[SCM] Samba Shared Repository - annotated tag talloc-2.1.9 created
Stefan Metzmacher
metze at samba.org
Mon Feb 27 19:24:17 UTC 2017
The annotated tag, talloc-2.1.9 has been created
at 46444a0889435f95a21438742f8749196ee284b9 (tag)
tagging 20057544cb9be5a18141476739744d1f1af7cde9 (commit)
replaces samba-4.6.0rc1
tagged by Stefan Metzmacher
on Mon Feb 27 20:24:14 2017 +0100
- Log -----------------------------------------------------------------
talloc: tag release talloc-2.1.9
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAABAgAGBQJYtHzeAAoJEEeTkWETCEAl0U4H/i5tMwn9+gXxt9jeJJ9D2Oyj
CMNPPMDNgw9uOIwhzznnde9gJa2mqMwMGgg+1VE99d/wsY6kg/Vfujo38rPZWt0v
6+UkKF3hDoslV0ejIrdlIJkVxU2CjJ5CqXfLvRsuU0/eqjDBXVSqCzou/7uYLbzg
DqIxzv4x2+9KlykisDEEsa9TInLjY5e2e2G/5S/yN1pONk3ArYIvi1Y8JHUp39ew
Uufvrei1ZhuXDyqztyl0uFUj9pGp+9xoM1YcAosg2XLtVU1iJRMxemtckPddb4s2
214Ds6BQm79hDrexLWKSP1yXJyyl883GytnC5nBUWTNKqjBb7L23YsAQ+7remtI=
=MZln
-----END PGP SIGNATURE-----
Amitay Isaacs (29):
ctdb-common: Simplify async computation for sock_socket_write_send/recv
ctdb-tests: Add another test for sock_daemon
ctdb-common: Fix a bug in packet reading code for generic socket I/O
ctdb-tests: Add tests for generic socket I/O
ctdb-tests: Do not attempt to unregister the join handler multiple times
ctdb-locking: Remove support for locking multiple databases
ctdb-locking: Explicitly unlock record/db in lock helper
ctdb-tests: Add robust mutex test
ctdb-takeover: Known and available IP lists should be the same size as nodemap
ctdb-tests: Fix name of the variable representing init script
ctdb-common: Correct name of sock_daemon_run_send/recv state structure
ctdb-common: Use consistent naming for sock_daemon_run computation functions
ctdb-common: Pass tevent_req to the computation sub-functions
ctdb-common: Avoid any processing after finishing tevent_req
ctdb-common: Add wait_send/wait_recv to sock_daemon_funcs
ctdb-daemon: Remove stale eventd socket
ctdb-tests: Drop calls to ctdb_service_managed and ctdb_service_unmanaged
ctdb-tests: Do not build mutex test if robust mutexes are not supported
ctdb-tests: Use replace headers instead of system headers
ctdb-common: ioctl(.. FIONREAD ..) returns an int value
ctdb-build: Install CTDB tests correctly from toplevel
ctdb-common: Fix use-after-free error in comm_fd_handler()
ctdb-tests: Add more comm tests
ctdb-locking: Remove unnecessary global variable
ctdb-common: Refactor code to remove a stale socket
ctdb-daemon: Use sock_clean() to remove stale sockets
ctdb-build: Split dist() target to generate manpages separately
ctdb-build: Add make target for generating manpages
build: Fix generation of CTDB manpages while creating tarball
Andreas Schneider (27):
replace: Include sysmacros.h
auth/credentials: Always set the the realm if we set the principal from the ccache
gensec: Fix picky developer with MIT Kerberos
gensec: Cast data for MIT Kerberos correctly
mit-kdb: Use calloc() to allocate memory
mit-kdb: Remove unneeded memset()
credentials: Create a smb_gss_krb5_copy_ccache() function
s4-torture: cleanup architecture handling in spoolss driver tests.
