Re: [Samba] V4 - New Install - Missing Zone File
On 22 February 2012 00:58, Amitay Isaacs ami...@gmail.com wrote: Hi Michael, On Tue, Feb 21, 2012 at 11:57 PM, Michael Wood esiot...@gmail.com wrote: Since I provisioned samba4 before the DLZ option was available I have stuck with BIND9_FLATFILE for now. I have pushed upgradedns script to upgrade DNS provisioning from BIND9_FLATFILE backend to BIND9_DLZ backend or SAMBA_INTERNAL. If you would like to migrate to AD based DNS, you can give the script a try. Thanks, Amitay. I don't have time to try it now, but I'll let you know if I run into any issues when I do. By the way, how does this interact with dbcheck and upgradeprovision? e.g. which order should I run them in? My current provision is 4.0.0alpha12-GIT-77b9b97 and Matthieu was looking into some issues I had with upgradeprovision which were related to DNS: https://bugzilla.samba.org/show_bug.cgi?id=8669 Given the above I suppose it might be safest to try upgradedns before upgradeprovision and perhaps dbcheck before upgradedns? But if I try this it won't be in production yet because the last thing Matthieu said about upgradeprovision was that it should not be used until he's fixed it. -- Michael Wood esiot...@gmail.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] V4 - New Install - Missing Zone File
Hi On 22 February 2012 01:46, jdf...@cox.net wrote: The default DNS backend has changed to BIND9_DLZ. This means the DNS records are stored in Samba4's AD tree instead of in a normal zone file. [...] If you're just starting out, you might want to try the DLZ backend. Thank you for your help! I was able to get a new Bind version to somewhat work. I was able to join an XP machine to the domain but DNS seems to not be updating correctly. Below you will find the logs that I am seeing. I don't know what would cause that, but you could try increasing the debug level (e.g. samba -d10 -i -M single) to see if it gives you more details about the issue. Increasing bind9's debug level might help too. Also, you might want to discuss this on samba-technical. I've copied my reply there. Since Samba 4 is still in alpha, the HOWTO says to discuss successes/failures on samba-technical. /var/log/messages: Feb 21 16:39:39 davis named[1163]: validating @0x24c0d30: com SOA: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x220f220: com SOA: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x220f220: CK0POJMG874LJREF7EFN8430QVIT8BSM.com NSEC3: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x24c0d30: CK0POJMG874LJREF7EFN8430QVIT8BSM.com NSEC3: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x198b010: A2MEHD73GB2UACB908FCH30EPFLFHMH7.com NSEC3: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x24c0d30: A2MEHD73GB2UACB908FCH30EPFLFHMH7.com NSEC3: no valid signature found Feb 21 16:39:40 davis named[1163]: validating @0x24c0d30: 3RL0HJSI26SCTO21AV9TVIGIPUVPJAI1.com NSEC3: no valid signature found Feb 21 16:39:40 davis named[1163]: validating @0x198b010: 3RL0HJSI26SCTO21AV9TVIGIPUVPJAI1.com NSEC3: no valid signature found samba output in single mode: samba -i -M single samba version 4.0.0alpha18-GIT-89586ed started. Copyright Andrew Tridgell and the Samba Team 1992-2012 samba: using 'single' process model ../source4/dsdb/dns/dns_update.c:294: Failed DNS update - NT_STATUS_UNSUCCESSFUL Any ideas as to what that could me? Thank you for your time and have a great day! -- Michael Wood esiot...@gmail.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] V4 - New Install - Missing Zone File
On 22 February 2012 03:16, jdf...@cox.net wrote: One note I would like to add. I am now using Bind 9.8.1 compiled from source. It seems to load the DLZ driver just fine. The issue I am having is that samba4 is trying to update DNS and can't. When I add a new server to the domain DNS can't resolve that new server. OK, so it's not working for the XP client or another (samba4?) server. These may or may not be caused by the same thing. Do the logs look the same in both cases? -- Michael Wood esiot...@gmail.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba produces odd messages records and crash
hi, today I saw our File-Server was crashed and in the message log I found this: Feb 22 07:59:54 file-server smbd_audit[32593]: close fd 27 Feb 22 08:00:01 file-server smbd_audit[32593]: close fd 36 ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@zystkie wystąpienia /usr/lib/X11/fonts/CID. Extended_description-pt.utf-8: O caminho do local dos tipos de letra TrueType e CID geridos por defoma foram modificados novamente. Por favor adicione estas entradas à secção Files do ficheiro /etc/X11/xorg.conf:\n\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/CID\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType\n\n\nAdicione também estes dois directórios às listas de caminho catalogue em /etc/X11/fs/config·e/ou·/etc/X11/fs-xtt/config, e apague qualquer menção de qualquer destes ficheiros em /usr/lib/X11/fonts/CID. Extended_description-pt_br.utf-8: Os caminhos para fontes TrueType e CID, os quais são gerenciados pelo defoma, mudaram novamente. Por favor, adicione estas entradas a seção Files do arquivo /etc/X11/xorg.conf :\n\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/CID\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType\n\n\nAdicione também estes dois diretórios às listas de caminhos catalogue em /etc/X11/fs/config e/ou /etc/X11/fs-xtt/config e remova qualquer menção do diretório /usr/lib/X11/fonts/CID em ambos os arquivos. Extended_description-ru.utf-8: Пути к типам шрифтов TrueType и CID, управляемых через defoma опять изменились. Добавьте следующие записи в раздел Files файла /etc/X11/xorg.conf:\n\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/CID\n FontPath /var/lib/defoma/x-ttcidfont-conf.d/dirs/TrueType\n\n\nТакже добавьте эти два каталога в список путей catalogue в файлах /etc/X11/fs/config и/или /etc/X11/fs-xtt/config и удалите все указания на /usr/lib/X11/fonts/CID во всех этих файлах. So, this is reproduceible as I listed an specific directory. As you can see, I've activated the samba audit and our samba version is: 3.5.12-SerNet-Debian on Debian 6.0.4 Can someone explain me that and how we could avoid this? Thanks. Greetings, Björn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] V4 - New Install - Missing Zone File
