summaryrefslogtreecommitdiffstats
path: root/source3
Commit message (Collapse)AuthorAgeFilesLines
* s3-winbind: Don't fail on users without a uid.Andreas Schneider2011-11-251-1/+18
| | | | | | | | | | | | | | | | | | | This fixes bug #8608. If you join samba with idmap_ad backend to an AD. When you try to enumerate users with 'getent passwd' and the user doesn't have a uid set, then getent is aborted cause of NT_STATUS_NONE_MAPPED. If we can't map a user we should not stop but continue enumerating users. This normally happens with the default user 'krbtgt' with idmap_ad but could also happen with other backends. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Tue Nov 15 16:52:04 CET 2011 on sn-devel-104 (backported from commit 10b285ccc29b106f164a6c18116e237634867717) Signed-off-by: Andreas Schneider <asn@samba.org>
* s3:libsmb: consistently use state->size in cli_write_andx_create() (bug #5326)Stefan Metzmacher2011-11-161-1/+1
| | | | | | | | | | | | | Otherwise we may get unexpected results. This is a fix that was missing in commit 95595dd93fd04999fcf56ecaab7c29b064d021f8 (s3:libsmb: fix cli_write_and_x() against OS/2 print shares (bug #5326)) metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Nov 9 10:13:32 CET 2011 on sn-devel-104 (cherry picked from commit 4b31c4273c45faa639445614061f3da548eb8505)
* s3:libsmb: fix cli_write_and_x() against OS/2 print shares (bug #5326)Stefan Metzmacher2011-11-161-4/+15
| | | | | | | | | | | Print shares doesn't support CAP_LARGE_WRITEX, while it's negotiated by the file server part. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Tue Nov 8 17:01:36 CET 2011 on sn-devel-104 (cherry picked from commit 95595dd93fd04999fcf56ecaab7c29b064d021f8)
* Fix bug #8561 - Password change settings not fully observed.Jeremy Allison2011-11-163-6/+37
|
* s3:rpc_server/srv_netlogon: make sure we don't use an unitialized variableStefan Metzmacher2011-11-031-2/+10
| | | | | | metze The last 3 patches address bug #8562 (talloc: double free error).
* VERSION: Bump version up to 3.5.13.Karolin Seeger2011-11-031-1/+1
| | | | Karolin
* Fix bug #8542 - smbclient posix_open command fails to return correct info on ↵Jeremy Allison2011-10-261-2/+2
| | | | | | open file. (cherry picked from commit d27f5a277ef47c5ff94e402930680b37e8f4d592)
* Third part of fix for bug #8541 - readlink() on Linux clients fails if the ↵Jeremy Allison2011-10-261-2/+1
| | | | | | | | | | symlink target is outside of the share. Missed passing ucf_flags instead of hard coded flags in findfirst call. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Oct 22 06:30:16 CEST 2011 on sn-devel-104 (cherry picked from commit f4593181876f7a9ef55ceee8d1a20369197a63ba)
* Second part of fix for bug #8541 - readlink() on Linux clients fails if the ↵Jeremy Allison2011-10-263-2/+12
| | | | | | | symlink target is outside of the share. The statcache has to do lstat instead of stat when returning cached posix pathnames.
* Fix bug #8541 - readlink() on Linux clients fails if the symlink target is ↵Jeremy Allison2011-10-264-11/+43
| | | | | | | outside of the share. The key is to only allow the lookup to succeed if it's a UNIX level lookup or readlink, but disallow all other operations.
* Use existing ISDOT and ISDOTDOT macros.Jeremy Allison2011-10-261-2/+1
| | | | | | Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Jul 28 02:09:20 CEST 2011 on sn-devel-104 (cherry picked from commit d82256ca119eb8315cc69ba725ba71c386caa901)
* s3-netapi: remove pointless use_memory_krb5_ccache.Günther Deschner2011-10-262-20/+0
| | | | | | | | This breaks the ABI. Guenther See bug #7465 for more details.
* s3:Makefile: make DSO_EXPORTS_CMD more portable (#8531)Björn Jacke2011-10-211-1/+1
| | | | | | | | | | | It sems like every not completely trivial sed expression should be tested with Solaris' sed. Its regexp engine is way more limited than the one of GNU sed. Thanks to Michael Pelletier for finding this! This fixes bug #8531 Autobuild-User: Björn Jacke <bj@sernet.de> Autobuild-Date: Thu Oct 20 23:15:05 CEST 2011 on sn-devel-104 (cherry picked from commit 37be1df3d7534c2cc8e1e25614164c2178372b94) (cherry picked from commit 763ad499aa4423c5e68a75f20f2ba8ee967e5984)
* Fix bug #8515 - Empty CIFS share can be blocked for other clients by ↵Volodymyr Khomenko2011-10-121-0/+8
| | | | | | | | | | deleting it via empty path (DELETE_PENDING until the last client) Disallow "." in can_set_delete_on_close(). Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Oct 12 21:07:27 CEST 2011 on sn-devel-104 (cherry picked from commit bd260f03ab492d03c2890db47dc6fb4f1b824a1a)
* Bug 7551: Return error of cli_push when 'put - /some/file' is usedBram2011-10-081-1/+1
| | | | | | Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Sep 29 23:47:02 CEST 2011 on sn-devel-104 (cherry picked from commit d883cc664cac81633a60e5b04f99f23a3577ae65)
* Bug 7551: Return error of cli_push when 'put - /some/file' is used.Jeremy Allison2011-10-081-0/+1
|
* Fix bug #8507 - smbd doesn't correctly honor the "force create mode" bits ↵Jeremy Allison2011-10-081-6/+6
| | | | | | from a cifsfs create. Don't manipulate the new_dos_attributes bits until we know it's not a POSIX open.
