summaryrefslogtreecommitdiffstats
path: root/source3/libads/authdata.c
Commit message (Collapse)AuthorAgeFilesLines
* auth/gensec: treat struct gensec_security_ops as const if possible.Stefan Metzmacher2013-08-101-5/+6
| | | | | | Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
* auth/gensec: introduce gensec_internal.hStefan Metzmacher2013-08-101-0/+1
| | | | | | | | | | We should treat most gensec related structures private. It's a long way, but this is a start. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
* auth: Common function for retrieving PAC_LOGIN_INFO from PACChristof Schmitt2012-07-061-26/+3
| | | | | | | | Several functions use the same logic as kerberos_pac_logon_info. Move kerberos_pac_logon_info to common code and reuse it to remove the code duplication. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s3-param: Rename loadparm_s3_context -> loadparm_s3_helpersAndrew Bartlett2012-06-271-1/+1
| | | | | | | | | | | | | | | | | This helps clarify the role of this structure and wrapper function. The purpose here is to provide helper functions to the lib/param loadparm_context that point back at the s3 lp_ functions. This allows a struct loadparm_context to be passed to any point in the code, and always refer to the correct loadparm system. If this has not been set, the variables loaded in the lib/param code will be returned. As requested by Michael Adam. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Jun 27 17:11:16 CEST 2012 on sn-devel-104
* s3: Attempt to fix the build without kerberosVolker Lendecke2012-04-241-1/+2
| | | | | Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Tue Apr 24 15:04:14 CEST 2012 on sn-devel-104
* Make krb5 wrapper library common so they can be used all overSimo Sorce2012-04-231-0/+1
|
* s3-libads: Rework kerberos_return_pac() to use GENSEC for the server-sideAndrew Bartlett2012-04-031-22/+167
| | | | | | | | | This removes the last user of ads_verify_ticket(), and means that we only have one code path to verify an incoming krb5 (GSSAPI) ticket. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-param Remove special case for global_myname(), rename to lp_netbios_name()Andrew Bartlett2011-06-091-1/+1
| | | | | | | | There is no reason this can't be a normal constant string in the loadparm system, now that we have lp_set_cmdline() to handle overrides correctly. Andrew Bartlett
* libcli/auth Move PAC parsing and verification in common.Andrew Bartlett2011-04-201-317/+0
| | | | | | | | This uses the source3 PAC code (originally from Samba4) with some small changes to restore functionality needed by the torture tests, and to have a common API. Andrew Bartlett
* s3-krb: Reformat and add doxygen comment to decode_pac_data()Simo Sorce2010-08-301-63/+91
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3: avoid global include of ads.h.Günther Deschner2010-08-051-0/+1
| | | | Guenther
* s3-libsmb: Use data_blob_talloc to get krb5 ticket and session keysSimo Sorce2010-07-201-1/+2
|
* s3: remove authdata.hGünther Deschner2010-06-031-1/+0
| | | | Guenther
* s3: Remove use of iconv_convenience.Jelmer Vernooij2010-05-181-13/+7
|
* s3:kerberos Return PAC_LOGON_INFO rather than the full PAC_DATAAndrew Bartlett2010-05-111-116/+6
| | | | | | | | | | | | | | | All the callers just want the PAC_LOGON_INFO, so search for that in ads_verify_ticket(), and don't bother the callers with the rest of the PAC. This change makes sense on it's own (removing boilerplate wrappers that just confuse the code), but it also makes it much easier to implement a matching ads_verify_ticket() function in Samba4 for the s3compat proposal. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3: Fix a memleak in check_pac_checksumVolker Lendecke2010-05-041-2/+8
|
* s3-kerberos: do not include authdata headers before including krb5 headers.Günther Deschner2009-11-271-0/+1
| | | | Guenther
* s3-kerberos: only use krb5 headers where required.Günther Deschner2009-11-271-0/+1
| | | | | | | This seems to be the only way to deal with mixed heimdal/MIT setups during merged build. Guenther
* Remove unused variable warning.Jeremy Allison2009-11-121-1/+0
| | | | Jeremy.
