The annotated tag, ldb-1.1.17 has been created
at af55e7a64ee0a26b3073a66ba799572984e55351 (tag)
tagging 7f03a94ffa3752ccdb28cc50033b4e2a26e2b3f2 (commit)
replaces tdb-1.2.13
tagged by Stefan Metzmacher
on Mon May 5 10:00:54 2014 +0200
- Log -----------------------------------------------------------------
ldb: tag release ldb-1.1.17
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iQEcBAABAgAGBQJTZ0U2AAoJEEeTkWETCEAlY9wIAK3MBWTF5c1zr1ANEAsD9ztF
Z319fO6f0v963UPLgw19yrhKnF5vkTJxaG4dTloKH1/cJ66FQCtEdlrITETuCKWl
DhTgyD2gGsYXx7J3t2O0UIILwAZ7QD27wbA9Wm2TMY/TJf9Amv+0uow2W7o9HQzk
jNuAHhernZ1kjKKow3+rzOfR1Sbqkaq1nFgvTNigTXphuYV16GHtjyCOfxq4pIen
YpYH7KdNYw1ASvBDXFCOqRaDhSvLjiZBFMmkf5b4hAIiDPdpG8bOPolvrhGPqQN6
bQSaxjWEFAh0hidU4UMOuvB8qkUX6zOLnum7pnnWNZs6bknAhy0bWH/4yUZAvHE=
=iZTR
-----END PGP SIGNATURE-----
Alexander Bokovoy (6):
lsa.idl: define lsa.ForestTrustCollisionInfo and
ForestTrustCollisionRecord as public structs
add systemd integration
smbd: use exit_daemon() to support reporting to systemd from smbd
nmbd: use exit_daemon() to report status to systemd
winbindd: use exit_daemon() to pass startup status to systemd
ad-dc: use exit_daemon() to communicate status of startup to systemd
Alexander Werth (2):
vfs: Support NFS control flags in nfs4_acls.c.
vfs: Store ACL control flags in gpfs vfs module.
Amitay Isaacs (21):
ctdb-locking: Avoid memory leak
ctdb-locking: Check for talloc_memdup error
ctdb-locking: Instead of comparing key, compare key hash
ctdb-client: ctdb_fetch_lock should check for readonly delegations
ctdb-tests: Use ctdb_fetch_lock instead of ctdb_fetch_lock_readonly
ctdb-tests: Do not mix bool and int data types
ctdb-readonly: Do not use hard-coded value for readonly revoke timeout
ctdb-daemon: Always update database priority cluster wide
ctdb-daemon: Add control CTDB_CONTROL_DB_DETACH
ctdb-client: Add client code to detach a database
ctdb-tools/ctdb: Add ctdb detach command to detach databases
ctdb-doc: Add "ctdb detach" and update "ctdb attach"
ctdb-doc: Remove commands that have been deleted
ctdb-tests: Add a simple test for "ctdb detach"
ctdb-daemon: Do not allow database detach if AllowClientDBAttach=1
ctdb-tools/ctdb: Detach databases only if all nodes disallow client access
ctdb-daemon: Talloc tdb_wrap off ctdb_db_context
ctdb-client: Talloc tdb_wrap off ctdb_db_context
ctdb-tools/ctdb: Unlock records before closing tdb database
ctdb-tests: Add test for re-attaching detached database
ctdb-recoverd: Detach database from recovery daemon
Andreas Schneider (48):
s3-rpc_server: Fix handling of fragmented rpc requests.
s3-nmbd: Align debug level for the same information.
s3-smbd: Align debug level for the same information.
selftest: Add a bash env file you can source.
wafsamba: Add set_target to CHECK_BUNDLED_SYSTEM.
replace: Add uid_wrapper_enabled().
lib: Change uid_wrapper to preloadable version.
Remove uid_wrapper related code.
selftest: Pass uid_wrapper library to selftest and preload it.
selftest: Enable uid_wrapper globally.
selftest: Call smbpasswd as root.
testprogs: Fix tests calling smbpasswd.
s3-utils: Do not disable the root check in smbpasswd.
s4-ntfs: Improve uid check in wrapper mode.
libwbclient: Handle uid_wrapper for pipe access.
s3-lib: Add root_mode() which can deal with uid_wrapper.
s3: Use root_mode() to get uid_wrapper working correctly.
lib: Add missing include for unistd.h in setid.
lib: Add missing include for unistd.h in unix_privs.
replace: Add nss_wrapper_enabled().
replace: Add nss_wrapper_hosts_enabled().
s4-torture: Remove nss_wrapper testsuite.
Remove special nss_wrapper code
lib: Change nss_wrapper to preloadable version.
selftest: Preload nss_wrapper
selftest: Add the user running the test to passwd.
selftest: Set NSS_WRAPPER_MODULE variables for NSS module.
selftest: Write the nss_wrapper hosts file.
wbclient: Check with nss_wrapper_enabled().
selftest: Rename WINBINDD_SOCKET_DIR environment variable.
s3-libads: Use ldap_initialize() if available.
ldb: Add a env variable to disable RTLD_DEEPBIND.
selftest: Disable loading ldb modules with RTLD_DEEPBIND.
s4-torture: Remove socket_wrapper testsuite.
replace: Add socket_wrapper_enabled().
