summaryrefslogtreecommitdiffstats
path: root/source4/auth/gensec/gensec.c
Commit message (Collapse)AuthorAgeFilesLines
* gensec: split GENSEC into mechanism-dependent and runtime functionsAndrew Bartlett2011-08-031-1437/+0
| | | | | | | | | The startup and runtime functions that have no dependencies are moved into the top level. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* gensec: Add a way to request a unix token from GENSECAndrew Bartlett2011-07-291-5/+12
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-auth: quiet down the krb5 warnings when kerberos is not set to 'MUST'Andrew Tridgell2011-06-171-1/+1
| | | | | | | this prevents spurious error messages on client commands when when we will fallback to NTLM authentication Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-modules Remove lp_ctx from init functions that no longer need itAndrew Bartlett2011-06-061-2/+2
| | | | | | | | Now that we don't allow the smb.conf to change the modules dir, many functions that simply load modules or initialise a subsytem that may load modules no longer need an lp_ctx. Andrew Bartlett
* s4-auth Rename auth -> auth4 to avoid conflict with s3 authAndrew Bartlett2011-05-081-2/+2
|
* source4/auth/gensec: Fix prototypes for all functions.Jelmer Vernooij2011-03-191-0/+1
|
* s4-auth Rework auth subsystem to remove struct auth_serversupplied_infoAndrew Bartlett2011-02-091-4/+4
| | | | | | | | | | | | | This changes auth_serversupplied_info into the IDL-defined struct auth_user_info_dc. This then in turn contains a struct auth_user_info, which is the only part of the structure that is mainted into the struct session_info. The idea here is to avoid keeping the incomplete results of the authentication (such as session keys, lists of SID memberships etc) in a namespace where it may be confused for the finalised results. Andrew Barltett
* s4-gensec Don't steal the auth_context, reference it.Andrew Bartlett2011-01-181-2/+6
| | | | | | | We don't want to steal this pointer away from the caller if it's been set up from python. Andrew Bartlett
* s4-auth Remove duplicate copies of session_info creation codeAndrew Bartlett2010-12-211-6/+10
| | | | | | | | | We now just do or do not call into LDB based on some flags. This means there may be some more link time dependencies, but we seem to deal with those better now. Andrew Bartlett
* s4-modules: get rid of the remaining static prototypes for modulesAndrew Tridgell2010-11-011-11/+2
| | | | the waf build now generates the prototype declarations for us
* gensec: Support building without any linked-in modules.Jelmer Vernooij2010-10-101-0/+4
|
* s4-gensec: fixed a valgrind error in gensecAndrew Tridgell2010-09-261-12/+2
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* pygensec: Implement start_mech_by_name().Jelmer Vernooij2010-09-221-3/+2
|
* s4-loadparm: 2nd half of lp_ to lpcfg_ conversionAndrew Tridgell2010-07-161-3/+3
| | | | | | | this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s4:auth Change auth_generate_session_info to take flagsAndrew Bartlett2010-05-201-1/+7
| | | | | | | | | | | | | | This allows us to control what groups should be added in what use cases, and in particular to more carefully control the introduction of the 'authenticated' group. In particular, in the 'service_named_pipe' protocol, we do not have control over the addition of the authenticated users group, so we key of 'is this user the anonymous SID'. This also takes more care to allocate the right length ptoken->sids Andrew Bartlett
* s4:gensec expose gensec_set_target_principal for use outside GENSECAndrew Bartlett2010-05-141-1/+1
