summaryrefslogtreecommitdiff
path: root/source3/smbd/smb2_tcon.c
AgeCommit message (Collapse)AuthorFilesLines
2012-08-09Correctly check for errors in strlower_m() returns.Jeremy Allison1-1/+4
2012-08-09s3:smb2_tcon: set global->encryption_required and enforce itStefan Metzmacher1-5/+29
This the account or client doesn't support encryption we should reject the tree connect. metze
2012-08-05s3:smb2_tcon: make use of SMBD_SMB2_* macrosStefan Metzmacher1-7/+5
metze
2012-07-23s3:smb2_tcon: reject access to shares mark as "smb encrypt = required"Stefan Metzmacher1-0/+8
We do not support SMB2 transport encryption yet. metze
2012-07-18loadparm: make the source3/ lp_ functions take an explicit TALLOC_CTX *.Rusty Russell1-4/+3
They use talloc_tos() internally: hoist that up to the callers, some of whom don't want to us talloc_tos(). A simple patch, but hits a lot of files. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2012-06-25s3:smbd: make use of smbXsrv_tcon and smbXsrv_session for smb2Stefan Metzmacher1-53/+47
The removes the protocol specific smbd_smb2_session and smbd_smb2_tcon. Pair-Programmed-With: Michael Adam <obnox@samba.org> metze
2012-06-06s3:smbd: use 'struct user_struct' instead of typedef'ed 'user_struct'Stefan Metzmacher1-1/+1
metze
2012-05-14s3:smb2_tcon: make the top level code async usingStefan Metzmacher1-24/+58
metze
2012-05-14s3:smb2_tcon: add smbd_smb2_tree_connect_send/recv as wrapperStefan Metzmacher1-0/+79
metze
2012-03-06s3:smbd: keep 'num_connections' and 'connections' directly under ↵Stefan Metzmacher1-3/+0
smbd_server_connection The plan is to have connection_struct as some kind of low level abstraction for a smb1/smb2 tree connects, that can be used by SMB_VFS modules. metze
2012-03-04s3-auth: Remove security=share (depricated since 3.6).Andrew Bartlett1-1/+1
This patch removes security=share, which Samba implemented by matching the per-share password provided by the client in the Tree Connect with a selection of usernames supplied by the client, the smb.conf or guessed from the environment. The rationale for the removal is that for the bulk of security=share users, we just we need a very simple way to run a 'trust the network' Samba server, where users mark shares as guest ok. This is still supported, and the smb.conf options are documented at https://wiki.samba.org/index.php/Public_Samba_Server At the same time, this closes the door on one of the most arcane areas of Samba authentication. Naturally, full user-name/password authentication remain available in security=user and above. This includes documentation updates for username and only user, which now only do a small amount of what they used to do. Andrew Bartlett -------------- / \ / REST \ / IN \ / PEACE \ / \ | SEC_SHARE | | security=share | | | | | | 5 March | | | | 2012 | *| * * * | * _________)/\\_//(\/(/\)/\//\/\///|_)_______
2012-01-18Fix bug 8710 - connections.tdb - major leak with SMB2.Jeremy Allison1-3/+3
Ensure the cnum used to claim the connection for SMB2 is the id that will be used for the SMB2 tcon. Based on code from Ira Cooper <ira@wakeful.net>. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Jan 18 23:14:32 CET 2012 on sn-devel-104
2011-11-24s3:smb2 report access_based_dir_enum in tcon replyChristian Ambach1-0/+5
let the client know when hide unreadable or hide unwriteable files is set for a share
2011-11-24s3:smb2 do not set allow_namespace_caching flag for a shareChristian Ambach1-1/+1
this matches Win7/2002R2 behavior and clients also must ignore this flag when set (MS-SMB 2.2.10), so we should not set it at all
2011-09-07s3:smb2_server: return BAD_NETWORK_NAME if the path is terminated in SMB2_TCONStefan Metzmacher1-0/+8
metze
2011-09-07s3:smb2_server: use smbd_smb2_request_verify_sizes() in smb2_tcon.cStefan Metzmacher1-24/+8
metze
2011-07-20s3-auth Use struct auth_user_info_unix for unix_name and sanitized_usernameAndrew Bartlett1-1/+1
This is closer to the layout of struct auth_session_info in auth.idl Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-11s3:smb2_tcon: return the correct maximal_access on the shareStefan Metzmacher1-1/+1
metze
2011-07-08Move smbd_smb2_request_check_tcon() smbd_smb2_request_check_session() next ↵Jeremy Allison1-60/+0
to their only user and make them static. Add comments. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Fri Jul 8 21:01:40 CEST 2011 on sn-devel-104
2011-06-29param: Merge param headers into lib/param/loadparm.hAndrew Bartlett1-0/+1
This defines a common table format, so we can in future define a common table. Andrew Bartlett
2011-05-05More simple const fixes.Jeremy Allison1-1/+1
2011-03-30s3-auth: smbd needs auth.hGünther Deschner1-0/+1
Guenther
2011-03-30s3: include smbd/smbd.h where needed.Günther Deschner1-0/+1
Guenther
2011-03-24charcnv: removed the allow_badcharcnv and allow_bad_conv options to ↵Andrew Tridgell1-1/+1
convert_string*() we shouldn't accept bad multi-byte strings, it just hides problems Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Mar 24 01:47:26 CET 2011 on sn-devel-104
2011-02-22s3-auth Rename auth_serversupplied_info varaiables: server_info -> session_infoAndrew Bartlett1-1/+1
These variables, of type struct auth_serversupplied_info were poorly named when added into 2001, and in good consistant practice, this has extended all over the codebase in the years since. The structure is also not ideal for it's current purpose. Originally intended to convey the results of the authentication modules, it really describes all the essential attributes of a session. This rename will reduce the volume of a future patch to replaced these with a struct auth_session_info, with auth_serversupplied_info confined to the lower levels of the auth subsystem, and then eliminated. (The new structure will be the output of create_local_token(), and the change in struct definition will ensure that this is always run, populating local groups and privileges). Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2010-11-10Fix bug 7781 - Samba transforms ShareName to lowercase (sharename) when ↵Jeremy Allison1-3/+9
adding new share via MMC Change the find_service() interface to not depend on fstring, and create a useable talloc-based interface. Jeremy.
