summaryrefslogtreecommitdiff
path: root/source3/libsmb/smb_seal.c
AgeCommit message (Collapse)AuthorFilesLines
2010-05-31s3:ntlmssp Use a TALLOC_CTX for ntlmssp_sign_packet() and ntlmssp_seal_packet()Andrew Bartlett1-3/+5
This ensures the results can't be easily left to leak. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31ntlmssp: Make the ntlmssp.h from source3/ a common headerAndrew Bartlett1-1/+1
The code is not yet in common, but I hope to fix that soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2009-12-22s3:ntlmssp: only include ntlmssp.h where actually neededAndrew Bartlett1-0/+1
Andrew Bartlett
2009-12-22s3:ntlmssp: remove the typedef NTLMSSP_STATEAndrew Bartlett1-2/+2
Andrew Bartlett
2009-03-24Fix two memleaks in the encryption codeVolker Lendecke1-1/+2
ntlmssp_seal_packet creates its own signature data blob, which we then have to free. Jeremy, please check and merge appropriately (Yes, I'm asking you to do the janitor work, I want you to *look* at this :-)) Volker
2008-12-05Fix for crash bug freeing a non-malloc'ed buffer if the client sends a ↵Volker Lendecke1-0/+7
non-encrypted packet with the crypto state set.
2008-02-28Add explicit buf arg to cli_encrypt_message and cli_calculate_sign_macVolker Lendecke1-3/+3
(This used to be commit db6ae9ed2326e6cd68475375d049084cf1d5a98c)
2008-01-04Refactor the crypto code after a very helpful conversationJeremy Allison1-12/+13
with Volker. Mostly making sure we have data on the incoming packet type, not stored in the smb header. Jeremy. (This used to be commit c4e5a505043965eec77b5bb9bc60957e8f3b97c8)
2007-12-26Add SMB encryption. Still fixing client decrypt butJeremy Allison1-0/+496
negotiation works. Jeremy. (This used to be commit d78045601af787731f0737b8627450018902b104)
2007-10-10[GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch.Gerald (Jerry) Carter1-496/+0
(This used to be commit 5c6c8e1fe93f340005110a7833946191659d88ab)
2007-10-10r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell1-2/+1
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r22747: Fix some C++ warningsVolker Lendecke1-3/+3
(This used to be commit a66a04e9f11f6c4462f2b56b447bae4eca7b177c)
2007-10-10r22391: Looks bigger than it is. Make "inbuf" availableJeremy Allison1-2/+2
to all callers of smb_setlen (via set_message() calls). This will allow the server to reflect back the correct encryption context. Jeremy. (This used to be commit 2d80a96120a5fe2fe726f00746d36d85044c4bdb)
2007-10-10r22389: Start preparing for multiple encryption contexts in theJeremy Allison1-3/+4
server. Allow server to reflect back to calling client the encryption context that was sent. Jeremy. (This used to be commit b49e90335d1e589916b5ab4992e3c4a2d221ca7e)
2007-10-10r22358: Use gss error to NTSTATUS mapping function for errors.Jeremy Allison1-4/+2
Jeremy. (This used to be commit 11fa0ca9e21d478a4b79b8ca1e92936b26b03fe0)
2007-10-10r22016: Try and fix the build - move things out of proto.hJeremy Allison1-2/+2
Jeremy. (This used to be commit 29933600cff458f6599e4604f9e861cd20fc8e38)
2007-10-10r22013: Move to SSPI framing (sig first in NTLM).Jeremy Allison1-26/+38
Jeremy (This used to be commit 22eaed76f01ea9d0184dcaf57adca23abc6330b9)
2007-10-10r21997: Implement the server side of gss seal negotiate.Jeremy Allison1-2/+6
Jeremy. (This used to be commit 6b923acfee59e39eea69e9e9a00f1f6118ed4270)
2007-10-10r21994: Ignore keepalives in the correct buffer (out not in :-).Jeremy Allison1-1/+1
Jeremy. (This used to be commit 9785528ddf26c4943e8bdfcf7694314a52218520)
2007-10-10r21991: I hate Steve French :-). Add support for encryptionJeremy Allison1-29/+82