* s3-kerberos: remove smb_krb5_get_tkt_from_creds().Günther Deschner2009-11-121-60/+4
| | | | | | | Now that cli_krb5_get_ticket() already handles S4U2SELF impersonation, remove smb_krb5_get_tkt_from_creds() which is not required anymore. Guenther
* s3-kerberos: let smb_krb5_get_tkt_from_creds() compile with older heimdal libs.Günther Deschner2009-11-061-1/+1
| | | | Guenther
* s3-kerberos: support S4U2SELF impersionation through cli_krb5_get_ticket().Günther Deschner2009-11-061-1/+2
| | | | Guenther
* s3-kerberos: add impersonate_principal for kerberos_return_pac_X calls.Günther Deschner2009-11-061-1/+25
| | | | Guenther
* s3-kerberos: add smb_krb5_get_tkt_from_creds().Günther Deschner2009-11-061-0/+40
| | | | Guenther
* s3:kerberos Rework smb_krb5_unparse_name() to take a talloc contextAndrew Bartlett2009-04-071-1/+1
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-build: no need to duplicate generated ndr_ prototypes.Günther Deschner2008-10-201-0/+1
| | | | Guenther
* Cope with changed signature of http_timestring().Jelmer Vernooij2008-10-111-2/+2
|
* s3: use samba4 prototype for ndr_push/pull_struct_blob.Günther Deschner2008-09-231-7/+7
| | | | Guenther
* Add my copyright.Günther Deschner2008-02-271-1/+1
| | | | | Guenther (This used to be commit d078a8757182d84dfd3307a2e1b751cf173aaa97)
* Some more cleanup in authdata.c.Günther Deschner2008-02-171-621/+7
| | | | | Guenther (This used to be commit 5483f5fb44bb2138a1348c05845a2b8f3588697a)
* Align our krb5 PAC decoding routines to the samba4 ones.Günther Deschner2008-02-171-234/+224
| | | | | | | (while keeping all the trans krb5 lib support) Guenther (This used to be commit c06e507737bb07ff995876e49341de3f60b0da35)
* Finally enable pidl generated SAMR & NETLOGON headers and clients.Günther Deschner2008-01-171-6/+6
| | | | | Guenther (This used to be commit f7100156a7df7ac3ae84e45a47153b38d9375215)
* Coverity 512, uninitialized var.Jeremy Allison2008-01-111-2/+2
| | | | | Jeremy. (This used to be commit 1b7cc80c61ccbf766801080f5a3f0260f40ccc17)
* Replace sid_string_static by sid_string_dbg in DEBUGsVolker Lendecke2007-12-151-5/+8
| | | | (This used to be commit bb35e794ec129805e874ceba882bcc1e84791a09)
* RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison2007-10-181-19/+19
| | | | | | | | bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
* r24432: Expand kerberos_return_pac() so that it can be used in winbindd.Günther Deschner2007-10-101-6/+72
| | | | | Guenther (This used to be commit e70bf0ecc3ec6d3ba8ba384024bbdf9a783072ea)
* r24424: Fix the build.Günther Deschner2007-10-101-5/+5
| | | | | Guenther (This used to be commit 029bf26f8a571ae060f7be60fd3e8c61d86004f7)
* r24158: SE_GROUP_RESOURCE in the other_sids list apparently means aGerald Carter2007-10-101-1/+1
| | | | | | | domain local group. Fix a typo in the PAC debugging routine (This used to be commit b0b66b2e7af133b199868b946fad70016e1cefbd)
* r23973: For debugging, add (undocumented) net ads kerberos commands (kinit, ↵Günther Deschner2007-10-101-1/+1
| | | | | | | | | renew, pac). Guenther (This used to be commit 4cada7c1485c9957e553d6e75cb6f30f4338489f)
* r23970: Allow to set the debuglevel at which to dump the PAC logon info.Günther Deschner2007-10-101-18/+18
| | | | | Guenther (This used to be commit 7d321aad83cb7b9cc766bc89a886676337a2bad8)
* r23969: Some helper routines to retrieve a PAC and PAC elements.Günther Deschner2007-10-101-0/+160
| | | | | Guenther (This used to be commit d4c87c792a955be7d5ef59fc683fc48e3d8afe16)
* r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell2007-10-101-2/+1
| | | | (This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
* r23779: Change from v2 or later to v3 or later.Jeremy Allison2007-10-101-1/+1
| | | | | Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
* r23251: whoops! Fix compile errorGerald Carter2007-10-101-2/+6
| | | | (This used to be commit 22a3ea40ac69fa3722abf28db845ab284a65ad97)
* r23080: Fix bug #4637 - we hads missed some cases whereJeremy Allison2007-10-101-12/+24
| | | | | | we were calling PRS_ALLOC_MEM with zero count. Jeremy. (This used to be commit 9a10736e6fa276ca4b0726fbb7baf0daafbdc46d)
* r18188: merge 3.0-libndr branchJelmer Vernooij2007-10-101-2/+2
| | | | (This used to be commit 1115745caed3093c25d6be01ffee21819fb0a675)
* r13588: Second attempt to fix Bug #3330 - treat the string as aJeremy Allison2007-10-101-7/+7
| | | | | | | uint8 array and copy as such. Gunther please check (sorry I reverted your earlier fix). Jeremy. (This used to be commit 7a17b39c80703909f102487690d2117d874b0e15)
* r13585: Sorry Gunther, had to revert this. It's got a bufferJeremy Allison2007-10-101-3/+11
| | | | | | | overrun. Spoke to Jerry about the correct fix. Will add this after. Jeremy. (This used to be commit 33e13aabd3825c59d15dc897536e2ccf8c8f6d5e)
* r13581: Correctly parse a non-null terminated, little-endian UCS2 string in theGünther Deschner2007-10-101-11/+3
| | | | | | | | | | PAC_LOGON_NAME structure. This was broken on big-endian machines (Solaris SPARC and ppc). Fixes Bug #3330. Jerry, this should be in 3.0.21c. Guenther (This used to be commit 9732490811f8f02ee547ddc6e2694e1122a3a518)
* r11183: add small helper function to return a PAC_LOGON_INFO.Günther Deschner2007-10-101-0/+16
| | | | | Guenther (This used to be commit a8d5d6b845efb62e73e281549528376f3ee74211)
generated by cgit (git 2.34.1) at 2024-11-19 21:43:59 +0000