deschner | 1 | -72/+72 | |
Guenther | |||||
2009-09-16 | libcli/auth: rewrite schannel sign/seal code to be more generic | Stefan Metzmacher | 2 | -162/+156 | |
This prepares support for HMAC-SHA256/AES. metze | |||||
2009-09-16 | schannel: remove last traces of gensec. | Günther Deschner | 1 | -2/+0 | |
Guenther | |||||
2009-09-16 | schannel: fully share schannel sign/seal between s3 and 4. | Günther Deschner | 1 | -0/+1 | |
Guenther | |||||
2009-09-16 | schannel: move schannel_sign to main directory. | Günther Deschner | 3 | -0/+351 | |
Guenther | |||||
2009-08-28 | s4: fix the build after ntlmssp header change. | Günther Deschner | 1 | -0/+1 | |
Guenther | |||||
2009-08-28 | libcli/auth: remove unused NTLMSSP_NAME_TYPE_ flags. | Günther Deschner | 2 | -8/+3 | |
Guenther | |||||
2009-08-27 | libcli/auth: add netlogon_creds_step_crypt() and netlogon_creds_first_step() | Stefan Metzmacher | 1 | -10/+21 | |
This abstracts the usage of crypto functions instead of directly calling des_crypt112(). metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2009-08-27 | libcli/auth: remove some useless lines | Stefan Metzmacher | 1 | -3/+0 | |
metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2009-08-27 | libcli/auth: remember schannel type in netlogon_creds_server_init() | Stefan Metzmacher | 1 | -0/+1 | |
metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2009-08-27 | libcli/auth: add tdb backend for schannel state. | Günther Deschner | 3 | -0/+239 | |
Guenther | |||||
2009-08-27 | libcli/auth: move netlogon_creds_CredentialState out of libcli. | Günther Deschner | 2 | -13/+1 | |
Guenther | |||||
2009-08-27 | s4-schannel: add ldb suffix to schannel functions. | Günther Deschner | 2 | -33/+33 | |
Guenther | |||||
2009-08-27 | libcli/auth: rename schannel_state.c to schannel_state_ldb.c. | Günther Deschner | 2 | -14/+14 | |
Guenther | |||||
2009-06-18 | s4: Call va_end() after all va_start()/va_copy() calls. | Andrew Kroeger | 1 | -0/+4 | |
This corrects the issues reaised in bug #6129, and some others that were not originally identified. It also accounts for some code that was in the original bug report but appears to have since been made common between S3 and S4. Thanks to Erik Hovland <erik@hovland.org> for the original bug report. |