summaryrefslogtreecommitdiffstats
path: root/source3/include
Commit message (Collapse)AuthorAgeFilesLines
* Fix bug #8561 - Password change settings not fully observed.Jeremy Allison2011-11-161-0/+1
|
* Second part of fix for bug #8541 - readlink() on Linux clients fails if the ↵Jeremy Allison2011-10-261-0/+1
| | | | | | | symlink target is outside of the share. The statcache has to do lstat instead of stat when returning cached posix pathnames.
* Fix bug #8541 - readlink() on Linux clients fails if the symlink target is ↵Jeremy Allison2011-10-262-0/+2
| | | | | | | outside of the share. The key is to only allow the lookup to succeed if it's a UNIX level lookup or readlink, but disallow all other operations.
* Allows changing the maximum number of simultaneous clients in winbindd ↵Pierre Carrier2011-09-282-3/+1
| | | | | | | | | through an smb.conf option. Signed-off-by: Jeremy Allison <jra@samba.org> Fix bug #8186 (Allows changing the maximum number of simultaneous clients in winbindd through an smb.conf option).
* s3: Make map_open_params_to_ntcreate() available in lib/Volker Lendecke2011-08-181-6/+6
|
* s3: Make is_executable() available in lib/Volker Lendecke2011-08-181-1/+1
|
* s3: We only need base_name in map_open_params_to_ntcreateVolker Lendecke2011-08-181-1/+1
|
* Revert "Revert "s3-printing: update parent smbd pcap cache""David Disseldorp2011-05-231-0/+1
| | | | | | This reverts commit b6268f507fa3276c2ef22c58bad400a3fed48cd9. Signed-off-by: Günther Deschner <gd@samba.org>
* Revert "Revert "s3-printing: reload shares after pcap cache fill""David Disseldorp2011-05-231-2/+2
| | | | | | This reverts commit e4579eab7fe3eab7a5209e6de74e6fd2f53099d0. Signed-off-by: Günther Deschner <gd@samba.org>
* s3-libads Default to NOT using the server-supplied principal from SPNEGOAndrew Bartlett2011-05-131-0/+1
| | | | | | | | | | | | | | | | | | This principal is not supplied by later versions of windows, and using it opens up some oportunities for man in the middle attacks. (Becuase it isn't the name being contacted that is verified with the KDC). This adds the option 'client use spnego principal' to the smb.conf (as used in Samba4) to control this behaivour. As in Samba4, this defaults to false. Against 2008 servers, this will not change behaviour. Against earlier servers, it may cause a downgrade to NTLMSSP more often, in environments where server names are not registered with the KDC as servicePrincipalName values. Andrew Bartlett (cherry picked from commit bb7806283e71f3b8029aae0eed326b5847a36d83)
* Fix bug #7996 - sgid bit lost on folder rename.Jeremy Allison2011-04-011-0/+1
| | | | | Refuse to set dos attributes into unix mode bits on such a folder.
* Fix inode generation so nautilus can count total dir size correctlyNikolay Martynov2011-03-231-0/+1
| | | | | Fix bug #8010 (str_checksum often returns same value for different strings [Patch]).
* Fix bug 7950 - Samba 3.5.x fails BASE-CREATEX_SHAREMODES_DIR smbtorture4 testJeremy Allison2011-03-011-1/+2
| | | | | | | We need to revalidate the pathname once re-constructed from a root fsp. Jeremy. (cherry picked from commit 916e82823b56a70d7761644b38a250ea8c38e204)
* s3-winbindd: let winbind try to use samlogon validation level 6. (bug #7945)Günther Deschner2011-02-091-0/+2
| | | | | | | | | | | | | The benefit of this that it makes us more robust to secure channel resets triggered from tools outside the winbind process. Long term we need to have a shared tdb secure channel store though as well. Guenther Signed-off-by: Stefan Metzmacher <metze@samba.org> (similar to commit f60398d7b20869d7b09d81854f3727fdcd897430) (similar to commit 7add712498fe93603b1bffff2c633e097ce8fbdf)
* Revert "s3-printing: update parent smbd pcap cache"Karolin Seeger2011-01-151-1/+0
| | | | This reverts commit 5a2b2d4aeb6fe4af13aa0c92d22ba5bc9b7f7e13.
