summaryrefslogtreecommitdiff
path: root/source3/libsmb/smb_seal.c
AgeCommit message (Collapse)AuthorFilesLines
2011-10-21libcli/smb: move smb_seal.c to the toplevelStefan Metzmacher1-429/+0
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Oct 21 10:22:39 CEST 2011 on sn-devel-104
2011-10-21s3-ntlmssp Remove references to auth_ntlmssp_context from the smb sealing codeAndrew Bartlett1-21/+14
Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-21s3-seal use gensec_[un]wrap() instead of gensec_[un]seal_packet()Andrew Bartlett1-54/+41
This should not make a difference for NTLMSSP as it still calls the low level ntlmssp_[un]seal_packet() functions with the same input parameters. If we convert the gss-api/krb5 based code to gensec we have to use gensec_[un]wrap() as the wire format is different compared to gensec_[un]seal_packet() there. Andrew Bartlett Split from another commit by Stefan Metzmacher <metze@samba.org>
2011-10-21s3-ntlmssp use gensec_{seal,unseal,sign,check}_packetAndrew Bartlett1-3/+4
This avoids the indirection via the auth_ntlmsssp wrapper functions. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-10-21s3:libsmb/smb_seal: always use SAFE_FREE(buf) in common_free_enc_buffer()Stefan Metzmacher1-14/+1
There's no need to do gss-api specific stuff, the buffer is always malloc'ed. metze
2011-10-21s3:libsmb/smb_seal: use plain malloc() in common_ntlm_encrypt_buffer()Stefan Metzmacher1-2/+7
metze
2011-10-21s3:libsmb/smb_seal: avoid ads_errstr() dependency and use gssapi_error_string()Stefan Metzmacher1-9/+28
metze
2011-10-21s3:libsmb/smb_seal: make use of common [_]smb_[set]len_nbt() macrosStefan Metzmacher1-11/+11
metze
2011-10-19s3:libsmb/smb_seal: move smb_set_enclen() to smb_seal.c and make it static thereStefan Metzmacher1-0/+13
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Oct 19 19:06:35 CEST 2011 on sn-devel-104
2011-10-19s3:libsmb/smb_seal: s/uint16/uint16_tStefan Metzmacher1-3/+3
metze
2011-10-19s3:libsmb/smb_seal: make common_ntlm_[en|de]crypt_buffer staticStefan Metzmacher1-2/+2
metze
2011-10-18ntlmssp: Move ntlmssp code to auth/ntlmsspAndrew Bartlett1-1/+1
This brings in the code from both libcli/auth and source4/auth/ntlmssp. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-09-15s3:libsmb: remove unused cli_*encryption* functionsStefan Metzmacher1-45/+0
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Sep 15 17:52:00 CEST 2011 on sn-devel-104
2011-08-03s3-ntlmssp Use auth_ntlmssp_*() functions in more placesAndrew Bartlett1-8/+10
This allows auth_ntlmssp_get_ntlmssp_state() to be removed. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-05-23s3: Remove unused cli_[en|de]crypt_messageVolker Lendecke1-43/+0
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon May 23 12:15:33 CEST 2011 on sn-devel-104
2011-05-06s3-libsmb: move protos to libsmb/proto.hGünther Deschner1-0/+1
Guenther
2011-03-16s3-libsmb: move smb encryption structs into own header.Günther Deschner1-0/+1
Guenther
2010-07-19s3-ntlmssp: Remove ntlmssp_end and let the talloc hierarchy handle it.Simo Sorce1-1/+1
All the members are children of ntlmssp_state anyway. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-05-31s3:ntlmssp Use a TALLOC_CTX for ntlmssp_sign_packet() and ntlmssp_seal_packet()Andrew Bartlett1-3/+5
This ensures the results can't be easily left to leak. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31ntlmssp: Make the ntlmssp.h from source3/ a common headerAndrew Bartlett1-1/+1
The code is not yet in common, but I hope to fix that soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2009-12-22s3:ntlmssp: only include ntlmssp.h where actually neededAndrew Bartlett1-0/+1
Andrew Bartlett
2009-12-22s3:ntlmssp: remove the typedef NTLMSSP_STATEAndrew Bartlett1-2/+2
Andrew Bartlett
2009-03-24Fix two memleaks in the encryption codeVolker Lendecke1-1/+2
ntlmssp_seal_packet creates its own signature data blob, which we then have to free. Jeremy, please check and merge appropriately (Yes, I'm asking you to do the janitor work, I want you to *look* at this :-)) Volker
2008-12-05Fix for crash bug freeing a non-malloc'ed buffer if the client sends a ↵Volker Lendecke1-0/+7
non-encrypted packet with the crypto state set.
