Re: [Samba] Winbind 3.5.2 caching issues under SLES11???
Deleting the tdb files didn't solve the problem. It's really weird. For example I have a AD user that is member of three groups: Domain users (primary) And two other project groups. I removed him from the two project groups, the change is immediately effective under SLES9 3.5.2 Winbind but on the SLES11 system, even after a reboot the change is still not effective. I wonder where the hell this is beeing cached? Because if the winbind daemon would query active directory it should no longer list this user as a member of the two project groups. The Behaviour is the same throughout all of our SLES11 machines. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Winbind 3.5.2 caching issues under SLES11???
On Mon, Apr 26, 2010 at 09:51:47AM +0200, Oliver Weinmann wrote: Deleting the tdb files didn't solve the problem. It's really weird. For example I have a AD user that is member of three groups: Domain users (primary) And two other project groups. I removed him from the two project groups, the change is immediately effective under SLES9 3.5.2 Winbind but on the SLES11 system, even after a reboot the change is still not effective. I wonder where the hell this is beeing cached? Because if the winbind daemon would query active directory it should no longer list this user as a member of the two project groups. The Behaviour is the same throughout all of our SLES11 machines. netsamlogon_cache.tdb is probably the culprit. Once you log in using pam or for example wbinfo -a the problem should be gone. Volker signature.asc Description: Digital signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Winbind 3.5.2 caching issues under SLES11???
netsamlogon_cache.tdb is probably the culprit. Once you log in using pam or for example wbinfo -a the problem should be gone. Volker Ok, I have now deleted the netsamlogon_cache.tdb, restarted the samba service and logged in as the user. The groups are now no longer shown. I tried the same steps again with a different user and the problem is the same again. This time it was sufficient to restart the samba service. I wonder why on the SLES9 system the change is immediately effective but on the SLES11 box I need to restart the winbind service? The configs are exactly the same on both machines. Anyway thanks for pointing this out Volker. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Winbind 3.5.2 caching issues under SLES11???
On Mon, Apr 26, 2010 at 10:48:19AM +0200, Oliver Weinmann wrote: Ok, I have now deleted the netsamlogon_cache.tdb, restarted the samba service and logged in as the user. The groups are now no longer shown. I tried the same steps again with a different user and the problem is the same again. This time it was sufficient to restart the samba service. I wonder why on the SLES9 system the change is immediately effective but on the SLES11 box I need to restart the winbind service? The configs are exactly the same on both machines. If you can reproduce that after wbinfo -a (or a similar operation) you get wrong nss information (group memberships etc), then we have a severe bug that needs fixing. Please provide us detailed information how to reproduce this problem. Ah, please also make sure that you reproduce this without nscd, that one could also cache things. Thanks, Volker signature.asc Description: Digital signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Winbind 3.5.2 caching issues under SLES11???
On 2010/04/23 10:58 PM, Chris Smith wrote: Don't know if it's related but on 2 systems with 3.5.2 I could not get the new idmap backend (moved from tdb to rid) to work without deleting the gencache* tdb's in addition to the winbind ones. I had the same problem on 3.4.7 moving from tdb to ldap. I also had get rid of nscd which for some reason Debian always installs with Samba. I was confused because everything would come right after a reboot. I thought that Samba is emulating Windows a little TOO closely! I wrote this little script while I was messing with different idmap options: #!/bin/sh # # stop samba, reset cache and restart /etc/init.d/winbind stop /etc/init.d/samba stop rm -f /var/run/samba/gencache.tdb rm -f /var/cache/samba/*.tdb /etc/init.d/samba start /etc/init.d/winbind start /etc/init.d/nslcd restart -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Undocumented TDB files
Chris Smith wrote: /var/lib/samba/locking.tdb /var/lib/samba/wins.tdb /var/lib/samba/mutex.tdb which are not documented in Try: http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/tdb.html mutex.tdb is still missing but the two areas should be complete and consistent in information Thanks, I hadn't spotted that page. Although: - group_mapping.tdb should be group_mapping.ldb - printing directory: preserve Y conflicts with printing/*.tdb: backup no from the Official HOWTO Moray. To err is human. To purr, feline -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Winbind 3.5.2 caching issues under SLES11???
Ok, there is no bug. I looked through the smb.conf and added the following parameters: idmap cache time = 1 idmap negative cache time = 1 winbind cache time = 1 Now SLES11 acts as expected. Also I noticed that running a su - username is not the same as wbinfo -a. :) Thanks and Regards, Oliver -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Network so slow
Hello Grant, thanks for your reply. Sorry for my fault. It's a samba which comes default with opensuse 11.2. $: smbd -V Version 3.4.2-1.1.3.1-2229 SUSE-SL11.2 Attached the smb.conf. If you need more information please let me know. Thanks for your support, Michael Michael Post Am 22.04.2010 um 08:08 schrieb grant little: On Wed, Apr 21, 2010 at 12:08 PM, Michael Post michael_p...@web.de wrote: Hello, i replaced a windows-file-server with a linux-server and samba. All clients run under Windows xp in an 100 mbit network. With the windows solution i got no problems with the speed. With my linux-samba-solution we detect a very slow network. Per example i open a windows.xls or windows.doc file and this runs 30 seconds and more. Othertime i can open the documents in 5-10 seconds. Has anybody any ideas? Parallel to this mail i check my network connection and parameters of the network interface (dma, mtu, etc). Thanks a lot, Michael -- Michael, you may get more response if you tell the list what distro and version of linux and what version of samba you are using and also your smb.conf file. Right now there's not enough info for anyone to even hazard a guess. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Network so slow
Again. Here my smb.conf. # smb.conf is the main Samba configuration file. You find a full commented # version at /usr/share/doc/packages/samba/examples/smb.conf.SUSE if the # samba-doc package is installed. # Date: 2009-10-27 [global] workgroup = netz passdb backend = tdbsam printing = cups printcap name = cups printcap cache time = 750 cups options = raw map to guest = Bad User logon path = \\%L\profiles\.msprofile logon home = \\%L\%U\.9xprofile logon drive = P: usershare allow guests = Yes add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$ domain logons = No domain master = No security = user wins support = Yes netbios name = server max protocol = NT1 ## Share disabled by YaST # [homes] # comment = Home Directories # valid users = %S, %D%w%S # browseable = No # read only = No # inherit acls = Yes ## Share disabled by YaST # [profiles] # comment = Network Profiles Service # path = %H # read only = No # store dos attributes = Yes # create mask = 0600 # directory mask = 0700 ## Share disabled by YaST # [users] # comment = All users # path = /home # read only = No # inherit acls = Yes # veto files = /aquota.user/groups/shares/ ## Share disabled by YaST # [groups] # comment = All groups # path = /home/groups # read only = No # inherit acls = Yes ## Share disabled by YaST # [printers] # comment = All Printers # path = /var/tmp # printable = Yes # create mask = 0600 # browseable = No ## Share disabled by YaST # [print$] # comment = Printer Drivers # path = /var/lib/samba/drivers # write list = @ntadmin root # force group = ntadmin # create mask = 0664 # directory mask = 0775 [arbeitsprogramme] comment = Alle Arbeitsprogramme inherit acls = Yes path = /home/Arbeitsprogramme read only = No guest ok = Yes [dokumente bilder] comment = Alle Dokumente Bilder inherit acls = Yes path = /home/Documents read only = No guest ok = Yes ## Share disabled by YaST # [netlogon] Am 26.04.2010 um 14:00 schrieb Michael Post: Hello Grant, thanks for your reply. Sorry for my fault. It's a samba which comes default with opensuse 11.2. $: smbd -V Version 3.4.2-1.1.3.1-2229 SUSE-SL11.2 Attached the smb.conf. If you need more information please let me know. Thanks for your support, Michael Michael Post Am 22.04.2010 um 08:08 schrieb grant little: On Wed, Apr 21, 2010 at 12:08 PM, Michael Post michael_p...@web.de wrote: Hello, i replaced a windows-file-server with a linux-server and samba. All clients run under Windows xp in an 100 mbit network. With the windows solution i got no problems with the speed. With my linux-samba-solution we detect a very slow network. Per example i open a windows.xls or windows.doc file and this runs 30 seconds and more. Othertime i can open the documents in 5-10 seconds. Has anybody any ideas? Parallel to this mail i check my network connection and parameters of the network interface (dma, mtu, etc). Thanks a lot, Michael -- Michael, you may get more response if you tell the list what distro and version of linux and what version of samba you are using and also your smb.conf file. Right now there's not enough info for anyone to even hazard a guess. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Network so slow
