summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* s3:kerberos_verify: ads_dedicated_keytab_verify_ticket() only needs read accessStefan Metzmacher2012-01-201-1/+1
| | | | metze
* s3:smbd/proto.h: remove unused do_map_to_guest() prototypeStefan Metzmacher2012-01-201-4/+0
| | | | metze
* build: Add -lz to wbinfo to fix build on some hostsAndrew Bartlett2012-01-201-1/+1
| | | | | | | | | This is required after the rework of the object lists for gensec_gse Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri Jan 20 23:33:14 CET 2012 on sn-devel-104
* s3: Fix the build on FreeBSD8Volker Lendecke2012-01-201-5/+6
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Fri Jan 20 21:58:04 CET 2012 on sn-devel-104
* s3:configure.in: move gss_wrap_iov check to the other function checksStefan Metzmacher2012-01-201-1/+1
| | | | | | | | | | This also makes sure we search for it if it's in -lgssapi instead of -lgssapi_krb5 or -lgss. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Jan 20 20:23:13 CET 2012 on sn-devel-104
* s3:configure.in: require gssapi for ads supportStefan Metzmacher2012-01-201-0/+1
| | | | | | This matches the waf checks. metze
* s3:configure.in: move krb5_set_real_time check to other function checksStefan Metzmacher2012-01-201-2/+1
| | | | metze
* s3:build: for now do not require gsskrb5_extract_authz_data_from_sec_contextStefan Metzmacher2012-01-202-9/+10
| | | | | | We do not use it yet. metze
* s3:configure.in: fix the shell logic in krb5 checksStefan Metzmacher2012-01-201-1/+1
| | | | metze
* torture: add spoolss overlapping driver deletion testsDavid Disseldorp2012-01-201-1/+118
| | | | | | | Signed-off-by: Andreas Schneider <asn@samba.org> Autobuild-User: David Disseldorp <ddiss@samba.org> Autobuild-Date: Fri Jan 20 18:20:14 CET 2012 on sn-devel-104
* s3-spoolss: fix printer_driver_files_in_use() call orderingDavid Disseldorp2012-01-201-8/+10
| | | | | | | | | | | | | | printer_driver_files_in_use() performs two tasks: it returns whether any of the files in the to-be-deleted driver overlap with other drivers, it also trims such files from the info structure passed in. In processing a DeletePrinterDataEx request with DPD_DELETE_UNUSED_FILES set, printer_driver_files_in_use() must be called to ensure files in use by other drivers are not removed. https://bugzilla.samba.org/show_bug.cgi?id=4942 Signed-off-by: Andreas Schneider <asn@samba.org>
* torture: confirm printer driver file removalDavid Disseldorp2012-01-201-1/+81
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* torture: add spoolss del printer driver testDavid Disseldorp2012-01-201-0/+63
| | | | | | | Test handling of DeletePrinterDriverEx when the DPD_DELETE_ALL_FILES flag is set. Signed-off-by: Andreas Schneider <asn@samba.org>
* s3-spoolss: fix printer driver version deletionDavid Disseldorp2012-01-201-167/+111
| | | | | | | | | | Spoolss delete printer driver code currently makes invalid version assumptions based on the architecture requested by the client. Ugly hacks are in place to cover removal of other versions (2 and 3). This change wraps multi version deletion in a simple for loop. Signed-off-by: Andreas Schneider <asn@samba.org>
* s3-spoolss: prefix print$ path on driver file deletionDavid Disseldorp2012-01-201-44/+37
| | | | | | | | | Driver file paths stored in the registry do not include the server path prefix. delete_driver_files() incorrectly assumes such a prefix. https://bugzilla.samba.org/show_bug.cgi?id=8697 Signed-off-by: Andreas Schneider <asn@samba.org>
* s3: Fix a typoVolker Lendecke2012-01-191-1/+1
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Thu Jan 19 13:43:07 CET 2012 on sn-devel-104
* Now make_connection_snum() is a static function that takes aJeremy Allison2012-01-191-33/+26
| | | | | | | | connection_struct as a parameter, fix the interface to allow it to return an NTSTATUS. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Jan 19 07:25:49 CET 2012 on sn-devel-104
* dynconfig/wscript: correctly cleanup PRIVATELIBDIR and MODULESDIR defaultsStefan Metzmacher2012-01-191-0/+2
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Jan 19 00:47:50 CET 2012 on sn-devel-104
* Fix bug 8710 - connections.tdb - major leak with SMB2.Jeremy Allison2012-01-183-22/+78
| | | | | | | | | Ensure the cnum used to claim the connection for SMB2 is the id that will be used for the SMB2 tcon. Based on code from Ira Cooper <ira@wakeful.net>. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Jan 18 23:14:32 CET 2012 on sn-devel-104
* s3-aio-pthread: num threads should be intVolker Lendecke2012-01-181-4/+2
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Wed Jan 18 21:04:20 CET 2012 on sn-devel-104
* auth/gensec: align common elements between gse_context and gensec_gssapi_stateAndrew Bartlett2012-01-181-3/+5
| | | | | | | Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Jan 18 19:29:40 CET 2012 on sn-devel-104
* s3-gse: align common elements between gse_context and gensec_gssapi_stateAndrew Bartlett2012-01-181-7/+8
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gensec: Add hook to allow gensec to know if kerberos is permittedAndrew Bartlett2012-01-181-0/+24
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse: Make gensec_gse cope with non-DCE GSSAPIAndrew Bartlett2012-01-181-5/+8
