[SCM] Samba Shared Repository - annotated tag samba-3.5.13 created

[Karolin Seeger]

The annotated tag, samba-3.5.13 has been created
at  c05868166c2b997bbd59bdb380244e634d5c60c2 (tag)
   tagging  e2250ba709a400e1d9a263ee6e885637f8369ca5 (commit)
  replaces  samba-3.5.12
 tagged by  Karolin Seeger
on  Sun Mar 11 20:32:22 2012 +0100

- Log -
tag samba-3.5.13
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.15 (GNU/Linux)

iD8DBQBPXP3bbzORW2Vot+oRAvUoAKCGpuq6jyrY/4xAbvO215yrgqIFDwCfYOll
5c3Qrj9+hGpe/WgR9CoW3Sw=
=37wY
-END PGP SIGNATURE-

Andreas Schneider (6):
  s3-winbind: Don't fail on users without a uid.
  docs: Add missing prefixpath options for mount.cifs.
  s3-winbind: Add an update function for winbind cache.
  s3-winbind: Fix segfault if we can't map the last user.
  s3-winbind: Move finding the domain to it's own function.
  s3-libsmb: Don't duplicate kerberos service tickets.

Andrew Bartlett (1):
  s3-libsmb Do not limit read replies to NBT packet sizes

Björn Jacke (1):
  s3/doc: document the ignore system acls option of vfs_acl_xattr and 
vfs_acl_tdb

Christian Ambach (1):
  s3:winbind add timeouts to winbind cache

Günther Deschner (2):
  examples: Fix perl path.
  s3-libads: fix malloc/talloc mismatch in ads_keytab_verify_ticket().

Jeff Layton (1):
  manpage: add more undocumented options to mount.cifs manpage

Jeremy Allison (16):
  Fix bug #8561 - Password change settings not fully observed.
  Fix bug 8631 - POSIX ACE x permission becomes rx following mapping to and 
from a DACL Reported by David Disseldorp. Fix based on a patch by David.
  Fix bug #8521 - winbindd cache timeout expiry test was reversed
  Fix bug #8644 - vfs_acl_xattr and vfs_acl_tdb modules can fail to add 
inheritable entries on a directory with no stored ACL.
  Fix bug #8679 - recvfile code path using splice() on Linux leaves data in 
the pipe on short write
  Second part of fix for bug #8679 - recvfile code path using splice() on 
Linux leaves data in the pipe on short write.
  Third part of fix for bug #8679 - recvfile code path using splice() on 
Linux leaves data in the pipe on short write.
  Final part of fix for bug #8679 - recvfile code path using splice() on 
Linux leaves data in the pipe on short write.
  Fix bug #8687 - net memberships usage info is wrong
  Fix bug #8664 - Renaming a symlink fails if the symlink target is outside 
of the share.
  First part of fix for bug #8663 - deleting a symlink fails if the symlink 
target is outside of the share.
  Second part of fix for bug #8663 - deleting a symlink fails if the 
symlink target is outside of the share.
  Third part of fix for bug #8663 - deleting a symlink fails if the symlink 
target is outside of the share.
  First part of fix for bug #8673 - NT ACL issue.
  Second part of fix for bug #8673 - NT ACL issue.
  Fix bug 8636 - When returning an ACL without SECINFO_DACL requested, we 
still set SEC_DESC_DACL_PRESENT in the type field.

Karolin Seeger (6):
  VERSION: Bump version up to 3.5.13.
  WHATSNEW: Start release notes for 3.5.13.
  s3/packaging: Fix rpm build issues on RHEL.
  s3/packaging: Fix rpm build issues on RHEL4.
  WHATSNEW: Start to add changes since 3.5.12.
  WHATSNEW: Update 3.5.13 release notes.

Masafumi Nakayama (1):
  s3-cli: fix bug 563, >8GB tar on BE machines

Matthieu Patou (2):
  s3-winbindd: set the can_do_validation6 also for trusted domain
  s3-winbindd: Close netlogon connection if the status returned by the 
NetrSamLogonEx call is timeout in the pam_auth_crap path

Michael Adam (2):
  s3:loadparm: add reload_registry_shares() - reload only those shares 
already loaded (cherry picked from commit 
ec113a58a4dc4e4f3ea03f7818eb312325f69482)
  s3:loadparm: fix the reload of the configuration: also reload activated 
registry shares

Richard Sharpe (1):
  Improve configure.in so it can be used outside the Samba source tree.