Hi. The services nfslock is run. /etc/init.d/nfslock start 2010/4/26 Michael Post michael_p...@web.de: Again. Here my smb.conf. # smb.conf is the main Samba configuration file. You find a full commented # version at /usr/share/doc/packages/samba/examples/smb.conf.SUSE if the # samba-doc package is installed. # Date: 2009-10-27 [global] workgroup = netz passdb backend = tdbsam printing = cups printcap name = cups printcap cache time = 750 cups options = raw map to guest = Bad User logon path = \\%L\profiles\.msprofile logon home = \\%L\%U\.9xprofile logon drive = P: usershare allow guests = Yes add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$ domain logons = No domain master = No security = user wins support = Yes netbios name = server max protocol = NT1 ## Share disabled by YaST # [homes] # comment = Home Directories # valid users = %S, %D%w%S # browseable = No # read only = No # inherit acls = Yes ## Share disabled by YaST # [profiles] # comment = Network Profiles Service # path = %H # read only = No # store dos attributes = Yes # create mask = 0600 # directory mask = 0700 ## Share disabled by YaST # [users] # comment = All users # path = /home # read only = No # inherit acls = Yes # veto files = /aquota.user/groups/shares/ ## Share disabled by YaST # [groups] # comment = All groups # path = /home/groups # read only = No # inherit acls = Yes ## Share disabled by YaST # [printers] # comment = All Printers # path = /var/tmp # printable = Yes # create mask = 0600 # browseable = No ## Share disabled by YaST # [print$] # comment = Printer Drivers # path = /var/lib/samba/drivers # write list = @ntadmin root # force group = ntadmin # create mask = 0664 # directory mask = 0775 [arbeitsprogramme] comment = Alle Arbeitsprogramme inherit acls = Yes path = /home/Arbeitsprogramme read only = No guest ok = Yes [dokumente bilder] comment = Alle Dokumente Bilder inherit acls = Yes path = /home/Documents read only = No guest ok = Yes ## Share disabled by YaST # [netlogon] Am 26.04.2010 um 14:00 schrieb Michael Post: Hello Grant, thanks for your reply. Sorry for my fault. It's a samba which comes default with opensuse 11.2. $: smbd -V Version 3.4.2-1.1.3.1-2229 SUSE-SL11.2 Attached the smb.conf. If you need more information please let me know. Thanks for your support, Michael Michael Post Am 22.04.2010 um 08:08 schrieb grant little: On Wed, Apr 21, 2010 at 12:08 PM, Michael Post michael_p...@web.de wrote: Hello, i replaced a windows-file-server with a linux-server and samba. All clients run under Windows xp in an 100 mbit network. With the windows solution i got no problems with the speed. With my linux-samba-solution we detect a very slow network. Per example i open a windows.xls or windows.doc file and this runs 30 seconds and more. Othertime i can open the documents in 5-10 seconds. Has anybody any ideas? Parallel to this mail i check my network connection and parameters of the network interface (dma, mtu, etc). Thanks a lot, Michael -- Michael, you may get more response if you tell the list what distro and version of linux and what version of samba you are using and also your smb.conf file. Right now there's not enough info for anyone to even hazard a guess. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Network so slow
Hi. The services nfslock is run. /etc/init.d/nfslock start 2010/4/26 Mario Salcedo msal...@pucp.edu.pe: Hi. The services nfslock is run. /etc/init.d/nfslock start 2010/4/26 Michael Post michael_p...@web.de: Again. Here my smb.conf. # smb.conf is the main Samba configuration file. You find a full commented # version at /usr/share/doc/packages/samba/examples/smb.conf.SUSE if the # samba-doc package is installed. # Date: 2009-10-27 [global] workgroup = netz passdb backend = tdbsam printing = cups printcap name = cups printcap cache time = 750 cups options = raw map to guest = Bad User logon path = \\%L\profiles\.msprofile logon home = \\%L\%U\.9xprofile logon drive = P: usershare allow guests = Yes add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$ domain logons = No domain master = No security = user wins support = Yes netbios name = server max protocol = NT1 ## Share disabled by YaST # [homes] # comment = Home Directories # valid users = %S, %D%w%S # browseable = No # read only = No # inherit acls = Yes ## Share disabled by YaST # [profiles] # comment = Network Profiles Service # path = %H # read only = No # store dos attributes = Yes # create mask = 0600 # directory mask = 0700 ## Share disabled by YaST # [users] # comment = All users # path = /home # read only = No # inherit acls = Yes # veto files = /aquota.user/groups/shares/ ## Share disabled by YaST # [groups] # comment = All groups # path = /home/groups # read only = No # inherit acls = Yes ## Share disabled by YaST # [printers] # comment = All Printers # path = /var/tmp # printable = Yes # create mask = 0600 # browseable = No ## Share disabled by YaST # [print$] # comment = Printer Drivers # path = /var/lib/samba/drivers # write list = @ntadmin root # force group = ntadmin # create mask = 0664 # directory mask = 0775 [arbeitsprogramme] comment = Alle Arbeitsprogramme inherit acls = Yes path = /home/Arbeitsprogramme read only = No guest ok = Yes [dokumente bilder] comment = Alle Dokumente Bilder inherit acls = Yes path = /home/Documents read only = No guest ok = Yes ## Share disabled by YaST # [netlogon] Am 26.04.2010 um 14:00 schrieb Michael Post: Hello Grant, thanks for your reply. Sorry for my fault. It's a samba which comes default with opensuse 11.2. $: smbd -V Version 3.4.2-1.1.3.1-2229 SUSE-SL11.2 Attached the smb.conf. If you need more information please let me know. Thanks for your support, Michael Michael Post Am 22.04.2010 um 08:08 schrieb grant little: On Wed, Apr 21, 2010 at 12:08 PM, Michael Post michael_p...@web.de wrote: Hello, i replaced a windows-file-server with a linux-server and samba. All clients run under Windows xp in an 100 mbit network. With the windows solution i got no problems with the speed. With my linux-samba-solution we detect a very slow network. Per example i open a windows.xls or windows.doc file and this runs 30 seconds and more. Othertime i can open the documents in 5-10 seconds. Has anybody any ideas? Parallel to this mail i check my network connection and parameters of the network interface (dma, mtu, etc). Thanks a lot, Michael -- Michael, you may get more response if you tell the list what distro and version of linux and what version of samba you are using and also your smb.conf file. Right now there's not enough info for anyone to even hazard a guess. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba Printing to a Windows 7 x64 workstation
The version of samba you're running would help. And perhaps turn up the loglevel on your samba client and see if any errors are logged. DrewTech wrote: I am printing from a older samba build to a Windows 7 x64 PC and the print job would start printing then recycle and start over again. There is no set page where it would stop, sometimes it will stop at page 5, 7, 25. TY Please advice -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] user's profiles relating to each version of Windows
Hi I have samba 3.4.3 PDC/LDAP server with roaming profiles. Unfortunatelly I have to add to domain windows 7 and vista so I thought that it would be good if I separate profiles based on Windows version. So i Have added this to my smb.conf: logon script = scripts\logon.bat logon home = \\THOR\%U\windows logon path = \\THOR\%U\windows\.profiles\%a logon drive = H: I'm adding users with smbldap-tools. I have changed also smbldap.conf to this: userProfile=\\THOR\%U\windows\.profiles\%a pdbedit -L -v Home Directory: \\THOR\user\windows HomeDir Drive: H: Logon Script: scripts\logon.bat Profile Path: \\THOR\user\windows\.profiles\%a but when i logout instead of creating WinXP or win2k3 etc. samba creates '%a' directory. what is wrong with this configuration I can't find any usefull information to fix it? thanks Wojciech -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] home directory share definition for AD integration
I've currently got an installation of Samba 3.4.0 with AD integration in place, its all working correctly except for 1 case, the [homes] share. currently the share is defined as [homes] comment = Home Directories valid users = %S @CATS+Domain\ Admins @CATS+hazelmereusers read only = No browseable = Yes The share shows up in the network browser fine when navigating to \\serverip From a windows PC on the domain, accessing all static defined shares works without a hitch, however when attempting to access the homes share, I get given a login prompt which rejects users from the 2 groups with permissions for access. Is it possible to share the home directories in this way with AD domain users, and if so what's the correct syntax for configuring it? Thanks in advance for any assistance Cheers Tim Allingham -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] user's profiles relating to each version of Windows
Example given here: http://lists.samba.org/archive/samba-technical/2007-April/053054.html Dale On 04/26/2010 11:45 AM, Wojciech Giel wrote: Hi I have samba 3.4.3 PDC/LDAP server with roaming profiles. Unfortunatelly I have to add to domain windows 7 and vista so I thought that it would be good if I separate profiles based on Windows version. So i Have added this to my smb.conf: logon script = scripts\logon.bat logon home = \\THOR\%U\windows logon path = \\THOR\%U\windows\.profiles\%a logon drive = H: I'm adding users with smbldap-tools. I have changed also smbldap.conf to this: userProfile=\\THOR\%U\windows\.profiles\%a pdbedit -L -v Home Directory: \\THOR\user\windows HomeDir Drive: H: Logon Script: scripts\logon.bat Profile Path: \\THOR\user\windows\.profiles\%a but when i logout instead of creating WinXP or win2k3 etc. samba creates '%a' directory. what is wrong with this configuration I can't find any usefull information to fix it? thanks Wojciech -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba over VPN
