Re: [Samba] remove IP from DNS ldb
Thanks Run samba-tool dns delete host realm.tld host.realm.tld A ip.you.rem.oved -Uadministrator command and return successful but nslookup return tow IP On Wed, Oct 10, 2012 at 9:09 AM, Ricky Nance ricky.na...@weaubleau.k12.mo.us wrote: First make a backup of samba incase something goes wrong. Then `nslookup realm.tld` should give you a list of all the ip's linked to realm.tld, then you can use something like `samba-tool dns delete host realm.tld @ A ip.you.rem.oved -Uadministrator` also you will want to use `samba-tool dns delete host realm.tld host.realm.tld A ip.you.rem.oved -Uadministrator` run a `nslookup realm.tld` again and it should only show the 1 ip address. You will want to restart both bind and samba after making these changes just to be safe. Also remember that realm.tld is the realm you set during the provision. Ricky On Wed, Oct 10, 2012 at 12:25 AM, Mohammad Ebrahim Abravi lamp@gmail.com wrote: Hello install samba4beta8 white bind 9.9.1 and internal samba DNS DB on server white tow IP, then remove one of IPs. Users can not connect to the server or to communicate with a server takes . Because, Removed IP in response to client requests are sent ! How to remove not use IP from samba dns DB by Samba Tools ? -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] remove IP from DNS ldb
nslookup -type=any hum-office.xx.xx.xxx Server: 192.168.113.251 Address:192.168.113.251#53 hum-office.xx.xx.xxx nameserver = hum-ad.hum-office.xx.xx.xxx Name: hum-office.xx.xx.xxx Address: 192.168.25.27 --- Removed IP Name: hum-office.xx.xx.xxx Address: 192.168.113.251 hum-office.xx.xx.xxx origin = hum-ad.hum-office.xx.xx.xxx mail addr = hostmaster.hum-office.xx.xx.xxx serial = 80 refresh = 900 retry = 600 expire = 86400 minimum = 0 On Wed, Oct 10, 2012 at 9:41 AM, Mohammad Ebrahim Abravi lamp@gmail.com wrote: Thanks Run samba-tool dns delete host realm.tld host.realm.tld A ip.you.rem.oved -Uadministrator command and return successful but nslookup return tow IP On Wed, Oct 10, 2012 at 9:09 AM, Ricky Nance ricky.na...@weaubleau.k12.mo.us wrote: First make a backup of samba incase something goes wrong. Then `nslookup realm.tld` should give you a list of all the ip's linked to realm.tld, then you can use something like `samba-tool dns delete host realm.tld @ A ip.you.rem.oved -Uadministrator` also you will want to use `samba-tool dns delete host realm.tld host.realm.tld A ip.you.rem.oved -Uadministrator` run a `nslookup realm.tld` again and it should only show the 1 ip address. You will want to restart both bind and samba after making these changes just to be safe. Also remember that realm.tld is the realm you set during the provision. Ricky On Wed, Oct 10, 2012 at 12:25 AM, Mohammad Ebrahim Abravi lamp@gmail.com wrote: Hello install samba4beta8 white bind 9.9.1 and internal samba DNS DB on server white tow IP, then remove one of IPs. Users can not connect to the server or to communicate with a server takes . Because, Removed IP in response to client requests are sent ! How to remove not use IP from samba dns DB by Samba Tools ? -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba4: Folder Redirection GPO not working with Windows 7 [SOLVED]
On 09/10/12 21:18, Ludek Finstrle wrote: Hello steve, Tue, Oct 09, 2012 at 05:54:48PM +0200, steve napsal(a): On 09/10/12 17:36, steve wrote: On 08/10/12 18:23, steve wrote: On 08/10/12 17:40, m...@matws.net wrote: samba-tool ntacl sysvolreset --use-s3fs Now no user can enter sysvol: getfacl sysvol/ # file: sysvol/ # owner: root # group: wheel # flags: s-- user::rwx user:root:rwx group::r-- group:wheel:r-- group:300:r-- group:301:r-- group:302:r-- mask::rwx other::--- Using wbinfo: 300 BUILTIN\Server Operators 4 301 NT AUTHORITY\SYSTEM 5 302 NT AUTHORITY\Authenticated Users 5 but Authenticated Users do not get read access. . . maybe I'm wrong but in unix world you need x bit to be able to go into the directory. Luf Hi Luf, hi everyone OK, this was the clue I needed. I set the ACE's to r-x: setfacl -Rm g:300:rx sysvol/ setfacl -Rm g:301:rx sysvol/ setfacl -Rm g:302:rx sysvol/ setfacl -Rm g::rx sysvol/ setfacl -Rm g:wheel:rx sysvol/ and same for the default ACE's: setfacl -d -Rm g:300:rx sysvol/ (...) The ACE's now look like this: getfacl sysvol getfacl: Removing leading '/' from absolute path names # file: usr/local/samba/var/locks/sysvol # owner: root # group: wheel # flags: s-- user::rwx user:root:r-x group::r-x group:wheel:r-x group:300:r-x group:301:r-x group:302:r-x mask::r-x other::r-x default:user::rwx default:group::r-x default:group:301:r-x default:group:302:r-x default:mask::r-x default:other::--- Conclusion: The sysvol ACL's are not set correctly after running: samba-tool ntacl sysvolreset because e.g. authenticated users cannot get into the share to read the GPO's Maybe this is just with my distro, openSUSE as others have not reported any problems. Could a dev have a look at it? I'm sure I've not set the sysvol ACL's correctly but at least now folder redirection works. Cheers, Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] remove IP from DNS ldb
Thanks Run samba-tool dns delete host realm.tld host.realm.tld A ip.you.rem.oved -Uadministrator command and return successful but nslookup return tow IP nslookup -type=any hum-office.xx.xx.xxx Server: 192.168.113.251 Address:192.168.113.251#53 hum-office.xx.xx.xxx nameserver = hum-ad.hum-office.xx.xx.xxx Name: hum-office.xx.xx.xxx Address: 192.168.25.27 Name: hum-office.xx.xx.xxx Address: 192.168.113.251 hum-office.xx.xx.xxx origin = hum-ad.hum-office.xx.xx.xxx mail addr = hostmaster.hum-office.xx.xx.xxx serial = 80 refresh = 900 retry = 600 expire = 86400 minimum = 0 On Wed, Oct 10, 2012 at 9:09 AM, Ricky Nance ricky.na...@weaubleau.k12.mo.us wrote: First make a backup of samba incase something goes wrong. Then `nslookup realm.tld` should give you a list of all the ip's linked to realm.tld, then you can use something like `samba-tool dns delete host realm.tld @ A ip.you.rem.oved -Uadministrator` also you will want to use `samba-tool dns delete host realm.tld host.realm.tld A ip.you.rem.oved -Uadministrator` run a `nslookup realm.tld` again and it should only show the 1 ip address. You will want to restart both bind and samba after making these changes just to be safe. Also remember that realm.tld is the realm you set during the provision. Ricky On Wed, Oct 10, 2012 at 12:25 AM, Mohammad Ebrahim Abravi lamp@gmail.com wrote: Hello install samba4beta8 white bind 9.9.1 and internal samba DNS DB on server white tow IP, then remove one of IPs. Users can not connect to the server or to communicate with a server takes . Because, Removed IP in response to client requests are sent ! How to remove not use IP from samba dns DB by Samba Tools ? -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba4 sysvolcheck issue
