Age | Commit message (Collapse) | Author | Files | Lines |
|
Jeremy.
(This used to be commit 7c820899ed1364fdaeb7b49e8ddd839e67397ec0)
|
|
(This used to be commit bb13312d9d53b1e048b3a0bfeeca088f9db84cd3)
|
|
support it (*BSD and MacOSX).
Should have done this ages ago, sorry.
Jeremy.
(This used to be commit 4c3a9558906f213948c3bdc081be73f8fed148cb)
|
|
Thanks to Christophe Curis for the suggestion
(This used to be commit 3b5ad9190d2ad6d2ca0a569194bdff9003bda13b)
|
|
Jeremy.
(This used to be commit f0ea0f3502037db878238942ee0729f6940e0b01)
|
|
This one fixes together with 2eaf4ed62 bug #5715 and CVE-2008-3789.
Thanks to Steve Langasek <vorlon@debian.org> for reporting!
Karolin
(cherry picked from commit b666d0a4b597218f5f5020bf36d80d84dcbf7259)
(This used to be commit 73f54df7fedc8f0db022f902100fd5eb1b629fb2)
|
|
This one fixes bug #5715 and CVE-2008-3789.
(cherry picked from commit a94f44c49f668fcf12f4566777a668043326bf97)
(This used to be commit 2eaf4ed62220246bcc1a9702166b0b4f381fdae3)
|
|
Jeremy.
(This used to be commit a7bbd33139c5835cf32efdbe0ef187117699e3e4)
|
|
Jeremy.
(This used to be commit 91f85d0dcaa917b7a90a77852f3a778a0ad99c4d)
|
|
we just call the legacy function ?).
Jeremy.
(This used to be commit 566d3b6e76afeca8e862cb36202a5283b86920e4)
|
|
mappings.
Jeremy.
(This used to be commit 31ba955d6950420096b9141454aa95b2510a3d9a)
|
|
(This used to be commit 60af63675063ad62c0169b9f2094ecfdaa7ca16d)
|
|
(This used to be commit fe70dcc1b63b1969c13f7fb03ec374b6e5a376a1)
|
|
Michael
(This used to be commit 5de253ba1308f470a47f9e5f83c6eccd17e95c26)
|
|
When MS introduces a new PAC type, we should just ignore it, not
generate a parse error. New PAC info structures are supposed to be
backwards compatible with old ones
(This used to be commit 2971b926c835412b02c93ad1e30f1471bc0a3612)
|
|
cannot do sendfile for this file"
(This used to be commit 737f664604b28f230be63bfc2f3d516fd9eb1c63)
|
|
We need to become root for AIO read and write to allow the AIO thread
to send a completion signal to the parent process when the IO
completes
(This used to be commit c548e5c69f9d8bc85a654f4d29d64c735a5e780b)
|
|
See this test: http://samba.org/~tridge/junkcode/aio_uid.c
The problem is that setresuid() tries to be clever about threads, and
tries to change the euid of any threads that are running. If a AIO read
or write completes while this is going on then the signal from the thread
where the IO completed is lost, as it gets -1/EPERM from rt_sigqueueinfo()
The simplest fix is to try to use setreuid() instead of setresuid(),
as setreuid() doesn't try to be clever. Unfortunately this also means
we must use become_root()/unbecome_root() in the aio code.
(This used to be commit 56c5a6f024875bb79b0104beb36f6b0ec1e1e9f9)
|
|
(This used to be commit 5ccdc58ce91ee40ca7171dd040191291aeb7fe02)
|
|
(This used to be commit 794e48b809036871287df8416a2c669b7e26f216)
|
|
Guenther
(This used to be commit d31683cdc877b468e7443216ab9e6edff844c131)
|
|
(This used to be commit b5d0f751e4bf19c2ad306ebb3baeb5e9e83e49ee)
|
|
Guenther
(This used to be commit bb9c59e892cc9d3047bde89a15cc341e2bd21bc5)
|
|
Guenther
(This used to be commit ae3fa60c4546c7420722d8f422c22bbfd623ff5b)
|
|
Guenther
(This used to be commit 543dfdc1cf6baf60bffc23c6aebc542fd58d2d2e)
|
|
Guenther
(This used to be commit 4661ef625a6522d6f859b83e3e3702f01d0b952f)
|
|
(This used to be commit 010c7101e59477f0d5f3bf11c17f474ec6f79cc1)
|
|
(This used to be commit dd9e4e6db04acf20f6ef7705955358c7ca442bbd)
|
|
This reverts commit 4ed73cbbbeff4b554cc8d28252b756241396b3a1.
