[Pkg-samba-maint] [samba] branch master updated (385b9fc -> 4b71f60)
Jelmer Vernooij
jelmer at moszumanska.debian.org
Mon May 2 14:53:28 UTC 2016
This is an automated email from the git hooks/post-receive script.
jelmer pushed a change to branch master
in repository samba.
from 385b9fc Add patch no_build_system.patch: drop host-specific define that prevents reproducible builds.
adds deb3c9c start packaging 4.4 by reverting sure-to-conflict talloc-2.1.6 patch
adds 8767fc0 Change upstream branch to upstream_4.4
adds 8eb5731 VERSION: Bump version up to 4.4.0pre1
adds c3c024f WHATSNEW: Clear release notes for Samba 4.4.0pre1.
adds d7a33d8 vfs: Fix CID 1312073 Argument cannot be negative
adds 45e3b05 vfs: Fix CID 1312072 Failure to restore non-local value
adds 71b89b2 ctdb-tool: Correctly print timed out event scripts output
adds 00ec3c4 ctdb-daemon: Correctly process the exit code from failed eventscripts
adds 28e4616 tdb_wrap: Use talloc_pooled_object
adds 5f8bad2 tdb_wrap: Use a struct initializer
adds 509c37d tdb: Fix broken build with --disable-python
adds c596ac6 install_with_python: Secure Python download with sha256 checks.
adds 2443c34 s4-torture: don't build the lsa forest trust krb5 tests when building with MIT Kerberos.
adds 3d0b23d vfs: fix build warning in smb traffic analyzer.
adds adbd6d3 pidl: merge multiple 'genpad' implementations into one.
adds dc99d45 s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup.
adds f07b746 lib: replace: Add strsep function (missing on Solaris).
adds 1286b02 ctdb-client: Return the correct status sent from the daemon
adds 8eb04d0 ctdb-banning: If node is already banned, do not run ctdb_local_node_got_banned()
adds 952a504 ctdb-daemon: Check if updates are in flight when releasing all IPs
adds cef8897 s3:wscript: fix indentation
adds b9bef36 configure: add --with-gpfs option for selecting directory with gpfs headers
adds d57e4ac build: fix build with gpfs support - add missing dependency to samba-debug
adds 66bf0e5 smbXsrv: add a smbXsrv_connection argument to smbXsrv_session_local_lookup()
adds c765d11 smbXsrv: add a smbXsrv_connection argument to smb2srv_session_lookup_raw
adds d6acf95 smbXsrv: rename smb2srv_session_lookup -> smb2srv_session_lookup_conn
adds f6816ae smbXsrv: add smb2srv_session_lookup_client().
adds 19ec5f3 smbXsrv: use smb2srv_session_lookup_client in smbXsrv_session_close_loop
adds 8ab4b05 s3:smb2_sesssetup: check that the connection belongs to the session in sess.setup
adds 8c41cbb s3:smb2_server: defer channel/session validation to the session setup code.
adds 3c0f934 tests: Add regression test for s3-passdb: Respect LOOKUP_NAME_GROUP flag in sid lookup.
adds 1c4dc00 s4-kdc: Use smb_krb5_principal_get_(type|realm) in db-glue
adds 80509df s3-auth: Add MIT return code for KDC not reachable
adds 217d4c1 s4-auth: Call krb5_get_init_creds_opt_set_canonicalize() in MIT case.
adds b9203dc krb5-wrap: Use the principal returned by the KDC to create the ccache
adds 535035a s4-kdc: PAC_GLUE does not depend on hdb anymore.
adds 85a041b s4-kdc: Introduce sdb a KDC backend abstraction
adds 99d3719 s4-kdc: Introduce a simple sdb_hdb shim layer
adds d49b4aa s4-kdc: Use sdb in db-glue and hdb-samba4
adds a51ee19 s3:smb2_sesssetup: remove now unneeded declaration of smb2srv_session_lookup_raw
adds 56f2f2b lib/param: move function typedef to after forward declaration of struct loadparm_context
adds 5e463b5 smbXsrv_session:idl: add smbXsrv_session_auth0
adds e9885cf smbXsrv_session: add smbXsrv_session_find_auth()
adds 2c39036 smbXsrv_session: add smbXsrv_session_create_auth()
adds d391f6d s3:smb2_sesssetup: use session->pending_auth
adds 321862d s3:sesssetup: use session->pending_auth in smb1 session setup
adds 86dd7b9 smbXsrv_session:idl: remove the preauth and gensec members
adds 38136c1 source3 torture: don't segfault if filename query fails
adds 5af738a dcom: remove trailing whitespace from dcom.idl
adds b36aa1e orpc: remove trailing whitespace from orpc.idl
adds a6976b2 oxidresolver: remove trailing whitespace from oxidresolver.idl
adds 5bc2f91 remact: remove trailing whitespace from remact.idl
adds 82be958 s4-torture: remove trailing whitespace from oxidresolve test.
adds 3aaeaea s4-torture: remove trailing whitespace from remact test.
adds 8b5536a oxidresolver: fix indent of ResolveOxid2 in IDL.
adds 22c9f11 dcom: fix ident in dcom.idl.
adds b3b7701 oxidresolver: fix indent in oxidresolver.idl
adds 71051a9 remact: fix indent of remact.idl
adds abf0188 s4-torture: fix indent of remact test.
adds 1baf31e rot: remove trailing whitespace from rot.idl
adds 08e6d24 rot: fix indent in rot.idl
adds 7b155c3 oxidresolver: fix ServerAlive2 IDL and test.
adds 0cf5c89 s4-torture: use torture_assert macros for RemoteActivation test.
adds 60be14a remact: fix IDL for RemoteActivation.
adds 2ec5918 s4-torture: fix test for RemoteActivation.
adds 03b59a8 s4-torture: fix remact test from crashing.
adds 04e1f2e lib/torture: add torture_assert_hresult_{equal,ok} macros.
adds 195faed remact: use HRESULT in RemoteActivation IDL and tests.
adds a0544cb remact: use imp_levels enum in RemoteActivation IDL.
adds f6f5438 s4-torture: fix ResolveOxid test, filling in missing ref,out pointers.
adds 4e5ee71 s4-torture: fix ResolveOxid2 test, filling in missing ref,out pointers.
adds 7e60050 lib/dcom: use HRESULT in dcom_create_object.
adds eab9417 param: make set_variable() static.
adds 04da5a8 param: accompany FN_LOCAL_PARM_CHAR with FN_LOCAL_CHAR
adds a4aaea6 s3:lib: remove unused dummyparam.c
adds 64b720d docs:smbdotconf: make formatting of headers uniform.
adds c3fc084 docs:smbdotconf: fix type of "preferred master" parameter.
adds 9abf7b4 docs:smbdotconf: fix context of 'include' in doc
adds 3bd477e tests: teach the docs test about boolean-rev
adds c72defc docs:smbdotconf: fix type to bool-rev for reverse synonyms.
adds 854bbaf docs:smbdotconf: add param flag 'synonym' to the DTD
adds 4bc1f77 docs:smbdotconf: add param flags 'handler' and 'deprecated' to the DTD
adds 31e106b docs:smbdotconf: add handler info to smbdotconf docs where missing
adds ba2ea7f docs:smbdotconf: add param flag 'enumlist' to the DTD
adds 63e3c75 docs:smbdotconf: add enumlist property to parameters where missing
adds cd0016d param: rename szLdapGroupSuffix -> _ldap_group_suffix
adds d4fd07d param: turn ldap group suffix into a generated function
adds 10b36db param: rename szLdapUserSuffix -> _ldap_user_suffix
adds e65b7ec param: turn ldap user suffix into a generated function
adds bbe74ae param: rename szLdapIdmapSuffix -> _ldap_sz_idmap_suffix
adds a5ddd03 param: turn ldap idmap suffix into a generated function
adds 614a0b9 param: rename szLdapMachineSuffix -> _ldap_machine_suffix
adds f1846fb param: turn ldap idmap suffix into a generated function
adds 521468e param: rename variable of 'max print jobs' to default.
adds 6fdffc8 param: generate lp[cfg]_max_print_jobs()
adds c377f63 param: use lp[cfg]_max_print_jobs() in lp[cfg]_maxprintjobs()
adds 20c84b8 param: rename iPreferredMaster -> _preferred_master
adds 217ce6d param: turn 'preferred master' into a generated function
adds 863f7b9 param: rename iminreceivefile -> min_receivefile_size
adds b68d13e param: turn 'min receivefile size' into a generated function
adds 3732456 param: rename szPrintcapName -> printcap_name
adds a6e387d param: turn 'printcap name' into a generated function
adds ea6d35c param: treat negative values of 'smb2 max credits' as default.
adds 44619ad param: turn 'smb2 max credits' into generated option
adds b7172b8 param: rename bWidelinks -> wide_links
adds 866fd3b param: turn 'wide links' into a generated funcion
adds 78e276a param: rename winbindMaxDomainConnections -> _winbind_max_domain_connections
adds 496f275 param: make 'winbind max domain connections' a generated function.
adds 5c18d00 param: rename CupsEncrypt -> cups_encrypt
adds 4ae289c param: turn 'cups encrypt' into a generated function
adds c644890 param: make 'realm' use the standard 'realm' variable.
adds 5820c31 param: rename bAvailable -> available
adds bd92bc0 param: rename szCopy -> copy
adds 6b1d1a4 param: rename szInclude -> include
adds 8c0217c param: rename szIdmapBackend -> idmap_backend
adds 3566e7d param: rename szIdmapUID -> idmap_uid
adds 3723403 param: rename szIdmapGID -> idmap_gid
adds f19ede5 docs:smbdotconf: add 'function' parameter to valid
adds df6c339 docs:smbdotconf: add 'function' parameter to enablespoolss
adds d1615ab docs:smbdotconf: add 'function' argument to writeable
adds 36abb6f generate_param: make it possible to handle generated and synonym flags in iteration
adds ff41343 generate_param: generate struct entries if we don't generate access functions.
adds c03891c param: move dnsdomain from generate_param to EXTRA_GLOBALS
adds e5ac180 param: add SYNONYM flag where missing
adds 179d715 param: make 'timestamp logs' the default writing of 'debug timestamp'
adds 3c35dd4 param: don't list '-valid' and 'copy' as synonyms - they aren't
adds c6a81dc docs:smbdotconf: 'write ok' is a synonym of 'writeable' not of 'read only'
adds 2b7396b docs:smbdotconf: make preload a synonym of 'auto services'
adds 99d0c3b docs:smbdotconf: add deprecated flags where missing.
adds ca861f2 generate_param: more uniform formatting of various type dicts
adds 223aad4 generate_param: teach missing types cmdlist, bytes, octal, ustring.
adds 317bd29 tests:docs: teach the test the types cmdlist, bytes, octal, and ustring
adds 46069ed docs:smbdotconf: change type to cmdlist where needed.
adds 0e6fe4c docs:smbdotconf: change type to bytes where needed
adds 955e77c docs:smbdotconf: change type to octal where needed
adds 0dfa9e2 docs:smbdotconf: change type to ustring where needed.
adds bbd55f6 param: move the actual table out into param_table_static.c
adds 5deeba6 generate_param: add a means to generate param_table_gen.c from the docs
adds b138d57 build: generate param_table_gen.c from docs in the build
adds 3de5d29 tests:docs: common initialization in docs test.
adds a918735 tests:docs: print more complicated structures than strings in the message.
adds 2ede42e tests:docs: add a function to load the full data structures from the table
adds 5efa507 tests:docs: load the full data from the existing param_table.
adds 93c8e8d tests:docs: load the full data from the generated param_table
adds cf16ae5 tests:docs: test the diff between the static and generated table
adds 33dfaf7 param: use the generated parameter table.
adds c102ac2 tests:docs: remove testing the diff between the static and generated table
adds 8ad079d tests:docs: don't load or test the static param_table.
adds 3f5e874 param: remove the static param_table.
adds 10374dd param: update the README with instructions for adding a parameter
adds 3bbf384 doc: mention that `smbd -i` exits after first connection
adds 487119d secrets: Add function to fetch only password change timestamp
adds c64e3a8 net: Print time of last password change in 'net ads info'
adds 28de101 lib/util/debug.h uses va_list, needs stdarg.h
adds 3fbcd78 dns_server: Add NULL check
adds 9c48dbd dns_server: Fix CNAME handling
adds 95eb6db s3-net: use talloc array in share allowedusers
adds 1f51628 s4-torture: add more tests for clusapi_OpenResource().
adds bc14440 s3-clusapi: add test for GetResourceDependencyExpression.
adds e68ce4b s4-torture: add test for GetResourceNetworkName.
adds b378329 clusapi: add PROPERTY_LIST IDL.
adds d13535d s4-torture: add test for clusapi_CreateEnumEx().
adds 5e009e1 clusapi: use ClusterEnumType in clusapi_CreateEnumEx.
adds 2a08aa0 s4-torture: add ndr testsuite for complex clusapi_PROPERTY_LIST structs.
adds 0f125f8 clusapi: use winreg_Type in clusapi registry IDL.
adds 2654ac3 s4-torture: also test ClusterControl with a large initial buffer size.
adds e1373ea clusapi: add clusapi_GroupControlCode enum to IDL.
adds d621099 s4-torture: add tests for GroupControl.
adds 7cea0aa clusapi: add clusapi_NodeControlCode to IDL.
adds d6a8e35 s4-torture: add torture test for clusapi_NodeControl.
adds 93572c9 s4-torture: add more ndr tests for property lists.
adds 321fe41 s3-rpcclient: add client for create enum ex.
adds a3af166 s4-torture: add test for CLUSCTL_NODE_GET_ID in clusapi_NodeControl.