2010-10-19Move tcons.num_open from smb1 to sconn->num_tcons_open as this is needed for ↵Jeremy Allison1-0/+3
SMB2 also.
2010-10-12libcli/security Provide a common, top level libcli/security/security.hAndrew Bartlett1-0/+1
This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
2010-08-30s3: Fix some uninitialized variable warningsVolker Lendecke1-5/+5
2010-05-21Make DFS work over SMB2.Jeremy Allison1-5/+29
Jeremy.
2010-05-19Fix connecting to [homes] share over SMB2.Jeremy Allison1-3/+20
Jeremy.
2010-05-07When tearing down the connection make sure we close all files beforeJeremy Allison1-0/+1
freeing the global context, as we close access to the locking db before freeing the global context. Jeremy.
2010-05-07Fix crash in cancel-tdis lock test. Correctly shut down connection.Jeremy Allison1-1/+1
Jeremy.
2010-04-26Correctly report share types (now Win7 makes RPC calls against us).Jeremy Allison1-1/+7
Jeremy.
2010-04-17First part of fix for bug #7331 - Compound async SMB 2 requests don't work ↵Jeremy Allison1-9/+18
right. Gets us handling SMB2 compound async requests similar to W2K8R2 (and triggers the same client bug in the Win7 redirector). Great thanks to Ira Cooper <samba@ira.wakeful.net> for helping with this and to Metze for the wonderful async framework. The one thing I need to fix to make us identical to W2K8R2 is that when a compound request goes async at the end W2K8R2 splits the replies up into a compound non-async reply followed by a separate async reply. Currently we're doing the whole thing in a compound reply. Jeremy.
2010-04-07On compound requests, MS-SMB2 says clients MAY use 0xFFFFFFFF for compound ↵Jeremy Allison1-0/+19
tid and 0xFFFFFFFFFFFFFFFF for compound sessionid values. Cope with this. Jeremy.
2010-02-24Make conn_close_all() safe to call from SMB2 sessions (fix crash bug).Jeremy Allison1-2/+4
Ensure we don't call close_cnum() with SMB2, also talloc_move the compat_conn pointer from the NULL context onto the tcon context in SMB2 as it's conceptually owned by that pointer. Jeremy.
2009-12-06streamline some log levels for invalid servicenamesChristian Ambach1-1/+1
I don't think we need to log the fact that a user gave a wrong sharename in Explorer with the highest log level. The level of this was not very consistent: service.c: DEBUG(3,("find_service() failed to find service %s\n", service)); service.c: DEBUG(0,("%s (%s) couldn't find service %s\n", smb2_tcon.c: DEBUG(1,("smbd_smb2_tree_connect: couldn't find service %s\n", This changes the last two to 3 as the first one. Signed-off-by: Christian Ambach <christian.ambach@de.ibm.com>
2009-08-12libcli: move some common SMB and SMB2 stuff into libcli/smb/Stefan Metzmacher1-1/+1
This will hold code that's shared between source3 and source4. metze
2009-08-12s3:smbd: make sure we don't call conn_free() with a NULL pointer for SMB2Stefan Metzmacher1-1/+3
metze
2009-08-08s3:smbd: rename conn => sconn for smbd_server_connection structsStefan Metzmacher1-1/+1
This should avoid confusion between smbd_server_connection and connection_struct variables. metze
2009-08-07s3:smbd: add a smbd_server_connection pointer to connection_structStefan Metzmacher1-1/+1
This can be NULL for faked connection structs used in the rpc server or printing code. metze
2009-06-04s3:smbd: call set_current_service() when a SMB2 tcon will be usedStefan Metzmacher1-0/+5
metze
2009-06-03s3:smbd: return more details in the SMB2 Tree Connect responseStefan Metzmacher1-6/+32
metze
2009-06-03s3:smbd: create a connection_struct in SMB2 Tree ConnectStefan Metzmacher1-0/+19
metze
2009-05-22s3:smbd: implement SMB2 Tree DisconnectStefan Metzmacher1-0/+36
metze
2009-05-22s3:smbd: implement SMB2 Tree ConnectStefan Metzmacher1-0/+196
For now this only checks if the share is present or not. metze