summaryrefslogtreecommitdiffstats
path: root/libcli/auth/wscript_build
Commit message (Collapse)AuthorAgeFilesLines
* libcli/auth: add netlogon_creds_cli* infrastructureStefan Metzmacher2014-01-071-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This provides an abstraction to hide netlogon_creds_CredentialState, which is stored in a node local tdb. Where the global state (netlogon_creds_CredentialState) between client and server was only kept in memory (on the client side), we now use the abstracted netlogon_creds_cli_context. We now use a node specific computer name in order to establish individual netlogon sessions per node. If the caller wants to use some netlogon calls with credential chain (struct netr_Authenticator), netlogon_creds_cli_lock*() is used to get the current netlogon_creds_CredentialState in a g_lock'ed fashion, a talloc_free() will release the lock. The locking is needed as there might be more than one process (multiple winbindd child, cmdline tools) which want to talk to a specific domain controller. The usage of netlogon_creds_CredentialState needs to be serialized as it uses sequence numbers. LogonSamLogonEx doesn't use the credential chain, but for some operations it needs the global session in order to de/encrypt individual fields. It uses the lockless netlogon_creds_cli_get() and netlogon_creds_cli_validate() functions, which just make sure the session hasn't changed between get and validate. This is prepares the proper fix for a large number of bugs: https://bugzilla.samba.org/show_bug.cgi?id=6563 https://bugzilla.samba.org/show_bug.cgi?id=7944 https://bugzilla.samba.org/show_bug.cgi?id=7945 https://bugzilla.samba.org/show_bug.cgi?id=7568 https://bugzilla.samba.org/show_bug.cgi?id=8599 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
* auth/gensec: move libcli/auth/schannel_sign.c into schannel.cStefan Metzmacher2014-01-071-1/+1
| | | | | Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
* libcli/auth: convert to dbwrap.Rusty Russell2013-04-121-1/+1
| | | | | Signed-off-by: Rusty Russell <rusty@rustcorp.com.au> Reviewed-by: Jeremy Allison <jra@samba.org>
* UTIL_TDB: lowercase name.Jelmer Vernooij2012-05-031-1/+1
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Thu May 3 20:18:22 CEST 2012 on sn-devel-104
* Make krb5 wrapper library common so they can be used all overSimo Sorce2012-04-231-5/+1
|
* auth: Move the rest of the source4 gensec_ntlmssp code to the top levelAndrew Bartlett2012-02-171-2/+2
| | | | | | | | | | The ntlmssp_server code will be in common shortly, and aside from a symbol name or two, moving the client code causes no harm and makes less mess. We will also get the client code in common very soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s4-lsarpc handle more info levels in SetInfoTrustedDomain callsAndrew Bartlett2011-12-121-1/+1
| | | | | | | This uses the very helpful conversion functions written for the s3 lsa server and places these in common. Andrew Bartlett
* ntlmssp: Move ntlmssp code to auth/ntlmsspAndrew Bartlett2011-10-181-6/+5
| | | | | | | | | This brings in the code from both libcli/auth and source4/auth/ntlmssp. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* libcli/auth: Provide a struct loadparm_context to schannel callsAndrew Bartlett2011-10-131-1/+1
| | | | | | This will allow us to pass this down to the tdb_wrap layer. Andrew Bartlett
* libcli/util Bring samba4 unix -> nt_status code in common.Andrew Bartlett2011-06-201-1/+1
| | | | | | | | Due to library link orders, this is already the function that is being used. However we still need to sort out the duplicate symbol issues, probably by renaming things. Andrew Bartlett
* auth/kerberos Move all the PAC handling functions to auth/kerberosAndrew Bartlett2011-04-271-1/+1
|
* auth/kerberos: Create common helper to get the verified PAC from GSSAPIAndrew Bartlett2011-04-271-1/+1
| | | | | | | | | | | This only works for Heimdal and MIT Krb5 1.8, other versions will get an ACCESS_DEINED error. We no longer manually verify any details of the PAC in Samba for GSSAPI logins, as we never had the information to do it properly, and it is better to have the GSSAPI library handle it. Andrew Bartlett
* libcli/auth Move Samba4's gssapi_error_string from GENSEC to libcli/authAndrew Bartlett2011-04-271-1/+1
| | | | | | This will allow the GSSAPI PAC fetch code to use it. Andrew Bartlett
* Add missing dependency on com_err.Jelmer Vernooij2011-04-231-1/+1
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sat Apr 23 16:53:03 CEST 2011 on sn-devel-104
* libcli/auth Move PAC parsing and verification in common.Andrew Bartlett2011-04-201-2/+2
| | | | | | | | This uses the source3 PAC code (originally from Samba4) with some small changes to restore functionality needed by the torture tests, and to have a common API. Andrew Bartlett
* libcli/auth Move krb5 wrapper functions from s3 into commonAndrew Bartlett2011-04-141-1/+5
| | | | | | | | | This requires a small rework of the build system to ensure that the correct #define statements are made in both the s3 and top level builds. We now define the various HAVE_ macros in config.h at all times, using heimdal_build/wscript_configure when that is in use. Andrew Bartlett
* lib: make asn1_util a private libraryAndrew Tridgell2011-04-061-1/+1
| | | | | | | this prevents symbol duplication of the asn1 symbols in the service and ntvfs subsystems Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* build: moved spnego_parse.c into a common subsystemAndrew Tridgell2011-02-241-1/+5
|
* build: moved schannel_sign.c into a shared COMMON_SCHANNEL subsystemAndrew Tridgell2011-02-241-3/+3
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* build: moved libcli/auth/ntlmssp*.c into a common libcliauth.so libraryAndrew Tridgell2011-02-241-5/+10
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* libcli/auth: fix PAM_ERRORS subsystem build.Günther Deschner2011-02-111-1/+2
| | | | | | | | | | (waf-)god knows why, without this (fake) dependency, ./configure && make fails while including replace.h while ./configure.developer && make succeeds... Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Fri Feb 11 23:50:40 CET 2011 on sn-devel-104
* pam: share pam errors in a common location.Günther Deschner2011-02-081-0/+4
| | | | Guenther
* s4-tdb: make tdb-wrap into a private libraryAndrew Tridgell2010-10-301-1/+1
| | | | this prevents double linking of the tdb wrap code
* waf: Remove lib prefix from libraries manually.Jelmer Vernooij2010-10-261-1/+1
|
* s4: Rename LIBSAMBA-* to libsamba-*Jelmer Vernooij2010-10-241-1/+1
|
* libcli-auth: Remove unnecessary dependency on libsamba-hostconfig.Jelmer Vernooij2010-10-111-2/+2
|
* s4-waf: more dependencies on tallocAndrew Tridgell2010-04-061-1/+2
| | | | | these are needed so we can support a system talloc without using the bundled talloc.h
* s4-waf: mark the wscript files as python so vim/emacs knows how to highlight ↵Andrew Tridgell2010-04-061-0/+2
| | | | them
* s4-waf: install the rest of the headersAndrew Tridgell2010-04-061-5/+1
|
* build: commit all the waf build files in the treeAndrew Tridgell2010-04-061-0/+27
generated by cgit (git 2.34.1) at 2025-09-02 16:00:21 +0000