summaryrefslogtreecommitdiffstats
path: root/source3/include
Commit message (Collapse)AuthorAgeFilesLines
...
* Rever e80ceb1d7355c8c46a2ed90d5721cf367640f4e8 "Remove more uses of "extern ↵Jeremy Allison2010-03-151-6/+1
| | | | | | | | struct current_user current_user;"." As requested by Volker, split this into smaller commits. Jeremy.
* s3: Remove some unused #definesVolker Lendecke2010-03-141-8/+0
|
* s3: Remove some unused codeVolker Lendecke2010-03-141-4/+0
|
* s3: Fix some nonempty blank linesVolker Lendecke2010-03-144-13/+12
|
* s3: Make tdb_wrap_open more robustVolker Lendecke2010-03-131-2/+0
| | | | | This hides the use of talloc_reference from the caller, making it impossible to wrongly call talloc_free() on the result.
* Missed a couple more uses of conn->server_info->ptok that need to be ↵Jeremy Allison2010-03-121-4/+5
| | | | | | | | | get_current_nttok(conn) Centralize the root check into smb1_file_se_access_check() so this is used by modules/vfs_acl_common.c also. Jeremy.
* Remove more uses of "extern struct current_user current_user;".Jeremy Allison2010-03-121-1/+6
| | | | | | | | | | | | | Use accessor functions to get to this value. Tidies up much of the user context code. Volker, please look at the changes in smbd/uid.c to familiarize yourself with these changes as I think they make the logic in there cleaner. Cause smbd/posix_acls.c code to look at current user context, not stored context on the conn struct - allows correct use of these function calls under a become_root()/unbecome_root() pair. Jeremy.
* s3: Add "g_lock_do" as a convenience wrapper functionVolker Lendecke2010-03-121-0/+4
|
* s3: Fix a commentVolker Lendecke2010-03-121-1/+1
|
* Move prototype to header of common code for set_sockaddr_portAndrew Bartlett2010-03-111-1/+0
|
* s3: Fix a long-standing problem with recycled PIDsVolker Lendecke2010-03-104-0/+69
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When a samba server process dies hard, it has no chance to clean up its entries in locking.tdb, brlock.tdb, connections.tdb and sessionid.tdb. For locking.tdb and brlock.tdb Samba is robust by checking every time we read an entry from the database if the corresponding process still exists. If it does not exist anymore, the entry is deleted. This is not 100% failsafe though: On systems with a limited PID space there is a non-zero chance that between the smbd's death and the fresh access, the PID is recycled by another long-running process. This renders all files that had been locked by the killed smbd potentially unusable until the new process also dies. This patch is supposed to fix the problem the following way: Every process ID in every database is augmented by a random 64-bit number that is stored in a serverid.tdb. Whenever we need to check if a process still exists we know its PID and the 64-bit number. We look up the PID in serverid.tdb and compare the 64-bit number. If it's the same, the process still is a valid smbd holding the lock. If it is different, a new smbd has taken over. I believe this is safe against an smbd that has died hard and the PID has been taken over by a non-samba process. This process would not have registered itself with a fresh 64-bit number in serverid.tdb, so the old one still exists in serverid.tdb. We protect against this case by the parent smbd taking care of deregistering PIDs from serverid.tdb and the fact that serverid.tdb is CLEAR_IF_FIRST. CLEAR_IF_FIRST does not work in a cluster, so the automatic cleanup does not work when all smbds are restarted. For this, "net serverid wipe" has to be run before smbd starts up. As a convenience, "net serverid wipedbs" also cleans up sessionid.tdb and connections.tdb. While there, this also cleans up overloading connections.tdb with all the process entries just for messaging_send_all(). Volker
* Revert "Fix bug #7067 - Linux asynchronous IO (aio) can cause smbd to fail ↵Karolin Seeger2010-03-081-2/+1
| | | | | | | | | to respond to a read or write." This reverts commit a6ae7a552f851a399991262377cc0e062e40ac20. This fixes bug #7222 (All users have full rigths on all shares) (CVE-2010-0728). (cherry picked from commit 1c9494c76cc9686c61e0966f38528d3318f3176f)
* Fix for bug #7189 - Open txt files with notepad on samba shares creates problem.Jeremy Allison2010-03-054-11/+25
| | | | | | | | | | Ensure we don't use any of the create_options for Samba private use. Add a new parameter to the VFS_CREATE call (private_flags) which is only used internally. Renumber NTCREATEX_OPTIONS_PRIVATE_DENY_DOS and NTCREATEX_OPTIONS_PRIVATE_DENY_FCB to match the S4 code). Rev. the VFS interface to version 28. Jeremy.
