source: libads param

metze Mon, 30 Jul 2007 01:23:05 -0700

Author: metze
Date: 2007-07-30 08:22:45 +0000 (Mon, 30 Jul 2007)
New Revision: 24072


WebSVN: 
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=24072

Log:
Add "client ldap sasl wrapping" parameter.
Possible values are "plain" (default), "sign" or "seal".

metze 
Modified:
   branches/SAMBA_3_2/source/libads/ads_struct.c
   branches/SAMBA_3_2/source/param/loadparm.c


Changeset:
Modified: branches/SAMBA_3_2/source/libads/ads_struct.c
===================================================================
--- branches/SAMBA_3_2/source/libads/ads_struct.c       2007-07-30 07:50:24 UTC 
(rev 24071)
+++ branches/SAMBA_3_2/source/libads/ads_struct.c       2007-07-30 08:22:45 UTC 
(rev 24072)
@@ -109,6 +109,7 @@
                     const char *ldap_server)
 {
        ADS_STRUCT *ads;
+       int wrap_flags;
        
        ads = SMB_XMALLOC_P(ADS_STRUCT);
        ZERO_STRUCTP(ads);
@@ -128,6 +129,13 @@
        /* the caller will own the memory by default */
        ads->is_mine = 1;
 
+       wrap_flags = lp_client_ldap_sasl_wrapping();
+       if (wrap_flags == -1) {
+               wrap_flags = 0;
+       }
+
+       ads->auth.flags = wrap_flags;
+
        return ads;
 }
 

Modified: branches/SAMBA_3_2/source/param/loadparm.c
===================================================================
--- branches/SAMBA_3_2/source/param/loadparm.c  2007-07-30 07:50:24 UTC (rev 
24071)
+++ branches/SAMBA_3_2/source/param/loadparm.c  2007-07-30 08:22:45 UTC (rev 
24072)
@@ -324,6 +324,7 @@
        int name_cache_timeout;
        int client_signing;
        int server_signing;
+       int client_ldap_sasl_wrapping;
        int iUsershareMaxShares;
        int iIdmapCacheTime;
        int iIdmapNegativeCacheTime;
@@ -688,6 +689,13 @@
        {-1, NULL}
 };
 
+static const struct enum_list enum_ldap_sasl_wrapping[] = {
+       {0, "plain"},
+       {ADS_AUTH_SASL_SIGN, "sign"},
+       {ADS_AUTH_SASL_SEAL, "seal"},
+       {-1, NULL}
+};
+
 static const struct enum_list enum_ldap_ssl[] = {
        {LDAP_SSL_OFF, "no"},
        {LDAP_SSL_OFF, "No"},
@@ -1014,7 +1022,7 @@
        {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, 
enum_smb_signing_vals, FLAG_ADVANCED}, 
        {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, 
enum_smb_signing_vals, FLAG_ADVANCED}, 
        {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, 
NULL, NULL, FLAG_ADVANCED}, 
-
+       {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, 
&Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, 
FLAG_ADVANCED},
        {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, 
NULL, FLAG_ADVANCED}, 
        {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, 
FLAG_ADVANCED},
 
@@ -2182,6 +2190,7 @@
 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
+FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, 
&Globals.client_ldap_sasl_wrapping)
 
 /* local prototypes */

svn commit: samba r24072 - in branches/SAMBA_3_2/source: libads param

Reply via email to