summaryrefslogtreecommitdiff
path: root/source3/include
AgeCommit message (Collapse)AuthorFilesLines
2010-03-24s3:ntlmssp: add const for *sig in ntlmssp_unseal_packet()Stefan Metzmacher1-1/+1
metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: make whole_pdu const for ntlmssp_[un]seal_packet()Stefan Metzmacher1-2/+2
Only data needs to be non-const. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: make send_seal_key and recv_seal_key local variablesStefan Metzmacher1-2/+0
metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: rename void *auth_context; into void *callback_private;Stefan Metzmacher1-1/+4
metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: add some constsStefan Metzmacher1-3/+3
metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: remove unused get_global_myname() and get_domain() from ↵Stefan Metzmacher1-3/+0
ntlmssp_state Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: pass names and use_ntlmv2 to ntlmssp_client_start() and store themStefan Metzmacher2-1/+10
Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: remove server_name from ntlmssp_state and fill the server.* ↵Stefan Metzmacher1-1/+0
fields also for the client Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: pass names to ntlmssp_server_start() and store them in ntlmssp_stateStefan Metzmacher2-1/+11
Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: replace server_role by a server.is_standalone in ntlmssp_stateStefan Metzmacher1-1/+4
Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-24s3:ntlmssp: make use of C99 types in ntlmssp_sign.cStefan Metzmacher1-11/+11
metze Signed-off-by: Günther Deschner <gd@samba.org>
2010-03-23s3:librpc/rpc: move prototypes to dcerpc.hStefan Metzmacher1-18/+0
metze
2010-03-23s3-builtin: Add missing builtin groups.Karolin Seeger1-0/+4
Karolin
2010-03-23s3-builtin: Add some builtin groups.Karolin Seeger1-0/+3
Karolin
2010-03-22share_info.tdb could use non-canonicalized sharenames.Jeremy Allison1-0/+1
Fix this by moving canonicalization into lib/sharesec.c. Update the db version to 3. Ensures we always find share names with security descriptors attached. Jeremy.
2010-03-22s3: Add the "ctdb locktime warn threshold" parameterVolker Lendecke1-0/+1
This is mainly a debugging aid for post-mortem analysis in case a cluster file system is slow.
2010-03-22s3:param: add "async smb echo handler" optionStefan Metzmacher1-0/+1
This will enable an extra forked process that will reply to SMBecho requests, while the main process is blocked by another request. metze
2010-03-22s3:smbd: add an option to skip signings checks srv_check_sign_mac for ↵Stefan Metzmacher1-1/+1
trusted channels metze
2010-03-22s3:libsmb: add a smb_signing_init_ex() functionStefan Metzmacher1-0/+5
Make it possible to overload memory handling functions. metze
2010-03-22s3: Add "log writeable files on exit" parameterVolker Lendecke1-0/+1
This boolean option controls whether at exit time the server dumps a list of files with debug level 0 that were still open for write. This is an administrative aid to find the files that were potentially corrupt if the network connection died.
2010-03-22s3: file_walk_table -> files_forallVolker Lendecke1-1/+1
This is more in line with the rest of the Samba code, like connections_forall etc.
2010-03-19s3:librpc: remove unused stuffStefan Metzmacher1-11/+0
metze
2010-03-16s3: Make login_cache_write take a pointerVolker Lendecke1-1/+2
2010-03-16s3: Make login_cache_read take a pointer, avoid a mallocVolker Lendecke1-1/+1
2010-03-16s3: Remove a typedefVolker Lendecke2-4/+4
2010-03-15Remove the bool admin_user from conn struct. We no longer look at this to ↵Jeremy Allison1-2/+0
make access decisions. Jeremy.
2010-03-15Pass "connection_struct *conn" into functions that currently use ↵Jeremy Allison1-1/+1
"current_user.XXX" Will allow me to replace them with accessor functions. Jeremy.
2010-03-15Add accessor functions for current uid, gid, unix token, NT token and vuid.Jeremy Allison1-0/+5
Jeremy.
2010-03-15Rever e80ceb1d7355c8c46a2ed90d5721cf367640f4e8 "Remove more uses of "extern ↵Jeremy Allison1-6/+1
struct current_user current_user;"." As requested by Volker, split this into smaller commits. Jeremy.
2010-03-14s3: Remove some unused #definesVolker Lendecke1-8/+0
2010-03-14s3: Remove some unused codeVolker Lendecke1-4/+0
2010-03-14s3: Fix some nonempty blank linesVolker Lendecke4-13/+12
2010-03-13s3: Make tdb_wrap_open more robustVolker Lendecke1-2/+0
This hides the use of talloc_reference from the caller, making it impossible to wrongly call talloc_free() on the result.