s3-spoolss: Fix architecture handling in spoolss_DeletePrinterDriverEx call
rpc_server: Use the RPC TCPIP ports of Windows
rpc_server: Allow to configure the port range for RPC services
util:charset: Return EILSEQ in smb_iconv() if newer libc is detected
s3-vfs: Only walk the directory once in open_and_sort_dir()
waf: Do not install the unit test binary for krb5samba
ctdb: Do not leak fd handle in control_restoredb()
s4-torture: Use the correct variable type in torture_smb2_maxfid()
s4-kcc: Do not dereference a NULL pointer
s3-vfs: Do not deref a NULL pointer in shadow_copy2_snapshot_to_gmt()
ndrdump: Fix a possible NULL pointer dereference
s4:torture: Make sure handles are initialized
s3:torture: Fix uint64_t comparsion in if-clause
s3:lib: Do not segfault if username is NULL
pam_winbind: Return if we do not have a domain
s3:librpc: Make sure kt_curser and kt_entry are initialized
s3:librpc: Fix OM_uint32 comparsion in if-clause
coverity: Add modeling file for Coverity scan
ctdb: Fix posible NULL deref in logging_init()
Andrej (1):
Add missing import of sys in ms_schema.py
Andrew Bartlett (30):
python/schema: fix tests flapping due to oid collision
param: Remove winbindd privileged socket directory option
selftest: Remove unsued variables WINBINDD_PRIV_PIPE_DIR and wbsockprivdir
build: vfs_posix_eadb is only built with the AD DC enabled
selftest: Do not test for link ordering in tombstones_expunge test
replmd: pass replmd_private down to replmd_add_backlink()
replmd: Add placeholder sorted_links to struct replmd_private
replmd linked attributes: lazy parsing for trusted DNs
replmd linked attrs: fully parse dn for upgrade check
repl_meta_data: linked attributes use DRS sort order
samba_dsdb: Use and maintain compatibleFeatures and requiredFeatures in @SAMBA_DSDB
schema: Set flag into @INDEXLIST to indicate we support feature flags
dsdb: Honour @SAMBA_FEATURES_SUPPORTED flag in @IDXATTR
replmd: check for the sortedLinks feature flag
Switch on the sortedLinks Flag on new databases
messaging_dgm: avoid GCC snprintf warnings in messaging_dgm_out_create
samba-tool: Correct handling of default value for use_ntvfs and use_xattrs
debug: Do not depend on the whole of samba_util.h
lib/util: Remove ntstatus.h and string_wrappers.h include from samba_util.h
dbcheck: Do not regard old one-way-links as errors
repl_meta_data: Bring replmd_check_upgrade_links() into get_parsed_dns_trusted()
repl_meta_data: Always sort the links when upgrading them
repl_meta_data: Add comment with some future improvements
repl_meta_data: Remove the correct forward link for dn+binary attributes
gen_ntstatus.py: Add prototype to generated py_ntstatus.c
join.py: Correctly print an error in DsAddEntry when .info is None
python: Move dnsserver helper functions into samba.dnsserver
python: Move partial replication logic into drs_utils.py
samba-tool drs replicate: Add --single-object
repl_meta_data: Clarify that replmd_private->la_list is only for DRS for replication
Anoop C S (1):
s3/smb2_read: Better fallback for incorrectly configured sendfile setups
Aurelien Aptel (3):
s3/winbindd: fix invalid free
auth: fix mem leak & use appropriate free function
s3/smbd: allow GET_DFS_REFERRAL fsctl on any smb2 connexion
Björn Jacke (4):
WHATSNEW: fix typo
vfs_fruit: fix a typo
replace: fix some trailing whitespaces
vfs_default: unlock the right file in copy chunk
Bob Campbell (29):
torture/drs: expand test for DRSUAPI_DRS_GET_ANC
torture/ntlm_auth: do not assume a line is less than 2047 bytes
samldb: Allow automatic generation of linkIDs and prevent duplicates
torture/drs: generate linkID for test rather than specifying
python/tests: add test for generated and duplicate linkIDs
selftest: add vampire_2000_dc environment
torture/drs: run repl_schema in vampire_2000_dc environment as well
torture/drs: Add a test for dn+binary linked attributes
samldb: Allow automatic generation of mAPIIDs
python/tests: Add test for generated and duplicate mAPIIDs
errors: fix "generate python error codes for NTSTATUS"
errors/gen_ntstatus: generate error codes in specified files
errors/gen_ntstatus: add error table for generation script
errors: add gen_ntstatus.py to build system
