sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-07 17:18:11 +03:00
Code
279187965b
samba-mirror/source3
History
Volker Lendecke 279187965b smbd: Remove callback for release_ip when "state" is free'ed 
If a client connects to a non-public address first followed by a connect
to public address with the same client_guid and a connection to
the non-public address gets disconnected first, we hit by a use-after-free
talloc_get_type_abort() called from release_ip() as
"xconn" is already gone, taking smbd_release_ip_state with it.

We need to decide between calling ctdbd_unregister_ips() by default, as
it means the tcp connection is really gone and ctdb needs to remove the
'tickle' information.  But when a connection was passed to a different
smbd process, we need to use ctdbd_passed_ips() as the tcp connection is
still alive and the 'tickle' information should not be removed within
ctdb.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15523

Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>

Signed-off-by: Volker Lendecke <vl@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Martin Schwenke <martin@meltin.net>
(cherry picked from commit ddf47e7fe3)
2023-12-16 14:29:10 +00:00
..
auth s3:auth: call wbcFreeMemory(info) in auth3_generate_session_info_pac() 2023-01-31 11:45:17 +00:00
build
client smbclient: Fix fd leak with "showacls;ls" 2023-06-12 08:25:18 +00:00
exports
groupdb
include ctdbd_conn: add ctdbd_passed_ips() 2023-12-16 14:29:10 +00:00
intl
lib ctdbd_conn: add ctdbd_passed_ips() 2023-12-16 14:29:10 +00:00
libads s3:libads: re-initialize num_requests to 0 for cldap_ping_list retries 2023-07-06 11:56:19 +00:00
libgpo/gpext
libnet s3-net: no secrets access required when processing a ODJ provisioning 2023-07-19 15:14:13 +00:00
librpc s3:libnetapi: Add NetComposeOfflineDomainJoin() to IDL 2023-11-29 14:51:11 +00:00
libsmb libsmb: fix regression on smbc_getxattr and fix doc 2023-09-06 08:35:16 +00:00
locale spelling: connnect encrytion exisit expection explicit invalide missmatch paramater paramter partion privilige relase reponse seperate unkown verson authencication progagated 2022-06-10 18:12:33 +00:00
locking s3:locking: fix debug level for NT_STATUS_NOT_FOUND messanges in get_static_share_mode_data 2023-05-09 13:15:57 +00:00
modules vfs_ceph: call 'ceph_fgetxattr' only if valid fd 2023-12-11 13:21:02 +00:00
nmbd smbd: remove process shortname arg from reinit_after_fork() 2022-12-14 01:38:29 +00:00
param CVE-2023-42669 s4-rpc_server: Disable rpcecho server by default 2023-10-08 22:06:40 +02:00
passdb dsdb: Use samdb_system_container_dn() in pdb_samba_dsdb_*() 2023-08-01 10:57:04 +00:00
printing s3-librpc: add ads.idl and convert ads_struct to talloc. 2022-12-16 20:38:32 +00:00
profile s3:profile: make use of tevent_cached_getpid() in performance critical code 2022-07-25 18:32:18 +00:00
registry lib: Move tab_depth() to reg_parse_prs.c 2023-01-10 00:28:37 +00:00
rpc_client CVE-2023-3961:s3: smbd: Remove the SMB_ASSERT() that crashes on bad pipenames. 2023-10-08 22:05:41 +02:00
rpc_server CVE-2023-42670 s3-rpc_server: Remove cross-check with "samba" EPM lookup 2023-10-08 22:07:05 +02:00
rpcclient CVE-2023-34968: mdssvc: introduce an allocating wrapper to sl_pack() 2023-07-14 15:12:34 +02:00
script s3:selftest: add samba3.blackbox.smbXsrv_client_ctdb_registered_ips 2023-12-16 14:29:10 +00:00
selftest s3:selftest: add samba3.blackbox.smbXsrv_client_ctdb_registered_ips 2023-12-16 14:29:10 +00:00
services s3:services: Disable rcinit-based service control code 2021-12-10 14:02:30 +00:00
smbd smbd: Remove callback for release_ip when "state" is free'ed 2023-12-16 14:29:10 +00:00
torture CVE-2023-3961:s3:torture: Add test SMB2-INVALID-PIPENAME to show we allow bad pipenames with unix separators through to the UNIX domain socket code. 2023-10-08 22:05:41 +02:00
utils s3:net: Allow to load ODJ blob from stdin 2023-11-29 14:51:11 +00:00
web
winbindd s3:winbindd: Fix double close(fd) 2023-07-28 13:37:01 +00:00
.clang_complete
.dmallocrc
.indent.pro
Doxyfile
mainpage.dox
smbadduser.in
wscript selftest: Only run samba.tests.smb3unix in developer mode 2023-02-10 10:52:15 +00:00
wscript_build build: Don't compile source3/lib/util_sd.c four times 2023-01-12 15:38:30 +00:00
wscript_configure_system_ncurses