* s3-rpcclient: fix rpcclient after spoolss_GetPrinterData{Ex} IDL change.Günther Deschner2010-03-051-1/+2
| | | | Guenther
* s3: build sddl.c in samba3Michael Adam2010-03-031-0/+1
|
* s3: Abstract access to sessionid.tdb, similar to conn_tdb.cVolker Lendecke2010-03-011-0/+13
|
* s3: Add connections_forall_read()Volker Lendecke2010-03-011-0/+4
| | | | | | In a cluster, this makes a large difference: For r/w traverse, we have to do a fetch_locked on every record which for most users of connections_forall is just overkill.
* s3: Remove unused count_all_current_connections()Volker Lendecke2010-02-281-1/+0
|
* s3: remove unused schannel_auth_struct.Günther Deschner2010-02-261-6/+0
| | | | Guenther
* Implement rename/move in SMB2 from Windows7.Jeremy Allison2010-02-251-0/+1
| | | | Jeremy.
* s3: Make connections_fetch_record() staticVolker Lendecke2010-02-241-2/+0
|
* s3:schannel streamline interfaceSimo Sorce2010-02-232-11/+0
| | | | | Make calling schannel much easier by removing the need to explicitly open the database. Let the abstraction do it instead.
* s3 move the sitename cache in its own fileSimo Sorce2010-02-231-3/+0
|
* s3: Consolidate server_id_self into the equivalent procid_self()Volker Lendecke2010-02-231-1/+0
|
* s3-smb: Remove the obsolete signal type cast.Andreas Schneider2010-02-231-4/+0
| | | | | AC_SIGNAL_TYPE is already obsolete in autoconf. C89 requires signal handlers to return void, only K&R returned int.
* s3: Add a talloc_move for the inbuf to cli_smb_recvVolker Lendecke2010-02-221-2/+3
|
* s3: Convert cli_qpathinfo_basic to use cli_trans()Volker Lendecke2010-02-201-2/+2
|
* s3: Add cli_smb()Volker Lendecke2010-02-201-0/+7
| | | | | | | | | This is a sync wrapper around cli_smb_send/cli_smb_recv. This is a hack to speed up converting libsmb/ away from cli_send_smb/cli_receive_smb. Some routines in libsmb/ are only called in one place in smbtorture for example, where making it async right now is not worth it. With cli_smb_send/cli_smb_recv in place, pushing the asynchronosity out one level is "just" boilerplate code that is easy to do should it become necessary.
* Fix bug #7146 - Samba miss-parses authenticated RPC packets.Jeremy Allison2010-02-171-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Parts of the Samba RPC client and server code misinterpret authenticated packets. DCE authenticated packets actually look like this : +--------------------------+ |header | | ... frag_len (packet len)| | ... auth_len | +--------------------------+ | | | Data payload | ... .... | | +--------------------------+ | | | auth_pad_len bytes | +--------------------------+ | | | Auth footer | | auth_pad_len value | +--------------------------+ | | | Auth payload | | (auth_len bytes long) | +--------------------------+ That's right. The pad bytes come *before* the footer specifying how many pad bytes there are. In order to read this you must seek to the end of the packet and subtract the auth_len (in the packet header) and the auth footer length (a known value). The client and server code gets this right (mostly) in 3.0.x -> 3.4.x so long as the pad alignment is on an 8 byte boundary (there are some special cases in the code for this). Tridge discovered there are some (DRS replication) cases where on 64-bit machines where the pad alignment is on a 16-byte boundary. This breaks the existing S3 hand-optimized rpc code. This patch removes all the special cases in client and server code, and allows the pad alignment for generated packets to be specified by changing a constant in include/local.h (this doesn't affect received packets, the new code always handles them correctly whatever pad alignment is used). This patch also works correctly with rpcclient using sign+seal from the 3.4.x and 3.3.x builds (testing with 3.0.x and 3.2.x to follow) so even as a server it should still work with older libsmbclient and winbindd code. Jeremy