python: Add python module with NTSTATUS constants
samba-tool/domain: change incorrect NT_STATUS to WERR
samba-tool/domain: use generated ntstatus rather than from local file
samba-tool/domain: catch NTSTATUSError rather than RuntimeError
errors: pull out code into common file
errors: generate error codes for WERROR
errors: add table to generate WERRORs from
errors: add WERROR generation to build system
python: Use generated WERROR definitions
drs_utils: return number of replicated objects and links in replicate()
drs_utils: use a given highwatermark and uptodateness_vector in replicate()
pydsdb: Add python binding for dsdb_load_udv_v2
samba-tool/drs: do partial replication when --local is given by default
python/tests: move samba_tool_drs test to proper place
python/tests: improve samba-tool replicate --local test
Bryan Mason (1):
Modify smbspool_krb5_wrapper to just fall through to smbspool if AUTH_INFO_REQUIRED is not set or is not "negotiate".
Chris Lamb (41):
Correct "doesnt" typos.
Correct "emty" typo.
Correct "progess" typo.
Correct "recived" typo.
Correct "supressed" typo.
Correct "occured" typos.
Correct "overriden" typos.
Correct "paramter" typos.
Correct "acheive" typos.
Correct "Controler" typos.
Correct "extention" typos.
Correct "enought" typo.
Correct "successfuly" typos.
Correct "errror" typos.
Correct "coult" typo.
Correct "perfom" typos.
Correct "descriptior" typos.
Correct "formated" typos.
Correct "existence" typos.
Correct "follwing" typos.
Correct "seperate" typos.
Correct "notifiying" typos.
Correct "specifiy" typos.
Correct "defered" typos.
Correct "somthing" typos.
Correct "cleint" typos.
Correct "intialise" typos.
Correct "relase" typos.
Correct "encyption" typos.
Correct "explicity" typos.
Correct "paramaters" typos.
Correct "allignment" typos.
Correct "unavaible" typos.
Correct "updateing" typos.
Correct "hexidecimal" typos.
Correct "succeded" typos.
Correct "initialze" typos.
Correct "incluing" typos.
Correct "heirarchy" typos.
Correct "allready" typos.
Correct "Openened" typos.
Cody Harrington (1):
ndrdump: Add the option --hex-input for hexdump parsing
David Disseldorp (6):
torture/ioctl: test set_compression(format_none)
smbd/ioctl: match WS2016 ReFS set compression behaviour
vfs_ceph: cleanup mount handle on failure
vfs_ceph: replace deprecated ceph_shutdown() call
vfs_ceph: add user_id smb.conf parameter
docs/vfs_ceph: document user_id parameter
David Mulder (1):
s3:winbindd: document "winbind:ignore domains"
Douglas Bagnall (32):
s4/linked_attributes test: pep8 tidy-up, remove unused imports
s4/linked_attribute tests: add multiple links and replace tests
s4/linked_attribute tests: remove unused code
s4/linked_attribute tests: compare link lists in sorted order
s4/linked_attribute tests: test with the relax control
s4/linked_attribute tests: try adding linked attributes directly
s4/linked_attribute tests: remove helper function unused parameter
replmd: check whether list is already sorted in get_parsed_dns()
replmd: Fix some whitespace in repl_meta_data.c
replmd: replmd_check_upgrade_links() only checks the first DN
replmd: fix variable names in replmd_check_upgrade_links
binsearch: clarify variable name in greater-than-or-equal search
binsearch: make BINARY_ARRAY_SEARCH_GTE compare against a pointer
replmd: parsed_dn_find() finds insertion point as well as exact hit
replmd: replmd_check_upgrade_links() needs to first parses DNs
replmd: rework replmd_modify_la_add to merge efficiently
replmd: rearrange nothing-to-delete logic
replmd: simplify and optimise replmd_modify_la_delete
replmd linked attributes: use really_parse_trusted_dn everywhere
replmd linked_attributes: maintain sorted links in replace
replmd: keep links sorted in replmd_process_linked_attribute
replmd: treat a zero GUID as not present in get_parsed_dns
repl_md: get links in sorted order in replmd_add_fix_la
waf --test-list takes a filename argument
selftest: show multiple arguments for --help
docs/smbconf: update log level list in man page
fix blackbox_supported_features: mkdir -p its directory
lib/replace tests: prevent GCC fretting over snprintf sizes
getncchanges script: use library code, not copied functions.
