summaryrefslogtreecommitdiffstats
path: root/source3
Commit message (Collapse)AuthorAgeFilesLines
...
* vfs: Implement a sys_acl_blob_get_{fd,file} for POSIX ACL backendsAndrew Bartlett2012-10-113-1/+126
| | | | | | | | | | | | | This simply linearlises the SMB_ACL_T (default and access acl for directories) and the file owner, group and mode into a blob. It will be useful for an improved vfs_acl_common.c that uses this sets that, rather than the hash of the NT ACL, in the xattr This will in turn insulate the stored hash from changes in the ACL mapping. Andrew Bartlett
* vfs: Remove type parameter from sys_acl_blob_get_{fd,file}Andrew Bartlett2012-10-115-14/+13
| | | | | | | | | This interface actually needs to match the get_nt_acl interface in that the system ACL implmenetation may not be posix ACLs, and the blob is not meant to be enforced to be of a particular system ACL structure. Andrew Bartlett
* smbd: Add mem_ctx to {f,}get_nt_acl VFS callAndrew Bartlett2012-10-1123-124/+231
| | | | | | | | | | | This makes it clear which context the returned SD is allocated on, as a number of callers do not want it on talloc_tos(). As the ACL transformation allocates and then no longer needs a great deal of memory, a talloc_stackframe() call is used to contain the memory that is not returned further up the stack. Andrew Bartlett
* smbd: Add mem_ctx to sys_acl_init() and all callersAndrew Bartlett2012-10-1125-140/+203
| | | | | | | | | | This changes from allocation on NULL to allocation on the supplied memory context. Currently that supplied context is talloc_tos() at the the final consumer of the ACL. Andrew Bartlett
* build: Add vfs_media_harmony to the waf buildAndrew Bartlett2012-10-111-0/+9
|
* s3-rpc_server: fix build warningDavid Disseldorp2012-10-101-0/+2
| | | | | | | enum dcerpc_transport_t is undeclared, include required headers. Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Wed Oct 10 12:41:28 CEST 2012 on sn-devel-104
* Make sure the returned sd is on the right context, and if not it's always freed.Jeremy Allison2012-10-091-1/+3
| | | | | Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Oct 9 23:35:50 CEST 2012 on sn-devel-104
* Move setting of psd->dacl->revision and protect against null SD's.Jeremy Allison2012-10-091-2/+4
|
* s3: Pass down smb_filename to smbacl4_fill_ace4Volker Lendecke2012-10-091-6/+6
| | | | | | | A full fsp is a bit overkill here Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Tue Oct 9 13:38:49 CEST 2012 on sn-devel-104
* s3fs-printing: Fix RAW printing for normal users.Andreas Schneider2012-10-081-1/+1
| | | | | | | This fixes bug #8769. Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Mon Oct 8 16:11:51 CEST 2012 on sn-devel-104
* s3: Add two tests a CLEAR_IF_FIRST crashVolker Lendecke2012-10-061-0/+56
| | | | | Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Sat Oct 6 17:16:39 CEST 2012 on sn-devel-104
* We should never just assign an st_mode to an ace->perms field, theoreticallyJeremy Allison2012-10-061-2/+2
| | | | | | | | | | | they are different so should go through a mapping function. Ensure this is so. Practically this does not matter, as for user permissions the mapping function is an identity, and the extra bits we may add are ignored anyway, but this makes the intent clear. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Sat Oct 6 03:04:14 CEST 2012 on sn-devel-104
* Modify ensure_canon_entry_valid() into ensure_canon_entry_valid_on_set() - ↵Jeremy Allison2012-10-051-154/+141
| | | | makes the logic clearer.
* Simplify ensure_canon_entry_valid by splitting out the _get codepath.Jeremy Allison2012-10-051-3/+86
|
* Remove the parameters:Jeremy Allison2012-10-042-8/+0
| | | | | | | | | security mask force security mode directory security mask force directory security mode and update the docs.
* Remove all uses of ↵Jeremy Allison2012-10-042-20/+10
| | | | | | lp_security_mask/lp_force_security_mode/lp_dir_security_mask/lp_force_dir_security_mode and replace with the normal masks. Now these parameters can be removed.