Remove special socket_wrapper code.
lib: Change socket_wrapper to preloadable version.
selftest: Preload socket_wrapper.
dns.py: Use the python socket module.
lib: Remove socket wrapper python module.
s3-rpc_server: Return the status code from gensec.
s3-rpc_server: Call pipe_auth_verify_final() if needed.
gensec: add DCERPC_AUTH_TYPE_NCALRPC_AS_SYSTEM backend
s3-auth: Register ncalrpc_as_system gensec module.
s3-rpc_server: Add special tsocket address for ncalrpc_as_system.
s3-rpc_server: Use gensec for NCALRPC_AS_SYSTEM.
s3-rpc_server: Remove ncalrpc_as_system from pipes_struct.
s3-rpc_server: Remove ncalrpc_as_system from make_server_pipes_struct().
Andrew Bartlett (83):
dbcheck: Ensure dbcheck can operate with --attrs set
build: Exclude source4/selftest/provisions/release-4-1-0rc3 from the
tarball
dsdb: Do checks for invalid renames in samldb, before repl_meta_data
selftest: Remove print_smbtorture4_version and smbtorture4_possible check
dsdb: Do not update notify_uSN until the transaction is genuinely
committed to the DB
dsdb: Clarify how the DSDB_REPL_FLAG_PRIORITISE_INCOMING flag works
dsdb: Improve errors and checks for missing objectClass values
dsdb: Improve missing objectClass handling
selftest: Remove reduction in time window in delaywrite test
libsmb: Provide a talloc_stackframe() to external users of libsmb_setget.c
pam_smbpass: Wrap calls in talloc_stackframe() to avoid warnings about
leaking memory
libsmbclient: Wrap more function calls in talloc_stackframe() to protect
against talloc_tos() calls
s3-auth: Finally change make_user_info_*() use a parent talloc context
auth_samba4: Fix auth_samba4 to correctly provide a messaging context for
itself
s3-auth: Remember to always free the talloc_stackframe() in auth_samba4
s3-auth: Add prototype for plugin function to reduce warnings in
auth_samba4
winbindd: Ensure we do not look at rid_array before checking if it was
returned
selftest: Rename wbinfo_s3 to wbinfo_simple and reorder code for clarity
s3-samr: Refuse to set lockout_duration < lockout_window per
rpc.samr.passwords.lockout
torture-samr: Set lockout_seconds to 60 for samba3
torture/samr: Re-open the user when checking for ACB_AUTOLOCK
s3-auth: Only call pdb_get_acct_ctrl() once in check_sam_security
s3-auth: Do not reset bad password count to 0 if account is disabled
selftest: make blackbox_setpassword.sh test run independently
auth: Pass though error from GENSEC sub-mechanism
ldb_ildap: Map some wrong username/password errors on to
LDB_ERR_INVALID_CREDENTIALS
kerberos: Map KRB5KDC_ERR_CLIENT_REVOKED to NT_STATUS_ACCOUNT_LOCKED_OUT
torture-samr: Actually fail on failures in rpc.samr, rather than just
printing pretty warnings
torture-samr: Indent samba3-skip block
torture-samr: Make failures easier to trace with torture_assert
torture-samr: set min password age to 0 for lockout and badpwdcount tests
torture-samr: Try breaking the NT hash first, as the LM hash may not be
being checked
torture-samr: Lock accounts for 5 seconds in
rpc.samr.passwords.badpwdcount test to ensure consistent results
torture-samr: Do not issue a TORTURE_FAIL unless *this* test failed
dsdb-tests: Remove pointless creation of ldaptestou
selftest: Run rpc.samr.passwords.lockout against the s3dc environment
dsdb-operational: Use a list for the extra attributes that may be required
dsdb-operational: Implement msDS-User-Account-Control-Computed
dsdb-operational: Implement msDS-UserPasswordExpiryTimeComputed
dsdb: Rework samdb_result_acct_flags to use either userAccountControl or
msDS-User-Account-Control-Computed
dsdb: Put password lockout support in samdb_result_passwords()
s4:auth: Add password lockout support to the AD DC
dsdb: give a better error message and return code on failed password
change
samba-tool add password lockout handling to samba-tool domain
passwordsettings
s4-auth: Rework memory handling to use a tmp_ctx
dsdb: Add samdb_result_passwords_from_history helper function
dsdb: collapse wrong password and no-password-hash errors into one handler
s4-auth: Add authsam_zero_bad_pwd_count to zero out badPwdCount and
lockoutTime on successful login
heimdal: Do not attempt password authentication for locked out accounts
heimdal: Match windows and return KRB5KDC_ERR_CLIENT_REVOKED when the
account is locked out
heimdal: Only indicate successful authentication after successful authz
kdc: Set flags.locked_out on a locked-out user.
