summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2011-09-01s3-rpc_server: Add missing rng_fault_state in epmapper.Andreas Schneider1-0/+2
We need to raise an exception so we need to set the rng_fault_state for epm_Insert and epm_Delete if someone connects over a transport other than NCALRPC. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Thu Sep 1 15:59:50 CEST 2011 on sn-devel-104
2011-09-01s3-rpc_server: Handle services with multiple pipe names.Andreas Schneider1-2/+10
The configuration should only use the default pipe name to configure all of them correctly.
2011-08-31Fix bug 8429 - Compound SMB2 requests on an IPC connection can corrupt the ↵Jeremy Allison1-12/+17
reply stream. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Aug 31 21:18:11 CEST 2011 on sn-devel-104
2011-08-31Based on metze's fix for Bug 8407 - SMB2 server can return requests ↵Jeremy Allison2-2/+39
out-of-order when processing a compound request. (cherry picked from commit 19db1c98c6ba3cb5e883e16e865c44900ce17444)
2011-08-31s3:smb2_server: keep compound_related on struct smbd_smb2_requestStefan Metzmacher2-4/+4
metze (cherry picked from commit cda93f04eb4e7e975b192a5fd33275ec638140ac)
2011-08-31s3-waf: fix unresolved symbols in the group policy client side extensions ↵Günther Deschner1-1/+1
subsystem. Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Aug 31 19:48:39 CEST 2011 on sn-devel-104
2011-08-31s3-waf: convert libgpo into a private library.Günther Deschner1-5/+6
Guenther
2011-08-31s3-waf: allow undefined symbols in idmap_rid module.Günther Deschner1-0/+1
Guenther
2011-08-31s3: Fix bug 8334, do not fork the echo handler for smb2Volker Lendecke1-1/+2
If a smb1 negprot negotiated smb2 we forked the echo responder. This will eventually lead to a panic from [2011/08/30 10:33:29.212578, 0, pid=3846917] smbd/smb2_server.c:243(smbd_smb2_request_create) Invalid SMB packet: first request: 0x0009 because from the echo responder we always read using the normal smb1 protocol handling routine. If that is a bit down the smb2 stream, we get a non-negprot packet and panic. BTW, the echo responder is not required for smb2 anyway, Microsoft confirmed that it probes the server liveness using TCP keepalives and not smb2 echo requests. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Wed Aug 31 17:58:48 CEST 2011 on sn-devel-104
2011-08-31s3-rpc_server: Disable epmapper by default.Andreas Schneider1-2/+2
We need more testing in the real world. We need to be sure that if a Windows client can access port 135 it doesn't require that a service is available via ncacn_ip_tcp. If possible please enable it using the following smb.conf options for testing: rpc_daemon:epmd = fork rpc_server:epmapper = external Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Wed Aug 31 16:29:20 CEST 2011 on sn-devel-104
2011-08-31s3-waf: allow unresolved symbols in some idmap and nss_info modules.Günther Deschner1-0/+7
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Aug 31 14:27:31 CEST 2011 on sn-devel-104
2011-08-31s3-waf: add missing tdb dependency to idmap_tdb2 module.Günther Deschner1-1/+1
Guenther
2011-08-31s3-waf: convert nss_info subsystem into a private library.Günther Deschner1-4/+5
Guenther
2011-08-31s3-lsa: Add _lsa_SetInformationTrustedDomain() and related callsSumit Bose1-21/+312
The following LSA calls are added: - _lsa_SetInformationTrustedDomain() - _lsa_SetTrustedDomainInfo() -_lsa_SetTrustedDomainInfoByName() Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Update _lsa_QueryTrustedDomainInfo()Sumit Bose1-8/+63
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-pdb_ipa: Add supprted encryption types to struct pdb_trusted_domainSumit Bose2-0/+24
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-pdb_ipa: Add posix offset to struct pdb_trusted_domainSumit Bose2-0/+23
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Fix access mapping in_lsa_OpenTrustedDomain_base()Sumit Bose1-1/+1
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-lsa: Fix typo and use right pdb interfaceSumit Bose1-1/+1
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3-pdb_ipa: Derive domain GUID from SIDSumit Bose1-2/+23
Signed-off-by: Günther Deschner <gd@samba.org>
2011-08-31s3:modules make perfcount_test loadable againChristian Ambach1-1/+1
use expected 'init_samba_module' name for initializer function Autobuild-User: Christian Ambach <ambi@samba.org> Autobuild-Date: Wed Aug 31 11:22:26 CEST 2011 on sn-devel-104
2011-08-31s3:lib S-1-5-9 is "Enterprise Domain Controllers"Christian Ambach1-1/+1
and not ServerLogon
2011-08-31s3:lib remove duplicate entry for "Anonymous Logon"Christian Ambach1-1/+0
2011-08-31s3:lib add S-1-5-17 to well-known SID listChristian Ambach1-0/+1
http://support.microsoft.com/kb/243330/en-us says the name is "This organization", but Windows 2008 says IUSR Picking the Windows 2008 variant as 'This Organization' would be duplicate to S-1-5-15
2011-08-31s3:lib add some more well-known sidsChristian Ambach1-0/+3
add S-1-3-2/Creator Owner Server, S-1-3-3/Creator Group Server and S-1-3-4/Owner Rights to the well-known SID list
2011-08-31s3:lib add new well-known SIDs for BUILTINChristian Ambach1-0/+8
Distributed COM Users, Cryptographic Operators, Event Log Readers and Certificate Service DCOM Access were missing from the BUILTIN well-known SID list
2011-08-31tdb2: fix build with --enable-tdb2Rusty Russell1-3/+2
tdb2 doesn't expost tdb_jenkins_hash; go straight to the source in ccan/hash. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2011-08-30s3:include: add CAP_LWIO and CAP_DYNAMIC_REAUTH definesStefan Metzmacher1-0/+2
