summaryrefslogtreecommitdiff
path: root/source3/libsmb
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r22212: Cope with signature errors on sessionsetupX loginsJeremy Allison1-0/+20
where the server just reflects our signature back to us. Allow the upper layer to see the real error. Jeremy. (This used to be commit 6cf0b93b1d8cb97dc665e14ace94a259def67724)
2007-10-10r22154: Make struct smbdb_ctx an opaque pointer so users of the APIJeremy Allison1-0/+5
don't need to have tdb.h. Jeremy. (This used to be commit 512542c90a78006bda3470eed7fb6d3f6e708eed)
2007-10-10r22122: Start to fix csc issue with Vista. Make smbd supportJeremy Allison1-0/+1
the extended 7 word response for tconX rather than the 3 word one we supported previously. Jeremy. (This used to be commit 137953226a2d691259e7e84d6ae0dc24755e5a3a)
2007-10-10r22093: send also the correct OID_KERBEROS5 not only the brokenStefan Metzmacher1-1/+1
OID_KERBEROS_OLD one. metze (This used to be commit 294c69334fce1cbb74ae9eb5a06e17b397f994df)
2007-10-10r22092: - make spnego_parse_auth_response() more generic andStefan Metzmacher2-9/+16
not specific for NTLMSSP - it's possible that the server sends a mechOID and authdata if negResult != SPNEGO_NEG_RESULT_INCOMPLETE, but we still force the mechOID to be present if negResult == SPNEGO_NEG_RESULT_INCOMPLETE metze (This used to be commit e9f2aa22f90208a5e530ef3b68664151960a0a22)
2007-10-10r22091: Fix an uninitialized variable warningVolker Lendecke1-2/+1
(This used to be commit a6e1e39f1dcd9ebcb5db199fd152a861b9be929b)
2007-10-10r22045: As Volker noticed, skip_string's last argument isJeremy Allison4-18/+18
redundent. Remove it. Jeremy. (This used to be commit 140881cfbb59ce4a699b5900efe02bf315be7bd5)
2007-10-10r22016: Try and fix the build - move things out of proto.hJeremy Allison1-2/+2
Jeremy. (This used to be commit 29933600cff458f6599e4604f9e861cd20fc8e38)
2007-10-10r22014: Make us pass RANDOMIPC test again :-(. This is an ugly check-in,Jeremy Allison4-18/+21
but I've no option. Jeremy. (This used to be commit c3a565081d70b209a4f9e6e8f1859bf7194a5f74)
2007-10-10r22013: Move to SSPI framing (sig first in NTLM).Jeremy Allison1-26/+38
Jeremy (This used to be commit 22eaed76f01ea9d0184dcaf57adca23abc6330b9)
2007-10-10r22012: Ensure we use the same technique to pull the share modeJeremy Allison1-19/+21
data out that locking/locking.c does. Jeremy. (This used to be commit 1fec4da6d6267289bf93f930de4cb5e21c450e15)
2007-10-10r22009: change TDB_DATA from char * to unsigned char *Stefan Metzmacher3-12/+12
and fix all compiler warnings in the users metze (This used to be commit 3a28443079c141a6ce8182c65b56ca210e34f37f)
2007-10-10r22003: Fix from Jiri.Sasek@Sun.COM to wrap our krb5_locate_kdcJeremy Allison1-5/+13
call as smb_krb5_locate_kdc to prevent incorrect linking and crashes on Solaris. Jeremy. (This used to be commit 7d30737c8d851505e81a60443baf9a8c7e523472)
2007-10-10r22001: change prototype of dump_data(), so that it takes unsigned char * now,Stefan Metzmacher6-55/+55
which matches what samba4 has. also fix all the callers to prevent compiler warnings metze (This used to be commit fa322f0cc9c26a9537ba3f0a7d4e4a25941317e7)
2007-10-10r21998: Fix tdb keynames in netsamlogon_clear_cached_user().Günther Deschner1-15/+11
No point in deleting U/DOMAIN/RID and UG/DOMAIN/RID keys if we only store U/SID and UG/SID keys :-) Next we need to verify the need of calling netsamlogon_clear_cached_user() at all. Guenther (This used to be commit 78d13f14672b65c2d4798ce94322e945334eea62)
2007-10-10r21997: Implement the server side of gss seal negotiate.Jeremy Allison1-2/+6
Jeremy. (This used to be commit 6b923acfee59e39eea69e9e9a00f1f6118ed4270)
