summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2012-01-11s3-librpc Set target service and server into gensecAndrew Bartlett1-0/+10
This will allow cli_rpc_pipe_open_generic_auth() to handle kerberos mechanisms. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-11s3-librpc Rename and rework cli_rpc_pipe_open_ntlmssp() to be genericAndrew Bartlett5-48/+61
This also includes renaming the helper function rpccli_ntlmssp_bind_data, and allows this function to operate on any gensec-supplied auth type. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-11s3-librpc Rename create_ntlmssp_auth_rpc_bind_req() to be more genericAndrew Bartlett1-6/+3
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-11gensec: move gensec_util.c to the top levelAndrew Bartlett1-0/+1
To do this some defines need to move to common_auth.h Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-11s3-librpc Return user principal name on supplied mem_ctxAndrew Bartlett1-3/+3
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-10krb5: Require gss_get_name_attribute or Heimdal's PAC parsing to build with krb5Andrew Bartlett2-0/+21
Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Jan 10 23:23:07 CET 2012 on sn-devel-104
2012-01-10krb5: Require krb5_string_to_key be available to build with krb5Andrew Bartlett2-0/+9
2012-01-10krb5: Require krb5_set_real_time is available to build with krb5Andrew Bartlett4-25/+12
2012-01-10krb5: Require krb5_principal_compare_any_realm be available to build with krb5Andrew Bartlett2-0/+9
2012-01-10krb5: Require krb5_get_renewed_creds be available to build with krb5Andrew Bartlett3-51/+14
2012-01-10krb5: Remove now unused checks for krb5_verify_checksumAndrew Bartlett1-10/+0
2012-01-10krb5: Require krb5_get_init_creds_opt_alloc/free for build with krb5Andrew Bartlett3-29/+18
This also assumes the modern API with a krb5_context argument. Andrew Bartlett
2012-01-10krb5: Require krb5_fwd_tgt_creds to be available to build with krb5Andrew Bartlett3-3/+12
2012-01-10krb5: Require krb5_get_host_realm and krb5_free_host_realm be available to ↵Andrew Bartlett3-4/+18
build with krb5
2012-01-10krb5: Require krb5_c_verify_checksum is available to build with krb5Andrew Bartlett2-16/+5
2012-01-10krb5: Require krb5_c_enctype_compare is available to build with krb5Andrew Bartlett3-6/+9
2012-01-10samba: check for AES encryption type defines.Günther Deschner2-0/+23
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Tue Jan 10 15:05:38 CET 2012 on sn-devel-104
2012-01-10s3-aio_pthread: Fix the buildVolker Lendecke1-1/+1
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Jan 10 11:54:01 CET 2012 on sn-devel-104
2012-01-10s3-aio_pthread: Make "pd_list" staticVolker Lendecke1-1/+1
2012-01-09s3: Remove an unused labelVolker Lendecke1-3/+0
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon Jan 9 23:07:32 CET 2012 on sn-devel-104
2012-01-09s3-waf: rpcclient does not need libads.so.Günther Deschner1-1/+1
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Mon Jan 9 12:06:06 CET 2012 on sn-devel-104
2012-01-09s3-passdb: remove a forward declaration.Günther Deschner1-7/+6
Guenther
2012-01-09s3-libads: pretty print a keytab list.Günther Deschner1-2/+2
Guenther
2012-01-09s3-pdbtest: only test trusted domains when pdb backends offers trusted ↵Günther Deschner1-74/+89
domain support. Guenther
2012-01-09s3-libads: fix malloc/talloc mismatch in ads_keytab_verify_ticket().Günther Deschner1-1/+1
Guenther
2012-01-09s3-build: Remove unused hooks to set smbtorture4 and test argsAndrew Bartlett3-70/+0
These were left around after the selftest.pl script was introduced. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Mon Jan 9 06:13:21 CET 2012 on sn-devel-104
2012-01-09s3-libsmb: Do not look up FQDN or use host/ for krb5 encrypted CIFSAndrew Bartlett1-12/+1