kdc: Include values from msDS-User-Account-Control-Computed when checking
user flags
kdc: call authsam_zero_bad_pwd_count on successful AS-REQ
auth: Split out badPwdCount update into a helper function
dsdb: Move dsdb_update_bad_pwd_count to dsdb/common/util.c
dsdb: Implement password lockout on LDAP password changes
dsdb: check type with talloc_get_type_abort in samdb_set_password
lib/param: Add new parameter "old password allowed period"
s4-auth: Support password history correctly, including allowing NTLM
logins using the old password
s4-samr: Escape the username in the LDAP filter
dsdb: Allow SAMR server to return the computed, not actual badPwdCount
selftest: Add test for password lockout
torture-samr: Improve rpc.samr.passwords.badpwdcount test
torture-samr: Add test for lockout with and without a password history
selftest: Run rpc.samr.passwords.badpwdcount against s3dc
torture-samr: Add testing of account lockout and password change behaviour
s4-wbclient: Cope with winbind returning an error
s4-wbclient: Fix wbc_sids_to_xids to correctly indicate the length of the
SID list
auth: Remove static variable ths_user from password_check() code
auth: Remove unused PASSWORD_LENTH macro from pass_check.c
auth: Remove dfs_auth() from pass_check.c and s4's auth_unix
auth: Remove afs_auth() from pass_check.c and s4's auth_unix
auth: Remove plaintext OSF1 password support
auth: Remove support for plaintext auth on systems that use getprpwnam()
auth: Remove linux_bigcrypt support from pass_check.c
auth: Remove USE_BOTH_CRYPT_CALLS block from pass_check.c
auth: Remove support for HAVE_TRUNCATED_SALT from pass_check.c
auth: Move wbcAuthUserInfo_to_netr_SamInfo3 to the top level
s4-auth: Make the auth_winbind_wbclient use more correct code now in
auth/wbc_auth_util.c
dsdb: Specify no event context to smb_krb5_init_context() in dsdb
kerberos: Remove un-used event context argument from
smb_krb5_init_context()
winbind: Allow winbindd to be run from inside "samba"
Arvid Requate (2):
dfs_server: randomize the server redirect set
dfs_server: get_dcs: fix pointer list termination
Björn Baumbach (5):
s3-nmbd: reset debug settings after reading config file (bug #10239)
s3: enforce a positive allocation_file_size for non-empty files
s3-lib/util: fix read across end of namelist string
lib-util: rename memdup to smb_memdup and fix all callers
s3: use smb_xmemdup instead of smb_memdup and smb_panic
Christof Schmitt (2):
Rename module init functions from samba_init_module
vfs_gpfs: Avoid warnings in developer build
David Disseldorp (9):
ctdb/pmda: Fix metric identifiers
librpc: dump correct ndr_syntax_id on VT check failure
librpc: split type specific VT checks into helpers
librpc: inline VT CHECK macro logic
librpc: inline CHECK_SYNTAX macro logic
rpcclient: append a trailing slash to FSRVP request UNCs
torture: test FSRVP UNCs with and without trailing slashes
rpcclient: abort shadow-copy set on commit failure
torture: add local verification trailer parsing test
Felix Botner (1):
samba-tool dbcheck: handle missing objectClass
Gregor Beck (3):
s3:rpcclient: fix build without HAVE_IPV6
ctdb:daemon take a shortcut in all_nodes_are_disabled()
ctdb:daemon avoid goto ctdb_remove_orphaned_ifaces()
Guenter Kukkukk (1):
fix 2 typos
Günther Deschner (4):
s4-torture: add test_EnumPrinterDrivers_buffers function.
s4-torture: add some tests for pre-allocated buffers in
enumprinterdrivers call.
s3-kerberos: make ipv6 support for generated krb5 config files more
robust.
s3-libads: allow ads_try_connect() to re-use a resolved ip address.
Jelmer Vernooij (6):
Typo: Specifing -> specifying.
Typo: sucessfully -> successfully
Typo: s/prefered/preferred/
Typo: speciefied -> specified.
Typo: Commiting -> Committing
Typo: s/preceeded/preceded/
Jeremy Allison (16):
s3: smbd: Fileserving share access checks.
s3: smbd: Ensure we always go via getgroups_unix_user() when creating an
NT token.
s3: smbd: Factor out code that calls getgroups_unix_user() into a
separate function.
s3: messages: Implement cleanup of dead records.
s3: smbd/nmbd/winbindd - fix append on trailing slash on system paths.
s3-lib/util: fix logic inside set_namearray loops.
s3: smbd: Performance optimization for RECVFILE.
libs: s3 and s4: make our dns lookup code signal-safe.
s3: srvsvc pipe - We should return WERR_BADFILE in _srvsvc_NetShareAdd if
the path does not exist.
s3 : build system : Move lib/background.c from smbd_base to samba3core.
s3: smbd: Call dgram cleanup init background setup.
s3: nmbd: Call dgram cleanup init background setup.
s3: winbindd: Call dgram cleanup init background setup.
s3: torture - Add required talloc frame for msgtest.c
s3: torture - Fix racy assumption in original messaging test.
s3: smbd : Fix wildcard unlink to fail if we get an error rather than
trying to continue.
