summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* WHATSNEW: Start release notes for 3.4.18.v3-4-stableKarolin Seeger2012-04-301-2/+44
| | | | Karolin
* VERSION: Bump version number up to 3.4.18.Karolin Seeger2012-04-301-1/+1
| | | | Karolin
* Fix self granting privileges in security=ads.samba-3.4.17Jeremy Allison2012-04-281-4/+38
| | | | CVE-2012-2111
* WHATSNEW: Release notes 3.4.17.Karolin Seeger2012-04-281-4/+11
| | | | Karolin
* WHATSNEW: Fix typo.Karolin Seeger2012-04-101-1/+1
| | | | Karolin
* WHATSNEW: Start release notes for Samba 3.4.17.Karolin Seeger2012-04-101-2/+43
| | | | Karolin
* VERSION: Bump version up to 3.4.17.Karolin Seeger2012-04-101-1/+1
| | | | Karolin
* rerun 'make samba3-idl'samba-3.4.16Stefan Metzmacher2012-04-0726-3921/+7527
| | | | | | | metze The last 12 patches address bug #8815 (PIDL based autogenerated code allows overwriting beyond of allocated array; CVE-2012-1182).
* pidl/NDR/Parser: also do range checks on the array sizeStefan Metzmacher2012-04-071-5/+20
| | | | metze
* pidl/NDR/Parser: do array range validation in ParseArrayPullGetLength()Stefan Metzmacher2012-04-071-28/+14
| | | | metze
* pidl/NDR/Parser: use helper variables for array size and lengthStefan Metzmacher2012-04-071-7/+15
| | | | metze
* pidl/NDR/Parser: remember if we already know the array lengthStefan Metzmacher2012-04-071-1/+7
| | | | metze
* pidl/NDR/Parser: use ParseArrayPullGetLength() to get the number of array ↵Stefan Metzmacher2012-04-071-5/+1
| | | | | | | | | elements (bug #8815 / CVE-2012-1182) An anonymous researcher and Brian Gorenc (HP DVLabs) working with HP's Zero Day Initiative program have found this and notified us. metze
* pidl/NDR/Parser: split off ParseArrayPullGetSize() and ParseArrayPullGetLength()Stefan Metzmacher2012-04-071-13/+42
| | | | metze
* pidl/NDR/Parser: simplify logic in DeclareArrayVariables*()Stefan Metzmacher2012-04-071-8/+6
| | | | metze
* pidl/NDR/Parser: declare all union helper variables in ParseUnionPull()Stefan Metzmacher2012-04-071-2/+2
| | | | metze
* pidl:NDR/Parser: fix range() for arraysStefan Metzmacher2012-04-071-1/+32
| | | | | metze (cherry picked from commit bea4948acb4bbee2fbf886adeb53edbc84de96da)
* pidl: allow foo being on the wire after [length_is(foo)] uint8 *bufferStefan Metzmacher2012-04-071-0/+4
| | | | | metze (cherry picked from commit 92791ce9a8439ac06a22afdbeb0d0fc66c32cb31)
* pidl: add support for [string] on fixed size arrays.Stefan Metzmacher2012-04-073-2/+117
| | | | | | | | | | | | | | | | | | | midl also supports this: struct { long l1; [string] wchar_t str[16]; long l2; }; Where the wire size of str is encoded like a length_is() header: 4-byte offset == 0; 4-byte array length; The strings are zero terminated. metze (cherry picked from commit 7ccc9a6ef563cc855752b4e74152420b9be5af43)
* WHATSNEW: Prepare release notes for 3.4.16.Karolin Seeger2012-04-071-3/+11
| | | | Karolin
* WHATSNEW: Start release notes for 3.4.16.Karolin Seeger2011-08-231-2/+41
| | | | | Karolin (cherry picked from commit 6f4316c93105165505bd8975530e01c8e50fb9c0)
* VERSION: Bump version up to 3.4.16.Karolin Seeger2011-08-231-1/+1
| | | | | Karolin (cherry picked from commit 4573fbed636e114d21f6efbb3204ae09dfc9c0c2)
* WHATSNEW: Prepare release notes for 3.4.15.samba-3.4.15Karolin Seeger2011-08-181-4/+19
| | | | | Karolin (cherry picked from commit 3777f31f377e97e09d6cbe9c65c4c4b79b637da2)
* s3/swat: use strlcat instead of strncat to fix build on old Linux distrosBjörn Jacke2011-08-181-1/+1
| | | | | | | | | | | | | | | | SLES 9's glibc for example had weird macros where the use of strncat resulted in the use of strcat which we don't allow. Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Björn Jacke <bj@sernet.de> Autobuild-Date: Thu Aug 4 17:50:24 CEST 2011 on sn-devel-104 (cherry picked from commit d3b4d75364210e2d2a4a1cd806f28b0021f22909) Fix bug #8362 (build issue on old glibc systems). (cherry picked from commit 87fa72a5202fe3780d4a61289bf755027cd078f4) (cherry picked from commit 552ccc6588b0744ae9b3731b1406749baea03d5a) (cherry picked from commit b941edf9c20bd6a92aec2a62be5b830db1194ce8)