contexts.... Jeremy. (This used to be commit ae8f3649f773b8a8dcb55921536d038d3475322e)
2007-10-10r21969: Start working on the gss-side of the server negotiation.Jeremy Allison1-6/+27
Jeremy. (This used to be commit fbc569b530104679e47fe743963eb0c4384de6ae)
2007-10-10r21926: Fix missing enum specifier pointed out by Don McCall @ HP.Jeremy Allison1-6/+6
Thanks Don ! Jeremy. (This used to be commit 662344d1ec3593689de7602afa518ed98e10dc37)
2007-10-10r21923: Add in the gss decrypt.Jeremy Allison1-3/+45
Jeremy. (This used to be commit 00f58951b4cace06e51e7eb404605c7f3d366f38)
2007-10-10r21922: Fixed the build by rather horrid means. I really needJeremy Allison1-1/+4
to restructure libsmb/smb_signing.c so it isn't in the base libs path but lives in libsmb instead (like smb_seal.c does). Jeremy. (This used to be commit 1b828f051d0782201f697de15ff973bd6b097d5b)
2007-10-10r21917: Start to do the gss versions of sign+seal.Jeremy Allison1-20/+77
Jeremy. (This used to be commit a226645353a40047b72de1b96c3a7676a2bf1034)
2007-10-10r21916: Fix couple of "return" calls on void functions.Jeremy Allison1-2/+10
Ensure we ignore reqests to free keepalive buffers as we only copied these. Jeremy. (This used to be commit a184bdbe3c7bf0c44a8141898bfcb9971a332312)
2007-10-10r21912: There's no point checksumming the packet lengthJeremy Allison1-4/+4
this already has to be right. This makes the signed+sealed area the same as it will be with gss calls. Now to go implement them. Jeremy. (This used to be commit 80810af7d1137b3ddd3073581d5ec99fadaa81a5)
2007-10-10r21903: Get the length calculations right (I always forgetJeremy Allison1-16/+18
the 4 byte length isn't included in the length :-). We now have working NTLMSSP transport encryption with sign+seal. W00t! Jeremy. (This used to be commit d34584cb5c53c194693ce7236020ab83f60cd235)
2007-10-10r21897: Add in a basic raw NTLM encrypt request. NowJeremy Allison1-12/+12
for testing. Jeremy. (This used to be commit 783a7b3085a155d9652cd725bf2960cd272cb554)
2007-10-10r21894: Some refactoring of server side encryption context. SupportJeremy Allison1-0/+12
"raw" NTLM auth (no spnego). Jeremy. (This used to be commit 6b5ff7bd591b4f65e2eb767928db50ddf445f09a)
2007-10-10r21883: Try and fix the build by removing the prototypes forJeremy Allison1-2/+2
functions that take a gss context handle in includes.h Jeremy. (This used to be commit 638b03242d4a6b1df2477dad19240ed61a14a5a3)
2007-10-10r21882: The server part of the code has to use an AUTH_NTLMSSP struct,Jeremy Allison1-78/+24
not just an NTLMSSP - grr. This complicates the re-use of common client and server code but I think I've got it right. Not turned on of valgrinded yet, but you can see it start to take shape ! Jeremy. (This used to be commit 60fc9c0aedf42dcd9df2ef9f1df07eaf3bca9bce)
2007-10-10r21880: Make client and server calls into encryption code symetrical,Jeremy Allison1-88/+211
depending on encryption context pointer. Jeremy. (This used to be commit d3f3ced6c8a03d971143baf878158d671dfcbc3b)
2007-10-10r21876: Start adding in the seal implementation - prototype codeJeremy Allison1-2/+176
for the server side enc. (doesn't break anything). I'll keep updating this until I've got NTLM seal working on both client and server, then add in the gss level seal. Jeremy. (This used to be commit 530ac29abf23e920baa549e7cec55199edd8bd74)
2007-10-10r21865: Add in the stubs for SMB transport encryption. Will fleshJeremy Allison1-0/+41
these out as I implement. Don't add to SAMBA_3_0_25, this is experimental code. NFSv4 you're now officially on notice... :-). Jeremy. (This used to be commit 5bfe638f2172e272741997100ee5ae8ff280494d)