[SCM] Samba Shared Repository - branch master updated

Jeremy Allison Mon, 23 May 2016 18:01:58 -0700

The branch, master has been updated
       via  b2b951d heimdal make kvno unisgned internally
       via  5913329 s3-quotas: fix sysquotas_4B quota fetching for BSD
      from  2eb824f s3:rpcclient: make use of SMB_SIGNING_IPC_DEFAULT


https://git.samba.org/?p=samba.git;a=shortlog;h=master


- Log -----------------------------------------------------------------
commit b2b951d14fa9464cf2333e611e5b651e1d57cf01
Author: Uri Simchoni <u...@samba.org>
Date:   Tue May 17 13:45:11 2016 +0300

    heimdal make kvno unisgned internally
    
    The folks at heimdal didn't like the patch in
    commit 6379737b7ddc6ccb752238c5820cc62e76a8da17 and insisted
    that kvno should remain unsigned internally, even though it is
    encoded as signed in packets. This patch reverts some of the
    unsigned->signed changes in that commit, and resolves conversion
    issues - in order to be aligned with upstream Heimdal.
    
    Signed-off-by: Uri Simchoni <u...@samba.org>
    Reviewed-by: Jeremy Allison <j...@samba.org>
    
    Autobuild-User(master): Jeremy Allison <j...@samba.org>
    Autobuild-Date(master): Tue May 24 03:00:39 CEST 2016 on sn-devel-144

commit 59133295bbfd3b51953d9c86e3b533ff1d4861e3
Author: Uri Simchoni <u...@samba.org>
Date:   Sat May 21 22:25:32 2016 +0300

    s3-quotas: fix sysquotas_4B quota fetching for BSD
    
    Correctly copy block hard/soft limits from the OS-specific structure
    to samba structure.
    
    BUG:https://bugzilla.samba.org/show_bug.cgi?id=11931
    
    Signed-off-by: Uri Simchoni <u...@samba.org>
    Reviewed-by: Jeremy Allison <j...@samba.org>

-----------------------------------------------------------------------

Summary of changes:
 source3/lib/sysquotas_4B.c    |  6 ++++++
 source4/heimdal/kdc/krb5tgs.c | 17 +++++++++++++++--
 source4/heimdal/kdc/misc.c    |  2 +-
 source4/torture/rpc/lsa.c     |  2 +-
 4 files changed, 23 insertions(+), 4 deletions(-)


Changeset truncated at 500 lines:

diff --git a/source3/lib/sysquotas_4B.c b/source3/lib/sysquotas_4B.c
index e3adc35..ee56432 100644
--- a/source3/lib/sysquotas_4B.c
+++ b/source3/lib/sysquotas_4B.c
@@ -81,6 +81,12 @@ static void xlate_qblk_to_smb(const struct dqblk * const 
qblk,
        dp->hardlimit = XLATE_TO_BLOCKS(qblk->dqb_bhardlimit);
        dp->curblocks = XLATE_TO_BLOCKS(qblk->dqb_curbytes);
 #undef XLATE_TO_BLOCKS
+#else
+       dp->bsize = DEV_BSIZE;
+
+       dp->softlimit = qblk->dqb_bsoftlimit;
+       dp->hardlimit = qblk->dqb_bhardlimit;
+       dp->curblocks = qblk->dqb_curblocks;
 #endif
 
        dp->ihardlimit = qblk->dqb_ihardlimit;
diff --git a/source4/heimdal/kdc/krb5tgs.c b/source4/heimdal/kdc/krb5tgs.c
index 1d0d1dd..c221c90 100644
--- a/source4/heimdal/kdc/krb5tgs.c
+++ b/source4/heimdal/kdc/krb5tgs.c
@@ -1174,6 +1174,8 @@ tgs_parse_request(krb5_context context,
     Key *tkey;
     krb5_keyblock *subkey = NULL;
     unsigned usage;
+    krb5uint32 kvno = 0;
+    krb5uint32 *kvno_ptr = NULL;
 
     *auth_data = NULL;
     *csec  = NULL;
@@ -1201,7 +1203,12 @@ tgs_parse_request(krb5_context context,
                                       ap_req.ticket.sname,
                                       ap_req.ticket.realm);
 
-    ret = _kdc_db_fetch(context, config, princ, HDB_F_GET_KRBTGT, 
ap_req.ticket.enc_part.kvno, NULL, krbtgt);
+    if (ap_req.ticket.enc_part.kvno) {
+           kvno = *ap_req.ticket.enc_part.kvno;
+           kvno_ptr = &kvno;
+    }
+    ret = _kdc_db_fetch(context, config, princ, HDB_F_GET_KRBTGT, kvno_ptr,
+                       NULL, krbtgt);
 
     if(ret == HDB_ERR_NOT_FOUND_HERE) {
        char *p;
@@ -1541,6 +1548,8 @@ tgs_build_reply(krb5_context context,
        hdb_entry_ex *uu;
        krb5_principal p;
        Key *uukey;
+       krb5uint32 second_kvno = 0;
+       krb5uint32 *kvno_ptr = NULL;
 
        if(b->additional_tickets == NULL ||
           b->additional_tickets->len == 0){
@@ -1557,8 +1566,12 @@ tgs_build_reply(krb5_context context,
            goto out;
        }
        _krb5_principalname2krb5_principal(context, &p, t->sname, t->realm);
+       if(t->enc_part.kvno){
+           second_kvno = *t->enc_part.kvno;
+           kvno_ptr = &second_kvno;
+       }
        ret = _kdc_db_fetch(context, config, p,
-                           HDB_F_GET_KRBTGT, t->enc_part.kvno,
+                           HDB_F_GET_KRBTGT, kvno_ptr,
                            NULL, &uu);
        krb5_free_principal(context, p);
        if(ret){
diff --git a/source4/heimdal/kdc/misc.c b/source4/heimdal/kdc/misc.c
index 6fd5119..b0bc38a 100644
--- a/source4/heimdal/kdc/misc.c
+++ b/source4/heimdal/kdc/misc.c
@@ -40,7 +40,7 @@ _kdc_db_fetch(krb5_context context,
              krb5_kdc_configuration *config,
              krb5_const_principal principal,
              unsigned flags,
-             krb5int32 *kvno_ptr,
+             krb5uint32 *kvno_ptr,
              HDB **db,
              hdb_entry_ex **h)
 {
diff --git a/source4/torture/rpc/lsa.c b/source4/torture/rpc/lsa.c
index 4d0084b..fa884fb 100644
--- a/source4/torture/rpc/lsa.c
+++ b/source4/torture/rpc/lsa.c
@@ -3183,7 +3183,7 @@ static bool check_pw_with_krb5(struct torture_context 
*tctx,
        const char *old_password = 
cli_credentials_get_old_password(credentials);
        int kvno = cli_credentials_get_kvno(credentials);
        int expected_kvno = 0;
-       krb5int32 t_kvno = 0;
+       krb5uint32 t_kvno = 0;
        const char *host = torture_setting_string(tctx, "host", NULL);
        krb5_error_code k5ret;
        krb5_boolean k5ok;


-- 
Samba Shared Repository

[SCM] Samba Shared Repository - branch master updated

Reply via email to