sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-25 23:21:54 +03:00
Code
85,850 Commits 60 Branches 1,144 Tags 452 MiB
3276853e59
Commit Graph

44 Commits

Author SHA1 Message Date
Stefan Metzmacher
9afba14417 s3:libsmb: add cli_{query,set}_security_descriptor() which take sec_info flags 
In order to set and get security_descriptors it's important to specify
the sec_info flags.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Michael Adam <obnox@samba.org>
 2012-12-02 22:53:32 +01:00
Richard Sharpe
7d3c26e8cf Make sure we claim that a DACL or SACL is present if the SD says so 
Autobuild-User: Richard Sharpe <sharpe@samba.org>
Autobuild-Date: Sat Mar 31 09:34:36 CEST 2012 on sn-devel-104
 2012-03-31 09:34:35 +02:00
Jeremy Allison
9fec2c0ea9 Allow a SACL to be sent in cli_set_secdesc(). 2012-02-02 16:28:06 -08:00
Stefan Metzmacher
824a300d2b s3:libsmb: cli_set_secdesc() only needs a const struct security_descriptor 
metze

Autobuild-User: Stefan Metzmacher <metze@samba.org>
Autobuild-Date: Sat Jul 23 11:08:19 CEST 2011 on sn-devel-104
 2011-07-23 11:08:19 +02:00
Stefan Metzmacher
6219bb9899 s3:libsmb: remove unused cli_query_secdesc_old() 
metze
 2011-07-23 09:55:54 +02:00
Björn Baumbach
cb4fc92177 s3-libsmb: introduce new cli_query_secdesc() which returns NTSTATUS 
Replacement for cli_query_secdesc_old()

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-07-23 09:18:57 +02:00
Björn Baumbach
768646c9a2 s3-libsmb: rename cli_query_secdesc() to cli_query_secdesc_old() 
Will introduce new cli_query_secdesc() function

Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2011-07-23 09:18:56 +02:00
Andrew Bartlett
381423b1bd libcli/security: move secdesc.c to the top level libcli/security 
This code does not rely on lp_ or other source3 only functions, so can
be part of the common library.

Andrew Bartlett
 2011-05-31 00:32:07 +02:00
Günther Deschner
27022587e3 s3-libsmb: move protos to libsmb/proto.h 
Guenther
 2011-05-06 16:37:18 +02:00
Volker Lendecke
50b3458261 s3: Convert cli_set_secdesc to cli_trans 2011-01-15 16:34:35 +01:00
Volker Lendecke
4fc5699a79 s3: Fix some nonempty blank lines 2011-01-15 16:34:35 +01:00
Volker Lendecke
0a224bc77b s3: Save the received trans2 from the inbuf in cli_trans 2010-08-05 13:57:29 +02:00
Günther Deschner
a75436e3ee s3-security: use shared SECINFO_DACL define. 
Guenther
 2010-06-03 11:00:12 +02:00
Günther Deschner
630c27bdad s3-security: use shared SECINFO_GROUP define. 
Guenther
 2010-06-03 10:59:38 +02:00
Günther Deschner
415d3d5fe7 s3-security: use shared SECINFO_OWNER define. 
Guenther
 2010-06-03 10:59:15 +02:00
Günther Deschner
7f6bb48bdf s3-secdesc: remove "typedef struct security_descriptor SEC_DESC". 
Guenther
 2010-05-18 12:30:12 +02:00
Volker Lendecke
f4cf1c56a2 s3: Add min_setup, min_param and min_data to cli_trans_recv 
Every caller that expects to receive something needs to check if enough was
sent. Make this check mandatory for everyone.

Yes, this makes the parameter list for cli_trans a bit silly, but that's just
the way it is: A silly protocol request :-)

While there, convert some _done functions to tevent_req_simple_finish_ntstatus.
 2009-11-14 12:20:12 +01:00
Jeremy Allison
8cf78ff553 Get medieval on our ass about SMB1 file descriptors being 16 bits, not an int. 
Convert all uses of cli_open(), cli_nt_createXXX to NTSTATUS versions.
This is smaller than it looks, it just fixes a lot of old code.
Next up, ensure all cli_XX functions return NTSTATUS.
Jeremy.
 2009-04-30 15:26:43 -07:00
Volker Lendecke
7965249bd6 Convert cli_query_secdesc to the async trans call 
(This used to be commit ab41017896)
 2008-09-09 17:37:34 +02:00
Volker Lendecke
240391be53 Make use of [un]marshall_sec_desc 
(This used to be commit 54576733d6)
 2007-12-29 23:13:03 +01:00
Jeremy Allison
30191d1a57 RIP BOOL. Convert BOOL -> bool. I found a few interesting 
bugs in various places whilst doing this (places that assumed
BOOL == int). I also need to fix the Samba4 pidl generation
(next checkin).
Jeremy.
(This used to be commit f35a266b3c)
 2007-10-18 17:40:25 -07:00
Andrew Tridgell
5e54558c6d r23784: use the GPLv3 boilerplate as recommended by the FSF and the license text 
(This used to be commit b0132e94fc)
 2007-10-10 12:28:22 -05:00
Jeremy Allison
d824b98f80 r23779: Change from v2 or later to v3 or later. 
Jeremy.
(This used to be commit 407e6e695b)
 2007-10-10 12:28:20 -05:00
Jelmer Vernooij
4db7642caa r18745: Use the Samba4 data structures for security descriptors and security descriptor 
buffers.