The VPN is a site-to-site VPN. It's a Linux-Sonicwall VPN. Other users can join other Windows domains no problem. I created an lmhosts file on the Windows 2003 server with this: 10.1.1.1 fortissimo #PRE #DOM:crcomputer 10.1.1.1 CRCOMPUTER \0x1b 10.1.1.1 CRCOMPUTER \0x1c However, when I go to create a share and assign domain users to it, it cannot find the domain. Mike A. Leonetti As warm as green tea Evolution CE 3468C Lawson Boulevard Oceanside, NY 11572 www.evolutionce.com 516-536-5006 ext 105 516-208-4679 (Direct) Gaiseric Vandal wrote: I had misread- I thought the DC was the one remote.I think -but am not sure- that WINS should have handled any netbios stuff including locating the DC. I could be wrong tho. Can you try editing the lmhosts file on the Win 2003 machine to provide the DC info? Is the sonicwall configured for a site-to-site VPN (i.e. the IP addresses at both ends are explicitly configured) or is the Win 2003 machine configured as a regular single user remote PC (what sonicwall calls a GroupVPN account.) Sonicwall may have some options to redirect netbios but I am pretty sure you should not need this. On 04/22/2010 04:26 PM, Mike A. Leonetti wrote: The W2K3 server is not the VPN client, the VPN client is a Sonicwall device. However, the side that has the DC (samba), the DC server also initiates the VPN (openswan). IPSec starts before samba. Leonardo Carneiro - Veltrac wrote: The W2K3 server is the VPN client or is a host behind a vpn client that have a route to the remote network? Is the server IS the vpn client, does the connection is being made by a service (prior to the user login) or you just connect to the VPN after login? Gaiseric Vandal wrote: How do the clients get IP addresses? You could try adding the WINS server value to the client ip address (either statically or via DHCP.) Then they should be able to get the necessary netbios name info even tho they are on a separate subnet. Why do you have the DC distant from the clients that it supports? On 04/22/2010 09:41 AM, Mike A. Leonetti wrote: Yeah. I don't think it's the VPN blocking traffic. I think my WINS server is not functioning properly. I'll keep working at it. Daniel Müller wrote: Are you sure, I thought with ipsec there could be netbios bypassing the tunnel. Shares and dns are always working. --- EDV Daniel Müller Leitung EDV Tropenklinik Paul-Lechler-Krankenhaus Paul-Lechler-Str. 24 72076 Tübingen Tel.: 07071/206-463, Fax: 07071/206-499 eMail: muel...@tropenklinik.de Internet: www.tropenklinik.de --- -Ursprüngliche Nachricht- Von: Mike A. Leonetti [mailto:mleone...@evolutionce.com] Gesendet: Mittwoch, 14. April 2010 16:47 An: muel...@tropenklinik.de Cc: samba Mailing Betreff: Re: AW: [Samba] Samba over VPN Daniel, I'm using ipsec for a VPN. Since all shares are working and name resolution all netbios packets seem to be traversing the VPN no problem. Thanks. Daniel Müller wrote: Hello, as far I know you need a vpn with netbios enabled. This can be done witch openvpn in briding mode. Or with a router having this option. Greetings Daniel --- EDV Daniel Müller Leitung EDV Tropenklinik Paul-Lechler-Krankenhaus Paul-Lechler-Str. 24 72076 Tübingen Tel.: 07071/206-463, Fax: 07071/206-499 eMail: muel...@tropenklinik.de Internet: www.tropenklinik.de --- -Ursprüngliche Nachricht- Von: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org] Im Auftrag von Mike A. Leonetti Gesendet: Dienstag, 13. April 2010 22:27 An: Samba Mailing Betreff: [Samba] Samba over VPN Have a 2003 server located outside of the Domain network over a VPN. The server originally existed inside the network (10.1.1.0/24) but now exists on 10.10.12.0/24. I can access shares over the VPN to the domain controller, but when I try to log in as a domain user it says the domain is unavailable. I added the domain controller as a WINS server on the 2003 server. nbtstat -c on the 2003 does list the domain controller and the domain. Microsoft Windows [Version 5.2.3790] (C) Copyright 1985-2003 Microsoft Corp. C:\Documents and Settings\Administratornbtstat -c Local Area Connection 2: Node IpAddress: [10.10.12.244] Scope Id: [] NetBIOS Remote Cache Name Table Name Type Host AddressLife [sec] CRCOMPUTER1CGROUP 10.1.1.1390 CRCOMPUTER1BUNIQUE 10.1.1.1387 FORTISSIMO20UNIQUE 10.1.1.1430
Re: [Samba] user's profiles relating to each version of Windows
On Monday 26 April 2010 18:33:57 you wrote: Example given here: http://lists.samba.org/archive/samba-technical/2007-April/053054.html Dale On 04/26/2010 11:45 AM, Wojciech Giel wrote: Hi I have samba 3.4.3 PDC/LDAP server with roaming profiles. Unfortunatelly I have to add to domain windows 7 and vista so I thought that it would be good if I separate profiles based on Windows version. So i Have added this to my smb.conf: logon script = scripts\logon.bat logon home = \\THOR\%U\windows logon path = \\THOR\%U\windows\.profiles\%a logon drive = H: I'm adding users with smbldap-tools. I have changed also smbldap.conf to this: userProfile=\\THOR\%U\windows\.profiles\%a pdbedit -L -v Home Directory: \\THOR\user\windows HomeDir Drive: H: Logon Script: scripts\logon.bat Profile Path: \\THOR\user\windows\.profiles\%a but when i logout instead of creating WinXP or win2k3 etc. samba creates '%a' directory. what is wrong with this configuration I can't find any usefull information to fix it? thanks Wojciech Thanks. the only wrinkle is that home directories and user profiles are stored on external storage (member server ). and I don't have [profile] share on PDC as I understood from smb.conf manpage that setting in [profile] like path etc. concerns local os path not on external server - storage. So will this settings work on member server ? Wojciech -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba over VPN
On Mon, Apr 26, 2010 at 02:21:47PM -0400, Mike A. Leonetti wrote: The VPN is a site-to-site VPN. It's a Linux-Sonicwall VPN. Other users can join other Windows domains no problem. I created an lmhosts file on the Windows 2003 server with this: 10.1.1.1 fortissimo #PRE #DOM:crcomputer 10.1.1.1 CRCOMPUTER \0x1b 10.1.1.1 CRCOMPUTER \0x1c However, when I go to create a share and assign domain users to it, it cannot find the domain. I didn't think you were supposed to have multiple lines with the same ip. Multiple names on one line is fine of course. -- Len Sorensen -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba over VPN
Actually, strangely, what fixed this issue was adding this to the samba config: interfaces = 10.1.1.0/24 10.10.12.0/24 10.0.0.0/24 I just basically duplicated this line: hosts allow = 10.1.1.0/24 127.0.0.0/8 10.10.12.0/24 10.0.0.0/24 And took out the localhost. Now everything works as expected. Lennart Sorensen wrote: On Mon, Apr 26, 2010 at 02:21:47PM -0400, Mike A. Leonetti wrote: The VPN is a site-to-site VPN. It's a Linux-Sonicwall VPN. Other users can join other Windows domains no problem. I created an lmhosts file on the Windows 2003 server with this: 10.1.1.1 fortissimo #PRE #DOM:crcomputer 10.1.1.1 CRCOMPUTER \0x1b 10.1.1.1 CRCOMPUTER \0x1c However, when I go to create a share and assign domain users to it, it cannot find the domain. I didn't think you were supposed to have multiple lines with the same ip. Multiple names on one line is fine of course. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] net ads testjoin
I hope bumping is not frowned upon in this list :) cheers, Khaled 2010/4/24 Khaled Blah khaled.b...@googlemail.com: Hello all, I am new to this list and hopefully I am at the right place. Firstly, thanks to everyone involved in this project. You do a great job! Now, I use net to join Windows AD domains and was wondering where I can find out more information on what happens during a net ads testjoin. The information I found on the documentation pages of net or smb.conf on the website did not say much about it. I have noticed that a testjoin will ask for a password when the domain membership is not valid and it'll ignore kerberos tickets. Is there something I am missing here? I am grateful to any insight you guys could give me! Regards, Khaled -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Upgrade from Vista to 7 + samba = error
Hello everyone, I'm using Ldap + Samba PDC 3.4.7 in a Debian Lenny machine (backported). I've been able add successfully 3 hosts with windows 7 on my domain. Now i upgraded a notebook from windows vista to windows 7. I could not log on the domain (the trust relationship was broken), So i tried to remove and re-add (after applying the registry patch file) the machine in the domain (several times), but i still cannot log in the domain. Here's the some log: [2010/04/26 17:12:03, 2] passdb/pdb_ldap.c:571(init_sam_from_ldap) init_sam_from_ldap: Entry found for user: tecnologia001$ [2010/04/26 17:12:03, 2] passdb/pdb_ldap.c:2434(init_group_from_ldap) init_group_from_ldap: Entry found for group: 515 [2010/04/26 17:12:03, 2] libsmb/credentials.c:223(netlogon_creds_server_check) netlogon_creds_server_check: credentials check failed. [2010/04/26 17:12:03, 0] rpc_server/srv_netlog_nt.c:603(_netr_ServerAuthenticate3) _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client TECNOLOGIA001 machine account TECNOLOGIA001$ What can i do to solve this? Tks in advance. -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Upgrade from Vista to 7 + samba = error [SOLVED]
Sorry from my lack of reading. The problem got solved by ensuring that the requirestrongkey was set to '1'. Tks Leonardo Carneiro - Veltrac wrote: Hello everyone, I'm using Ldap + Samba PDC 3.4.7 in a Debian Lenny machine (backported). I've been able add successfully 3 hosts with windows 7 on my domain. Now i upgraded a notebook from windows vista to windows 7. I could not log on the domain (the trust relationship was broken), So i tried to remove and re-add (after applying the registry patch file) the machine in the domain (several times), but i still cannot log in the domain. Here's the some log: [2010/04/26 17:12:03, 2] passdb/pdb_ldap.c:571(init_sam_from_ldap) init_sam_from_ldap: Entry found for user: tecnologia001$ [2010/04/26 17:12:03, 2] passdb/pdb_ldap.c:2434(init_group_from_ldap) init_group_from_ldap: Entry found for group: 515 [2010/04/26 17:12:03, 2] libsmb/credentials.c:223(netlogon_creds_server_check) netlogon_creds_server_check: credentials check failed. [2010/04/26 17:12:03, 0] rpc_server/srv_netlog_nt.c:603(_netr_ServerAuthenticate3) _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client TECNOLOGIA001 machine account TECNOLOGIA001$ What can i do to solve this? Tks in advance. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 3.5.2 on Redhat 4
Greetings, Did anyone able create rpms using makerpms.sh script. I tried with many spec files, but I cant fix net error. Anyone who had success, please reply. Thank you. thanks LA -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 3.5.2 on Redhat 4
On Mon, Apr 26, 2010 at 5:30 PM, Linux Addict linuxaddi...@gmail.com wrote: Greetings, Did anyone able create rpms using makerpms.sh script. I tried with many spec files, but I cant fix net error. Anyone who had success, please reply. Thank you. thanks LA Take a look at http://ftp.sernet.de/pub/samba/3.5/rhel/4/. The SRPM is at http://ftp.sernet.de/pub/samba/3.5/src/rpm/. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] samba 4 for new authentication domain?