ntlmssp: fix compilation with -O2 -fno-inline
python provision: fix indenting of doc string
shadow_copy_get_shadow_copy_data: fix GCC snprintf warning
Edward Betts (1):
fix spelling of 'unchangeable'
Garming Sam (7):
getncchanges: do not replicate links for non critical objects if DRSUAPI_DRS_CRITICAL_ONLY is set
dbcheck-links: Test that dbcheck against one-way links does not error
tests/ndrdump: Add a test for --hex-input
ldbedit: Prevent the use of the reveal internals control
tests/dbcheck: Add a test for two live objects, with a dangling backlink
tests/dbcheck: Add a test for two live objects, with a dangling forward link
dbchecker: Stop ignoring linked cases where both objects are alive
Günther Deschner (29):
s3-rpc_server: allow to set minimal auth level for a DCE/RPC service
s3-rpc_server: enforce packet level authentication for iremotewinspool server
s3-rpc_server: setup secondary address for tcp transport in bind_ack packet.
s3-iremotewinspool: add generated srv_iremotewinspool_nt.c file
s3-iremotewinspool: add generated server stubs and no longer compile autogenerated ones
s3-iremotewinspool: update api struct map so we only end up implementing 8 calls
s3-spoolss: remove unused type field in printer handle
s3-spoolss: Create a sperate header file for 'struct printer_handle'
libgpo: add gp_inifile_init_context_direct()
libgpo: add gp_inifile_enum_section()
libgpo: apply some const.
libgpo: deal with non utf16-le ini files.
libgpo: default to empty values if none are there
lib/util: add pm_process_with_flags to allow parsing ini files with empty values
libgpo: allow empty values in gp inifile parsing code.
s4-torture: cleanup after printing tests that had to add a driver
spoolss: allow truncated driver version in spoolss_driver_version_to_qword()
s3-spoolss: Use a more accurate DefaultSpoolDirectory
spoolss: Fix PROCESSOR_AMD_X8664 value in IDL
s3-spoolss: make us appear as a 64bit print server.
s3-spoolss: globally set print server environment/architecture.
libgpo: Fix error check in gp_inifile_init_context_direct()
librpc/ndr: add ndr_push_charset_to_null and increase library version (abi change)
pidl: use ndr_push_charset_to_null() when [to_null] keyword is used in IDL
s4-torture: add some NDR tests for validating ndr_push_charset behavior.
librpc/ndr: add [to_null] keyword to szPackageId in spoolss_CorePrinterDriver.
s4-torture: add more NDR tests for GetCorePrinterDrivers
errors: generate python error codes for NTSTATUS
s3-waf: remove duplicate ctags definition
Jeremy Allison (27):
s3: vfs: dirsort doesn't handle opendir of "." correctly.
lib: talloc: Make it clear that talloc_get_size(NULL) returns 0.
winbind: Fix CID 1398534 Dereference before null check
s3: smbd: Correctly canonicalize any incoming shadow copy path.
s3: lib: Add canonicalize_absolute_path().
s3: lib: Fix two old, old bugs in set_conn_connectpath(), now in canonicalize_absolute_path().
s3: smbtorture: Add new local test LOCAL-CANONICALIZE-PATH
s3: smbd: Make set_conn_connectpath() call canonicalize_absolute_path().