* s3:web/swat: use strtoll() instead of atoi/atol/atollStefan Metzmacher2011-08-181-6/+19
| | | | | | | | | | | | | | This is more portable, as we have a strtoll replacement in lib/replace. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sat Aug 6 11:55:45 CEST 2011 on sn-devel-104 (cherry picked from commit a6be0820d09b3f3eabfbb5f4356add303aa8a494) Fix bug #8347 (CVE-2011-2522 regression for HP-UX, AIX and OSF). (cherry picked from commit ac5d8c0148e10a3a0af9e1dc0849bb6920c26ad7)
* s3:nmbd_packets: return the used number of sockets in create_listen_fdset() ↵Stefan Metzmacher2011-08-181-1/+1
| | | | | | | | | | | | | (bug #8276) Fix bug #7949 (DoS in Winbind and smbd with many file descriptors open) (commit feb3fcd0fa4bda0967b881315595d7702f4d1752) changed the bahavior, so that we skipped some sockets. This should work for v3-4-test. metze (cherry picked from commit 11b4dec29c9306531e73d5f4c12f89934dd538b4)
* s3: increase the log level for missing PIDs on SIGCHLDDavid Disseldorp2011-08-181-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | Since the fix for bso#7836, the parent smbd is responsible for maintaining an up-to-date printcap cache. It does this by forking a child process to asynchronously fetch printcap data from CUPS. When the child process exits after fetching all printcap data, the parent smbd is sent SIGCHLD. This triggers smbd_sig_chld_handler() which looks for the exited process PID on a "children" list. Child smbd process PIDs are added to the "children" list to ensure cleanup on unclean shutdown and log level change notification messages. Printcap update process PIDs are not added to the list as they do not maintain any state that requires cleanup, nor do they wait on tevent for messages. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Thu Feb 17 11:11:45 CET 2011 on sn-devel-104 (cherry picked from commit 9c12232f1ae36e00d04114ad73edd8ba3c2c6a5c) Fix bug #8269 (smbd spams log with "Could not find child X -- ignoring" messages). (cherry picked from commit ba118ac287d49267dd2f346d4ddd2e590ebbe653) (cherry picked from commit c943af7ff13c64343e5246b27a7416627bffd365)
* s3-libnet: fix bug #6364: Pull realm from supplied username on libnet joinJim McDonough2011-08-181-0/+7
| | | | (cherry picked from commit 9a172dcd2e7bf91d78885325bce7a19e937b48af)
* s3-printing: remove duplicate cups response processing codeDavid Disseldorp2011-08-181-147/+94
| | | | | | | | | There is currently a lot of duplicate code included for processing responses to CUPS_GET_PRINTERS and CUPS_GET_CLASSES requests. This change splits this code into a separate function. Signed-off-by: Günther Deschner <gd@samba.org> (cherry picked from commit a3635edc96e481f1125db1c26e33cae5b22a01a4)
* s3-printing: use printcap IDL for IPCDavid Disseldorp2011-08-182-129/+108
| | | | | | | | | | | Use printcap IDL for marshalling and unmarshalling messages between cups child and parent smbd processes. This simplifies the IPC and ensures the parent is notified of cups errors encountered by the child. https://bugzilla.samba.org/show_bug.cgi?id=7994 Signed-off-by: Günther Deschner <gd@samba.org> (cherry picked from commit e5a0ac40d7467bb6ce07d942fdadb43f1ec81bfc)
* idl: define printcap IPC message formatDavid Disseldorp2011-08-185-1/+222
| | | | | Signed-off-by: Günther Deschner <gd@samba.org> (cherry picked from commit 9a107d2d65d3080aebe441b8b93cf17abeb092f7)
* s3-printing: an empty cups printer list is treated as an errorDavid Disseldorp2011-08-181-6/+17