Hi Amitay I think you may be getting mixed up between my issues with upgrading and the original poster's (Jeremy/jdfire) issue with a new provision :) The messages from the logs are all from Jeremy. It's a new provision, so there's no migration unless I'm missing something. My issues with upgradeprovision etc. are unrelated to Jeremy's issue. I just mentioned that I hadn't tested the DLZ module yet because I was still running an old provision from before the DLZ module existed. On 22 February 2012 10:24, Amitay Isaacs ami...@gmail.com wrote: HI Michael, On Wed, Feb 22, 2012 at 7:06 PM, Michael Wood esiot...@gmail.com wrote: Hi On 22 February 2012 01:46, jdf...@cox.net wrote: The default DNS backend has changed to BIND9_DLZ. This means the DNS records are stored in Samba4's AD tree instead of in a normal zone file. [...] If you're just starting out, you might want to try the DLZ backend. Thank you for your help! I was able to get a new Bind version to somewhat work. I was able to join an XP machine to the domain but DNS seems to not be updating correctly. Below you will find the logs that I am seeing. I don't know what would cause that, but you could try increasing the debug level (e.g. samba -d10 -i -M single) to see if it gives you more details about the issue. Increasing bind9's debug level might help too. Also, you might want to discuss this on samba-technical. I've copied my reply there. Since Samba 4 is still in alpha, the HOWTO says to discuss successes/failures on samba-technical. /var/log/messages: Feb 21 16:39:39 davis named[1163]: validating @0x24c0d30: com SOA: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x220f220: com SOA: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x220f220: CK0POJMG874LJREF7EFN8430QVIT8BSM.com NSEC3: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x24c0d30: CK0POJMG874LJREF7EFN8430QVIT8BSM.com NSEC3: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x198b010: A2MEHD73GB2UACB908FCH30EPFLFHMH7.com NSEC3: no valid signature found Feb 21 16:39:39 davis named[1163]: validating @0x24c0d30: A2MEHD73GB2UACB908FCH30EPFLFHMH7.com NSEC3: no valid signature found Feb 21 16:39:40 davis named[1163]: validating @0x24c0d30: 3RL0HJSI26SCTO21AV9TVIGIPUVPJAI1.com NSEC3: no valid signature found Feb 21 16:39:40 davis named[1163]: validating @0x198b010: 3RL0HJSI26SCTO21AV9TVIGIPUVPJAI1.com NSEC3: no valid signature found These messages are from DNSSEC and are not really from dlz_bind9 module. Can you check if you have any lines in the log with prefix samba_dlz? samba output in single mode: samba -i -M single samba version 4.0.0alpha18-GIT-89586ed started. Copyright Andrew Tridgell and the Samba Team 1992-2012 samba: using 'single' process model ../source4/dsdb/dns/dns_update.c:294: Failed DNS update - NT_STATUS_UNSUCCESSFUL Any ideas as to what that could me? Thank you for your time and have a great day! To check if dynamic dns is working, you can try to run samba_dnsupdate script manually. Make sure bind9 and samba are running and then # samba_dnsupdate --verbose This will try to dynamically update various names in the zone. And check the logs for messages from dlz_bind9 module. The stuff below about DNS migration is not relevant for Jeremy's problem, I don't think. Right? Just to make sure that the DNS migration has completed correctly, can you post the output of following commands: # ldbsearch -H /path/to/sam.ldb -b DC=DomainDnsZones,DC (name=@) --show-binary # ldbsearch -H /path/to/sam.ldb -b DC=ForestDnsZones,DC= (name=@) --show-binary There was an issue previously with migration that @ records were not populated correctly. Amitay. -- Michael Wood esiot...@gmail.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Replication
yes steve, thanks to answer my question, yes i have en /etc/krb5.conf ONLY the follow line [libdefaults] dns_lookup_realm = true dns_lookup_kdc = true default_realm = ECCMG.CUPET.CU today I test again the replication and happend tha the replicaction from windows server 2003 to samba 4 was succeful, but from tha samba 4 server to windows 2003 say me nothing don not show any error and don not show succefful replication only stay thinking... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba network shares over VPN
Hi there, I have two computers, one Windows XP other Windows 7 (actually a dozen each) which are members of a Samba domain. Users have no problem login in to the domain, running the login script to map network drives and accesssing files on them, for both computers. I want to give users remote access using a VPN (OpenVPN to be exact). The idea is to login on a disconnected computer using a domain account cached profie, then connnect to the VPN, then map network drives. OpenVPN allows running a batch file on connection sucessfull and I use this to run the user login script from the PDC netlogon share. The Windows XP computer does this fine. Happy remote users. But the Windows 7 doesn't. It asks for user login and password for each server (network drives are on different samba member servers) Someone told me the problem should to be related to the fact the TAP adapter (the VPN virtual network adapter) is considered by windows as an unknown network and classified as a public network. But I could not find a way to turn this into a home / work or domain network location. I already tried customising and disabling windows firewall, no changes. Any ideas on how to transparently access network shares from domain member servers over a vpn using windows 7? []s, Fernnado Lozano -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] V4 - New Install - Missing Zone File
Hello All, Thank you for your help that you have provided so far regarding my issue. I have cleared out this email to reduce the confusion of my current issue. Here is a recap of my issue and the logs you requested below. Currently, I have resolved the DNSSEC issue that I was seeing in my /var/log/messages log. I am still having problems with Bind 9.8.1 on CentOS 6.2 updating records using Samba4 latest from git. Steve emailed me offline and stated that Bind 9.8.1 has issues with updates and suggested 9.9 to resolve the issue. I have not tried that yet as I wanted to provide some more information to see if we can resolve this issue on 9.8.1. It seems the everything else in samba4 that I have used is working. I can add new servers to the domain without much issue. Once they are added I can ping/resolve the DC samba4 server but I can't resolve any of the other servers. Below you will find the output you all requested. Seems like it can't find some files or something. From bind logs it appears everything is loading correct.y. /usr/local/samba/sbin/samba_dnsupdate --verbose IPs: ['2002:4b46:c8ad:0:a00:27ff:fe14:5491', 'fe80::a00:27ff:fe14:5491%eth0', 'fe80::a00:27ff:fee5:5840%eth1', '192.168.7.30', '192.168.30.1'] Looking for DNS entry A bob-dc.com 192.168.7.30 as bob-dc.com. Looking for DNS entry A dc1.bob-dc.com 192.168.7.30 as dc1.bob-dc.com. Looking for DNS entry bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 as bob-dc.com. Failed to find matching DNS entry bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 Looking for DNS entry dc1.bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 as dc1.bob-dc.com. Failed to find matching DNS entry dc1.bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 Looking for DNS entry A gc._msdcs.bob-dc.com 192.168.7.30 as gc._msdcs.bob-dc.com. Looking for DNS entry gc._msdcs.bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 as gc._msdcs.bob-dc.com. Failed to find matching DNS entry gc._msdcs.bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 Looking for DNS entry CNAME 48c0fc0c-dcc1-425d-bcb2-a229d40ab48c._msdcs.bob-dc.com dc1.bob-dc.com as 48c0fc0c-dcc1-425d-bcb2-a229d40ab48c._msdcs.bob-dc.com. Looking for DNS entry SRV _kpasswd._tcp.bob-dc.com dc1.bob-dc.com 464 as _kpasswd._tcp.bob-dc.com. Checking 0 100 464 dc1.bob-dc.com. against SRV _kpasswd._tcp.bob-dc.com dc1.bob-dc.com 464 Looking for DNS entry SRV _kpasswd._udp.bob-dc.com dc1.bob-dc.com 464 as _kpasswd._udp.bob-dc.com. Checking 0 100 464 dc1.bob-dc.com. against SRV _kpasswd._udp.bob-dc.com dc1.bob-dc.com 464 Looking for DNS entry SRV _kerberos._tcp.bob-dc.com dc1.bob-dc.com 88 as _kerberos._tcp.