| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
(This used to be commit be9aaffdaccae06c8c035eaf31862e34b7cfbe38)
|
|
|
|
| |
(This used to be commit 1e4ee728df7eeafc1b4d533240acb032f73b4f5c)
|
|
|
|
|
|
|
|
|
| |
in talloc
and tdb "upstream"?
Volker
(This used to be commit 68c43191c8aa4faa9801e0ab084a216ceaf4379d)
|
|
|
|
|
|
|
|
| |
a POSIX lock (applying a read-lock) and we overlap
pending read locks then send them an unlock message,
we may have allowed them to proceed.
Jeremy.
(This used to be commit a7a0b6ba50f4cf7c5a0a29809fdff9e1266a29e7)
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
attribute
name attr:: instead of attr:
German domains tend to have umlauts in group names.
More to come tomorrow.
Volker
(This used to be commit 94cdd5d64cfaa5228209eebbb76244da0bf4b518)
|
|
|
|
|
|
|
|
|
|
| |
easily,
as this puts me into svn blame in places I'm not sure I want my name to show
up....
Volker
(This used to be commit d00e73c49b5227db61d41a017eb9b71d9e7e2620)
|
|
|
|
| |
(This used to be commit 86687b804a60973883965700e755686e7d7d24f3)
|
|
|
|
|
|
|
| |
code with become_root_uid_only()/unbecome_root_uid_only()
pairs. This code needs working on.....
Jeremy.
(This used to be commit 0661d4e26614180636bc57de0c48adf8b9ce7a21)
|
|
|
|
|
|
|
|
|
| |
acls code. I'm pretty sure this was safe, but become_root()
does other things to the token stack that become_root_uid_only()
does not, and as we're going into a vfs redirectred function
I decided it wasn't safe for now.
Jeremy.
(This used to be commit b3e0f45488595aa96c852dab8e1349631a85dded)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
calls make it :
become_root_uid_only()
operation
unbecome_root_uid_only()
saving errno across the second call. Most of our internal
change calls can be replaced with these simple calls.
Jeremy
(This used to be commit 4143aa83c029848d8ec741d9218b3fa6e3fd28dd)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
fix the messaging code to call the efficient calls :
save_re_uid()
set_effective_uid(0);
messaging_op
restore_re_uid();
instead of using heavyweight become_root()/unbecome_root()
pairs around all messaging code. Fixup the messaging
code to ensure sec_init() is called (only once) so that non-root
processes still work when sending messages.
This is a lighter weight solution to become_root()/unbecome_root()
(which swaps all the supplemental groups) and should be more
efficient. I will migrate all server code over to using this
(a similar technique should be used in the passdb backend
where needed).
Jeremy.
(This used to be commit 4ace291278d9a44f5c577bdd3b282c1231e543df)
|
|
|
|
|
|
|
|
| |
calls introduced by signing code simplification.
Please test if you've seen signing problems with
3.0.23a.
Jeremy.
(This used to be commit f462daf02c12cfba634f92e681eb23a09e7d0acf)
|
|
|
|
|
| |
Jeremy.
(This used to be commit deaac5bd463e5b8fd0b9915b553fdac3a4271293)
|
|
|
|
|
|
|
|
|
|
|
| |
do with
our internal share number.
Funny that it worked at all :-)
Volker
(This used to be commit afa6e9094604afe1ef929cd936fbfa07b5473fd2)
|
|
|
|
|
| |
Jeremy.
(This used to be commit 42dec2192c1261090f2fac7a123c384f5c133587)
|
|
|
|
|
| |
Allow multiple LDAP URIs to be grouped by ""
(This used to be commit 21d69dcb3c5361f94d15b2d186e1aae6e246a24e)
|
|
|
|
|
|
|
| |
turns out that EDQUOTA must map to NT_STATUS_DISK_FULL
for Windows apps to work correctly. My mistake.
Jeremy.