| | | | | | | | This allows for the rare case where the caller knows the target principal. The check for lp_client_use_spnego_principal() is moved to the spengo code to make this work. Andrew Bartlett
* s4:auth Change auth_generate_session_info to take an auth contextAndrew Bartlett2010-04-141-1/+20
| | | | | | | | | | | | | | | | | | The auth context was in the past only for NTLM authentication, but we need a SAM, an event context and and loadparm context for calculating the local groups too, so re-use that infrustructure we already have in place. However, to avoid problems where we may not have an auth_context (in torture tests, for example), allow a simpler 'session_info' to be generated, by passing this via an indirection in gensec and an generate_session_info() function pointer in the struct auth_context. In the smb_server (for old-style session setups) we need to change the async context to a new 'struct sesssetup_context'. This allows us to use the auth_context in processing the authentication reply . Andrew Bartlett
* s4-auth: use TYPESAFE_QSORT() in gensecAndrew Tridgell2010-02-131-1/+2
|
* s4:gensec: change gensec_update_send/recv to tevent_reqStefan Metzmacher2009-12-241-41/+76
| | | | metze
* s4:gensec: allow clearing local and remote address by passing NULLStefan Metzmacher2009-12-161-0/+10
| | | | metze
* s4-gensec: Remove obsolete socket_address vars and fns.Andreas Schneider2009-12-161-34/+0
|
* s4-gensec: Replace gensec_get_peer_addr with new tsocket based fn.Andreas Schneider2009-12-161-13/+0
|
* s4-gensec: Replace gensec_set_peer_addr with new tsocket based fn.Andreas Schneider2009-12-161-9/+0
|
* s4-gensec: Replace gensec_get_my_addr with new tsocket based fn.Andreas Schneider2009-12-161-11/+0
|
* s4-gensec: Replace gensec_set_my_addr() with new tsocket based fn.Andreas Schneider2009-12-161-9/+0
|
* s4-gensec: Added remote and local setter/getter using tsocket.Andreas Schneider2009-12-161-3/+116
|
* s4: ran minimal_includes.pl on source4/auth/gensecAndrew Tridgell2009-10-201-2/+0
|
* gensec: Avoid exposing lp_ctx on the API level.Jelmer Vernooij2009-09-261-12/+10
|
* gensec_start now steals the auth_contextAndrew Tridgell2009-07-011-1/+3
|
* Remove auth/ntlm as a dependency of GENSEC by means of function pointers.Andrew Bartlett2009-02-131-13/+9
| | | | | | | | | | | When starting GENSEC on the server, the auth subsystem context must be passed in, which now includes function pointers to the key elements. This should (when the other dependencies are fixed up) allow GENSEC to exist as a client or server library without bundling in too much of our server code. Andrew Bartlett
* s4:lib/tevent: rename structsStefan Metzmacher2008-12-291-5/+5
| | | | | | | | | | | | | | | | | | | | list="" list="$list event_context:tevent_context" list="$list fd_event:tevent_fd" list="$list timed_event:tevent_timer" for s in $list; do o=`echo $s | cut -d ':' -f1` n=`echo $s | cut -d ':' -f2` r=`git grep "struct $o" |cut -d ':' -f1 |sort -u` files=`echo "$r" | grep -v source3 | grep -v nsswitch | grep -v packaging4` for f in $files; do cat $f | sed -e "s/struct $o/struct $n/g" > $f.tmp mv $f.tmp $f done done metze
* Fix the build.Jelmer Vernooij2008-11-021-14/+37
|
* Remove use of global_loadparm for disabled gensec backends.Jelmer Vernooij2008-11-021-4/+20
|
* Fix the build.Jelmer Vernooij2008-11-021-2/+2
|
* Add gensec_settings structure. This wraps loadparm_context for now, butJelmer Vernooij2008-11-021-10/+19
| | | | should in the future only contain some settings required for gensec.