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._tcp.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _kerberos._tcp.dc._msdcs.bob-dc.com dc1.bob-dc.com 88 as _kerberos._tcp.dc._msdcs.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._tcp.dc._msdcs.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _kerberos._tcp.default-first-site-name._sites.bob-dc.com dc1.bob-dc.com 88 as _kerberos._tcp.default-first-site-name._sites.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._tcp.default-first-site-name._sites.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _kerberos._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com dc1.bob-dc.com 88 as _kerberos._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _kerberos._udp.bob-dc.com dc1.bob-dc.com 88 as _kerberos._udp.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._udp.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _ldap._tcp.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.dc._msdcs.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.dc._msdcs.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.dc._msdcs.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.gc._msdcs.bob-dc.com dc1.bob-dc.com 3268 as _ldap._tcp.gc._msdcs.bob-dc.com. Checking 0 100 3268 dc1.bob-dc.com. against SRV _ldap._tcp.gc._msdcs.bob-dc.com dc1.bob-dc.com 3268 Looking for DNS entry SRV _ldap._tcp.pdc._msdcs.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.pdc._msdcs.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.pdc._msdcs.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.default-first-site-name._sites.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.default-first-site-name._sites.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.default-first-site-name._sites.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com
[Samba] Question regarding default user domain in samba
Hi, Everybody, I sent an email to this list with a couple of questions in it earlier this week; this is kind of a 'repeat' question, so I apologize if you've read this one already; I wanted to flesh out the details of my inquisition a tad bit more in hopes that somebody could potentially chime in with an answer as I am afraid that I either a) didn't articulate my question in enough detail or b) didn't ask nicely enough the first time :-) Ok, so here's my problem; I am working in an environment with an Active Directory forest where 100% of our user accounts exist one domain and 100% of our computer objects exist in another domain. I have winbind setup with pam ssh, and everything is working fine. I can authenticate across the trust no problem. My issue is that whever I authenticate, I have to supply the domain name and whatever domain separator is configured in smb.conf to get this working. I know about the use default domain option in smb.conf, but from what I understand this will only prepend the default realm, or the domain that the computer is actually a domain member of. So really, I want to: 1) set the 'use default domain' option (or implement similar functionality) AND 2) specify the actual domain that is used (i.e. a domain that is trusted, although NOT the domain that the server is actually a member of). Does anybody know if this is possible? In my opinion this is more of a usability issue than anything (i.e. it is kind of a pain to type in the domain name every time I authenticate). I would think that achieving this effect (specifying use default domain and deterministally configuring the default logon domain) would be feasible, but I'm stilling banging my head against the wall trying to figure out if this is possible. I've already tried; 1) setting the default_realm in the [libdefaults] stanza in /etc/krb5.conf 2) using a usermap supplied in /etc/samba/smb.conf If anybody knows how to do this, or could point me to a piece of documentation that suggests a way to implement this sort of configuration, I would greatly appreciate it. Thank-you so much, and have a wonderful day. Dan Sullivan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Is there a startup script for ubuntu 10.04.1 lts for samba4 alpha 18?
Is there a startup script for ubuntu 10.04.1 LTS for samba4 alpha 18? Please could someone please give me a script so that samba4 is automaticly started up when my server starts up? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Does Samba affect leap second?
At 2012-06-30, leap second will be introduced. ftp://hpiers.obspm.fr/iers/bul/bulc/bulletinc.dat Does Samba affect leap second? -- --- Oota Toshiya --- t-oota at dh.jp.nec.com NEC Systems Software Operations Unit Shiba,Minato,Tokyo IT Platform Solutions DivisionJapan,Earth,Solar system (samba-jp/ldap-jp Staff,mutt-j/samba-jp postmaster) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] V4 - New Install - Missing Zone File
Hello Amitay, On 02/22/2012 02:34 PM, Amitay Isaacs wrote: Hi Jeremy, That error message needs to be fixed. :) Looks like nsupdate command is not in the path. samba_dnsupdate script uses nsupdate to dynamically update DNS entries. Try adding nsupdate command = /path/to/nsupdate in smb.conf. Amitay. Thank you SO MUCH for getting me this far!! :) That looks like it fixed that issue but I have now ran into a denied error message for bind. Below you can find my logs for both samba_dnsupdate and bind. Seems like the dns.keytab file is not correct or something. I have tried to put allow-update { 192.168.30.1; } in my options section of my named.conf with no luck. samba-dnsupdate: IPs: ['2002:4b46:c8ad:0:a00:27ff:fe14:5491', 'fe80::a00:27ff:fe14:5491%eth0', 'fe80::a00:27ff:fee5:5840%eth1', '192.168.7.30', '192.168.30.1'] Looking for DNS entry A bob-dc.com 192.168.7.30 as bob-dc.com. Looking for DNS entry A dc1.bob-dc.com 192.168.7.30 as dc1.bob-dc.com. Looking for DNS entry bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 as bob-dc.com. Failed