Stefan Metzmacher (8):
  libcli/auth: debug the given computer name creds might be NULL
  libcli/auth: only expose creds to the caller on success
  s3:rpc_server/srv_netlogon: make sure we don't use an unitialized variable
  s3:libsmb: fix cli_write_and_x() against OS/2 print shares (bug #5326)
  s3:libsmb: consistently use state->size in cli_write_andx_create() (bug 
#5326)
  s3:lib/ctdbd_conn: try ctdbd_init_connection() as root (bug #8684)
  libcli/cldap: fix a crash bug in cldap_socket_recv_dgram() (bug #8593)
  s3:client: ignore SMBecho errors (the server may not support it) (bug 
#8139) Signed-off-by: Jeremy Allison 

Volker Lendecke (2):
  s3: Attempt to fix the vfs_commit module
  Fix bug #8686 - Packet validation checks can be done before length 
validation causing uninitialized memory read.

---


-- 
Samba Shared Repository

[SCM] Samba Shared Repository - branch v3-5-stable updated

[Karolin Seeger]

The branch, v3-5-stable has been updated
   via  e2250ba WHATSNEW: Update 3.5.13 release notes.
   via  5a20ab5 WHATSNEW: Start to add changes since 3.5.12.
   via  e3051e7 s3-winbindd: Close netlogon connection if the status 
returned by the NetrSamLogonEx call is timeout in the pam_auth_crap path
   via  ca113c3 s3-winbindd: set the can_do_validation6 also for trusted 
domain
   via  fc1fae9 s3:loadparm: fix the reload of the configuration: also 
reload activated registry shares
   via  b77d5dc s3:loadparm: add reload_registry_shares() - reload only 
those shares already loaded (cherry picked from commit 
ec113a58a4dc4e4f3ea03f7818eb312325f69482) (cherry picked from commit 
bc5a7f23e1e909a2196a1038da20c3391c922614)
   via  713e927 s3:client: ignore SMBecho errors (the server may not 
support it) (bug #8139) Signed-off-by: Jeremy Allison  (cherry 
picked from commit bb28a9387d3c76f6f8c7f79ec61d37a499d6c8f6) (cherry picked 
from commit 461adc665aaadc730d7705b3785d45f787f98425)
   via  366c9a7 s3-libsmb Do not limit read replies to NBT packet sizes
   via  8a5975a Fix bug 8636 - When returning an ACL without SECINFO_DACL 
requested, we still set SEC_DESC_DACL_PRESENT in the type field. (cherry picked 
from commit f0c4e96cb4419015a9082e05ffc65bb370aede48)
   via  1d7ebc6 Second part of fix for bug #8673 - NT ACL issue.
   via  6c0b221 First part of fix for bug #8673 - NT ACL issue.
   via  6c15644 Third part of fix for bug #8663 - deleting a symlink fails 
if the symlink target is outside of the share.
   via  7b61a2d Second part of fix for bug #8663 - deleting a symlink fails 
if the symlink target is outside of the share.
   via  f0f9d4b First part of fix for bug #8663 - deleting a symlink fails 
if the symlink target is outside of the share.
   via  4d3c098 Fix bug #8664 - Renaming a symlink fails if the symlink 
target is outside of the share. (cherry picked from commit 
33fd99946178e3c2649b289580b1ae1285c46d23)
