summaryrefslogtreecommitdiff
path: root/source4/torture/auth
Commit message (Collapse)AuthorAgeFilesLines
* s4: popt: Global replace of cmdline_credentials -> ↵Jeremy Allison2017-05-111-2/+2
| | | | | | | | | | | popt_get_cmdline_credentials(). Add one use of popt_set_cmdline_credentials(). Fix 80 column limits when cmdline_credentials changes to popt_get_cmdline_credentials(). Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
* kerberos: Remove un-used event context argument from smb_krb5_init_context()Andrew Bartlett2014-04-281-2/+1
| | | | | | | | | | | | | | | | | The event context here was only specified in the server or admin-tool context, which does not do network communication, so this only caused a talloc_reference() and never any useful result. The actual network communication code sets an event context directly before making the network call. Andrew Bartlett Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Mon Apr 28 02:24:57 CEST 2014 on sn-devel-104
* auth/gensec: introduce gensec_internal.hStefan Metzmacher2013-08-101-0/+1
| | | | | | | | | | We should treat most gensec related structures private. It's a long way, but this is a start. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
* s4:torture: auth/pac.c: use Kerberos wrapper for krb5_keyblock_initAlexander Bokovoy2012-05-041-4/+4
| | | | Signed-off-by: Simo Sorce <idra@samba.org>
* auth-krb: Move pac related util functions in a single place.Simo Sorce2012-04-121-0/+1
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* auth: Make more of the ntlmssp code private or staticAndrew Bartlett2012-02-171-0/+1
| | | | | | | | | | Now that there is only one gensec_ntlmssp server, some of these functions can be static For the rest, put the implemtnation of the gensec_ntlmssp code into ntlmssp_private.h Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* gensec: move event context from gensec_*_init() to gensec_update()Andrew Bartlett2011-10-181-2/+2
| | | | | | | | | | | | This avoids keeping the event context around on a the gensec_security context structure long term. In the Samba3 server, the event context we either supply is a NULL pointer as no server-side modules currently use the event context. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
* gensec: Remove mem_ctx from calls that do not return memoryAndrew Bartlett2011-08-031-4/+4
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* auth: Split out make_user_info_SamBaseInfo and add authenticated argumentAndrew Bartlett2011-07-201-1/+3
| | | | | | | | | This will allow the source3 auth code to call this without needing to double-parse the SIDs Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/auth Move PAC parsing and verification in common.Andrew Bartlett2011-04-201-14/+9
| | | | | | | | This uses the source3 PAC code (originally from Samba4) with some small changes to restore functionality needed by the torture tests, and to have a common API. Andrew Bartlett
* s4-test: added a test for E_deshash()Andrew Tridgell2011-04-131-0/+70
| | | | | | | | | | this particularly checks the boundary conditions near passwords of length 14 characters Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Wed Apr 13 07:31:55 CEST 2011 on sn-devel-104
* source4/torture: Fix prototypes for all functions.Jelmer Vernooij2011-03-192-0/+2
|
* s4-auth Rework auth subsystem to remove struct auth_serversupplied_infoAndrew Bartlett2011-02-091-30/+32
| | | | | | | | | | | | | This changes auth_serversupplied_info into the IDL-defined struct auth_user_info_dc. This then in turn contains a struct auth_user_info, which is the only part of the structure that is mainted into the struct session_info. The idea here is to avoid keeping the incomplete results of the authentication (such as session keys, lists of SID memberships etc) in a namespace where it may be confused for the finalised results. Andrew Barltett
* s4-auth Remove special case for account_sid from auth_serversupplied_infoAndrew Bartlett2011-01-201-12/+13
| | | | | | | | | | | | This makes everything reference a server_info->sids list, which is now a struct dom_sid *, not a struct dom_sid **. This is in keeping with the other sid lists in the security_token etc. In the process, I also tidy up the talloc tree (move more structures under their logical parents) and check for some possible overflows in situations with a pathological number of sids. Andrew Bartlett
* s4-smbtorture: Make test names lowercase and dot-separated.Jelmer Vernooij2010-12-112-3/+2
| | | | | | | | This is consistent with the test names used by selftest, should make the names less confusing and easier to integrate with other tools. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sat Dec 11 04:16:13 CET 2010 on sn-devel-104
* s4-loadparm: 2nd half of lp_ to lpcfg_ conversionAndrew Tridgell2010-07-162-3/+3
| | | | | | | this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* Finish removal of iconv_convenience in public API's.Jelmer Vernooij2010-05-181-14/+2
|
* s4:ntlmssp: rename gensec_ntlmssp_state => ntlmssp_stateStefan Metzmacher2010-03-241-14/+14
| | | | | | | | Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
* s4:ntlmssp: keep struct gensec_ntlmssp_context in gensec_security->private_dataStefan Metzmacher2010-03-241-2/+7
| | | | | | | | Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
* s4-torture: ran minimal_includes.pl over source4/tortureAndrew Tridgell2009-10-202-2/+0
| | | | This reduces compile time somewhat.
