summaryrefslogtreecommitdiff
path: root/source3/smbd/seal.c
AgeCommit message (Collapse)AuthorFilesLines
2011-05-05Fix many const compiler warnings.Jeremy Allison1-1/+1
2011-03-30s3-auth: smbd needs auth.hGünther Deschner1-0/+1
Guenther
2011-03-30s3: include smbd/smbd.h where needed.Günther Deschner1-0/+1
Guenther
2011-03-16s3-build: only include asn1 headers where actually needed.Günther Deschner1-0/+1
Guenther
2011-03-16s3-libsmb: move smb encryption structs into own header.Günther Deschner1-0/+1
Guenther
2010-10-08s3: Fix input check in is_encrypted_packetVolker Lendecke1-1/+3
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Fri Oct 8 07:40:52 UTC 2010 on sn-devel-104
2010-07-20Add approriate TALLOC_CTX's thoughout the spnego code. No more implicit NULL ↵Jeremy Allison1-4/+4
contexts. Jeremy.
2010-07-20Add TALLOC_CTX argument to spnego_parse_negTokenInit, reduceJeremy Allison1-2/+2
use of malloc, and data_blob(). Jeremy.
2010-07-20s3-auth: Move auth_ntlmssp wrappers in their own fileSimo Sorce1-0/+1
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-19s3-auth: Use talloc hierarchies to properly free auth_ntlmssp_state contextsSimo Sorce1-1/+1
Turn auth_ntlmssp_end into a destructor and attach it to auth_ntlmssp_state. Remote auth_ntlmssp_end and use TALLOC_FREE in the callers. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-05-31ntlmssp: Make the ntlmssp.h from source3/ a common headerAndrew Bartlett1-1/+1
The code is not yet in common, but I hope to fix that soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31s3:auth Remove AUTH_NTLMSSP_STATE typedef.Andrew Bartlett1-1/+1
typedefs are no longer preferred Samba style. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-31s3:auth Make AUTH_NTLMSSP_STATE a private structure.Andrew Bartlett1-3/+6
This makes it a little easier for it to writen in terms of GENSEC in future. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org>
2009-12-22s3:ntlmssp: only include ntlmssp.h where actually neededAndrew Bartlett1-0/+1
Andrew Bartlett
2009-09-17spnego: share spnego_parse.Günther Deschner1-0/+1
Guenther
2009-01-08s3:smbd: move all globals and static variables in globals.[ch]Stefan Metzmacher1-3/+1
The goal is to move all this variables into a big context structure. metze
2008-12-23Fix more asprintf warnings and some error path errors.Jeremy Allison1-2/+1
Jeremy.
2008-10-13s3: fix another build warning.Günther Deschner1-4/+4
Guenther
2008-10-12Cope with the fact that the data blobs returned are nowJelmer Vernooij1-4/+20
talloc-allocated. Ideally, this memory should be talloc-stolen (and perhaps have DATA_BLOB in the interface everywhere), but that requires some more complex changes so I've just changed it to copy it for now.
2008-04-07Remove unused variable.James Peach1-1/+0
(This used to be commit 3ed2c65bde0c2e5ad10cf777dae8a2d3e626a42c)
2008-04-07Fix Kerberos interop with Mac OS X 10.5 clients.Bill Ricker1-2/+5
Ignore optional req_flags. Use the Kerberos mechanism OID negotiated with the client rather than hardcoding OID_KERBEROS5_OLD. (This used to be commit 59a2bcf30fef14ecc826271862b645dd3a61cb48)
2008-02-14Currently we don't SPNEGO negotiate back to NTLMSSP. Note this.Jeremy Allison1-4/+16
Jeremy. (This used to be commit 8cd04b948bfba3896d40c9e314a197f60ad76833)
2008-01-08Simplify... plus add a debug message.Jeremy Allison1-5/+5
Jeremy. (This used to be commit bedc493874adaf783362ba7b821e2a6d985b96ea)
2008-01-08Correctly identify enc/non-enc packets.Jeremy Allison1-3/+5
Jeremy. (This used to be commit 647f13d0f1a270a68263b3b0403436f9d6cf1a0e)
2008-01-04Refactor the crypto code after a very helpful conversationJeremy Allison1-15/+29
with Volker. Mostly making sure we have data on the incoming packet type, not stored in the smb header. Jeremy. (This used to be commit c4e5a505043965eec77b5bb9bc60957e8f3b97c8)
2007-12-30As the encryption is stream based there's no reasonJeremy Allison1-0/+9
oplock breaks can't be encrypted. If we have multiple contexts I should probably attach them to the connection struct, but for now use the global context number. Jeremy. (This used to be commit 5b4b335ed0d1dc738f1f099e5c638361f3aede07)