Hi! Since samba4 rc1 (we update it since beta1) the ./samba-tool ntacl sysvolcheck command returns the following : ERROR(type 'exceptions.TypeError'): uncaught exception - (61, 'No data available') File /usr/local/samba/lib/python2.7/site-packages/samba/netcmd/__init__.py, line 168, in _run return self.run(*args, **kwargs) File /usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ntacl.py, line 247, in run lp) File /usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py, line 1570, in checksysvolacl check_gpos_acl(sysvol, dnsdomain, domainsid, domaindn, samdb, lp, direct_db_access) File /usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py, line 1523, in check_gpos_acl domainsid, direct_db_access) File /usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py, line 1478, in check_dir_acl fsacl = getntacl(lp, os.path.join(root, name), direct_db_access=direct_db_access) File /usr/local/samba/lib/python2.7/site-packages/samba/ntacls.py, line 73, in getntacl xattr.XATTR_NTACL_NAME) Everything looks good in with the rc1 sysvol directory, but updating to rc2 give us issue with applying gpo to clients : The windows users (xp/7) have a windows error 1058 when the login and there is no gpo applyed. It complains about a PERMISSION DENIED on [%sysvol%]/fhm.local/Policies/%7B31B2F340-016D-11D2-945F-00C04FB984F9%7D/GPT.INI file and then apply no GPO. After updating our source with git and then compiling them again, we successfully did with no errors : * ./samba-tool dbcheck --cross-ncs --fix * ./samba-tool ntacl sysvolreset We don't really understand how to check and correct sysvol issues. Any advice is welcome. Cheers. -- --- *** OB *** Service Informatique *** Fondation de la Miséricorde -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 4 / replicate ldap
Hai Andrew, thank you for you reply. In very short. I want to replicate the database of samba4 to an other locations, over wan. I want to have 1 domainname for signon, windows wil choose the closed location, so this should work. Every other location wil have its own samba server ( in DC mode ), with proxy which is using the auth of samba. ( or info from local replicated read only ldap ) Since this is over wan, i want to replicate the database. I install the extra server in the main location, then will move it to the external location. IP / DNS setup is nog problem for me, the location will have there own dhcp+dns server the dns zone wil be replicated to the master dns ( aka samba AD server on mail lokation ) this way i can manage everythis from main location. Kix script is used for login script, these files are replicated between the netlogon folders. ( and you i know the differences with sysvol ) I do windows/linux/novell servers. This setup works good with samba3, for years now. The total setup had debian with samba ddns+dhcp, proxy , webservers, mailservers ( with zarafa7 and yes, i have pro licence, for ad integration ). for most servers i can use the basic ldap info in the main location. I read that replication over wan didnt work. with for example novell NDS, i can replicate 1 part of the NDS and as far i know this is not possible with AD. Louis -Oorspronkelijk bericht- Van: Andrew Bartlett [mailto:abart...@samba.org] Verzonden: dinsdag 9 oktober 2012 10:24 Aan: L.P.H. van Belle CC: samba@lists.samba.org Onderwerp: Re: [Samba] samba 4 / replicate ldap On Tue, 2012-10-09 at 09:39 +0200, L.P.H. van Belle wrote: Is there any good documentation on DRS and/or dirsync. Im looking for a example. This page explains how to add additional Samba4 DCs to a domain: https://wiki.samba.org/index.php/Samba4/HOWTO/Join_a_domain_as_a_DC Because what i did find for now, it seems i have to stick to samba 3. Rather than asking how to do LDAP replication, perhaps you can explain what you want to achieve? Furthermore, the full facilities that Samba 3.x provided, including the LDAP passdb backend, remain in the Samba 4.0 release (use smbd/nmbd). However it won't be an AD Domain controller, it will still be what we now call a 'classic' domain controller (NT4-like). Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 4 / replicate ldap
On Wed, 2012-10-10 at 11:09 +0200, L.P.H. van Belle wrote: Hai Andrew, thank you for you reply. In very short. I want to replicate the database of samba4 to an other locations, over wan. I want to have 1 domainname for signon, windows wil choose the closed location, so this should work. Every other location wil have its own samba server ( in DC mode ), with proxy which is using the auth of samba. ( or info from local replicated read only ldap ) Since this is over wan, i want to replicate the database. I install the extra server in the main location, then will move it to the external location. IP / DNS setup is nog problem for me, the location will have there own dhcp+dns server the dns zone wil be replicated to the master dns ( aka samba AD server on mail lokation ) this way i can manage everythis from main location. Kix script is used for login script, these files are replicated between the netlogon folders. ( and you i know the differences with sysvol ) I do windows/linux/novell servers. This setup works good with samba3, for years now. The total setup had debian with samba ddns+dhcp, proxy , webservers, mailservers ( with zarafa7 and yes, i have pro licence, for ad integration ). for most servers i can use the basic ldap info in the main location. I read that replication over wan didnt work. with for example novell NDS, i can replicate 1 part of the NDS and as far i know this is not possible with AD. This all sounds like a perfect candiate for multiple Samba domain controllers, perhaps with RODCs at some sites if you would prefer. There shouldn't be any issue with replication over the WAN - it's just another IP network as far as Samba is concerned. Just use Samba's DRS as the replication framework and it should just work... Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 4 / replicate ldap
