Bot releases are visible (Hide)
Full Changelog: https://github.com/jborean93/pyspnego/compare/v0.10.1...v0.10.2
Published by jborean93 about 1 year ago
Full Changelog: https://github.com/jborean93/pyspnego/compare/v0.10.0...v0.10.1
Published by jborean93 about 1 year ago
sspi
sspi
package improves performance and memory allocation with a more robust APIFull Changelog: https://github.com/jborean93/pyspnego/compare/v0.9.2...v0.10.0
Published by jborean93 about 1 year ago
Full Changelog: https://github.com/jborean93/pyspnego/compare/v0.9.1...v0.9.2
Published by jborean93 over 1 year ago
NTLMSSP_REQUEST_VERSION
flag on the NTLM Negotiate
message
Full Changelog: https://github.com/jborean93/pyspnego/compare/v0.9.0...v0.9.1
Published by jborean93 over 1 year ago
spnego.ContextReq.dce_style
flag to enable DCE authentication mode
spnego.iov.BufferType.sign_only
on SSPI has changed from representing SECBUFFER_MECHLIST
to SECBUFFER_READONLY_WITH_CHECKSUM
sign_only
means when using it with GSSAPISECBUFFER_MECHLIST
is not seen in any examples in the wild and is most likely an internal flagspnego.iov.BufferType.data_readonly
SECBUFFER_DATA | SECBUFFER_READONLY
GSS_IOV_BUFFER_TYPE_EMPTY
wrap_iov
and unwrap_iov
in the Python NTLM context provider.
spnego.iov.BufferType.header
, spnego.iov.BufferType.data
, spnego.iov.BufferType.sign_only
, spnego.iov.BufferType.data_readonly
, and spnego.iov.BufferType.stream
header
wrap_iov
: Used to place the resulting signature in the bufferunwrap_iov
: Used as the signature source for validationdata
wrap_iov
: Data to be encrypted/sealedunwrap_iov
: Data to be decrypted/unsealedsign_only
wrap_iov
: Data to be included in the signature/header generationunwrap_iov
: Data to be included in the signature/header verificationdata_readonly
is treated the same as sign_only
stream
wrap_iov
: Not supportedunwrap_iov
: Contains the full value to decrypt with the headers in the beginning, must be coupled with a subsequent data buffer of the type data
to place the decrypted value intoSSPI
works but not all the permutations have been tested.data
, sign_only
, data_readonly
values concat together in the order they are provided.query_message_sizes()
function on a context to retrieve the important message sizes
header
, also known as the signature or security trailerFull Changelog: https://github.com/jborean93/pyspnego/compare/v0.8.0...v0.9.0
Published by jborean93 over 1 year ago
spnego.ContextReq.no_integrity
flag to disable integrity/confidentiality on Kerberos/Negotiate contexts
GSS-SPNEGO
where the context flags control the SSF flagsstep()
on a security context channel_bindings
Full Changelog: https://github.com/jborean93/pyspnego/compare/v0.7.0...v0.8.0
Published by jborean93 almost 2 years ago
python -m spnego --token ...
new_context()
method on the context proxies to provide an easy and efficient way to re-use the context credentials and options for a new contextgssntlmssp
to simplify codebase and ensure a consistent experience across OS versions
Full Changelog: https://github.com/jborean93/pyspnego/compare/v0.6.3...v0.7.0
Published by jborean93 almost 2 years ago
GSS_S_NO_CONTEXT
errors on GSSAPI after stepping through the token exchange before the context is complete
pyproject.toml
and made Cython
a build requirement for Windows
hashlib.new('md4', b"")
auth_stage
extra_info for a CredSSP context to give a human friendly indication of what sub auth stage it is up to.protocol_version
extra_info for a CredSSP context to return the negotiated CredSSP protocol version.credssp_min_protocol
keyword argument for a CredSSP context to set a minimum version the caller will accept of the peer.
5+
to ensure the peer supports and applies the mitigations for CVE-2018-0886.NegotiateProxy
before any contexts have been set up (https://github.com/jborean93/pyspnego/issues/33)usage
argument for tls.default_tls_context
to control whether the context is for a initiator or acceptorpy.typed
in the package for downstream library useContextProxy
class for type annotation useget_extra_info
to ContextProxy
to expose a common way to retrieve context specific information, this is currently used by CredSSP to retrieve
client_credential
: The delegated client credential for acceptors once the context is completesslcontext
: The SSL context used to create the TLS objectssl_object
: The TLS object used during the CredSSP exchangeclient_credential
property on CredSSP
has been removed in favour of `context.get_extra_info('client_credential')pyspnego
's Negotiate proxy context
username
and password
property on the auth context object are deprecated and will return None
until it is removed in a future releasesrc
layoutpyx/pyd
and C
files for SSPI in the sdist generatedInvalidTokenError
rather than struct.error