(This used to be commit de1e3f7a7ae9e8a41b45130e2cdfc22f43cf53b5)
|
|
|
|
| |
(This used to be commit c152d20e9073eb741047cc4b5f8e8086e2bc9ddd)
|
|
|
|
|
| |
and createcomputer options
(This used to be commit 87be77bf35635fc925e1be36073571f8c6ec3e81)
|
|
|
|
|
|
|
| |
Jeremy, I'm sure you will look at this nevertheless :-)
Volker
(This used to be commit 3ef34468b55771b6f6b54454fa6c9decc183c565)
|
|
|
|
|
|
| |
in one place.
Jeremy.
(This used to be commit f326bae3e269046b6f087626240cddbb5dafb0e4)
|
|
|
|
|
| |
Jeremy.
(This used to be commit 8eed82d5d5ba34cc0a6b99b9d0df45eec5f788fa)
|
|
|
|
|
|
|
|
| |
to copy over the copy of the access_mask, open_access_mask.
Jerry - this is a definate fix for a 3.0.23b and should also
be on the patches page. CIFSFS breaks without this.
Jeremy.
(This used to be commit d11e71ebcccf6907f2404a04aa6bf61b12ab2709)
|
|
|
|
| |
(This used to be commit dc4fec1f7d196cf7e18d4dd58149853011380ef9)
|
|
|
|
|
|
|
| |
free in the infolevel2 case. Free both queue and
NT_PRINTER_INFO_LEVEL in the same place.
Jeremy.
(This used to be commit 6ac3a4ce78f42949013ae7bd675ff292fb0383ca)
|
|
|
|
|
|
|
|
|
| |
wasn't being freed - also one enum jobs case where the
NT_PRINTER_INFO_LEVEL and queue weren't being freed.
Strange that Coverity or Klokwork didn't pick these up.
Hopefully will fix #3962.
Jeremy.
(This used to be commit bb264123872bfec42ad85ec0c8afa3a8c7d1811e)
|
|
|
|
|
|
| |
is not an A record for each SRV name
(This used to be commit 42608b8bb974e1bd88cf2105bf1774622c045458)
|
|
|
|
|
|
| |
segv in the DNS SRV lookups dur to calling rand()
(This used to be commit be12519fd8a7ccd8400fd298e05921eda56b4e16)
|
|
|
|
|
|
| |
Based on an idea from Shlomi Yaakobovich <Shlomi@exanet.com>.
Jeremy.
(This used to be commit 9c440925f879d1e4ef99d04e2dfbe41077869204)
|
|
|
|
| |
(This used to be commit 736e55101b1e7cc22f043b836be877afbb031edf)
|
|
|
|
| |
(This used to be commit 2e400fb0077ccef38fff28ef037f982624b7815b)
|
|
|
|
| |
(This used to be commit 640b4297a400fe23418e9c1c01d4c14ce3bde5b4)
|
|
|
|
|
|
| |
sure we return -1.
Jeremy.
(This used to be commit 89b83237b03066785ca4bf3b9d120519bddeffad)
|
|
|
|
|
| |
when viewing or modifying local group membership.
(This used to be commit 41e30a9666e1fb736cd2ba8a5ad9285fcde50d47)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
A patch to make ntlm_auth recognize three new commands in
ntlmssp-client-1 and squid-2.5-ntlmssp:
The commands are the following:
Command: SF <hex number>
Reply: OK
Description: Takes feature request flags similar to samba4's
gensec_want_feature() call. So far, only NTLMSSP_FEATURE_SESSION_KEY,
NTLMSSP_FEATURE_SIGN and NTLMSSP_FEATURE_SEAL are implemented, using the same
values as the corresponding GENSEC_FEATURE_* flags in samba4.
Command: GF
Reply: GF <hex number>
Description: Returns the negotiated flags.
Command: GK
Reply: GK <base64 encoded session key>
Description: Returns the negotiated session key.