* Add missing includes.Jelmer Vernooij2009-07-191-0/+1
|
* s4:auth: move make_server_info_netlogon_validation() function arroundStefan Metzmacher2009-01-211-1/+1
| | | | metze
* Add gensec_settings structure. This wraps loadparm_context for now, butJelmer Vernooij2008-11-021-2/+3
| | | | should in the future only contain some settings required for gensec.
* Add TALLOC_CTX pointer to strhex_to_data_blob for consistency with SambaJelmer Vernooij2008-10-181-6/+6
| | | | 3.
* Fix number of arguments for file_load() functions.Jelmer Vernooij2008-10-121-1/+1
|
* Heimdal provides Kerberos PAC parsing routines. Use them.Andrew Bartlett2008-08-281-3/+66
| | | | | | | | | | | | | | This uses Heimdal's PAC parsing code in the: - LOCAL-PAC test - gensec_gssapi server - KDC (where is was already used, the support code refactored from here) In addition, the service and KDC checksums are recorded in the struct auth_serversupplied_info, allowing them to be extracted for validation across NETLOGON. Andrew Bartlett (This used to be commit 418b440a7b8cdb53035045f3981d47b078be6c1e)
* cope with not knowing the kdc keyAndrew Tridgell2008-08-141-41/+56
| | | | (This used to be commit 7e48dad4c7724f3f11236171a777603574224c42)
* Remove more event_context_init() uses from function calls within deep down ↵Simo Sorce2008-04-211-2/+4
| | | | | | | | the code. Make sure we pass around the event_context where we need it instead. All test but a few python ones fail. Jelmer promised to fix them. (This used to be commit 3045d391626fba169aa26be52174883e18d323e9)
* Use torture_assert_mem_equal() in a couple more places.Jelmer Vernooij2008-04-131-2/+2
| | | | (This used to be commit e2c3fab9d1bf0482c15a115e7d373562ffe50b29)
* Install public header files again and include required prototypes.Jelmer Vernooij2008-04-022-2/+4
| | | | (This used to be commit 47ffbbf67435904754469544390b67d34c958343)
* Avoid use of global_loadparm.Jelmer Vernooij2008-02-211-8/+26
| | | | (This used to be commit c5a95bbe0ce55c29e135a9c6058bf192ec3bb546)
* r26655: torture/auth/pac: remove uses of global_loadparmJelmer Vernooij2008-01-031-2/+2
| | | | (This used to be commit ff67935be4980c701a9cd9a7fa435b8d1e02dfec)
* r26639: librpc: Pass iconv convenience on from RPC connection to NDR ↵Jelmer Vernooij2008-01-011-2/+4
| | | | | | library, so it can be overridden by OpenChange. (This used to be commit 2f29f80e07adef1f020173f2cd6d947d0ef505ce)
* r26260: Store loadparm context in gensec context.Jelmer Vernooij2007-12-211-2/+2
| | | | (This used to be commit b9e3a4862e267be39d603fed8207a237c3d72081)
* r26252: Specify loadparm_context explicitly when creating sessions.Jelmer Vernooij2007-12-211-1/+1
| | | | (This used to be commit 7280c1e9415daabb2712db1372e23f9846272ede)
* r26238: Add a loadparm context parameter to torture_context, remove more ↵Jelmer Vernooij2007-12-211-2/+2
| | | | | | uses of global_loadparm. (This used to be commit a33a5530545086b81a3b205aa109dff11c546926)
* r26233: Pass loadparm context when creating krb5 contexts.Jelmer Vernooij2007-12-211-0/+2
| | | | (This used to be commit 7780bf285fdfc30f89409d0436bad0d4b6de5cd4)
* r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers)Stefan Metzmacher2007-12-211-4/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
* r25035: Fix some more warnings, use service pointer rather than service ↵Jelmer Vernooij2007-10-101-2/+2
| | | | | | number in more places. (This used to be commit df9cebcb97e20564359097148665bd519f31bc6f)
* r23792: convert Samba4 to GPLv3Andrew Tridgell2007-10-102-6/+4
| | | | | | There are still a few tidyups of old FSF addresses to come (in both s3 and s4). More commits soon. (This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