* Revert "s3-printing: reload shares after pcap cache fill"Karolin Seeger2011-01-151-2/+2
| | | | | | This reverts commit a8a01e4a3dcafd97372021d0d6f859fd3a69235f. This commit seems to break 'make test'.
* s3-printing: update parent smbd pcap cacheDavid Disseldorp2011-01-151-0/+1
| | | | | | | | | | | | | | | | | If a client connects to a samba share and while connected a printer is added, the client will see the new printer share after a maximum of 'printcap cache time' seconds. smbd's forked for new client connections inherit printcap information from the parent (listener) smbd, which does not perform updates on printcap cache time expiry. Therefore newly connected clients may initially be presented with stale printer shares. Add a housekeeping function to the parent smbd to ensure newly connected clients see up to date printer shares. The last 2 patches address bug #7836 (A newly added printer isn't visbile to clients).
* s3-printing: reload shares after pcap cache fillDavid Disseldorp2011-01-151-2/+2
| | | | | | | | | | | | | | | | Since commit eada8f8a, updates to the cups pcap cache are performed asynchronously - cups_cache_reload() forks a child process to request cups printer information and notify the parent smbd on completion. Currently printer shares are reloaded immediately following the call to cups_cache_reload(), this occurs prior to smbd receiving new cups pcap information from the child process. Such behaviour can result in stale print shares as outlined in bug 7836. This fix ensures print shares are only reloaded after new pcap data has been received. Pair-Programmed-With: Lars Müller <lars@samba.org>
* Fix bug #7892 - open_file_fchmod() leaves a stale lock.Jeremy Allison2010-12-311-2/+1
|
* s3: Add smbsock_any_connectVolker Lendecke2010-12-261-0/+11
|
* s3: Add an async smbsock_connectVolker Lendecke2010-12-261-0/+11
| | | | | | This connects to 445 and after 5 milliseconds also to 139. It treats a netbios session setup failure as equivalent as a TCP connect failure. So if 139 is faster but fails the nb session setup, the 445 still has the chance to succeed.
* v3-5-test: Pull in tevent_req_poll_ntstatus from masterVolker Lendecke2010-12-261-0/+3
|
* s3: Add async cli_session_requestVolker Lendecke2010-12-261-0/+7
| | | | This does not do the redirects, but I think that might be obsolete anyway
* s3: Add some const to name_mangle()Volker Lendecke2010-12-261-1/+1
|
* Add SeSecurityPrivilige.Jeremy Allison2010-11-241-0/+2
| | | | Jeremy.
* Add make_default_filesystem_acl() function to be used in following change to ↵Jeremy Allison2010-11-241-0/+4
| | | | acl_xattr and acl_tdb module.
* s3: Fix bug 7779, crash in expand_msdfsVolker Lendecke2010-11-111-0/+1
|
* s3:lib/util_str: add strlen_m_ext_term() - variant of strlen_m_ext() ↵Michael Adam2010-11-111-0/+1
| | | | counting terminator
* s3:lib/util_str: add strlen_m_ext() that takes the dest charset as a parameter.Michael Adam2010-11-111-0/+1
|
* Fix bug #7698 - Assert causes smbd to panic on invalid NetBIOS session request.Jeremy Allison2010-10-061-3/+3
| | | | | | | | | | | | | | | | Found by the CodeNomicon test suites at the SNIA plugfest. http://www.codenomicon.com/ If an invalid NetBIOS session request is received the code in name_len() in libsmb/nmblib.c can hit an assert. Re-write name_len() and name_extract() to use "buf/len" pairs and always limit reads. (Modified for 3.5.x) Jeremy.