adds ab08575 hdb-samba: Translate SDB errors to HDB errors
adds 38d7617 sdb: Assert if the HDB flags will change
adds 78075cf waf: Add talloc as a dependency
adds 6224ac9 gensec: Add an option emulating another mode a client building GSSAPI/krb5 manually uses
adds ddee603 heimdal/gssapi: Allow a NULL authenticator
adds 711a420 selftest: Add test for GSSAPI with no authenticator checksum mode
adds 9d9a767 wafsamba: don't add -DSTATIC_%s_MODULES* arguments for SAMBA_LIBRARY(pyembed=True)
adds 71128e0 script/release.sh: This is a new script to do releases
adds 54cbecb script/librelease.sh: this is replaced by script/release.sh now
adds d7a54f3 dns: Add dns_get_authoritative_zone helper function
adds 0e11c08 dns: Just pass the name to create_response_rr
adds bda1a73 dns: Also pass nsrecs to handle_question()
adds d9a3f19 dns: Add a SOA record to error replies
adds 42f38fe dns: always add authority records
adds d3ac3da s4:rpc_server/netlogon: Fix for NetApp
adds 9ae65b2 smbd: Log smb2 requests returning !OK with higher log level
adds f57a235 lib/talloc: Fix CID 1291640 Missing unlock
adds 661b4ed lib/talloc: Fix CID 1291639 Missing unlock
adds e45b0d4 source3/rpc_client: Fix CID 1273041 Condition is redundant
adds d9030d8 ctdb-system: Remove unused system specific calls
adds 7949ce1 ctdb-daemon: Reset database statistics when resetting statistics
adds 6538ba5 ctdb-pmda: Add missing prototype declaration for non-static function
adds 7d04778 ctdb-scripts: Improve error handling for 50.samba testparm failure
adds 5a6a932 ctdb-tests: Make fake gateway different to actual public IPs
adds eba1212 ctdb-tests: Add a policy routing test with misconfiguration
adds fb9a64e vfs_streams_xattr: stream names may contain colons
adds 1db1199 vfs_catia: run translation on stream names
adds fe4909f s4:torture:vfs_fruit: pass xattr name as arg to torture_setup_local_xattr()
adds 7258061 s4:torture:vfs_fruit: add a test for stream names
adds 9386368 dns_server: Don't call tevent_req_finish twice
adds 1fcad53 dns_server: Fix a small memleak
adds 9db523b nfs4acls: Use ZERO_STRUCTP
adds f15ad38 nfs4acls: Use an anon struct for SMB4ACL_T
adds 157711c nfs4acls: Use an anon struct for SMB4ACE_T
adds cf97ec5 nfs4acls: Remove an obsolete comment
adds 5a7997f nfs4acls: Use SMB4ACL_T instead of _SMB_ACL4_INT_T
adds 3314717 nfs4acls: Use SMB4ACE_T instead of _SMB_ACE4_INT_T
adds 1d30e86 nfs4acls: Remove the SMB_ACL4_INT_T typedef
adds 45e1ef0 nfs4acls: Remove the SMB_ACE4_INT_T typedef
adds aeef821 nfs4acls: Remove get_validated_aclint
adds 1ba9bbd nfs4acls: Remove get_validated_aceint
adds 8125503 nfs4acls: Use talloc_zero()
adds 68c64c7 nfs4acls: Use talloc_zero()
adds 7e630c3 nfs4acls: Use talloc_zero_array()
adds fafd0a0 nfs4acls: Use talloc_realloc()
adds 5caaf00 nfs4acls: Remove a few unnecessary casts
adds 9287b67 nfs4acls: Introduce a helper variable
adds 173dca4 nfs4acls: Fix a small memleak
adds b5ce90e nfs4acls: Remove type_name param from smbacl4_get_vfs_params
adds ba116fa smbd: Remove a confusing comment
adds f85c2a6 smbd: Use a struct initializer
adds f0f23d6 lib: Remove some unused code
adds 5d141a3 lib: Remove some unused code
adds a431828 python:samba/upgrade.py Fix format string syntax in error condition
adds e6c8452 libcli: Use iov_buflen in smb2_signing.c
adds c93e2cd waf: Check for Linux has 32-bit credential calls
adds ce3c77f s3:lib: fix some corner cases of open_socket_out_cleanup()
adds 8cacd5b Revert "dsdb: Only parse SAMBA_LDAP_MATCH_RULE_TRANSITIVE_EVAL as a DN"
adds dc2d5cc Revert "ldb-samba: Implement transitive extended matching"
adds 05dbd3b libcli/smb: prefer AES128_CCM
adds bd0ec51 s3:smb2_negprot: prefer AES128_CCM if the client supports it
adds b2986dc release-scripts/build-manpages-nogit: run make realdistclean at the end
adds e8c602d s4:torture/rpc: fix ndr_security.h include in fsrvp.c
adds 1d79f6c ctdb: Fix the build on FreeBSD 10.1
adds 9638742 ctdb: Fix some clang uninitialized errors
adds 62d08ea replace: Fix bug 11455
adds 2fbce8a gensec: Fix CID 242642 Unchecked return value
adds a44a7c7 lib: Add the pointer itself to talloc_report_str
adds 2146f39 ctdb: Use talloc_report_str in ctdb
adds 796c77d lib: Use dom_sid_equal where appropriate
adds 22e1fb3 vfs: Add some {}
adds 345ef6b smbd: Remove an unnecessary else branch
adds 5134d29 s3:wscript: fix the build without any idmap module
adds a184951 s3:idmap: we need to allow undefined symbols in idmap_tdb
adds 72e0885 s3:wscript: remove leftover from vfs_notify_fam
adds f8fca7d s4:ntvfs/posix: fix forward declaration of struct pvfs_state
adds 4451d0a examples/pdb: fix and validate pdb_test_init() prototype via static_decl_pdb;
adds fd6eb8b examples/VFS: make function prototypes available via static_decl_vfs;
adds 37b2677 s3:modules/vfs_*: make function prototypes available via static_decl_vfs;
adds 7b2ff4c s3:modules/perfcount_*: make function prototypes available via static_decl_perfcount;
adds bbd82b0 s3:winbindd/idmap_*: make function prototypes available via static_decl_idmap;
adds d830cec s3:wscript: simplify ABI matching for pdb_*_init()
adds 43d1c92 s3:wscript: make --with-{static,shared}-modules options more flexible
adds 3030325 script/autobuild.py: split out a samba_libs_configure variable
adds 3b1aa7a script/autobuild.py: use -Wmissing-prototypes and --picky-developer for samba-libs*
adds 86fa1d9 script/autobuild.py: test some --with-{static,shared}-modules combinations
adds ba4c9bd script/autobuild.py: make sure --nonshared-binary=smbtorture,smbd/smbd keeps working
adds 59e955b vfs_scannedonly: Remove vfs_scannedonly from samba source tree.
adds 78d7512 lib: Remove unused parmlist code
adds 0f600c3 param: Simplify set_param_opt()
adds 53e8d52 param: Use talloc_pooled_object
adds 34965d4 s3-auth: Fix 'map to guest = Bad Uid' support
adds e8c7693 s3-auth: Pass nt_username to check_account()
adds 6363c02 s3-auth: Fix a memory leak in make_server_info_info3()
adds fc68e84 uwrap: Fix build if getres(uid|gid) are not available.
adds a71610c uwrap: Removed double newline
adds f504681 uwrap: Bump version to 1.1.1
adds 443dd9b loadparm3: Add lp_wi_scan_global_parametrics()
adds d36de86 idmap: Move idmap_init() under the static vars
adds ef0c911 idmap: Initialize all idmap domains at startup
adds ad626b9 idmap: Use a range search in idmap_backends_unixid_to_sid
adds ac4cc24 idmap: Remove "domname" from idmap_backends_unixid_to_sid
adds 0f8c9b8 idmap: Remove "domname" from idmap_uid_to_sid
adds 2f4dad5 idmap: Remove "domname" from idmap_gid_to_sid
adds d473047 idmap: Remove dom_name from wbint_Uid2Sid
adds 8856555 idmap: Remove dom_name from wbint_Gid2Sid
adds 2387d03 winbind: Do not look for the domain in wb_uid2sid
adds b62c7e2 winbind: Do not look for the domain in wb_gid2sid
adds 617bc3f winbind: Remove "have_idmap_config" from winbindd_domain
adds 4ef468e dnsserver: Remove incorrect and not required include of ldb_private.h
adds 3faa7dc python: Use an unsigned integer for buf_size, not -1
adds 5206ccd pidl: Change PIDL to correctly use and validate python integer types
adds 336d411 python/tests: Add tests for integer overflow handling
adds bed29f3 pydsdb: Allow the full range of uint32_t values for attributeID
adds e3cf25b pidl: Assert that python arrays will not overflow the C array
adds 2766bad dbcheck: Add explict tests for unknown and unsorted attributeID values
adds 2ff9b17 dbcheck: Add additional tests for the attributeID list
adds fb88f9c dbcheck: Try to avoid duplicate searches
adds c049106 dbcheck: Use set() operations to make dbcheck more efficient
adds 6122aca ldb: create a cache of known wellknown objects instead of continously searching in the db
adds a6957ba Update release-4-1-0rc3 to include data using schema modifications
adds 5504502 selftest: Add in steps to re-create this database
adds dcc657a selftest: Add assertion that we actually fix the replPropertyMetaData sort order
adds 4e178ed s3-util: Compare the maximum allowed length of a NetBIOS name
adds dba9e63 Prevent a crash in Python modules that try to authenticate by ensuring we reject cases where credendials fields are not intialized.
adds 4a442e2 lib: Make sid_parse take a uint8_t
adds aa38175 lib: Convert callers of sid_blob_parse to sid_parse
adds de421d8 lib: Remove unused sid_blob_parse
adds c9d97e3 lib: Make sid_linearize take a uint8_t
adds 64c6cc3 s3:vfs_smb_traffic_analyzer: remove samba_ prefix from AES_* function calls
adds 7c4117f lib/crypto: add aes_cmac_128 chunked tests
adds 683eda2 lib/crypto: run all aes_gcm_128 testcases
adds 80c8a1c lib/crypto: verify 0 updates in aes_gcm_128 tests
adds 77c3d50 lib/crypto: add aes_ccm_128 tests
adds 0824221 lib/crypto: add optimized helper functions aes_block_{xor,lshift,rshift}()
adds 8795ad2 lib/crypto: optimize aes_cmac_128
adds 7e8333d lib/crypto: optimize aes_ccm_128
adds 965f04d lib/crypto: optimize aes_gcm_128
adds e9d3379 lib/crypto: make use of aes_test.h in aes_gcm_128_test.c
adds aaad9e9 lib/crypto: sync AES_cfb8_encrypt() from heimdal
adds d9166eb lib/crypto: make it possible to use only parts of aes.[ch]
adds e6c234d Move the error handling for svhdx to vfswrap_create to give VFS module writers a chance to handle RSVD opens if they want to.
adds 16c14ae s3:smb2_create: #if 0 unused variable
adds e551cdb winbind: Fix 100% loop
adds f1f47ac python: Remove uuid module
adds e139f19 s3: add suport for SMB3_10 and SMB3_11 protocols in smbstatus
adds 47f7d1b ctdb-scripts: Rename 40.fs_use to 05.system
adds 6b4a46e ctdb-scripts: Move filesystem monitoring into a function, clean it up
adds 8f713c8 ctdb-scripts: Don't fail monitoring if sanity checks fail
adds fa10506 ctdb-scripts: New configuration variable CTDB_MONITOR_FILESYSTEM_USAGE
adds 23acbd2 ctdb-tests: Add tests for filesystem usage monitoring
adds b27ff25 ctdb-tests: Remove unwanted trailing whitespace
adds ab58c7a ctdb-scripts: Move system memory checking to 05.system
adds 99b8ef5 ctdb-scripts: Only use /proc/meminfo for memory checks, not "free"
adds bd2845d ctdb-scripts: Use MemAvailable if it is in /proc/meminfo
adds b7b6e25 ctdb-scripts: Memory monitoring uses thresholds expressed as percentages
adds 02fa6c3 ctdb-scripts: Factor out new function check_thresholds()
adds b6a0e4b ctdb-scripts: New consistent system memory and swap monitoring
adds e6b5163 ctdb-scripts: Don't shutdown CTDB when memory monitoring fails
adds b18e4ae ctdb-scripts: Throttle system resource monitoring warnings
adds 2c601f1 ctdb-scripts: Enable system monitoring eventscript by default
adds 0f28ccf ctdb-scripts: Add default system memory usage warnings
adds 4164d7b ctdb-scripts: Add default filesystem usage warnings
adds cdaa122 lib/tls: Remove unused tls_init_client code
adds ac25a8a lib/tls: Ensure SSLv3 is disabled in the web server by default
adds 615d9b7 web_server: Use talloc_get_type_abort()
adds c3647ec web_server: Fix server not to segfault on startup
adds 098b8a5 notify: check for valid notify_ctx in notify_remove
adds b9c5612 selftest: add change notify = no to simpleserver env
adds 770fb8c selftest: add a check for disabled change notify
adds 2947a70 ldb:wscript: make it possible to build samba with a system ldb again
adds 88b27eb spoolss: handle SetPrinter for info level 4
adds c2f4e32 pidl/python: Calculate maximum integer values using a lookup table
adds d1416d6 pidl/python: Provide static inline helper function ndr_PyLong_FromUnsignedLongLong
adds e6fbeb8 pidl/python: also add a ndr_PyLong_FromLongLong() for symnetric reasons
adds 1f50e19 python/tests: Add tests for 64 bit signed integers
adds 5aefea8 python/tests: Add more assertions that we get back the value we expect
adds b3f906f Revert "winbind: Fix 100% loop"
adds 841845d samr4: Use <SID=%s> in GetGroupsForUser
adds bcf5f45 third_party:waf: Backport parts of the waf 1.8 API
adds da9eee8 third_party:waf: fix a mis-merge - Utils.check_dir issue
adds ffea9a1 build:wafsamba: Close file handles in the build scripts too
adds ba6c7df build:wafsamba: Use the Waf 1.8 API get_tgen_by_name instead of name_to_obj
adds 34759c8 vfs_fruit: handling of empty resource fork
adds db1c074 vfs_fruit: split and simplify fruit_ftruncate
adds 6263495 vfs_fruit: delete ._ file when deleting the basefile
adds c1e1891 s4:torture:vfs_fruit: add a resource fork truncation test
adds 2d0e301 s4:torture:vfs_fruit: created empty resourceforks
adds b49b1bd doc: fix description of tls dh params file parameter
adds 22a37c4 tls: increase Diffie-Hellman group size to 2048 bits
adds e4b0ea1 Fix memory leak in dns resolution during spnego authentication using kerberos.
adds 239062a ctdb: Fix a 32-bit problem
adds 0fb8ea7 winbind: Don't delete an existing krb5 ticket on cached logon.
adds 53a8cc7 vfs_gpfs: Introduce vfs_gpfs_fsp_is_offline
adds 2a8b21e vfs_gpfs: Avoid calling gpfs_is_offline on every i/o
adds bce6a38 ctdb-daemon: Drop struct ctdb_control_killtcp
adds e79877a ctdb-tools: Add dbstatistics to ctdb_diagnostics
adds a7b6dd4 libsmbclient: Fix 32-bit problems
adds 6b44ce6 configure: Fix aio_suspend detection
adds facb11b samdb: Fix CID 1034736 Dereference after null check
adds 04c8655 dsdb: Fix a confusing parameter
adds 48d4aac fruit: Fix CID 1323186 Dereference before null check
adds fee8437 Find the correct symbol when res_* is a define to __res_*
adds 278facd rwrap: Fix strict aliasing warnings for symbol binding
adds 73a62af rwrap: Bump version to 1.1.3
adds 049b7c8 swrap: Correctly update the msg_name in recvmsg()
adds 5543243 swrap: Fix TCP support with sendmsg/recvmsg
adds 830e3dd swrap: Add environment variable to specify mtu size
adds 5bd1ec1 swrap: Fix signed comparsion warnings
adds 9fe5eac9 swrap: Call dlclose() in the destructor
adds e7b6990 swrap: Bump version to 1.1.4
adds 7d84cd6 pam_winbind: Fix a segfault if initialization fails
adds 3f402eb ctdb-doc: remove description of removed --syslog option from ctdbd manpage
adds 4010c03 ctdb: improve a misleading help text.