The various pages about samba 4 warn about rough edges, upgrade, file services, and print services. I have some domains that have never had a Windows domain that now need Windows AD authentication. I don't need file services and print services, and upgrade is not a problem. Is samba 4 ready for this use case, or should we still go with Microsoft's AD? Thanks! - Morty -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 4 for new authentication domain?
Exactly WHY do you need AD instead of NT domains? Without understanding that, I don't think your question can be answered. In some cases, you can use a stand-alone Kerberos and/or LDAP server. Or conversely, some application you use may require a Microsoft AD server, sometimes even a specific version. Basically, your tradeoff is between cost and risk. Windows 2008 R2 is all but guaranteed to work no matter what AD issue you throw at it, but it can get expensive, especially if you have many users. On the other hand, Samba is free, but Samba 4 is pretty unproven at this point. -Original Message- From: samba-boun...@lists.samba.org [mailto:samba- boun...@lists.samba.org] On Behalf Of Morty Sent: Monday, April 26, 2010 9:19 PM To: samba@lists.samba.org Subject: [Samba] samba 4 for new authentication domain? The various pages about samba 4 warn about rough edges, upgrade, file services, and print services. I have some domains that have never had a Windows domain that now need Windows AD authentication. I don't need file services and print services, and upgrade is not a problem. Is samba 4 ready for this use case, or should we still go with Microsoft's AD? Thanks! - Morty -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Build status as of Mon Apr 26 06:00:04 2010
URL: http://build.samba.org/ --- /home/build/master/cache/broken_results.txt.old 2010-04-25 00:00:27.0 -0600 +++ /home/build/master/cache/broken_results.txt 2010-04-26 00:00:20.0 -0600 @@ -1,9 +1,9 @@ -Build status as of Sun Apr 25 06:00:03 2010 +Build status as of Mon Apr 26 06:00:04 2010 Build counts: Tree Total Broken Panic build_farm 0 0 0 -ccache 30 12 0 +ccache 30 11 0 ldb 30 30 0 libreplace 30 11 0 lorikeet 0 0 0 @@ -14,9 +14,9 @@ samba-web0 0 0 samba_3_current 28 25 1 samba_3_master 28 27 1 -samba_3_next 28 25 2 -samba_4_0_test 30 29 1 -samba_4_0_waf 29 25 4 +samba_3_next 28 23 2 +samba_4_0_test 30 30 1 +samba_4_0_waf 29 28 2 talloc 30 10 0 tdb 28 18 0
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via 5ce1dbf... s4-ddb: don't create partitions with the UNINSTANT flag
set
via a31c711... s4-drs: allow getncchanges requests to non WRIT_REP
partitions for extended ops
via 6ee1c50... s4-drs: don't send uninstantiated objects in getncchanges
via 159de40... s4-drepl: don't send an UpdateRefs unless its a plain
replication
via f66fcd9... build: cope with realname for install of non-python libs
via 267e0b3... s4-drs: make links to foreign partitions non-fatal
from 0a47bf5... build: automatically run autogen-waf.sh when needed
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit 5ce1dbf2e328b8bf9987746bbd9ea10e6db58760
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 15:46:37 2010 +1000
s4-ddb: don't create partitions with the UNINSTANT flag set
these partitions and not on the server we are replicating from. Also
check for deleted partitions.
Pair-Programmed-With: Andrew Bartlett abart...@samba.org
commit a31c711ba7dcd7516fd7b4de8c602a2fc30672db
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 16:44:44 2010 +1000
s4-drs: allow getncchanges requests to non WRIT_REP partitions for extended
ops
Needed for RID allocation
Pair-Programmed-With: Andrew Bartlett abart...@samba.org
commit 6ee1c503bf90abbea137ce789ce5a8a54b437629
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 17:02:25 2010 +1000
s4-drs: don't send uninstantiated objects in getncchanges
This includes deleted partitions
Pair-Programmed-With: Andrew Bartlett abart...@samba.org
commit 159de40b0b5c2c3efc7bd4de83a15dc63299b730
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 18:43:46 2010 +1000
s4-drepl: don't send an UpdateRefs unless its a plain replication
Pair-Programmed-With: Andrew Bartlett abart...@samba.org
commit f66fcd96087fc0a65a214c0fa62b03048ff0c6d9
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 19:04:33 2010 +1000
build: cope with realname for install of non-python libs
this fixes the install of mit_samba.so
commit 267e0b361693a94be258a21b2b305c5a97de3dda
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 14:39:15 2010 +1000
s4-drs: make links to foreign partitions non-fatal
DN links outside the set of partitions we are replication should be
allowed.
Pair-Programmed-With: Andrew Bartlett abart...@samba.org
---
Summary of changes:
buildtools/wafsamba/samba_install.py|5 -
buildtools/wafsamba/wafsamba.py |5 -
source4/dsdb/repl/drepl_out_helpers.c |7 +--
source4/dsdb/samdb/ldb_modules/new_partition.c | 15 ++-
source4/dsdb/samdb/ldb_modules/repl_meta_data.c | 14 ++
source4/rpc_server/drsuapi/getncchanges.c |5 +
6 files changed, 38 insertions(+), 13 deletions(-)
Changeset truncated at 500 lines:
diff --git a/buildtools/wafsamba/samba_install.py
b/buildtools/wafsamba/samba_install.py
index e2db589..55aab26 100644
--- a/buildtools/wafsamba/samba_install.py
+++ b/buildtools/wafsamba/samba_install.py
@@ -87,7 +87,10 @@ def install_library(self):
if self.samba_realname:
install_name = self.samba_realname
install_link = None
-inst_name= t.target + '.so'
+if getattr(self, 'samba_type', None) == 'PYTHON':
+inst_name= '%s.so' % t.target
+else:
+inst_name= 'lib%s.so' % t.target
elif self.vnum:
vnum_base= self.vnum.split('.')[0]
install_name = 'lib%s.so.%s' % (self.target, self.vnum)
diff --git a/buildtools/wafsamba/wafsamba.py b/buildtools/wafsamba/wafsamba.py
index 36f8777..6d6416b 100644
--- a/buildtools/wafsamba/wafsamba.py
+++ b/buildtools/wafsamba/wafsamba.py
@@ -161,7 +161,7 @@ def SAMBA_LIBRARY(bld, libname, source,
deps = TO_LIST(deps)
deps.append(obj_target)
-if target_type == 'PYTHON':
+if target_type == 'PYTHON' or realname:
bundled_name = libname
else:
bundled_name = BUNDLED_NAME(bld, libname, bundled_extension)
@@ -197,6 +197,9 @@ def SAMBA_LIBRARY(bld, libname, source,
abi_match = abi_match
)
+if realname and not link_name:
+link_name = 'shared/%s' % realname
+
if link_name:
t.link_name = link_name
diff --git a/source4/dsdb/repl/drepl_out_helpers.c
b/source4/dsdb/repl/drepl_out_helpers.c
index 60dccff..52b519c 100644
--- a/source4/dsdb/repl/drepl_out_helpers.c
+++ b/source4/dsdb/repl/drepl_out_helpers.c
@@ -272,7 +272,8 @@ static void
dreplsrv_op_pull_source_get_changes_trigger(struct tevent_req *req)
struct drsuapi_DsReplicaCursorCtrEx *uptodateness_vector;
struct
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via abdb96b... s3: Implement net rpc user setprimarygroup
from 5ce1dbf... s4-ddb: don't create partitions with the UNINSTANT flag
set
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit abdb96b8ff373b78ffbf24c66c4e6b69886e87c4
Author: Volker Lendecke v...@samba.org
Date: Mon Apr 26 16:44:34 2010 +0200
s3: Implement net rpc user setprimarygroup
---
Summary of changes:
source3/utils/net_rpc.c | 59 +++
1 files changed, 59 insertions(+), 0 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source3/utils/net_rpc.c b/source3/utils/net_rpc.c
index 8fe243d..0fd693e 100644
--- a/source3/utils/net_rpc.c
+++ b/source3/utils/net_rpc.c
@@ -731,6 +731,57 @@ static int rpc_user_rename(struct net_context *c, int
argc, const char **argv)
}
/**
+ * Set a user's primary group
+ *
+ * @param argc Standard main() style argc.
+ * @param argv Standard main() style argv. Initial components are already
+ * stripped.
+ *
+ * @return A shell status integer (0 for success).
+ **/
+
+static int rpc_user_setprimarygroup(struct net_context *c, int argc,
+ const char **argv)
+{
+ NET_API_STATUS status;
+ uint8_t *buffer;
+ struct GROUP_INFO_2 *g2;
+ struct USER_INFO_1051 u1051;
+ uint32_t parm_err = 0;
+
+ if (argc != 2 || c-display_usage) {
+ rpc_user_usage(c, argc, argv);
+ return 0;
+ }
+
+ status = NetGroupGetInfo(c-opt_host, argv[1], 2, buffer);
+ if (status) {
+ d_fprintf(stderr, _(Failed to find group name %s -- %s\n),
+ argv[1],
+ libnetapi_get_error_string(c-netapi_ctx, status));
+ return status;
+ }
+ g2 = (struct GROUP_INFO_2 *)buffer;
+
+ u1051.usri1051_primary_group_id = g2-grpi2_group_id;
+
+ NetApiBufferFree(buffer);
+
+ status = NetUserSetInfo(c-opt_host, argv[0], 1051,
+ (uint8_t *)u1051, parm_err);
+ if (status) {
+ d_fprintf(stderr,
+ _(Failed to set user's primary group %s to %s -
+ %s\n), argv[0], argv[1],
+ libnetapi_get_error_string(c-netapi_ctx, status));
+ } else {
+ d_printf(_(Set primary group of user %s to %s\n), argv[0],
+argv[1]);
+ }
+ return status;
+}
+
+/**
* Delete a user from a remote RPC server.