2007-10-10r21994: Ignore keepalives in the correct buffer (out not in :-).Jeremy Allison2-2/+2
Jeremy. (This used to be commit 9785528ddf26c4943e8bdfcf7694314a52218520)
2007-10-10r21993: Don't let keepalives interferece with sign or sealJeremy Allison1-0/+5
in the client code. Jeremy. (This used to be commit 3e901389feedadd64c6ba712ab09cdfb497a9e0a)
2007-10-10r21992: Fix keepalive processing when encryption turned on.Jeremy Allison1-6/+26
Jeremy. (This used to be commit 8f113ad1918dcd2746ec527ceb79a2a7baa1d415)
2007-10-10r21991: I hate Steve French :-). Add support for encryptionJeremy Allison3-33/+95
contexts.... Jeremy. (This used to be commit ae8f3649f773b8a8dcb55921536d038d3475322e)
2007-10-10r21990: Stop messing with the signing engine just becauseJeremy Allison2-20/+20
we're encrypted. This will make further changes and spec much more clear. Jeremy. (This used to be commit ffa3a5c508a494d22e8ee3ada424a6517ddf8923)
2007-10-10r21975: if we use the _bystring() version when storing, we should use it on ↵Stefan Metzmacher1-4/+2
fetch too... metze (This used to be commit d105723f063d617ef9f8394e7921749b21f1d755)
2007-10-10r21969: Start working on the gss-side of the server negotiation.Jeremy Allison1-6/+27
Jeremy. (This used to be commit fbc569b530104679e47fe743963eb0c4384de6ae)
2007-10-10r21967: Add conversion from gss errors to nt status.Jeremy Allison1-0/+102
Jeremy (This used to be commit 8ba138efd097b08dcfe98f99b67c77579babf250)
2007-10-10r21947: Fix the equivalent of memcpy(x, x, 16). FoundJeremy Allison1-1/+3
by valgrind on the build farm. Jeremy. (This used to be commit 6eed92dfd4da1f9979831bec8e0dcdee33fb53b4)
2007-10-10r21939: Fix missing initialization thatJeremy Allison1-1/+1
broke the build farm. Thanks to Metze for the heads up. Jeremy. (This used to be commit bb3623be3f2b0686b2b2e671e3e7bd9978f6ed9b)
2007-10-10r21932: fix compiler warning.Stefan Metzmacher1-1/+1
maybe also for 3.0.25 metze (This used to be commit 844dac912cb549b0524571df80fbaa7f2d9c36c2)
2007-10-10r21926: Fix missing enum specifier pointed out by Don McCall @ HP.Jeremy Allison2-13/+13
Thanks Don ! Jeremy. (This used to be commit 662344d1ec3593689de7602afa518ed98e10dc37)
2007-10-10r21923: Add in the gss decrypt.Jeremy Allison1-3/+45
Jeremy. (This used to be commit 00f58951b4cace06e51e7eb404605c7f3d366f38)
2007-10-10r21922: Fixed the build by rather horrid means. I really needJeremy Allison4-68/+46
to restructure libsmb/smb_signing.c so it isn't in the base libs path but lives in libsmb instead (like smb_seal.c does). Jeremy. (This used to be commit 1b828f051d0782201f697de15ff973bd6b097d5b)
2007-10-10r21917: Start to do the gss versions of sign+seal.Jeremy Allison1-20/+77
Jeremy. (This used to be commit a226645353a40047b72de1b96c3a7676a2bf1034)
2007-10-10r21916: Fix couple of "return" calls on void functions.Jeremy Allison1-2/+10
Ensure we ignore reqests to free keepalive buffers as we only copied these. Jeremy. (This used to be commit a184bdbe3c7bf0c44a8141898bfcb9971a332312)
2007-10-10r21912: There's no point checksumming the packet lengthJeremy Allison1-4/+4
this already has to be right. This makes the signed+sealed area the same as it will be with gss calls. Now to go implement them. Jeremy. (This used to be commit 80810af7d1137b3ddd3073581d5ec99fadaa81a5)
2007-10-10r21903: Get the length calculations right (I always forgetJeremy Allison1-16/+18
the 4 byte length isn't included in the length :-). We now have working NTLMSSP transport encryption with sign+seal. W00t! Jeremy. (This used to be commit d34584cb5c53c194693ce7236020ab83f60cd235)
2007-10-10r21902: Don't free the thing you're trying to set in the cli state.Jeremy Allison1-0/+1
Jeremy. (This used to be commit 1639366561bd63d7023c54f811e2f87dcbbd0a31)