| | | | | | | | | | | | | | | | | cups_async_callback() is called to receive new printcap data from a child process which requests the information from cupsd. Newly received printcap information is stored in a temporary printcap cache (tmp_pcap_cache). Once the child process closes the printcap IPC file descriptor, the system printcap cache is replaced with the newly populated tmp_pcap_cache, however this only occurs if tmp_pcap_cache is non null (has at least one printer). If the printcap cache is empty, which is the case when cups is not exporting any printers, the printcap cache is not replaced resulting in stale data. Signed-off-by: Günther Deschner <gd@samba.org> (cherry picked from commit 52bac5ffeea8ecbd2a5ecca023b3e2014c1350da)
* s3-printing: remove pcap_cache_loaded assertsDavid Disseldorp2011-08-182-4/+0
| | | | | | | | | | | | | | | | | | pcap_cache_loaded() assertions were added to the (re)load_printers() functions, to ensure the caller had called pcap_cache_reload() prior to reloading printer shares. The problem is, pcap_cache_loaded() returns false if the the pcap_cache contains no printer entries. i.e. pcap_cache_reload() has run but not detected any printers. Remove these assertions, correct call ordering is already enforced. Signed-off-by: Günther Deschner <gd@samba.org> The last 3 patches address bug #7836 (A newly added printer isn't visbile to clients). (cherry picked from commit da9b2d9d58193ed3da36c2f8ff1e41a1e743ba07)
* Revert "Revert "s3-printing: update parent smbd pcap cache""David Disseldorp2011-08-183-2/+19
| | | | | | | This reverts commit ad450870eacb114b3f15941a4478ba25701e035a. Signed-off-by: Günther Deschner <gd@samba.org> (cherry picked from commit ee094b53d7fd9c46bca57b9815993282c63af00c)
* Revert "Revert "s3-printing: reload shares after pcap cache fill""David Disseldorp2011-08-186-26/+50
| | | | | | | This reverts commit 36ea03bbe28122ce03de4969e254dd276cfe5a79. Signed-off-by: Günther Deschner <gd@samba.org> (cherry picked from commit 3e1969d229dff2921b43189969dfbe522b167cc2)
* WHATSNEW: Start release notes for 3.4.15.Karolin Seeger2011-07-261-2/+43
| | | | Karolin
* VERSION: Bump version up to 3.4.15.Karolin Seeger2011-07-261-1/+1
| | | | Karolin
* s3-swat: Fix typo.samba-3.4.14Karolin Seeger2011-07-241-1/+1
| | | | | | Thanks to Simo for reporting! Karolin
* s3 swat: Create random nonce in CGI modeKai Blin2011-07-241-1/+19
| | | | | | | | | | | | | In CGI mode, we don't get access to the user's password, which would reduce the hash used so far to parameters an attacker can easily guess. To work around this, read the nonce from secrets.tdb or generate one if it's not there. Also populate the C_user field so we can use that for token creation. Signed-off-by: Kai Blin <kai@samba.org> The last 12 patches address bug #8290 (CSRF vulnerability in SWAT). This addresses CVE-2011-2522 (Cross-Site Request Forgery in SWAT).
* s3 swat: Add time component to XSRF tokenKai Blin2011-07-242-5/+25
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to printer pageKai Blin2011-07-241-10/+18
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to password pageKai Blin2011-07-241-3/+8
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to shares pageKai Blin2011-07-241-5/+13
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to globals pageKai Blin2011-07-241-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to wizard pageKai Blin2011-07-241-1/+8
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to wizard_params pageKai Blin2011-07-241-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to viewconfig pageKai Blin2011-07-241-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to status pageKai Blin2011-07-241-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add support for anti-XSRF tokenKai Blin2011-07-242-0/+59
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Allow getting the user's HTTP auth passwordKai Blin2011-07-242-0/+10
| | | | Signed-off-by: Kai Blin <kai@samba.org>
View Lorry Controller Status