adds 7d49d9b ctdb-server: fix a possible fd leak in ctdb_tcp_listen_automatic()
adds 123e658 build: fix quotation of deps for 'param' subsystem.
adds 76ef9c1 build: line-break deps for 'param' subsystem
adds 736397e winbindd: Fix CID 1273310 Remove structurally dead code
adds b63b53c libsmb: Fix CID 1034605 Incorrect pointer comparison
adds a44a0c4 libsmb: Fix CID 1034606 Incorrect pointer comparison
adds ae81a40 net: add option --no-dns-updates for net ads join
adds d7a617f docs: mention new --no-dns-updates parameter in manpage of net.
adds 36830db net: reformat usage text for 'net ads join'
adds cf5c28d replace: Fix check for gettimeofday()
adds 6f95bc5 s3:smb2_sesssetup: change talloc hierarchy in smbd_smb2_session_setup_gensec_done
adds 69d2af1 s3:smb2_sesssetup: let smbd_smb2_auth_generic_return() cope with channels
adds 57053c5 s3:smb2_sesssetup: let smbd_smb2_reauth_generic_return() cope with channels
adds b7eb725 smbXsrv_session: factor smbXsrv_session_add_channel() out of smbXsrv_session_create()
adds a997c77 nss_wins: add module for FreeBSD
adds d3e51b9 nss_winbind: fix hang on Solaris on big groups
adds b0f41c0 build: use as-needed linker flag also on OpenBSD
adds 12153af s3: dfs: Fix a crash when the dfs targets are disabled.
adds 9d49dfa ctdb-scripts: New internal variable CTDB_NFS_CALLOUT_STATE_DIR
adds 8c2948e ctdb-scripts: Drop 62.cnfs eventscript
adds 353c27d ctdb-scripts: Drop functions ctdb_checkstatus() and ctdb_setstatus()
adds 143ec9e ctdb-scripts: Drop file removal involving $ctdb_managed_dir
adds e7a139b ctdb-scripts: Drop internal file-level variables referencing $CTDB_VARDIR
adds 36a1473 ctdb-docs: Update "ctdb reloadnodes" documentation
adds bd77a97 ctdb-build: Add missing manual pages to pre-generate list for tarball
adds d064620 ctdb-scripts: Properly set CTDB_VARDIR in scripts at install time
adds 3aa11b1 ctdb-scripts: New internal variable CTDB_SCRIPT_VARDIR
adds 6774676 ctdb-scripts: Move remaining state files into CTDB_SCRIPT_VARDIR
adds c58d582 ctdb-scripts: Factor out possible creation of rt_tables file
adds 014a1eb ctdb-scripts: CTDB_BASE must be set when including functions file
adds 121d1a8 ctdb-scripts: Rename variable CTDB_ETCDIR to CTDB_SYS_ETCDIR
adds 56fd37b ctdb-tools: Drop vacuum.log from ctdb_diagnostics
adds b933b91 ctdb-scripts: Update important installed files to use build-time defaults
adds f1bb641 ctdb-doc: Update out-of-date documentation for CTDB socket options
adds 3ddd351 ctdb-build: Install pre-built manpages when xsltproc not available
adds f54b2f7 ctdb: Fix CID 1324447 Double close
adds 4276ec7 Makefile: Add option to list all tests
adds 5866fcc s4: tests: Fix nss_tests build on Solaris.
adds b0fa831 s3:lib/messages: add missing allocation check for priv_path
adds 1aabd92 s3:lib/messages: use 'msg.lock' and 'msg.sock' for messaging related subdirs
adds 1d2a1a6 s4:lib/messaging: use 'msg.lock' and 'msg.sock' for messaging related subdirs
adds ea53e86 tdb: Add tdbdump -u
adds a47012d s3: smbclient: Move cmd_setmode out of clitar.c and back into client.c
adds 94e7e70 s3: smbd: Remove unused parameter from build_stream_path().
adds 74fd4f9 s3: smbd: Fix opening/creating :stream files on the root share directory.
adds 6ce3643 s3: tests: smbclient test to ensure we can create and see a :foobar stream on the top level directory in a share.
adds a36a734 Revert "tdb: Add tdbdump -u"
adds 3408591 ctdb-doc: Fix a typo in the definition of CTDB_NODE_ADDRESS
adds 8262ecb build:wafsamba: Use the samba-provided CHECK_CFG method in configuration tests
adds 25dcdc9 lib/param: fix hiding of FLAG_SYNONYM values
adds b4747b6 s4:torture:smb2:rename: Fix typo in simple_nodelete testcase.
adds 1399198 build: improve stack protector check
adds 5d12eb8 dbwrap: Remove loadparm_context from db_open_tdb
adds 225cba6 dbwrap: Remove unused dbwrap_hash_size()
adds 71a407e dbwrap: Remove talloc_reference()
adds 9964d60 dbwrap: Make dbwrap_db_id return size_t
adds 2e0e06c dbwrap: Simplify dbwrap_record_watchers_key()
adds 1a8750a dbwrap: Convert dbwrap_record_watchers_key to not use talloc
adds a1187bb dbwrap: Remove talloc from dbwrap_watch_record_stored()
adds e9c5b63 s4: torture: Fix double-free on error.
adds dec34db s4:torture: add a test for 0 byte sized streams
adds ce62124 docs: Fix references to async smb echo handler in smb.conf manpage
adds b1c823d s3: smbd: Fix mkdir race condition.
adds 969d043 s4: torture: Test mkdir race condition.
adds 6788a5f lib: Fix prctl detection for prctl_set_comment
adds 96c48b3 s3: Move call to prctl_set_comment to reinit_after_fork
adds 0b455a5 smbd: Set process name for async echo handler
adds 2266e24 smbd: Set process name for notifyd process
adds 23c17d9 s4-torture: add test to verify WITNESS_NOTIFY_CLIENT_MOVE message marshalling.
adds f2fcbf2 witness: fix IP address endianess in witness_IPaddrInfo IDL.
adds 1b8ea12 witness: fix length calculation in witness_IPaddrInfoList IDL.
adds e224e62 net: fix a crash with net ads keytab create
adds d493ec1 s4: torture: Fix directory test against a server that actually uses index returns.
adds 44aff1a ctdb-build: Use socket_wrapper only with selftest
adds 875beef samba-tool: add command to dump dosinfo xattr from a file
adds 71a168e build:wafsamba: Set the default installation prefix for Waf 1.8
adds 4827d49 clusapi: remove security.idl dependency from IDL.
adds 08e260e librpc: properly quote uuids so that wireshark dissectors can be built from them.
adds 6ef2d28 s3-rpcclient: protect against empty witness async notify messages.
adds ae43867 s4-torture: trying to make clusapi resource online/offline testing a bit more robust
adds cfca46a messages_dgm: No includes.h necessary
adds edd18f7 messages_dgm: Fix an incorrect cast
adds dea49cc ldb: Fix CID 1034781 Unsigned compared against 0
adds f5109df s4-scripting: fix wrong indent that caused gen_ntstatus.py to fail.
adds d8b2421 s4-scripting: fix minor indent issue for hresult generation.
adds 348dd41 s3:lib:interface: break an overly long line
adds e119f95 net: Fix some tiny memleaks
adds beb7c6b net: Add "serverid exists"
adds 37f01c8 messages_dgm: Add messaging_dgm_get_unique
adds c793fb8 lib: Use serverid_exists in server_id_db_check_exclusive
adds b542ce7 lib: Use messaging_dgm_get_unique in serverid_exists
adds 103658d lib: Remove serverids_exist
adds 620b746 lib: Remove ctdb_serverids_exist
adds 8044e2d lib: Add server_id_str_buf_unique
adds a4f6450 lib: Fix server_id_from_string
adds 2c12b51 lib: Add "pid/unique" format for server_id_from_string
adds 22c5699 lib: Fix server_id_db_set_exclusive
adds d9000cb libreplace: Fix the build on Solaris
adds b191632 lib: Fix the build on Solaris
adds 2c675aa lib: We only need the fd-passing check once
adds f4e06a9 lib: Move some routines around in msghdr.c
adds 0499cee lib: Support fd passing using the 4.3BSD way
adds 00954a9 lib: We can do ACCRIGHTS style fdpassing
adds bec685f s3: smbd: fix a crash in unix_convert()
adds f9ceaf4 s3: smbd: Fix NULL pointer bug introduced by previous 'raw' stream fix (bug #11522).
adds e524ab9 winbind: Fix 100% loop
adds 6755376 kerberos: make sure we only use prompter type when available.
adds 54c7b05 lib: Lift lp_ctdbd_socket() call up one level
adds 2aedb2d lib: Store ctdb_timeout in ctdb_connection
adds 6c86062 lib: Remove temporary ctdb_connection in ctdb_control
adds 0bc244e lib: Store sockname in ctdbd_connection
adds ccd31e0 lib: Pass parameters to ctdbd_init_connection()
adds 025fb48 lib: Move lp_ctdbd_socket() to cluster_support.c
adds 770b0e4 lib: Pass sockname and timeout to ctdbd_messaging_connection
adds 97bb100 lib: Pass sockname and timeout to ctdbd_probe()
adds 70dbba9 s3:ctdbd_conn: make sure we destroy tevent_fd before closing the socket
adds 0db470d lib: Fix CID 1325733 Uninitialized scalar variable
adds cc93469 lib: Fix CID 1128553 Unchecked return value from library
adds 5d7eaf9 vfs_fruit: return value of ad_pack in vfs_fruit.c
adds 8de1ed6 s4: fix linking smbtorture on Solaris.
adds c0aa94e s3:smbd: add expected_seq_low arg to smbd_initialize_smb2
adds 1bb46da s3:smb3: rename smbd_smb2_first_negprot and pass expected seq_low
adds 9893888 Change the libreadline word-break character set to only space, TAB and NL so that we can attempt to do tab completion across backslashes.
adds 6d37cd3 s3:smbd: pass expected_seq_low to smbd_initialize_smb2
adds 036203e ctdb-freeze: Do an early exit if freeze is pending
adds b15a65e ctdb-freeze: Remove commented test code
adds 8df0916 ctdb-locking: Remove unused priority argument from db_handler_t
adds b1f4680 ctdb-locking: Rename ctdb_db_iterator to ctdb_db_prio_iterator
adds ecb858f ctdb-locking: Expose ctdb_db_prio_iterator function
adds fb23760 ctdb-locking: Add ctdb_db_iterator to iterate through all databases
adds 74f7eeb ctdb-freeze: Use ctdb_db_prio_iterator to cancel transaction on databases
adds 4576188 ctdb-freeze: Use ctdb_db_iterator to cancel transaction on databases
adds bc9a685 ctdb-freeze: Use ctdb_db_iterator to start transaction on databases
adds 2116c55 ctdb-freeze: Use ctdb_db_iterator to commit transaction on databases
adds 6a212d1 ctdb-call: Convert pending calls list to per database list
adds 056c44f ctdb-freeze: Refactor code to check if databases are frozen
adds 8c58c73 ctdb-daemon: Avoid the use of ctdb->freeze_mode variable
adds 7afabb1 ctdb-daemon: Avoid the use of ctdb->freeze_handle variable
adds 5447864 ctdb-daemon: Add controls to freeze/thaw a single database
adds fd7ceaf ctdb-freeze: Move destructor closer to where it is used
adds d139f87 ctdb-freeze: Use single database freeze/thaw code for existing controls
adds e170bd4 ctdb-locking: Add mark/unmark functions for a single database
adds e0fa182 ctdb-daemon: Use database specific freeze check routine
adds 66c7bcc ctdb-daemon: Use database specific mark/unmark routines
adds 979f1c5 ctdb-freeze: Improve log message to indicate subsequent freeze operation
adds 9f779f1 ctdb-freeze: simplify code with TALLOC_FREE
adds 4f155e7 ctdb-daemon: Rename ctdb_control_wipe_database to ctdb_control_transdb
adds 3d325e7 ctdb-daemon: Add controls for transactions on a single database
adds 8580562 ctdb-freeze: Use single database transactions for global transactions
adds d14ff2d ctdb-freeze: Use database specific information in wipe database
adds fafd35b ctdb-freeze: Fix a log message
adds b4357a7 ctdb-banning: Do not freeze databases on ban in the daemon
adds 8a5039d ctdb-freeze: Make function ctdb_start_freeze static
adds 5d9dd4d ctdb-freeze: Ensure all databases get frozen during freeze
adds b81d4cc ctdb-freeze: Use individual database freeze in blocking freeze
adds 1df2594 ctdb-daemon: Introduce per database generation
adds 3d11efe ctdb-daemon: Use database generation in packet headers for database requests
adds d701072 ctdb-call: Delete old defer queue if recovery occurs
adds 0ff90f4 ctdb-daemon: Check packet generation against database generation
adds 3cbd040 ctdb-daemon: Add a check for database generation consistency
adds 42f7722 ctdb-daemon: Remove freeze requirement for updating vnnmap
adds 90b633e ctdb-build: Do not mark ctdb private headers public
adds 3f287ec ctdb-build: Do not split ctdb-system subsystem
adds ba56d85 ctdb-daemon: Remove ctdb from traverse_callback
adds 6672dee ctdb-daemon: formatting fix
adds acf5ebf ctdb-daemon: whitespace fix
adds e5592f9 ctdb-common: Add db_hash abstraction
adds 6272ef0 ctdb-common: Add srvid abstraction
adds 62f1e25 ctdb-daemon: Replace ctdb_message with srvid abstraction
adds 9d75bf3 ctdb-daemon: formatting fix
adds 7c6115e ctdb-daemon: whitespace fix
adds a7ea6b0 ctdb-include: Remove unused definition
adds 9fd4d07 ctdb-common: Add request id abstraction
adds b25c113 ctdb-daemon: Use reqid abstraction
adds 100917b ctdb-packaging: Install header files in ctdb subdirectory
adds 9c16fe4 ctdb-build: Set PKGCONFIGDIR for public libraries in standalone build
adds 670db6a lib/util: Create a new library for tevent_unix.c
adds 606b909 ctdb-build: Placeholder for public headers from lib/util
adds facd3c8 ctdb-packaging: Package public library and header for tevent-unix-util
adds c77d3bb ctdb-common: Add packet read abstraction
adds e01c0ee ctdb-common: Add packet write abstraction
adds 1543eed ctdb-common: Add communication endpoint abstraction
adds 54da5c6 ctdb-common: Add logging utilities
adds 8b45bad ctdb-include: Remove unused structure definitions
adds 34a6c99 ctdb-protocol: Add ctdb protocol serialization routines
adds c6a50b9 ctdb-client: Add new client API implementation
adds 81ac247 ctdb-protocol: Add controls for parallel DB recovery
adds b04c48d ctdb-client: Add client API for new database controls
adds 9514319 ctdb-recoverd: Add parallel database recovery helper
adds 14cacd2 ctdb-recovery: Factor out existing database recovery code
adds 9843363 ctdb-recoverd: Update capabilities before the database recovery
adds 4b39a77 ctdb-recoverd: Update flags on all nodes before database recovery
adds f0613ac ctdb-daemon: Use a define for default capabilities
adds cbfabd8 ctdb-daemon: Add parallel database recovery capability
adds e6ff365 ctdb-recoverd: Add code for parallel database recovery
adds ffff66b ctdb-call: Improve a log message
adds fbd9c9f ctdb-recoverd: Do not freeze databases for election
adds 3cf93d9 ctdb-recoverd: Get rid of connected-ness comparison in election
adds 0101748 ctdb-recoverd: Always check for recmaster before doing recovery
adds 7b9016a lib: Fix error talloc leaks in ctdb_read_packet()
adds 858af0b lib: Add ctdbd_control_unix
adds a5438e0 lib: Use ctdbd_control_unix in register_with_ctdbd
adds a8c035f lib: Use ctdbd_control_unix in get_cluster_vnn
adds 4d43101 lib: Rename a variable
adds ab79b95 lib: Use ctdbd_control_unix in ctdbd_working
adds 24d0add lib: Use ctdbd_control_unix in ctdbd_dbpath
adds a448945 lib: Use ctdbd_control_unix in ctdbd_db_attach
adds dae02e9 lib: Use ctdbd_control_unix in ctdbd_db_attach
adds 108b627 lib: Use ctdbd_control_unix in ctdbd_register_ips
adds fd6293c lib: Remove ctdbd_control
adds 7b8853f lib: Rename ctdbd_control_unix to ctdbd_control
adds 84ad1a1 lib: Make register_with_ctdbd return 0/errno
adds f3c88bd lib: Make get_cluster_vnn return 0/errno
adds 03fd13f lib: Make ctdbd_register_msg_ctx return 0/errno
adds 9da6cce lib: Make ctdbd_init_connection return 0/errno
adds 546d8b4 lib: Make ctdbd_messaging_connection return 0/errno
adds fdfc729 lib: Make ctdbd_messaging_send_iov return 0/errno
adds 210e1fb lib: Make ctdbd_db_attach return 0/errno
adds 4636912 lib: Make ctdbd_migrate return 0/errno
adds b78c282 lib: Make ctdbd_parse return 0/errno
adds 4caf48e lib: Make ctdbd_traverse return 0/errno
adds a039463 lib: Make ctdbd_register_ips return 0/errno
adds 2d00fcd lib: Make ctdbd_control_local return 0/errno
adds b02fd99 lib: Make ctdb_watch_us return 0/errno
adds a6ddb99 lib: Make ctdb_unwatch return 0/errno
adds 6cc1e66 lib: Make ctdbd_probe return 0/errno
adds a599b96 lib: Remove messaging_tevent_context() dependency from ctdbd_conn.c
adds 7ae6943 lib: Use poll_intr_one_fd in ctdb_read_packet
adds 678ad95 lib: Make messaging_ctdbd_init return 0/errno
adds 2bc55c5 lib: Make messaging_send_iov_from return 0/errno
adds 5709dec vfs_commit: set the fd on open before calling SMB_VFS_FSTAT
adds f25a5c9 Fix a few small spelling mistakes in DEBUG messages to reduce confusion for those trying to debug stuff.
