[Pkg-samba-maint] samba and ldb updates for bullseye-security

[Michael Tokarev]

08.08.2022 21:20, Salvatore Bonaccorso wrote:
...

> So wanted to go ahead with the DSA release but did some additional
> testing and it seems we have a problem:
> 
> samba-dsdb-modules for instance has Depends on
> 
> libldb2 (<< 2:2.2.5~), libldb2 (>> 2:2.2.4~)
> 
> and in fact now we cannot install:

Wow. This is what you warned about before, but which I didn't understand
at that time. It is the place which took quite some effort to fix for real
in a later version where libldb is built from the samba sources (4.16+).

samba build instructions use pkg-config to get version of installed libldb.
And the patch modifies this version, but keeps source version the same.
So the result is that samba package uses non-existing *debian* version of
libldb in Requires: field.

samba-dsdb-modules is the package I did not test, actually.

Now this is interesting.  I can cut out the part of upstream patch which
modifies internal version number (I'll have to patch the upstream symbols
file at the same time), - this will keep old upstream version after patching
and the internal version will match debian source version. Or I can patch
the samba build instructions (d/rules) to use debian version of libldb
package instead of pkg-config version.  Both are ugly but both will work.
I'll see which way is better.

Overall, samba in bullseye becomes more and more ugly and hackish... :(

BTW, after fixing this mess, should I increase the debian revision number
(~deb11u5 => ~deb11u6) or can I keep the same u5?

Thanks,

/mjt