* r22969: fix some more places where we could end up with more than one eventAndrew Tridgell2007-10-101-2/+5
| | | | | | context. We now have an event context on the torture_context, and we can also get one from the cli_credentials structure (This used to be commit c0f65eb6562e13530337c23e3447a6aa6eb8fc17)
* r22184: On some hosts, parsing a compleatly invalid principal causes heimadalAndrew Bartlett2007-10-101-2/+6
| | | | | | | | | to try and figure out what realm the current host is in (by DNS lookup for it's full domain name). We don't want to do that for this test, just break the checksum. Andrew Bartlett (This used to be commit 791e87514505acc68c5a8ff71fe9a27efdc6a027)
* r21039: Test some more failure paths (trying to increase the lcov score).Andrew Bartlett2007-10-101-0/+7
| | | | | Andrew Bartlett (This used to be commit 76812a0337fbfcb19939c6ee7a57975b6d690a4d)
* r20949: Looking over some lcov output, try and walk some error paths.Andrew Bartlett2007-10-101-0/+17
| | | | | Andrew Bartlett (This used to be commit 9ed9a032c249461e69242afc2e0ccdd47524064e)
* r19649: Fix indentation.Andrew Bartlett2007-10-101-65/+65
| | | | | Andrew Bartlett (This used to be commit ffce0087759d45a8dff8647feffa3bedbf42023b)
* r19604: This is a massive commit, and I appologise in advance for it's size.Andrew Bartlett2007-10-101-3/+5
| | | | | | | | | | | | | | | | | | | This merges Samba4 with lorikeet-heimdal, which itself has been tracking Heimdal CVS for the past couple of weeks. This is such a big change because Heimdal reorganised it's internal structures, with the mechglue merge, and because many of our 'wishes' have been granted: we now have DCE_STYLE GSSAPI, send_to_kdc hooks and many other features merged into the mainline code. We have adapted to upstream's choice of API in these cases. In gensec_gssapi and gensec_krb5, we either expect a valid PAC, or NO PAC. This matches windows behavour. We also have an option to require the PAC to be present (which allows us to automate the testing of this code). This also includes a restructure of how the kerberos dependencies are handled, due to the fallout of the merge. Andrew Bartlett (This used to be commit 4826f1735197c2a471d771495e6d4c1051b4c471)
* r19598: Ahead of a merge to current lorikeet-heimdal:Andrew Bartlett2007-10-101-1/+1
| | | | | | | | | Break up auth/auth.h not to include the world. Add credentials_krb5.h with the kerberos dependent prototypes. Andrew Bartlett (This used to be commit 2b569c42e0fbb596ea82484d0e1cb22e193037b9)
* r19507: Merge my DSO fixes branch. Building Samba's libraries as shared ↵Jelmer Vernooij2007-10-102-2/+2
| | | | | | | libraries works again now, by specifying --enable-dso to configure. (This used to be commit 7a01235067a4800b07b8919a6a475954bfb0b04c)
* r19339: Merge my 4.0-unittest branch. This adds an API for more fine-grainedJelmer Vernooij2007-10-102-186/+141
| | | | | | | | | | | | | | | | | | | output in the testsuite rather than just True or False for a set of tests. The aim is to use this for: * known failure lists (run all tests and detect tests that started working or started failing). This would allow us to get rid of the RPC-SAMBA3-* tests * nicer torture output * simplification of the testsuite system * compatibility with other unit testing systems * easier usage of smbtorture (being able to run one test and automatically set up the environment for that) This is still a work-in-progress; expect more updates over the next couple of days. (This used to be commit 0eb6097305776325c75081356309115f445a7218)
* r16331: Split out registering of multi fn tests, fix typo in name of pac suite.Jelmer Vernooij2007-10-101-1/+1
| | | | (This used to be commit 9e8574ac6cd38d1ff388f0c9ff37d86b316a431e)
View Lorry Controller Status