summaryrefslogtreecommitdiff
path: root/source3/modules
AgeCommit message (Collapse)AuthorFilesLines
2010-06-03s3-security: use shared "Standard access rights.".Günther Deschner1-1/+1
Guenther
2010-06-03s3-security: use shared "File Object specific access rights".Günther Deschner1-1/+1
Guenther
2010-06-03s3-security: use shared "Generic access rights".Günther Deschner1-2/+2
Guenther
2010-06-03s3-security: use shared SECINFO_DACL define.Günther Deschner4-16/+16
Guenther
2010-06-03s3-security: use shared SECINFO_SACL define.Günther Deschner2-7/+7
Guenther
2010-06-03s3-security: use shared SECINFO_GROUP define.Günther Deschner4-15/+15
Guenther
2010-06-03s3-security: use shared SECINFO_OWNER define.Günther Deschner4-15/+15
Guenther
2010-06-03s3: remove unused librpc/ndr/sid.c.Günther Deschner1-0/+1
Guenther
2010-06-02s3: Add vfs_linux_xfs_sgidVolker Lendecke1-0/+105
http://oss.sgi.com/bugzilla/show_bug.cgi?id=280 shows an old Linux XFS bug that still exists: Under certain circumstances the SGID bit is not inherited.
2010-06-01s3-vfs: Send the share name instead of the path in smb_traffic_analyzer.Holger Hetterich1-2/+5
In protocol v2, the name of the service should be sent instead of the path. Signed-off-by: Andreas Schneider <asn@samba.org>
2010-05-31s3-build: only use ndr_security.h where needed.Günther Deschner1-0/+2
Guenther
2010-05-28s3:auth use info3 in auth_serversupplied_infoSimo Sorce4-6/+6
Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-27vfs_smb_traffic_analyzer.c: set the len variable when running protocol v1.Holger Hetterich1-0/+1
Signed-off-by: Andreas Schneider <asn@samba.org>
2010-05-21s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett3-27/+27
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-18s3-secdesc: use SD_REVISION from security.idl.Günther Deschner3-4/+4
Guenther
2010-05-18s3-secdesc: remove "typedef struct security_descriptor SEC_DESC".Günther Deschner10-33/+38
Guenther
2010-05-18s3-secdesc: remove "typedef struct security_acl SEC_ACL".Günther Deschner3-10/+10
Guenther
2010-05-18s3-secdesc: remove "typedef struct security_ace SEC_ACE".Günther Deschner3-16/+16
Guenther
2010-05-18s3: Remove use of iconv_convenience.Jelmer Vernooij2-6/+4
2010-05-18s3-crypto: only include crypto headers when crypto is done.Günther Deschner1-0/+1
Guenther
2010-05-13Be more forgiving on client oplock break failure (as Windows does). Remove a ↵Jeremy Allison1-1/+1
global. Jeremy.
2010-05-13Treat an open of stream ::$DATA as an open of the base file.Jeremy Allison1-0/+27
This fixes a class of SMB_ASSERT failures when doing stream tests. Jeremy.
2010-05-06s3-build: fix the build of vfs_notify_fam.Günther Deschner1-0/+1
Guenther
2010-04-30Plumb the SMB2 front end into the blocking lock backend.Jeremy Allison1-13/+41
Metze, you'll probably be happier with this work as it doesn't abuse tevent in the way you dislike. This is a first cut at the code, which will need lots of testing but I'm hoping this will give people an idea of where I'm going with this. Jeremy.
2010-04-29Move the global blocking lock records into the smb1 state.Jeremy Allison1-4/+4
Jeremy
2010-04-23s3-smbd: group print relate data in own structureSimo Sorce1-2/+2
2010-04-23Allow smb2 create requests to be cancelled.Jeremy Allison1-9/+2
Jeremy.
2010-04-22Make deferred opens (NT_STATUS_SHARING_VIOLATION) work over SMB2.Jeremy Allison1-1/+1
Makes SMB2Create call re-entrant internally. Now this infrastructure is in place, oplocks will follow shortly. Tested with Win7 client and with W2K8R2. Jeremy.
2010-04-18s3: Improved support for GAMIN.Ira Cooper1-0/+15
Support the FAMNoExists API for gamin to reduce cpu use and problems when using GAMIN as FAM for vfs_notify_fam.
2010-04-12Move to using 64-bit mid values in our internal open file database.Jeremy Allison2-5/+7
This will allow us to share logic much easier between SMB1 and SMB2 servers. Jeremy
2010-04-09Plumb SMB2 stubs into all the places we defer SMB1 operations.Jeremy Allison1-34/+34
Rename functions to be internally consistent. Next step is to cope queueing single (non-compounded) SMB2 requests to put some code inside the stubs. Jeremy.