| | | | | | | | | The validation of the mutual authentication reply produces no further data to send to the server. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse: the server should not check for GSS_C_MUTUAL_FLAGStefan Metzmacher2012-01-181-6/+0
| | | | | | | It up to the client to ask for GSS_C_MUTUAL_FLAG, except for the dcerpc case, where the server is stricter. metze
* s3-gse: verify that we got GSS_C_DCE_STYLE when expectedStefan Metzmacher2012-01-181-0/+11
| | | | | | GSS_C_DCE_STYLE implies GSS_C_MUTUAL_FLAG, so also check for it. metze
* s3-gse Remove authenticated flag from gseAndrew Bartlett2012-01-181-7/+0
| | | | | | | | The only user for this flag is called only directly after it was set. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse remove special more_processing hook from gseAndrew Bartlett2012-01-181-12/+2
| | | | | | | | | The NT_STATUS_MORE_PROCESSING_REQUIRED status code is what gensec is expecting in any case. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse Rename gss_c_flags and ret_flags in gseAndrew Bartlett2012-01-181-18/+18
| | | | | | | | | This make it clearer what type of flags these are and matches gensec_gssapi Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse Rename gss_ctx to match gensec_gssapi_contextAndrew Bartlett2012-01-181-17/+17
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse Rename delegated_creds to match gensec_gssapi_contextAndrew Bartlett2012-01-181-4/+4
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc: pass struct ndr_interface_table down to ↵Andrew Bartlett2012-01-187-17/+16
| | | | | | | | | | | cli_pipe_open_generic/spnego() This allows the target service (as determined from the IDL) to be passed to GSSAPI (rather than the current, incorrect, "cifs"). Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-utils/net: pass struct ndr_interface_table downAndrew Bartlett2012-01-1813-138/+137
| | | | | | | | | This will allow the target service (as determined from the IDL) to be passed to GSSAPI (rather than the current, incorrect, "cifs"). Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-rpcclient: pass struct ndr_interface_table downAndrew Bartlett2012-01-1816-192/+187
| | | | | | | | | This will allow the target service (as determined from the IDL) to be passed to GSSAPI (rather than the current, incorrect, "cifs"). Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc Make cli_rpc_pipe_open_spnego_ntlmssp() genericAndrew Bartlett2012-01-185-130/+56
| | | | | | | | | This also avoids passing NULL as the server to gensec_set_target_hostname() in spnego_generic_init_client(). Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse gss_wrap_iov_length() only needs the type and lengthStefan Metzmacher2012-01-181-2/+4
| | | | metze
* s3-gse Make seal parameter a boolean for clarityAndrew Bartlett2012-01-181-2/+2
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc Remove special case for spnego session keyAndrew Bartlett2012-01-183-16/+8
| | | | | | | | SPNEGO is implemented only in terms of gensec mechanisms now. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc Remove special case for spnego dcerpc sign/sealAndrew Bartlett2012-01-181-92/+18
| | | | | | | | SPNEGO is implemented only in terms of gensec mechanisms now. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse Move GSS_C_DCE_STYLE backup definition to gse.cAndrew Bartlett2012-01-182-4/+4
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse Add constAndrew Bartlett2012-01-181-4/+4
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse Remove or make static unused/local-only GSE functionsAndrew Bartlett2012-01-182-270/+33
| | | | | | | | | The GSE layer is now used via the GENSEC module, so we do not need these functions exposed any more. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc Remove unused dcesrv_gssapi.[ch] functionsAndrew Bartlett2012-01-186-269/+1
| | | | | | | | | The code from dcesrv_gssapi.c is now in source3/auth/auth_generic.c as an auth callback. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc Remove layer around struct gensec_securityAndrew Bartlett2012-01-183-13/+11
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc: Simplify SPNEGO code now that all mechs use a struct gensec_securityAndrew Bartlett2012-01-185-96/+32
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc Call SPENGO/GSSAPI via the auth_generic layer and gensecAndrew Bartlett2012-01-186-231/+53
| | | | | | | | | | This simplifies a lot of code, as we know we are always dealing with a struct gensec_security, and allows the gensec module being used to implement GSSAPI to be swapped for AD-server operation. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc Allow spnego_generic_init_client to handle kerberos tooAndrew Bartlett2012-01-181-0/+2
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-librpc Call GSSAPI via the auth_generic layer and gensecAndrew Bartlett2012-01-185-329/+17
| | | | | | | | | | This simplifies a lot of code, as we know we are always dealing with a struct gensec_security, and allows the gensec module being used to implement GSSAPI to be swapped when required for AD-server operation. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-libsmb Use the gse_krb5 gensec module as clientAndrew Bartlett2012-01-182-2/+7
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-gse Make gse available as a gensec client moduleAndrew Bartlett2012-01-182-1/+3
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
generated by cgit (git 2.34.1) at 2025-09-26 17:38:17 +0000