*
* @param argc Standard main() style argc.
@@ -978,6 +1029,14 @@ int net_rpc_user(struct net_context *c, int argc, const
char **argv)
N_(net rpc user rename\n
Rename specified user)
},
+ {
+ setprimarygroup,
+ rpc_user_setprimarygroup,
+ NET_TRANSPORT_RPC,
+ Set a user's primary group,
+ net rpc user setprimarygroup\n
+ Set a user's primary group
+ },
{NULL, NULL, 0, NULL, NULL}
};
--
Samba Shared Repository
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via 6beba78... Fix crash when rescheduling oplock open.
from abdb96b... s3: Implement net rpc user setprimarygroup
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit 6beba782f1bf951236813e0b46115b8102212c03
Author: Jeremy Allison j...@samba.org
Date: Mon Apr 26 10:54:33 2010 -0700
Fix crash when rescheduling oplock open.
Jeremy.
---
Summary of changes:
source3/smbd/smb2_create.c |9 +
1 files changed, 9 insertions(+), 0 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source3/smbd/smb2_create.c b/source3/smbd/smb2_create.c
index 6a118c3..3302730 100644
--- a/source3/smbd/smb2_create.c
+++ b/source3/smbd/smb2_create.c
@@ -981,6 +981,15 @@ void schedule_deferred_open_message_smb2(uint64_t mid)
/* Ensure we don't have any outstanding timer event. */
TALLOC_FREE(state-te);
+ /*
+* This is subtle. We must null out the callback
+* before resheduling, else the first call to
+* tevent_req_nterror() causes the _receive()
+* function to be called, this causing tevent_req_post()
+* to crash.
+*/
+ tevent_req_set_callback(smb2req-subreq, NULL, NULL);
+
im = tevent_create_immediate(smb2req);
if (!im) {
smbd_server_connection_terminate(smb2req-sconn,
--
Samba Shared Repository
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via 1055b3c... When walking the SMB2 requests queue, ensure the request
is still in flight before examining the details.
from 6beba78... Fix crash when rescheduling oplock open.
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit 1055b3c229f9ab8b4d43a73346090bb72b88d607
Author: Jeremy Allison j...@samba.org
Date: Mon Apr 26 12:29:03 2010 -0700
When walking the SMB2 requests queue, ensure the request is still in
flight
before examining the details.
SMB2 requests stay on the queue until their out.vector has been
send, only then are they talloc_free'd.
Thanks for Ira Cooper i...@wakeful.net for giving me the
backtrace showing this.
Jeremy.
---
Summary of changes:
source3/smbd/smb2_create.c | 11 ++-
1 files changed, 10 insertions(+), 1 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source3/smbd/smb2_create.c b/source3/smbd/smb2_create.c
index 3302730..377db32 100644
--- a/source3/smbd/smb2_create.c
+++ b/source3/smbd/smb2_create.c
@@ -877,7 +877,16 @@ static struct smbd_smb2_request
*find_open_smb2req(uint64_t mid)
struct smbd_smb2_request *smb2req;
for (smb2req = sconn-smb2.requests; smb2req; smb2req = smb2req-next) {
- uint64_t message_id = get_mid_from_smb2req(smb2req);
+ uint64_t message_id;
+ if (smb2req-subreq == NULL) {
+ /* This message has been processed. */
+ continue;
+ }
+ if (!tevent_req_is_in_progress(smb2req-subreq)) {
+ /* This message has been processed. */
+ continue;
+ }
+ message_id = get_mid_from_smb2req(smb2req);
if (message_id == mid) {
return smb2req;
}
--
Samba Shared Repository
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via 1ede2a0... s4: rename RAP share_enum_info to share_info.
from 1055b3c... When walking the SMB2 requests queue, ensure the request
is still in flight before examining the details.
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit 1ede2a0577fa85100f95526386bc5298b565da8c
Author: Günther Deschner g...@samba.org
Date: Mon Apr 26 22:06:47 2010 +0200
s4: rename RAP share_enum_info to share_info.
Guenther
---
Summary of changes:
source4/libcli/rap/rap.h | 20 ++--
source4/ntvfs/ipc/ipc_rap.c| 12 ++--
source4/ntvfs/ipc/rap_server.c | 10 +-
source4/torture/rap/rap.c | 14 +++---
4 files changed, 28 insertions(+), 28 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source4/libcli/rap/rap.h b/source4/libcli/rap/rap.h
index 6dcaa9b..7099798 100644
--- a/source4/libcli/rap/rap.h
+++ b/source4/libcli/rap/rap.h
@@ -278,20 +278,20 @@
#define RAP_WDASDSetInfo2 318
#define MAX_API318
-struct rap_shareenum_info_0 {
- char name[13];
+struct rap_share_info_0 {
+ char share_name[13];
};
-struct rap_shareenum_info_1 {
- char name[13];
- char pad;
- uint16_t type;
+struct rap_share_info_1 {
+ char share_name[13];
+ char reserved1;
+ uint16_t share_type;
char *comment;
};
-union rap_shareenum_info {
- struct rap_shareenum_info_0 info0;
- struct rap_shareenum_info_1 info1;
+union rap_share_info {
+ struct rap_share_info_0 info0;
+ struct rap_share_info_1 info1;
};
struct rap_NetShareEnum {
@@ -305,7 +305,7 @@ struct rap_NetShareEnum {
uint16_t convert;
uint16_t count;
uint16_t available;
- union rap_shareenum_info *info;
+ union rap_share_info *info;
} out;
};
diff --git a/source4/ntvfs/ipc/ipc_rap.c b/source4/ntvfs/ipc/ipc_rap.c
index 04ea700..277e346 100644
--- a/source4/ntvfs/ipc/ipc_rap.c
+++ b/source4/ntvfs/ipc/ipc_rap.c
@@ -291,17 +291,17 @@ static NTSTATUS _rap_netshareenum(struct rap_call *call)
switch(r.in.level) {
case 0:
NDR_GOTO(ndr_push_bytes(call-ndr_push_data,
- (const uint8_t
*)r.out.info[i].info0.name,
-
sizeof(r.out.info[i].info0.name)));
+ (const uint8_t
*)r.out.info[i].info0.share_name,
+
sizeof(r.out.info[i].info0.share_name)));
break;
case 1:
NDR_GOTO(ndr_push_bytes(call-ndr_push_data,
- (const uint8_t
*)r.out.info[i].info1.name,
-
sizeof(r.out.info[i].info1.name)));
+ (const uint8_t
*)r.out.info[i].info1.share_name,
+
sizeof(r.out.info[i].info1.share_name)));
NDR_GOTO(ndr_push_uint8(call-ndr_push_data,
- NDR_SCALARS,
r.out.info[i].info1.pad));
+ NDR_SCALARS,
r.out.info[i].info1.reserved1));
NDR_GOTO(ndr_push_uint16(call-ndr_push_data,
- NDR_SCALARS,
r.out.info[i].info1.type));
+ NDR_SCALARS,
r.out.info[i].info1.share_type));
RAP_GOTO(rap_push_string(call-ndr_push_data,
call-heap,
diff --git a/source4/ntvfs/ipc/rap_server.c b/source4/ntvfs/ipc/rap_server.c
index 2bc07c3..fc80b66 100644
--- a/source4/ntvfs/ipc/rap_server.c
+++ b/source4/ntvfs/ipc/rap_server.c
@@ -58,18 +58,18 @@ NTSTATUS rap_netshareenum(TALLOC_CTX *mem_ctx,
r-out.available = count;
r-out.info = talloc_array(mem_ctx,
- union rap_shareenum_info, r-out.available);
+ union rap_share_info, r-out.available);
for (i = 0, j = 0; i r-out.available; i++) {
if (!NT_STATUS_IS_OK(share_get_config(mem_ctx, sctx, snames[i],
scfg))) {
DEBUG(3, (WARNING: Service [%s] disappeared after
enumeration!\n, snames[i]));
continue;
}
- strncpy(r-out.info[j].info1.name,
+ strncpy(r-out.info[j].info1.share_name,
snames[i],
- sizeof(r-out.info[0].info1.name));
- r-out.info[i].info1.pad = 0;
-
