summaryrefslogtreecommitdiffstats
path: root/source3/libsmb/clikrb5.c
Commit message (Collapse)AuthorAgeFilesLines
* s3-kerberos: add a missing reference to authdata headers.Günther Deschner2009-11-271-0/+1
| | | | Guenther
* s3-kerberos: only use krb5 headers where required.Günther Deschner2009-11-271-3/+1
| | | | | | | This seems to be the only way to deal with mixed heimdal/MIT setups during merged build. Guenther
* s3-kerberos: Fix Bug #6929: build with recent heimdal.Günther Deschner2009-11-271-1/+1
| | | | | | | Heimdal changed the KRB5_DEPRECATED define (which now may not take an identifier for activation) in new releases (like 1.3.1). Guenther
* s3-kerberos: avoid using ERROR_TABLE_BASE_krb5 without checking.Günther Deschner2009-11-121-0/+4
| | | | Guenther
* s3-kerberos: add smb_krb5_principal_get_realm().Günther Deschner2009-11-121-0/+25
| | | | Guenther
* Revert "s3-kerberos: add smb_krb5_parse_name_flags()."Günther Deschner2009-11-061-18/+0
| | | | This reverts commit 17ef153b68795fec681f9ce17c198236aba2b1c2.
* s3-kerberos: support S4U2SELF impersionation through cli_krb5_get_ticket().Günther Deschner2009-11-061-5/+20
| | | | Guenther
* s3-kerberos: use smb_krb5_get_credentials in ads_krb5_mk_req.Günther Deschner2009-11-061-4/+7
| | | | Guenther
* s3-kerberos: modify cli_krb5_get_ticket to take a new impersonate_princ_s arg.Günther Deschner2009-11-061-2/+4
| | | | Guenther
* s3-kerberos: add smb_krb5_get_{creds,credentials} incl. support for S4U2SELF ↵Günther Deschner2009-11-061-1/+270
| | | | | | impersonation. Guenther
* s3-kerberos: add smb_krb5_parse_name_flags().Günther Deschner2009-11-061-0/+18
| | | | Guenther
* s3: fixed krb5 build problem on ubuntu karmicAndrew Tridgell2009-10-161-0/+9
| | | | | | | Karmic has MIT krb5 1.7-beta3, which has the symbol krb5_auth_con_set_req_cksumtype but no prototype for it. See also http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=531635
* More conversions of NULL -> talloc_autofree_context()Jeremy Allison2009-07-161-2/+2
| | | | | so we at least know when we're using a long-lived context. Jeremy.
* clikrb5: Prefer krb5_free_keytab_entry_contents to krb5_kt_free_entry.Jelmer Vernooij2009-06-041-3/+8
| | | | | Both functions exist in MIT Kerberos >= 1.7, but only krb5_free_keytab_entry_contents has a prototype.
* s3:kerberos Rework smb_krb5_unparse_name() to take a talloc contextAndrew Bartlett2009-04-071-11/+12
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-krb5: Fix Coverity #722 (RESOURCE_LEAK).Günther Deschner2009-03-201-12/+18
| | | | Guenther
* Don't miss an absolute pathname as a kerberos keytab path. From Glenn Machin ↵Jeremy Allison2009-02-171-0/+5
| | | | | | <gmachin@sandia.gov>. Jeremy.