Jeroen Dekkers (1):
Do not install smbclient4 and nmblookup4
Kamen Mazdrashki (7):
samba-tool/upgrade: Fix exception thrown during upgrade from samba3
s4:KCC: Use dsdb.DS_DOMAIN_FUNCTION_2008 constant for DS-Behavior
comparisons
s4:kcc_utils: Propagate 'samdb' into load_connection_transport() method
s4:samba_kcc: Fix error handling opening export ldif file
s4:samba_kcc: fix reference to DSA object while building partial replica
list
s4:kcc_util: fix loading connection transport object - used to refer to
not defined object
s4:samba_kcc: Use 'dburl' passed from command line rather than
lp.samdb_url()
Lukas Slebodnik (2):
tevent: Update flags in tevent pkgconfig file
talloc: Update flags in pytalloc-util pkgconfig file
Martin Schwenke (41):
ctdb-tools-ctdb: Don't close stderr when running without_daemon commands
ctdb-tests: Remove old, unused copy of a CTDB tool unit test
ctdb-tests: Support fake capabilities in CTDB tool stub
ctdb-tests: Update ctdb stub LVS tests and add some new ones
ctdb-tests: New natgwlist tests where nodes capability not set
ctdb-tools-ctdb: Update natgwlist to filter nodes by NATGW capability
ctdb-tools-ctdb: Generalise find_natgw() -> filter_nodemap_by_flags()
ctdb-tools-ctdb: Fixes for "lvs" and "lvsmaster" commands
ctdb-tools-ctdb: Update LVS commands to use
filter_nodemap_by_capabilities()
ctdb-tools-ctdb: Update LVS commands to use filter_nodemap_by_flags()
ctdb-tools-ctdb: Add and use function filter_nodemap_by_natgw_nodes()
ctdb-tools-ctdb: Read NAT gateway nodes from a separate function
ctdb-tests: Add "ctdb listnodes" and "ctdb xpnn" stub tests
ctdb-tools-ctdb: Factor out function read_pnn_node_file()
ctdb-tools-ctdb: Use DLIST_ADD_END() to avoid reversing the list
ctdb-tools-ctdb: Remove redundant filtering of trailing empty lines
ctdb-tools-ctdb: Parse IP addresses when reading a list from a file
ctdb-daemon: Fix tickle updates to recently started nodes
ctdb-eventscripts: Attach to persistent ctdb.tdb in "startup" event
ctdb-daemon: Do not disable monitoring when running eventscripts
ctdb-eventscripts: Fix regression in IP add/delete functions
ctdb-tests: Improve tickle tests
ctdb/daemon: Make delete IP wait until the IP is released
ctdb/daemon: Optimise deletion of IPs
ctdb-eventscripts: Use set_proc() to update /proc
ctdb-tests: Add some tests for 11.natgw eventscript
ctdb-eventscripts: Improve readability of NAT gateway update code
ctdb-eventscripts: Sanity check NAT gateway configuration
ctdb-tests: Add a test for NAT gateway sanity checking
ctdb-eventscripts: Rename some NAT gateway functions
ctdb-eventscripts: Reformat natgw_clear()
ctdb-eventscripts: Improve check in NATGW "startup" event
ctdb-eventscripts: Clarify that CTDB_NATGW_DEFAULT_GATEWAY is optional
ctdb-eventscripts: New configuration variable CTDB_NATGW_STATIC_ROUTES
ctdb-eventscripts: CTDB_NATGW_STATIC_ROUTES can specify gateways
ctdb-tests: Add NAT gateway eventscript unit tests for static routes
ctdb-tests: Add a new NFS tickle test
ctdb-tests: Fix and extend read-only records test
ctdb-tools-ctdb: Drop disconnected nodes when filtering by capability
ctdb-eventscripts: CTDB_NATGW_PUBLIC_* optional on slave-only nodes
ctdb-tests: Update "ctdb detach" test
Michael Adam (43):
autorid: store hwm as uint32_t in idmap_autorid_init_hwm()
autorid: reverse logic flow in idmap_autorid_init_hwm(), decreasing
indentation.
autorid: print debug message when a HWM key has been created
autorid: fix a potential for data corruption.
autorid: when storing a new range, always check it does not exist.
autorid: add a DEBUG upon talloc fail in the add_range function.
autorid: improve the precision of the DEBUG at the end of add_range
autorid: in idmap_autorid_saveconfig, add a debug msg when loading gives
error
autorid: split idmap_autorid_db_open and idmap_autorid_init_hwms out of
idmap_autorid_db_init
autorid: initialize: store config directly before allocating well knowns.
autorid: initialize: link commonconfig to dom as soon as it is allocated
autorid: initialize: link config to commonconfig as soon as it is
allocated.
autorid: initialize: open the autorid db as late as possible.
autorid: initialize: use the split db_open and init_hwms function instead
of db_init
autorid: initialize: fix typo in and further improve a debug message.
autorid: make the whole initialization atomic with one transaction.
autorid: use the db argument in the initialize traverse action.
tdb: consolidate tdb allocation code - re-use dead records at hash top.
s3:smbd: fix typo in comment for set_conn_force_user_group()
idmap_tdb_common: fix a debug message in idmap_tdb_common_unixid_to_sid()
idmap_tdb_common: fix a debug message in idmap_tdb_common_set_mapping()
idmap_tdb_common: remove legacy comment.