* Revert "Add functions to programatically set the security mask and directory ↵Jeremy Allison2012-10-042-16/+0
| | | | | | | | security mask parameters." This reverts commit 8f0ecbbbeebff0174579a78827d384067cd4cbb7. Not now needed as part of the move to remove security mask parameters.
* Revert "When creating a new file/directory, we need to obey the create ↵Jeremy Allison2012-10-041-15/+0
| | | | | | | | | mask/directory mask parameters." This reverts commit c251a6b0442abc13bc8be4ff8de324c1d7706a78. Remove this as we're planning to remove the security mask, directory security mask parameters and only use create mask/directory mask.
* s3fs-smbd: Make sure the registry is set up before we init printing.Andreas Schneider2012-10-041-4/+4
| | | | | Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Thu Oct 4 12:06:29 CEST 2012 on sn-devel-104
* waf: Build pam_smbpass module only if enabled.Andreas Schneider2012-10-042-1/+5
|
* Revert "Fix bug #9222 - smbd ignores the "server signing = no" setting for ↵Jeremy Allison2012-10-032-12/+4
| | | | | | | | | | | | | | | | | | SMB2." This reverts commit dfd3c31a3f9eea96854b2d22574856368e86b245. As Metze pointed out: From MS-SMB2 section 2.2.4: SMB2_NEGOTIATE_SIGNING_ENABLED When set, indicates that security signatures are enabled on the server. The server MUST set this bit, and the client MUST return STATUS_INVALID_NETWORK_RESPONSE if the flag is missing. I'll submit a documentation bug to fix #9222 that way.
* Fix bug #9214 - Bad user supplied SMB2 credit value can cause smbd to call ↵Jeremy Allison2012-10-031-1/+6
| | | | | | smb_panic. Terminate the connection cleanly instead.
* Fix bug #9222 - smbd ignores the "server signing = no" setting for SMB2.Jeremy Allison2012-10-032-4/+12
| | | | | | | | Still sign if client request is signed, just don't negotiate it in negprot or sessionsetup. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Oct 3 00:59:42 CEST 2012 on sn-devel-104
* When creating a new file/directory, we need to obey the create ↵Jeremy Allison2012-10-021-0/+15
| | | | | | | | | | | | | | mask/directory mask parameters. Currently we call FSET_NT_ACL to inherit any ACLs on create. However FSET_NT_ACL uses the security mask/directory security mask parameters instead of the create mask/directory mask parameters. Swap them temporarily when creating to ensure the correct masks are applied. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Oct 2 22:27:17 CEST 2012 on sn-devel-104
* Add functions to programatically set the security mask and directory ↵Jeremy Allison2012-10-022-0/+16
| | | | security mask parameters.
* When setting a non-default ACL, don't forget to apply masks to SMB_ACL_USER ↵Jeremy Allison2012-10-021-0/+10
| | | | and SMB_ACL_GROUP entries.
