[SCM] Samba Shared Repository - annotated tag samba-4.15.6 created

Jule Anger janger at samba.org
Tue Mar 15 13:21:16 UTC 2022 

The annotated tag, samba-4.15.6 has been created
        at  65387905661f0e2218a2dd30738361331cd309b0 (tag)
   tagging  8942e18adc466198203cb3f24c0556c590f44e96 (commit)
  replaces  samba-4.15.5
 tagged by  Jule Anger
        on  Tue Mar 15 14:20:56 2022 +0100

- Log -----------------------------------------------------------------
samba: tag release samba-4.15.6
-----BEGIN PGP SIGNATURE-----
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=jnFV
-----END PGP SIGNATURE-----

Andreas Schneider (5):
      waf: Fix resolv_wrapper with glibc 2.34
      selftest: Do not force -d0 for smbd/nmbd/winbindd
      s3:winbindd: Add a sanity check for the range
      s3:utils: Add a testparm check for idmap autorid
      docs-xml: Fix idmap_autorid documentation

Bjoern Jacke (1):
      vfs_aixacl: add proper header file

Björn Jacke (4):
      acl: fix function arguments for AIX' and Solaris' sys_acl_get_fd()
      wscript: s/default/required/ _static_modules for the acl modules
      readlink test: inverse return code
      waf: re-add missing readlink test

Douglas Bagnall (2):
      pytest:auth_log: expect TLS connections when using ldaps
      s4/auth/simple_bind: correctly report TLS state

FeRD (Frank Dana) (1):
      printing/bgqd: Disable systemd notifications

Günther Deschner (1):
      pam_winbind: add new pwd_change_prompt option (defaults to off).

Jeremy Allison (13):
      s4: test: Add samba4.libsmbclient.rename test. Currently fails for SMB3.
      lib: libsmbclient: Ensure cli_rename() always sets cli->raw_status.
      s3: tests: Add a new test test_msdfs_hardlink() that does simple hardlinks on MSDFS root shares.
      s3: tests: Add a new test test_msdfs_rename() that does simple renames on MSDFS root shares.
      s3: libsmb: Add cli_dfs_target_check() function.
      s3: libsmb: Call cli_dfs_target_check() from cli_smb2_hardlink_send().
      s3: libsmb: Call cli_dfs_target_check() from cli_ntrename_internal_send().
      s3: libsmb: Call cli_dfs_target_check() from cli_smb1_rename_send().
      s3: libsmb: Call cli_dfs_target_check() from cli_cifs_rename_send().
      s3: libsmb: Call cli_dfs_target_check() from cli_smb2_rename_send().
      s4: torture: Add new SMB2 lease test test_lease_duplicate_create().
      s4: torture: Add new SMB2 lease test test_lease_duplicate_open().
      s3: smbd: Fix our leases code to return the correct error in the non-dynamic share case.

Jule Anger (4):
      Merge tag 'samba-4.15.5' into v4-15-test
      VERSION: Bump version up to Samba 4.15.6...
      WHATSNEW: Add release notes for Samba 4.15.6.
      VERSION: Disable GIT_SNAPSHOT for the 4.15.6 release.

Pavel Filipenský (15):
      s3:utils: set ads->auth.flags using krb5_state
      s3:libads: Remove trailing spaces from sasl.c
      s3:libads: Disable NTLMSSP for FIPS
      s3:libads: Improve debug messages for SASL bind
      s3:libads: Disable NTLMSSP if not allowed (for builds without kerberos)
      tests: Add test for disabling NTLMSSP for ldap client connections
      s4:selftest: plan test suite samba4.blackbox.test_weak_disable_ntlmssp_ldap
      s3:winbindd: Remove trailing spaces from winbindd_ads.c
      s3:winbindd: Do not set ADS_AUTH_ALLOW_NTLMSSP in FIPS mode
      s3:libnet: Do not set ADS_AUTH_ALLOW_NTLMSSP in FIPS mode
      s3:modules: Implement dummy virus scanner that uses filename matching
      docs-xml:manpages: Document 'dummy' virusfilter and 'virusfilter:infected files'
      selftest: Fix trailing whitespace in Samba3.pm
      s3:selftest: Add test for virus scanner
      s3:modules: Fix virusfilter_vfs_openat

Ralph Boehme (2):
      s3/libads: simplify storing existing ads->ldap.ss
      s3/libads: ensure a sockaddr variable is correctly zero initialized

Samuel Cabrero (6):
      s3:libads: Fix memory leak in kerberos_return_pac() error path
      lib:krb5_wrap: Improve debug message and use newer debug macro
      lib:krb5_wrap: Fix wrong debug message and use newer debug macro
      s3:libads: Return canonical principal and realm from kerberos_return_pac()
      s3:winbind: Store canonical principal and realm in ccache entry
      s3:winbind: Use the canonical principal name to renew the credentials

Stefan Metzmacher (25):
      ldb: version 2.4.2
      s4:torture/rpc: test how CSDVersion="" wipes operatingSystemServicePack
      s4:rpc_server/netlogon: let CSDVersion="" wipe operatingSystemServicePack
      s4:dsdb/paged_results: fix segfault in paged_results()
      s4:dsdb/vlv_pagination: fix segfault in vlv_results()
      dcesrv_core: wrap gensec_*() calls in [un]become_root() calls
      lib/util: split out a dump_data_block16() helper
      blackbox.ndrdump: adjust example files to changed dump_data() output.
      lib/util: add dump_data_diff*() helpers
      ndrdump: make use of dump_data_file_diff() in order to show differences
      blackbox.ndrdump: adjust example files to the usage of dump_data_diff output.
      s4:torture/ndr: demonstrate the ndr_push_string(STR_NOTERM|REMAINING) of "" is wrong
      librpc/ndr: let ndr_push_string() let s_len == 0 result in d_len = 0
      blackbox.ndrdump: fix test_ndrdump_fuzzed_NULL_struct_ntlmssp_CHALLENGE_MESSAGE test
      selftest/quick: add smb2.session
      libcli/smb: fix error checking in smb2_signing_decrypt_pdu() invalid ptext_len
      libcli/smb: let smb2_signing_decrypt_pdu() cope with gnutls_aead_cipher_decrypt() ptext_len bug
      s4:sam: Don't use talloc_steal for msg attributes in authsam_make_user_info_dc()
      s3:py_net: allow machinepass=None to py_net_join_member()
      samba-tool/join_member: let py_net_join_member() choose the password
      provision: use 120 characters for the dns account password
      upgradehelpers.py: let update_machine_account_password() use 120 character passwords
      provision: add a comment that the value of krbtgtpass is ignored in the backend
      upgradehelpers.py: add a comment to update_krbtgt_account_password()
      s3:trusts_utils: use a password length of 120 for machine accounts

Volker Lendecke (2):
      smbd: Safeguards for getpwuid
      smbd: Fix a use-after-free

-----------------------------------------------------------------------


-- 
Samba Shared Repository

More information about the samba-cvs mailing list