adds 1dc0538 build: Move __attribute__ ((destructor)) and ((constructor)) tests to wafsamba
adds 30ea897 lib/talloc: Disrupt buffer overflow attacks on Samba by using random magic
adds 4a4664a lib/talloc: Provide multiple-loading detection for libtalloc via rand()
adds f5135bd talloc: Test magic protection measures.
adds 906a26a talloc: Provide tests access to talloc_magic
adds 2b9bfab talloc: Increment minor version due to added talloc_test_get_magic.
adds 7b6d1a2 talloc: Test that talloc magic differs between processes.
adds b95b2be A small improvement to the DEBUG message when pass-through authentication fails with ACCESS_DENIED. Increased it to log level 1 so it will print out and pointed to Restrict NTLM as the setting so people know what to look for.
adds 2f7bee4 wbinfo: make --verbose --pam-logon print sids
adds b5cf80a talloc: Fix the O3 developer build
adds 8807ad1 dynconfig: Fix deps, no talloc required
adds 3c00e8d pam_smbpass: REMOVE this PAM module
adds d643aaf s3:smbd: remove unused arg oplock_request
adds cd0c2a5 s3:smbstatus: add stream name to share_entry_forall()
adds 0ef9c67 s3:locking: initialize lease pointer in share_mode_traverse_fn()
adds 258ce91 lib: Move sys_rw* to lib/util
adds 5380f7b lib: Add a little tool to perftest generate_random_buffer()
adds e73ccc0 Rely on /dev/urandom
adds 9610805 build:wafsamba: Enable feature-compatible declaration for Waf 1.8
adds 65e4829 Fixes for server role parameter in smb.conf manpage
adds d527ab1 ctdbd: Fix a typo
adds 8eedd5c libdap: Fix a '\0' vs NULL mixup
adds 826bffc lib: Fix CID 1327227 Uninitialized scalar variable
adds 593bdb9 ctdb: Fix CID 1327224 Unbounded source buffer
adds 74013ae ctdb: Fix CID 1327223 Unbounded source buffer
adds 880b79a s3:lib/messages: fix error check in messaging_filtered_read_send()
adds cf89c7f ctdb-tests: Fix CID 1327218-1327221
adds 5538e2a ctdb: fix typos in wscript comment.
adds cc05f73 s3: smbd: Fix our access-based enumeration on "hide unreadable" to match Windows.
adds b1bd84e lib: cli: Add accessor function smb2cli_tcon_flags() to get tcon flags.
adds 808f29c s4: torture: Add SMB2 access-based enumeration test. Passes against Win2k12R2.
adds 23f6744 s3:lib: validate domain name in lookup_wellknown_name()
adds 2f6dc26 s3: lsa: lookup_name() logic for unqualified (no DOMAIN\ component) names is incorrect.
adds 8bcbb6f s3: test: Fix standalone valid users fileserver test.
adds 30460fc s4:torture: Add test case for Replay of Persistent Handle on a Single Channel.
adds 5aab31a ctdb-recovery: Update vnnmap before database recovery
adds dfc84fd ctdb-daemon: Change handling of default capabilities
adds 6456b06 ctdb-scripts: Lock debugging should print kernel stack for process in D state
adds 7163e08 samba-tool --help: possessive pronoun "its" has no apostrophe
adds 8bb44c5 ntlm auth: spelling fixes
adds 2bad085 build: Build *_wrapper without -DNDEBUG for in-tree use
adds c4bdba9 s3.lib: Remove invalid switch case from sysquotas_nfs
adds c8ee1a0 vfs_fruit: add and use define for the Netatalk metadata xattr
adds fedd096 vfs_fruit: hide the Netatalk metadata xattr in streaminfo
adds 2881679 vfs_streams_xattr: fix and simplify streams_xattr_get_name()
adds 7c48369 smbd: Fix file name buflen and padding in notify repsonse
adds 46308bb auth: Remove procid_self() from auth_samba4
adds bcc1521 fssd: Remove reference to procid_self()
adds ad924ab winbindd: Remove reference to procid_self()
adds b9fd6e2 lib: Fix pid_to_procid()
adds 6eb6622 lib: Remove procid_self() from messages.c
adds da88b0d lib: Remove unused procid_self()
adds 62f2b86 lib: Remove unused procid_is_me()
adds a788fd3 lib: Remove unused global my_unique_id
adds 01d7e26 lib: Push down unique generation one level
adds 22b320c lib: Add some debug to dgm_ref
adds 3194a4d lib: Remove unused serverid_get_random_unique_id
adds 19a0a7f script/release.sh: make it possible to create stable .0 releases
adds 79ec9cb s4:lib/messaging: use correct path for names.tdb
adds 1dba498 s4:lib/messaging: use a helper variable for tdb flags
adds 6c81ecc README.Coding: initialize pointers
adds aa96c75 selftest: add a test for async_connect_send()
adds 05d4dbd async_req: fix non-blocking connect()
adds 56dd83b torture: Add better debug message when tsocket_address_inet_from_strings fails
adds 751ea34 selftest: Correct comment about MAX_WRAPPED_INTERFACES
adds 5701b99 samba-tool dns: Trap on conneciton errors and give useful info
adds e8bab90 samba_upgradedns: Remove unused variable
adds 35f2673 dsdb: Add functional levels for 2012 and 2012R2
adds f00dd4a provision: Allow more OS levels in sambadns
adds 7f8f1ab net: print file path in serverid wipedbs --verbose
adds 1d51119 s3-smbd: Fix old DOS client doing wildcard delete - gives a attribute type of zero
adds 618d3dd s3-torture: Add WILDDELETE test to smbtorture3 to test old wildcard delete with zero attribute
adds e4054f2 s3-torture: Remove (incorrect) samba3-specific behavior in samba3.raw.unlink now the server is correct
adds f1835d8 dynconfig: Use replace.h and memory.h directly, not via includes.h
adds 800437c autobuild: add some system information to the autobuild tarball
adds f99d0b9 script/release.sh: make it possible to create stable .x releases (x >= 1)
adds 7cf4553 selftest: Fix memset parameters in test for async_connect_send()
adds 38d547b dcerpc.idl: accept invalid dcerpc_bind_nak pdus
adds 1d3df7e debug: Prefix messages from DBG_* with function name
adds b041a58 Remove function name from callers of DBG_*
adds 41fe3cf README.Coding: Update section about debug macros
adds 3e705ad lib/tsocket: fix non-blockging connect() error handling
adds f1c49d7 messaging: Fix creating the dgm lockfile
adds d4059e1 auth: gensec: Parameters out_mem_ctx and ev are passed in the wrong order to gensec_spnego_server_try_fallback().
adds c466ad4 texpect: undefined symbol rep_fprintf
adds c607989 ctdb-tests: Drop simple uses of "ctdb -n all ..." from simple tests
adds a94378e ctdb-tests: Drop use of "ctdb delip -n all" in simple tests
adds 5d2c943 ctdb-tests: Do not test "ctdb nodestatus -n all"
adds 8c2048b ctdb-tools: Support "ctdb ip all" as equivalent to "ctdb ip -n all"
adds f7c414d ctdb-tests: Change "ctdb ip -n all" to "ctdb ip all"
adds 94898dd ctdb-doc: Stop using "ctdb -n all ..."
adds 0ccf842 ctdb-scripts: Use "ctdb ip all" instead of "ctdb ip -n all"
adds 71dcc76 build: Enable NTVFS file server to be omitted
adds d7cc5d4 Add samba4.smb2.create.mkdir-dup(ad_dc_ntvfs) as flapping
adds 3e6af71 autobuild: Confirm we can build without --enable-developer
adds 11620ae smbd/quotas: Remove invalid quota status switch case
adds 0a924d1 smbd: Send SMB2 oplock breaks unencrypted
adds 6cd8e79 repl_meta_data: Print more detail into the LDB error string, not just DEBUG()
adds 80171dd samba-tool: Remove vampire subcommand and now unused libnet_Vampire()
adds 6d301ad samba-tool: Add new command 'samba-tool drs clone-dc-database'
adds 4b25650 repl: Give an error if we get a secret when not expecting one
adds d1d5ec3 samba-tool drs clone-dc: Add --include-secrets option
adds 04512d1 repl: Use DSDB_REPL_FLAG_PRIORITISE_INCOMING in samba-tool drs replicate --local
adds ffe8090 samba-tool drs clone-dc-database: Require --targetdir
adds 1c02f28 ldb: Fix python bindings to accept a string as a DN
adds dadfffb python/kcc: Write correct module list into the file during ldif_to_samdb
adds 2715805 selftest: Add tests for samdb_to_ldif_file
adds 0504065 dns_server: Put more code in common
adds 87cd68c dns_server: Add a python module directly accessing DNS records in sam.ldb
adds b48776d pydsdb: Also accept ldb.MessageElement values to dsdb routines
adds 2191fca dns_server: Add python method to extract a DNS entry from a ldb.MessageElement
adds 1874f59 samba-tool domain demote: Add --remove-other-dead-server
adds f121173 samba-tool domain demote: Allow to operate on an RODC and a subdomain
adds cf075f2 selftest: Reorder tests.py to ensure that demote, then dbcheck run last.
adds 6965c98 selftest: Run demote test against the RODC environment also
adds 8086900 selftest: Make it clear that the first argument to KCC.run() is unused
adds 1f88353 samba-tool domain demote: Rework to allow cleanup of partial demotion, catch more errors
adds 097435c selftest: Run samba-tool domain demote while we have a clone of the DB handy
adds e432c1b samba-tool domain demote: Refuse to remove ourself
adds 27039a7 selftest: Add tests confirming the demote actually removes objects
adds fff09da dns_server: Give WERR_DNS_ERROR_NAME_DOES_NOT_EXIST on empty records
adds 00ffb67 samba-tool domain demote: Remove correct DNs and from the correct locations
adds a3b92a5 samba-tool domain demote: Use dn.add_base/dn.add_child
adds 3226077 pydns: Add replace_by_dn()
adds 145bb6f samba-tool domain demote: Remove all references to the demoted host, even in DNS
adds 642de91 samba-tool domain demote: Remove dns-SERVER object as well
adds e57dcdd samba-tool domain demote: Add --verbose and --quiet options
adds 55a13e1 samba-tool domain demote: Add support for removing by NTDS GUID
adds 97577fd Add samba4.smb2.create.mkdir-dup(ad_dc_ntvfs) as flapping
adds be2e0e6 selftest: Add sample provision of master-c596ac6 with multiple DCs
adds 0d962e0 selftest: Confirm a demote of a real network works
adds 0abbfb2 nss_wins: Use lp_global_no_reinit()
adds 5ab1452 nss_wins: Use libwbclient to query wins server
adds 5350945 WHATSNEW: Describe nss_wins changes
adds 843cb8e Documentation : Add GitHub notes to README.
adds 63c8919 selftest: Avoid system krb5.conf in testenv provisioning
adds 8d3106b selftest: Avoid system krb5.conf in some test envs that don't use kerberos
adds f9d6be3 selftest: Avoid system krb5.conf in "none" test env
adds 84b7a9f build:wafsamba: dead code removal in gettext detection
adds 42b1d30 ctdb-daemon: Keep protocol.h in sync with ctdb_protocol.h
adds 47cddb6 ctdb-ib: Fix build for infiniband transport
adds af99846 ctdb-tool: Remove repack command
adds 151a7da ctdb-build: Define CTDB_SOCKET at configure time
adds cbae31c build: --picky-developer implies --enable-developer
adds 0a90ed5 ctdb: open the RO tracking db with perms 0600 instead of 0000
adds b9903d7 ctdb-scripts: Remove PID file only if it existed
adds 86111fc ctdb-scripts: Fix an incorrect comment
adds 859e341 lib: util: Make non-critical message a warning.
