summaryrefslogtreecommitdiffstats
path: root/source3/librpc/crypto/gse.c
Commit message (Collapse)AuthorAgeFilesLines
* s3-gse Work around the MIT 1.9 gss_krb5_import_credAndrew Bartlett2011-07-201-6/+16
| | | | | | | | | | | | | We detect this function at configure time, but it currently fails to operate the way we need - that is, when the principal is not specified, it gives this error. When the principal is specified we get 'wrong principal in request' in the GSS acceptor, so for now the best option is to fall back to the alternate approach. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Jul 20 06:35:05 CEST 2011 on sn-devel-104
* s3-gse Allow printing the partial error stringAndrew Bartlett2011-07-201-6/+6
| | | | | | | | We may not be able to obtain the full error string, so print what we can get. This is required when the error is the the GSSAPI layer, not the mechanism. Andrew Bartlett
* s3:librpc: remove unneded gssapi includes from source3/librpc/crypto/gse.cMichael Adam2011-05-101-6/+0
| | | | | | | | | | These come in via the smb_krb5.h include (and lib/replace/system/kerberos.h) in the end. Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Tue May 10 23:12:31 CEST 2011 on sn-devel-104
* Fix many const compiler warnings.Jeremy Allison2011-05-051-21/+23
|
* s3-rpc_server Fix compile without kerberosAndrew Bartlett2011-04-271-1/+2
| | | | | Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Apr 27 23:08:48 CEST 2011 on sn-devel-104
* s3-gse: Don't release the mech OID from gss_accept_security_contextAndrew Bartlett2011-04-271-4/+31
| | | | | | | | | | This is constant data according to the man pages I find for this fucntion, and causes a segfault to free() when linked to Heimdal. I am advised that while it is constant for gss_mech_krb5, it may not be for other mechanisms, so an assert will ensure this is dealt with by the programmer who extends this code in future. Andrew Bartlett
* auth/kerberos: Create common helper to get the verified PAC from GSSAPIAndrew Bartlett2011-04-271-42/+5
| | | | | | | | | | | This only works for Heimdal and MIT Krb5 1.8, other versions will get an ACCESS_DEINED error. We no longer manually verify any details of the PAC in Samba for GSSAPI logins, as we never had the information to do it properly, and it is better to have the GSSAPI library handle it. Andrew Bartlett
* s3-gse: Allow the GSSAPI wrapper to load a keytab using gss_krb5_import_cred()Andrew Bartlett2011-04-201-21/+29
| | | | | | | | | | | | This Heimdal function does not set the global state, and allows the GSSAPI server to progress further when compiled against Heimdal (such as in the top level build). The ability to specify a keytab has been removed from the API as it is unused, and and the Heimdal function (avoiding setting global variables) works with an open keytab. Andrew Bartlett
* s3-gse Allow GSSAPI wrapper to compile against HeimdalAndrew Bartlett2011-04-161-1/+3
|
* gssapi: remove unused function argumentSimo Sorce2010-09-231-2/+0
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* gssapi: avoid explicit dependency on dcerpc specific structuresSimo Sorce2010-09-231-32/+10
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-dcerpc: move crypto stuff in /librpc/cryptoSimo Sorce2010-09-231-0/+1034
Signed-off-by: Günther Deschner <gd@samba.org>
generated by cgit (git 2.34.1) at 2025-09-26 10:47:02 +0000