2007-10-10r21899: At least we're getting to stage 2 of the blobJeremy Allison1-4/+10
exchange. Still not working but closer. Jeremy. (This used to be commit 2fde5c703d2390bc6685f34713dc996e69732f1a)
2007-10-10r21898: Added test command, fixed first valgrind bugs.Jeremy Allison1-3/+4
Now to investigate why it doesn't work :-). Jeremy. (This used to be commit 73f7c6cef8371ad63eb1dc3e79bfc78503dbd7a4)
2007-10-10r21897: Add in a basic raw NTLM encrypt request. NowJeremy Allison3-16/+159
for testing. Jeremy. (This used to be commit 783a7b3085a155d9652cd725bf2960cd272cb554)
2007-10-10r21894: Some refactoring of server side encryption context. SupportJeremy Allison2-2/+13
"raw" NTLM auth (no spnego). Jeremy. (This used to be commit 6b5ff7bd591b4f65e2eb767928db50ddf445f09a)
2007-10-10r21893: Update comments so they actually reflect reality...Rafal Szczesniak1-3/+3
rafal (This used to be commit 8f313061a4cbc69d8dd17aa282d79d07a9275242)
2007-10-10r21883: Try and fix the build by removing the prototypes forJeremy Allison1-2/+2
functions that take a gss context handle in includes.h Jeremy. (This used to be commit 638b03242d4a6b1df2477dad19240ed61a14a5a3)
2007-10-10r21882: The server part of the code has to use an AUTH_NTLMSSP struct,Jeremy Allison1-78/+24
not just an NTLMSSP - grr. This complicates the re-use of common client and server code but I think I've got it right. Not turned on of valgrinded yet, but you can see it start to take shape ! Jeremy. (This used to be commit 60fc9c0aedf42dcd9df2ef9f1df07eaf3bca9bce)
2007-10-10r21880: Make client and server calls into encryption code symetrical,Jeremy Allison2-91/+221
depending on encryption context pointer. Jeremy. (This used to be commit d3f3ced6c8a03d971143baf878158d671dfcbc3b)
2007-10-10r21876: Start adding in the seal implementation - prototype codeJeremy Allison1-2/+176
for the server side enc. (doesn't break anything). I'll keep updating this until I've got NTLM seal working on both client and server, then add in the gss level seal. Jeremy. (This used to be commit 530ac29abf23e920baa549e7cec55199edd8bd74)
2007-10-10r21865: Add in the stubs for SMB transport encryption. Will fleshJeremy Allison3-5/+77
these out as I implement. Don't add to SAMBA_3_0_25, this is experimental code. NFSv4 you're now officially on notice... :-). Jeremy. (This used to be commit 5bfe638f2172e272741997100ee5ae8ff280494d)
2007-10-10r21864: Reformatting.Jeremy Allison1-92/+92
Jeremy. (This used to be commit f18e87ba6b6a3f4c16777cb5b6bf93a656800247)
2007-10-10r21846: Try and fix the Darwin build which seems to have a strange krb5.Jeremy Allison1-0/+6
Jeremy. (This used to be commit 1e32b44bfcf7676b3a9f208054fa853e7066eafc)
2007-10-10r21845: Refactor the sessionsetupX code a little to allow usJeremy Allison1-0/+33
to return a NT_STATUS_TIME_DIFFERENCE_AT_DC error to a client when there's clock skew. Will help people debug this. Prepare us for being able to return the correct sessionsetupX "NT_STATUS_MORE_PROCESSING_REQUIRED" error with associated krb5 clock skew error to allow clients to re-sync time with us when we're eventually able to be a KDC. Jeremy. (This used to be commit c426340fc79a6b446033433b8de599130adffe28)
2007-10-10r21831: Back out r21823 for a while, this is going into a bzr tree first.Volker Lendecke1-4/+1
Volker (This used to be commit fd0ee6722ddfcb64b5cc9c699375524ae3d8709b)
2007-10-10r21823: Let secrets_store_machine_password() also store the account name. ↵Volker Lendecke1-1/+4
Not used yet, the next step will be a secrets_fetch_machine_account() function that also pulls the account name to be used in the appropriate places. Volker (This used to be commit f94e5af72e282f70ca5454cdf3aed510b747eb93)