but when i read here. http://wiki.samba.org/index.php/Samba4_DRS_TODO_List#Support_RODC its a Pending Task. Is this finished, or almost finished ? parts im intrested in. RODC/Group policies. If almost finished, i can start setting up my main samba4 controller and test a bit already. Thank you for the quick reply. And keep up the great, good work with samba4. Best regards, Louis -Oorspronkelijk bericht- Van: Andrew Bartlett [mailto:abart...@samba.org] Verzonden: woensdag 10 oktober 2012 11:18 Aan: L.P.H. van Belle CC: samba@lists.samba.org Onderwerp: Re: [Samba] samba 4 / replicate ldap On Wed, 2012-10-10 at 11:09 +0200, L.P.H. van Belle wrote: Hai Andrew, thank you for you reply. In very short. I want to replicate the database of samba4 to an other locations, over wan. I want to have 1 domainname for signon, windows wil choose the closed location, so this should work. Every other location wil have its own samba server ( in DC mode ), with proxy which is using the auth of samba. ( or info from local replicated read only ldap ) Since this is over wan, i want to replicate the database. I install the extra server in the main location, then will move it to the external location. IP / DNS setup is nog problem for me, the location will have there own dhcp+dns server the dns zone wil be replicated to the master dns ( aka samba AD server on mail lokation ) this way i can manage everythis from main location. Kix script is used for login script, these files are replicated between the netlogon folders. ( and you i know the differences with sysvol ) I do windows/linux/novell servers. This setup works good with samba3, for years now. The total setup had debian with samba ddns+dhcp, proxy , webservers, mailservers ( with zarafa7 and yes, i have pro licence, for ad integration ). for most servers i can use the basic ldap info in the main location. I read that replication over wan didnt work. with for example novell NDS, i can replicate 1 part of the NDS and as far i know this is not possible with AD. This all sounds like a perfect candiate for multiple Samba domain controllers, perhaps with RODCs at some sites if you would prefer. There shouldn't be any issue with replication over the WAN - it's just another IP network as far as Samba is concerned. Just use Samba's DRS as the replication framework and it should just work... Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 4 / replicate ldap
On Wed, 2012-10-10 at 11:42 +0200, L.P.H. van Belle wrote: but when i read here. http://wiki.samba.org/index.php/Samba4_DRS_TODO_List#Support_RODC its a Pending Task. That list is old, sorry for the confusion. Both server and client-side RODC support is implemented. The only proviso is that we do not correctly record the transfer of passwords to the RODC (AD records which passwords were sent, for forensics later if an RODC was compromised). Is this finished, or almost finished ? parts im intrested in. RODC/Group policies. If almost finished, i can start setting up my main samba4 controller and test a bit already. Thank you for the quick reply. And keep up the great, good work with samba4. The main thing you will need is to manually sync the GPO files, as we do not have sysvol replication. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 4 / replicate ldap
Great !! This means for me its a go with samba4. I dont worry for compromised systems. These systems are completely isolated from internet. Thank you again for the reply. Best regards, Louis -Oorspronkelijk bericht- Van: Andrew Bartlett [mailto:abart...@samba.org] Verzonden: woensdag 10 oktober 2012 12:30 Aan: L.P.H. van Belle CC: samba@lists.samba.org Onderwerp: Re: [Samba] samba 4 / replicate ldap On Wed, 2012-10-10 at 11:42 +0200, L.P.H. van Belle wrote: but when i read here. http://wiki.samba.org/index.php/Samba4_DRS_TODO_List#Support_RODC its a Pending Task. That list is old, sorry for the confusion. Both server and client-side RODC support is implemented. The only proviso is that we do not correctly record the transfer of passwords to the RODC (AD records which passwords were sent, for forensics later if an RODC was compromised). Is this finished, or almost finished ? parts im intrested in. RODC/Group policies. If almost finished, i can start setting up my main samba4 controller and test a bit already. Thank you for the quick reply. And keep up the great, good work with samba4. The main thing you will need is to manually sync the GPO files, as we do not have sysvol replication. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Name Resolve Order : parameter of smb.conf with testparm
Ok Matthieu, Bug reported: https://bugzilla.samba.org/show_bug.cgi?id=9282 Thanks, Marcio. 2012/10/9 Matthieu Patou m...@matws.net Feel free to file a bug report related to the doc. It's the best way to get it fixed Matthieu. Marcio Oli marcio.oli...@gmail.com wrote: Ok Matthieu, thanks again about your answer. The suggestion is to modify and correct this question on the URL: http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html#NAMERESOLVEORDER Thanks, Marcio. 2012/10/9 Matthieu Patou m...@samba.org On 10/08/2012 02:38 PM, Marcio Oli wrote: Hi Matthieu Patou, the version that I'm using is Samba 3.5.10-116.el6_2. It was installed with rpm command. The OS is: Red Hat Enterprise Linux Server release 6.2 (Santiago) Linux [name of host] 2.6.32-131.6.1.el6.x86_64 #1 SMP Mon Jun 20 14:15:38 EDT 2011 x86_64 x86_64 x86_64 GNU/Linux I suppose that you are using the version of redhat but I think that you should trust the output of testparm because it use the same code base as daemons for parsing and deducting default values. Also testparm by default won't show the values that are by default as lmhosts wins host bcast is the default it's not shown, use testparm -v to have the full list. Matthieu. -- Matthieu Patou Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/**mailman/options/samba https://lists.samba.org/mailman/options/samba -- Marcio Oliveira. Tudo concorre para o bem daqueles que amam à Deus. (Rom 8,28) -- Marcio Oliveira. Tudo concorre para o bem daqueles que amam à Deus. (Rom 8,28) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba Digest, Vol 118, Issue 11
Pessoal, bom dia! Estarei de férias no período de 05/10 a 28/10, retornando no dia 29/10/2012. Na minha ausência as dúvidas poderão ser resolvidas pela seguinte equipe: Ricardo: Coordenação da equipe TI, e-mails e servidores – AMP e Inpacom - (011) 3616-1417 Igor: Gemma - AMP e Inpacom - (011) 3616-1438 Luciano e Vagner: Ginjo/ Silbra - Todos os sistemas - (011) 3659-3096 Robson: Indisa - Todos os sistemas - (019) 3765-6000 Essa é uma resposta automática. Até mais. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] quotas on samba shares