idmap_rid: remove a legacy comment from sid_to_id
autorid: remove a legacy comment from sid_to_id
autorid: improve wording in a debug message
autorid: add debug messages to idmap_autorid_get_domainrange()
autorid: improve a debug message in idmap_autorid_map_sid_to_id()
autorid: fix uninitialized return code for successful autorid.tdb
creation/opening
autorid: fix discard-const warning in idmap_autorid_init_hwm()
autorid: factor idmap_autorid_get_alloc_range() out of
idmap_autorid_allocate_id()
autorid: rename idmap_autorid_map_id_to_sid() ->
idmap_autorid_id_to_sid_alloc()
autorid: rename idmap_autorid_map_sid_to_id() ->
idmap_autorid_sid_to_id_alloc()
autorid: rename idmap_autorid_sid_to_id() -> idmap_autorid_sid_to_id_rid()
autorid: more explicitly and reasonably set map->state in
idmap_autorid_sid_to_id_alloc
autorid: explicitly return NTSTATUS_OK in idmap_autorid_sid_to_id_alloc().
autorid: make the checks for bumping num_mapped identical for alloc and
rid case
autorid: factor idmap_autorid_sid_to_id() out of
idmap_autorid_sids_to_unixids()
autorid: introduce idmap_autorid_domsid_is_for_alloc()
autorid: reverse order of arguments of idmap_autorid_sid_to_id_alloc()
autorid: reserve 500 IDs at the top of the ALLOC range.
autorid: add high_id to range config and fill it where we also fill
range->low_id.
autorid: use dbwrap_trans_do() in idmap_autorid_sid_to_id_alloc()
autorid: Add allocation from above in alloc range for well known sids
Noel Power (6):
Add autogenerated HRESULT error codes and descriptions from MS_ERREF
Allow FSRVP access generic HRESULT error message descriptions
script to generate libcli/util/hresult.c & libcli/util/hresult.h
Use correct error code value for NT_STATUS_RPC_ENUM_VALUE_OUT_OF_RANGE
Add error codes and message descriptions for NTSTATUS
script to generate content for libcli/util/nterr.c &
libcli/util/ntstatus.h
Ralph Boehme (1):
wafsamba: replace dots in library names
Shekhar Amlekar (4):
s3: rpc_server/srvsvc: Added routines to count share connections.
s3: rpc_server/srvsvc: added routines to compute opens on share
connections.
s3: rpc_server/srvsvc: count share connections in NetConnEnum
s3: rpc_server/srvsvc: count open files in NetConnEnum
Stefan Metzmacher (207):
wafsamba: add CONFIG_RESET()
s3:wscript: create a libsamba-cluster-support.so
s3:ctdbd_conn: add ctdb_serverids_exist_supported()
s3:ctdbd_conn: always provide ctdb_serverids_exist()
s3:lib: move all ctdb related dummy functions to ctdb_dummy.c
s3:param: move lp_ctdbd_socket() to ctdbd_conn.c
s3:lib: add cluster_support_[available|features]()
wafsamba: use cluster_support_features in build_options.c
s3:ctdb_conn: only use ctdb_protocol.h or ctdb_private.h in ctdb_conn.c
s3:serverid: use ctdb_serverids_exist_supported() runtime check
s3:wscript: don't add ctdb include dir globally
s3:wscript: only fill in CTDB_CFLAGS instead of config.h
s3:wscript: only build ctdb_dummy.c if we have no cluster support
s3:build: remove global CLUSTER_SUPPORT define
s4:torture/rpc: fix error path in torture_leave_domain()
libcli/smb: keep references to smbXcli_{conn,session,tcon} in
tstream_smbXcli_np
libcli/smb: make TSTREAM_SMBXCLI_NP_MAX_BUF_SIZE public
libcli/smb: add tstream_smbXcli_np_disconnect_cleanup() to handle
talloc_free(req)
libcli/smb: reuse tstream_smbXcli_np_disconnect_send/recv as helper
librpc/rpc: let dcerpc_binding_set_transport() also reset the
assoc_group_id
librpc/rpc: use dcerpc_binding_set_string_option(b, "endpoint", NULL) to
reset the endpoint
s4:torture/rpc: avoid using dcecli_connection->binding_string
s4:librpc/rpc: remove unused dcecli_connection->binding_string
s4:librpc/rpc: correctly map the fault code of alter context to NTSTATUS
lib/util: let is_ipaddress_v6() cope with "fe80::1234%3"
s4:librpc/tests: add more no transport tests
librpc/rpc: add "schannel" => DCERPC_SCHANNEL as ncacn_option
librpc/rpc: handle ipv6 addresses without transport in
dcerpc_parse_binding()
s4:librpc/test: test ipv6 addresses in dcerpc_binding strings
s4:dsdb/repl: make use of dcerpc_binding_handle_is_connected()
s4:selftest: don't run rpc.multibind anymore
s4:torture/rpc: remove bogus rpc.multibind test
s4:torture/rpc: fix altercontext test against windows
s4:torture/rpc: make use of dcerpc_binding_handle_auth_info() in lsa.c
s4:torture/rpc: make use of dcerpc_binding_handle_auth_info() in
backupkey.c
s4:torture/raw: fix debug message in torture_raw_qfileinfo_pipe()
s4:librpc/tests: reset the object on the binding created from the tower
librpc/rpc: maintain "abstract_syntax" as string option of dcerpc_binding
librpc/rpc: finally maintain only the object guid
s4:librpc/tests: assert the the abstract syntax has the expected value
(null)
s4:librpc/rpc: use dcerpc_binding_get_object() in order to pass the
object to the epmapper
auth/gensec: fix gensec_update() with ev == NULL.
