Ubuntu
samba package

ffe for samba 3.0.28 to 3.0.28a

Bug #201442 reported by Chuck Short
4
Affects Status Importance Assigned to Milestone
samba (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Binary package hint: samba

I would like to ask for a feature freeeze exception to upgrade Samba from 3.0.28 to 3.0.28a. I have attached the changelog below, diffstat, and diff to follow shortly.

Changes since 3.0.28
--------------------

o Michael Adam <email address hidden>
    * Fix bug in version string's vendor tag.
    * Prevent net getdomainsid from crashing when called as non-root.
    * BUG 4801: Correctly implement LSA lookup levels for LookupNames.
    * Fixes for internal LookupNames() calls for unqualified users and
      groups.
    * Remove unnecessary functions when managing domain trust
      passwords.
    * Fix winbindd on a Samba DC talking to a trusted domain DC
      (again).
    * Consolidate the detection of the machine_account_name when
      obtaining trust credentials from the local database.
    * Refactor trust account database routines and session key
      management.
    * Fix retrieval of trusted domain password policies when
      authenticating a user (only when WBFLAG_PAM_GET_PWD is config
      flags is set).
    * Refactor Winbind's cm_connect_sam().
    * Enable building the notify_fam module.
    * Add "ldap debug level" and "ldap debug threshold" smb.conf options.

o Jeremy Allison <email address hidden>
    * Fix cut-n-paste bug when filling in form values for Printer
      info.
    * Fix SMB signing bug found by Volker.
    * Create locking.tdb when running smbstatus before smbd to avoid
      confusing error messages.
    * Add a portable version of strlcpy and strlcat.
    * BUG 4780: Cause user mounts to inherit uid= and gid= from the
      calling user when called as non-root, except when overridden on
      the command line. Original patch by Steve Langasek.
    * BUG 5802: Recent versions of Linux-PAM support localization of
      user prompts, so Samba must use the C locale when invoking PAM
    * Merge Vista principal detection changes by Andreas Schneider
      from 3.2 branch.
    * BUG 5121: Fix problems running unix passwd sync on streams based
      systems.
    + BUG 4612: Fix smbd crash when connecting from an OS/2 client.
    * Back port Volker's ACL fixes on newly create files form 3.2.
    * Ensure that send_getdc_request() matches the 3.2 code base.
    * BUG 3617: Fix crash in nmbd caused by referencing freed memory.
    * Fixes for issues reported by IBM checker.
    * Fixes for issues reported by Coverity.
    * Back port Volker's fix for nlink count.
    * Back port SAMR flag fixes from Matt Geddes
      <email address hidden>.
    ! BUG 4929: Cope with protected ACL set correctly (based on work
      from Jim McDonough).
    * Fix ACL set bug when group being set is the primary group.
    * Ensure NDR wire-reads of string types are always null
      terminated.
    ! BUG 5247: Fix mget wildcard expansion in smbclient.
    * Fix bug in SPNEGO negotiation.
    * BUG 3617: Fix "Invalid read of size 4" errors.
    + BUG 5267: Prevent nmbd from shutting down when no network
      interfaces can be located.

o Kai Blin <email address hidden>
    * libsmb: Do not upper-case target name on NTLMv2 hash generation.
    * Fix an incompatible pointer type warning.

o Gerald Carter <email address hidden>
    * Restrict the enctypes in the generated krb5.conf files to
      Win2003 types.

o Steven Danneman <email address hidden>
    * Error path memory leak fixes.

o Guenther Deschner <email address hidden>
    * Fix PAC decoding from Vista SP1 client.
    * Fix get_trust_creds() to return always an upper-cased krb5
      principal.
    * Back port additional fixes necessary for support Windows 2008
      domain joins from the 3.2 branch.

o Mathias Gug <email address hidden>
    * BUG 5802: Recent versions of Linux-PAM support localization of
      user prompts, so Samba must use the C locale when invoking PAM

o Steve Langasek <email address hidden>
    * BUG 3727: Fix smbpasswd abort when called by non-root user.
    * BUG 4784: Prevent umount.cifs from allowing all users to unmount shares.
    * BUG 5802: Recent versions of Linux-PAM support localization of
      user prompts, so Samba must use the C locale when invoking PAM

o Volker Lendecke <email address hidden>
    * When allocating a new vuid, also avoid partial ones. Also
      fully invalidate intermediate ones.
    * Fix error path exit in create_local_nt_token() to correctly roll
      back security contexts.
    * Fix valgrind warnings in nmbd.
    * Pointer initialization fixes in notify_marshall_changes().
    * BUG 5208: Fix uninitialized variables in vfs_hpuxacl.c (reported
      by David Leonard <email address hidden>).
    * Copy the 3.2 version of string_replace to 3.0.
    * Port SMB_FS_OBJECTID_INFORMATION from 3.2 (Patch by Corinna
      Vinschen).
    * Memory leak fixes.
    * Fix error code propagation from cli_session_setup_kerberos().
    * BUG 5217: Fix inotify detection.
    * BUG 5279: Correctly check return of rename().
    * BUG 5252: Fix confusing error messages in mount.cifs.
    * BUG 5307: Respect FAMChanged (Thanks to Ricardo Santos).
    * Work around a handle leak in XP 64 bit.

o Guenter Kukkukk <email address hidden>
    * OS/2 returns eclass == ERRDOS && ecode == ERRnofiles for a zero
      entry directory listing.

o Tom Maher <email address hidden>
    * BUG 5175: Support krb5 auth in smbcacls.

o Hans Mayer <email address hidden>
    * BUG 5141: Solaris 9 compile fix.

o Stefan Metzmacher <email address hidden>
    * Fix default printing system detection in libreplace.

o Laurent Pinchart <email address hidden>
    * BUG 5163: Return better error codes when a password cannot be
      set in and LDAP directory.

o Jiri Sasek <email address hidden>
    * BUG 4866: Correct password routine detection on Solaris.

o Andreas Schneider <email address hidden>
    * Remove trailing slashes on server names when parsing input from
      smbclient.
    ! Support Windows 2008 domain joins (variant of Todd Stecher's
      original patch).
    ! Add "administrative share" service parameter for defining hidden
      administrative shares that cannot be managed from Windows.

o Karolin Seeger <email address hidden>
    * Use the "ldap user suffix" when enumerating a users group
      memberships.

o Simo Sorce <email address hidden>
    * Don't assume NULL termination when copying the principal name
      in kerberos_get_default_realm_from_ccache().
    * Fix winbindd running on a Samba DC (again).

o Bo Yang <email address hidden>
    * Fix bad private_data pointer in winbindd_lookupname_async().

I have marked bugfixes in Ubuntu as '+' and important features as '!'.

I feel that there are several changes that is important for hardy that are needed for LTS, especially the Windows 2008 support.

It has built succesfully and I have been running it locally. I have intergrated changes from Debian's samba svn.

Revision history for this message
Chuck Short (zulcss) wrote :
Revision history for this message
Chuck Short (zulcss) wrote :
Revision history for this message
Martin Pitt (pitti) wrote :

This looks very reasonable to me, mostly bug fixes. The Win08 fixes are somewhere half in between new features and bug fixes, but I agree that we should definitively get them. So, please make sure that the beta gets it, for maximum testing exposure.

Changed in samba:
status: New → Confirmed
Revision history for this message
Chuck Short (zulcss) wrote :

Thanks uploaded this morning.

Regards
chuck

Steve Langasek (vorlon)
Changed in samba:
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.