* Memory leaks and other fixes found by Coveritytodd stecher2009-01-211-5/+5
|
* s3-asn1: make all of s3 asn1 code do a proper asn1_init() first.Günther Deschner2008-10-221-26/+36
| | | | Guenther
* s3: use shared asn1 code.Günther Deschner2008-10-221-2/+2
| | | | Guenther
* Cope with changed signature of http_timestring().Jelmer Vernooij2008-10-111-2/+2
|
* Fix blocker bug 5745 kerberos authentication with (lib)smbclient is broken.Jeremy Allison2008-09-101-2/+14
| | | | | Jeremy. (This used to be commit a59bd0e4854117a8646f4d388a0f7285362d5ba2)
* Remove a duplicate retval checkVolker Lendecke2008-08-311-8/+2
| | | | | Jeremy, please check! (This used to be commit 6579005e6490f1a99b3860627ba51decaeb864bd)
* kerberos: use KRB5_KT_KEY macro where appropriate.Günther Deschner2008-08-291-15/+5
| | | | | Guenther (This used to be commit a042dffd7121bda3dbc9509f69fcfae06ed4cc22)
* kerberos: move the KRB5_KEY* macros to header file.Günther Deschner2008-08-291-12/+0
| | | | | Guenther (This used to be commit c28fa17ffffee3e6fd4897c9c6b4937388a19600)
* Fix length error in wrapping spnego blobIgor Mammedov2008-08-181-1/+1
| | | | (This used to be commit 16ee95494ba495c5f5ff8779206f380db1067b2d)
* fix build warning.Günther Deschner2008-08-111-1/+1
| | | | | Guenther (This used to be commit 85021d6a459c957cc276a93c3515029244f52677)
* One more build fix. Ensure we have KRB5_AUTH_CONTEXT_USE_SUBKEY defined ↵Jeremy Allison2008-08-081-3/+3
| | | | | | | before we compile the new code. Jeremy. (This used to be commit 7686752c5b015b15a6729631ba4aeedd25ebc659)
* Try and fix the build for systems that don't have ↵Jeremy Allison2008-08-081-3/+3
| | | | | | | krb5_auth_con_set_req_cksumtype(). Jeremy. (This used to be commit 8598e7b06ec57ca6fcde863270e6bb0e2de9993e)
* Add Derrick Schommer's <dschommer@F5.com> kerberos delegation patch. SomeJeremy Allison2008-08-081-2/+184
| | | | | | work by me and advice by Love. Jeremy. (This used to be commit ecc3838e4cb5d0c0769ec6d9a34a877ca584ffcc)
* clikrb5: don't use krb5_keyblock_init() when no salt is specifiedStefan Metzmacher2008-08-041-35/+30
| | | | | | | | | If the caller wants to create a key with no salt we should not use krb5_keyblock_init() (only used when using heimdal) because it does sanity checks on the key length. metze (This used to be commit c83de77b750837a110611d7023c4cf71d2d0bab1)
* Fix return of uninitialized variable.Jeremy Allison2008-06-261-1/+1
| | | | | Jeremy. (This used to be commit 384052f546af8c1c6848c03cad4f2ba618ba7209)
* kerberos: add smb_krb5_keytab_name().Günther Deschner2008-06-241-0/+22
| | | | | Guenther (This used to be commit c273ce8798062d1b55100411f3e92a01bdbf611c)
* kerberos: make smb_krb5_kt_add_entry public, allow to pass keys without ↵Günther Deschner2008-06-241-18/+38
| | | | | | | salting them. Guenther (This used to be commit 7c4da23be1105dc224033b21eb486e7fcdc7d9c5)
* clikrb5: remove unrequired create_kerberos_key_from_string_direct() prototype.Günther Deschner2008-06-171-10/+10
| | | | | Guenther (This used to be commit ec86852fc6ce2d88ad5835c8fcb337c68fd6f6bc)
* Cleanup size_t return values in callers of convert_string_allocateTim Prouty2008-05-201-3/+6
| | | | | | This patch is the second iteration of an inside-out conversion to cleanup functions in charcnv.c returning size_t == -1 to indicate failure. (This used to be commit 6b189dabc562d86dcaa685419d0cb6ea276f100d)
* Use new IDL based PAC structures in clikrb5.cGünther Deschner2008-02-171-7/+7
| | | | | Guenther (This used to be commit 3b0135d57e1e70175a5eec49b603a2e5f700c770)