adds 2666d06 build:wafsamba: removed most import * statements
adds 20b82ea ctdb-include: Remove unused header file include/ctdb.h
adds f33e618 ctdb-include: Remove unused header file include/ctdb_typesafe_cb.h
adds ed833d5 smbd: Fix a comment
adds 58418df lib: dbwrap_local_open references loadparm_context
adds e11008e lib: Include samba_util.h in server_id_db.h
adds af03f5b lib: Remove a includes.h reference
adds 7e45bec examples: Fix unchecked result warnings
adds c17df7c messages: messages.h needs data_blob.h
adds 6404c07 ldb: Fix a "ignoring return value" warning
adds 1466e27 build:wafsamba: Removed hard-coded class names from build scripts
adds 6e3cb6b s4:torture: fix a comment typo.
adds 472735f KCC: shift common is_generated() check out of branches
adds 03e3522 KCC: pull apart remove_unneeded_ntdsconn(), fixing intersite
adds 5bbcbe3 KCC: Share commit wrapper between forget_ntdsconn and intrasite
adds eec0d11 KCC: simplify get_dsa_for_implied_replica(), using IP invariant
adds 24ae662 KCC: stop --forget-intersite-links forgetting local links
adds 0f8f99f KCC: remove useless comments and simplify get_dsa_for_implied_replica()
adds 4bf95b6 KCC: Use detect_failed in create_connections
adds 704fd83 KCC: correctly use dsa.new_connection() system_flags argument
adds 059e283 KCC: set system flags for new intrasite connections
adds 5f60c4b KCC: keep track of IP transport for dsa.new_connection()
adds 310aa2f KCC: clarify debugging messages in bridgehead finding code
adds 6f78ad2 KCC: better explain our confusion in colour_vertices comment
adds 76f195a KCC: fix typo in error path
adds acd7728 KCC: default to not loading new samdb when we already have one
adds e442726 KCC: more debug info when --import-ldif goes badly
adds a9ddca0 KCC: Simplify RNG seeding logic, dropping the default value
adds ad009be KCC: shift --test-all-reps-from call to after kcc loading
adds 30330b4 KCC: avoid logging alarming things about exected events
adds 47b3334 KCC: load the object GUID with --import-ldif
adds 8fe9992 KCC: load samdb before calling kcc.run()
adds 8f59362 KCC: remove debug print statements from intrasite and intersite
adds 2638419 KCC: NTDSConnection.load_connection() requires objectGUID
adds e9f0799 KCC: raise KCCError, not Exception, in multiple places
adds ab63f1a KCC: Correct capitalisation of KCCError
adds 1d5bb59 KCC: fix pep8 line length in load_ip_transport()
adds b93205e KCC: whitespace for pep8
adds 6f93ffa KCC: remove NTDSConnection API methods that are never used
adds 46ac3a5 KCC: kcc.import_ldif doesn't need creds
adds e29fba6 KCC: with --import-ldif, don't default to standard DB url
adds 8bdfb25 KCC: samba_kcc --tmpdb X won't run if X already exists
adds 4346fe6 KCC: allow --test-all-reps-from to work with --import-ldif
adds b900adc ctdb-daemon: Separate prototypes for system specific functions
adds 7084cb9 ctdb-include: Move include/internal/cmdline.h to common/
adds 2fdb332 ctdb-daemon: Stop using tevent compatibility definitions
adds 01c6c90 ctdb-daemon: Remove dependency on includes.h
adds f50ac68 ctdb-daemon: Remove unused header file include/internal/includes.h
adds ded94c4 ctdb-build: Calculate correct version when building from tarball
adds f1b9d8f ctdb-common: Add missing prototype for ctdb_cmdline_client()
adds 4647787 ctdb-daemon: Separate prototypes for common client/server functions
adds 8558b76 ctdb-include: Group function prototypes from tcp and ib
adds 3132720 ctdb-include: Group function prototypes from server/ctdb_banning.c
adds 171299d ctdb-include: Group function prototypes from server/ctdb_call.c
adds 740bb90 ctdb-include: Group function prototypes from server/ctdb_control.c
adds 9c52c3d ctdb-include: Group function prototypes from server/ctdb_daemon.c
adds d85e13b ctdb-include: Group function prototypes from server/ctdb_freeze.c
adds 568a4ce ctdb-include: Group function prototypes from server/ctdb_keepalive.c
adds 8a4b342 ctdb-include: Group function prototypes from server/ctdb_lock.c
adds bc14982 ctdb-include: Group function prototypes from server/ctdb_logging.c
adds 930a620 ctdb-include: Group function prototypes from server/ctdb_logging_file.c
adds ae35699 ctdb-include: Group function prototypes from server/ctdb_logging_syslog.c
adds 3723eed ctdb-include: Group function prototypes from server/ctdb_ltdb_server.c
adds 9bb5e7d ctdb-include: Group function prototypes from server/ctdb_monitor.c
adds 19f87a0 ctdb-include: Group function prototypes from server/ctdb_persistent.c
adds af95b2f ctdb-include: Group function prototypes from server/ctdb_recover.c
adds c0a20b9 ctdb-include: Group function prototypes from server/ctdb_recoverd.c
adds beadc50 ctdb-include: Group function prototypes from server/ctdb_server.c
adds b0f10a4 ctdb-include: Group function prototypes from server/ctdb_serverids.c
adds 2d0f917 ctdb-include: Group function prototypes from server/ctdb_statistics.c
adds 28b33b5 ctdb-include: Group function prototypes from server/ctdb_takeover.c
adds 7ffd56d ctdb-include: Group function prototypes from server/ctdb_traverse.c
adds a24e2ae ctdb-include: Group function prototypes from server/ctdb_tunables.c
adds bdce6c4 ctdb-include: Group function prototypes from server/ctdb_update_record.c
adds 860f2edc6 ctdb-include: Group function prototypes from server/ctdb_uptime.c
adds 819f862 ctdb-include: Group function prototypes from server/ctdb_vacuum.c
adds 6ce1aa9 ctdb-include: Group function prototypes from server/eventscript.c
adds 1e782e6 ctdb-include: Move protocol structures from ctdb_client.h to ctdb_protocol.h
adds 404c91e ctdb-include: Move protocol structures from ctdb_private.h to ctdb_protocol.h
adds 03beaa3 ctdb-include: Move client function prototypes to ctdb_client.h
adds d2bd076 ctdb-include: Remove unused structures and prototypes
adds 30a6a22 ctdb-include: Order function prototypes as per ctdb_client.c
adds d8f3b49 ctdb-banning: Do not set recovery mode to ACTIVE in daemon
adds db9e10d s3-smbd: Fix use after issue in smbd_smb2_request_dispatch()
adds 9e87465 smbd: Fix/simplify scavenger routines
adds 9582a48 s4.torture.smb2/session : Replace CHECK_STATUS with torture macros
adds e8a2dda s4.torture.smb2/session: Add torture assert for unlink
adds f30a8a2 s4.torture.smb2/session: Add torture assert for close
adds 8343c70 lib/replace: Replace BSD strtoull by wrapping strtoull instead of strtouq
adds 89d254d lib/replace: Make sure that replacement strto[u]ll does not reset errno unexpectedly
adds a19bb29 s3: Remove unnecessary __P() macro
adds db04752 script/autobuild.py: exclude !pytalloc-util and !pyldb-util from bundling in samba-libs
adds 3cb1d6e s4:heimdal_build: handle CHECK_BUNDLED_SYSTEM returning False in check_system_heimdal_lib()
adds 2f61906 s4:heimdal_build: also use check_system_heimdal_lib() for "com_err"
adds 9ef47d2 buildtools: Ignore exact Python version for ABI checking
adds 77afc1b build:wafsamba: Update waf/wafadmin/Tools/config_c.py from upstream
adds 861018f build:wafsamba: Remove the now unneeded special treatment of rpath flags
adds d66863b manpage: corrected small typo error
adds ad85c89 s3:smb2_server: make the logic of SMB2_CANCEL DLIST_REMOVE() clearer
adds af92f1b s4.torture.smb2/session : Replace CHECK_VAL with torture macros
adds ed1e646 smbd: Do not include CTDB headers without CLUSTER_SUPPORT enabled
adds 4f84372 notifyd: Do not include CTDB headers without CLUSTER_SUPPORT enabled
adds d5cdfa0 backupkey: Fix CID 1338078 (RESOURCE_LEAK)
adds 18879da Changing log level of two entries to DBG_NOTICE
adds b9b4bfa ctdb-daemon: Rename struct ctdb_script_wire to ctdb_script
adds e7c9e50 ctdb-daemon: Rename struct ctdb_scripts_wire to ctdb_script_list_old
adds f55889d ctdb-daemon: Rename enum ctdb_eventscript_call to ctdb_event
adds e0c42c5 ctdb-daemon: Rename struct ctdb_req_call to ctdb_req_call_old
adds 277c21f ctdb-daemon: Rename struct ctdb_reply_call to ctdb_reply_call_old
adds e23a289 ctdb-daemon: Rename struct ctdb_reply_error to ctdb_reply_error_old
adds 555a2f3 ctdb-daemon: Rename struct ctdb_req_dmaster to ctdb_req_dmaster_old
adds 296d9f4 ctdb-daemon: Rename struct ctdb_reply_dmaster to ctdb_reply_dmaster_old
adds acf858d ctdb-daemon: Rename struct ctdb_req_message to ctdb_req_message_old
adds e1fed53 ctdb-daemon: Rename struct ctdb_req_control to ctdb_req_control_old
adds 1c828b4 ctdb-daemon: Rename struct ctdb_reply_control to ctdb_reply_control_old
adds e8f8c63 ctdb-daemon: Rename struct ctdb_req_keepalive to ctdb_req_keepalive_old
adds c43b381 ctdb-include: Remove unnecessary typedefs
adds afc5d8a ctdb-daemon: Rename struct ctdb_node_map to ctdb_node_map_old
adds 2b76e58 ctdb-daemon: Rename struct ctdb_public_ip_list to public_ip_list
adds 04eaa07 ctdb-daemon: Rename struct ctdb_all_public_ips to ctdb_public_ip_list_old
adds 9bf7d0d ctdb-daemon: Rename struct latency_counter to ctdb_latency_counter
adds b99436e ctdb-daemon: Rename struct ctdb_rec_data to ctdb_rec_data_old
adds b45bc4c ctdb-daemon: Rename struct ctdb_statistics_wire to ctdb_statistics_list_old
adds 75572bd ctdb-daemon: Rename struct ctdb_db_statistics to ctdb_db_statistics_old
adds a9f335f ctdb-daemon: Rename struct ctdb_iface to ctdb_interface
adds 6e37bb7 ctdb-include: Remove unused structure definitions
adds b936145 ctdb-daemon: Rename struct ctdb_client_notify_register to ctdb_notify_data_old
adds 563f518 ctdb-daemon: Remove struct ctdb_client_notify_deregister
adds 645cd43 ctdb-daemon: Rename struct ctdb_dbid_map to ctdb_dbid_map_old
adds 22c84ff ctdb-daemon: Rename enum ctdb_server_id_type to ctdb_client_id_type
adds d858c21 ctdb-daemon: Rename struct ctdb_server_id to ctdb_client_id
adds 699ee0d ctdb-daemon: Rename struct ctdb_server_id_list to ctdb_client_id_list_old
adds a82ee23 ctdb-daemon: Rename struct ctdb_control_tcp_addr to ctdb_connection
adds 92a6ac1 ctdb-daemon: Rename struct ctdb_tcp_connection to ctdb_connection
adds d4de452 ctdb-daemon: Rename struct ctdb_ban_time to ctdb_ban_state
adds cf1ac77 ctdb-daemon: Rename struct srvid_request to ctdb_srvid_message
adds e34afd8 ctdb-daemon: Rename struct srvid_request_data to ctdb_disable_message
adds ca48135 ctdb-daemon: Rename struct ctdb_control_tcp_tickle_list to ctdb_tickle_list_old
adds cb0be41 ctdb-daemon: Rename struct ctdb_tunable to ctdb_tunable_list
adds 357bc60 ctdb-daemon: Rename struct ctdb_control_ip_iface to ctdb_addr_info_old
adds f8c2dc3 ctdb-daemon: Rename struct ctdb_control_gratious_arp to ctdb_addr_info_old
adds 64d8bb6 ctdb-daemon: Rename struct ctdb_control_pulldb to ctdb_pulldb
adds 1278a5a ctdb-daemon: Rename struct ctdb_control_set_tunable to ctdb_tunable_old
adds 417077c ctdb-daemon: Rename struct ctdb_control_transdb to ctdb_transdb
adds c4e9d61 ctdb-daemon: Rename struct ctdb_control_iface_info to ctdb_iface
adds ecfaef5 ctdb-daemon: Rename struct ctdb_control_public_ip_info to ctdb_public_ip_info_old
adds 44e611d ctdb-daemon: Rename struct ctdb_control_get_ifaces to ctdb_iface_list_old
adds 409c92b ctdb-daemon: Remove explicit include of ctdb_protocol.h
adds 3b71d05 ctdb-tools: Use replace headers instead of system headers
adds 03c69d8 ctdb-include: Remove unused definitions
adds b8b737c ctdb-client: Rename g_lock datatypes as per new protocol.h
adds 8b84a82 ctdb-protocol: Rename G_LOCK_READ/WRITE to CTDB_G_LOCK_READ/WRITE
adds 38d9278 ctdb-include: Use new protocol definitions
adds 23932d3 ctdb-build: Add ctdb/ directory to include path for top-level build
adds c474173 tests: Add tests for net ads (join|leave)
adds b06544d wafsamba: detect programmer errors in CHECK_BUNDLED_SYSTEM()
adds aa3cc0b s3: smbd: If EA's are turned off on a share don't allow an SMB2 create containing them.
adds e8fab02 s3: winbind: Prevent null ptr access by returning error if no creds available
adds 89940f3 s3: rpcclient: Prevent null ptr access by returning error if no creds available
adds b37ecbd vfs_offline: add vfs_offline module
adds b3f3ffe vfs_offline: add a blackbox test
adds 77eb8e0 vfs_offline: add documentation
adds 6361063 s3-lib: Get the real initial uid for selftest
adds 796a05b selftest: Start smbd, nmbd and winbindd as root
adds 3b7cbc2 s4-rpc_server: Get the real initial uid for selftest
adds 3d7fdb8 selftest: Start Samba AD DC as root
adds e821e45 ntvfs: Add error debug statements for set_unix_security
adds 8922654 uwrap: Fix debug line in uwrap_init()
adds aad7019 uwrap: Improve debug output
adds 656f0db uwrap: Fix a possible null pointer dereference
adds 5a9c80d uwrap: Allow setresuid calls only for privileged users
adds 253f42c uwrap: Allow setreuid calls only for privileged users
adds 56970b4 uwrap: Allow setuid calls only for privileged users
adds 2232db8 uwrap: Move the EINVAL check down in seteuid()
adds 6b38879 uwrap: Allow setresgid calls only for privileged users
adds be0cb8a uwrap: Allow setregid calls only for privileged users
adds 6e30b2e uwrap: Allow setgid calls only for privileged users
adds 3328bce uwrap: Add the EINVAL check to setegid()
adds 2dae19c uwrap: Fix build warning with release build
adds fae40ec uwrap: Bump version to 1.2.0
adds 4f6eb58 talloc: version 2.1.5
adds bb0050a tdb: version 1.3.8
adds 49bddd8 lib: tevent: Initial checkin of threaded tevent context calling code.