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via 44b0a0c... s4: remove unused rap.h. via 232b9e5... s3: remove unused rap.h. via aae716d... s4: fix some build warnings. via dbfff90... s3: fix some build warnings. via 7259762... s3: use generated rap header. via 1983d0d... s4: use generated rap header. via 874335c... s3: re-run make samba3-idl and add generated header file. via 8b287b9... rap: add rap idl. from 1ede2a0... s4: rename RAP share_enum_info to share_info. http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit 44b0a0c14dbf8822e9c17968b7203557eb6e905f Author: Günther Deschner g...@samba.org Date: Mon Apr 26 22:09:00 2010 +0200 s4: remove unused rap.h. Guenther commit 232b9e556c176b351bd0dd3b8dcaef172d5d9f83 Author: Günther Deschner g...@samba.org Date: Mon Apr 26 15:48:50 2010 +0200 s3: remove unused rap.h. Guenther commit aae716d044081e5e1315de4abf22dbeb9d32a18e Author: Günther Deschner g...@samba.org Date: Mon Apr 26 22:09:44 2010 +0200 s4: fix some build warnings. Guenther commit dbfff90185daecfa452520276c8cabdce3b1c616 Author: Günther Deschner g...@samba.org Date: Mon Apr 26 22:09:21 2010 +0200 s3: fix some build warnings. Guenther commit 725976290939e82bd43a0b8bce07df6068e65496 Author: Günther Deschner g...@samba.org Date: Mon Apr 26 15:42:47 2010 +0200 s3: use generated rap header. Guenther commit 1983d0dde7c33666c5e0c1082d0c2604e6d1e860 Author: Günther Deschner g...@samba.org Date: Mon Apr 26 15:41:17 2010 +0200 s4: use generated rap header. Guenther commit 874335c48d4132a4b41acd45dc2c5dc11df18b7a Author: Günther Deschner g...@samba.org Date: Mon Apr 26 13:23:03 2010 +0200 s3: re-run make samba3-idl and add generated header file. Guenther commit 8b287b92fda1ad7439191edd9b417e31e90a9230 Author: Günther Deschner g...@samba.org Date: Mon Apr 26 13:19:56 2010 +0200 rap: add rap idl. Guenther --- Summary of changes: librpc/gen_ndr/rap.h| 466 +++ librpc/idl/rap.idl | 473 source3/include/includes.h |1 - source3/include/proto.h |9 +- source3/include/rap.h | 506 --- source3/libsmb/clirap.c |1 + source3/libsmb/clirap2.c| 19 +- source3/smbd/lanman.c |1 + source3/utils/net_rap.c | 13 +- source4/libcli/rap/rap.h| 358 --- source4/ntvfs/ipc/ipc_rap.c |2 +- source4/ntvfs/ipc/rap_server.c |4 +- source4/ntvfs/ipc/vfs_ipc.c |2 +- source4/torture/rap/rap.c |6 +- source4/torture/rap/rpc.c |6 +- source4/torture/rpc/samba3rpc.c |2 +- 16 files changed, 975 insertions(+), 894 deletions(-) create mode 100644 librpc/gen_ndr/rap.h create mode 100644 librpc/idl/rap.idl delete mode 100644 source3/include/rap.h delete mode 100644 source4/libcli/rap/rap.h Changeset truncated at 500 lines: diff --git a/librpc/gen_ndr/rap.h b/librpc/gen_ndr/rap.h new file mode 100644 index 000..6c5f154 --- /dev/null +++ b/librpc/gen_ndr/rap.h @@ -0,0 +1,466 @@ +/* header auto-generated by pidl */ + +#include stdint.h + +#include libcli/util/ntstatus.h + +#ifndef _HEADER_rap +#define _HEADER_rap + +#define RAP_WshareEnum ( 0 ) +#define RAP_WshareGetInfo ( 1 ) +#define RAP_WshareSetInfo ( 2 ) +#define RAP_WshareAdd ( 3 ) +#define RAP_WshareDel ( 4 ) +#define RAP_NetShareCheck ( 5 ) +#define RAP_WsessionEnum ( 6 ) +#define RAP_WsessionGetInfo( 7 ) +#define RAP_WsessionDel( 8 ) +#define RAP_WconnectionEnum( 9 ) +#define RAP_WfileEnum ( 10 ) +#define RAP_WfileGetInfo ( 11 ) +#define RAP_WfileClose ( 12 ) +#define RAP_WserverGetInfo ( 13 ) +#define RAP_WserverSetInfo ( 14 ) +#define RAP_WserverDiskEnum( 15 ) +#define RAP_WserverAdminCommand( 16 ) +#define RAP_NetAuditOpen ( 17 ) +#define RAP_WauditClear( 18 ) +#define RAP_NetErrorLogOpen( 19 ) +#define RAP_WerrorLogClear ( 20 ) +#define RAP_NetCharDevEnum ( 21 ) +#define RAP_NetCharDevGetInfo ( 22 ) +#define RAP_WCharDevControl( 23 ) +#define RAP_NetCharDevQEnum( 24 ) +#define RAP_NetCharDevQGetInfo ( 25 ) +#define RAP_WCharDevQSetInfo ( 26 ) +#define RAP_WCharDevQPurge ( 27 ) +#define RAP_WCharDevQPurgeSelf ( 28 ) +#define RAP_WMessageNameEnum ( 29 ) +#define RAP_WMessageNameGetInfo( 30 ) +#define RAP_WMessageNameAdd( 31 ) +#define RAP_WMessageNameDel( 32 ) +#define RAP_WMessageNameFwd( 33 ) +#define RAP_WMessageNameUnFwd ( 34 ) +#define RAP_WMessageBufferSend ( 35 ) +#define RAP_WMessageFileSend ( 36 )
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via f8fc7fc... s3-build: Remove --enable-merged support.
from 44b0a0c... s4: remove unused rap.h.
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit f8fc7fcbeb8141c5b2775e2219bae17c55ad4a3c
Author: Jelmer Vernooij jel...@samba.org
Date: Mon Apr 26 23:50:16 2010 +0200
s3-build: Remove --enable-merged support.
---
Summary of changes:
source3/configure.in| 51 +
source3/samba4-templates.mk | 144 ---
source3/samba4.m4 | 211 --
source3/samba4.mk | 265 ---
4 files changed, 3 insertions(+), 668 deletions(-)
delete mode 100644 source3/samba4-templates.mk
delete mode 100644 source3/samba4.m4
delete mode 100644 source3/samba4.mk
Changeset truncated at 500 lines:
diff --git a/source3/configure.in b/source3/configure.in
index 9a190cc..a30f301 100644
--- a/source3/configure.in
+++ b/source3/configure.in
@@ -195,17 +195,15 @@ AC_ARG_WITH(profiling-data,
)
dnl Checks for programs.
-merged_build_possible=yes
-
AC_PROG_INSTALL
AC_PROG_AWK
# Check for GNU make
m4_include(../m4/check_make.m4)
-AC_SAMBA_GNU_MAKE([true], [merged_build_possible=no])
+AC_SAMBA_GNU_MAKE([true], [true])
# Check for perl
m4_include(../m4/check_perl.m4)
-AC_SAMBA_PERL([true], [merged_build_possible=no])
+AC_SAMBA_PERL([true], [true])
AC_CHECK_TOOL(AR, ar)
@@ -1831,7 +1829,6 @@ if test x$BLDSHARED != xtrue; then
SHLD=shared-libraries-disabled
PICFLAG=${PIE_CFLAGS}
SHLIBEXT=shared_libraries_disabled
- merged_build_possible=no
fi
AC_MSG_CHECKING([used PICFLAG])
@@ -4235,10 +4232,6 @@ if test x$with_ads_support != xno; then
LIBS=$ac_save_LIBS
fi
-if test x$use_ads != xyes; then
- merged_build_possible=no
-fi
-
AC_CHECK_LIB_EXT(nscd, NSCD_LIBS, nscd_flush_cache)
PASSDB_LIBS=$PASSDB_LIBS $NSCD_LIBS
@@ -6627,39 +6620,8 @@ MSG
fi
-AC_ARG_ENABLE(merged-build,
-[AS_HELP_STRING([--enable-merged-build], [Build Samba 4 as well])],
-[ enable_merged_build=$enableval ], [ enable_merged_build=auto ])
-
-if test x$enable_merged_build = xyes -a \
- x$merged_build_possible = xno ; then
- AC_MSG_ERROR(Merged build required but not possible)
-fi
-
m4_include(../lib/zlib/zlib.m4)
-if test x$enable_merged_build = xauto; then
- # Check for python
- m4_include(../m4/check_python.m4)
- AC_SAMBA_PYTHON_DEVEL([true], [merged_build_possible=no])
-
- AC_MSG_CHECKING([whether it would be possible to do a merged build])
- AC_MSG_RESULT([$merged_build_possible])
-
- # Enable merged build automatically if possible, when in developer mode
- if test x$developer = xyes; then
- enable_merged_build=$merged_build_possible
- fi
-fi
-
-if test x$enable_merged_build = xyes; then
- MERGED_BUILD=1
- saved_USESHARED=$USESHARED
- USESHARED=false
- m4_include(samba4.m4)
- USESHARED=$saved_USESHARED
-fi
-
AC_SUBST(ZLIB_LIBS)
AC_SUBST(ZLIB_OBJS)
AC_ZLIB([ZLIB_OBJS=], [
@@ -6731,14 +6693,7 @@ SMBD_LIBS=$samba_dmapi_libs
AC_SUBST(SMBD_LIBS)
CFLAGS=${CFLAGS} \$(FLAGS)
-
-if test x$MERGED_BUILD != x1; then
- CFLAGS=${CFLAGS} -D_SAMBA_BUILD_=3
-else
- if test x$BLDSHARED = xtrue ; then
- LDFLAGS=$LDFLAGS -L./bin
- fi
-fi
+CFLAGS=${CFLAGS} -D_SAMBA_BUILD_=3
AC_SUBST(MAKEFILE)
if test x$samba_cv_gnu_make = xyes; then
diff --git a/source3/samba4-templates.mk b/source3/samba4-templates.mk
deleted file mode 100644
index 0024a75..000
--- a/source3/samba4-templates.mk
+++ /dev/null
@@ -1,144 +0,0 @@
-# Templates file for Samba 4
-# This relies on GNU make.