This is important, as we want to use exactly the same name and ticket that the libsmb session setup code used, so we do not hit the KDC twice. For the session setup to have succeded using the default 'client use spnego principal = no', the cifs/ principal must exist anyway, so looking for host/ is pointless. The case of 'client use spnego principal = yes' was never supported here. Andrew Bartlett
2012-01-09s3-sefltest Make krb5 tests contain the word krb5Andrew Bartlett1-3/+3
2012-01-09s3-selftst Add encrypted CIFS testing with kerberosAndrew Bartlett1-9/+11
2012-01-09s3-libsmb: match the rest of Samba3 in kerberos name selection in smb sealingAndrew Bartlett1-17/+16
This mirrors 860ad734ba77238d187520f72afcbdc1c73d94ef which in turn mirrors the behaviour of the libsmb client code at session setup time. Andrew Bartlett
2012-01-09s3-selftest: Add test for smbclient kerberos supportAndrew Bartlett2-0/+31
2012-01-09s3-build SMBTORTRUE4 variable is unused in make testAndrew Bartlett1-2/+0
2012-01-09s3-build SAMBA4SHAREDIR is unused in make testAndrew Bartlett1-1/+1
2012-01-09s3-build: smbtorture4 can be built regardless of use_adsAndrew Bartlett1-4/+0
2012-01-09s3-selftest: remove smb4torture_possible and add have_ads_supportAndrew Bartlett1-41/+58
The smb4torture_possible check has already been hidden in plansmbtorturetestsuite to reduce extra complexity and indentation. The have_ads_support check will allow ADS tests to be run when we do not have the ability to run smbtorture4 Andrew Bartlett
2012-01-09s3-selftest Hide smb4torture_possible inside plansmbtorturetestsuite()Andrew Bartlett1-5/+7
2012-01-06Remove the commented out code.Jeremy Allison1-52/+1
2012-01-06Comment out sys_get_number_of_cores() as we're no longer using this.Jeremy Allison2-0/+4
2012-01-06Add "aio num threads" parameter to allow manual configuration ofJeremy Allison1-16/+15
threads via smb.conf if required. Ignore the number of cores. See comments inline.
2012-01-06Fix format warning message.Jeremy Allison1-1/+1
2012-01-06s3: Avoid a potential alignment requirement issueVolker Lendecke1-6/+5
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Fri Jan 6 18:58:11 CET 2012 on sn-devel-104
2012-01-06s3: Avoid a potential alignment requirement issueVolker Lendecke1-3/+2
2012-01-06s3: Use DELETE_ON_CLOSE instead of unlinkVolker Lendecke1-7/+6
2012-01-06s3-ntlmssp Remove unused ntlmssp_set_hashes() and do not set an invalid LM hashAndrew Bartlett2-30/+21
When E_deshash() returns false, it indicates that the password is either > 14 chars in length, or could not be represented as an LM hash value for some other reason. In this case, we should not regard the LM hash being missing as an error or a no-password situation. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Jan 6 14:59:13 CET 2012 on sn-devel-104
2012-01-06ntlmssp: merge initial packet implementationsAndrew Bartlett1-8/+21
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-06s3-winbindd: convert cached credentials to use auth_generic/gensec for NTLMSSPAndrew Bartlett1-33/+46
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-06s3-torture convert smb2 test to use auth_generic/gensec for NTLMSSPAndrew Bartlett1-67/+101
Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Jan 6 12:09:12 CET 2012 on sn-devel-104
2012-01-06s3:SMB2-SESSION-RECONNECT: also expect NETWORK_NAME_DELETED is signing isn't ↵Stefan Metzmacher1-1/+2
used metze
2012-01-06s3-libads Use NTLMSSP via auth_generic/gensecAndrew Bartlett1-90/+79
This allows us to use the shared gensec_wrap() implementation already used by the smb sealing code, as well as making this code more generic. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-01-06s3-libsmb Make auth_ntlmssp client more genericAndrew Bartlett5-55/+81
As well as renaming, this allows us to start the mech by DCE/RPC auth type or OID. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>