s4:pygensec: don't pass an explicit tevent_context to gensec_update()
auth/gensec: add a gensec_update_ev() function
auth/gensec: make use of gensec_update_ev() in spnego.c
s4:dns_server: make use of gensec_update_ev()
s4:kdc: make use of gensec_update_ev()
s4:ldap_server: make use of gensec_update_ev()
s4:libcli: make use of gensec_update_ev()
s4:librpc: make use of gensec_update_ev()
s4:smb_server: make use of gensec_update_ev()
s4:rpc_server: make use of gensec_update_ev()
s4:ntlm_auth: make use of gensec_update_ev()
auth/gensec: remove tevent_context argument from gensec_update()
auth/gensec/spnego: map SPNEGO_REJECT to NT_STATUS_LOGON_FAILURE
librpc/rpc: try to use DCERPC_NCA_S_* constants for error mappings
dcerpc.idl: make use of DCERPC_NCA_S_* constants for the legacy
DCERPC_FAULT_* codes
dcerpc.idl: fix typo s/ist/int
dcerpc.idl: fix dcerpc_bind_nack definition
dcerpc.idl: hide (ndr->flags & LIBNDR_FLAG_OBJECT_PRESENT) logic behind a
define
s4:librpc: compile python bindings for dcerpc.idl
s4:pyrpc: add py_dcerpc_syntax_init_helper()
s4:pyrpc: add base.transfer_syntax_ndr*()
pidl:Samba4/Python: add interface.abstract_syntax() to each interface
s4:librpc/rpc: remember "ncalrpc_dir" on the dcerpc_pipe->binding
Revert "s4:tls_tstream: allow mode of SSL keyfile to be 0400, not only
0600"
wafsamba: require a ';' after STATIC_*_MODULES_PROTO
wafsamba: port optional 'pkg' option from CHECK_BUNDLED_SYSTEM_PKG() to
CHECK_BUNDLED_SYSTEM()
wafsamba: simplify CHECK_BUNDLED_SYSTEM_PKG() by just calling
CHECK_BUNDLED_SYSTEM()
wafsamba: allow CHECK_BUNDLED_SYSTEM() to check headers without functions
wafsamba: allow optional 'checkcode' argument to CHECK_BUNDLED_SYSTEM()
wafsamba: simplify LIB_MAY_BE_BUNDLED()
wafsamba: simplify LIB_MUST_BE_BUNDLED()
wafsamba: allow --bundled-libraries=NONE,popt
wafsamba: allow --bundled-libraries=ALL,!popt
lib/zlib: make use of conf.CHECK_BUNDLED_SYSTEM()
tdb: don't alter errno on success of tdb_open_ex()
tdb/tools: avoid const warnings in tdbdump.c
tdb/test: always call fflush() after [f]printf() in tap-interface.h
tdb/test: remove "\n" in diag() arguments
tdb/test: avoid const warnings by using 'discard_const_p(uint8_t,'
instead of '(void *)'
tdb/wscript: maintain a global list of unit tests
lib/util: declare smb_panic_default() as _NORETURN_
lib/util: fix const warnings
libcli/security: s/remove/remove_ace/
librpc/idl: remove unused [gensize] from DNS_RPC_RECORD_STRING
examples/libsmbclient: avoid some compiler warnings
libcli/auth: s/encrypt/do_encrypt
libcli/lsarpc: add struct trustAuthInOutBlob; forward declaration
s3:lib: fix a const warning in client_match()
s3:lib/smbconf: fix const warnings in testsuite.c
s3:lib/netapi: fix some incompatible pointer type warnings in
NetGetJoinableOUs_l()
s3:lib/netapi/examples: fix invalid pointer value warnings in
getjoininformation.c
s3:lib/netapi/examples: fix const warnings in netlogon_control2.c
s3:lib/netapi/examples: remove unused variables
s3:registry: fix invalid pointer type warning in reg_format.c
s3:smbd: avoid compiler warnings in smbd_tevent_trace_callback()
s3:smbd: let srvstr_pull_req_talloc() take 'const uint8_t *src'
s3:torture: avoid explicit casting and compiler warnings in pdbtest.c
s3:torture: remove unused variables in test_buffersize.c
s3:torture: check the result of cli_nt_delete_on_close_recv() in
test_notify.c
s3:torture: avoid compiler warnings in vfstest.c
s3:utils: avoid argv related const warnings
s3:utils: use char packet[] in smbfilter.c to avoid warnings
s3:utils: check the status of open_socket_out() correctly in smbfilter.c
s3:utils: explicitly check the return value of fscanf() to avoid unused
warnings in smbta-util.c
s3:winbindd: avoid argv related const warnings
s4:libcli/resolve: avoid some const warnings
s4:auth/gensec: include gensec_krb5_util.h in gensec_krb5_util.c
s4:auth/gensec: fix declaration after code warning in gensec_tstream.c
s4:auth: avoid str_list related const warnings
s4:auth/ntlm: add auth4_sam_init() prototype to avoid a warning
s4:ntvfs/common: explicitly check the status of imessaging_send() in
notify_send()
s4:ntvfs/posix: avoid const warnings in pvfs_resolve_name_handle()
s4:ntvfs/posix: correctly reset errno on success in pvfs_sys_mkdir()
s4:ntvfs/sysdep: add sys_notify_inotify_init() prototype to avoid a
warning
s4:smb_server/smb: fix declaration after code warnings in negprot.c