2008-02-28Add explicit buf arg to cli_encrypt_message and cli_calculate_sign_macVolker Lendecke1-3/+3
(This used to be commit db6ae9ed2326e6cd68475375d049084cf1d5a98c)
2008-01-04Refactor the crypto code after a very helpful conversationJeremy Allison1-12/+13
with Volker. Mostly making sure we have data on the incoming packet type, not stored in the smb header. Jeremy. (This used to be commit c4e5a505043965eec77b5bb9bc60957e8f3b97c8)
2007-12-26Add SMB encryption. Still fixing client decrypt butJeremy Allison1-0/+496
negotiation works. Jeremy. (This used to be commit d78045601af787731f0737b8627450018902b104)
2007-10-10[GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch.Gerald (Jerry) Carter1-496/+0
(This used to be commit 5c6c8e1fe93f340005110a7833946191659d88ab)
2007-10-10r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell1-2/+1
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r22747: Fix some C++ warningsVolker Lendecke1-3/+3
(This used to be commit a66a04e9f11f6c4462f2b56b447bae4eca7b177c)
2007-10-10r22391: Looks bigger than it is. Make "inbuf" availableJeremy Allison1-2/+2
to all callers of smb_setlen (via set_message() calls). This will allow the server to reflect back the correct encryption context. Jeremy. (This used to be commit 2d80a96120a5fe2fe726f00746d36d85044c4bdb)
2007-10-10r22389: Start preparing for multiple encryption contexts in theJeremy Allison1-3/+4
server. Allow server to reflect back to calling client the encryption context that was sent. Jeremy. (This used to be commit b49e90335d1e589916b5ab4992e3c4a2d221ca7e)
2007-10-10r22358: Use gss error to NTSTATUS mapping function for errors.Jeremy Allison1-4/+2
Jeremy. (This used to be commit 11fa0ca9e21d478a4b79b8ca1e92936b26b03fe0)
2007-10-10r22016: Try and fix the build - move things out of proto.hJeremy Allison1-2/+2
Jeremy. (This used to be commit 29933600cff458f6599e4604f9e861cd20fc8e38)
2007-10-10r22013: Move to SSPI framing (sig first in NTLM).Jeremy Allison1-26/+38
Jeremy (This used to be commit 22eaed76f01ea9d0184dcaf57adca23abc6330b9)
2007-10-10r21997: Implement the server side of gss seal negotiate.Jeremy Allison1-2/+6
Jeremy. (This used to be commit 6b923acfee59e39eea69e9e9a00f1f6118ed4270)
2007-10-10r21994: Ignore keepalives in the correct buffer (out not in :-).Jeremy Allison1-1/+1
Jeremy. (This used to be commit 9785528ddf26c4943e8bdfcf7694314a52218520)
2007-10-10r21991: I hate Steve French :-). Add support for encryptionJeremy Allison1-29/+82
contexts.... Jeremy. (This used to be commit ae8f3649f773b8a8dcb55921536d038d3475322e)
2007-10-10r21969: Start working on the gss-side of the server negotiation.Jeremy Allison1-6/+27
Jeremy. (This used to be commit fbc569b530104679e47fe743963eb0c4384de6ae)
2007-10-10r21926: Fix missing enum specifier pointed out by Don McCall @ HP.Jeremy Allison1-6/+6
Thanks Don ! Jeremy. (This used to be commit 662344d1ec3593689de7602afa518ed98e10dc37)
2007-10-10r21923: Add in the gss decrypt.Jeremy Allison1-3/+45
Jeremy. (This used to be commit 00f58951b4cace06e51e7eb404605c7f3d366f38)
2007-10-10r21922: Fixed the build by rather horrid means. I really needJeremy Allison1-1/+4
to restructure libsmb/smb_signing.c so it isn't in the base libs path but lives in libsmb instead (like smb_seal.c does). Jeremy. (This used to be commit 1b828f051d0782201f697de15ff973bd6b097d5b)
2007-10-10r21917: Start to do the gss versions of sign+seal.Jeremy Allison1-20/+77
Jeremy. (This used to be commit a226645353a40047b72de1b96c3a7676a2bf1034)
2007-10-10r21916: Fix couple of "return" calls on void functions.Jeremy Allison1-2/+10
Ensure we ignore reqests to free keepalive buffers as we only copied these. Jeremy. (This used to be commit a184bdbe3c7bf0c44a8141898bfcb9971a332312)
2007-10-10r21912: There's no point checksumming the packet lengthJeremy Allison1-4/+4
this already has to be right. This makes the signed+sealed area the same as it will be with gss calls. Now to go implement them. Jeremy. (This used to be commit 80810af7d1137b3ddd3073581d5ec99fadaa81a5)
2007-10-10r21903: Get the length calculations right (I always forgetJeremy Allison1-16/+18
the 4 byte length isn't included in the length :-). We now have working NTLMSSP transport encryption with sign+seal. W00t! Jeremy. (This used to be commit d34584cb5c53c194693ce7236020ab83f60cd235)
2007-10-10r21897: Add in a basic raw NTLM encrypt request. NowJeremy Allison1-12/+12
for testing. Jeremy. (This used to be commit 783a7b3085a155d9652cd725bf2960cd272cb554)
2007-10-10r21894: Some refactoring of server side encryption context. SupportJeremy Allison1-0/+12
"raw" NTLM auth (no spnego). Jeremy. (This used to be commit 6b5ff7bd591b4f65e2eb767928db50ddf445f09a)
2007-10-10r21883: Try and fix the build by removing the prototypes forJeremy Allison1-2/+2
functions that take a gss context handle in includes.h Jeremy. (This used to be commit 638b03242d4a6b1df2477dad19240ed61a14a5a3)
generated by cgit (git 2.34.1) at 2024-07-26 23:24:34 +0000