2010-03-12Missed a couple more uses of conn->server_info->ptok that need to be ↵Jeremy Allison1-4/+5
get_current_nttok(conn) Centralize the root check into smb1_file_se_access_check() so this is used by modules/vfs_acl_common.c also. Jeremy.
2010-03-12Remove more uses of "extern struct current_user current_user;".Jeremy Allison1-1/+6
Use accessor functions to get to this value. Tidies up much of the user context code. Volker, please look at the changes in smbd/uid.c to familiarize yourself with these changes as I think they make the logic in there cleaner. Cause smbd/posix_acls.c code to look at current user context, not stored context on the conn struct - allows correct use of these function calls under a become_root()/unbecome_root() pair. Jeremy.
2010-03-12s3: Add "g_lock_do" as a convenience wrapper functionVolker Lendecke1-0/+4
2010-03-12s3: Fix a commentVolker Lendecke1-1/+1
2010-03-11Move prototype to header of common code for set_sockaddr_portAndrew Bartlett1-1/+0
2010-03-10s3: Fix a long-standing problem with recycled PIDsVolker Lendecke4-0/+69
When a samba server process dies hard, it has no chance to clean up its entries in locking.tdb, brlock.tdb, connections.tdb and sessionid.tdb. For locking.tdb and brlock.tdb Samba is robust by checking every time we read an entry from the database if the corresponding process still exists. If it does not exist anymore, the entry is deleted. This is not 100% failsafe though: On systems with a limited PID space there is a non-zero chance that between the smbd's death and the fresh access, the PID is recycled by another long-running process. This renders all files that had been locked by the killed smbd potentially unusable until the new process also dies. This patch is supposed to fix the problem the following way: Every process ID in every database is augmented by a random 64-bit number that is stored in a serverid.tdb. Whenever we need to check if a process still exists we know its PID and the 64-bit number. We look up the PID in serverid.tdb and compare the 64-bit number. If it's the same, the process still is a valid smbd holding the lock. If it is different, a new smbd has taken over. I believe this is safe against an smbd that has died hard and the PID has been taken over by a non-samba process. This process would not have registered itself with a fresh 64-bit number in serverid.tdb, so the old one still exists in serverid.tdb. We protect against this case by the parent smbd taking care of deregistering PIDs from serverid.tdb and the fact that serverid.tdb is CLEAR_IF_FIRST. CLEAR_IF_FIRST does not work in a cluster, so the automatic cleanup does not work when all smbds are restarted. For this, "net serverid wipe" has to be run before smbd starts up. As a convenience, "net serverid wipedbs" also cleans up sessionid.tdb and connections.tdb. While there, this also cleans up overloading connections.tdb with all the process entries just for messaging_send_all(). Volker
2010-03-08Revert "Fix bug #7067 - Linux asynchronous IO (aio) can cause smbd to fail ↵Karolin Seeger1-2/+1
to respond to a read or write." This reverts commit a6ae7a552f851a399991262377cc0e062e40ac20. This fixes bug #7222 (All users have full rigths on all shares) (CVE-2010-0728). (cherry picked from commit 1c9494c76cc9686c61e0966f38528d3318f3176f)
2010-03-05Fix for bug #7189 - Open txt files with notepad on samba shares creates problem.Jeremy Allison4-11/+25
Ensure we don't use any of the create_options for Samba private use. Add a new parameter to the VFS_CREATE call (private_flags) which is only used internally. Renumber NTCREATEX_OPTIONS_PRIVATE_DENY_DOS and NTCREATEX_OPTIONS_PRIVATE_DENY_FCB to match the S4 code). Rev. the VFS interface to version 28. Jeremy.
2010-03-05s3-rpcclient: fix rpcclient after spoolss_GetPrinterData{Ex} IDL change.Günther Deschner1-1/+2
Guenther
2010-03-03s3: build sddl.c in samba3Michael Adam1-0/+1
2010-03-01s3: Abstract access to sessionid.tdb, similar to conn_tdb.cVolker Lendecke1-0/+13
2010-03-01s3: Add connections_forall_read()Volker Lendecke1-0/+4
In a cluster, this makes a large difference: For r/w traverse, we have to do a fetch_locked on every record which for most users of connections_forall is just overkill.
2010-02-28s3: Remove unused count_all_current_connections()Volker Lendecke1-1/+0
2010-02-26s3: remove unused schannel_auth_struct.Günther Deschner1-6/+0
Guenther
2010-02-25Implement rename/move in SMB2 from Windows7.Jeremy Allison1-0/+1
Jeremy.
2010-02-24s3: Make connections_fetch_record() staticVolker Lendecke1-2/+0
2010-02-23s3:schannel streamline interfaceSimo Sorce2-11/+0
Make calling schannel much easier by removing the need to explicitly open the database. Let the abstraction do it instead.