... how did this end up here??
Volker
(This used to be commit 7dd9fd0956bd1c46105d1072c4774972933ab9ec)
|
|
(This used to be commit 4ed73cbbbeff4b554cc8d28252b756241396b3a1)
|
|
(This used to be commit 541e088656773d2b3b56a5a8bdc8dea6c9edec86)
|
|
(This used to be commit 79103000b13c95325534db749a0da638a3eb1807)
|
|
(This used to be commit 5314f06dcdf14ce5e038a03a3e4dfded227bd00c)
|
|
Guenther
(This used to be commit 15b72d44cbde0b8a375d8ed3d045c40ae97ec05a)
|
|
farm failures when winbindd connects as guest.
This one took a *lot* of tracking down :-).
Jeremy.
(This used to be commit dca827791276906436452c650062164eb819dfe0)
|
|
The call was looking up a uid and not gid in the cache.
(This used to be commit 25293ba1507f8f8fa7e33c302200184e980bb123)
|
|
Fix segv when talking to parent DC (joined to child domain).
The root cause was
(a) storing the parent domain in the cli_state struct caused
the NTLMSSP pipe bind to fail which made us fallover to
the schannel code path
(b) the dcinfo pointer in cm_get_schannel_dcinfo() was returning
NULL even though the function indicated success.
(This used to be commit 5ce4a2ae6697970ea37d0078a506615b4b7a9a9c)
|
|
When we added the ability for the kernel to send sec=mskrb5 to the
upcall, we subtly broke old cifs.upcall versions that don't understand
it. Bump the spnego message version to 2 to make this clear. Also,
change cifs.upcall to not reject requests with a version that's lower
than the current one, and to send the reply with the same version that
the request sent. The idea is to try and keep cifs.upcall backward
compatible with old kernels.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit b868463015dedc684eb13d12118a98ccca71250a)
|
|
Karolin
(This used to be commit 8d0a16d8034cd07037b3c7711867280d5fa5b2c8)
|
|
Karolin
(This used to be commit c7aef4b38bd2b152b316d8d76b45be4b73ca315f)
|
|
Karolin
(This used to be commit a415244365e32ba18919042ec72b3a281d8c1b0a)
|
|
Karolin
(This used to be commit fc5010e6d988939779bcb44e8a460b7b05e7ba9a)
|
|
Karolin
(This used to be commit fcfab4703628e19902c140a7ad9531d4be0de01d)
|
|
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit aa3443492c58a7c109fe159e15d763dbafc66f2a)
|
|
When building on linux, default to building cifs.upcall. Throw a
warning if ADS support is disabled or keyutils isn't installed.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit d8018d15f013b8d7be8618b75dac5112711193b7)
|
|
cifs.upcall links to libraries that live under /usr, so installing it
in /sbin doesn't seem appropriate. Move it to EPREFIX/sbin instead
(i.e. /usr/sbin).
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit 5c9a1b2c98cc712fc519225e62fba4e5088631a3)
|
|
When the kernel sends the upcall a sec=mskrb5 parameter, that means
the the MSKRB5 OID is preferred by the server. This patch fixes the
upcall to use that OID in place of the "normal" krb5 OID when it
gets a sec=mskrb5 parameter.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
Acked-by: Steve French <smfrench@gmail.com>
(This used to be commit 6287e13b34efeaa8fd94c7c6d99468350ce6172e)
|
|
krb5 mounts require that the user already have a valid krb5 ticket.
Since we can't currently use the password entered, don't prompt for it.
Also, switch to using strncmp instead of strcmp here.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
(This used to be commit c75791c34abebe23c6f6a5534b0358514ec4eabc)
|
|
domain name.
Jeremy.
(This used to be commit 33019fe2b5f521c143fc79edb915eca69b9ed98d)
|
|
Guenther
(This used to be commit f3791e03ab09cadb1f54e32e67f4dfb3cf42e708)
|