Dear All, Below I had earlier posted this issue but its solved I accutally forgot about going to unused modules and then configure quota sorry for this regards simon Dear All, I have just implemented a new setup of centos 5.8 server to be used as a Linux file server using sambais The server is partitioned with the defaults below is a df -k output --- Filesystem 1K-blocks Used Available Use% Mounted on /dev/mapper/VolGroup00-LogVol00 119885916 1174332 112523348 2% / /dev/hda1 101086 12632 83235 14% /boot tmpfs 1029780 0 1029780 0% /dev/shm --- I have created samba users and shares and everything is fine. i have used webmin to achieve this now I want to have quotas implemented on the shares that is both for users home share and group share In webmin under system i dont see quota option I have tried to install quota package with yum but still I dont see the quota option in webmin appreciate if someone could help me and advise me or help me with some helpful link regards simon -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] How can I show only the shares that user have access to in SAMBA
Dear All, I have implemented samba to right now in test environment to be implemented in production as samba file server so far its working grt but I have one issue i have right now one share and want only the users who have access to the share to see it and the others should not when I log into the user who has no access I see the share and when i double click it ask me for username and password googling arround this issuse is solved by using the below in smb.conf file hide dot files = yes hide unreadable = yes in the share definition section. but its still visible security is set as user here the part of my smb.conf -- [kmplan] writeable = yes path = /opt/network/testplan write list = @localgrp revalidate = yes hide unreadable = yes hide dot files = yes comment = masterplan testing directory valid users = @localgrp - is there anything i need to set in smb.conf appreciate your help and advice regards simon -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] How can I show only the shares that user have access to in SAMBA
On 2012-10-10 at 13:02 -0700 simon ben sent off: i have right now one share and want only the users who have access to the share to see it and the others should not when I log into the user who has no access I see the share and when i double click it ask me for username and password googling arround this issuse is solved by using the below in smb.conf file hide dot files = yes hide unreadable = yes in the share definition section. but its still visible can you please try setting access based share enum = yes ? Cheers Björn signature.asc Description: Digital signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] List windows clients/machines in network list (win 7)
People, some of the machines of my network aren't been listed in (Windows Explorer - Network icon). I made a research and I found the following: - try to activate some services: SSDP Discovery; UPnP Device Host; Function Discovery Resource Publication. Note: this situation happens with machines that were joined to the domain and with others that weren't added to domain yet. I would like to see every windows clients listed in Network icon. I activated these services, but it keeps not working. I think my samba DCs are OK, less the following log message, that I'm not sure if it's normal: 1. [2012/10/10 14:40:52.257211, 0] nmbd/nmbd_workgroupdb.c:281(dump_workgroups) 2. dump_workgroups() 3. dump workgroup on subnet 10.0.5.5: netmask= 255.255.248.0: 4.WORKGROUP(2) current master browser = UNKNOWN 5.NetworkDomain (1) current master browser = PDC 1 6.PDC1 40849b3b (PDC 1 ) 7.BDC1 40809b3b (BDC 1 ) ... 8. [2012/10/10 14:40:52.257344, 0] nmbd/nmbd_workgroupdb.c:281(dump_workgroups) 9.dump_workgroups() 10. dump workgroup on subnet UNICAST_SUBNET: netmask= 10.0.5.5: 11.NetworkDomain (1) current master browser = UNKNOWN 12.PDC-SEDE1 40819b3b (PDC 1 ) Maybe there is a problem between lines 5 and 11 at above lines. But I don't understand the syntax of this log. Is my network without a current master browser? Anybody could help me with these 2 troubles? Thanks, -- Marcio Oliveira. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] log tdb
This log is repeatedly appearing: [2012/10/10 18:42:47.088584, 1] lib/util_tdb.c:385(tdb_log) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (64768,921067) is already open in this process Anybody knows if it's true tha it's harmless? Thanks, -- Marcio Oliveira. Tudo concorre para o bem daqueles que amam à Deus. (Rom 8,28) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba4, classicupgrade: set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_OWNER
On Wed, 2012-10-10 at 01:04 -0300, Norberto Bensa wrote: Hello, I'm testing samba4. I've setup a small samba3+ldap pdc, and then I tried a classicupgrade, but I can't pass step 4 of the howto. As mentioned in the WHATSNEW, we have an issue when we upgrade a domain with a domain admins group specified. The problem is that the domain admins group needs to own files in sysvol, but on upgrade we honour the existin GID-only mapping for that group. A patch is in GIT master (to paper over the issue), which may be backported to the 4.0 release stream once folks confirm it works properly. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] users map with ADS not working
Hi All I am running two instances of samba on same box. One instance of samba has joined AD domain ABC and the other 123. My workstation is on ABC domain and when I try to connect to samba server on ABC domain, it asks me for user name and password and then fails. If I put IP address instead it works. At the same time, when I try to connect to 123 domain, it asks me for user name and password and authenticates me without any problem. I set the debug level to 9 on both the instances. I am not running winbind - please dont ask me why. The strange problem is when a user who has same unix and windows account in ABC domain, when he tries to log into the samba server which is on ABC domain, it works with hostname where as folks who has different accounts on windows and unix, it dosent work for them with hostname but with IP. The Global section of both the instances is similar, here is the global section of samba server which is binding to ABC domain: - #=== Global Settings = [global] socket options = TCP_NODELAY IPTOS_LOWDELAY netbios name = TST-SMB-DEV workgroup = ABC server string = tst-smb-dev Server ver %v security = ADS log file = /opt/local/samba-3.6.7/dev/logs/log.