-#
-# © 2008 Jelmer Vernooij jel...@samba.org
-#
-###
-# Templates
-###
-
-# Partially link
-# Arguments: target object file, source object files
-define partial_link_template
-$(1): $(2) ;
- @echo Partially linking $$@
- @mkdir -p $$(@D)
- @$$(PARTLINK) -o $$@ $$^
-endef
-
-# Link a binary
-# Arguments: target file, depends, flags
-define binary_link_template
-$(1)4: $(2) ;
- @echo Linking $$@
- @$$(BNLD) $$(BNLD_FLAGS) $$(INTERN_LDFLAGS) -o $$@
$$(INSTALL_LINK_FLAGS) $(3) $$(LIBS)
-clean::
- @rm -f $(1)
-
-everything:: $(1)4
-
-endef
-
-# Link a host-machine binary
-# Arguments: target file, depends, flags
-define host_binary_link_template
-$(1)4: $(2) ;
- @echo Linking $$@
- @$$(HOSTLD) $$(HOSTLD_FLAGS) -L$${builddir}/bin/static -o $$@
$$(INSTALL_LINK_FLAGS) $(3)
-
-clean::
- rm -f $(1)
-
-binaries:: $(1)4
-
-
-endef
-
-# Create a prototype header
-# Arguments: header file,
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via b0aa476... s4-drs: add entries to repsTo based on calculated
repsFrom
via 3119296... s4-drepl: don't setup a repsFrom from a DC that isn't a
master for a NC
via c375b90... s4-getncchanges: honor DRSUAPI_DRS_REF_GCSPN
via 5b81962... s4-repl: these messages are common, and don't deserve
debug level 1
via 8aa30f9... s4-repl: on a failed request, clear the current ptr
via 9b18b33... s4-repl: end repl request when not doing an UpdateRefs
via 5fb60bc... s4-repl: don't delete repsTo entry on DsReplicaSync
from f8fc7fc... s3-build: Remove --enable-merged support.
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit b0aa4769483a1d2084191b70b2ffa3b0c65696ff
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 23:21:10 2010 +1000
s4-drs: add entries to repsTo based on calculated repsFrom
This is based on the documentation: the KCC will automatically create
the Reps-To attributes on destination DSAs based on other DSAs
Reps-From entries.
commit 3119296e425a4c640fe9bd2bb97f09bab8a9ccf0
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 22:51:11 2010 +1000
s4-drepl: don't setup a repsFrom from a DC that isn't a master for a NC
use hasMasterNCs to see what NCs we should be pulling from each DC
commit c375b90f5d1b1cbef2896f9a9d5964126ce82022
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 21:49:37 2010 +1000
s4-getncchanges: honor DRSUAPI_DRS_REF_GCSPN
this is an alternative way of establishing repsTo
commit 5b81962ed1c5b0c92e735ae12b853a63a9513a3a
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 21:49:06 2010 +1000
s4-repl: these messages are common, and don't deserve debug level 1
getting older attributes is quite common
commit 8aa30f958073203588a4faa75b963bad83a0db41
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 21:48:29 2010 +1000
s4-repl: on a failed request, clear the current ptr
this prevents the queue being stuck on failure
commit 9b18b339c00953490158b40d291032b14e6fc645
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 21:48:06 2010 +1000
s4-repl: end repl request when not doing an UpdateRefs
otherwise the queue is stuck forever
commit 5fb60bc311dde5642b022d28a9d7af8cf6f4a5f7
Author: Andrew Tridgell tri...@samba.org
Date: Mon Apr 26 21:47:29 2010 +1000
s4-repl: don't delete repsTo entry on DsReplicaSync
we rely on the highestUSN counters instead. W2K8 does not resend
DsUpdateRefs each time, and the WSPP docs do not indicate that repsTo
should be deleted
---
Summary of changes:
source4/dsdb/kcc/kcc_periodic.c | 87 +--
source4/dsdb/repl/drepl_notify.c| 58 +++
source4/dsdb/repl/drepl_out_helpers.c |2 +
source4/dsdb/repl/drepl_out_pull.c |1 +
source4/dsdb/samdb/ldb_modules/repl_meta_data.c |4 +-
source4/rpc_server/drsuapi/getncchanges.c |4 +-
6 files changed, 100 insertions(+), 56 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source4/dsdb/kcc/kcc_periodic.c b/source4/dsdb/kcc/kcc_periodic.c
index 14e15e8..6dab6b5 100644
--- a/source4/dsdb/kcc/kcc_periodic.c
+++ b/source4/dsdb/kcc/kcc_periodic.c
@@ -52,19 +52,62 @@ static bool reps_in_list(struct repsFromToBlob *r, struct
repsFromToBlob *reps,
return false;
}
+/*
+ make sure we only add repsFrom entries for DCs who are masters for
+ the partition
+ */
+static bool check_MasterNC(struct kccsrv_partition *p, struct repsFromToBlob
*r,
+ struct ldb_result *res)
+{
+ struct repsFromTo1 *r1;
+ r1 = r-ctr.ctr1;
+ struct GUID invocation_id = r1-source_dsa_invocation_id;
+ int i, j;
+
+ for (i=0; ires-count; i++) {
+ struct ldb_message *msg = res-msgs[i];
+ struct ldb_message_element *el;
+ struct ldb_dn *dn;
+
+ struct GUID id2 = samdb_result_guid(msg, invocationID);
+ if (!GUID_equal(invocation_id, id2)) {
+ continue;
+ }
+
+ el = ldb_msg_find_element(msg, hasMasterNCs);
+ if (!el || el-num_values == 0) {
+ continue;
+ }
+ for (j=0; jel-num_values; j++) {
+ dn = ldb_dn_from_ldb_val(p, p-service-samdb,
el-values[j]);
+ if (!ldb_dn_validate(dn)) {
+ talloc_free(dn);
+ continue;
+ }
+ if (ldb_dn_compare(dn, p-dn) == 0) {
+ talloc_free(dn);
+ return
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via be35a40... s4-dns: fixed dc.dc duplication in DNS update list
from b0aa476... s4-drs: add entries to repsTo based on calculated
repsFrom
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit be35a40e037202af4b30cc76e6e986499771e2e2
Author: Andrew Tridgell tri...@samba.org
Date: Tue Apr 27 11:01:12 2010 +1000
s4-dns: fixed dc.dc duplication in DNS update list
---
Summary of changes:
source4/setup/dns_update_list |4 ++--
1 files changed, 2 insertions(+), 2 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source4/setup/dns_update_list b/source4/setup/dns_update_list
index b9ee2a6..0e32cda 100644
--- a/source4/setup/dns_update_list
+++ b/source4/setup/dns_update_list
@@ -3,8 +3,8 @@ A
${HOSTNAME} $IP
CNAME ${NTDSGUID}._msdcs.${DNSDOMAIN}${HOSTNAME}
SRV _kerberos._tcp.${SITE}._sites.dc._msdcs.${DNSDOMAIN} ${HOSTNAME} 88
SRV _ldap._tcp.${SITE}._sites.dc._msdcs.${DNSDOMAIN} ${HOSTNAME} 389
-SRV _kerberos._tcp.dc.dc._msdcs.${DNSDOMAIN} ${HOSTNAME} 88
-SRV _ldap._tcp.dc.dc._msdcs.${DNSDOMAIN} ${HOSTNAME} 389
+SRV _kerberos._tcp.dc._msdcs.${DNSDOMAIN}${HOSTNAME} 88
+SRV _ldap._tcp.dc._msdcs.${DNSDOMAIN}${HOSTNAME} 389
SRV _ldap._tcp.${DOMAINGUID}.domains._msdcs.${DNSDOMAIN} ${HOSTNAME} 389
SRV _ldap._tcp.${SITE}._sites.gc._msdcs.${DNSDOMAIN} ${HOSTNAME} 3268
SRV _ldap._tcp.gc._msdcs.${DNSDOMAIN}${HOSTNAME} 3268
--
Samba Shared Repository
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via a94a4b7... Plumb in get_nt_acl into SMB2.
from be35a40... s4-dns: fixed dc.dc duplication in DNS update list
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit a94a4b788c3056068d0c8e42c55e990f418db666
Author: Jeremy Allison j...@samba.org
Date: Mon Apr 26 20:11:59 2010 -0700
Plumb in get_nt_acl into SMB2.
Jeremy.
---
Summary of changes:
source3/include/proto.h |7 ++
source3/smbd/nttrans.c | 131 ++-
source3/smbd/smb2_getinfo.c | 82 +--
3 files changed, 174 insertions(+), 46 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source3/include/proto.h b/source3/include/proto.h
index a27ef89..ff4a04b 100644
--- a/source3/include/proto.h
+++ b/source3/include/proto.h
@@ -6616,6 +6616,13 @@ void reply_ntcreate_and_X(struct smb_request *req);
struct ea_list *read_nttrans_ea_list(TALLOC_CTX *ctx, const char *pdata,
size_t data_size);
void reply_ntcancel(struct smb_request *req);
void reply_ntrename(struct smb_request *req);
+NTSTATUS smbd_do_query_security_desc(connection_struct *conn,
+ TALLOC_CTX *mem_ctx,
+ files_struct *fsp,
+ uint32_t security_info_wanted,
+ uint32_t max_data_count,
+ uint8_t **ppmarshalled_sd,
+ size_t *psd_size);
void reply_nttrans(struct smb_request *req);
void reply_nttranss(struct smb_request *req);
diff --git a/source3/smbd/nttrans.c b/source3/smbd/nttrans.c
index 2783545..3ce196d 100644
--- a/source3/smbd/nttrans.c
+++ b/source3/smbd/nttrans.c
@@ -1770,6 +1770,75 @@ static NTSTATUS get_null_nt_acl(TALLOC_CTX *mem_ctx,
SEC_DESC **ppsd)
/
Reply to query a security descriptor.
