[SCM] Samba Shared Repository - branch master updated

Volker Lendecke vlendec at samba.org
Tue Feb 17 03:46:03 MST 2015


The branch, master has been updated
       via  76c7918 lib/crypto: Document what crypto code is used for, and if GnuTLS supports it
      from  41c4666 s3/vfs: remove unused SMB_VFS_DISK_FREE() small_query parameter

https://git.samba.org/?p=samba.git;a=shortlog;h=master


- Log -----------------------------------------------------------------
commit 76c7918e01205fb38534170e56fc68553c3abf79
Author: Andrew Bartlett <abartlet at samba.org>
Date:   Tue Feb 17 11:51:34 2015 +1300

    lib/crypto: Document what crypto code is used for, and if GnuTLS supports it
    
    Signed-off-by: Andrew Bartlett <abartlet at samba.org>
    
    Autobuild-User(master): Volker Lendecke <vl at samba.org>
    Autobuild-Date(master): Tue Feb 17 11:45:15 CET 2015 on sn-devel-104

-----------------------------------------------------------------------

Summary of changes:
 lib/crypto/REQUIREMENTS | 97 +++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 97 insertions(+)
 create mode 100644 lib/crypto/REQUIREMENTS


Changeset truncated at 500 lines:

diff --git a/lib/crypto/REQUIREMENTS b/lib/crypto/REQUIREMENTS
new file mode 100644
index 0000000..d0b175f
--- /dev/null
+++ b/lib/crypto/REQUIREMENTS
@@ -0,0 +1,97 @@
+A list of the crypto operations that we require, and what uses them.
+
+This list is to allow research into using external crypto libraries.
+Those possibly supported in the git version of GnuTLS are indicated as '# GNUTLS'
+
+ARCFOUR (RC4)
+ - the old SamOEMHash
+ - Password encryption on SAMR for password set/get
+ - NETLOGON SamLogon session keys
+ - Schannel
+ - genrate_random_data()
+
+ # GNUTLS
+
+DES
+ - NTLM challenge-response
+ - LSA QuerySecret et al
+ - NETLOGON SamLogon session keys
+ - ServerGetTrustInfo returned passwords
+ - RID encryption of passwords
+
+3DES
+ - NETLOGON Credentials
+
+CRC32
+ - DRSUAPI replication replicated secrets
+
+AES CFB8
+ - SCHANNEL
+ - NETLOGON SamLogon session keys
+
+AES 128
+ - SMB VFS traffic analyzer
+
+AES128 CCM
+ - SMB2 2.24 SMB encryption
+ # GNUTLS
+
+AES128 GCM
+ - SMB2 3.10 SMB encryption
+ # GNUTLS
+
+AES128 CMAC
+ - SMB2 0x224 SMB Signing
+
+MD4
+ - NTLM password hash
+ - genrate_random_number()
+
+MD5
+ - NTLM2
+ - SCHANNEL
+ - NTLMSSP
+ - NETLOGON computer credentials
+ - DRSUAPI blob encryption
+ - SAMR/wkssvc password change/set encryption
+ - vfs_fruit
+ - vfs_streams_xattr
+ - passdb old password history format
+ - dsdb password_hash module
+ - SMB1 SMB signing
+ - NTP ntp_signd
+
+ # GNUTLS
+
+HMAC-MD5
+ - NTLMv2
+
+ # GNUTLS
+
+HMACSHA256
+ - SMB2 < 2.24 SMB signing
+ - SMB2 Key derivation
+
+ # GNUTLS
+
+HMACSHA1
+ - BackupKey ServerWrap
+
+ # GNUTLS
+
+SHA256
+ - Security Descriptor hash for vfs_acl_xattr
+ - oLschema2ldif
+
+ # GNUTLS
+
+SHA512
+ - SMB2 Pre-auth integrity verification
+ - BackupKey ClientWrap
+
+ # GNUTLS
+
+RSA
+ - BackupKey ClientWrap
+
+ # GNUTLS


-- 
Samba Shared Repository


More information about the samba-cvs mailing list