metze
2011-08-30s3-build: move libsmb/clisigning.c to LIBSMB_SRCStefan Metzmacher2-4/+5
It's only needed in the client library. metze
2011-08-30s3:smb2 fix Bug 8428 - wrong reply to DHnC (durable handle reconnect)Christian Ambach1-6/+6
According to [MS-SMB2] 3.3.5.9.7 (http://msdn.microsoft.com/en-us/library/cc246784%28v=PROT.13%29.aspx), smbd must reply with NT_STATUS_OBJECT_NAME_NOT_FOUND as it does not support durable file-handles yet. I have seen w2k8r2 running xcopy /C ending up in an endless loop trying to get back the original file handle from smbd sending the same requests over and over. Metze, Jeremy, please check! Signed-off-by: Jeremy Allison <jra@samba.org> Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Aug 30 22:20:36 CEST 2011 on sn-devel-104
2011-08-30s3-rpc_server: Make sure we switch always the connecting user.Andreas Schneider1-13/+11
We always have a valid session info and if it is a anonymous connection we have a session info of the guest user. This means we should always call become_authenticated_pipe_user() else and anonymous user could do things as root. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Tue Aug 30 20:50:54 CEST 2011 on sn-devel-104
2011-08-30s3: Silence some warningsVolker Lendecke3-0/+56
Rusty, please suggest a proper fix for this. Thanks, Volker Lendecke Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Aug 30 19:16:14 CEST 2011 on sn-devel-104
2011-08-29Fix bug 8412 - Microsoft Office 2007 (Microsoft Word) fails to save as on a ↵Jeremy Allison2-6/+46
Samba share with SMB2.
2011-08-29Fix bug Bug 8422 - Infinite loop in ACL module code.Jeremy Allison1-1/+1
Missing assignment means this loop will never terminate. Need to be applied to 3.5.x and 3.6.1.
2011-08-29s3: Fix getent group if trusted domains are not reachableVolker Lendecke1-2/+7
2011-08-29s3:rpc_server: fix two debug messages in svcctl_add_service()Michael Adam1-2/+2
(copy and paste from eventlog?) Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Mon Aug 29 15:30:33 CEST 2011 on sn-devel-104
2011-08-29s3-lib: If we create a pipe socket, don't start to listen.Andreas Schneider4-6/+31
The create_pipe_sock() function should only create the socket as the name states and not start to listen on it too. We should start to listen on in the individual places as we need different backlog values. Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Mon Aug 29 13:21:43 CEST 2011 on sn-devel-104
2011-08-28s3:libsmb: make cli_session_request_send/recv() staticStefan Metzmacher2-13/+6
metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sun Aug 28 20:29:01 CEST 2011 on sn-devel-104
2011-08-28s3:libsmb: move cli_session_request*() to smbsock_connect.cStefan Metzmacher2-127/+129
metze
2011-08-28s3:libsmb: move cli_smb_oplock_break_waiter*() to clioplock.cStefan Metzmacher4-86/+86
metze
2011-08-28s3:libsmb: use cli_smb_req_set_mid() in cli_smb_oplock_break_waiter_send()Stefan Metzmacher1-3/+1
metze
2011-08-28s3:libsmb: let cli_smb_req_mid() return the mid set by cli_smb_req_set_mid()Stefan Metzmacher1-0/+5
metze
2011-08-26s3: Fix a winbind race leading to 100% CPUVolker Lendecke1-2/+3
This fixes a race condition that leads to the winbindd_children list becoming corrupted. It happens when on a busy winbind SIGCHLD is a bit late. Imagine a winbind with multiple requests in the queue for a single child. Child dies, and before the SIGCHLD handler is called we find the socket to be dead. wb_child_request_done is called, receiving an error from wb_simple_trans_recv. It closes the socket. Then immediately the wb_child_request_trigger will do another fork_domain_child before the signal handler is called. This means that we do another fork_domain_child, we have child->sock==-1 at this point. fork_domain_child will do a DLIST_ADD(winbindd_children, child) a second time where the child is already part of that list. This corrupts the list. Then the signal handler kicks in, spinning in for (child = winbindd_children; child != NULL; child = child->next) { forever. Not good. This patch makes sure that both conditions (sock==-1 and not part of the list) for a winbindd_child struct match up. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Fri Aug 26 18:51:24 CEST 2011 on sn-devel-104
2011-08-26s3: Fix two int/enum mixupsVolker Lendecke1-2/+2
2011-08-26s3-passdb: Allocate talloc stackframe before calling pdb_get_group_sid()Amitay Isaacs1-5/+6
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-08-26s3-param: Allocate talloc stackframe before calling s3 param routinesAmitay Isaacs1-2/+26
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-08-26s3: Use sys_write in fork_domain_childVolker Lendecke1-1/+1
Counterpart for last checkin. A lot less likely, but not impossible in a child. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Fri Aug 26 13:14:27 CEST 2011 on sn-devel-104
2011-08-26s3: Use sys_read in fork_domain_childVolker Lendecke1-1/+1
I've seen [2011/08/26 01:44:10.872057, 1] winbindd/winbindd_dual.c:1336(fork_domain_child) fork_domain_child: Could not read child status: nread=-1, error=Interrupted system call on a customer box. Not good.
2011-08-26s3-passdb: Make domain_sid argument optional for search_aliases methodAmitay Isaacs1-5/+10
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-08-26s3-passdb: Return assigned number of hours and not MAX_HOURS_LENAmitay Isaacs1-3/+4
Signed-off-by: Andrew Bartlett <abartlet@samba.org>