* Only apply masks on non-default ACL entries when setting the ACL.Jeremy Allison2012-10-021-9/+19
|
* Use is_default_acl variable in canonicalise_acl().Jeremy Allison2012-10-021-2/+3
|
* Reformat spacing to be even.Jeremy Allison2012-10-021-7/+8
|
* s3-net: Fix DEBUG() location.Günther Deschner2012-10-021-1/+1
| | | | | | | Guenther Autobuild-User(master): Günther Deschner <gd@samba.org> Autobuild-Date(master): Tue Oct 2 18:06:17 CEST 2012 on sn-devel-104
* s3-net: give more control how to update/register DNS entries.Günther Deschner2012-10-023-24/+76
| | | | Guenther
* s3-net: pass down a flags field to DoDNSUpdate().Günther Deschner2012-10-022-2/+5
| | | | Guenther
* s3-net: move out some prototypes to net_dns.h.Günther Deschner2012-10-023-22/+34
| | | | Guenther
* s3-net: pass down struct net_context to the dns update calls.Günther Deschner2012-10-021-9/+11
| | | | Guenther
* s3-kerberos: add aes enctypes to generated krb5.conf.Günther Deschner2012-10-021-5/+24
| | | | Guenther
* s3-krb5: use and request AES keys in kerberos operations.Günther Deschner2012-10-022-1/+8
| | | | Guenther
* Add samba3.samba3badnameblob test to check regressions in bug #9215.Jeremy Allison2012-10-011-1/+1
| | | | | | | Bad name in SMB1 openX can cause a crash in iconv inside glibc. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Mon Oct 1 23:29:25 CEST 2012 on sn-devel-104
* s3fs-smbd: Move housekeeping to the background process.Andreas Schneider2012-10-011-0/+9
| | | | | | | | | | | | | | | | If you add 200 printers using lpadmin. Then you wait for the printcap cache to expire. As soon as this expires we notify all deamons that they should reload the printers. This mean we need to create the default registry keys for each printer. If you do e.g. a 'smbclient -L' during that time you will get a lot of timeouts. This lets the housekeeping function of the printcap cache do the task of creating the default registry keys in background queue process. When it is done with the task it will tell all smbd childs to reload the printers and the 200 printers appear. Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Mon Oct 1 20:28:23 CEST 2012 on sn-devel-104
* s3: vfs_streams_depot: add delete_lost optionBjörn Baumbach2012-10-011-23/+42
| | | | | | | | With this option lost stream directories will be removed instead of renamed. Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Mon Oct 1 18:47:30 CEST 2012 on sn-devel-104
* s3: make recursive_rmdir function non-staticBjörn Baumbach2012-10-012-4/+7
|
* s3: Fix bug 8966, Fix net rpc share allowedusers to work with 2008r2Jeremy Allison2012-10-011-37/+44
| | | | | | | | The RAP NetShareEnum command was removed in 2008r2, so use the RPC equivalent instead. Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Mon Oct 1 07:59:34 CEST 2012 on sn-devel-104
* s3: Fix opening a file under kernel oplocksVolker Lendecke2012-09-291-0/+79
| | | | | | | | | With the prior code we assumed that we do not have kernel oplocks around when we open a file because we handled samba-internal oplock breaks before the open attempt. Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Sat Sep 29 19:29:36 CEST 2012 on sn-devel-104
* s3: Remove a SMB_ASSERTVolker Lendecke2012-09-291-2/+0
| | | | With the simplified logic this became unnecessary
* s3: Close the now opened file descriptor in error pathsVolker Lendecke2012-09-291-0/+3
|
* s3: No code change, just re-indentVolker Lendecke2012-09-291-188/+187
| | | | Look at this with "git diff -b" if you don't believe me :-)
* s3: Remove share mode handling before we open the fileVolker Lendecke2012-09-291-204/+1
| | | | | | | | This is a significant behaviour change: We do not open the file under the share mode lock anymore. This might lead to more open calls in case of oplock breaks or sharing violations, but those are slow error paths and as such might be not too performance sensitive. The benefit of this patch is a significant reduction of complexity of open_file_ntcreate()
* s3: Fix fcb_or_dos_open after logic changeVolker Lendecke2012-09-291-1/+2
| | | | | | With the new behaviour, we call fcb_or_dos_open after open_file(). It is open_file() that sets up the fsp so that fcb_or_dos_open can find it in the list of fsps. Avoid finding the fsp we are just setting up.
* s3: Copy share mode handling from before to after open_fileVolker Lendecke2012-09-291-17/+124
| | | | | | This is a 1:1 copy&paste of the oplock/sharemode code that we do before an existing file is opened. It is a prerequiste for a patch that removes all of that handling before we open the file.
* s3:libsmb: use smbXcli_conn_remote_name() in smb2_tcon_send()Stefan Metzmacher2012-09-291-4/+2
| | | | | | | metze Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Sat Sep 29 11:52:43 CEST 2012 on sn-devel-104
* s3:libsmb: make cli_echo* protocol independentStefan Metzmacher2012-09-291-32/+23
| | | | metze
generated by cgit (git 2.34.1) at 2025-09-24 22:19:07 +0000