summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2012-07-10Fix typo we've had for a long time in set_re_uid() in the USE_SETRESUID case.Jeremy Allison1-1/+1
We only set the real euid, not the effective one. This is not a security issue as this is *only* used in the quota code, and only between code that brackets it with save_re_uid()/restore_re_uid(), Also this is not used on most platforms (we use USE_SETREUID by preference) but it's better to have this right. Bug to follow to get this fixed in 3.6.next and 3.5.next.
2012-07-10Cope with a (non-security) open race we've had for ever as NTCreateX isn't ↵Jeremy Allison1-0/+25
atomic on POSIX. On open without create, the file did exist, but some other (local or NFS) process either renamed/unlinked and re-created the file with different dev/ino after we walked the path, but before we did the open. We could retry the open but it's a rare enough case it's easier to just fail the open to prevent creating any problems in the open file db having the wrong dev/ino key. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Jul 10 21:57:33 CEST 2012 on sn-devel-104
2012-07-10Now we have a guaranteed indication of a file being created, use it to set ↵Jeremy Allison1-12/+8
the create disposition correctly.
2012-07-10Add function fd_open_atomic() which uses O_CREAT|O_EXCL to return a ↵Jeremy Allison1-4/+107
guaranteed indication of creation of a new file.
2012-07-10Simplify the logic in open_file() some more.Jeremy Allison1-48/+36
Move the inheritance work into the if block where we created the file. We can never have created the file (and thus need no inheritance) for a stat-open. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Jul 10 03:30:22 CEST 2012 on sn-devel-104
2012-07-09Simplify the logic in open_file().Jeremy Allison1-22/+15
Move the fstat call into the block which opens a file descriptor. Remove the stat() call in the stat-open case. We already failed the open if !file_existed.
2012-07-09Use new common function.Jeremy Allison1-1/+1
2012-07-09Make check_same_stat() and check_same_dev_ino() common functions.Jeremy Allison4-31/+33
2012-07-09Factor out check_same_dev_ino() from check_same_stat() so it can be called ↵Jeremy Allison1-2/+15
separately.
2012-07-06s3: Fix Coverity ID 709470 Uninitialized scalar variableVolker Lendecke1-1/+1
Signed-off-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Fri Jul 6 18:46:06 CEST 2012 on sn-devel-104
2012-07-06auth: Common function for retrieving PAC_LOGIN_INFO from PACChristof Schmitt3-78/+7
Several functions use the same logic as kerberos_pac_logon_info. Move kerberos_pac_logon_info to common code and reuse it to remove the code duplication. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2012-07-06s3-lsarpc: Enforce a secure connection for LookupSids3 and LookupNames4.Andreas Schneider1-8/+14
http://thread.gmane.org/gmane.network.protocol.cifs.general/291
2012-07-06s3-lsarpc: Restrict lsa_LookupNames4 to ncacn_ip_tcp connections.Andreas Schneider1-12/+23
See MS-LAT, Section 2.1 Transport.
2012-07-06s3-lsarpc: Restrict lsa_LookupSids3 to ncacn_ip_tcp connections.Andreas Schneider1-12/+23
See MS-LAT, Section 2.1 Transport.
2012-07-06s3-lsarpc: Restrict the transport for ncacn_np functions.Andreas Schneider1-0/+42
See MS-LAT, section 2.1 Transport.
2012-07-06s3-rpc: Return the correct ntstatus depending on the transport.Andreas Schneider1-3/+15
2012-07-06s3-rpc_server: Make it possible to use more rpc exceptions.Andreas Schneider18-376/+348
2012-07-06s3-selftest: Run lsa tests over np and tcpip.Andreas Schneider1-0/+5
2012-07-05s3: evaluate MNT_QUOTA and MNT_RDONLY in statvfs also on darwinBjörn Jacke1-1/+1
2012-07-05s3:registry: untangle assignment from check in reg_enumkey()Michael Adam1-1/+2
Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Thu Jul 5 17:57:16 CEST 2012 on sn-devel-104
2012-07-05s3:registry: untangle assignment from check in reg_enumvalue()Michael Adam1-1/+2
2012-07-04s3: if we know a file is immutable, report it to be readonlyBjörn Jacke1-0/+6
on *BSD we get the immutable flag via st_flags, we should use that if possible.
2012-07-04Add waf/configure tests for openat.Jeremy Allison2-0/+23
Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Jul 4 02:37:59 CEST 2012 on sn-devel-104
2012-07-03Move copy_unix_token() from locking/locking.c to lib/util.c.Jeremy Allison3-29/+31
Make public.
2012-07-03Add function set_thread_credentials_permanently(). Panic if fail.Jeremy Allison2-0/+52
Not yet used.
2012-07-03Allow init_aio_threadpool() to be setup for different threadpool handles ↵Jeremy Allison1-10/+19
with different completion functions.
