Age | Commit message (Collapse) | Author | Files | Lines |
|
mappings.
Jeremy.
(This used to be commit 31ba955d6950420096b9141454aa95b2510a3d9a)
|
|
(This used to be commit 60af63675063ad62c0169b9f2094ecfdaa7ca16d)
|
|
(This used to be commit fe70dcc1b63b1969c13f7fb03ec374b6e5a376a1)
|
|
Michael
(This used to be commit 5de253ba1308f470a47f9e5f83c6eccd17e95c26)
|
|
When MS introduces a new PAC type, we should just ignore it, not
generate a parse error. New PAC info structures are supposed to be
backwards compatible with old ones
(This used to be commit 2971b926c835412b02c93ad1e30f1471bc0a3612)
|
|
cannot do sendfile for this file"
(This used to be commit 737f664604b28f230be63bfc2f3d516fd9eb1c63)
|
|
We need to become root for AIO read and write to allow the AIO thread
to send a completion signal to the parent process when the IO
completes
(This used to be commit c548e5c69f9d8bc85a654f4d29d64c735a5e780b)
|
|
See this test: http://samba.org/~tridge/junkcode/aio_uid.c
The problem is that setresuid() tries to be clever about threads, and
tries to change the euid of any threads that are running. If a AIO read
or write completes while this is going on then the signal from the thread
where the IO completed is lost, as it gets -1/EPERM from rt_sigqueueinfo()
The simplest fix is to try to use setreuid() instead of setresuid(),
as setreuid() doesn't try to be clever. Unfortunately this also means
we must use become_root()/unbecome_root() in the aio code.
(This used to be commit 56c5a6f024875bb79b0104beb36f6b0ec1e1e9f9)
|
|
(This used to be commit 5ccdc58ce91ee40ca7171dd040191291aeb7fe02)
|
|
(This used to be commit 794e48b809036871287df8416a2c669b7e26f216)
|
|
Guenther
(This used to be commit d31683cdc877b468e7443216ab9e6edff844c131)
|
|
(This used to be commit b5d0f751e4bf19c2ad306ebb3baeb5e9e83e49ee)
|
|
Guenther
(This used to be commit bb9c59e892cc9d3047bde89a15cc341e2bd21bc5)
|
|
Guenther
(This used to be commit ae3fa60c4546c7420722d8f422c22bbfd623ff5b)
|
|
Guenther
(This used to be commit 543dfdc1cf6baf60bffc23c6aebc542fd58d2d2e)
|
|
Guenther
(This used to be commit 4661ef625a6522d6f859b83e3e3702f01d0b952f)
|
|
(This used to be commit 010c7101e59477f0d5f3bf11c17f474ec6f79cc1)
|
|
(This used to be commit dd9e4e6db04acf20f6ef7705955358c7ca442bbd)
|
|
This reverts commit 4ed73cbbbeff4b554cc8d28252b756241396b3a1.
... how did this end up here??
Volker
(This used to be commit 7dd9fd0956bd1c46105d1072c4774972933ab9ec)
|
|
(This used to be commit 4ed73cbbbeff4b554cc8d28252b756241396b3a1)
|
|
(This used to be commit 541e088656773d2b3b56a5a8bdc8dea6c9edec86)
|
|
(This used to be commit 79103000b13c95325534db749a0da638a3eb1807)
|
|
(This used to be commit 5314f06dcdf14ce5e038a03a3e4dfded227bd00c)
|
|
Guenther
(This used to be commit 15b72d44cbde0b8a375d8ed3d045c40ae97ec05a)
|
|
farm failures when winbindd connects as guest.
This one took a *lot* of tracking down :-).
Jeremy.
(This used to be commit dca827791276906436452c650062164eb819dfe0)
|
|
The call was looking up a uid and not gid in the cache.
(This used to be commit 25293ba1507f8f8fa7e33c302200184e980bb123)
|
|
Fix segv when talking to parent DC (joined to child domain).
The root cause was
(a) storing the parent domain in the cli_state struct caused
the NTLMSSP pipe bind to fail which made us fallover to
the schannel code path
(b) the dcinfo pointer in cm_get_schannel_dcinfo() was returning
NULL even though the function indicated success.