%m max log size = 50 password server = AD1.ABC.com AD2.ABC.com encrypt passwords = yes realm = ABC.COM local master = no domain master = no domain logons = no dns proxy = no smb passwd file = /opt/local/samba-3.6.7/dev/private private dir = /opt/local/samba-3.6.7/dev/private username map = /opt/local/samba-3.6.7/dev/users.map pid directory = /opt/local/samba-3.6.7/dev bind interfaces only = yes wins support = no domain master = no locking = yes lock directory = /opt/local/samba-3.6.7/dev/var/locks preserve case = yes short preserve case = yes load printers = no printcap name = /dev/null deadtime = 15 preferred master = no guest account = nobody guest ok = no syslog = 0 interfaces = 10.20.20.3 socket address = 10.20.20.3 kerberos method = system keytab log level = 9 Here are the logs when user whose mapping is defined in users.map tries to log into samba instance which is binding to ABC domain [2012/10/10 15:07:11.896408, 3] libads/authdata.c:332(decode_pac_data) Found account name from PAC: foo [Foo Bar] [2012/10/10 15:07:11.896530, 3] auth/user_krb5.c:50(get_user_from_kerberos_info) Kerberos ticket principal name is [f...@abc.com] [2012/10/10 15:07:11.896611, 4] auth/user_util.c:361(map_username) Scanning username map /opt/local/samba-3.6.7/dev/users.map [2012/10/10 15:07:11.896665, 3] auth/user_util.c:402(map_username) Mapped user ABC\foo to bar [2012/10/10 15:07:11.896725, 5] lib/username.c:171(Get_Pwnam_alloc) Finding user bar [2012/10/10 15:07:11.896758, 5] lib/username.c:116(Get_Pwnam_internals) Trying _Get_Pwnam(), username as lowercase is bar [2012/10/10 15:07:11.897025, 5] lib/username.c:149(Get_Pwnam_internals) Get_Pwnam_internals did find user [bar]! [2012/10/10 15:07:11.897418, 6] param/loadparm.c:7490(lp_file_list_changed) lp_file_list_changed() file /opt/local/Samba/lib/smb.conf.dev - /opt/local/Samba/lib/smb.conf.dev last mod_time: Wed Oct 10 15:06:58 2012 [2012/10/10 15:07:11.897530, 5] lib/username.c:171(Get_Pwnam_alloc) Finding user ABC\foo [2012/10/10 15:07:11.897562, 5] lib/username.c:116(Get_Pwnam_internals) Trying _Get_Pwnam(), username as lowercase is ABC\foo [2012/10/10 15:07:11.897648, 5] lib/username.c:124(Get_Pwnam_internals) Trying _Get_Pwnam(), username as given is ABC\foo [2012/10/10 15:07:11.897725, 5] lib/username.c:134(Get_Pwnam_internals) Trying _Get_Pwnam(), username as uppercase is ABC\foo [2012/10/10 15:07:11.897798, 5] lib/username.c:143(Get_Pwnam_internals) Checking combinations of 0 uppercase letters in ABC\foo [2012/10/10 15:07:11.897832, 5] lib/username.c:149(Get_Pwnam_internals) Get_Pwnam_internals didn't find user [ABC\foo]! [2012/10/10 15:07:11.897861, 5] lib/username.c:171(Get_Pwnam_alloc) Finding user foo [2012/10/10 15:07:11.897896, 5] lib/username.c:116(Get_Pwnam_internals) Trying _Get_Pwnam(), username as lowercase is foo [2012/10/10 15:07:11.897973, 5] lib/username.c:134(Get_Pwnam_internals) Trying _Get_Pwnam(), username as uppercase is foo [2012/10/10 15:07:11.898045, 5] lib/username.c:143(Get_Pwnam_internals) Checking combinations of 0 uppercase letters in foo [2012/10/10 15:07:11.898077, 5] lib/username.c:149(Get_Pwnam_internals) Get_Pwnam_internals didn't find user [foo]! [2012/10/10 15:07:11.898222, 5] lib/username.c:171(Get_Pwnam_alloc) Finding user foo [2012/10/10 15:07:11.898256, 5] lib/username.c:116(Get_Pwnam_internals) Trying _Get_Pwnam(), username as lowercase is foo [2012/10/10 15:07:11.898332, 5] lib/username.c:134(Get_Pwnam_internals) Trying _Get_Pwnam(), username as uppercase is foo [2012/10/10 15:07:11.898403,
autobuild: intermittent test failure detected
The autobuild test system has detected an intermittent failing test in the current master tree. The autobuild log of the failure is available here: http://git.samba.org/autobuild.flakey/2012-10-10-0833/flakey.log The samba3 build logs are available here: http://git.samba.org/autobuild.flakey/2012-10-10-0833/samba3.stderr http://git.samba.org/autobuild.flakey/2012-10-10-0833/samba3.stdout The source4 build logs are available here: http://git.samba.org/autobuild.flakey/2012-10-10-0833/samba.stderr http://git.samba.org/autobuild.flakey/2012-10-10-0833/samba.stdout The top commit at the time of the failure was: commit 615951e4e77353547d91fb217b1861877540bde7 Author: Jeremy Allison j...@samba.org Date: Tue Oct 9 12:46:57 2012 -0700 Make sure the returned sd is on the right context, and if not it's always freed. Autobuild-User(master): Jeremy Allison j...@samba.org Autobuild-Date(master): Tue Oct 9 23:35:50 CEST 2012 on sn-devel-104
[SCM] Samba Shared Repository - branch v3-6-test updated
The branch, v3-6-test has been updated via a1db9aa autoconf: fix --with(out)-sendfile-support option handling from 6b4169a libreplace: Bug 8107, Fix poll replacement to become a msleep replacement http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-6-test - Log - commit a1db9aada46e2e7eefc989f888d22650320533de Author: Björn Jacke b...@sernet.de Date: Fri Sep 14 00:02:22 2012 +0200 autoconf: fix --with(out)-sendfile-support option handling this fixes bug #8344 --- Summary of changes: source3/configure.in | 35 --- 1 files changed, 20 insertions(+), 15 deletions(-) Changeset truncated at 500 lines: diff --git a/source3/configure.in b/source3/configure.in index fc1293a..014d844 100644 --- a/source3/configure.in +++ b/source3/configure.in @@ -5930,16 +5930,23 @@ fi # # check for sendfile support -with_sendfile_support=yes -AC_MSG_CHECKING(whether to check to support sendfile) +AC_MSG_CHECKING(whether sendfile support should be built in) AC_ARG_WITH(sendfile-support, -[AS_HELP_STRING([--with-sendfile-support], [Check for sendfile support (default=yes)])], +[AS_HELP_STRING([--with-sendfile-support], [Whether sendfile support should be built in (default=auto)])], [ case $withval in - yes) - - AC_MSG_RESULT(yes); + yes|no) + AC_MSG_RESULT($withval); + with_sendfile_support=$withval + ;; + *) + AC_MSG_RESULT(yes) + with_sendfile_support=auto + ;; + esac ], +) - case $host_os in +if test x$with_sendfile_support != xno ; then +case $host_os in *linux* | gnu* | k*bsd*-gnu | kopensolaris*-gnu) AC_CACHE_CHECK([for linux sendfile64 support],samba_cv_HAVE_SENDFILE64,[ AC_TRY_LINK([#include sys/sendfile.h], @@ -6175,14 +6182,12 @@ samba_cv_HAVE_SENDFILE=yes,samba_cv_HAVE_SENDFILE=no)]) ;; *) ;; -esac -;; - *) -AC_MSG_RESULT(no) -;; - esac ], - AC_MSG_RESULT(yes) -) +esac +fi + +if test x$with_sendfile_support = xyes -a x$samba_cv_HAVE_SENDFILE != xyes ; then + AC_MSG_ERROR(sendfile support requested but sendfile not available ) +fi # See if we have the Linux readahead syscall. -- Samba Shared Repository
[SCM] Samba Shared Repository - branch v3-5-test updated