2012-07-03s3-smbd: Remove deprecated 'share modes' option.Andreas Schneider3-14/+0
2012-07-03s3-passdb: Remove obsolte ldapsam_compat support.Andreas Schneider7-187/+6
2012-07-03s3-printing: Remove deprecated lp_printer_admin().Andreas Schneider4-64/+14
2012-07-03s3-winbind: Remove obsolte idmap_adex.Andreas Schneider10-3795/+0
2012-07-03s3: Fix Coverity ID 709217 Dereference after null checkVolker Lendecke1-2/+10
A few lines before we did check for x != NULL. I think this might fix a potential remote crash. Signed-off-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Tue Jul 3 15:30:17 CEST 2012 on sn-devel-104
2012-07-03s3: Fix Coverity ID 709218 Uninitialized pointer readVolker Lendecke1-0/+5
Signed-off-by: Michael Adam <obnox@samba.org>
2012-07-03s3:vfs: use smbXsrv_open instead of smbXsrv_open0 in files_structMichael Adam1-1/+1
2012-07-03s3:vfs: use smbXsrv_tcon instead of smbXsrv_tcon0 in connection_struct.Michael Adam1-1/+1
2012-07-03s3:smb: include "smbXsrv.h" before "vfs.h"Michael Adam1-0/+6
This is still needed as long as smbXsrv_open/_tcon are referenced in files_struct and connection_struct respectively. Eventually, these structures should not have a backlink to the smb world any more.
2012-07-03s3:smbd: Include smbXsrv.h before vfs.h (in smbd.h) so that the smbXsrv ↵Michael Adam1-1/+1
structures are available This is currently needed for files_struct and connection_struct that contain backlinks to smbXsrv_open and smbXsrv_tcon, respectively. Finally, these backlinks to the smb level structures should be removed.
2012-07-03s3:smbd:smb2: fix prototype of make_connection_smb2() to use smbXsrv_tconMichael Adam1-2/+1
instead of internal smbXsrv_tcon0.
2012-07-03s3:smbd: include smbXsrv.h before smbd/proto.h to have the smbXsrv_ structs ↵Michael Adam1-0/+1
available
2012-07-03s3:smbd:smb2: change smbXsrv_tcon0 to smbXsrv_tcon in ↵Michael Adam1-1/+1
smbd_smb2_request_check_tcon() smbXsrv_tcon0 is the internal name for the (current) version0 of the structure. Externally, only smbXsrv_tcon should be used.
2012-07-03s3:smbd:smb2: change smbXsrv_session0 to smbXsrv_session in struct user_struct.Michael Adam1-1/+1
smbXsrv_session0 is the internal name of (current) version 0 of the structure. Externally, only smbXsrv_session should be used.
2012-07-03Fix the waf/autoconf builds to detect correctly the 32-bit or 64-bit syscall ↵Jeremy Allison2-34/+134
ABI on Linux. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Jul 3 05:32:21 CEST 2012 on sn-devel-104
2012-07-03auth: Remove .get_challenge (only used for security=server)Andrew Bartlett6-140/+6
With NTLMSSP, for NTLM2 we need to be able to set the effective challenge, so if we ever did use a module that needed this functionlity, we would downgrade to just NTLM. Now that security=server has been removed, we have no such module. This will make it easier to make the auth subsystem async, as we will not need to consider making .get_challenge async. Andrew Bartlett
2012-07-02s3-libpidfile: fix check for running process.Björn Baumbach1-1/+1
Call pidfile_pid() with process name instead of pid file name. pidfile_pid does create the pid file name by itself. Signed-off-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Mon Jul 2 19:19:21 CEST 2012 on sn-devel-104
2012-07-02s3-libpidfile: some more debug outputBjörn Baumbach1-0/+6
Signed-off-by: Michael Adam <obnox@samba.org>
2012-07-02Disable selections of USE_LINUX_THREAD_CREDENTIALS until we have specificJeremy Allison2-27/+35
32-bit and 64-bit versions. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Mon Jul 2 03:02:47 CEST 2012 on sn-devel-104
2012-06-30Don't allow asynchronous creates to be canceled in SMB2.Jeremy Allison3-3/+20
Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Sat Jun 30 04:10:02 CEST 2012 on sn-devel-104
2012-06-30Make schedule_deferred_open_message_smb() return an indication of success.Jeremy Allison2-5/+6
2012-06-30Make schedule_deferred_open_message_smb2() return an indication of success.Jeremy Allison2-7/+9
2012-06-30Allow for async opens.Jeremy Allison1-4/+35
If the SMB_VFS_OPEN() function returns -1, EINTR -> NT_STATUS_RETRY, then queue the open up to be completed when the async open completes.
2012-06-30Add new bool field async_open to struct deferred_open_record. Not used yet.Jeremy Allison1-0/+4