Age | Commit message (Collapse) | Author | Files | Lines |
|
Jeremy.
(This used to be commit 2aa21db960666736331b18956422b7c13aad0f0f)
|
|
jreilly@hp.com.
Memory leak fix for new sec_ctx code (sorry Tim :-).
Jeremy.
(This used to be commit edaf49c66d5a5ccf6689b358c301e208599a468f)
|
|
(This used to be commit 927b7772a1246d60bccdf79cdb1f054c449c6bb6)
|
|
(This used to be commit 4d0c09cb4f17b60ab99767d3e61f2ad50c6c5c30)
|
|
(This used to be commit 211391d88e10d94edcc81b83fefcadb4a905ea56)
|
|
(This used to be commit a75e738211e744adb966bcbc24371554c9642220)
|
|
(This used to be commit 0dbc680e34922557a7b4ad62e898002218fa94b3)
|
|
(This used to be commit d0f55e04c9400481e4a981431715e167a8246e45)
|
|
(This used to be commit 2d3312249b3755e46d913dd40325b85db4aae62e)
|
|
(This used to be commit 2bf21395ba4999d0392d6f54093ddc8861323ddd)
|
|
(This used to be commit 3d0f1845c8cefccfabcfd35694264c1e5f52c3af)
|
|
Implemented become_root() and friends in terms of push/pop/set security
contexts.
(This used to be commit 0bcdcd0606fc2b6aba35b03255aad5bb2bd8e848)
|
|
(This used to be commit 11897939bcc073a24ff25c915beec7418a0bccfd)
|
|
Delete OriginalDir stuff.
(This used to be commit db5e6ad3a69a6fd744d8a22066587908470e3815)
|
|
this stuff doesn't need to be done as root anyway.
(This used to be commit c3cad0ff6482784f95fd54ba51ee5be2354bb95d)
|
|
code. This code is now implemented as a stack of security contexts, where
a security context is defined as a set of effective user, group and
supplementary group ids.
The following functions are implemented:
BOOL push_sec_ctx(void);
Create a new security context on the stack which is the same as the
current security context.
void set_sec_ctx(uid_t uid, gid_t gid, int ngroups, gid_t *groups);
Set the current security context to a given set of user and group
ids.
void set_root_sec_ctx(void);
Set to uid = gid = 0. No supplementary groups are set.
BOOL pop_sec_ctx(void);
Pop a security context from the stack and restore the user and group
permissions of the previous context.
void init_sec_ctx(void);
Initialise the security context stack. This must be called before any
of the other operations are used or weird things may happen.
The idea is that there is a base security context which is either root or
some authenticated unix user. Other security contexts can be pushed and
popped as needed for things like changing passwords, or rpc pipe operations
where the rpc pipe user is different from the smb user.
(This used to be commit 87c78d6d5a6bf8d0907d6f8ef5ee0d642946cad3)
|
|
blocks around a few unimplemented functions. Also had to
add cli_reg.c to Makefile.in
--jerry
(This used to be commit 426c43fb5167b042682c22e67871e5ebadb4b769)
|
|
plan' :-)
Gerald & I discussed with HP. More changes to follow.
Jeremy.
(This used to be commit 193a248beda99103c73a0b0ea5e2fbcbb516ce8e)
|
|
Removed unistr_to_ascii() as it was never used.
printing/nt_printing.c: Removed "DUMMY.XX" files.
rpc_server/srv_spoolss_nt.c: Use dos_PutUniCode() instead of ascii_to_unistr().
Attempted to fix the "return value" size code based on J.F's
comments. This needs looking at.
Jeremy.
(This used to be commit de99011bf3b2a23bd1854a047382a107aaeb9c68)
|
|
(This used to be commit 5afc5f503144c81ebc6139719fd88335fd30f4ad)
|
|
Moved the S_* macros from smb.h to includes.h
(This used to be commit b37539e323361239659256ef0837f63b6714ab95)
|
|
Jeremy.
(This used to be commit 54bf7c12b89005f0fb7d82108e8403d89931e422)
|
|
memory fixes.
Jeremy.
(This used to be commit 2a9e645cbddef1cddc5c978310b7efed492758d2)
|
|
Jeremy.
(This used to be commit 711f15ac230092bac000e63f99e8dfaa4a644847)
|
|
and the main code is declared as VOLATILE SIG_ATOMIC_T.