The branch, v3-5-test has been updated via f156a35 autoconf: fix --with(out)-sendfile-support option handling from 7dcb017 When setting a non-default ACL, don't forget to apply masks to SMB_ACL_USER and SMB_ACL_GROUP entries. http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-5-test - Log - commit f156a357e6af0aaa6b1bcddc521761d43409e70f Author: Björn Jacke b...@sernet.de Date: Fri Sep 14 00:02:22 2012 +0200 autoconf: fix --with(out)-sendfile-support option handling this fixes bug #8344 (cherry picked from commit a1db9aada46e2e7eefc989f888d22650320533de) --- Summary of changes: source3/configure.in | 35 --- 1 files changed, 20 insertions(+), 15 deletions(-) Changeset truncated at 500 lines: diff --git a/source3/configure.in b/source3/configure.in index 2494593..9d7fb5d 100644 --- a/source3/configure.in +++ b/source3/configure.in @@ -5696,16 +5696,23 @@ fi # # check for sendfile support -with_sendfile_support=yes -AC_MSG_CHECKING(whether to check to support sendfile) +AC_MSG_CHECKING(whether sendfile support should be built in) AC_ARG_WITH(sendfile-support, -[AS_HELP_STRING([--with-sendfile-support], [Check for sendfile support (default=yes)])], +[AS_HELP_STRING([--with-sendfile-support], [Whether sendfile support should be built in (default=auto)])], [ case $withval in - yes) - - AC_MSG_RESULT(yes); + yes|no) + AC_MSG_RESULT($withval); + with_sendfile_support=$withval + ;; + *) + AC_MSG_RESULT(yes) + with_sendfile_support=auto + ;; + esac ], +) - case $host_os in +if test x$with_sendfile_support != xno ; then +case $host_os in *linux* | gnu* | k*bsd*-gnu | kopensolaris*-gnu) AC_CACHE_CHECK([for linux sendfile64 support],samba_cv_HAVE_SENDFILE64,[ AC_TRY_LINK([#include sys/sendfile.h], @@ -5941,14 +5948,12 @@ samba_cv_HAVE_SENDFILE=yes,samba_cv_HAVE_SENDFILE=no)]) ;; *) ;; -esac -;; - *) -AC_MSG_RESULT(no) -;; - esac ], - AC_MSG_RESULT(yes) -) +esac +fi + +if test x$with_sendfile_support = xyes -a x$samba_cv_HAVE_SENDFILE != xyes ; then + AC_MSG_ERROR(sendfile support requested but sendfile not available ) +fi # See if we have the Linux readahead syscall. -- Samba Shared Repository
[SCM] Samba Shared Repository - branch v4-0-test updated
The branch, v4-0-test has been updated via ba24443 autoconf: fix --with(out)-sendfile-support option handling from 90021dc Remove obsolete land-remote.py and land.py scripts. http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v4-0-test - Log - commit ba244438433add3d05a01423196780700c6a7308 Author: Björn Jacke b...@sernet.de Date: Fri Sep 14 00:02:22 2012 +0200 autoconf: fix --with(out)-sendfile-support option handling this fixes bug #8344 (cherry picked from commit 70bc93650f86a76c6f1617139cb71539c76abf42) Autobuild-User(v4-0-test): Karolin Seeger ksee...@samba.org Autobuild-Date(v4-0-test): Wed Oct 10 12:36:03 CEST 2012 on sn-devel-104 --- Summary of changes: source3/configure.in | 35 --- 1 files changed, 20 insertions(+), 15 deletions(-) Changeset truncated at 500 lines: diff --git a/source3/configure.in b/source3/configure.in index e6a1310..a6cc444 100644 --- a/source3/configure.in +++ b/source3/configure.in @@ -5443,16 +5443,23 @@ fi # # check for sendfile support -with_sendfile_support=yes -AC_MSG_CHECKING(whether to check to support sendfile) +AC_MSG_CHECKING(whether sendfile support should be built in) AC_ARG_WITH(sendfile-support, -[AS_HELP_STRING([--with-sendfile-support], [Check for sendfile support (default=yes)])], +[AS_HELP_STRING([--with-sendfile-support], [Whether sendfile support should be built in (default=auto)])], [ case $withval in - yes) - - AC_MSG_RESULT(yes); + yes|no) + AC_MSG_RESULT($withval); + with_sendfile_support=$withval + ;; + *) + AC_MSG_RESULT(yes) + with_sendfile_support=auto + ;; + esac ], +) - case $host_os in +if test x$with_sendfile_support != xno ; then +case $host_os in *linux* | gnu* | k*bsd*-gnu | kopensolaris*-gnu) AC_CACHE_CHECK([for linux sendfile support],samba_cv_HAVE_SENDFILE,[ AC_TRY_LINK([#include sys/sendfile.h], @@ -5629,14 +5636,12 @@ samba_cv_HAVE_SENDFILE=yes,samba_cv_HAVE_SENDFILE=no)]) ;; *) ;; -esac -;; - *) -AC_MSG_RESULT(no) -;; - esac ], - AC_MSG_RESULT(yes) -) +esac +fi + +if test x$with_sendfile_support = xyes -a x$samba_cv_HAVE_SENDFILE != xyes ; then + AC_MSG_ERROR(sendfile support requested but sendfile not available ) +fi # See if we have the Linux readahead syscall. -- Samba Shared Repository
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via 5bb60df s3-rpc_server: fix build warning from 615951e Make sure the returned sd is on the right context, and if not it's always freed. http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit 5bb60df5136810c38a10daad152f1e744f38e976 Author: David Disseldorp dd...@samba.org Date: Wed Oct 10 10:47:20 2012 +0200 s3-rpc_server: fix build warning enum dcerpc_transport_t is undeclared, include required headers. Autobuild-User(master): David Disseldorp dd...@samba.org Autobuild-Date(master): Wed Oct 10 12:41:28 CEST 2012 on sn-devel-104 --- Summary of changes: source3/rpc_server/srv_pipe.c |2 ++ 1 files changed, 2 insertions(+), 0 deletions(-) Changeset truncated at 500 lines: diff --git a/source3/rpc_server/srv_pipe.c b/source3/rpc_server/srv_pipe.c index 4a7f4ab..7cce180 100644 --- a/source3/rpc_server/srv_pipe.c +++ b/source3/rpc_server/srv_pipe.c @@ -31,6 +31,8 @@ #include system/filesys.h #include srv_pipe_internal.h #include ../librpc/gen_ndr/ndr_schannel.h +#include ../librpc/gen_ndr/dcerpc.h +#include ../librpc/rpc/rpc_common.h #include ../libcli/auth/schannel.h #include ../libcli/auth/spnego.h #include dcesrv_auth_generic.h -- Samba Shared Repository
autobuild: intermittent test failure detected
The autobuild test system has detected an intermittent failing test in the current master tree. The autobuild log of the failure is available here: http://git.samba.org/autobuild.flakey/2012-10-10-1432/flakey.log The samba3 build logs are available here: http://git.samba.org/autobuild.flakey/2012-10-10-1432/samba3.stderr http://git.samba.org/autobuild.flakey/2012-10-10-1432/samba3.stdout The source4 build logs are available here: http://git.samba.org/autobuild.flakey/2012-10-10-1432/samba.stderr http://git.samba.org/autobuild.flakey/2012-10-10-1432/samba.stdout The top commit at the time of the failure was: commit 5bb60df5136810c38a10daad152f1e744f38e976 Author: David Disseldorp dd...@samba.org Date: Wed Oct 10 10:47:20 2012 +0200 s3-rpc_server: fix build warning enum dcerpc_transport_t is undeclared, include required headers. Autobuild-User(master): David Disseldorp dd...@samba.org Autobuild-Date(master): Wed Oct 10 12:41:28 CEST 2012 on sn-devel-104