s3: VFS: shadow_copy2: Correctly initialize timestamp and stripped variables.
s3: VFS: shadow_copy2: Ensure pathnames for parameters are correctly relative and terminated.
s3: VFS: shadow_copy2: Fix length comparison to ensure we don't overstep a length.
s3: VFS: shadow_copy2: Add two new variables to the private data. Not yet used.
s3: VFS: shadow_copy2: Add a wrapper function to call the original shadow_copy2_strip_snapshot().
s3: VFS: shadow_copy2: Change a parameter name.
s3: VFS: shadow_copy2: Add two currently unused functions to make pathnames absolute or relative to $cwd.
s3: VFS: shadow_copy2: Fix chdir to store off the needed private variables.
s3: VFS: Allow shadow_copy2_connectpath() to return the cached path derived from $cwd.
s3: VFS: Ensure shadow:format cannot contain a / path separator.
s3: VFS: Add utility function check_for_converted_path().
s3: VFS: shadow_copy2: Fix module to work with variable current working directory.
s3: VFS: shadow_copy2: Fix a memory leak in the connectpath function.
s3: VFS: shadow_copy2: Fix usage of saved_errno to only set errno on error.
s3: VFS: Don't allow symlink, link or rename on already converted paths.
s3: VFS: vfs_streams_xattr.c: Make streams_xattr_open() store the same path as streams_xattr_recheck().
s3: smbd: Don't loop infinitely on bad-symlink resolution.
s3: torture: Regression test for smbd trying to open an invalid symlink.
s3:winbind: work around coverity false positive.
John Mulligan (1):
docs: Improve description of "unix_primary_group" parameter in idmap_ad manpage
Karolin Seeger (6):
VERSION: Bump version up to 4.7.0pre1...
WHATSNEW: Start release notes for Samba 4.7.0pre1.
docs: Bump version up to 4.7.
docs: Add missing spaces in man smb.conf.
WHATSNEW: Add link to known issues.
docs: Fix typo in man smb.conf.
Martin Schwenke (37):
ctdb-takeover: Handle case where there are no RELEASE_IPs to send
ctdb-tests: Add takeover helper tests with banned/disconnected nodes
ctdb-scripts: Drop configuration variable CTDB_SERVICE_AUTOSTARTSTOP
ctdb-scripts: Simplify TCP port checking
ctdb-scripts: Drop unnecessary function ctdb_check_tcp_init()
ctdb-scripts: Remove ctdb_service_start() and ctdb_service_stop()
ctdb-scripts: Inline simple uses of service_start() and service_stop()
ctdb-scripts: Drop function ctdb_check_command()
ctdb-scripts: Drop configuration variable CTDB_SCRIPT_DEBUGLEVEL
ctdb-scripts: Fix remaining uses of "ctdb gratiousarp"
ctdb-scripts: Fix regression when cleaning up routing table IDs
ctdb-tests: Add "13.per_ip_routing shutdown" test
ctdb-scripts: Avoid log noise when NFS checks directory is empty
ctdb-docs: Document configuration variable CTDB_NFS_CHECKS_DIR
ctdb-scripts: Initialise CTDB_NFS_CALLOUT in statd-callout
ctdb-logging: CID 1396883 Dereference null return value (NULL_RETURNS)
ctdb-utils: CID 1343331 Unchecked return value from library (CHECKED_RETURN)
ctdb-doc: Whitespace fixes in example NFS ganesha callout
ctdb-doc: Make example NFS Ganesha call-out almost pass shellcheck
ctdb-doc: Fix shellcheck warning in example NFS ganesha call-out
ctdb-doc: Fix monitoring bug in example NFS Ganesha call-out
ctdb-doc: Update instructions in example NFS Ganesha call-out
ctdb-tests: Add synchronisation points in reload IPs tests
ctdb-takeover: Allocate IP list unconditionally in send function
ctdb-takeover: Short circuit if fetching IPs from no nodes
lib/util: Put bitmap.c into samba-util-core so it is available to CTDB
ctdb-ipalloc: Switch available_on to struct bitmap
ctdb-ipalloc: Switch noiphost to struct bitmap
ctdb-tests: Populate per-node known IPs inline
ctdb-takeover: Add debug message confirming fetching of public IPs
ctdb-takeover: Only fetch available IPs from nodes with known IPs
ctdb-takeover: Generalise error handling for GET_PUBLIC_IPS
ctdb-takeover: Use takeover_failed() when fetching public IPs fails
ctdb-takeover: Assign banning credits on failure to fetch public IPs
ctdb-takeover: Fetch public IP addresses from all connected nodes
ctdb-ipalloc: Add per-IP known_on bitmap
ctdb-takeover: Don't release IPs from nodes where they are not known
Matthieu Patou (3):
wafsamba: Move command line option function labelled as 'samba3' to the common set of functions
wafsamba: Remove 2010 comments that seems not accurate anymore
Move pthreadpool to top of the tree.
