summaryrefslogtreecommitdiff
path: root/auth
Commit message (Expand)AuthorAgeFilesLines
* mit: make it possible to build with MIT kerberos and --picky-developerGünther Deschner2016-09-292-2/+4
* auth: One const is enough...Volker Lendecke2016-09-091-1/+1
* gensec/spnego: work around missing server mechListMIC in SMB serversStefan Metzmacher2016-09-021-1/+68
* krb5_wrap: Rename get_kerberos_allowed_etypes()Andreas Schneider2016-08-311-1/+1
* Wrap krb5_cc_copy_creds and krb5_cc_copy_cacheAlexander Bokovoy2016-07-251-2/+2
* auth/auth_sam_reply: fill user_principal_* and dns_domain_name in make_user_i...Stefan Metzmacher2016-07-222-0/+23
* auth/credentials: also do a shallow copy of the krb5_ccache.Stefan Metzmacher2016-07-224-18/+71
* pycredentials: add set_utf16_[old_]password()Stefan Metzmacher2016-07-221-0/+59
* pycredentials: add {get,set}_old_password()Stefan Metzmacher2016-07-221-1/+25
* gensec: Change log level for message when obtaining PAC from gss_get_name_att...Christof Schmitt2016-07-061-6/+4
* auth: fix a memory leak in gssapi_get_session_key()Uri Simchoni2016-07-061-6/+1
* typo: mandetory -> mandatoryGarming Sam2016-07-051-3/+3
* krb5pac.idl: introduce PAC_DOMAIN_GROUP_MEMBERSHIP to handle the resource groupsStefan Metzmacher2016-06-301-9/+25
* auth/auth_sam_reply: make auth_convert_user_info_dc_sambaseinfo() a private h...Stefan Metzmacher2016-06-302-17/+12
* auth/auth_sam_reply: do a real copy of strings in auth_convert_user_info_dc_s...Stefan Metzmacher2016-06-301-8/+17
* auth/auth_sam_reply: add auth_convert_user_info_dc_saminfo2() helper functionStefan Metzmacher2016-06-302-0/+29
* auth/auth_sam_reply: add auth_convert_user_info_dc_saminfo6() and implement l...Stefan Metzmacher2016-06-302-25/+75
* auth/wbc_auth_util: change wbcAuthUserInfo_to_netr_SamInfo* from level 3 to 6Stefan Metzmacher2016-06-302-58/+68
* auth/wbc_auth_util: fill in base.logon_domain in wbcAuthUserInfo_to_netr_SamI...Stefan Metzmacher2016-06-301-0/+5
* auth/auth_sam_reply: let make_user_info_dc_netlogon_validation() correctly ha...Stefan Metzmacher2016-06-301-18/+47
* auth/auth_sam_reply: add some const to input parametersStefan Metzmacher2016-06-302-13/+13
* lib: Give base64.c its own .hVolker Lendecke2016-05-042-0/+2
* gensec: Change log level of message when no PAC is foundChristof Schmitt2016-04-301-2/+2
* auth/ntlmssp: add ntlmssp_{client,server}:force_old_spnego option for testingStefan Metzmacher2016-04-282-0/+10
* auth/spnego: add spnego:simulate_w2k option for testingStefan Metzmacher2016-04-281-1/+27
* auth/ntlmssp: do map to guest checking after the authenticationStefan Metzmacher2016-04-282-15/+41
* auth/spnego: only try to verify the mechListMic if signing was negotiated.Stefan Metzmacher2016-04-281-8/+10
* auth/ntlmssp: don't require NTLMSSP_SIGN for smb connectionsStefan Metzmacher2016-04-281-1/+4
* auth/ntlmssp: don't require any flags in the ccache_resume codeStefan Metzmacher2016-04-281-6/+1
* auth/spnego: handle broken mechListMIC response from Windows 2000Stefan Metzmacher2016-04-281-0/+18
* auth/spnego: change log level for 'Failed to setup SPNEGO negTokenInit reques...Stefan Metzmacher2016-04-281-1/+1
* CVE-2016-2111: auth/gensec: correctly report GENSEC_FEATURE_{SIGN,SEAL} in sc...Stefan Metzmacher2016-04-121-3/+9
* CVE-2016-2111: auth/gensec: require DCERPC_AUTH_LEVEL_INTEGRITY or higher in ...Stefan Metzmacher2016-04-121-0/+10
* CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC gener...Stefan Metzmacher2016-04-122-5/+202
* CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC check...Stefan Metzmacher2016-04-124-12/+367
* CVE-2016-2110: libcli/auth: pass server_timestamp to SMBNTLMv2encrypt_hash()Stefan Metzmacher2016-04-122-1/+2
* CVE-2016-2110: auth/credentials: pass server_timestamp to cli_credentials_get...Stefan Metzmacher2016-04-123-4/+9
* CVE-2016-2110: auth/credentials: clear the LMv2 key for NTLMv2 in cli_credent...Stefan Metzmacher2016-04-121-0/+6
* CVE-2016-2110: auth/ntlmssp: implement gensec_ntlmssp_may_reset_crypto()Stefan Metzmacher2016-04-123-12/+55
* CVE-2016-2110: auth/ntlmssp: call ntlmssp_sign_init if we provide GENSEC_FEAT...Stefan Metzmacher2016-04-122-2/+2
* CVE-2016-2110: auth/gensec: add gensec_may_reset_crypto() infrastructureStefan Metzmacher2016-04-123-0/+22
* CVE-2016-2110: auth/gensec: require spnego mechListMIC exchange for new_spneg...Stefan Metzmacher2016-04-121-54/+208
* CVE-2016-2110: auth/gensec: fix the client side of a spnego downgradeStefan Metzmacher2016-04-121-3/+5
* CVE-2016-2110: auth/gensec: fix the client side of a new_spnego exchangeStefan Metzmacher2016-04-121-0/+9
* CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require NTLM2 (E...Stefan Metzmacher2016-04-121-1/+1
* CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require flags de...Stefan Metzmacher2016-04-121-8/+10
* CVE-2016-2110: auth/ntlmssp: don't let ntlmssp_handle_neg_flags() change ntlm...Stefan Metzmacher2016-04-123-9/+21
* CVE-2016-2110: auth/ntlmssp: don't allow a downgrade from NTLMv2 to LM_AUTHStefan Metzmacher2016-04-121-0/+2
* CVE-2016-2110: auth/ntlmssp: split allow_lm_response from allow_lm_keyStefan Metzmacher2016-04-123-4/+10
* CVE-2016-2110: auth/ntlmssp: maintain conf_flags and required_flags variablesStefan Metzmacher2016-04-124-0/+31