adds 187aebb lib: tevent: Initial test of tevent threaded context code.
adds a132320 lib: tevent: tests: Add a second thread test that does request/reply.
adds 68077c6 lib: tevent: docs: Add tutorial on thread usage.
adds 9884a8f tevent: version 0.9.26
adds c54fc3f ldb: Run the Python testsuite
adds 7935796 pyldb: Properly increase refcount of returned values
adds 2e298c1 pyldb: Don't use the internal macro PyObject_REPR
adds a04cfaa pyldb: DECREF old debug function when resetting it
adds b509cbd pyldb: Add Python 3 compatibility (except strings)
adds 0b384f6 pyldb: Modernize test suite
adds d584d5e pyldb: Split text/byte strings for compatibility with Python 3
adds e958385 pyldb: Adapt tests to Python 3
adds 2a29e36 ldb: Build for two Python versions at once
adds a4d9c87 pyldb: Prevent segfault when first module is NULL
adds dd7baa2 pyldb: Fixes and Python3 compat for Dn component accessors
adds 0d36d6d pyldb: Improve test coverage
adds 8a40da8 ldb: version 1.1.23
adds 9b2aba1 fix writev(vector[...]) points to uninitialised bytes in call_trans2findfirst
adds 0f2f8a4 fix 'Invalid read of size 1' in reply_search
adds 17482d5 fix writev(vector[...]) points to uninitialised bytes in call_trans2findnext
adds 7ade519 fix uninitialised read in process_host_announce
adds ce8068e remove many valgrind errors for base.lock test
adds 2515ad7 vfs_gpfs: Fix the build with -Werror=declaration-after-statement
adds 23663b9 vfs_gpfs: Re-enable share modes
adds c6ae462 doc: fix a typo in the smb.conf manpage, explanation of idmap config
adds 21d0082 source3/wscript: remove pam_smbpass option as it was removed
adds 278c257 spec files: remove pam_smbpass
adds bae51eb Fix up some aesthetics ... ie, align things as they were intended.
adds 40a2deb build:wafsamba: Removed unnecessary and misleading variables
adds 9731979 build:wafsamba: Moved samba_before_apply_obj_vars to samba_utils
adds 1f4f081 build:wafsamba: Remove the unnecessary intltool module dependency
adds 963ccff build:wafsamba: Remove samba_utils.runonce
adds 7c5a92a build:wafsamba: Include the print_commands.py tool from upstream
adds f3033a1 build:wafsamba: Remove the print_commands code from the build scripts
adds c315fce Fix various spelling errors
adds c526f5f vfs_fruit: Fix a typo
adds f0bfd61 lib: Increase a debuglevel
adds c66592b lib: Move some procid functions out of util.c
adds 9b2a4b1 lib: messages.h references struct iovec
adds dee23e9 vfs_cap: Fix a warning
adds af26da1 vfs_acl_*: Only sha256 needed
adds 1ed577e ctdb-tests: Fix the name of the "setreclock" test
adds 3a7c73f ctdb-tests: Fix "setreclock" test
adds f05c6d3 ctdb-scripts: Improve CTDB wrapper shutdown code
adds be670ef ctdb-scripts: Add support for CTDB_DBDIR in tmpfs
adds 4749aec s3-build: Avoid setting CTDB specific include path
adds 609a923 dns_server: Fix a clang warning
adds c701e46 lib: Fix CID 1338432 Unchecked return value
adds 2d6dca8 smbstatus: always initialize a messaing context
adds 42d5b06 vfs: Remove smb_traffic_analyzer
adds 85a2a2c ctdb-tests: Try to connect few times before failing in comm_client_test
adds 6e6436a ctdb-build: Don't try to install unavailable prebuilt manpages
adds 8936281 gss: samba member server returns incorrect error code with some versions of krb5
adds ceb0988 ctdb-recoverd: Simplify using TALLOC_FREE()
adds bd0befa ctdb-recoverd: Drop some sanity checking in local IP verification
adds d608862 ctdb-recoverd: Do not run recovery-related events around IP takeover
adds a7e8687 ctdb-recoverd: Remove unnecessary assignments of need_takeover_run
adds 1d7d5ab ctdb-recoverd: Trigger takeover run after rebalance timeout
adds 8b7b153 ctdb-recoverd: Drop culprit argument from ctdb_reload_remote_public_ips()
adds c37e3c0 ctdb-recoverd: Remote IP validation can't cause a takeover run
adds 8cdae3a ctdb-recoverd: Move ctdb_reload_remote_public_ips() to ctdb_takeover.c
adds 0886637 ctdb-recoverd: Reload remote IPs as part of takeover run
adds c4267ce smbd: Remove dead code
adds 0137105 s4-auth: Fix some debugging and crash in error cases
adds 8039382 s3: smbd: Remove aio_pending_size from globals.
adds 17f4110 s3: smbd: Remove outstanding_aio_calls from globals.
adds c737fae smbd: Issue fsync for SMB2 FLUSH asynchronously
adds f9b92cf selftest: Use strict sync = yes
adds 0aca421 ctdb: Fix the O3 developer build
adds e05d69f docs: correct the name of the idmap config group of parameters
adds 5327c60 s3: smbd: Remove --with-aio-support. We no longer would ever prefer POSIX-RT aio, use pthread_aio instead.
adds c83ecbb s3: smbd: Remove checks causing fallback to sync on pread/pwrite/fsync.
adds c4be0b7 s3: smbd: Change aio_pending_size static variable to a new "aio max threads" smb.conf parameter.
adds 90469a3 docs: Update doc for 'strict sync' parameter for async SMB2 flush
adds eee4af5 WHATSNEW: Add async SMB2 flush and new aio parameter
adds 848da80 ctdb-daemon: Move switch_from_server_to_client() to ctdb_daemon.c
adds 7dd2f1c ctdb-daemon: Move ctdb_fork.c to server
adds c170cdb ctdb-logging: Move debug_extra definition to server/ctdb_logging.c
adds 8534408 ctdb-logging: Add APIs to convert debug_level to and from integer
adds 64ef27b ctdb-logging: Fix for loop condition
adds 2ddc527 ctdb-logging: Allow sub-string matching for debug level strings
adds 3d8c1ca ctdb-logging: Allow numeric specification of debug level
adds dd7d2a4 ctdb-tests: Update test to set numeric debug levels
adds 7e376f0 ctdb-logging: Remove duplicate definitions
adds 145da0b ctdb-system: Replace ctdb_logging.h with common/logging.h
adds 7258e1d ctdb-client: Replace ctdb_logging.h with common/logging.h
adds 3f31415 ctdb-common: Replace ctdb_logging.h with common/logging.h
adds f50db5c ctdb-server: Replace ctdb_logging.h with common/logging.h
adds 921d815 ctdb-transport: Replace ctdb_logging.h with common/logging.h
adds 1757755 ctdb-tests: Replace ctdb_logging.h with common/logging.h
adds 8b1bf86 ctdb-tests: Build in common/logging.c
adds 9c16aec ctdb-common: Use new debug level API
adds 27bc80c ctdb-tool: Use new debug level API
adds 0fffdc1 ctdb-daemon: Remove unused ctdb_logging.[ch]
adds 6b4a961 ctdb-build: Remove ctdb-common-util subsystem
adds 66574c9 ctdb-ipalloc: A VNN can only host IPs if node is in RUNNING runstate
adds 9ea3188 ctdb-ipalloc: Check for available IPs, not runstate, in takeover run
adds bda2d9d ctdb-ipalloc: Don't consider runstates in the IP takeover code
adds 134ede8 ctdb-doc: Correct documentation for tunables for script timeout
adds a33b50d ctdb-daemon: Do not bother printing script timeout count
adds 0d5db1c ctdb-daemon: Reset script timeout count in monitor code
adds 55ad4d8 ctdb-daemon: Move script timeout count into monitor state
adds 9166c30 ctdb-daemon: Rename EventScriptTimeoutCount to MonitorTimeoutCount
adds 74fa62c WHATSNEW: Document CTDB tunable change
adds 6f88375 ctdb-recoverd: Clarify recovery master validation logic
adds 4b37cc7 ctdb-recoverd: Have recovery daemon remember election result
adds 018077f ctdb-recoverd: Do not set recovery master during recovery
adds e90cab7 ctdb-recoverd: Explicitly set initial recovery master to unknown
adds d8decd0 ctdb-recoverd: Don't retrieve recovery master from local daemon
adds 0833e47 ctdb-recoverd: Do not sanity check recovery master with local daemon
adds 050e64b ctdb-recoverd: Clarify that recmaster is being set on the current node
adds 1499f3e ctdb-recoverd: Simplify using TALLOC_FREE()
adds d1f996a ctdb-recoverd: Drop explicit check for recovery lock
adds c5e50a4 ctdb-recoverd: Move VNN map retrieval to where it is needed
adds e44957f ctdb-recmaster: Update capabilities before calling first election
adds 44bf7c2 ctdb-recoverd: Factor out recovery master validation
adds cfe8bec build:wafsamba: Replace Options.is_install by bld.is_install
adds 7c0575d build:wafsamba: Install named.conf only once
adds db99742 build:wafsamba: Waf 1.8 compatible declaration of 'mandatory' configuration tests
adds e3e0a29 smbd: Implement a cleanup daemon
adds b4b4fd0 smbprofile: Add dst pid to smbprofile_cleanup
adds 1dddba5 smbd: Move smbprofile_cleanup() to the cleanupd
adds 99833c9 smbd: Move messaging_cleanup() to the cleanupd
adds 14fc901 smbd: Move serverid_deregister() to the cleanupd
adds bbeabd3 smbd: Move brl_validate to the cleanupd
adds de6fe2a smbd: Move cleanupd revalidate to a separate fn
adds b486398 smbd: Move a message_send_all to the cleanupd
adds f7e2399 s4-param: Make sure newname is not used uninitialized
adds 3de5943 s3-vfs_snapper: Fix a possible use without init warning
adds f4da068 s4-torture: Rename issuer unique id in backupkey test
adds 5943f92 s4-backupkey: Don't use deprecated data structures
adds 89deffb smbd: Streamline dos_mode_debug_print
adds 053cf16 smbd: Use dos_mode_debug_print in dos_mode_msdfs
adds 313986b smbd: Use dos_mode_debug_print in dos_mode_from_sbuf
adds 0f5c98f smbd: Use dos_mode_debug_print in get_ea_dos_attribute
adds b367dbc smbd: Add hex value to dos_mode_debug_print
adds b8467dc smbd: Early return from dos_mode_debug_print
adds c8485dd smbd: Refactor check_access()
adds c056daf smbd: Factor out check_access_fsp() from check_access()
adds c2d5fdb smbd: Use check_access_fsp where appropriate
adds 8f9bf74 smbd: Simplify check_access()
adds fd05d61 libcli/smb: Use helper function for finding session
adds 9ec0938 lib/util: Move util_process from util to util-core
adds 03b27bd ctdb: Use prctl_set_comment from lib/util
adds 3968e33 ctdb: Remove unused ctdb_set_process_name
adds d967789 ctdb-scripts: Fix CTDB_DBDIR=tmpfs support
adds 2be3dd1 lib: tevent: Fix bug in poll backend - poll_event_loop_poll()
adds 39d0a81 lib: tevent: Whitespace cleanup.
adds bf06a51 Set LD_LIBRARY_PATH during tests.
adds 4dfa4ed libreplace: Only check malloc.h once
adds b64f249 libreplace: Put the malloc.h check on a line of its own
adds 5f6c4fa libreplace: Only check for malloc.h if needed
adds 12b9b77 idl: Avoid // style comments
adds 69e427e idl: Some CC can't find indented #defines
adds 155eeac lib: Fix memalign_array overflow protection
adds 5036c6e build:wafsamba: remove check_orphaned_targets
adds 7e9aaec winbind: Don't crash on invalid idmap configs
adds 42b7d48 auth: remove a line that has no effect
adds d8717a0 auth: consistent handling of well-known alias as primary gid
adds d451bba selftest: add test for force user and well-known primary group
adds d7739d8 ctdb-ipalloc: node_ip_coverage() doesn't need CTDB context
adds cfa0ffe ctdb-ipalloc: Move IP allocation state into its own struct
adds 47ddd62 ctdb-ipalloc: New enum ipalloc_algorithm in ipalloc_state
adds cc1637b ctdb-ipalloc: Add no_ip_failback to ipalloc_state
adds 837483c ctdb-ipalloc: Move IP list creation out to ctdb_takeover_run()
adds 5fba874 ctdb-ipalloc: Tidy up create_merged_ip_list()
adds 5b7bb60 ctdb-ipalloc: ctdb_takeover_run_core() takes ipalloc_state
adds 8fdda6f ctdb-scripts: Drop creation of database directories
adds 0111773 samba-tool:provision: fix bug 11600
adds 25c1093 ctdb-ipalloc: Drop CTDB context argument from set_ipflags_internal()
adds 921e17d ctdb-ipalloc: Add error handling to IP allocation
adds 1316241 ctdb-ipalloc: Allocate memory off IP allocation state
adds 22a930a ctdb-ipalloc: Use number of nodes from IP allocation state
adds dd163e2 ctdb-ipalloc: Fold IP flags into IP allocation state
adds 47c5e5a ctdb-ipalloc: Have set_ipflags_internal() set ipalloc_state->ipflags
adds e73496d ctdb-ipalloc: Move memory allocation into ipalloc_state_init()
adds 33084a1 ctdb-ipalloc: Drop unnecessary struct ctdb_ipflags
adds 8aab442 dbwrap_tdb: Fix a typo
adds bf10446 selftest: Fix Samba::bindir_path() with a valid directory.
adds e9e306b krb5_wrap: Fix picky const compiler warnings
adds e0504a8 s4-auth: Fix picky unused variable warning
adds ab0cbf9 auth: Fix picky const warnings in gssapi_pac
adds 0733ce3 gensec: Fix picky unused variable errors
adds e6f88c1 libads: Fix picky const warning with krb5_set_password_using_ccache
adds 22386dc samba-tool: replace use of os.popen
adds cc4f7e3 build:wafsamba: Specify whether node objects or flat lists in ant_glob
adds 735cf06 build:wafsamba: Ensure that target clones get a different name
adds 3b2ae07 build:wafsamba: Ensure that check_group_ordering can be overridden
adds 9883599 smbd:dir: remove an extra empty line in files_below_forall()
adds 1582006 s3: smbd: have_file_open_below() fails to enumerate open files below an open directory handle.
