diff options
author | Jeremy Allison <jra@samba.org> | 2007-03-17 00:32:54 +0000 |
---|---|---|
committer | Gerald (Jerry) Carter <jerry@samba.org> | 2007-10-10 12:18:40 -0500 |
commit | 5bfe638f2172e272741997100ee5ae8ff280494d (patch) | |
tree | 8997192548c6fea9e07b4d6134c17afa2689d813 /source/include | |
parent | f18e87ba6b6a3f4c16777cb5b6bf93a656800247 (diff) | |
download | samba-5bfe638f2172e272741997100ee5ae8ff280494d.tar.gz samba-5bfe638f2172e272741997100ee5ae8ff280494d.tar.xz samba-5bfe638f2172e272741997100ee5ae8ff280494d.zip |
r21865: Add in the stubs for SMB transport encryption. Will flesh
these out as I implement. Don't add to SAMBA_3_0_25, this
is experimental code.
NFSv4 you're now officially on notice... :-).
Jeremy.
Diffstat (limited to 'source/include')
-rw-r--r-- | source/include/smb.h | 1 | ||||
-rw-r--r-- | source/include/trans2.h | 23 |
2 files changed, 23 insertions, 1 deletions
diff --git a/source/include/smb.h b/source/include/smb.h index a54cebac103..2eed76eb809 100644 --- a/source/include/smb.h +++ b/source/include/smb.h @@ -79,6 +79,7 @@ #define WRITE_ERROR 4 /* This error code can go into the client smb_rw_error. */ #define READ_BAD_SIG 5 #define DO_NOT_DO_TDIS 6 /* cli_close_connection() check for this when smbfs wants to keep tree connected */ +#define READ_BAD_DECRYPT 7 #define DIR_STRUCT_SIZE 43 diff --git a/source/include/trans2.h b/source/include/trans2.h index 67a0e0fc526..32ea7d927f3 100644 --- a/source/include/trans2.h +++ b/source/include/trans2.h @@ -529,7 +529,7 @@ findfirst/findnext is SMB_FIND_FILE_UNIX_INFO2. (chflags) and lsattr */ #define CIFS_UNIX_POSIX_PATHNAMES_CAP 0x10 /* Use POSIX pathnames on the wire. */ #define CIFS_UNIX_POSIX_PATH_OPERATIONS_CAP 0x20 /* We can cope with POSIX open/mkdir/unlink etc. */ - +#define CIFS_UNIX_TRANSPORT_ENCRYPTION_CAP 0x40 /* We can do SPNEGO negotiations for encryption. */ #define SMB_QUERY_POSIX_FS_INFO 0x201 @@ -652,6 +652,27 @@ enum smb_whoami_flags { DOM_SID[] - list of SIDs (may be empty) */ +/* + * The following trans2 is done between client and server + * as a FSINFO call to set up the encryption state for transport + * encryption. + * + * The request looks like : + * + * [data block] -> SPNEGO framed GSSAPI request. + * + * The reply looks like : + * + * [data block] -> SPNEGO framed GSSAPI reply - if error + * is NT_STATUS_OK then we're done, if it's + * NT_STATUS_MORE_PROCESSING_REQUIRED then the + * client needs to keep going. If it's an + * error it can be any NT_STATUS error. + * + */ + +#define SMB_REQUEST_TRANSPORT_ENCRYPTION 0x203 + /* The query/set info levels for POSIX ACLs. */ #define SMB_QUERY_POSIX_ACL 0x204 #define SMB_SET_POSIX_ACL 0x204 |