to find matching DNS entry bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 Looking for DNS entry dc1.bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 as dc1.bob-dc.com. Failed to find matching DNS entry dc1.bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 Looking for DNS entry A gc._msdcs.bob-dc.com 192.168.7.30 as gc._msdcs.bob-dc.com. Looking for DNS entry gc._msdcs.bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 as gc._msdcs.bob-dc.com. Failed to find matching DNS entry gc._msdcs.bob-dc.com 2002:4b46:c8ad:0:a00:27ff:fe14:5491 Looking for DNS entry CNAME 48c0fc0c-dcc1-425d-bcb2-a229d40ab48c._msdcs.bob-dc.com dc1.bob-dc.com as 48c0fc0c-dcc1-425d-bcb2-a229d40ab48c._msdcs.bob-dc.com. Looking for DNS entry SRV _kpasswd._tcp.bob-dc.com dc1.bob-dc.com 464 as _kpasswd._tcp.bob-dc.com. Checking 0 100 464 dc1.bob-dc.com. against SRV _kpasswd._tcp.bob-dc.com dc1.bob-dc.com 464 Looking for DNS entry SRV _kpasswd._udp.bob-dc.com dc1.bob-dc.com 464 as _kpasswd._udp.bob-dc.com. Checking 0 100 464 dc1.bob-dc.com. against SRV _kpasswd._udp.bob-dc.com dc1.bob-dc.com 464 Looking for DNS entry SRV _kerberos._tcp.bob-dc.com dc1.bob-dc.com 88 as _kerberos._tcp.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._tcp.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _kerberos._tcp.dc._msdcs.bob-dc.com dc1.bob-dc.com 88 as _kerberos._tcp.dc._msdcs.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._tcp.dc._msdcs.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _kerberos._tcp.default-first-site-name._sites.bob-dc.com dc1.bob-dc.com 88 as _kerberos._tcp.default-first-site-name._sites.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._tcp.default-first-site-name._sites.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _kerberos._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com dc1.bob-dc.com 88 as _kerberos._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _kerberos._udp.bob-dc.com dc1.bob-dc.com 88 as _kerberos._udp.bob-dc.com. Checking 0 100 88 dc1.bob-dc.com. against SRV _kerberos._udp.bob-dc.com dc1.bob-dc.com 88 Looking for DNS entry SRV _ldap._tcp.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.dc._msdcs.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.dc._msdcs.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.dc._msdcs.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.gc._msdcs.bob-dc.com dc1.bob-dc.com 3268 as _ldap._tcp.gc._msdcs.bob-dc.com. Checking 0 100 3268 dc1.bob-dc.com. against SRV _ldap._tcp.gc._msdcs.bob-dc.com dc1.bob-dc.com 3268 Looking for DNS entry SRV _ldap._tcp.pdc._msdcs.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.pdc._msdcs.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.pdc._msdcs.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.default-first-site-name._sites.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.default-first-site-name._sites.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.default-first-site-name._sites.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com dc1.bob-dc.com 389 as _ldap._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com. Checking 0 100 389 dc1.bob-dc.com. against SRV _ldap._tcp.default-first-site-name._sites.dc._msdcs.bob-dc.com dc1.bob-dc.com 389 Looking for DNS entry SRV _ldap._tcp.default-first-site-name._sites.gc._msdcs.bob-dc.com dc1.bob-dc.com 3268 as _ldap._tcp.default-first-site-name._sites.gc._msdcs.bob-dc.com. Checking 0 100
Re: [Samba] Does Samba affect leap second?
On Wed, Feb 22, 2012 at 6:23 PM, ITPFS oota t-o...@dh.jp.nec.com wrote: At 2012-06-30, leap second will be introduced. ftp://hpiers.obspm.fr/iers/bul/bulc/bulletinc.dat Does Samba affect leap second? I pretty sure this would be taken care of by ntp. -- --- Oota Toshiya --- t-oota at dh.jp.nec.com NEC Systems Software Operations Unit Shiba,Minato,Tokyo IT Platform Solutions Division Japan,Earth,Solar system (samba-jp/ldap-jp Staff,mutt-j/samba-jp postmaster) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] V4 - New Install - Missing Zone File
Hello Amitay, On 02/22/2012 10:07 PM, Amitay Isaacs wrote: Hi Jeremy, On Thu, Feb 23, 2012 at 3:29 PM, Jeremy Davisjdavis4...@gmail.com wrote: Hello Amitay, On 02/22/2012 02:34 PM, Amitay Isaacs wrote: Hi Jeremy, That error message needs to be fixed. :) Looks like nsupdate command is not in the path. samba_dnsupdate script uses nsupdate to dynamically update DNS entries. Try adding nsupdate command = /path/to/nsupdate in smb.conf. Amitay. Thank you SO MUCH for getting me this far!! :) That looks like it fixed that issue but I have now ran into a denied error message for bind. Below you can find my logs for both samba_dnsupdate and bind. Seems like the dns.keytab file is not correct or something. I have tried to put allow-update { 192.168.30.1; } in my options section of my named.conf with no luck. I forgot to mention that nsupdate command should also include -g flag to force secure (kerberos) updates. nsupdate command = /path/to/nsupdate -g dlz_bind9 module only allows secure dynamic updates. Amitay. I added the -g to the smb.conf and restarted samba and named but it doesn't seem to do anything. Could this be an issue with kerberos? I am able to authenticate with my Windows machine and via the command line using the tests on the samba4 wiki. Any ideas as to what this could be? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Does Samba affect leap second?
On Thu, Feb 23, 2012 at 12:26 AM, Jeff Sadowski jeff.sadow...@gmail.comwrote: On Wed, Feb 22, 2012 at 6:23 PM, ITPFS oota t-o...@dh.jp.nec.com wrote: At 2012-06-30, leap second will be introduced. ftp://hpiers.obspm.fr/iers/bul/bulc/bulletinc.dat Does Samba affect leap second? I pretty sure this would be taken care of by ntp. I think Samba will be fine, but it's not really NTP handling this. NTP manages the correlations between the system's time functions and the hardware clock. It does *not* manage the mapping between the system time and other programs. I've personally had real adventures when programmers used their own private little date management routines with unpredictable results on leap days, much less leap seconds. I wouldn't anticipate this problem with Samba, but client systems with out-of-date libraries will need some attention if they're doing time-sensitive operations. Fortunately, there's a certain amount of slack, anyway, in operations done on network based file systems such as CIFS or NFS, in case one system edits a file and another system doesn't get the message from the file server about the change immediately. It could get adventuresome if there's a timestamp based semaphore used between two clients and one has an out of date set of locale utilities, though. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Is there a startup script for ubuntu 10.04.1 lts for samba4 alpha 18?