adds 16f2028 s3: smbd: Change semantics of strict rename to search the file open db.
adds 2b0df37 s3: docs: Fix "strict rename" doc to match code.
adds 8024e19 s3: smbd: Tear down global_smbXsrv_client in the correct order.
adds 28fb899 ctdb-include: Make protocol headers self contained
adds 2bad37d ctdb-include: Make client header self contained
adds af13e56 ctdb-system: Use protocol/protocol.h instead of ctdb_private.h
adds 3d84399 ctdb-protocol: Add utility function ctdb_sock_addr_to_string
adds 3fc6a89 ctdb-protocol: Add marshalling for TDB_DATA
adds 5878177 ctdb-protocol: Do not expect a reply for SHUTDOWN control
adds 5498b71 ctdb-protocol: Fix marshalling of struct ctdb_addr_info
adds 5f5b319 ctdb-protocol: Fix marshalling of struct ctdb_public_ip_list
adds 8ded8e8 ctdb-protocol: Add API to extract ctdb_ltdb_header from TDB_DATA
adds 1ee7053 ctdb-protocol: Fix marshalling for struct ctdb_rec_data
adds 257ec9c docs: Fix some typos in the idmap backend section.
adds f3d1fc1 dbwrap_rbt: use talloc_zero_size() instead of a partial ZERO_STRUCT()
adds 5905079 dbwrap_rbt: add nested traverse protection
adds 0f46da0 dbwrap_rbt: fix modifying the db during traverse
adds bb9f13a s3:torture: add traverse testing to LOCAL-RBTREE
adds 1c91177 Add --set-nt-hash option to pdbedit to update user password from nt-hash hexstring.
adds 576b92a pdb: add a blackbox test for setting password with hash
adds 9368917 passdb: Change ABI version to 0.24.2
adds 0548fc5 docs: change pdbedit --set-nt-hash to be consistent
adds a84eed5 lib/param: add a fixed unified lpcfg_string_{free,set,set_upper}() infrastructure
adds c2de842 s3:talloc_dict: fix a SIGBUS when dereferencing unaligned pointers
adds 87f8bdd lib: Fix an array subscript is above array bounds error
adds b3a9b88 librpc: Fix a possible array out of bounds access
adds 49912f2 smbd: Fix a typo
adds 797be47 smbd: Simplify a boolean expression
adds 58d4e77 smbd: Fix a comment
adds 91e12e0 libcli/smb: make sure we have a body size of 0x31 before dereferencing an ioctl response
adds b47bfce libcli/smb: correctly handle STATUS_BUFFER_OVERFLOW in smb2cli_read*
adds 68850f3 libcli/smb: correctly handle STATUS_BUFFER_OVERFLOW in smb2cli_query_info*
adds 0e8d33f libcli/smb: correctly handle STATUS_BUFFER_OVERFLOW in smb1cli_readx*
adds 3bbd8d3 libcli/smb: fix BUFFER_OVERFLOW handling in tstream_smbXcli_np
adds 6321145 lib/async_req: do not install async_connect_send_test.
adds d2a0806 s4:torture/basic: Fix misleading test case names in aliases test
adds d698cec s3:smbd: convert file_struct.posix_open to a bitmap with flags
adds bf19575 s3:smbd: file_struct: seperate POSIX directory rename cap from POSIX open
adds 89a7394 vfs_fruit: add a flag that tracks whether use of AAPL was negotiated
adds 1d7bef5 vfs_fruit: enable POSIX directory rename semantics
adds 0f0693d s4:torture:vfs_fruit: add a test for POSIX rename
adds 0583d5b vfs: remove posix_flags hack, bump interface version to 34
adds 412cefc client: Fix parameter mixup
adds f25d09a selftest: fix tar test with Pax format archives
adds c118fbc clitar: cope with functions of older versions of libarchive
adds 99b2fd4 ldb: Fix bug triggered by having an empty message in database during search.
adds c505076 Fix propagation of LDB errors through TDB.
adds 2a55a0b Fix little typo in README file
adds 60dc26b ldb: Fix installation of _ldb_text.py
adds 5137daa ldb: Move ldb_(un)pack_data into ldb_module.h for testing
adds e153501 ldb torture: Test ldb unpacking and printing
adds ad66858 ctdb-daemon: Drop handling of ban control sent to unexpected node
adds bd7c94d ctdb-recoverd: Drop function unban_all_nodes()
adds d7424f9 ctdb-scripts: Add exportfs cache to NFS Linux kernel callout
adds 80c0511 ctdb-docs: Rewrite event script documentation
adds 473f1a7 ctdb-daemon: Do not process tickle updates for hosted IP addresses
adds 4261d6e ctdb-daemon: Move VNN lookup out of ctdb_remove_tcp_connection()
adds 5dcc1d7 ctdb-daemon: Don't delete connection information for released IP
adds fb66232 ctdb-ipalloc: Tidy up some of the IP allocation functions
adds 13aa583 ctdb-ipalloc: Fold all IPs list into IP allocation state
adds 99abcc1 ctdb-ipalloc: Fold force_rebalance_candidates into IP allocation state
adds 821aa24 ctdb-ipalloc: Rename ctdb_takeover_run_core() to ipalloc()
adds fe91857 ctdb-ipalloc: Rename top level IP allocation algorithm functions
adds bd569c3 docs-xml: Document range parameter for idmap_autorid
adds dd9b12a ntlm_auth: Add --offline-logon
adds 4735e5f samba-tool: fsmo.py throws an uncaught exception if no
adds fbcf1d2 samba-tool: user create examples show 'add' instead of 'create'
adds 17bc0fa Revert "s3: smbd: Tear down global_smbXsrv_client in the correct order."
adds 2bb0b47 lib: Avoid a includes.h
adds 7e5b4cd lib: make debug_dsdcinfo_flags static
adds 9bc3f48 lib: Lift lp_disable_netbios one level
adds 557169d lib: Use GUID_buf_string in discover_dc_dns
adds a0fcb7b libdns: tsocket returns -1 and sets errno
adds 190e2c0 libdns: Properly set ENOMEM
adds dfceb51 libdns: Convert dns_udp_request to 0/errno
adds ea6de66 libdns: Small cleanup
adds 3c6ea32 lib/param: handle (ignore) substitution variable in smb.conf
adds 2f16675 ping_pong: add -l option
adds 39ec708 s4-torture: make sure we always verify ndr pull and push of bkrp_exported_RSA_key_pair struct.
adds e8ce1f2 s4-rpc_server: Rename dcesrv_backupkey to dcesrv_backupkey_heimdal
adds 8e09669 s4-rpc-bkrp: Do not set the ca status
adds 53e8fee waf: Check for GnuTLS 3.4.7
adds 97765d4 s4-rpc_server: Add a GnuTLS based backupkey implementation
adds 59c11db s4-torture: Rename backupkey test to backupkey_heimdal
adds eb11fba s4-torture: Add a GnuTLS based backupkey rpc test
adds 39bd6f0 s4-torture: Improve backupkey test to validate the self signed cert
adds defa49e s4-torture: Remove obsolte code in backupkey_heimdal rpc test
adds 79df4ca docs: Fix typos in man vfs_gpfs.
adds 640ecbb vfs_glusterfs: Fix AIO crash on smb.conf reload.
adds 8d3b900 vfs_glusterfs: Add white space so vfs_glusterfs_pread_send and vfs_glusterfs_pwrite_send match.
adds 36813a4 vfs_glusterfs: Move vfs_gluster_write and vfs_gluster_pwrite.
adds 7fb3d28 ctdb-client: Only get capabilities from active nodes
adds c808a63 s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds a1deced s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds cc13120 s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds c19eaf3 s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds cad35c5 s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds 82fa4ec s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds 0db1ad9 s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds dea2add s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds 07c4967 s3: smbd: Moving lp_posix_pathnames() out of the lower-level code.
adds b36c621 s3: smbd: When requesting posix open in open_file_ntcreate() we need to set all posix flags.
adds 7cd99b4 idmap_rfc2307: Fix handling of cn realm
adds f3d140f docs-xml: Update idmap_rfc2307 manpage for new realm handling
adds 5ef9184 lib: Add gencache.h
adds d547d03 gencache: True->true, False->false
adds c281573 lib: Use directory_create_or_exist in xx_path
adds 640870e lib: Separate out xx_path() & callers
adds 8ca3a58 gencache: Refactor gencache_set_data_blob
adds 79f946c lib: Remove unused talloc_append_blob
adds 203f023 s4:torture/winbind: add more debug output to samba4.winbind.struct.domain_info
adds 8b26559 pycredentials: add get_kerberos_state() method
adds d097e81 auth: increase resolution for password grace period calculation
adds 909ebe0 password_lockout tests: add assertLoginFailure()
adds 795f472 auth: keep track of lastLogon and lastLogonTimestamp
adds ab1ebb1 password_lockout: test creds.get_kerberos_state()
adds 67b6346 python: Give a more helpful error message when we do not have an smb.conf
adds 9bbb468 samba_dnsupdate: Expand output when --verbose is set
adds d38e221 samba_dnsupdate: Simplify logic and add more verbose debugging
adds 308d645 samba_upgradedns: Improve search for existing accounts in secrets.ldb
adds dc20c30 samba_upgradedns: Set correct permissions on secrets.keytab for BIND9
adds 4807577 Fix bug 10881 Wrong keytab permissions when joining additional DC with BIND backend
adds 9de59c7 dns_server: Consolidate talloc_realloc
adds 3f2cbb6 dns_server: Simplify talloc handling
adds 4b54e14 dns_server: Simplify array length handling
adds b6aaf77 dns_server: Convert "ask_forwarder" params
adds 3b7f99e dns_server: Add add_dns_res_rec()
adds 6adec93 dns_server: Add handle_authoritative_send()
adds 5a72a2e dns_server: Remove unused handle_question
adds 0062177 smbd: Fix CID 1343333 Uninitialized variables
adds 4767291 vfs_glusterfs: Attach missing destructor.
adds 6aaa8b6 lib: Remove ntstatus.h from gencache.h
adds 0fd68d0 librpc: Fix typos
adds 2058ce2 smbd: make "hide dot files" option work with "store dos attributes = yes"
adds ec504db CVE-2015-3223: lib: ldb: Cope with canonicalise_fn returning string "", length 0.
adds aa6c271 CVE-2015-3223: lib: ldb: Use memmem binary search, not strstr text search.
adds 7f51ec8 CVE-2015-5330: ldb_dn: simplify and fix ldb_dn_escape_internal()
adds 0454b95 CVE-2015-5330: ldb_dn_escape_value: use known string length, not strlen()
adds ba5dbda CVE-2015-5330: Fix handling of unicode near string endings
adds a118d42 CVE-2015-5330: strupper_talloc_n_handle(): properly count characters
adds 538d305 CVE-2015-5330: next_codepoint_handle_ext: don't short-circuit UTF16 low bytes
adds f36cb71 CVE-2015-5330: ldb_dn_explode: copy strings by length, not terminators
adds b63e3b9 ldb: version 1.1.24
adds 067640b Merge tag 'ldb-1.1.24' into master
adds 7606c0d CVE-2015-5252: s3: smbd: Fix symlink verification (file access outside the share).
adds cc137fa CVE-2015-5252: s3: smbd: Fix symlink verification (file access outside the share).
adds acbb4dd CVE-2015-5299: s3-shadow-copy2: fix missing access check on snapdir
adds f8b0f7f CVE-2015-5296: s3:libsmb: force signing when requiring encryption in do_connect()
adds aef4113 CVE-2015-5296: s3:libsmb: force signing when requiring encryption in SMBC_server_internal()
adds bc2d859 CVE-2015-5296: libcli/smb: make sure we require signing when we demand encryption on a session
adds 1595f56 CVE-2015-8467: samdb: Match MS15-096 behaviour for userAccountControl
adds abcd35f ldb: introduce ldb_unpack_data_withlist to unpack partial list of attributes
adds 61a84ca lib/ldb: Clarify the intent of ldb_data_unpack_withlist
adds 000249f ldb: increment version due to added ldb_unpack_data_only_attr_list
adds 486fd45 lib/ldb: Use better variable names in ldb_unpack_only_attr_list
adds 315049e lib/ldb Add checks for overflow during ldb pack and parse
adds 8731e0c lib/ldb: Rename variable for clarity
adds 8644dd4 lib/ldb: Use talloc_memdup() because we know the length of the attribute already
adds af16d52 ldb torture: test ldb_unpack_data_only_attr_list
adds b0aa686 selftest: Do not start tests on an environment that has failed to start up
adds e242d72 selftest: Ensure that if the SAMBA_PID is not set, that the env is not OK
adds fbcc309 s3:smbd: remove unused spnego related includes
adds 55d8bfc s3:libsmb: remove unused spnego related includes
adds f27ba17 vfs_glusterfs: Fix a memory leak in AIO
adds d7feb18 s3: libsmb: Correctly initialize the list head when keeping a list of primary followed by DFS connections.
adds a4fa489 negoex.idl: initial version
adds bf1fa9e negoex.idl: use DATA_BLOB for negoex_BYTE_VECTOR
adds bffcc17 libads: Remove "foreign" from ads_struct
adds dbd87b9 tdb: Refuse to load a database with hash size 0
adds 7ba9f82 s4-torture: add a negoex ndr pullpush test.
adds 9d28f82 s4:torture:vfs_fruit: remove unused tree2
adds 1d13744 s4:torture:vfs_fruit: rename tree1 -> tree
adds 8e0cf77 s4:torture:vfs_fruit: tweak check_stream_list()
adds 8694da4 s4:torture:vfs_fruit: use AFPINFO_STREAM_NAME
adds fdf937e s4:torture:vfs_fruit: enhance check_stream
adds 3c0ac9b s4:torture:vfs_fruit: add --option=torture:osx for enable_aapl()
adds 155397e s4:torture:vfs_fruit: add explicit cleanup of testfiles
adds 0a9a7c2 s4:torture:vfs_fruit: skip test test_read_atalk_metadata() without "localdir" and rename it
adds 987e12b s4:torture:vfs_fruit: skip test_adouble_conversion() without "localdir"
adds 56bf276 s4:torture:vfs_fruit: skip test_stream_names() without "localdir"
adds 0fc2ed8 s4:torture:vfs_fruit: fix test_aapl() to work with OS X
adds 3632609 s4:torture:vfs_fruit: fix test_rename_dir_openfile() to work with OS X
adds ba00884 s4:torture:vfs_fruit: fix flakey test_write_atalk_rfork_io with OS X
adds 1650e79 s3:lib/errmap_unix: map EOVERFLOW to NT_STATUS_ALLOTTED_SPACE_EXCEEDED
adds 748adea vfs_fruit: fix some debug messages
adds 0af7bf4 vfs_fruit: stat AFP_AfpInfo must fail when it doesn't exist
adds 6f8c188 s4:torture:vfs_fruit: file without AFP_AfpInfo
adds 4024153 vfs_fruit: handling of ftruncate() on AFP_AfpInfo stream
adds e5588b4 s4:torture:vfs_fruit: add tests for AFP_AfpInfo delete-on-close and eof
adds e94b177 vfs_fruit: writing all 0 to AFP_AfpInfo stream
adds 666a55b s4:torture:vfs_fruit: test nulling out AFP_AfpInfo stream
adds f569fd5 vfs_fruit: fix offset and len handling for AFP_AfpInfo stream
adds decde0b s4:torture:vfs_fruit: update AFP_AfpInfo IO tests
adds ee431fc vfs_fruit: ignore delete on the AFP_Resource stream
adds 21d4b5c s4:torture:vfs_fruit: add tests for AFP_Resource delete-on-close and eof
adds b165d52 s4:torture:vfs_fruit: add test test_read_afpinfo
adds 00e952e s3: fix encryption help messages
adds 5f407e3 Fix typo in winbindd_cm.c
adds 5c183b2 s3: smbd: Use ucf_flags variable instead of passing as parameter.