* Second part of fix for bug #8443 - Default user entry is set to minimal ↵Jeremy Allison2011-10-081-8/+11
| | | | | | permissions on incoming ACL change with no user specified. Be smarter about setting default permissions when a ACL_USER_OBJ isn't given. Use the principle of least surprises for the user.
* First part of fix for bug #8443 - Default user entry is set to minimal ↵Jeremy Allison2011-10-081-58/+2
| | | | | | | permissions on incoming ACL change with no user specified. create_default_mode() is not needed - it's taken care of by code inside ensure_canon_entry_valid().
* Part 3 of bugfix for bug #7509 - smb_acl_to_posix: ACL is invalid for set ↵Jeremy Allison2011-10-081-7/+6
| | | | | | | | (Invalid argument) Don't call check_owning_objs() to convert ACL_USER->ACL_USER_OBJ and AC_GROUP->ACL_GROUP_OBJ for default (directory) ACLs, we do this separately inside ensure_canon_entry_valid().
* Part 2 of bugfix for bug #7509 - smb_acl_to_posix: ACL is invalid for set ↵Jeremy Allison2011-10-081-0/+38
| | | | | | | (Invalid argument) Only map CREATOR_OWNER/CREATOR_GROUP to ACL_USER_OBJ/ACL_GROUP_OBJ in a default(directory) ACL set.
* Part 1 of bugfix for bug #7509 - smb_acl_to_posix: ACL is invalid for set ↵Jeremy Allison2011-10-081-72/+0
| | | | | | | (Invalid argument) Remove the code I added for bug "6878 - Cannot change ACL's inherit flag". It is incorrect and causes the POSIX ACL ACL_USER_OBJ duplication.
* Fix bug #8458 - IE9 on Windows 7 cannot download files to samba 3.5.11 shareJeremy Allison2011-10-081-0/+25
| | | | Handle the SECINFO_LABEL flag in the same way as Win2k3.
* Fix bug #8493 - DFS breaks zip file extracting unless "follow symlinks = no" setJeremy Allison2011-10-031-11/+2
| | | | | | | | | If a client sends a mangled name as part of a DFS path, use the post-mangled name for the pathname walk, not the mangled name. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Oct 1 00:45:59 CEST 2011 on sn-devel-104 (cherry picked from commit 149875f887287dbbf016d2252962b023b0bae967)
* Patch for bug #8156 - net ads join fails to use the user's kerberos ticket.Jeremy Allison2011-09-301-10/+27
| | | | | | | If kerberos_get_realm_from_hostname() or kerberos_get_default_realm_from_ccache() fails due to a misconfigured krb5.conf, try the "realm =" from smb.conf as a fallcback before going back to NTLMSSP (which we'll do anyway). (cherry picked from commit ccab9efb653cfacdd357986f7a8a85c17df7abbb)
* Allows changing the maximum number of simultaneous clients in winbindd ↵Pierre Carrier2011-09-284-9/+16
| | | | | | | | | through an smb.conf option. Signed-off-by: Jeremy Allison <jra@samba.org> Fix bug #8186 (Allows changing the maximum number of simultaneous clients in winbindd through an smb.conf option).
* s3-winbind: Fix bug 7888 -- deal with buggy 3.0 based PDCs.Günther Deschner2011-09-281-14/+36
| | | | Guenther
* s3-nmbd: fix memleak in create_listen_fdset().Günther Deschner2011-09-281-0/+2
| | | | | | Guenther The last 2 patches address bug #8491 (fix some coverity issues).
* Fix bug 8480 - acl_xattr can free an invalid pointer if no blob is loaded.David Disseldorp2011-09-281-1/+1
|
* s3-netapi: allow to use default krb5 credential cache for libnetapi users.Günther Deschner2011-09-262-7/+23
| | | | Guenther
* s3-libnet: allow to use default krb5 ccache in libnet_Join/libnet_Unjoin.Günther Deschner2011-09-262-30/+4
| | | | | | We force using a MEMORY ccache though in the wkssvc server. Guenther
* s3: Fix bug 7844: Race in winbindVolker Lendecke2011-09-221-4/+8
| | | | | | | | | | | | | If a child dies, the parent process right away closes the socket. This is wrong, with tevent we still have events pending. This works fine for epoll but does not for at least the FreeBSD select variant. Tevent sticks a closed socket into the select masks. This then returns an error EBADF. When this happens, the parent winbind dies instead of forking a new child. This moves the socket close from the SIGCHLD cleanup function to the socket receiver. I could not reproduce the parent death anymore and it did not create an obvious fd leak.