* s3-spoolss: add and use spoolss_printerinfo2_to_setprinterinfo2().Günther Deschner2010-09-061-0/+2
| | | | | | | | | This fixes some invalid typecasts. Guenther The last 3 patches address bug #7658 (fix some "dereferencing type-punned pointer will break strict-aliasing rules" warnings).
* Fix bug 7581 - Users in "admin users" in smb.conf file are unable to ↵Jeremy Allison2010-08-231-1/+2
| | | | | | | | read/write all files when the acl_xattr vfs module is used. Correctly check admin users in smb1_file_se_access_check(). Jeremy.
* s3: Allow previous password to be stored and use it to check ticketsMatthieu Patou2010-06-032-0/+2
| | | | | | | | | | | This patch is to fix bug 7099. It stores the current password in the previous password key when the password is changed. It also check the user ticket against previous password. Signed-off-by: Günther Deschner <gd@samba.org> Fix bug #7099 (Every Thursday at 11:08-11:15am Windows Client Connections break with Kerberos errors).
* Fix bug #7410 - samba sends "raw" inode number as uniqueid with unix extensions.Jeremy Allison2010-05-252-0/+4
| | | | | | | | | | | | | Move to a consistent get_FileIndex() function for all inode returns, that checks if st_dev on the file is identical to the top directory dev_t of the exported share, and if so uses the raw 64-bit inode number. If it isn't (we've traversed a mount point) - return what we used to do for Windows which is the concatination of the bottom 32-bits of the inode with the 32-bit device number. We can get more creative with this over time (hashing?) if we want as now all inode returns go through this single function. Jeremy.
* s3-kerberos: pass down kdc_name to create_local_private_krb5_conf_for_domain().Günther Deschner2010-05-191-1/+2
| | | | | Guenther (cherry picked from commit e3bdff3d67b46277ee59685218bd90f3788b487d)
* Fix bug #7288 - SMB job IDs in CUPS job names wrong.Jeremy Allison2010-04-151-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | Based on a patch from Michael Karcher <samba@mkarcher.dialup.fu-berlin.de>. I think this is the correct fix. It causes cups_job_submit to use print_parse_jobid(), which I've moved into printing/lpq_parse.c (to allow the link to work). It turns out the old print_parse_jobid() was *broken*, in that the pjob filename was set as an absolute path - not relative to the sharename (due to it not going through the VFS calls). This meant that the original code doing a strncmp on the first part of the filename would always fail - it starts with a "/", not the relative pathname of PRINT_SPOOL_PREFIX ("smbprn."). This fix could fix some other mysterious printing bugs - probably the ones Guenther noticed where job control fails on non-cups backends. Contains c79ca41baf15b4ef7eb287d343b17a53ba41e852 and 92332fb2368c641db1552d1f2a2f7b3deaa11519 from master. Jeremy.
* s3-libsmbclient: Fix incomplete description of function return values in ↵Derrell Lipman2010-04-131-8/+14
| | | | | | libsmbclient.h. Fix bug #7345.