2010-04-05Fix related to bug #7326 - can't read/write any files with full_auditVolker Lendecke1-2/+3
2010-03-28s3: Use bitmap_talloc in vfs_full_audit.cVolker Lendecke1-40/+20
This also simplifies the calling convention for init_bitmap() slightly
2010-03-28s3: Fix some nonempty blank linesVolker Lendecke1-20/+19
2010-03-25s3: vfs_smb_traffic_analyzer.c: remove warnings from developer buildHolger Hetterich1-14/+16
This patch should remove all warnings coming up when compiling traffic analyzer with configure.developer. Re-activate the smb_traffic_analyzer_rmdir function by adding it's vfs_fn_pointer to vfs_smb_traffic_analyzer_fns. Copy the mode_t used in smb_traffic_analyzer_open to the corresponding data structure.
2010-03-24Fix bug #7283 - vfs_acl_tdb does not work as expected.Jeremy Allison1-34/+14
both vfs_acl_common.c and vfs_acl_tdb.c were using the connection handle, thus conflicted. Fix this. Jeremy.
2010-03-22s3: file_walk_table -> files_forallVolker Lendecke1-1/+1
This is more in line with the rest of the Samba code, like connections_forall etc.
2010-03-16s3-vfs: fix some buildwarnings in traffic analyzer, there are many more.Günther Deschner1-9/+11
Holger, please check. Guenther
2010-03-16Update copyrightJim McDonough1-1/+1
2010-03-16s3: vfs_smb_traffic_analyzer.c: add VFS functions for file open and closeHolger Hetterich2-2/+65
2010-03-16smb_traffic_analyzer.c: optimize marshalling function and documentHolger Hetterich2-34/+54
Collect all data that is needed, and use only one talloc_asprintf operation to create the string of common data. This simplifies the code a bit and is most probably faster than the old method. Also, #define SMBTA_COMMON_DATA_COUNT as a complete string, speeding things up because we know the value at compile time.
2010-03-16vfs_smb_traffic_analyzer.c: added functionHolger Hetterich1-63/+58
static char *smb_traffic_analyzer_anonymize This takes a lot of code out of the main functions, and makes it a bit simpler. Do the anonymization in a function. Since we already anonymized the username we don't need to do this a second time in the v2 marshalling function.
2010-03-16Simplify the code a bit by creating the functions:Holger Hetterich1-84/+123
smb_traffic_analyzer_encrypt - doing the encryption of a data block, smb_traffic_analyzer_create_header - create the protocol header, smb_traffic_analyzer_write_data - actually write the data to the socket.
2010-03-16Add the number of common data blocks to the protocol.Holger Hetterich2-10/+33
Always send the number of common data blocks first. This way, we can make the protocol backwards compatible. A receiver running with an older subprotocol can just ignore if a newer sender sends more common data. Add a few remarks to the marshalling function. Add two #define lines defining the protocol subrelease number and the number of common data blocks to the header file.
2010-03-16Put all the protocol stuff into a separate header file.Holger Hetterich2-114/+152
All the structures and the vfs function identifier list is required by the receiver. It's therefore very handy to have this in an extra header file.
2010-03-16Add smbta-util to manage the encryption key.Holger Hetterich1-0/+1
This program allows the administrator to enable or disable AES encryption when using vfs_smb_traffic_analyzer. It also generates new keys, stores them to a file, so that the file can be reused on another client or server.
2010-03-16Implement AES encryption of the data block.Holger Hetterich1-13/+33
First try. This runs on 16 bytes long AES block size, and enlarges the data block with 16 bytes, to make sure all bytes are in. The added bytes are filled with '.'. It then creates a header featuring the new length to be send, and finally sends the data block, then returns. This code is untested, as creating the receiver will be my next step. To simplify traffic_analyzer's code, this code should run as a function. It's on the do-to-list.
2010-03-16Implement anonymization for protocol v2.Holger Hetterich1-14/+53
Since we need to care for the SID too, do the anonymization in the marshalling function and anonymize both the username and the SID. Remove the 'A' status flag from the header definition. A listener could see from the unencrypted header if the module is anonymizing or not, which is certainly not wanted.
2010-03-16Make all remarks compatible to the linux kernel coding styleguide.Holger Hetterich1-27/+33
2010-03-16Added an exact description of the V2 protocol.Holger Hetterich1-0/+62
I don't think it should have it's place the man page, because this is developer information.