On 22 February 2012 23:13, timothy mcdaniel timnb...@gmail.com wrote: Is there a startup script for ubuntu 10.04.1 LTS for samba4 alpha 18? Please could someone please give me a script so that samba4 is automaticly started up when my server starts up? You can try the attached script. (Let's hope the mailing list doesn't strip it.) Move it to /etc/init.d/samba4 and make sure it is executable. Then run: update-rc.d samba4 defaults -- Michael Wood esiot...@gmail.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] V4 - New Install - Missing Zone File
On 02/23/2012 06:33 AM, Jeremy Davis wrote: Hello Amitay, On 02/22/2012 10:07 PM, Amitay Isaacs wrote: Hi Jeremy, On Thu, Feb 23, 2012 at 3:29 PM, Jeremy Davisjdavis4...@gmail.com wrote: Hello Amitay, On 02/22/2012 02:34 PM, Amitay Isaacs wrote: Hi Jeremy, That error message needs to be fixed. :) Looks like nsupdate command is not in the path. samba_dnsupdate script uses nsupdate to dynamically update DNS entries. Try adding nsupdate command = /path/to/nsupdate in smb.conf. I forgot to mention that nsupdate command should also include -g flag to force secure (kerberos) updates. nsupdate command = /path/to/nsupdate -g dlz_bind9 module only allows secure dynamic updates. Amitay. Thinking out loud. On ubuntu and opensuse, nsupdate is in /usr/bin which is in the path by default. Could it be rather that the op does not have /usr/local/samba/sbin in his path? Worth a try? Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] samba 3.5.6 as PDC LDAP - roaming profile problem
Hi all; for few weeks I'm trying to implement a new samba PDC server for my school. It is based on debian squeeze and samba 3.5.6 with lDAP backend. I was able to join a computer into domain, LDAP is working, mapping home drive for users also. It seems that almost all works good but with one exeption. The one thing which is broken is roaming profile support. When user is logging into domain windows (I tested win XP prof SP2 and win7 prof SP1) always said: Windows cannot locate the server copy of your roaming profile and is attempting to log you on with your local profile. Changes to the profile will not be copied to the server when you logoff. Possible causes of this error include network problems or insufficient security rights. If this problem persists, contact your network administrator. DETAIL – The network name cannot be found. and Windows cannot find the local profile and is logging you on with a temporary profile. Changes you make to this profile will be lost when you log off. It looks strange because when I put into netlogon share default profile windows take it ( I see that background color in windows is the same like I prevoiusly set into default profil), user is able to browse his profile directory and create inside this dirs and files.In samba logs there are no errors, I can see that /profile share is assigned into user. On windows side in c:\windows\debug\userenv log there is: USERENV(320.324) 18:58:22:898 DeleteProfileEx: Failed to query profile guid with error 2 USERENV(320.324) 18:58:34:758 GetUserGuid: Failed to get user guid with 1355. USERENV(320.324) 18:58:34:758 GetUserGuid: Failed to get user guid with 1355. USERENV(320.324) 18:58:34:804 CheckRoamingShareOwnership: owner is S-1-1-0! USERENV(320.324) 18:58:34:804 IsCentralProfileReachable: Ownership check failed with 8007051B USERENV(320.324) 18:58:34:804 ReportError: Impersonating user. USERENV(320.324) 18:58:36:429 GetUserGuid: Failed to get user guid with 1355. USERENV(320.324) 18:58:36:445 ReportError: Impersonating user. USERENV(320.324) 18:58:37:023 RecurseDirectory: =mswin_all32bit;tpc=os_groups;tpc=mswin_2000;tpc=mswin_xp;tpc=modern_oses;tpc=Delphi;tpc=winnt;tpc=win95;tpc=linux;tpc=posix;tpc=development;ord=3934272159358786 is too long. src = \\PDC-SRV\netlogon\Default User\Ustawienia lokalne\Temporary Internet Files\Content.IE5\ARGDYVI1\, dest = C:\Documents and Settings\TEMP.TESTADM\Ustawienia lokalne\Temporary Internet Files\Content.IE5\ARGDYVI1\ USERENV(320.324) 18:58:37:039 RecurseDirectory: =mswin_all32bit;tpc=os_groups;tpc=mswin_2000;tpc=mswin_xp;tpc=modern_oses;tpc=Delphi;tpc=winnt;tpc=win95;tpc=linux;tpc=posix;tpc=development;ord=3934272159358786 is too long. src = \\PDC-SRV\netlogon\Default User\Ustawienia lokalne\Temporary Internet Files\Content.IE5\61Y5M1K7\, dest = C:\Documents and Settings\TEMP.TESTADM\Ustawienia lokalne\Temporary Internet Files\Content.IE5\61Y5M1K7\ USERENV(320.324) 18:58:37:039 RecurseDirectory: =mswin_all32bit;tpc=os_groups;tpc=mswin_2000;tpc=mswin_xp;tpc=modern_oses;tpc=Delphi;tpc=winnt;tpc=win95;tpc=linux;tpc=posix;tpc=development;ord=3934272159358786 is too long. src = \\PDC-SRV\netlogon\Default User\Ustawienia lokalne\Temporary Internet Files\Content.IE5\Q6DTJICU\, dest = C:\Documents and Settings\TEMP.TESTADM\Ustawienia lokalne\Temporary Internet Files\Content.IE5\Q6DTJICU\ USERENV(320.324) 18:58:37:054 RecurseDirectory: =mswin_all32bit;tpc=os_groups;tpc=mswin_2000;tpc=mswin_xp;tpc=modern_oses;tpc=Delphi;tpc=winnt;tpc=win95;tpc=linux;tpc=posix;tpc=development;ord=3934272159358786 is too long. src = \\PDC-SRV\netlogon\Default User\Ustawienia lokalne\Temporary Internet Files\Content.IE5\I56DMBW1\, dest = C:\Documents and Settings\TEMP.TESTADM\Ustawienia lokalne\Temporary Internet Files\Content.IE5\I56DMBW1\ USERENV(320.324) 18:58:43:461 GetUserDNSDomainName: MyGetUserNameEx failed for NameDnsDomain style name with 1332 USERENV(358.278) 18:58:43:633 GetUserDNSDomainName: MyGetUserNameEx failed for NameDnsDomain style name with 1332 USERENV(358.278) 18:58:43:633 GetUserDNSDomainName: MyGetUserNameEx failed for NameDnsDomain style name with 1332 USERENV(320.324) 18:58:43:648 GetUserDNSDomainName: MyGetUserNameEx failed for NameDnsDomain style name with 1332 USERENV(320.2a0) 18:58:43:664 GetGPOInfo: Local GPO's gpt.ini is not accessible, assuming default state. USERENV(550.6ac) 18:58:50:945 GetUserDNSDomainName: MyGetUserNameEx failed for NameDnsDomain style name with 1332 USERENV(550.758) 18:58:50:992 GetUserDNSDomainName: MyGetUserNameEx failed for NameDnsDomain style name with 1332 USERENV(320.f0) 18:58:58:758 GetUserDNSDomainName: MyGetUserNameEx failed for NameDnsDomain style name with 1332 USERENV(77c.80) 19:04:24:414 GetUserDNSDomainName: MyGetUserNameEx failed for NameDnsDomain style name with 1332 USERENV(320.324) 19:04:34:383 DeleteProfileEx: Failed to query profile guid with error 2 USERENV(320.324) 19:04:51:508 GetUserGuid: Failed to get user guid with 1355.