Noel Power (1):
s3/rpc_server/mdssvc: Generate flex/bison files in build
Ralph Boehme (30):
s3/smbd: convert "mangled names" option to an enum
s3/smbd: new "mangled names" setting "illegal"
s3/torture: add a test for "mangled names = invalid"
s3/rpc_server: move rpc_modules.c to its own subsystem
debug: parse, store and pass backend option
debug: add "ringbuf" backend logging to a ringbuffer
messaging.idl: add ringbuf message types
s3/debug: listen for MSG_REQ_RINGBUF_LOG
s4/messaging: register for MSG_REQ_RINGBUF_LOG
smbcontrol: add ringbuf-log
s3/rpc_server/mdssvc: use flex noyyalloc noyyrealloc
s3/rpc_server/mdssvc: prefix public flex and bison global symbols
selftest: also run test base.createx_access against ad_dc
s3/smbd: check for invalid access_mask smbd_calculate_access_mask()
s3/smbd: ensure global "smb encrypt = off" is effective for SMB 1 clients
s3/smbd: ensure global "smb encrypt = off" is effective for SMB 3.1.1 clients
s3/smbd: ensure global "smb encrypt = off" is effective for share with "smb encrypt = desired"
docs: impact of a global "smb encrypt=off" on a share with "smb encrypt=required"
selftest: disable SMB encryption in simpleserver environment
selftest: add test for global "smb encrypt=off"
vfs_fruit: checks wrong AAPL config state and so always uses readdirattr
s3/rpc_server: shared rpc modules loading
libcli/smb: outbuf length is a IVAL ie a uint32_t
vfs_fruit: correct Netatalk metadata xattr on FreeBSD
vfs_fruit: cleanup metadata and resource xattr name defines
lib/replace: validate xattr namespace prefix on FreeBSD
s3/util: mvxattr, a tool to rename extended attributes
vfs_fruit: fix resource fork xattr name
s3/rpc_server/mdssvc: add attribute "kMDItemContentType"
vfs_streams_xattr: use fsp, not base_fsp
Stefan Metzmacher (87):
s3:winbindd: talloc_steal the extra_data in winbindd_list_users_recv()
s4:auth/gensec: remove unused dependencies to gensec_util
krb5_wrap: let smb_krb5_kinit_s4u2_ccache() work if store_creds.client and server have different realms
auth/credentials: remove const where we always return a talloc string
s4:gensec_gssapi: the value gensec_get_target_principal() should overwrite gensec_get_target_hostname()
s4:gensec_gssapi: require a realm in gensec_gssapi_client_start()
selftest/selftesthelpers.py: let plantestsuite() use the env name in the test name
selftest/selftest.pl: we don't need to call Subunit::progress_pop() twice on error
selftest/selftest.pl: print out '[expanded] command: ' in all error cases
script/autobuild.py: try make test TESTS=samba3.*ktest for samba-systemkrb5
nsswitch: remove unused TALLOC_* defines in pam_winbind.h
lib/tevent: remove unused release-script.sh
wscript: remove executable bits for all wscript* files
s4:tests/sec_descriptor: use more unique oid values
script/release.sh: fix off by 1 error in announce.${tagname}.mail.txt creation
script/autobuild.py: use --enable-developer and --picky-developer for the ctdb build
script/autobuild.py: cleanup the task subdirs when they're done.