s4:smb_server/smb: fix invalid pointer type warnings in negprot.c
s4:dsdb/ldb_modules: avoid declaration after code warnings
s4:dsdb/ldb_modules: avoid str_list related const warnings
s4:dsdb/ldb_modules: avoid invalid pointer type warnings
auth/tests: add missing #include "torture/local/proto.h"
lib/compression/tests: add missing #include "torture/local/proto.h"
lib/util/tests: add missing #include "torture/local/proto.h"
lib/nss_wrapper/tests: add missing #include "torture/local/proto.h"
lib/socket_wrapper/tests: add missing #include "torture/local/proto.h"
lib/tdr/tests: add missing #include "torture/local/proto.h"
lib/tevent/tests: add missing #include "torture/local/proto.h"
s4:lib/tests: add missing #include "torture/local/proto.h"
s4:libcli/tests: add missing #include "torture/local/proto.h"
s4:librpc/tests: add missing #include "torture/local/proto.h"
s4:param/tests: add missing #include "torture/local/proto.h"
s4:torture/local: add missing #include "torture/local/proto.h"
s4:torture/local: only pass prefix strings to tdb_add_record() in
dbspeed.c
s4:torture/ldap: add includes to avoid compiler warnings
s4:torture: avoid argv related const warnings
s4:torture/libnet: add missing #include "torture/libnet/proto.h"
s4:torture/unix: add missing #include "torture/unix/proto.h"
s4:torture/nbt: add missing #include "torture/nbt/proto.h"
s4:torture/ntp: add missing #include "torture/ntp/proto.h"
s4:torture/nbt: avoid str_list related const warnings
s4:torture/nbt: remove unused variable
s4:torture/winbind: remove unused variable
s4:torture/rpc: avoid declaration after code warnings
s4:torture: avoid const warnings in smbtorture.c
wafsamba: use multiple conf.ADD_CFLAGS() lines for developer CFLAGS
wafsamba: use -Werror=declaration-after-statement if available
wafsamba: split out a conf.ADD_NAMED_CFLAGS() function
wafsamba: add an optional allow_warnings(default=True) to CURRENT_CFLAGS()
wafsamba: add optional allow_warnings(default=True) to
SAMBA_{SUBSYSTEM,LIBRARY,MODULE}()
s4:heimdal_build: explicitly pass allow_warnings=True to CURRENT_CFLAGS()
lib/ccan: explicitly use allow_warnings=True
lib/ntdb: explicitly use allow_warnings=True for ntdb-test-helpers
lib/ldb: explicitly use allow_warnings=True
lib/popt: explicitly use allow_warnings=True
lib/zlib: explicitly use allow_warnings=True
lib/socket_wrapper: explicitly use allow_warnings=True
auth/kerberos: explicitly use allow_warnings=True
s3:modules: explicitly use allow_warnings=True were needed
s3:pam_smbpass: explicitly use allow_warnings=True
s3:rpc_server: explicitly use allow_warnings=True for RPC_SPOOLSS
s3:wscript_build: explicitly use allow_warnings=True where needed
s4:lib/com: explicitly use allow_warnings=True
s4:lib/events: explicitly use allow_warnings=True
s4:lib/messaging: explicitly use allow_warnings=True
s4:lib/registry: explicitly use allow_warnings=True
s4:lib/tls: explicitly use allow_warnings=True
s4:librpc: explicitly use allow_warnings=True where needed
s4:auth/gensec: explicitly use allow_warnings=True for gssapi and sasl
modules
s4:kdc: explicitly use allow_warnings=True for MIT_SAMBA
s4:rpc_server: explicitly use allow_warnings=True where needed
s4:ntvfs/unixuid: explicitly use allow_warnings=True
s4:torture/libnetapi: explicitly use allow_warnings=True
s4:torture/smb2: explicitly use allow_warnings=True
s4:torture/winbind: explicitly use allow_warnings=True
s4:torture/wscript_build: explicitly use allow_warnings=True where needed
wafsamba: explicitly use allow_warnings=True for SAMBA_PYTHON()
s4:dsdb/util_samr: simplify dsdb_add_user()
s4:auth/sam: use a higher time resolution in authsam_account_ok()
s4:dsdb/samldb: add let lockoutTime=0 reset badPwdCount=0
s4:dsdb/samldb: remove fantasy code from
samldb_user_account_control_change()
libds: add UF_PARTIAL_SECRETS_ACCOUNT to UF_ACCOUNT_TYPE_MASK
s4:dsdb/samldb: rework samldb_user_account_control_change()
s4:rpc_server/samr: passdown unmodified acct_flags to the ldb layer.
s3:lib: use stack buffers in drain_socket() and default_sys_recvfile()
s3:smbXsrv_open: allow now==0 to skip the idle_time update.
s3:smbd: use smb1srv_open_lookup() in is_valid_writeX_buffer()
s3:smb2_server: use the same logic to avoid recvfile() for IPC/PRINT
shares
s3:smb2_server: make sure we don't try recvfile for special NBT messages
s3:smb2_write: allow SMBD_SMB2_IN_DYN_LEN() to be 0 for the recvfile case.