autobuild: intermittent test failure detected
The autobuild test system has detected an intermittent failing test in the current master tree. The autobuild log of the failure is available here: http://git.samba.org/autobuild.flakey/2012-02-22-1258/flakey.log The samba3 build logs are available here: http://git.samba.org/autobuild.flakey/2012-02-22-1258/samba3.stderr http://git.samba.org/autobuild.flakey/2012-02-22-1258/samba3.stdout The source4 build logs are available here: http://git.samba.org/autobuild.flakey/2012-02-22-1258/samba4.stderr http://git.samba.org/autobuild.flakey/2012-02-22-1258/samba4.stdout The top commit at the time of the failure was: commit 77889f63e6cf66553e615dbe9a4eba09ad046553 Author: Michael Adam ob...@samba.org Date: Tue Feb 21 18:09:14 2012 +0100 s4:torture:smb2: add a durable-open.open-oplock test this is a variant of the open-lease test that does the initial durable open with a batch oplock instead of a RH lease. This is e.g. useful do analyse a (mis?) behaviour with current windows 8 preview versions, compared to w2k8r2 Autobuild-User: Michael Adam ob...@samba.org Autobuild-Date: Tue Feb 21 19:51:21 CET 2012 on sn-devel-104
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via ee2e3d5 s3-vfstest: Fake smb_requests via b0c21af s3-vfstest: Initialize some more via db17767 s3: Add an error msg when a share mode entry is discarded from 77889f6 s4:torture:smb2: add a durable-open.open-oplock test http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit ee2e3d56a2a633cecf4d1b06badc6fb8fd12580e Author: Volker Lendecke v...@samba.org Date: Mon Feb 20 16:28:14 2012 +0100 s3-vfstest: Fake smb_requests Autobuild-User: Volker Lendecke v...@samba.org Autobuild-Date: Wed Feb 22 17:32:28 CET 2012 on sn-devel-104 commit b0c21afffe36b2239f9e688678b28cb58834fb6e Author: Volker Lendecke v...@samba.org Date: Mon Feb 20 16:27:07 2012 +0100 s3-vfstest: Initialize some more commit db17767d4d1e7ddccab899346d0374095389e370 Author: Volker Lendecke v...@samba.org Date: Mon Feb 20 16:00:50 2012 +0100 s3: Add an error msg when a share mode entry is discarded --- Summary of changes: source3/locking/share_mode_lock.c |2 ++ source3/torture/vfstest.c | 28 source3/torture/vfstest.h |4 3 files changed, 34 insertions(+), 0 deletions(-) Changeset truncated at 500 lines: diff --git a/source3/locking/share_mode_lock.c b/source3/locking/share_mode_lock.c index 2152591..de8cc3c 100644 --- a/source3/locking/share_mode_lock.c +++ b/source3/locking/share_mode_lock.c @@ -176,6 +176,8 @@ static struct share_mode_data *parse_share_modes(TALLOC_CTX *mem_ctx, while (i d-num_share_modes) { struct share_mode_entry *e = d-share_modes[i]; if (!pid_exists[i]) { + DEBUG(10, (wipe non-existent pid %s\n, + procid_str_static(e-pid))); *e = d-share_modes[d-num_share_modes-1]; d-num_share_modes -= 1; d-modified = True; diff --git a/source3/torture/vfstest.c b/source3/torture/vfstest.c index 55321dd..53b5ee9 100644 --- a/source3/torture/vfstest.c +++ b/source3/torture/vfstest.c @@ -32,6 +32,7 @@ #include auth.h #include serverid.h #include messages.h +#include libcli/security/security.h /* List to hold groups of commands */ static struct cmd_list { @@ -415,6 +416,30 @@ void exit_server_cleanly(const char *const reason) exit_server(normal exit); } +struct smb_request *vfstest_get_smbreq(TALLOC_CTX *mem_ctx, + struct vfs_state *vfs) +{ + struct smb_request *result; + + result = talloc_zero(mem_ctx, struct smb_request); + if (result == NULL) { + return NULL; + } + result-sconn = vfs-conn-sconn; + result-mid = ++vfs-mid; + + result-inbuf = talloc_array(result, uint8_t, smb_size); + if (result-inbuf == NULL) { + goto fail; + } + SSVAL(result-inbuf, smb_mid, result-mid); + smb_setlen(result-inbuf, smb_size-4); + return result; +fail: + TALLOC_FREE(result); + return NULL; +} + /* Main function */ int main(int argc, char *argv[]) @@ -476,9 +501,12 @@ int main(int argc, char *argv[]) locking_init(); serverid_parent_init(NULL); vfs.conn = talloc_zero(NULL, connection_struct); + vfs.conn-share_access = FILE_GENERIC_ALL; vfs.conn-params = talloc_zero(vfs.conn, struct share_params); vfs.conn-sconn = talloc_zero(NULL, struct smbd_server_connection); vfs.conn-sconn-msg_ctx = messaging_init(vfs.conn-sconn, ev); + vfs.conn-sconn-ev_ctx = ev; + serverid_register(messaging_server_id(vfs.conn-sconn-msg_ctx), 0); make_session_info_guest(NULL, vfs.conn-session_info); file_init(vfs.conn-sconn); set_conn_connectpath(vfs.conn, getcwd(cwd, sizeof(cwd))); diff --git a/source3/torture/vfstest.h b/source3/torture/vfstest.h index 0d71fac..0c57d56 100644 --- a/source3/torture/vfstest.h +++ b/source3/torture/vfstest.h @@ -29,12 +29,16 @@ struct func_entry { struct vfs_state { struct connection_struct *conn; + uint64_t mid; struct files_struct *files[1024]; DIR *currentdir; void *data; size_t data_size; }; +struct smb_request *vfstest_get_smbreq(TALLOC_CTX *mem_ctx, + struct vfs_state *vfs); + struct cmd_set { const char *name; NTSTATUS (*fn)(struct vfs_state *vfs, TALLOC_CTX *mem_ctx, int argc, -- Samba Shared Repository