(These commands assist a wine project to use ntlm_auth for signing and
sealing of bulk data).
Andrew Bartlett
(This used to be commit bd3e06a0e4435f1c48fa3b7862333efe273119ee)
|
|
|
|
| |
(This used to be commit 4c4ae01c671bd35687af686a34824a96828e6b25)
|
|
|
|
| |
(This used to be commit c005049043b01e85d42a9c230ed3c41f1a1e185e)
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
geteuid()==0. Adapt
it to other "Am I root?" checks.
Jerry, Jeremy, please check this!
Thanks,
Volker
(This used to be commit f777b2d294f7258e676976d7807adbb644c85a2f)
|
|
|
|
|
|
|
|
| |
Maybe bzr is not such a bad idea, then you would probably see less spam on
samba-cvs, sorry for that... :-)
Volker
(This used to be commit 41456b498a181c70707ca1ea80288bd7bdcadcdf)
|
|
|
|
| |
(This used to be commit 32fbf66a4be3d1cc0251f00e54020bf2dbd0dfb0)
|
|
|
|
| |
(This used to be commit 844c98eab475ea047aeaae3ef1250897413cc823)
|
|
|
|
|
|
|
|
|
|
| |
rpc-lsa test even considers NT_STATUS_RPC_PROTSEQ_NOT_SUPPORTED not to be an
error.
Before someone re-activates this, show me a working sniff please :-)
Volker
(This used to be commit b185fb9fa61d89b612870c2fdd9e112c9e7ae57c)
|
|
|
|
|
|
|
|
|
| |
_XOPEN_SOURCE_EXTENDED
#defined getsockopt uses an int* as socklen parameter.
Volker
(This used to be commit 0b78da62f7481c6b3d46eb2f1b586d20b0b10ca5)
|
|
|
|
|
| |
it cannot be mapped and not the hex of the RID. Who wrote that?
(This used to be commit 4e51cf34cf4cbe77957d754952369df3a180f974)
|
|
|
|
|
|
|
|
|
|
|
| |
of the lock array in order to delete them individually
it's also important to make a copy of the *size* of
this array. Otherwise the unlock decrements the termination
index of your for loop :-). Doh ! Big thanks to Volker
for showing me how to set up the build farm to track
this one down. This is not a 3.0.23a issue.
Jeremy.
(This used to be commit 2c82a159ae6a4cc83989f2b453508358db516d67)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
modularizes our interface into the special posix API used on
the system. Without this patch the specific API flavor is
determined at compile time, something which severely limits
usability on systems with more than one file system. Our
first targets are AIX with its JFS and JFS2 APIs, at a later
stage also GPFS. But it's certainly not limited to IBM
stuff, this abstraction is also necessary for anything that
copes with NFSv4 ACLs. For this we will check in handling
very soon.
Major contributions can be found in the copyright notices as
well as the checkin log of the vl-posixacls branch. The
final merge to 3_0 post-3.0.23 was done by Peter Somogyi
<psomogyi@gamax.hu>
(This used to be commit ca0c73f281a2a65a988094a46bb3e46a94011a53)
|
|
|
|
|
|
|
| |
share_mode_forall().
Volker
(This used to be commit f97f6cedffdc4d10afcac90a163b93a801acf514)
|
|
|
|
| |
(This used to be commit 1a5874588686fb4ece9be70059ff75b975ed2bd5)
|
|
|
|
|
|
|
|
|
| |
This break local users and 'winbind nested groups' on domain members.
Cannot be helped.
My plans is to move the default domain crud to the client code (pam and
nss libraries) in 3.0.24.
(This used to be commit 8ee22eeab5d06008b363f8bb250dc767ddfbb86a)
|
|
|
|
|
|
|
| |
* createupn=[host_upn@realm]
* createcomputer=<ou path top to bottom> (this was previously
the only arg)
(This used to be commit 75054e984e5ca7249b1327630db9d09da974a54e)
|