The annotated tag, release-3-2-12 has been updated to 3cefd76b5897ad42d7f2ce6fe30da33f15a19e2d (tag) from 7d41234b04047f924dace8dc1d92ed04afce4cce (which is now obsolete) tagging a3d27deaa6c20d5764a511384d75ee481c92e13d (commit) replaces release-3-2-11 tagged by Karolin Seeger on Tue Jun 16 12:10:18 2009 +0200
- Log ----------------------------------------------------------------- release-3-2-12 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) iD8DBQBKN2+PbzORW2Vot+oRAhH4AJ42ICwHx4poXcnUye4ok3dwSIDMAQCfazGU 2aRv+MvMcJzV8eVPhDobCV4= =elDb -----END PGP SIGNATURE----- Andreas Schneider (5): Add a synopsis section to the pam_winbind manpage. Document the try_first_pass option in the pam_winbind manpage. Dcoument the PAM data exports in the pam_winbind manpage. Move pam_winbind to the right manpage section (8). Fix the section of the pam_winbind manpage. Björn Jacke (1): s3/ldap: also handle DirX return codes Guenther Deschner (2): Jeremy, with 9a5d5cc1db0ee60486f932e34cd7961b90c70a56 you alter the in negotiate flags (which are a pointer to the out negotiate flags assigned in the generated netlogon server code). So, while you wanted to just set the *out* negflags, you did in fact reset the *in* negflags, effectively eliminating the NETLOGON_NEG_STRONG_KEYS bit (formerly known as NETLOGON_NEG_128BIT) which then caused creds_server_init() to generate 64bit creds instead of 128bit, causing the whole chain to break. *Please* check. s3-credentials: protect netlogon_creds_server_step() against NULL creds. Günther Deschner (6): s3-selftest: test wbinfo --allocate-uid/gid. 3.2 samr bug 6301: fix samr_ConnectVersion enum which is 32bit not 16bit. s3-docs: Fix Bug #6331. Document "net dom join/net dom unjoin". s3-samr: Fix Bug #6372, usermanager only displaying 1024 groups and aliases. s3-docs: Fix Bug #4280. Shutdown scripts are called as root for privileged users. s3-groupdb: fix enum_aliasmem in ldb branch. Jeremy Allison (9): Fix bug #6279 - winbindd crash. Cope with LDAP libraries returning LDAP_SUCCESS but not returning a result. Add comment explaining the previous fix. Fix bug #6291 - force user stop working. A previous fix broke the invariant that *uid is always initialized on return from create_token_from_username(). Restore it. Jeremy. After getting confirmation from Guenther, add 3 changes we'll ultimately need to fix bug #6099 Samba returns incurrate capabilities list. 1). Add a comment to point out that r->in.negotiate_flags is an aliased pointer to r->out.negotiate_flags. 2). Ensure we return NETLOGON_NEG_STRONG_KEYS in our flags return if the client requested it. 3). Clean up the error exits so we always return the same way. Signed off by Guenther. Jeremy. s3-auth: use full 16byte session key in make_user_info_netlogon_interactive(). Fix bug in processing of open modes in POSIX open. Make test for open modes more robust against other bits. s3/groupmapping: Groupdb mapping fix (bug #6386). Revert the extra SAMR and LSA checks. Karolin Seeger (23): s3/docs: Fix serveral typos. s3/docs: Fix typo. s3/docs: Fix typos. s3/docs: Fix typo. s3/packaging: Add keyutils-devel to build requires. s3/docs: Remove unnecessary .sp. s3/packaging: Fix build on RHEL when ccache is not available. s3/docs: Fix shutdown script example. s3/docs: Fix typos. s3/docs: Fix typo. WHATSNEW: Start WHATSNEW for 3.2.12. VERSION: Raise version number up to 3.2.12. WHATSNEW: Add changes since 3.2.11. s3/docs: Fix typo. s3/passdb: Fix debug message: 'net setmaxrid' does not exist. s3/docs: Fix example. s3/docs: Fix typos. WHATSNEW: Update changes since 3.2.11. WHATSNEW: Add bug numbers. WHATSNEW: Attach old release notes. WHATSNEW: Update changes since 3.2.11. WHATSNEW: Fix typo. s3/docs: Fix typo. Marc VanHeyningen (1): s3: zero an uninitialized array Michael Adam (1): s3:registry: Prevent creation of keys containing the '/' character. Simo Sorce (3): Avoid duplicate aces Fix profile acls in some corner cases Insure we always return NULL on error. Stefan Metzmacher (4): s3:net_rpc: don't shutdown a cli_state passed from the caller s3:net: add --request-timeout option s3:docs: document the --request-timeout option of net s3:smbd: fix posix acls when setting an ACL without explicit ACE for the owner (bug#2346) Sébastien Prud'homme (1): s3/idmap: Fix out of memory error with Winbind idmap. Volker Lendecke (3): Fix bug 5798: "CFLAGS info lost in configure" Fix bug 6382: Case insensitive access to DFS links broken Fix a race condition in winbind leading to a panic ----------------------------------------------------------------------- -- Samba Shared Repository