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via 1082532 Honor SeTakeOwnershiPrivilege when client asks for SEC_STD_WRITE_OWNER but has no permission for that, but token has SeTakeOwnershipPrivilege from ee2e3d5 s3-vfstest: Fake smb_requests http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit 108253250048673493a636fd9fb2bf99b64ccf3c Author: Richard Sharpe realrichardsha...@gmail.com Date: Wed Feb 22 06:25:54 2012 -0800 Honor SeTakeOwnershiPrivilege when client asks for SEC_STD_WRITE_OWNER but has no permission for that, but token has SeTakeOwnershipPrivilege Autobuild-User: Richard Sharpe sha...@samba.org Autobuild-Date: Wed Feb 22 19:19:32 CET 2012 on sn-devel-104 --- Summary of changes: libcli/security/access_check.c |5 + 1 files changed, 5 insertions(+), 0 deletions(-) Changeset truncated at 500 lines: diff --git a/libcli/security/access_check.c b/libcli/security/access_check.c index 1b02a86..a9b618f 100644 --- a/libcli/security/access_check.c +++ b/libcli/security/access_check.c @@ -205,6 +205,11 @@ NTSTATUS se_access_check(const struct security_descriptor *sd, bits_remaining = ~(SEC_RIGHTS_PRIV_BACKUP); } + if ((bits_remaining SEC_STD_WRITE_OWNER) +security_token_has_privilege(token, SEC_PRIV_TAKE_OWNERSHIP)) { + bits_remaining = ~(SEC_STD_WRITE_OWNER); + } + /* a NULL dacl allows access */ if ((sd-type SEC_DESC_DACL_PRESENT) sd-dacl == NULL) { *access_granted = access_desired; -- Samba Shared Repository
autobuild: intermittent test failure detected
The autobuild test system has detected an intermittent failing test in the current master tree. The autobuild log of the failure is available here: http://git.samba.org/autobuild.flakey/2012-02-22-2052/flakey.log The samba3 build logs are available here: http://git.samba.org/autobuild.flakey/2012-02-22-2052/samba3.stderr http://git.samba.org/autobuild.flakey/2012-02-22-2052/samba3.stdout The source4 build logs are available here: http://git.samba.org/autobuild.flakey/2012-02-22-2052/samba4.stderr http://git.samba.org/autobuild.flakey/2012-02-22-2052/samba4.stdout The top commit at the time of the failure was: commit 108253250048673493a636fd9fb2bf99b64ccf3c Author: Richard Sharpe realrichardsha...@gmail.com Date: Wed Feb 22 06:25:54 2012 -0800 Honor SeTakeOwnershiPrivilege when client asks for SEC_STD_WRITE_OWNER but has no permission for that, but token has SeTakeOwnershipPrivilege Autobuild-User: Richard Sharpe sha...@samba.org Autobuild-Date: Wed Feb 22 19:19:32 CET 2012 on sn-devel-104
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via e673afa s3-vfstest: Return an error code if cmd failed from 1082532 Honor SeTakeOwnershiPrivilege when client asks for SEC_STD_WRITE_OWNER but has no permission for that, but token has SeTakeOwnershipPrivilege http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit e673afada1248535b992ceb28b8fcef106a85e05 Author: Volker Lendecke v...@samba.org Date: Wed Feb 22 17:57:08 2012 +0100 s3-vfstest: Return an error code if cmd failed Autobuild-User: Volker Lendecke v...@samba.org Autobuild-Date: Wed Feb 22 23:56:18 CET 2012 on sn-devel-104 --- Summary of changes: source3/torture/vfstest.c |9 + 1 files changed, 5 insertions(+), 4 deletions(-) Changeset truncated at 500 lines: diff --git a/source3/torture/vfstest.c b/source3/torture/vfstest.c index 53b5ee9..40e78e8 100644 --- a/source3/torture/vfstest.c +++ b/source3/torture/vfstest.c @@ -452,6 +452,7 @@ int main(int argc, char *argv[]) char cwd[MAXPATHLEN]; TALLOC_CTX *frame = talloc_stackframe(); struct tevent_context *ev = tevent_context_init(NULL); + NTSTATUS status = NT_STATUS_OK; /* make sure the vars that get altered (4th field) are in a fixed location or certain compilers complain */ @@ -532,11 +533,11 @@ int main(int argc, char *argv[]) char*p = cmdstr; while((cmd=next_command(frame, p)) != NULL) { - process_cmd(vfs, cmd); + status = process_cmd(vfs, cmd); } TALLOC_FREE(cmd); - return 0; + return NT_STATUS_IS_OK(status) ? 0 : 1; } /* Loop around accepting commands */ @@ -551,12 +552,12 @@ int main(int argc, char *argv[]) } if (line[0] != '\n') { - process_cmd(vfs, line); + status = process_cmd(vfs, line); } SAFE_FREE(line); } TALLOC_FREE(vfs.conn); TALLOC_FREE(frame); - return 0; + return NT_STATUS_IS_OK(status) ? 0 : 1; } -- Samba Shared Repository
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via 0c73322 s3:wscript_build - fix TDB dependency for source3/lib/util.c via ed405df examples/testsmbc.c - substitute deprecated function bzero with memset via b2ff4b0 examples/testsmbc.c - quiet implicit cast warnings on OpenSolaris via a191852 examples/testsmbc.c - remove unused function print_list_fn via 2522712 examples/testsmbc.c - remove unused variables from e673afa s3-vfstest: Return an error code if cmd failed http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit 0c733221cf122d1bf304d74904b1329b2a6b7fb5 Author: Matthias Dieter Wallnöfer m...@samba.org Date: Mon Feb 20 10:27:45 2012 +0100 s3:wscript_build - fix TDB dependency for source3/lib/util.c https://bugzilla.samba.org/show_bug.cgi?id=8708 Signed-off-by: Andrew Tridgell tri...@samba.org Autobuild-User: Andrew Tridgell tri...@samba.org Autobuild-Date: Thu Feb 23 01:43:04 CET 2012 on sn-devel-104 commit ed405df823b9238baf49e3f9b84146eef6ce64ec Author: Matthias Dieter Wallnöfer m...@samba.org Date: Mon Feb 20 09:27:13 2012 +0100 examples/testsmbc.c - substitute deprecated function bzero with memset Here we do not make any use of libreplace and hence it would be overkill to include the right headers for Solaris. This fixes bug: https://bugzilla.samba.org/show_bug.cgi?id=8767 Signed-off-by: Andrew Tridgell tri...@samba.org commit b2ff4b06d65f26eed913eb472a6660e7e26f8389 Author: Matthias Dieter Wallnöfer m...