Jeremy.
(This used to be commit b737c784e34b0e1af014cb828ef37d5b6d73c3e2)
|
|
apparently they were not deliberate, they were probably a result of
Luke accidentally copying a CVS directory from one spot to another in
error
(This used to be commit 2d35d0cf1d152438c20648d863f5993e672337dc)
|
|
(This used to be commit ac91ef30932e3e472a16c4c756f6dfddc1b18487)
|
|
(This used to be commit 66372765e7c3f85240d54894547a150351426d5f)
|
|
(This used to be commit 87cd080441a924afd57d03e86c926a60c4416967)
|
|
(This used to be commit b3f2946d3958ef92ad7d30a52d00bcfd50229388)
|
|
(This used to be commit a8975d6e226e7271f60d5487243301db3c220d87)
|
|
instead of two prs_data pointers.
(This used to be commit 73e4466fc30fee149f51a5aa45c26beb783306c5)
|
|
descriptors. These seem to be made up of the standard and generic access
rights rather than object specific access rights.
(This used to be commit 07099fd4464eca2b5f061ef25309f41b8ab5e00b)
|
|
(This used to be commit 979e083d3dd844b98b03108e636dfe11ae157fb0)
|
|
descriptors. Currently returns True (plus debug output) which should not
affect the behaviour of nt or lanman printing.
(This used to be commit a9b4710e649e887e07d68c1bf826e00c9811e4ee)
|
|
(This used to be commit 6120d03200ed6d89640332aedc75172bdf77e2a0)
|
|
through to the individual pipe api calls. Instead of passing two
prs_struct pointers, we now pass the pipes_struct pointer which contains
the former information as well as other useful stuff like the vuid.
Pass the vuid from the pipes_struct down to the lower level spoolss
functions to perform security checks.
ZERO_STRUCTP the info_2 structure before filling it. Free the device mode
field before freeing the info_2 to avoid a memory leak. Fixed
uninitialised pointer bug in fill_job_info_2().
(This used to be commit a9547b7e3a068941cda5619f05a64e798584535a)
|
|
through to the individual pipe api calls. Instead of passing two
prs_struct pointers, we now pass the pipes_struct pointer which contains
the former information as well as other useful stuff like the vuid.
Pass the vuid from the pipes_struct down to the lower level spoolss
functions to perform security checks.
(This used to be commit f6436aacd631abeda60b87d671993f9e426cc684)
|
|
through to the individual pipe api calls. Instead of passing two
prs_struct pointers, we now pass the pipes_struct pointer which contains
the former information as well as other useful stuff like the vuid.
Removed dependency on extern current_user and fetch the vuid from the
pipes_struct.
(This used to be commit 1b06451fff11f54be7def4a427a1528bbb52f3d7)
|
|
through to the individual pipe api calls. Instead of passing two
prs_struct pointers, we now pass the pipes_struct pointer which contains
the former information as well as other useful stuff like the vuid.
(This used to be commit 96addba216bad2189120d78f5531d5caa6f37880)
|
|
(This used to be commit d0a1f96e0f699f8e3ceb0e0d826423cd643803e7)
|
|
- don't use as many locks on a store
(This used to be commit ee12b10d21022287baf4432d1df743c4b28223b2)
|
|
(This used to be commit a2f5977ac34d02cd64acd0022cb5bc065eab713f)
|
|
prevent possible deadlocks with kernel leases and harmless when kernel
leases are not used.
basically we don't ever want smbd to block
(This used to be commit 9fd67b94a7e43c9dcbe098940b88879ae8743c00)
|
|
I suspect we will either get rid of them or do them properly at some
stage.
(This used to be commit fabe1f350e1fc58db33d22cebd38652950697ced)
|
|
(This used to be commit 448f21325f8ff53f3ff5e45c22e07f7164529bc9)
|
|
(This used to be commit 6faa963b232b4c4d883c1b346c73b2f2b6da6370)
|
|
(This used to be commit 6c743427dfa2fbd6f3ab47991165db9e705eba20)
|
|
not authoritative for using winbindd.
(This used to be commit a39cdffb141a8e4188b00dfb6eb3317f134cddda)
|
|
(This used to be commit ce40ba9fba62d4debc43ab53b8564fc24d1f9e3b)
|