The annotated tag, samba-4.1.7 has been created at 6b772b537036cf216dd58f5da811a96ee8b49b2f (tag) tagging 9da023a3bcca8e984a461dc7a89bd3a470196c12 (commit) replaces samba-4.1.6 tagged by Karolin Seeger on Thu Apr 17 10:46:05 2014 +0200
- Log ----------------------------------------------------------------- samba: tag release samba-4.1.7 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEABECAAYFAlNPlM0ACgkQbzORW2Vot+ra9wCgiV2els468IjEQpAVcd/ejOif x3sAoMA41v7URmnpez0oZDhN0VbwW7Rf =6f7R -----END PGP SIGNATURE----- Alexander Bokovoy (1): lsa.idl: define lsa.ForestTrustCollisionInfo and ForestTrustCollisionRecord as public structs Andreas Schneider (12): s3-vfs: Fix stream_depot vfs module on btrfs. s3-spoolssd: Don't register spoolssd if epmd is not running. buildtools: Rename perl vendorarch configure option. buildtools: Add perl vendorlib configure option. autobuild: Set perl vendorlib direcotry. pidl-waf: Remove unused variable pidl_src. pidl-waf: Install pidl modules to the perl vendorlib directory. pidl-waf: Do not glob to install pidl modules. pidl-waf: Add a function to check for a system perl module. pidl-waf: Check for system perl(Parse::Yapp::Driver). pidl-waf: Only install Yapp::Driver if it is not available. s3-rpc_server: Fix handling of fragmented rpc requests. Andrew Bartlett (3): CVE-2013-4496:s3-samr: Block attempts to crack passwords via repeated password changes CVE-2013-4496:samr: Remove ChangePasswordUser CVE-2013-4496:Revert remainder of ce895609b04380bfc41e4f8fddc84bd2f9324340 Christian Ambach (8): waf:lib/replace correct detection of libiconv waf:lib/replace fix up libintl related checks waf:lib/replace change detection of gettext waf:lib/replace fix gettext detection waf:lib/replace gettext configure checks waf:lib/replace fix iconv checks on HP/UX heimdal_build: only enable libintl functions if everything was found waf: improve iconv checks Daniel Liberman (1): s3: ldap client can return NT_STATUS_OK when an error occurs in a paged search. David Disseldorp (4): rpc_client: retry open on STATUS_PIPE_NOT_AVAILABLE doc: add "spoolss: architecture" parameter usage rpcclient: append a trailing slash to FSRVP request UNCs rpcclient: abort shadow-copy set on commit failure Garming Sam (1): dfs: always call create_conn_struct with root privileges Gregor Beck (13): s3:winbindd: fix _wbint_LookupSids() on error s3:winbindd: avoid directly asking a trusted domain in wb_lookupsids*() s3:rpc_server: minor refactoring of process_request_pdu() s3:libsmb: pass creation or birth time in cli_qpathinfo_basic() s3:libsmb: add function cli_qpathinfo_standard() s3:libsmb: add function cli_qpathinfo3() s3:libsmb: SMBC_getatr try pathinfo2 only once s3:libsmb: SMBC_getatr do not let ino undefined on success s3:libsmb: SMBC_getatr use pathinfo3 for second try client: remove a write only variable s3:libsmb: cli_qpathinfo3 use cli_qpathinfo2 for smb2 client: use cli_qpathinfo3 for allinfo s3:libsmb: SMBC_getatr() if no method worked, try all methods again on next attempt Gustavo Zacarias (1): smbreadline: switch to new-style readline typedef Günther Deschner (1): librpc/nbt: increase MAX_COMPONENTS limit for nbt_names. Jeremy Allison (12): s3: printing: Fix problem with server taking too long to respond to a MSG_PRINTER_DRVUPGRADE message. s3-printing: Fix obvious memory leak in printer_list_get_printer(). s3: smbd: Ensure brl_get_locks_internal() always returns a valid struct byte_range_lock even if there are no locks. CVE-2013-6442: s3:smbcacls - ensure we don't lose an existing ACL when setting owner or group owner. s3: lib: Back-port tevent_queue_wait_send/recv -> smbd_tevent_queue_wait_send/recv s3:smb2_sesssetup: split smbd_smb2_logoff into an async *_send/recv pair. s3:smb2_tcon: split smbd_smb2_tdis into an async *_send/recv pair. s4: smbtorture: Update the torture_smb2_notify_ulogoff test to demonstrate the problem. s4: smbtorture: Add a proper change_notify going async followed by tdis test. s3: smbd: Fileserving share access checks. s3: smbd: Ensure we always go via getgroups_unix_user() when creating an NT token. s3: messages: Implement cleanup of dead records. Kai Blin (2): bug #10471: Don't respond with NXDOMAIN to records that exist with another type dns: Extend tests for records with another type Karolin Seeger (5): VERSION: Bump version number up to 4.1.6... WHATSNEW: Add release notes for Samba 4.1.6. VERSION: Disable git snapshots for the 4.1.6 release. VERSION: Bump version number up to 4.1.7. WHATSNEW: Add release notes for Samba 4.1.7. Luk Claes (3): s3/libsmb: Use smbXcli_conn_use_unicode instead of smb1 specific test libcli/smb: Introduce smbXcli_conn_dfs_supported s3/libsmb: Use smbXcli_conn_dfs_supported instead of test on CAP_DFS Stefan Metzmacher (46): s3:libsmb: make use of smb1cli_tcon_set_values() libcli/smb: add smbXcli_tcon_is_dfs_share() libcli/smb: add smbXcli_tcon_{set,get}_fs_attributes() libcli/smb: add FLAGS2_DFS_PATHNAMES for SMB1 operations against dfs shares libcli/smb: move Filesystem Attributes defines to smb_constants.h libcli/smb: add FLAG_CASELESS_PATHNAMES based on FILE_CASE_SENSITIVE_SEARCH to smb1 requests libcli/smb: add SMB2_HDR_FLAG_DFS for SMB2 Create operations on dfs shares s3:libsmb: call smbXcli_tcon_{get,set}_fs_attributes() from cli_set_case_sensitive() s3:libsmb: don't pass down FLAG_CASELESS_PATHNAMES and FLAGS2_DFS_PATHNAMES anymore s3/libsmb: make use of smbXcli_tcon_is_dfs_share() s3:libsmb: add SMB2/3 support to cli_dfs_get_referral() s3:libsmb: remove unused cli_state->dfsroot s3:libsmb: remove unused cli_state->case_sensitive s3:libsmb: call smbXcli_tcon_set_fs_attributes() directly s3:smbd: simplify exit_server_common() s3:smbd: maintain smbd_server_connection->status s3:lib/ctdbd_conn: let release_ip_handler return bool s3:smbd: avoid invalid lock_order panic triggered by "CTDB_SRVID_RELEASE_IP" pidl:NDR/Client: fix dcerpc_function() with [out,ref] pointers CVE-2013-4496:s3:auth: fix memory leak in the ACCOUNT_LOCKED_OUT case. Merge tag 'samba-4.1.6' into v4-1-test tevent: fix crash bug in tevent_queue_immediate_trigger() s4:torture/smb2: accept NT_STATUS_RANGE_NOT_LOCKED after smb2_logoff/tdis s3:smb2_lock: fix whitespaces/tabs in smbd_smb2_lock_cancel() s3:smb2_lock: return RANGE_NOT_LOCKED instead of CANCELLED for logoff and tdis s3:smb2_sesssetup: cancel and wait for pending requests on logoff s3:smb2_tcon: cancel and wait for pending requests on tdis s3:utils/smbfilter: use a local variable for the packet buffer s3:torture: use CLI_BUFFER_SIZE instead of BUFFER_SIZE s3:client: only limit the buffer by the given length 'n' s3:param: avoid using BUFFER_SIZE to limit the lp_min_receive_file_size() libcli/smb: add SMB_BUFFER_SIZE_MIN/MAX defines s3:include: let CLI_BUFFER_SIZE be an alias of SMB_BUFFER_SIZE_MAX s3:smbd: use SMB_BUFFER_SIZE_MIN/MAX to limit lp_max_xmit() s3:smbd: use sconn->smb1.sessions.max_send = SMB_BUFFER_SIZE_MAX s3:smbd: reject a MaxBufferSize < SMB_BUFFER_SIZE_MIN (500) in a session setup request s3:smbd: take less than SMB_BUFFER_SIZE_MIN ('500') as header overhead in ipc.c s3:smbd: fix lockread numtoread calculation to match reply_outbuf() arguments. s3:smbd: pass the final numtoread reply_outbuf() for the lockread reply. s3:smbd: fix the lockread numtoread calculation depending on the max_send. s3:smbd: fix the read numtoread calculation depending on the max_send. s3:smbd: simplify maxentries calculation in reply_search() s3:smbd: fix the maxentries calculation depending on the max_send. s3:smbd: s/BUFFER_SIZE/LARGE_WRITEX_BUFFER_SIZE s4:lib/socket: use the same logic in iface_list_wildcard() as in smbd s4:lib/socket: simplify iface_list_wildcard() and its callers ----------------------------------------------------------------------- -- Samba Shared Repository