* s3-includes: enable TYPESAFE_QSORT() in s3Andrew Tridgell2010-02-141-0/+1
|
* s3: Remove unused comparison fn from "struct sorted_tree"Volker Lendecke2010-02-131-1/+1
|
* s3: Make adt_tree data definitions private to adt_tree.cVolker Lendecke2010-02-131-16/+1
|
* s3: SORTED_TREE -> struct sorted_treeVolker Lendecke2010-02-131-6/+6
|
* s3: TREE_NODE -> struct tree_nodeVolker Lendecke2010-02-131-5/+5
|
* s3:ctdb_conn: add ctdbd_conn_get_fd() to get the fd out of the ctdb connectionMichael Adam2010-02-121-0/+2
| | | | Michael
* s3: Add ctdb_conn_msg_ctx()Volker Lendecke2010-02-121-0/+1
|
* s3: Implement global locks in a g_lock tdbVolker Lendecke2010-02-122-0/+57
| | | | | | This is the basis to implement global locks in ctdb without depending on a shared file system. The initial goal is to make ctdb persistent transactions deterministic without too many timeouts.
* Remove lp_safe_widelinks() -> convert to just lp_widelinks. Suggestion from ↵Jeremy Allison2010-02-111-1/+1
| | | | | | | | Volker. Create widelinks_warning(int snum) to cover the message needed in make_connection. Jeremy.
* Introduce lp_safe_widelinks()Simo Sorce2010-02-111-0/+1
| | | | | This way we avoid any chance that a configuration reload may turn back on wide links when unix extensions are enabled.
* s3:nmbd: change "nmbd:bind explicit broadcast" into "nmbd bind explicit ↵Stefan Metzmacher2010-02-081-0/+1
| | | | | | broadcast" metze
* s3:nmbd: also listen explicit on the subnet broadcast addressesStefan Metzmacher2010-02-081-1/+4
| | | | | | | | | And send replies always via the unicast address of the subnet. This behavior is off by default (as before) and can be enabled with "nmbd:bind explicit broadcast = yes". metze
* s3:pdb_ldap: optimize ldapsam_alias_memberships() and cache ldap searches.Stefan Metzmacher2010-02-081-0/+5
| | | | | | | | | ldapsam_alias_memberships() does the same LDAP search twice, triggered via add_aliases() from create_local_nt_token(). This happens when no domain aliases are used. metze
* s3: Make cli_get_fs_volume_info() use cli_trans()Volker Lendecke2010-02-071-1/+2
|
* s3: Remove some unused codeVolker Lendecke2010-02-071-1/+0
|
* s3: Make guest_user_info() staticVolker Lendecke2010-02-051-1/+0
|
* Change uint_t to unsigned int in source3Matt Kraai2010-02-021-4/+4
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* Fix bug #7079 - cliconnect gets realm wrong with trusted domains.Jeremy Allison2010-01-301-0/+2
| | | | | | | | | | | Passing NULL as dest_realm for cli_session_setup_spnego() was always using our own realm (as for a NetBIOS name). Change this to look for the mapped realm using krb5_get_host_realm() if the destination machine name is a DNS name (contains a '.'). Could get fancier with DNS name detection (length, etc.) but this will do for now. Jeremy.
* Fix bug #7067 - Linux asynchronous IO (aio) can cause smbd to fail to ↵Jeremy Allison2010-01-261-1/+2
| | | | | | | | | respond to a read or write. Only works on Linux kernels 2.6.26 and above. Grants CAP_KILL capability to allow Linux threads under different euids to send signals to each other. Jeremy.
* s3-libsmbclient: Add smbc_setOptionUseCCache()Volker Lendecke2010-01-241-0/+11
| | | | | | | Can we enable this by default? This would be a change in behaviour, but this feature is just too cool for everyone to catch up in the apps. The patch would be
* s3: Add CLI_FULL_CONNECTION_USE_CCACHEVolker Lendecke2010-01-241-0/+1
|
generated by cgit (git 2.34.1) at 2026-01-30 03:54:19 +0000