* Make heimdal and MIT happy when iterating through auth data.Günther Deschner2007-12-121-3/+3
| | | | | Guenther (This used to be commit 507247dcbf0ef02825a6c5c5f313813714df2d99)
* Vista SP1-rc1 appears to break against Samba-3.0.27aGuenther Deschner2007-12-121-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Jason, Jason Haar wrote: > Patched 3.0.28, compiled, installed and here's the log file. > > Hope it helps. BTW I don't think it matters, but this is on 32bit > CentOS4.5 systems. yes, it helps. Thanks for that. Very interesting, there are two auth data structures where the first one is a PAC and the second something unknown (yet). Can you please try the attached fix ? It should make it work again. Guenther - -- Günther Deschner GPG-ID: 8EE11688 Red Hat gdeschner@redhat.com Samba Team gd@samba.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFHX9ZESOk3aI7hFogRAivSAJ9bMcD+PcsIzjYYLtAUoLNfVVEl1QCfV/Qd MPsZW4G31VOVu64SPjgnJiI= =Co+H -----END PGP SIGNATURE----- (This used to be commit c9adc07ca2a3bb1e0ea98e3b4f68e1a87e5c0196)
* Remove next_token - all uses must now be next_token_talloc.Jeremy Allison2007-12-071-9/+8
| | | | | | No more temptations to use static length strings. Jeremy. (This used to be commit ec003f39369910dee852b7cafb883ddaa321c2de)
* Fix the setup_kaddr() call to cope with IPv6.Jeremy Allison2007-10-291-8/+34
| | | | | | | | This is the last obvious change I can see. At this point we can start claiming IPv6 support (Hurrah !:-). Jeremy. (This used to be commit bda8c0bf571c994b524a9d67eebc422033d17094)
* This is a large patch (sorry). Migrate from struct in_addrJeremy Allison2007-10-241-2/+2
| | | | | | | | | | | | | | to struct sockaddr_storage in most places that matter (ie. not the nmbd and NetBIOS lookups). This passes make test on an IPv4 box, but I'll have to do more work/testing on IPv6 enabled boxes. This should now give us a framework for testing and finishing the IPv6 migration. It's at the state where someone with a working IPv6 setup should (theorecically) be able to type : smbclient //ipv6-address/share and have it work. Jeremy. (This used to be commit 98e154c3125d5732c37a72d74b0eb5cd7b6155fd)
* RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison2007-10-181-14/+14
| | | | | | | | bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
* r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell2007-10-101-2/+1
| | | | (This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
* r23779: Change from v2 or later to v3 or later.Jeremy Allison2007-10-101-1/+1
| | | | | Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
* r23651: Always, always, always compile before commit...Günther Deschner2007-10-101-1/+1
| | | | | Guenther (This used to be commit accb40446ad3f872c5167fc2306d892553293b7b)
* r23650: Fix remaining callers of krb5_kt_default().Günther Deschner2007-10-101-3/+3
| | | | | Guenther (This used to be commit b9d7a2962a472afb0c6b8e3ac5c2c819d4af2b39)
* r23649: Fix the build (by moving smb_krb5_open_keytab() to clikrb5.c).Günther Deschner2007-10-101-1/+137
| | | | | Guenther (This used to be commit 19020d19dca7f34be92c8c2ec49ae7dbde60f8c1)
* r23609: Removing more redundant codepaths out of smb_krb5_renew_ticket().Günther Deschner2007-10-101-38/+26
| | | | | | | Thanks Volker for the pointer hint :) Guenther (This used to be commit eb1ec508ace3a5eeb53cf47be44047bd9228cd19)
* r23588: Some more cleanups and error checks in the krb5 renew function.Günther Deschner2007-10-101-6/+12
| | | | | Guenther (This used to be commit 277e07c8553e2ed20bc95493cdc996be43feb6bd)
generated by cgit (git 2.34.1) at 2025-09-02 17:26:58 +0000