   via  3fca061 s3-libads: fix malloc/talloc mismatch in 
ads_keytab_verify_ticket().
   via  7f055e5 libcli/cldap: fix a crash bug in cldap_socket_recv_dgram() 
(bug #8593)
   via  0f6999f s3:lib/ctdbd_conn: try ctdbd_init_connection() as root (bug 
#8684)
   via  0c6c5a4 Fix bug #8686 - Packet validation checks can be done before 
length validation causing uninitialized memory read. (cherry picked from commit 
24ac26ddfd9ee8841d1984e710a4dfe535b9abcf) (cherry picked from commit 
93c76f96b82ec27be97c390cd1ef5d965766e273)
   via  2376414 Fix bug #8687 - net memberships usage info is wrong
   via  01e994a s3-libsmb: Don't duplicate kerberos service tickets.
   via  1e4d95e Final part of fix for bug #8679 - recvfile code path using 
splice() on Linux leaves data in the pipe on short write.
   via  b523851 Third part of fix for bug #8679 - recvfile code path using 
splice() on Linux leaves data in the pipe on short write.
   via  87dd891 Second part of fix for bug #8679 - recvfile code path using 
splice() on Linux leaves data in the pipe on short write.
   via  7413c4b Fix bug #8679 - recvfile code path using splice() on Linux 
leaves data in the pipe on short write
   via  2d173f3 s3-cli: fix bug 563, >8GB tar on BE machines
   via  f13f4d1 s3-winbind: Move finding the domain to it's own function.
   via  b6931cd s3-winbind: Fix segfault if we can't map the last user.
   via  24bf25c Fix bug #8644 - vfs_acl_xattr and vfs_acl_tdb modules can 
fail to add inheritable entries on a directory with no stored ACL.
   via  53c3f46 s3-winbind: Add an update function for winbind cache.
   via  d5753e2 Fix bug #8521 - winbindd cache timeout expiry test was 
reversed
   via  b865a51 s3:winbind add timeouts to winbind cache
   via  4509eed s3/doc: document the ignore system acls option of 
vfs_acl_xattr and vfs_acl_tdb
   via  365d8b2 manpage: add more undocumented options to mount.cifs manpage
   via  80c64ea docs: Add missing prefixpath options for mount.cifs.
   via  fc036bf s3: Attempt to fix the vfs_commit module
   via  d300b44 Fix bug 8631 - POSIX ACE x permission becomes rx following 
mapping to and from a DACL Reported by David Disseldorp. Fix based on a patch 
by David.
   via  c24646f Improve configure.in so it can be used outside the Samba 
source tree.
   via  906d384 s3-winbind: Don't fail on users without a uid.
   via  048ad02 s3/packaging: Fix rpm build issues on RHEL4.
   via  7e5acdc0 s3/packaging: Fix rpm build issues on RHEL.
   via  605d202 s3:libsmb: consistently use state->size in 
cli_write_andx_create() (bug #5326)
   via  53ff088 s3:libsmb: fix cli_write_and_x() against OS/2 print shares 
(bug #5326)
   via  c40c0d1 Fix bug #8561 - Password change settings not fully 
observed. (cherry picked from commit 467a586b3b25f632a5b9ca58abf428a546d97740)
   via  bf430e5 examples: Fix perl path.
   via  914f88b s3