[SCM] CTDB repository - branch master updated - ctdb-1.13-285-gbd4ff17
The branch, master has been updated via bd4ff176387372b1c233373c0bc8ced523fc9670 (commit) via 7d4b8cce96f33fff647a0c9d259c121dfc8403e9 (commit) via c185ffd2822fcee26d07398464c59b66c61f53fa (commit) via 9550c497e6d6ef5ee44826c4bd9ed5ad65174263 (commit) via 56fcee3c7730cb12fa666072d5400949af6e5f7c (commit) via bfe16cf69bf2eee93c0d831f76d88bba0c2b96c2 (commit) via a555940fb5c914b7581667a05153256ad7d17774 (commit) via be4ad110ede9981b181ac28f31ffd855a879d5df (commit) via 7054e4ded59c6b8f254dcfefaef64da05f25aecd (commit) from c4f5a58471b206e2287c7958c7f29c1f1c0626ac (commit) http://gitweb.samba.org/?p=ctdb.git;a=shortlog;h=master - Log - commit bd4ff176387372b1c233373c0bc8ced523fc9670 Author: Martin Schwenke mar...@meltin.net Date: Wed Oct 10 15:03:06 2012 +1100 tests/eventscripts: add unit tests for policy routing reconfigure Signed-off-by: Martin Schwenke mar...@meltin.net commit 7d4b8cce96f33fff647a0c9d259c121dfc8403e9 Author: Martin Schwenke mar...@meltin.net Date: Wed Oct 10 14:48:59 2012 +1100 tests/eventscripts: add extra infrastructure for policy routing tests Less copying and pasting is a good thing... Signed-off-by: Martin Schwenke mar...@meltin.net commit c185ffd2822fcee26d07398464c59b66c61f53fa Author: Martin Schwenke mar...@meltin.net Date: Fri Aug 3 10:54:30 2012 +1000 Eventscripts: Add support for reconfigure pseudo-event for policy routing This rebuilds all policy routes and can be used if the configuration changes. Signed-off-by: Martin Schwenke mar...@meltin.net commit 9550c497e6d6ef5ee44826c4bd9ed5ad65174263 Author: Martin Schwenke mar...@meltin.net Date: Mon Sep 24 14:32:04 2012 +1000 recoverd: Track failure of recovered event, banning culprits Pair-programmed-with: Amitay Isaacs ami...@gmail.com Signed-off-by: Martin Schwenke mar...@meltin.net commit 56fcee3c7730cb12fa666072d5400949af6e5f7c Author: Martin Schwenke mar...@meltin.net Date: Fri Aug 31 09:34:17 2012 +1000 recoverd: When starting a takeover run disable IP verification Disable for TakeoverTimeout seconds. Otherwise the the recovery daemon can get overzealous and start trying to add/delete addresses that it thinks are missing but where the eventscript just hasn't finished. This didn't used to matter so much but it is more important now that concurrent takeip/releaseip/updateip generate error - we want to avoid spamming the log. Signed-off-by: Martin Schwenke mar...@meltin.net commit bfe16cf69bf2eee93c0d831f76d88bba0c2b96c2 Author: Martin Schwenke mar...@meltin.net Date: Wed Jul 11 14:46:07 2012 +1000 ctdbd: Stop takeovers and releases from colliding in mid-air There's a race here where release and takeover events for an IP can run at the same time. For example, a ctdb deleteip and a takeover initiated by the recovery daemon. The timeline is as follows: 1. The release code registers a callback to update the VNN. The callback is executed *after* the eventscripts run the releaseip event. 2. The release code calls the eventscripts for the releaseip event, removing IP from its interface. The takeover code updates the VNN saying that IP is on some iface even if/though the address is already there. 3. The release callback runs, removing the iface associated with IP in the VNN. The takeover code calls the eventscripts for the takeip event, adding IP to an interface. As a result, CTDB doesn't think it should be hosting IP but IP is on an interface. The recovery daemon fixes this later... but it shouldn't happen. This patch can cause some additional noise in the logs: Release of IP 10.0.2.133/24 on interface eth2 node:2 recoverd:We are still serving a public address '10.0.2.133' that we should not be serving. Removing it. Release of IP 10.0.2.133/24 rejected update for this IP already in flight recoverd:client/ctdb_client.c:2455 ctdb_control for release_ip failed recoverd:Failed to release local ip address In this case the node has started releasing an IP when the recovery daemon notices the addresses is still hosted and initiates another release. This noise is harmless but annoying. Signed-off-by: Martin Schwenke mar...@meltin.net commit a555940fb5c914b7581667a05153256ad7d17774 Author: Martin Schwenke mar...@meltin.net Date: Tue Aug 28 15:17:29 2012 +1000 ctdbd: New tunable NoIPTakeoverOnDisabled Stops the behaviour where unhealthy nodes can host IPs when there are no healthy nodes. Set this to 1 when an immediate complete outage is preferred when all nodes are unhealthy. The alternative (i.e. default) can lead
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via 547a260 vfs: Improve formatting of vfs_fake_acls via d07d888 vfs: Improve formatting of vfs_default via a581b3d examples: Re-indent and reformat skel VFS modules via 38416cc vfs: Use a blocking function in vfs_zfsacl for system ACL blobs via bac3ed2 vfs: Use posix_sys_acl_blob_get_file in vfs_tru64acl for posix ACLs via 998bdd5 vfs: Use posix_sys_acl_blob_get_file in vfs_solarisacl for posix ACLs via 010e589 vfs: Use posix_sys_acl_blob_get_file in vfs_posixacl for posix ACLs via 598b565c vfs: Use posix_sys_acl_blob_get_file in vfs_irix for posix ACLs via 4eb0e40 vfs: Use posix_sys_acl_blob_get_file in vfs_hpux for posix ACLs via abee79f vfs: Use posix_sys_acl_blob_get_file in vfs_gpfs for posix ACLs via 594 vfs: Use posix_sys_acl_blob_get_file in vfs_fake_acls for posix ACLs via 76b38f7 vfs: Use posix_sys_acl_blob_get_file in vfs_default for posix ACLs via 274ace3 vfs: Use posix_sys_acl_blob_get_file in vfs_aixacl2 for posix ACLs via 79edc54 vfs: Use posix_sys_acl_blob_get_file in vfs_aixacl via c960a49 vfs: Use a blocking function in vfs_afsacl for system ACL blobs via ddcaac9 vfs: Implement a sys_acl_blob_get_{fd,file} for POSIX ACL backends via 1f36ec1 vfs: Remove type parameter from sys_acl_blob_get_{fd,file} via c8ade07 smbd: Add mem_ctx to {f,}get_nt_acl VFS call via 9158974 smbd: Add mem_ctx to sys_acl_init() and all callers via a4d1f22 build: Add vfs_media_harmony to the waf build via bb99cf1 posixacls: Add IDL changes for vfs_acl_xattr using hash of the sys acl from 5bb60df s3-rpc_server: fix build warning http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit 547a260a2865d547a4ffc756b21fa648349654fd Author: Andrew Bartlett abart...@samba.org Date: Thu Oct 11 10:47:17 2012 +1100 vfs: Improve formatting of vfs_fake_acls This avoids this bad style being copied into new modules. Andrew Bartlett Autobuild-User(master): Andrew Bartlett abart...@samba.org Autobuild-Date(master): Thu Oct 11 05:10:16 CEST 2012 on sn-devel-104 commit d07d888ce1394c51019804d5717e02d088a715f8 Author: Andrew Bartlett abart...