* s4:gensec: pass down want_features to the spnego backend mechStefan Metzmacher2008-10-061-1/+7
| | | | metze
* Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into v4-0-gmake3Jelmer Vernooij2008-04-251-17/+5
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: source/Makefile source/auth/config.mk source/auth/gensec/config.mk source/build/m4/public.m4 source/build/make/python.mk source/build/make/rules.mk source/build/smb_build/header.pm source/build/smb_build/main.pl source/build/smb_build/makefile.pm source/dsdb/config.mk source/dsdb/samdb/ldb_modules/config.mk source/kdc/config.mk source/lib/events/config.mk source/lib/events/events.c source/lib/ldb/config.mk source/lib/nss_wrapper/config.mk source/lib/policy/config.mk source/lib/util/config.mk source/libcli/smb2/config.mk source/libnet/config.mk source/librpc/config.mk source/nbt_server/config.mk source/ntptr/ntptr_base.c source/ntvfs/posix/config.mk source/ntvfs/sysdep/config.mk source/param/config.mk source/rpc_server/config.mk source/rpc_server/service_rpc.c source/scripting/ejs/config.mk source/scripting/python/config.mk source/smb_server/config.mk source/smbd/server.c source/torture/config.mk source/torture/smb2/config.mk source/wrepl_server/config.mk (This used to be commit 13bbd420681519894a4036729c43273912c9b402)
| * Remove more event_context_init() uses from function calls within deep down ↵Simo Sorce2008-04-211-17/+5
| | | | | | | | | | | | | | | | the code. Make sure we pass around the event_context where we need it instead. All test but a few python ones fail. Jelmer promised to fix them. (This used to be commit 3045d391626fba169aa26be52174883e18d323e9)
| * Remove prototypes from build.h in preparation of removing build.hJelmer Vernooij2008-04-141-0/+6
| | | | | | | | | | altogether. (This used to be commit dbeab2a9cdee4e5f69afeb2603ba29cbed56debd)
* | Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into v4-0-gmake3Jelmer Vernooij2008-04-081-23/+24
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: source/auth/credentials/config.mk source/auth/gensec/config.mk source/build/smb_build/makefile.pm source/heimdal_build/config.mk source/lib/events/config.mk source/lib/nss_wrapper/config.mk source/lib/policy/config.mk source/lib/registry/config.mk source/lib/socket_wrapper/config.mk source/lib/tdb/config.mk source/lib/tls/config.mk source/lib/util/config.mk source/libcli/config.mk source/libcli/ldap/config.mk source/libnet/config.mk source/librpc/config.mk source/param/config.mk source/rpc_server/config.mk source/scripting/ejs/config.mk source/smbd/process_model.mk (This used to be commit 760378e0294dd0cd4523a83448328478632d7e3d)
| * Install public header files again and include required prototypes.Jelmer Vernooij2008-04-021-23/+24
| | | | | | | | (This used to be commit 47ffbbf67435904754469544390b67d34c958343)
* | Fix the build (again).Jelmer Vernooij2008-02-261-0/+6
| | | | | | | | (This used to be commit ef00f6b5817107738dc44367838095896af4e77d)
* | Move responsibilities of build.h to makefile.Jelmer Vernooij2008-02-161-1/+0
|/ | | | (This used to be commit a43f6d37bce85748e9cf2675e5beced5db26f1c3)
* r26580: Include sentinel in build.h, in case the list is empty.Jelmer Vernooij2007-12-241-1/+1
| | | | (This used to be commit f1997dabed584bdc864c4b7235c29603c312ef46)
* r26576: Allow the static module loading code to be used for the Python modules.Jelmer Vernooij2007-12-241-1/+1
| | | | | Simplify the way module initialization functions are handled. (This used to be commit ba8be2dfc0de4434c798663336b81f7f95cde520)
* r26260: Store loadparm context in gensec context.Jelmer Vernooij2007-12-211-5/+10
| | | | (This used to be commit b9e3a4862e267be39d603fed8207a237c3d72081)
* r26258: Use loadparm context in client_start function of gensec.Jelmer Vernooij2007-12-211-1/+1
| | | | (This used to be commit bad1891cae2c688b17a6a2b932e754f51291035c)
* r26231: Spell check: credentails -> credentials.Jelmer Vernooij2007-12-211-1/+1
| | | | (This used to be commit 4b46888bd0195ab12190f76868719fc018baafd6)
* r26226: Avoid more uses of global_loadparm.Jelmer Vernooij2007-12-211-2/+2
| | | | (This used to be commit 6cbce47a3eaef76a89db7cd0ab0d4f6441fc720d)
* r25552: Convert to standard bool type.Jelmer Vernooij2007-10-101-8/+8
| | | | (This used to be commit b8d6b82f1248d36a0aa91a1c58d06b4f7c66d245)
generated by cgit (git 2.34.1) at 2025-09-29 09:12:32 +0000