[SCM] Samba Website Repository - branch master updated

[Karolin Seeger]

The branch, master has been updated
   via  4a461a3 Announce Samba 3.5.13.
  from  bb0151a Update to use conservancy's paypal account

http://gitweb.samba.org/?p=samba-web.git;a=shortlog;h=master


- Log -
commit 4a461a340f2e4e49bc6a2c0335caa3724ac04b72
Author: Karolin Seeger 
Date:   Sun Mar 11 20:56:38 2012 +0100

Announce Samba 3.5.13.

Karolin

---

Summary of changes:
 generated_news/latest_10_bodies.html|   22 +++
 generated_news/latest_10_headlines.html |4 +-
 generated_news/latest_2_bodies.html |   18 +++---
 history/header_history.html |1 +
 history/samba-3.5.13.html   |  119 +++
 5 files changed, 140 insertions(+), 24 deletions(-)
 create mode 100755 history/samba-3.5.13.html


Changeset truncated at 500 lines:

diff --git a/generated_news/latest_10_bodies.html 
b/generated_news/latest_10_bodies.html
index c1cd654..4d579a2 100644
--- a/generated_news/latest_10_bodies.html
+++ b/generated_news/latest_10_bodies.html
@@ -1,3 +1,12 @@
+   12 March 2012
+   Samba 3.5.13 Available for Download
+   This is the latest stable release of the Samba 3.5 series.
+
+The uncompressed tarballs and patch files have been signed
+using GnuPG (ID 6568B7EA).  The source code can be
+http://samba.org/samba/ftp/stable/samba-3.5.13.tar.gz";>downloaded
+now. A http://samba.org/samba/ftp/patches/patch-3.5.12-3.5.13.diffs.gz";>patch 
against Samba 3.5.12 is also available. See http://samba.org/samba/history/samba-3.5.13.html";>the release notes for 
more info.
+
23 February 2012
Samba pre-3.4 Security Issue
Patches for http://www.samba.org/samba/ftp/patches/security/samba-3.0-CVE-2012-0870.patch";>3.0,
 http://www.samba.org/samba/ftp/patches/security/samba-3.2-CVE-2012-0870.patch";>3.2,
 http://www.samba.org/samba/ftp/patches/security/samba-3.3-CVE-2012-0870.patch";>and
 3.3 got released in order to address http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-CVE-2012-0870";>CVE-2012-0870
 (Remote code execution vulnerability in smbd).
@@ -76,16 +85,3 @@ nice enough to write a comprehensive summary with some focus 
on
 using GnuPG (ID 6568B7EA).  The source code can be
 http://samba.org/samba/ftp/stable/samba-3.4.15.tar.gz";>downloaded
 now. A http://samba.org/samba/ftp/patches/patch-3.4.14-3.4.15.diffs.gz";>patch 
against Samba 3.4.15 is also available. See http://samba.org/samba/history/samba-3.4.15.html";>the release notes for 
more info.
-
-
-   09 August 2011
-   The highlights of Samba 3.6
-   The major new release of the award-winning Free Software is the first
-free software SMB2 server, with improved printing and cluster file server
-support, simplified identity mapping, greater reliability, and extensively
-enhanced library components.
-
-   You like to know more details about the
-highlights of 3.6?
-
-
diff --git a/generated_news/latest_10_headlines.html 
b/generated_news/latest_10_headlines.html
index 7740819..2dd84b1 100644
--- a/generated_news/latest_10_headlines.html
+++ b/generated_news/latest_10_headlines.html
@@ -1,4 +1,6 @@
 
+12 March 2012 Samba 3.5.13 Available for 
Download
+
 23 February 2012 Samba pre-3.4 Security 
Issue
 
 29 January 2012 Samba 3.6.3 Security Release 
Available for Download
@@ -16,6 +18,4 @@
 26 September 2011 2011 SNIA SDC 
Report
 
 23 August 2011 Samba 3.4.15 Available for 
Download
-
-09 August 2011 The 
highlights of Samba 3.6
 
diff --git a/generated_news/latest_2_bodies.html 
b/generated_news/latest_2_bodies.html
index f0dbcea..e439ee1 100644
--- a/generated_news/latest_2_bodies.html
+++ b/generated_news/latest_2_bodies.html
@@ -1,14 +1,14 @@
+   12 March 2012
+   Samba 3.5.13 Available for Download
+   This is the latest stable release of the Samba 3.5 series.
+
+The uncompressed tarballs and patch files have been signed
+using GnuPG (ID 6568B7EA).  The source code can be
+http://samba.org/samba/ftp/stable/samba-3.5.13.tar.gz";>downloaded
+now. A http://samba.org/samba/ftp/patches/patch-3.5.12-3.5.13.diffs.gz";>patch 
against Samba 3.5.12 is also available. See http://samba.org/samba/history/samba-3.5.13.html";>the release notes for 
more info.
+
23 February 2012
Samba pre-3.4 Security Issue
Patches for http://www.samba.org/samba/ftp/patches/security/samba-3.0-CVE-2012-0870.patch";>3.0,
 http://www.samba.org/samba/ftp/patches/security/samba-3.2-CVE-2012-0870.patch";>3.2,
 http://www.samba.org/samba/ftp/patches/security/samba-3.3-CVE-2012-0870.patch";>and
 3.3 got released in order to address http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-CVE-2012-0870";>CVE-2012-0870
 (Remote code execution vulnerability in smbd).
 
 See http://www.samba.org/samba/security/CVE-2012-0870.html";>the 
security announcement for mo

autobuild: intermittent test failure detected

[autobuild]

The autobuild test system has detected an intermittent failing test in 
the current master tree.