@samba.org Date: Thu Oct 11 10:46:37 2012 +1100 vfs: Improve formatting of vfs_default This avoids this bad style being copied into new modules. Andrew Bartlett commit a581b3d48edb1b3f8205e5b1dd2935e265aaba42 Author: Andrew Bartlett abart...@samba.org Date: Thu Oct 11 07:53:29 2012 +1100 examples: Re-indent and reformat skel VFS modules This avoids some of the poor style here from propogating to new VFS modules. Andrew Bartlett commit 38416ccac3970b2bf63fe218ef85d535d848302c Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 17:00:42 2012 +1100 vfs: Use a blocking function in vfs_zfsacl for system ACL blobs This is so we do not query some other module for the ACL blob, as zfs ACLs are not posix ACLs. We may add a linearisation later. Andrew Bartlett commit bac3ed2696e621ee18f4332e5404bbf2af0c7ccb Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:59:53 2012 +1100 vfs: Use posix_sys_acl_blob_get_file in vfs_tru64acl for posix ACLs commit 998bdd516adf5edb5c5884f92f04dc690aa1ce27 Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:59:43 2012 +1100 vfs: Use posix_sys_acl_blob_get_file in vfs_solarisacl for posix ACLs commit 010e589c29335fc48446051347d6af5f787981a4 Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:59:35 2012 +1100 vfs: Use posix_sys_acl_blob_get_file in vfs_posixacl for posix ACLs commit 598b565c632aae8792dc2917eda2e2b7365d4cec Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:59:25 2012 +1100 vfs: Use posix_sys_acl_blob_get_file in vfs_irix for posix ACLs commit 4eb0e406f15c5fcf3b73361978edcac0a8db5b58 Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:59:18 2012 +1100 vfs: Use posix_sys_acl_blob_get_file in vfs_hpux for posix ACLs commit abee79f99db802adc8e13a2baedf7817bf937786 Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:58:59 2012 +1100 vfs: Use posix_sys_acl_blob_get_file in vfs_gpfs for posix ACLs commit 59429e9b08b3d88ed6ba8fc86ec837ef23d8 Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:53:43 2012 +1100 vfs: Use posix_sys_acl_blob_get_file in vfs_fake_acls for posix ACLs commit 76b38f75e98ed68de9e649c2a0ef3b4b317292ae Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:53:22 2012 +1100 vfs: Use posix_sys_acl_blob_get_file in vfs_default for posix ACLs commit 274ace37fd413240bac3d5f45fa9a481aba0bfb1 Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 16:52:17 2012
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via 957f9fa rpc_server:srvsvc Remove psd variable that was no longer set by SMB_VFS_FGET_NT_ACL via 0f435a7 build: Remove --disable-shared via 1722074 vfs: Remove irixacl module (all the fucntions in it are unimplemented) via a0588fd vfs: Fix alternative posix and no-op sys acl implementations to take a mem_ctx from 547a260 vfs: Improve formatting of vfs_fake_acls http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit 957f9fa3ff2ba838bb1669c371da0f70ddeb2360 Author: Andrew Bartlett abart...@samba.org Date: Thu Oct 11 15:08:25 2012 +1100 rpc_server:srvsvc Remove psd variable that was no longer set by SMB_VFS_FGET_NT_ACL This fixes up an error introduced by c8ade07760ae0ccfdf2d875c9f3027926e62321b. Andrew Bartlett Autobuild-User(master): Andrew Bartlett abart...@samba.org Autobuild-Date(master): Thu Oct 11 07:53:36 CEST 2012 on sn-devel-104 commit 0f435a7adceb6bb7e2cc57eda3bf5a4a615d6a79 Author: Andrew Bartlett abart...@samba.org Date: Wed Oct 10 21:20:24 2012 +1100 build: Remove --disable-shared This does not work, and has no known use cases. Remove it so we do not waste time trying to support it. This also removes it for ldb/tdb/ntdb/talloc, but as these are first shared libraries, and then tools on top of those, rpath or (for emergency tools) --nonshared-binary= seems more appropriate. Andrew Bartlett commit 1722074a9b4b7370ae50ba7a0b787c5f325f592b Author: Andrew Bartlett abart...@samba.org Date: Thu Oct 11 14:49:13 2012 +1100 vfs: Remove irixacl module (all the fucntions in it are unimplemented) commit a0588fdea82ab1b5d4dbd8bf75b01b82c0879d21 Author: Andrew Bartlett abart...@samba.org Date: Thu Oct 11 14:42:39 2012 +1100 vfs: Fix alternative posix and no-op sys acl implementations to take a mem_ctx These were missed with the initial conversion to use a talloc context. Andrew Bartlett --- Summary of changes: buildtools/wafsamba/samba_bundled.py |4 - buildtools/wafsamba/wscript | 13 + source3/Makefile.in |5 -- source3/configure.in |6 -- source3/lib/sysacls.c | 84 ++- source3/modules/vfs_aixacl.c | 12 ++-- source3/modules/vfs_irixacl.c | 90 - source3/modules/vfs_irixacl.h | 45 -- source3/modules/vfs_solarisacl.c |2 +- source3/modules/wscript_build |8 --- source3/rpc_server/srvsvc/srv_srvsvc_nt.c |8 +-- source3/wscript |4 - 12 files changed, 44 insertions(+), 237 deletions(-) delete mode 100644 source3/modules/vfs_irixacl.c delete mode 100644 source3/modules/vfs_irixacl.h Changeset truncated at 500 lines: diff --git a/buildtools/wafsamba/samba_bundled.py b/buildtools/wafsamba/samba_bundled.py index b8a4101..afcf708 100644 --- a/buildtools/wafsamba/samba_bundled.py +++ b/buildtools/wafsamba/samba_bundled.py @@ -30,8 +30,6 @@ def target_in_list(target, lst, default): def BUILTIN_LIBRARY(bld, name): '''return True if a library should be builtin instead of being built as a shared lib''' -if bld.env.DISABLE_SHARED: -return True return target_in_list(name, bld.env.BUILTIN_LIBRARIES, False) Build.BuildContext.BUILTIN_LIBRARY = BUILTIN_LIBRARY @@ -249,8 +247,6 @@ def CHECK_BUNDLED_SYSTEM_PYTHON(conf, libname, modulename, minversion='0.0.0'): def NONSHARED_BINARY(bld, name): '''return True if a binary should be built without non-system shared libs''' -if bld.env.DISABLE_SHARED: -return True return target_in_list(name, bld.env.NONSHARED_BINARIES, False) Build.BuildContext.NONSHARED_BINARY = NONSHARED_BINARY diff --git a/buildtools/wafsamba/wscript b/buildtools/wafsamba/wscript index 5e1898c..441e727 100755 --- a/buildtools/wafsamba/wscript +++ b/buildtools/wafsamba/wscript @@ -50,9 +50,6 @@ def set_options(opt): help=(list of minimum system library versions (LIBNAME1:version,LIBNAME2:version)), action=store, dest='MINIMUM_LIBRARY_VERSION', default='') -gr.add_option('--disable-shared', - help=(Disable all use of shared libraries), - action=store_true, dest='disable_shared', default=False) gr.add_option('--disable-rpath', help=(Disable use of rpath for build binaries), action=store_true, dest='disable_rpath_build', default=False) @@ -248,7 +245,6 @@ def configure(conf): conf.env.BUNDLED_LIBS = Options.options.BUNDLED_LIBS.split(',') conf.env.PRIVATE_LIBS =