s3:smb2_server: prepare smbd_smb2_request_verify_sizes() for the
optimized recvfile() case
s3:smb2_server: only allocate the required buffer in the smb2 recvfile()
code path
s3:smb2_server: remove unused get_min_receive_file_size() wrapper function
libcli/smb: add smb_signing_is_desired()
s3:smbd: always allow SMB1 signing, but only announce it if configured.
s3:auth: allow special SYSTEM and ANONYMOUS handling in
auth3_generate_session_info()
auth/gensec: use auth_ctx->generate_session_info() for schannel
s3:rpc_client: pass everything to gensec by default
s3:rpc_server: handle everything but AUTH_TYPE_NONE as gensec in
verify_final
s3:rpc_server: make sure we have a unix token
s3:rpc_server: let auth_generic_server_step() handle gensec_security ==
NULL
s3:rpc_server: pass everything but AUTH_TYPE_{NONE,NCALRPC_AS_SYSTEM} to
gensec
s3:rpc_client: Use gensec for NCALRPC_AS_SYSTEM.
ldb:pyldb: add some const to PyObject_FromLdbValue()
ldb:pyldb: fix doc string for set_extended_component()
ldb:pyldb: add some more helper functions for LdbDn
ldb: change version to 1.1.17
Volker Lendecke (66):
smbd: Explicitly pass "file_id" to rename_open_files
smbd: Explicitly pass "file_id" to schedule_defer_open
smbd: Use fsp->file_id in open_file_ntcreate
smbd: Explicitly pass "file_id" to rename_share_filename
smbd: Avoid checking the_lock->id for fresh locks
smbd: Keep "the_lock"s file id separately
smbd: Remove unused "share_mode_data->id"
pthreadpool: Add a simple benchmark
pthreadpool: Avoid a malloc/free per job
pthreadpool: Allow multiple jobs to be received
asys: Allow multiple results to be received
smbd: Use asys_results
lib: Fix blank line endings
lib: Pull up lp_ctx use one level
lib: Add interim tdb_wrap_open_ without lp_ctx
param: Add lpcfg_tdb_hash_size()
param: Add lpcfg_tdb_flags()
secrets: Avoid passing lp_ctx to tdb_wrap_open in randseed_init
dsdb: Avoid passing lp_ctx to tdb_wrap_open in schema_metadata_open
dsdb: Avoid passing lp_ctx to tdb_wrap_open in partition_metadata_open
torture: Avoid passing lp_ctx to tdb_wrap_open in test_tdb_speed
ntvfs: Avoid passing lp_ctx to tdb_wrap_open in pvfs_setup_options
ntvfs: Avoid passing lp_ctx to tdb_wrap_open in py_wrap_getxattr
imessaging: Avoid passing lp_ctx to tdb_wrap_open in irpc_namedb_open
dbwrap: Avoid passing lp_ctx to tdb_wrap_open in db_open_tdb
messaging: Avoid passing lp_ctx to tdb_wrap_open in messaging_tdb_init
messaging: Avoid passing lp_ctx to tdb_wrap_open in
messaging_tdb_parent_init
vfs: Avoid passing lp_ctx to tdb_wrap_open in posix_eadb_init
serverid: Avoid passing lp_ctx to tdb_wrap_open in serverid_parent_init
dbwrap: Avoid passing lp_ctx to tdb_wrap_open in db_open_ctdb
mutex: Avoid passing lp_ctx to tdb_wrap_open in grab_named_mutex
ntvfs: Avoid passing lp_ctx to tdb_wrap_open in py_wrap_setxattr
tdb_wrap: Remove tdb_wrap_open_ again
messaging4: Add "goto fail" to imessaging_init
messaging4: Add some NULL checks
messaging4: Store a names_db handle in the imessaging_context
messaging4: Remove lp_ctx from imessaging_context
messaging4: Simplify irpc_namedb_open a bit
dlinklist: Fix a typo
lib: Add poll_funcs
lib: Add unix_msg
lib: Move full_path_tos to util_str.c
lib: Add messaging_dgm
lib: Remove messages_local
smbd: Add a timestamp to queued notify events
smbd: Pass timespec_current to notify_fsp
smbd: Pass timespec_current through the notify_callback
lib: Introduce iov_buflen
lib: Add iov_buf
messaging3: Add messaging_send_iov
smbd: Pass on a timestamp in MSG_PVFS_NOTIFY
smbd: Sort notify events by timestamp
printing_cups: Call the msg_ctx destructor on exit
smbcontrol: Clean up the msg_ctx
smbd: Always clean up the child's msg_ctx
messaging_dgm: Add messaging_dgm_wipe
smbcontrol: Add dgm-cleanup command
smbd: Call the msg_ctx destructor for background jobs
s3: messaging: Add infrastructure to clean up orphaned sockets every 15
minutes as a background task.
messaging3: Fix formatting
torture3: Add a bit more coverage to messaging_read
messaging3: Make "presult" optional in messaging_read_recv
messaging3: Fix messaging_read_send/recv
torture3: Add local-messaging-read1
torture3: Add a test deleting a different req
ctdb: Fix a comment typo
-----------------------------------------------------------------------
--
Samba Shared Repository