2007-12-26Add SMB encryption. Still fixing client decrypt butJeremy Allison1-0/+703
negotiation works. Jeremy. (This used to be commit d78045601af787731f0737b8627450018902b104)
2007-10-10[GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch.Gerald (Jerry) Carter1-703/+0
(This used to be commit 5c6c8e1fe93f340005110a7833946191659d88ab)
2007-10-10r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell1-2/+1
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r22844: Introduce const DATA_BLOB data_blob_null = { NULL, 0, NULL }; andVolker Lendecke1-11/+11
replace all data_blob(NULL, 0) calls. (This used to be commit 3d3d61687ef00181f4f04e001d42181d93ac931e)
2007-10-10r22747: Fix some C++ warningsVolker Lendecke1-6/+3
(This used to be commit a66a04e9f11f6c4462f2b56b447bae4eca7b177c)
2007-10-10r22352: Wow - working gss SMB sealing !Jeremy Allison1-0/+3
Jeremy. (This used to be commit abcb2a4b0709ef84c50c1d9a85191dc3866cd138)
2007-10-10r22351: Making progress in tests...Jeremy Allison1-0/+7
Jeremy. (This used to be commit f1726e04eb1d63387cf955c907fe077b2201a3ae)
2007-10-10r22350: Add some helpful debug messages.Jeremy Allison1-1/+7
Jeremy. (This used to be commit bf2e6bd82dc0d35313677c6cb04357da1e74ce4f)
2007-10-10r22327: Finish the gss-spnego part of the seal code. NowJeremy Allison1-14/+16
for testing.... Jeremy. (This used to be commit 1c1f5360b67792f14b50835a2c5a4d4ac68aca8f)
2007-10-10r22262: fix the build on systems without GSS_C_NT_HOSTBASED_SERVICEStefan Metzmacher1-1/+4
metze (This used to be commit 402704b62972c223f3e70bcd6221dc7c3a64f4b9)
2007-10-10r22013: Move to SSPI framing (sig first in NTLM).Jeremy Allison1-3/+3
Jeremy (This used to be commit 22eaed76f01ea9d0184dcaf57adca23abc6330b9)
2007-10-10r21997: Implement the server side of gss seal negotiate.Jeremy Allison1-15/+86
Jeremy. (This used to be commit 6b923acfee59e39eea69e9e9a00f1f6118ed4270)
2007-10-10r21991: I hate Steve French :-). Add support for encryptionJeremy Allison1-15/+81
contexts.... Jeremy. (This used to be commit ae8f3649f773b8a8dcb55921536d038d3475322e)
2007-10-10r21969: Start working on the gss-side of the server negotiation.Jeremy Allison1-0/+86
Jeremy. (This used to be commit fbc569b530104679e47fe743963eb0c4384de6ae)
2007-10-10r21926: Fix missing enum specifier pointed out by Don McCall @ HP.Jeremy Allison1-3/+3
Thanks Don ! Jeremy. (This used to be commit 662344d1ec3593689de7602afa518ed98e10dc37)
2007-10-10r21925: Start to code up the gss acquire creds calls.Jeremy Allison1-6/+32
Jeremy. (This used to be commit 4a7fbc88520e8f5dfe53a7c5da68040271149da3)
2007-10-10r21917: Start to do the gss versions of sign+seal.Jeremy Allison1-4/+4
Jeremy. (This used to be commit a226645353a40047b72de1b96c3a7676a2bf1034)
2007-10-10r21904: Fix HP build -- thanks, DonVolker Lendecke1-1/+1
(This used to be commit 57efba97b634728ae75901cb76b904a5d82986a4)
2007-10-10r21900: Token exchange now seems to work, now why does theJeremy Allison1-1/+1
client encrypt fail ? Jeremy. (This used to be commit 6bd7c05290909ef9f5f377dd141a64ed0d654134)
2007-10-10r21897: Add in a basic raw NTLM encrypt request. NowJeremy Allison1-1/+30
for testing. Jeremy. (This used to be commit 783a7b3085a155d9652cd725bf2960cd272cb554)
2007-10-10r21894: Some refactoring of server side encryption context. SupportJeremy Allison1-27/+136
"raw" NTLM auth (no spnego). Jeremy. (This used to be commit 6b5ff7bd591b4f65e2eb767928db50ddf445f09a)
2007-10-10r21891: Finish server-side NTLM-SPNEGO negotiation support.Jeremy Allison1-33/+75
Now for the client part, and testing. Jeremy. (This used to be commit 487706701f5f4a92c8fd1da1f29fb44491bac064)
2007-10-10r21882: The server part of the code has to use an AUTH_NTLMSSP struct,Jeremy Allison1-0/+257
not just an NTLMSSP - grr. This complicates the re-use of common client and server code but I think I've got it right. Not turned on of valgrinded yet, but you can see it start to take shape ! Jeremy. (This used to be commit 60fc9c0aedf42dcd9df2ef9f1df07eaf3bca9bce)