@samba.org Date: Mon Feb 20 09:23:30 2012 +0100 examples/testsmbc.c - quiet implicit cast warnings on OpenSolaris https://bugzilla.samba.org/show_bug.cgi?id=8767 Signed-off-by: Andrew Tridgell tri...@samba.org commit a19185249a69597c870cd1e366128400c5ebeeb9 Author: Matthias Dieter Wallnöfer m...@samba.org Date: Mon Feb 20 09:18:42 2012 +0100 examples/testsmbc.c - remove unused function print_list_fn It does not get referenced from anywhere. Signed-off-by: Andrew Tridgell tri...@samba.org commit 25227129943420558476799a71a0e27647cf8d86 Author: Matthias Dieter Wallnöfer m...@samba.org Date: Mon Feb 20 09:37:39 2012 +0100 examples/testsmbc.c - remove unused variables Signed-off-by: Andrew Tridgell tri...@samba.org --- Summary of changes: examples/libsmbclient/testsmbc.c | 26 +- source3/wscript_build|4 +--- 2 files changed, 6 insertions(+), 24 deletions(-) Changeset truncated at 500 lines: diff --git a/examples/libsmbclient/testsmbc.c b/examples/libsmbclient/testsmbc.c index de42428..1f98c3a 100644 --- a/examples/libsmbclient/testsmbc.c +++ b/examples/libsmbclient/testsmbc.c @@ -29,25 +29,9 @@ #include libsmbclient.h #include get_auth_data_fn.h -int global_id = 0; - -void print_list_fn(struct print_job_info *pji) -{ - - fprintf(stdout, Print job: ID: %u, Prio: %u, Size: %lu, User: %s, Name: %s\n, - pji-id, - pji-priority, - (unsigned long) pji-size, - pji-user, - pji-name); - - global_id = pji-id; - -} - int main(int argc, char *argv[]) { - int err, fd, dh1, dh2, dh3, dsize, dirc; + int err, fd, dh1, dsize, dirc; const char *file = smb://samba/public/testfile.txt; const char *file2 = smb://samba/public/testfile2.txt; char buff[256]; @@ -74,7 +58,7 @@ int main(int argc, char *argv[]) } -fprintf(stdout, Directory handles: %u, %u, %u\n, dh1, dh2, dh3); +fprintf(stdout, Directory handle: %u\n, dh1); /* Now, list those directories, but in funny ways ... */ @@ -130,7 +114,7 @@ int main(int argc, char *argv[]) /* Now, write some date to the file ... */ - bzero(buff, sizeof(buff)); + memset(buff, '\0', sizeof(buff)); strcpy(buff, Some test data for the moment ...); err = smbc_write(fd, buff, sizeof(buff)); @@ -256,10 +240,10 @@ int main(int argc, char *argv[]) } fprintf(stdout, Stat'ed file: %s. Size = %d, mode = %04X\n, file2, - (int)st2.st_size, st2.st_mode); + (int)st2.st_size, (unsigned int)st2.st_mode); fprintf(stdout, time: %s\n, ctime(st2.st_atime)); fprintf(stdout, Earlier stat: %s, Size = %d, mode = %04X\n, file, - (int)st1.st_size, st1.st_mode); + (int)st1.st_size, (unsigned int)st1.st_mode); fprintf(stdout, time: %s\n, ctime(st1.st_atime)); /* Now, make a directory ... */ diff --git a/source3/wscript_build b/source3/wscript_build index 67b686b..b24090e 100755 --- a/source3/wscript_build +++ b/source3/wscript_build @@ -811,7 +811,7 @@ bld.SAMBA3_SUBSYSTEM('KRBCLIENT', bld.SAMBA3_SUBSYSTEM('samba3util', source=LIB_UTIL_SRC, - deps='ndr security NDR_SECURITY samba-util', + deps='ndr security
[SCM] Samba Shared Repository - branch master updated
The branch, master has been updated via fe24ab4 s4:smbcli:smb2: add a random GUID to the transport connection in smb2_transport_init() from 0c73322 s3:wscript_build - fix TDB dependency for source3/lib/util.c http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master - Log - commit fe24ab4e53cde22e6b72d6073592cd3e31dc97f0 Author: Michael Adam ob...@samba.org Date: Wed Feb 22 15:29:26 2012 +0100 s4:smbcli:smb2: add a random GUID to the transport connection in smb2_transport_init() This GUID is used in the smb2 negprot when max protocol is bigger than 0x0202. According to section 2.2.3 of the MS-SMB2 document, the Client GUID filed in the SMB2 negotiate request must be filled with a (non-zero) GUID if there are other dialects than 0x0202 in the dialects field. http://msdn.microsoft.com/en-us/library/cc246543%28v=prot.13%29.aspx Apart from corresponding to the docs, this change makes some of our durable-open tests (e.g reopen2 and open-oplock) _not_ hang when running against windows 8 preview (which might be still buggy). Pair-Programmed-With: Gregor Beck gb...@sernet.de Autobuild-User: Michael Adam ob...@samba.org Autobuild-Date: Thu Feb 23 03:23:57 CET 2012 on sn-devel-104 --- Summary of changes: source4/libcli/smb2/transport.c |6 +- 1 files changed, 5 insertions(+), 1 deletions(-) Changeset truncated at 500 lines: diff --git a/source4/libcli/smb2/transport.c b/source4/libcli/smb2/transport.c index 59d49f7..14d1fc5 100644 --- a/source4/libcli/smb2/transport.c +++ b/source4/libcli/smb2/transport.c @@ -30,6 +30,7 @@ #include lib/stream/packet.h #include ../lib/util/dlinklist.h #include ../libcli/smb/smbXcli_base.h +#include librpc/ndr/libndr.h /* destroy a transport @@ -48,6 +49,7 @@ struct smb2_transport *smb2_transport_init(struct smbcli_socket *sock, struct smbcli_options *options) { struct smb2_transport *transport; + struct GUID client_guid; transport = talloc_zero(parent_ctx, struct smb2_transport); if (!transport) return NULL; @@ -58,12 +60,14 @@ struct smb2_transport *smb2_transport_init(struct smbcli_socket *sock, TALLOC_FREE(sock-event.fde); TALLOC_FREE(sock-event.te); + client_guid = GUID_random(); + transport-conn = smbXcli_conn_create(transport, sock-sock-fd, sock-hostname, options-signing, 0, /* smb1_capabilities */ - NULL); /* client_guid */ + client_guid); if (transport-conn == NULL) { talloc_free(transport); return NULL; -- Samba Shared Repository