diff options
| author | Simo Sorce <simo@redhat.com> | 2014-08-04 18:06:58 -0400 |
|---|---|---|
| committer | Simo Sorce <simo@redhat.com> | 2014-08-07 12:44:46 -0400 |
| commit | 5ac987ad3b18a551a86116791445824bbd82c4e2 (patch) | |
| tree | a41a841e2bcb096a62beec570c29cc78ae777551 /src/gss_ntlmssp.h | |
| parent | 78cb0a7bf31554d90eccfe626ba3e2b4c6b2893a (diff) | |
| download | gss-ntlmssp-5ac987ad3b18a551a86116791445824bbd82c4e2.tar.gz gss-ntlmssp-5ac987ad3b18a551a86116791445824bbd82c4e2.tar.xz gss-ntlmssp-5ac987ad3b18a551a86116791445824bbd82c4e2.zip | |
Support client authentication using Winbind
Based on a patch by David Woodhouse <David.Woodhouse@intel.com>
Original commit message:
We need to screw around with the flags a little, since winbind doesn't
really get it right. Thankfully, it doesn't support MIC and it does at
least generally do the right thing (w.r.t. session negotiation and OEM
vs. Unicode) so it's sufficient just to screw with the flags.
Tested with Negotiate authentication to squid, and NTLM in datagram
mode with pidgin-sipe. Also with Firefox, Chrome and a fixed libcurl.
Diffstat (limited to 'src/gss_ntlmssp.h')
| -rw-r--r-- | src/gss_ntlmssp.h | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/src/gss_ntlmssp.h b/src/gss_ntlmssp.h index 964483b..55e6570 100644 --- a/src/gss_ntlmssp.h +++ b/src/gss_ntlmssp.h @@ -173,6 +173,14 @@ int gssntlm_copy_creds(struct gssntlm_cred *in, struct gssntlm_cred *out); uint32_t external_netbios_get_names(char **computer, char **domain); uint32_t external_get_creds(struct gssntlm_name *name, struct gssntlm_cred *cred); +uint32_t external_cli_auth(char *user, char *domain, + gss_channel_bindings_t input_chan_bindings, + uint32_t in_flags, + uint32_t *neg_flags, + struct ntlm_buffer *nego_msg, + struct ntlm_buffer *chal_msg, + struct ntlm_buffer *auth_msg, + struct ntlm_key *exported_session_key); uint32_t external_srv_auth(char *user, char *domain, char *workstation, uint8_t *challenge, struct ntlm_buffer *nt_chal_resp, |