* Fix bug #7339 - MSDFS is non-functional in 3.5.xJeremy Allison2010-04-121-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | In the refactoring around filename_convert, the split between the functions resolve_dfspath() and resolve_dfspath_wcard() was lost, leaving us only with resolve_dfspath_wcard(). Internally resolve_dfspath_wcard() calls dfs_redirect() only with a "allow_wcards" flag of true, wheras the old resolve_dfspath() would call with a value of false. The loss of this case causes dfs_redirect to always masquerade DFS links as directories, even when they are being queried directly by a trans2 QPATHINFO call. We should only masquerade DFS links as directories when called from a SMBsearch or trans2 findfirst/findnext - which was the intent of the "allow_wcards" flag. This patch adds back an allow_wcards bool parameter to resolve_dfspath_wcard(). This bool is set from the state of the ucf_flags when filename_convert() is called. I will follow this up with a new smbclient-based torture test that will prevent us from ever regressing our DFS support again. Jeremy. (cherry picked from commit 358781559526f962c96c1af88cd104946c507d05)
* s3: Add "g_lock_do" as a convenience wrapper function (cherry picked from ↵Volker Lendecke2010-03-311-0/+4
| | | | commit 79100c242153ea174a4405afd45cbf635da313aa)
* s3:ctdb_conn: add ctdbd_conn_get_fd() to get the fd out of the ctdb connectionMichael Adam2010-03-311-0/+2
| | | | | Michael (cherry picked from commit e4af0bc5af2c3ee025ca7fac251c3672ba2c8dd5)
* s3: Add ctdb_conn_msg_ctx() (cherry picked from commit ↵Volker Lendecke2010-03-311-0/+1
| | | | 12abab711b58237ddccfa1d9bb526f8c7dbb6e9f)
* s3: Implement global locks in a g_lock tdbVolker Lendecke2010-03-312-0/+57
| | | | | | | This is the basis to implement global locks in ctdb without depending on a shared file system. The initial goal is to make ctdb persistent transactions deterministic without too many timeouts. (cherry picked from commit 4c1c3f2549f32fd069e0e7bf3aec299213f1e85b)
* s3:rpc_client: remove more unused codeStefan Metzmacher2010-03-301-4/+0
| | | | | metze (cherry picked from commit cac9981b1a88a37c703a76a951b0691fa4ba7b4b)
* s3:rpc_client: add set_timeout hook to rpc_cli_transportStefan Metzmacher2010-03-301-0/+1
| | | | | metze (cherry picked from commit 99664ad15460530b6fb44957b6c57823f09884bf)
* s3:rpc_client: add rpccli_is_connected()Stefan Metzmacher2010-03-302-0/+4
| | | | | metze (cherry picked from commit 4f41b53487ac9bc96c7960e8edab464558656373)
* s3:libsmb: add cli_state_is_connected() functionStefan Metzmacher2010-03-301-0/+1
| | | | | metze (cherry picked from commit d7bf30ef92031ffddcde3680b38e602510bcae24)
* s3-rpcclient: fix rpcclient after spoolss_GetPrinterData{Ex} IDL change.Günther Deschner2010-03-111-1/+2
| | | | | Guenther (cherry picked from commit 7643afa70e879efc059c75b8309bf89dbb3c459b)
* Revert "Fix bug #7067 - Linux asynchronous IO (aio) can cause smbd to fail ↵Karolin Seeger2010-03-091-2/+1
| | | | | | | | | to respond to a read or write." This reverts commit a6ae7a552f851a399991262377cc0e062e40ac20. This fixes bug #7222 (All users have full rigths on all shares) (CVE-2010-0728). (cherry picked from commit 1c9494c76cc9686c61e0966f38528d3318f3176f)
* Fixes issue with preexec scripts creating a share directory, and problems is ↵Jeremy Allison2010-02-151-0/+1
| | | | | | | | | | | | | | | | | a smb.conf reload turns wide links back on after a connection is establised. Includes git refs : cd18695fc2e4d09ab75e9eab2f0c43dcc15adf0b 94865e4dbd3d721c9855aada8c55e02be8b3881e 5d92d969dda450cc3564dd2265d2b042d832c542 02a5078f1fe6285e4a0b6ad95a3aea1c5bb3e8cf a6f402ad87ff0ae14d57d97278d67d0ceaaa1d82 from master. Jeremy. Fix bug #7104 ("wide links" and "unix extensions" are incompatible.)
* s3:nmbd: change "nmbd:bind explicit broadcast" into "nmbd bind explicit ↵Stefan Metzmacher2010-02-111-0/+1
| | | | | | | broadcast" metze (cherry picked from commit 0140bc389d56511c3255720856bdb64803ba8930)
generated by cgit (git 2.34.1) at 2025-08-28 21:32:46 +0000