script/autobuild.py: export PYTHONUNBUFFERED=1
script/autobuild.py: add a do_print() wrapper function that flushes after each message
script/autobuild.py: try to make TMPDIR handling more verbose
auth/gensec: remove unused prototype headers
auth/gensec: convert schannel.c to provide update_send/recv
auth/gensec: convert ncalrpc.c to provide update_send/recv
auth/gensec: convert external.c to provide update_send/recv
s3:client: don't use cli->use_kerberos && cli->got_kerberos_mechanism in smbspool.c
s3:libsmb: use a local got_kerberos_mechanism variable in cli_session_creds_prepare_krb5()
s3:smbd: allow "server min protocol = SMB3_00" to go via "SMB 2.???" negprot
selftest/Samba3: use "server min protocol = SMB3_00" for "ktest"
talloc/wscript: avoid passing pointless enabled=True to SAMBA_PYTHON()
s4:dsdb/repl: s/highestCommitedUsn/highestCommittedUSN
s4:libnet: s/highestCommitedUSN/highestCommittedUSN
drsuapi.idl: add drsuapi_DrsMoreOptions with DRSUAPI_DRS_GET_TGT
drsuapi.idl: make drsuapi_DsGetNCChangesRequest10 [public]
python/join: set common replica_flags in dc_join.__init__()
python/join: use DRSUAPI_DRS_GET_NC_SIZE for the initial replication
torture/drs: remove pointless nc_object_count replication checks in test_link_utdv_hwm()
getncchanges: only set nc_{object,linked_attributes}_count with DRSUAPI_DRS_GET_NC_SIZE
getncchanges: pass struct ldb_message as const
getncchanges: remember the ncRoot_guid on the getncchanges state
getncchanges: don't process DRSUAPI_DRS_CRITICAL_ONLY for EXOPs
getncchanges: remove unused c++ comments/code in getncchanges_collect_objects()
getncchanges: fix highest_usn off by one calculation in get_nc_changes_add_links()
getncchanges: improve get_nc_changes_build_object() by checking uSNChanged
getncchanges: improve get_nc_changes_add_links() by checking uSNChanged
getncchanges: calculate getnc_state->min_usn calculation based on the uptodateness vector
getncchanges: implement DRSUAPI_DRS_GET_ANC more correctly
librpc/rpc: fix regression in NT_STATUS_RPC_ENUM_VALUE_OUT_OF_RANGE error mapping
s3:winbindd: make sure cm_prepare_connection() only returns OK with a valid tree connect
libcli/auth: use the correct creds value against servers without LogonSamLogonEx
libcli/auth: check E_md4hash() result in netlogon_creds_cli_ServerPasswordSet_send()
libcli/auth: add netlogon_creds_cli_debug_string()
lib/util: add generate_random_machine_password() function
s3:libsmb: let trust_pw_change() debug more verbose information
s3:libsmb: let trust_pw_change() verify the new password at the end.
s3:libsmb: add trust_pw_new_value() helper function
s3:libsmb: use trust_pw_new_value() in trust_pw_change()
s3:libads: use trust_pw_new_value() for krb5 machine passwords
s3:libnet_join: make use of trust_pw_new_value()
s3:net_rpc_trust: make use of trust_pw_new_value()
s3:include: remove unused DEFAULT_TRUST_ACCOUNT_PASSWORD_LENGTH
s4:libcli/raw: remove unused DEFAULT_TRUST_ACCOUNT_PASSWORD_LENGTH
s4:libnet: make use of generate_random_machine_password()
s4:dsdb: autogenerate a random utf16 buffer for krbtgt password resets.