The autobuild log of the failure is available here:

   http://git.samba.org/autobuild.flakey/2012-03-12-1028/flakey.log

The samba3 build logs are available here:

   http://git.samba.org/autobuild.flakey/2012-03-12-1028/samba3.stderr
   http://git.samba.org/autobuild.flakey/2012-03-12-1028/samba3.stdout

The source4 build logs are available here:

   http://git.samba.org/autobuild.flakey/2012-03-12-1028/samba4.stderr
   http://git.samba.org/autobuild.flakey/2012-03-12-1028/samba4.stdout
  
The top commit at the time of the failure was:

commit 8af7dadca2c820e125c6059eef62e2a4c76f7ff3
Author: Jelmer Vernooij 
Date:   Sun Mar 11 23:56:56 2012 +0100

selftest.run: Use subunit version of iso8601.

Autobuild-User: Jelmer Vernooij 
Autobuild-Date: Mon Mar 12 01:36:25 CET 2012 on sn-devel-104

[SCM] CTDB repository - branch master updated - ctdb-1.13-3-gf066349

[Ronnie Sahlberg]

The branch, master has been updated
   via  f06634951331232cddf0b48eac3552b92aca5b93 (commit)
  from  68390cb1e8c7f30be034b8ca6c9215b40147305b (commit)

http://gitweb.samba.org/?p=ctdb.git;a=shortlog;h=master


- Log -
commit f06634951331232cddf0b48eac3552b92aca5b93
Author: Ronnie Sahlberg 
Date:   Mon Mar 12 16:09:32 2012 +1100

Test: add test tool and test that UPDATE_RECORD works on persistent 
databases

---

Summary of changes:
 Makefile.in|5 +
 tests/simple/72_update_record_persistent.sh|   89 +++
 ...only_loop.c => ctdb_update_record_persistent.c} |   91 +---
 3 files changed, 136 insertions(+), 49 deletions(-)
 create mode 100755 tests/simple/72_update_record_persistent.sh
 copy tests/src/{ctdb_fetch_readonly_loop.c => ctdb_update_record_persistent.c} 
(57%)


Changeset truncated at 500 lines:

diff --git a/Makefile.in b/Makefile.in
index 24283f3..9055a8f 100755
--- a/Makefile.in
+++ b/Makefile.in
@@ -85,6 +85,7 @@ TEST_BINS=tests/bin/ctdb_bench tests/bin/ctdb_fetch 
tests/bin/ctdb_fetch_one \
tests/bin/ctdb_randrec tests/bin/ctdb_persistent \
tests/bin/ctdb_traverse tests/bin/rb_test tests/bin/ctdb_transaction \
tests/bin/ctdb_takeover_tests tests/bin/ctdb_update_record \
+   tests/bin/ctdb_update_record_persistent \
tests/bin/ctdb_tool_libctdb tests/bin/ctdb_tool_stubby \
@INFINIBAND_BINS@
 
@@ -215,6 +216,10 @@ tests/bin/ctdb_update_record: $(CTDB_CLIENT_OBJ) 
tests/src/ctdb_update_record.o
@echo Linking $@
@$(CC) $(CFLAGS) -o $@ tests/src/ctdb_update_record.o 
$(CTDB_CLIENT_OBJ) $(LIB_FLAGS)
 
+tests/bin/ctdb_update_record_persistent: $(CTDB_CLIENT_OBJ) 
tests/src/ctdb_update_record_persistent.o 
+   @echo Linking $@
+   @$(CC) $(CFLAGS) -o $@ tests/src/ctdb_update_record_persistent.o 
$(CTDB_CLIENT_OBJ) $(LIB_FLAGS)
+
 tests/bin/ctdb_store: $(CTDB_CLIENT_OBJ) tests/src/ctdb_store.o 
@echo Linking $@
@$(CC) $(CFLAGS) -o $@ tests/src/ctdb_store.o $(CTDB_CLIENT_OBJ) 
$(LIB_FLAGS)
diff --git a/tests/simple/72_update_record_persistent.sh 
b/tests/simple/72_update_record_persistent.sh
new file mode 100755
index 000..d232b40
--- /dev/null
+++ b/tests/simple/72_update_record_persistent.sh
@@ -0,0 +1,89 @@
+#!/bin/bash
+
+test_info()
+{
+cat .
 */
 