(This used to be commit 5ce4a2ae6697970ea37d0078a506615b4b7a9a9c)
|
|
When we added the ability for the kernel to send sec=mskrb5 to the
upcall, we subtly broke old cifs.upcall versions that don't understand
it. Bump the spnego message version to 2 to make this clear. Also,
change cifs.upcall to not reject requests with a version that's lower
than the current one, and to send the reply with the same version that
the request sent. The idea is to try and keep cifs.upcall backward
compatible with old kernels.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit b868463015dedc684eb13d12118a98ccca71250a)
|
|
Karolin
(This used to be commit 8d0a16d8034cd07037b3c7711867280d5fa5b2c8)
|
|
Karolin
(This used to be commit c7aef4b38bd2b152b316d8d76b45be4b73ca315f)
|
|
Karolin
(This used to be commit a415244365e32ba18919042ec72b3a281d8c1b0a)
|
|
Karolin
(This used to be commit fc5010e6d988939779bcb44e8a460b7b05e7ba9a)
|
|
Karolin
(This used to be commit fcfab4703628e19902c140a7ad9531d4be0de01d)
|
|
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit aa3443492c58a7c109fe159e15d763dbafc66f2a)
|
|
When building on linux, default to building cifs.upcall. Throw a
warning if ADS support is disabled or keyutils isn't installed.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit d8018d15f013b8d7be8618b75dac5112711193b7)
|
|
cifs.upcall links to libraries that live under /usr, so installing it
in /sbin doesn't seem appropriate. Move it to EPREFIX/sbin instead
(i.e. /usr/sbin).
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit 5c9a1b2c98cc712fc519225e62fba4e5088631a3)
|
|
When the kernel sends the upcall a sec=mskrb5 parameter, that means
the the MSKRB5 OID is preferred by the server. This patch fixes the
upcall to use that OID in place of the "normal" krb5 OID when it
gets a sec=mskrb5 parameter.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
Acked-by: Steve French <smfrench@gmail.com>
(This used to be commit 6287e13b34efeaa8fd94c7c6d99468350ce6172e)
|
|
krb5 mounts require that the user already have a valid krb5 ticket.
Since we can't currently use the password entered, don't prompt for it.
Also, switch to using strncmp instead of strcmp here.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit c75791c34abebe23c6f6a5534b0358514ec4eabc)
|
|
domain name.
Jeremy.
(This used to be commit 33019fe2b5f521c143fc79edb915eca69b9ed98d)
|
|
Guenther
(This used to be commit f3791e03ab09cadb1f54e32e67f4dfb3cf42e708)
|
|
When we negotiated NETLOGON_NEG_PASSWORD_SET2 we need to use
NetrServerPasswordSet2 to change the machine password.
Tested with NT4, W2k, W2k3 and W2k8.
Guenther
(This used to be commit 5820360451e4db0fad0472f814cae667b2ea51fd)
|
|
<Douglas_E_Wegscheid@whirlpool.com>.
Jeremy.
(This used to be commit 1295bb9787dde69b4be4acee7b66eb782afe9c42)
|
|
Guenther
(This used to be commit f24cef9fa7be45212744d39b7c66804e64147afd)
|
|
Guenther
(This used to be commit 7b312a0abc6de5a51555ccfbde7f8f78fc11d043)
|
|
Michael
(This used to be commit 25fed055c0ee1d892b902caae2a1188977316f14)
|
|
Michael
(This used to be commit b476400f0afcaf4e1a37b9f0b358f01dc7a194be)
|
|
build
Michael
(This used to be commit fe62098666a16b31b025867f273d407e77152c4c)
|
|
Without needing to install libsmbclient to /usr/local/samba first.
Michael
(This used to be commit f0e47bce2e98131812e96fb88cc3d1fe939e8d6c)
|
|
Michael
(This used to be commit 28688cfd57c322937f2c63087380c377bd961018)
|
|
reconnect code to cope with rebooting a DC. This
replaces the code I asked Volker to revert.
The logic is pretty simple. It adds a new parameter,
"winbind reconnect delay", set to 30 seconds by
default, which determines how long to wait between
connection attempts.
To avoid overwhelming the box with DC-probe
forked children, the code now keeps track of
the DC probe child per winbindd_domain struct
and only starts a new one if the existing one
has died.
I also added a little logic to make sure the
dc probe child always sends a message whatever
the reason for exit so we will always reschedule
another connect attempt.
Also added documentation.
Jeremy.
(This used to be commit 8027197635b988b3dcf9d3d00126a024e768fa62)
|