Make security access masks simply a uint32 rather than a structure
with a uint32 in it.
(This used to be commit b41c52b9db)
 2007-10-10 12:00:54 -05:00
Jeremy Allison
6f56a5be2e r4917: Merge some of Derrell.Lipman@UnwiredUniverse.com obvious fixes. 
Added text explaining units in pdbedit time fields.
Jeremy.
(This used to be commit 3d09c15d8f)
 2007-10-10 10:55:07 -05:00
Tim Potter
66e689478a r2834: Netapps can return NT_STATUS_ACCESS_DENIED when trying to return the 
security descriptor for a file.  Return an error in this case instead
of panicing trying to unpack a zero length buffer.  Found by Brett
Funderburg.
(This used to be commit 588de0d4a8)
 2007-10-10 10:52:54 -05:00
Volker Lendecke
e78cf62248 According to Ethereal we have a 32-Bit quantity here. And with SSVAL valgrind 
reports an unitialized read which is obviously correct. And I hate valgrind
errors ;-)

Volker
(This used to be commit e5dbf2441c)
 2003-10-23 13:45:48 +00:00
Herb Lewis
062f89bc28 get rid of some sompiler warnings on IRIX 
(This used to be commit a6a39c61e8)
 2003-08-15 01:42:30 +00:00
Jeremy Allison
1263c6e36c Fix from Tom.Lackemann@falconstor.com to correctly set the flags based 
on the security entries sent.
Jeremy.
(This used to be commit 45953d59f7)
 2003-05-10 02:05:24 +00:00
Jeremy Allison
8fc1f1aead Ensure that only parse_prs.c access internal members of the prs_struct. 
Needed to move to disk based i/o later.
Jeremy.
(This used to be commit a823fee5b4)
 2003-02-14 22:55:46 +00:00
Jeremy Allison
ef8bd7c4f7 Forward port the change to talloc_init() to make all talloc contexts 
named. Ensure we can query them.
Jeremy.
(This used to be commit 09a218a9f6)
 2002-12-20 20:21:31 +00:00
Tim Potter
cd68afe312 Removed version number from file header. 
Changed "SMB/Netbios" to "SMB/CIFS" in file header.
(This used to be commit 6a58c9bd06)
 2002-01-30 06:08:46 +00:00
Simo Sorce
bcbd75f7ad move to SAFE_FREE() 
(This used to be commit 48fc6a6cd5)
 2001-09-17 03:33:37 +00:00
Tim Potter
005582d1b5 Renamed formal parameter fd to fnum because we're talking about SMB file 
handles, not unix ones.
(This used to be commit 974790e45e)
 2001-07-05 08:24:03 +00:00
Jeremy Allison
f5eab4421c Fixup smbcacls. Don't return memory already freed, don't free memory allocated 
with talloc.
Jeremy.
(This used to be commit 0ae0d024f5)
 2001-05-01 23:07:30 +00:00
Andrew Tridgell
63602d15af - fixed some compiler warnings 
- fixed slprintf and vsprintf macros
(This used to be commit c986a3c51e)
 2001-04-28 14:01:02 +00:00
Andrew Tridgell
ac9e221c3e merging from 2.2 to head 
(This used to be commit bfcc6f8827)
 2001-04-22 02:54:04 +00:00
Jeremy Allison
00ab9021b0 Serious (and I *mean* serious) attempt to fix little/bigendian RPC issues. 
We were reading the endainness in the RPC header and then never propagating
it to the internal parse_structs used to parse the data.
Also removed the "align" argument to prs_init as it was *always* set to
4, and if needed can be set differently on a case by case basis.
Now ready for AS/U testing when Herb gets it set up :-).
Jeremy.
(This used to be commit 0cd37c831d)
 2001-03-09 23:48:58 +00:00
Andrew Tridgell
1239b92c73 make sure we don't free non-allocated data 
(This used to be commit 4a620f7037)
 2001-02-22 03:38:48 +00:00
Jeremy Allison
369f5fd1d7 Fixed memory leaks in lsa_XX calls. Fixed memory leaks in smbcacls. Merged 
in fixes from appliance-head and 2.2. Fixed multiple connection.tdb open
problem.
Jeremy.
(This used to be commit 0a40bc83e1)
 2000-12-15 01:02:11 +00:00
Andrew Tridgell
5092ad82ba removed SACL support (as it doesn't work with w2k if you ask for 
SACLs)
(This used to be commit 52b27d75e1)
 2000-12-04 04:58:40 +00:00
Andrew Tridgell
1fac52f9f0 changed an error message 
(This used to be commit f9f14a4293)
 2000-12-03 11:04:45 +00:00
Andrew Tridgell
4fee254d67 getting/setting acls now works. The SIDs are still numeric, the next 
step is to support usernames etc
(This used to be commit 6cea1647fc)
 2000-12-03 07:36:15 +00:00
Andrew Tridgell
0f1713068f - added client support for nttrans calls 
- added a cli_ function for querying a security descriptor on a remote file
(This used to be commit e21994ff9d)
 2000-12-03 02:18:14 +00:00