python/samba: provision_dns_add_samba.ldif expects utf-16-le passwords
python/samba: use an explicit .encode('utf-8') where we expect utf8 passwords
pyglue: add generate_random_machine_password() wrapper
samba-tool:domain: use generate_random_machine_password() for trusted domains
samba-tool:domain: use generate_random_machine_password() for machine passwords
samba-tool:provision: use generate_random_machine_password() for machine passwords
s4:scripting: use generate_random_machine_password() for machine passwords
krb5_wrap: use our own code to calculate the ENCTYPE_ARCFOUR_HMAC key
script/autobuild.py: ignore missing test_tmpdir
talloc: fix TALLOC_VERSION_* mismatch detection
s3:wscript_build: remove unused bld.RECURSE('lib/pthreadpool')
ldb/tools: only use LDB_FLG_SHOW_BINARY for 'ldbsearch'
Revert "s3-winbind: Fix schannel connections against trusted domain DCs"
s3:winbindd: try a NETLOGON connection with noauth over NCACN_NP against trusted domains.
auth/credentials: try to use kerberos with the machine account unless we're in an AD domain
s3:winbindd: fix the valid usage anonymous smb authentication
s3:passdb: use cli_credentials_set_kerberos_state() for trusts in pdb_get_trust_credentials()
s3:winbindd: add more debugging to cm_prepare_connection()
s3:winbindd: rely on the kerberos_state from pdb_get_trust_credentials()
s3:libads: add more debugging to ads_sasl_spnego_bind()
s3:winbindd: allow a fallback to NTLMSSP for LDAP connections
s3:idmap_ad: make use of pdb_get_trust_credentials() to get the machine account creds
pytalloc: add pytalloc_GenericObject_{steal,reference}[_ex]()
talloc: version 2.1.9
Thomas Nagy (1):
build:wafsamba: Remove ambiguous 'if x in conf.env' constructs
Uri Simchoni (1):
waf: backport finding of pkg-config
Volker Lendecke (39):
selftest: Don't test auth_wbc anymore
auth: Remove auth_wbc
passdb: Remove pdb_wbc_sam
messaging: Fix dead but not cleaned-up-yet destination sockets
winbind: Fix CID 1398533 Resource leak
winbind: Fix CID 1398533 Resource leak
winbind: Fix CID 1398531 Resource leak
winbind: Fix CID 1398530 Resource leak
winbind: Fix CID 1398530 Resource leak
lib: Add lib/util/server_id.h
lib: Avoid an includes.h
smbd: Fix a typo
lib: Avoid a "includes.h"
smbd: Fix a few signed/unsigned hickups
smbd: Fix an indentation
smbd: Streamline get_ea_names_from_file
s3/locking: Avoid a talloc for nonexisting fetch_share_mode_unlocked
lib/util/charset: Optimize next_codepoint for the ascii case
lib: Add "is_case_sensitive" to ms_fnmatch_protocol
s3/lib: Use ms_fnmatch_protocol in mask_match
lib/util: Avoid a talloc in ms_fnmatch_protocol
winbind: Fix a typo
libcli: Do not overwrite pointer on realloc failure
libcli: Add an overflow check
winbind: Don't add duplicate IDs in wbinfo -r
smbd: Fix "map acl inherit" = yes
rpc_server: Fix a typo
smbd: Make "create_file_sids" static
smbd: Fix some whitespace
ctdb: Only build test_mutex_raw.c on Linux
winbind: Fix a typo
auth3: Use NT_STATUS_EQUAL
smbd: Fix some whitespace
lib: Fix some whitespace
libsmb: Fix whitespace
winbind: Fix a signed/unsigned mixup
lib: Avoid an "includes.h"
lib: Fix "is_case_sensitive" in "ms_fnmatch_protocol"' callers
winbind: Use EnumDomainUsers in rpc_query_user_list
Zentaro Kavanagh (1):
Add explicit dependency on samba-debug from libinterfaces and libserverrole.
-----------------------------------------------------------------------
--
Samba Shared Repository
More information about the samba-cvs
mailing list