* s3:libsmb: check the wct of the incoming SMBnegprot responsesStefan Metzmacher2011-09-151-0/+10
| | | | | | | | metze Fix bug #8452 (negprot reply needs to check vwv vector length). The corresponding commit in master is 85332eb1c721d585e1a33101bddafdca4073e10f.
* v3-5-test: Fix getent group if trusted domains are not reachableVolker Lendecke2011-08-301-2/+6
| | | | Fix bug #8420 (wb_group_members: non-resistance against garbage).
* Fix bug Bug 8422 - Infinite loop in ACL module code.Jeremy Allison2011-08-301-1/+1
| | | | | Missing assignment means this loop will never terminate. Need to be applied to 3.5.x and 3.6.1.
* s3-vfs: Fix vfs_chown_fsp.Jeremy Allison2011-08-201-2/+11
| | | | Fix bug #8370 (vfs_chown_fsp broken -- returns in the wrong directory).
* s3: Fix bug 8360Volker Lendecke2011-08-181-7/+16
| | | | | OS/2 sends an unexpected write&x/read&x chain (cherry picked from commit 2aca833308049d005c647aabcd9d894f59698ef4)
* s3: Add a fallback for missing open&x support in OS/X LionVolker Lendecke2011-08-181-20/+71
| | | | | The last 4 patches address bug #8338 (MAC Lion - smbclient "Open AndX Request->STATUS_NOT_SUPPORTED).
* s3: Make map_open_params_to_ntcreate() available in lib/Volker Lendecke2011-08-183-147/+147
|
* s3: Make is_executable() available in lib/Volker Lendecke2011-08-183-18/+18
|
* s3: We only need base_name in map_open_params_to_ntcreateVolker Lendecke2011-08-184-9/+12
|
* s3/swat: use strlcat instead of strncat to fix build on old Linux distrosBjörn Jacke2011-08-091-1/+1
| | | | | | | | | | | | | | SLES 9's glibc for example had weird macros where the use of strncat resulted in the use of strcat which we don't allow. Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Björn Jacke <bj@sernet.de> Autobuild-Date: Thu Aug 4 17:50:24 CEST 2011 on sn-devel-104 (cherry picked from commit d3b4d75364210e2d2a4a1cd806f28b0021f22909) Fix bug #8362 (build issue on old glibc systems). (cherry picked from commit 87fa72a5202fe3780d4a61289bf755027cd078f4)
* s3:web/swat: use strtoll() instead of atoi/atol/atollStefan Metzmacher2011-08-091-6/+19
| | | | | | | | | | | | | This is more portable, as we have a strtoll replacement in lib/replace. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sat Aug 6 11:55:45 CEST 2011 on sn-devel-104 (cherry picked from commit a6be0820d09b3f3eabfbb5f4356add303aa8a494) Fix bug #8347 (CVE-2011-2522 regression for HP-UX, AIX and OSF).
* VERSION: Bump version up to 3.5.12.Karolin Seeger2011-08-041-1/+1
| | | | Karolin
* s3: Test for "__attribute__((destructor))"Volker Lendecke2011-07-271-0/+16
| | | | | | (cherry picked from commit 36e736871e28665ffcbbc4d0c87e1a2b60fcf0e0) Fix bug #8322 (HAVE_FUNCTION_ATTRIBUTE_DESTRUCTOR is missing from 3.5.x).
* VERSION: Bump version up to 3.5.11.Karolin Seeger2011-07-261-1/+1
| | | | | Karolin (cherry picked from commit b6678d3dbcba6a2ee4961d2565477d362035e1b3)
* s3-swat: Fix typo.Karolin Seeger2011-07-261-1/+1
| | | | | | | Thanks to Simo for reporting! Karolin (cherry picked from commit 9f73c1990a19daa899fa5345530a867e69a5be94)
* s3 swat: Create random nonce in CGI modeKai Blin2011-07-261-1/+19
| | | | | | | | | | | | | | In CGI mode, we don't get access to the user's password, which would reduce the hash used so far to parameters an attacker can easily guess. To work around this, read the nonce from secrets.tdb or generate one if it's not there. Also populate the C_user field so we can use that for token creation. Signed-off-by: Kai Blin <kai@samba.org> The last 12 patches address bug #8290 (CSRF vulnerability in SWAT). This addresses CVE-2011-2522 (Cross-Site Request Forgery in SWAT). (cherry picked from commit 0e17d8ef7e4004a0d35011c322b93b6da5811951)
* s3 swat: Add time component to XSRF tokenKai Blin2011-07-262-5/+25
| | | | | Signed-off-by: Kai Blin <kai@samba.org> (cherry picked from commit 227921871146563c1d57f9a8faa3b8354058740c)
* s3 swat: Add XSRF protection to printer pageKai Blin2011-07-261-10/+18
| | | | | Signed-off-by: Kai Blin <kai@samba.org> (cherry picked from commit c287fe37acc8d8cd64ffc5227498f5950df64c2b)
generated by cgit (git 2.34.1) at 2025-08-28 23:23:10 +0000