1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-27 03:21:53 +03:00
samba-mirror/client
Jeff Layton 704b739ad8 cifs.upcall: do a brute-force search for KRB5 credcache
A few weeks ago, I added some code to cifs.upcall to take the pid sent
by the kernel and use that to get the value of the $KRB5CCNAME
environment var for the process. That works fine on the initial mount,
but could be problematic on reconnect.

There's no guarantee on a reconnect that the process that initiates the
upcall will have $KRB5CCNAME pointed at the correct credcache. Because
of this, the current scheme isn't going to be reliable enough and we
need to use something different.

This patch replaces that scheme with one very similar to the one used by
rpc.gssd in nfs-utils. It searches the credcache dir (currently
hardcoded to /tmp) for a valid credcache for the given uid. If it finds
one then it uses that as the credentials cache. If it finds more than
one, it uses the one with the latest TGT expiration.

Signed-off-by: Jeff Layton <jlayton@redhat.com>
2009-09-04 06:29:44 -04:00
..
cifs_spnego.h Move mount.cifs/umount.cifs to the top level and remove the outdated copy 2009-06-02 23:24:33 +02:00
cifs.upcall.c cifs.upcall: do a brute-force search for KRB5 credcache 2009-09-04 06:29:44 -04:00
mount.cifs.c mount.cifs: don't pass text ro/rw options to kernel 2009-06-29 06:16:38 -04:00
mount.h Move mount.cifs/umount.cifs to the top level and remove the outdated copy 2009-06-02 23:24:33 +02:00
mtab.c Move mount.cifs/umount.cifs to the top level and remove the outdated copy 2009-06-02 23:24:33 +02:00
umount.cifs.c umount.cifs: do not attempt to update /etc/mtab if it is symbolic link 2009-07-27 12:02:35 -04:00