+ Callable from SMB2 and SMB2.
+ If it returns NT_STATUS_BUFFER_TOO_SMALL, pdata_size is initialized with
+ the required size.
+/
+
+NTSTATUS smbd_do_query_security_desc(connection_struct *conn,
+ TALLOC_CTX *mem_ctx,
+ files_struct *fsp,
+ uint32_t security_info_wanted,
+ uint32_t max_data_count,
+ uint8_t **ppmarshalled_sd,
+ size_t *psd_size)
+{
+ NTSTATUS status;
+ SEC_DESC *psd = NULL;
+
+ /*
+* Get the permissions to return.
+*/
+
+ if (!lp_nt_acl_support(SNUM(conn))) {
+ status = get_null_nt_acl(mem_ctx, psd);
+ } else {
+ status = SMB_VFS_FGET_NT_ACL(
+ fsp, security_info_wanted, psd);
+ }
+ if (!NT_STATUS_IS_OK(status)) {
+ return status;
+ }
+
+ /* If the SACL/DACL is NULL, but was requested, we mark that it is
+* present in the reply to match Windows behavior */
+ if (psd-sacl == NULL
+ security_info_wanted SACL_SECURITY_INFORMATION)
+ psd-type |= SEC_DESC_SACL_PRESENT;
+ if (psd-dacl == NULL
+ security_info_wanted DACL_SECURITY_INFORMATION)
+ psd-type |= SEC_DESC_DACL_PRESENT;
+
+ *psd_size = ndr_size_security_descriptor(psd, NULL, 0);
+
+ DEBUG(3,(smbd_do_query_security_desc: sd_size = %lu.\n,
+ (unsigned long)*psd_size));
+
+ if (DEBUGLEVEL = 10) {
+ DEBUG(10,(smbd_do_query_security_desc for file %s\n,
+ fsp_str_dbg(fsp)));
+ NDR_PRINT_DEBUG(security_descriptor, psd);
+ }
+
+ if (max_data_count *psd_size) {
+ TALLOC_FREE(psd);
+ return NT_STATUS_BUFFER_TOO_SMALL;
+ }
+
+ status = marshall_sec_desc(mem_ctx, psd,
+ ppmarshalled_sd, psd_size);
+
+ if (!NT_STATUS_IS_OK(status)) {
+ TALLOC_FREE(psd);
+ return status;
+ }
+
+ TALLOC_FREE(psd);
+ return NT_STATUS_OK;
+}
+
+/
+ SMB1 reply to query a security descriptor.
/
static void call_nt_transact_query_security_desc(connection_struct *conn,
@@ -1784,12 +1853,11 @@ static void
call_nt_transact_query_security_desc(connection_struct *conn,
{
char *params = *ppparams;
char *data = *ppdata;
- SEC_DESC *psd = NULL;
- size_t sd_size;
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated
via 3f643f1... Correctly report share types (now Win7 makes RPC calls
against us).
from a94a4b7... Plumb in get_nt_acl into SMB2.
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master
- Log -
commit 3f643f18d911888d69bba7f03813b3bde816326e
Author: Jeremy Allison j...@samba.org
Date: Mon Apr 26 21:36:01 2010 -0700
Correctly report share types (now Win7 makes RPC calls against us).
Jeremy.
---
Summary of changes:
source3/smbd/smb2_tcon.c |8 +++-
1 files changed, 7 insertions(+), 1 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source3/smbd/smb2_tcon.c b/source3/smbd/smb2_tcon.c
index c3e46ee..f3efb83 100644
--- a/source3/smbd/smb2_tcon.c
+++ b/source3/smbd/smb2_tcon.c
@@ -208,7 +208,13 @@ static NTSTATUS smbd_smb2_tree_connect(struct
smbd_smb2_request *req,
tcon-compat_conn = talloc_move(tcon, compat_conn);
tcon-compat_conn-cnum = tcon-tid;
- *out_share_type = 0x01;
+ if (IS_PRINT(tcon-compat_conn)) {
+ *out_share_type = 0x03;
+ } else if (IS_IPC(tcon-compat_conn)) {
+ *out_share_type = 0x02;
+ } else {
+ *out_share_type = 0x01;
+ }
*out_share_flags = SMB2_SHAREFLAG_ALL;
*out_capabilities = 0;
*out_maximal_access = FILE_GENERIC_ALL;
--
Samba Shared Repository
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via 280d06f... s4-libnet: cope with an empty client site name from CLDAP via e88a54a... s4-netlogon: fixed breakage of dcesrv_netr_GetAnyDCName in sites patch via 4497080... s4:knownfail - remove tests which should pass via cfbd5ef... s4:netlogon RPC server - we don't need are we DC proofs via ca1f7c9... s4:torture - DsRGetDcSiteCoverageW - adapt test to check for the sitename via 4686305... s4:dcesrv_netr_DsrGetDcSiteCoverageW - provide a basic implementation via a66bdbe... s4:torture - DsRGetSiteName - move skip statement before the computer_name check via 3b4137c... s4:dcesrv_netr_DsRGetSiteName - provide an implementation according to the MS-NRPC docs via 2780a18... s4:torture - GetAnyDCName - adaptions via 5fc7118... s4:dcesrv_netr_GetAnyDCName - improve the call according to the MS-NRPC documentation via cf93634... s4:torture - DsRAddressesToSitenames - enhance the testsuite via 908d982... s4:netr_DsRAddressToSitenames[Ex]W calls - implement them correctly with the client site information via cf73bc6... s4:CLDAP server - make use of the new samdb_client_site_name call via 093d356... s4:util - add a function which finds the matching client site using the client address via 725e48c... s4-drsdevel: support sites in drs developer scripts via 4679bb7... s4-vampire: show main CLDAP response attributes during vampire via 7e2b3ab... s4-repl: added a workaround for WERR_DS_DRA_NO_REPLICA DsReplicaSync errors from 3f643f1... Correctly report share types (now Win7 makes RPC calls against us). http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit 280d06f8b5734555eb3cb8423d7f9ad1bdc83792 Author: Andrew Tridgell tri...@samba.org Date: Tue Apr 27 15:02:29 2010 +1000 s4-libnet: cope with an empty client site name from CLDAP We fall back to the server site name in a vampire Pair-Programmed-With: Andrew Bartlett abart...@samba.org commit e88a54a87e185b44e2d216bd853e6a87bf950be6 Author: Andrew Tridgell tri...@samba.org Date: Tue Apr 27 14:25:14 2010 +1000 s4-netlogon: fixed breakage of dcesrv_netr_GetAnyDCName in sites patch We should respond when we are the PDC Pair-Programmed-With: Andrew Bartlett abart...@samba.org commit 449708017377c3cdf814642af75d7c7f8b554a3e Author: Matthias Dieter Wallnöfer m...@samba.org Date: Wed Apr 21 19:30:37 2010 +0200 s4:knownfail - remove tests which should pass Signed-off-by: Andrew Tridgell tri...@samba.org commit cfbd5ef8c401e316fe5659bb4360e30b6b8096d1 Author: Matthias Dieter Wallnöfer m...@samba.org Date: Wed Apr 21 17:54:06 2010 +0200 s4:netlogon RPC server - we don't need are we DC proofs When we aren't a DC we shouldn't have the netlogon pipe available. [MS-NRPC 1.3] says that we can only have DCs on the server side. Signed-off-by: Andrew Tridgell tri...@samba.org commit ca1f7c9b7332be2f7136094953eef43c65ee1462 Author: Matthias Dieter Wallnöfer m...@samba.org Date: Thu Apr 22 10:37:45 2010 +0200 s4:torture - DsRGetDcSiteCoverageW - adapt test to check for the sitename Signed-off-by: Andrew Tridgell tri...@samba.org commit 4686305feb13f6c824843cb2ab8d55f59254303c Author: Matthias Dieter Wallnöfer m...@samba.org Date: Thu Apr 22 10:28:37 2010 +0200 s4:dcesrv_netr_DsrGetDcSiteCoverageW - provide a basic implementation Does for now only return DC's primary site. Signed-off-by: Andrew Tridgell tri...@samba.org commit a66bdbec86f2da8b53518b05018f2c17261b9003 Author: Matthias Dieter Wallnöfer m...@samba.org Date: Wed Apr 21 19:13:11 2010 +0200 s4:torture - DsRGetSiteName - move skip statement before the computer_name check We don't support the check for the computer name on the RPC server side. Signed-off-by: Andrew Tridgell tri...@samba.org commit 3b4137c7be94678e3bd3553fa05feea1efe0f5fd Author: Matthias Dieter Wallnöfer m...@samba.org Date: Sun Apr 18 19:01:18 2010 +0200 s4:dcesrv_netr_DsRGetSiteName - provide an implementation according to the MS-NRPC docs Signed-off-by: Andrew Tridgell tri...@samba.org commit 2780a18a9fc3aac355c141fe0393e1f8008e242f Author: Matthias Dieter Wallnöfer m...@samba.org Date: Tue Apr 20 16:59:48 2010 +0200 s4:torture - GetAnyDCName - adaptions - Check for the various domainname set modes (on NULL and the domain should be the default domain on the server) - support return value WERR_NO_SUCH_DOMAIN (the server is the PDC of the domain) Signed-off-by: Andrew Tridgell tri...@samba.org commit 5fc71186751da3fc2388021630b16279cb949017 Author: Matthias Dieter Wallnöfer m...@samba.org Date: Sun Apr 18 15:02:06 2010 +0200 s4:dcesrv_netr_GetAnyDCName