-#include 
 #include "includes.h"
 #include "lib/tevent/tevent.h"
+#include "lib/util/db_wrap.h"
 #include "system/filesys.h"
 #include "popt.h"
 #include "cmdline.h"
 #include "ctdb_private.h"
 
-static struct ctdb_db_context *ctdb_db;
 
-const char *TESTKEY = "testkey";
-static int count;
-
-/*
-   Just try locking/unlocking a single record once
-*/
-static void fetch_lock_once(struct ctdb_context *ctdb, struct event_context 
*ev)
+static void update_once(struct ctdb_context *ctdb, struct event_context *ev, 
struct ctdb_db_context *ctdb_db, char *record, char *value)
 {
-   TALLOC_CTX *tmp_ctx = talloc_new(ctdb);
-   TDB_DATA key, data;
-   struct ctdb_record_handle *h;
-   static time_t t = 0, t2;
+   TDB_DATA key, data, olddata;
+   struct ctdb_ltdb_header header;
 
-   key.dptr = discard_const(TESTKEY);
-   key.dsize = strlen(TESTKEY);
+   memset(&header, sizeof(header), 0);
 
-// printf("Trying to fetch lock the record ...\n");
+   key.dptr  = (uint8_t *)record;
+   key.dsize = strlen(record);
 
-   h = ctdb_fetch_readonly_lock(ctdb_db, tmp_ctx, key, &data, true);
-   if (h == NULL) {
-   printf("Failed to fetch record '%s' on node %d\n", 
-   (const char *)key.dptr, ctdb_get_pnn(ctdb));
-   talloc_free(tmp_ctx);
-   exit(10);
-   }
+   data.dptr  = (uint8_t *)value;
+   data.dsize = strlen(value);
 
-   count++;
-   t2 = time(NULL);
-   if (t != 0 && t != t2) {
-   static int last_count = 0;
-
-   printf("count : %d\n", count - last_count);
-   last_count = count;
+   olddata = tdb_fetch(ctdb_db->ltdb->tdb, key);
+   if (olddata.dsize != 0) {
+   memcpy(&header, olddata.dptr, sizeof(header));
+   header.rsn++;
}
-   t = t2;
 
-   talloc_free(tmp_ctx);
+   if (ctdb_ctrl_updaterecord(ctdb, ctdb, timeval_zero(), 
CTDB_CURRENT_NODE, ctdb_db, key, &header, data) != 0) {
+   printf("Failed to update record\n");
+   exit(1);
+   }
 }
 
 /*
@@ -73,19 +58,25 @@ static void fetch_lock_once(struct ctdb_context *ctdb, 
struct event_context *ev)
 int main(int argc, const char *argv[])
 {
struct ctdb_context *ctdb;
-   TDB_DATA key;
+   char *test_db = NULL;
+   char *record = NULL;
+   char *value = NULL;
+   struct ctdb_db_context *ctdb_db;

autobuild: intermittent test failure detected

[autobuild]

The autobuild test system has detected an intermittent failing test in 
the current master tree.

The autobuild log of the failure is available here:

   http://git.samba.org/autobuild.flakey/2012-03-12-0824/flakey.log

The samba3 build logs are available here:

   http://git.samba.org/autobuild.flakey/2012-03-12-0824/samba3.stderr
   http://git.samba.org/autobuild.flakey/2012-03-12-0824/samba3.stdout

The source4 build logs are available here:

   http://git.samba.org/autobuild.flakey/2012-03-12-0824/samba4.stderr
   http://git.samba.org/autobuild.flakey/2012-03-12-0824/samba4.stdout
  
The top commit at the time of the failure was:

commit 8af7dadca2c820e125c6059eef62e2a4c76f7ff3
Author: Jelmer Vernooij 
Date:   Sun Mar 11 23:56:56 2012 +0100

selftest.run: Use subunit version of iso8601.

Autobuild-User: Jelmer Vernooij 
Autobuild-Date: Mon Mar 12 01:36:25 CET 2012 on sn-devel-104