adds e5db676 s3: smbd: In open.c Use ucf_flags variable instead of passing as parameter.
adds b2c813f s3: smbd: In reply.c Use ucf_flags variable instead of passing as parameter.
adds f3f3426 s3: smbd: In trans2.c Use ucf_flags variable instead of passing as parameter.
adds 5d03e75 s3: smbd: In srv_srvsvc_nt.c Use ucf_flags variable instead of passing as parameter.
adds c783db3 s3: smbd: In smb2_create.c Use ucf_flags variable instead of passing as parameter.
adds acf6600 s3: smbd: In smb2_query_directory.c Use ucf_flags variable instead of passing as parameter.
adds 7641c69 s3: smbd: In nttrans2.c, add in UCF_POSIX_PATHNAMES to the ucf_flags if lp_posix_pathnames() requested.
adds 4ce5de5 s3: smbd: In srv_srvsvc_nt.c, add in UCF_POSIX_PATHNAMES to the ucf_flags if lp_posix_pathnames() requested.
adds 6694c82 s3: smbd: In open.c, add in UCF_POSIX_PATHNAMES to the ucf_flags if lp_posix_pathnames() requested.
adds dae4b37 s3: smbd: In reply.c, add in UCF_POSIX_PATHNAMES to the ucf_flags if lp_posix_pathnames() requested.
adds 31212e9 s3: smbd: In smb2_create.c, add in UCF_POSIX_PATHNAMES to the ucf_flags if lp_posix_pathnames() requested.
adds 274e8b5 s3: smbd: In smb2_query_directory.c.c, add in UCF_POSIX_PATHNAMES to the ucf_flags if lp_posix_pathnames() requested.
adds 993122a s3: smbd: In trans2.c, add in UCF_POSIX_PATHNAMES to the ucf_flags if lp_posix_pathnames() requested.
adds 035bd5f s3: smbd: Remove lp_posix_pathnames() from filename.c
adds 58bebcb smbd: file_struct: factor out POSIX pathname processing out of POSIX open
adds 431cf20 s3: smbd: open_file: use FSP_POSIX_FLAGS_PATHNAMES
adds f33224d net: Fix Coverity ID 241039 Unchecked return value
adds 4a6d7e1 s3: smbd: Move lp_posix_pathnames() out of srvstr_get_path_wcard_internal().
adds 5a34069 s3: smbd: Move lp_posix_pathnames() out into srvstr_get_path().
adds db36ee4 s3: smbd: Move lp_posix_pathnames() out into srvstr_get_path_req_wcard().
adds eb7198f s3: smbd: Add srvstr_get_path_wcard_posix().
adds 41d62df s3: smbd: Split all calls to srvstr_get_path_wcard() into srvstr_get_path_wcard_posix() or srvstr_get_path_wcard() depending on lp_posix_pathnames().
adds 5740761 s3: smbd: We now know that srvstr_get_path_wcard() is only called when lp_posix_pathnames() is false.
adds c78d739 s3: smbd: Add srvstr_get_path_posix().
adds 88bb480 s3: smbd: Split all calls to srvstr_get_path() to calls to srvstr_get_path_posix() or srvstr_get_path() depending on lp_posix_pathnames().
adds cc729ae s3: smbd: srvstr_get_path() is now only called when lp_posix_pathnames() is false.
adds 4587d83 s3: smbd: VFS change. Add new field bool posix_pathnames into struct smb_request.
adds 40df6f2 s3: smbd: Now struct smb_request has a bool posix_pathnames, remove the lp_posix_pathnames() call inside srvstr_get_path_req_wcard().
adds 6db6bc2 s3: smbd: Replace most uses of lp_posix_pathnames() with req->posix_pathnames in reply.c
adds 865bd48 s3: smbd: Replace most uses of lp_posix_pathnames() with req->posix_pathnames in nttrans.c
adds 3cd1b18 s3: smbd: Remove *all* uses of lp_posix_pathnames() from open.c
adds a2f025e s3: smbd: Convert all but one use of lp_posix_pathnames() into req->posix_pathnames in trans2.c
adds 944e940 s3: smbd: smb2_create.c - remove all uses of lp_posix_pathnames().
adds 398ee27 s3: smbd: Replace lp_posix_pathnames() with smbreq->posix_pathnames in smb2_query_directory.c.
adds 52bae79 s3: smbd: Remove lp_posix_pathnames() checks on paths sent in via old Win9X RPC calls.
adds 2efa2e0 s3: smbd: Replace lp_posix_pathnames() with req->posix_pathnames in dir.c. Only one remaining.
adds ada59ec s3:smbd: fix a corner case of the symlink verification
adds 33ed975 s4:samba-tool domain raise tool - handle Windows 2000 mode AD domains correctly
adds 8091f84 s4:samba-tool domain raise tool - make it aware of newer domain function levels
adds d098e9c repl: Skip new subdomains and partitions when replicating
adds 149c075 torture/gentest time_skew(): don't use labs() on unsigned NTTIME
adds bb64abf sambatool sites: PEP8/flake8 improvements
adds fa2c668 samba-tool sites: use -H to set URL with standard handling
adds f26b227 dsdb.tests.sites: merge interdependent tests
adds b27dcb5 samba.sites: improve grammar in an error message
adds 358c0f2 dsdb.tests.sites: don't use global database, tidy long lines
adds 9ac5e3c samba.sites: reduce code duplication in Exception classes
adds bdb03c5 selftest: Allow sites test to run against a remote ldap:// host
adds dbcb13c python.sites tests: remove excessive transaction management
adds 12813ea python/sites: Rework site DN construction
adds 8e6f2d9 samba-tool tests: Add command line tests for sites
adds cbb9397 samba-tool: add sites subnet subcommands
adds 906a53f samldb: ensure subnets have proper net ranges
adds 5b1a87e dsdb subnets: warn when an IPv6 address is in IPv4 embedding range
adds d4c2395 smbd: do not disable "store dos attributes" on-the-fly
adds 1be7e8b smbd: remove function name from a DBG_INFO in a recent commit
adds 73f01cd torture:smb2: fix copy'n'paste error in durable-open:open2:lease test
adds 1bc806a Happy New Year 2016!
adds 88969d7 thirdparty:waf: Update gccdeps from upstream
adds d60465c build:wafsamba: Use the upstream version of gccdeps
adds 9a91fce autobuild: Give a clearer failure message
adds cce1612 autobuild: Use cp --recursive --link --archive
adds af89d18 autobuild: Put the static build in another stanza
adds 05c3481 autobuild: Use make -j on samba-libs/samba-static build as well
adds ff94a01 travis: Add metadata file for the Travis CI Open Source cloud build/test service
adds 084bab5 ldb: Be strict about talloc_memdup() and passed in buffers in ldb_dn_set_component()
adds 30e92d0 ldb: Explain why this use of talloc_memdup() is safe
adds a44e4e9 ldb: validate ldb_dn_set_component input parameters even more strictly
adds 4580022 asn1: Remove an unused asn1 function
adds ad630a6 asn1: Make asn1_peek_full_tag return 0/errno
adds 249202d asn1: Add overflow check to asn1_write
adds f908e65 asn1: Add some early returns
adds ef8049b asn1: Make "struct nesting" private
adds fa207fe asn1: Add asn1_has_error()
adds 57a0bc9 lib: Use asn1_has_error()
adds 94b4459 asn1: Add asn1_set_error()
adds 8cfb6a3 lib: Use asn1_set_error()
adds 7b7aa01 asn1: Add asn1_extract_blob()
adds a93946b lib: Use asn1_extract_blob()
adds 2a5141a asn1: Add asn1_has_nesting
adds 1282f60 lib: Use asn1_has_nesting
adds 927bbed asn1: Add asn1_current_ofs()
adds b7f0e29 lib: Use asn1_current_ofs()
adds 3c340d8 libcli: Remove a reference to asn1->ofs
adds 44c56fc asn1: Remove a reference to asn1_data internals
adds d865ed2 asn1: Make 'struct asn1_data' private
adds 275da6c smbclient: query disk usage relative to current directory
adds 3e1b26b selftest: more dfree command and smbclient disk usage tests
adds eda6aaf s3:smbd/oplock obey kernel oplock setting when releasing oplocks
adds bfe4163 ntlm_auth: Allow --password force a local password check for ntlm-server-1 mode
adds 0cae227 selftest: Add tests for ntlm-server-1 and --password mode in ntlm_auth
adds 8ca6fe6 docs:smbdotconf: fix the description of 'machine password timeout'
adds 8108f0d s3: smbclient: asn1_extract_blob() stops further asn1 processing by setting has_error.
adds 2948fb3 net: Use procid_is_local
adds fe3c270 smbcontrol: Use procid_is_local
adds 11de99a asn1: Clean up includes
adds 46b8d7f python: Assert that we use Py_ssize_t consistently for PyParseArgs*()
adds 4894811 ldb: Adjust to PY_SSIZE_T_CLEAN and use Py_ssize_t consistently with PyArg_ParseTuple*()
adds 638c611 pidl: Use PY_SSIZE_T_CLEAN
adds 0064f1d pylibsmb: Adjust to use of PY_SSIZE_T_CLEAN
adds 6a6aec7 pymessaging: Adjust to use of PY_SSIZE_T_CLEAN
adds 5c7822a pyregistry: Adjust to use of PY_SSIZE_T_CLEAN
adds 516ec30 pyrpc: Adjust to use of PY_SSIZE_T_CLEAN
adds 8bac96d ntvfs/python: Adjust to use of PY_SSIZE_T_CLEAN
adds 0e58705 python: Remove Python 2.4 support macros
adds 78e9f1e build: Add space before -D option
adds 4a3ad42 samdb: Fix CID 1347320 Dereference null return value
adds 0cb8b9d ctdb: Fix CID 1347319 Unchecked return value
adds fc4c2dc bind_dlz: Fix CID 1347318 Unchecked return value
adds 657610a smbd: Fix 240393 Uninitialized pointer read
adds 245064d tldap: Remove unneeded vars
adds 8215409 tldap: Remove an unneeded "return;"
adds e481849 tldap: Use "size_t" for talloc_array_length result
adds 3df9e9c tldap: tevent_req_create NULLs out "state"
adds 5021974 lib: Introduce util_tsock.h
adds 093a89f tldap.h: References DATA_BLOB
adds 8842235 tldap: Avoid includes.h
adds 551e268 tldap: Use struct initializer in tldap_search
adds 2e2d4be s3:wscript: fix spaces
adds 9b443d2 torture: fix the ldap.cldap test
adds 38c2305 torture: fix the ldap.netlogon-udp test
adds 688590f torture: fix check_dom_trust_pw in the rpc:lsa test
adds fcb1ca8 torture: fix check_pw_with_krb5 in the rpc:lsa test
adds 71ffd3b torture: Fix winbind.wbclient.ResolveWinsByIp test
adds 77d0fce torture: add torture comment output of name/ip to WinsBy{Ip,Name} tests
adds ea741de nwrap: Fix the handle loops for older gcc versions.
adds 90dbe7b nwrap: Replace free() calls by SAFE_FREE macro where possible.
adds 02b5410 nwrap: Prevent compilation failure on machine without IPv4
adds 1c346a0 nwrap: Use ssize_t for aliases_count
adds a104389 nwrap: Avoid a string comparsion in getgrouplist()
adds 80abc70 nwrap: Remove unneeded memcpy in getgrouplist()
adds 90585c4 nwrap: Implement nwrap_files_initgroups()
adds 2a53352 nwrap: Remove unused struct member in nwrap_main
adds 4be5853 nwrap: Add shadow file parser
adds e971a44 nwrap: Add nss_wrapper_shadow_enabled() function
adds 608fa20 nwrap: Add (set|get|end)spent functions
adds 088887b nwrap: Add support for getspnam()
adds 22f159f src: Add configure check for shadow.h
adds 6706ee4 nwrap: Check for setspent and getspnam functions
adds ff65d01 nwrap: Add nwrap vector memory management functions
adds f3da6e4 nwrap: Simplify file loading.
adds 15c1453 nwrap: Add a hash table to the nwrap structure
adds 442fc3f nwrap: Add function nwrap_add_ai
adds 270d6f9 nwrap: Add nwrap_add_hname() and nwrap_add_hname_alias().
adds 090dec2 nwrap: Add string manipulation functions.
adds 960345e nwrap: Use nwrap vectors as memory backend for getaddrinfo() and gethostbyname()
adds 1017031 nwrap: Add BSD libc support for gethost*_r functios.
adds 4505dcd nwrap: Add basic locking for support multithreaded applications
adds 9d71542 nwrap: Fix memory leak when getline() is used.
adds 0f1ffb9 nwrap: Use nwrap_vector_foreach instead of for loop
adds e1bb009 nwrap: Fix memory leak inside nwrap_getaddrinfo()
adds 3cae3e5 nwrap: Rename cont to vector in nwrap_vector_add_item()
adds 853b2ff nwrap: Fix memory leak in nwrap_he_unload()
adds 43d470a nwrap: Fix memory leak in nwrap_files_gethostbyname()
adds 200f5bf nwrap: Fix memory leak in nwrap_gethostbyname_r()
adds 72764a6 nwrap: Better check service string sanity.
adds 522631b nwrap: fix numeric port detection in nwrap_getaddrinfo
adds 40f9bf7 nwrap: fix return code of getaddrinfo for AI_NUMERICSERV in error case
adds 5bea2dc nwrap: fix return code for getaddrinfo in case service is not valid
adds 8da2110 nwrap: remove code duplication in nwrap_getaddrinfo
adds 53e633e nwrap: improve code readability in nwrap_getaddrinfo()
adds b0569d4 nwrap: simplify logic in nwrap_getaddrinfo, calling nwrap_files_getaddrinfo
adds 9927e49 nwrap: slightly simplify logic in nwrap_getaddrinfo()
adds 559ed74 nwrap: in nwrap_getaddrinfo, only call libc_getaddrinfo if we need it.
adds be182ba nwrap: slightly clean flow by removing an else branch in nwrap_getaddrinfo
adds 067978d nwrap: initialize some variables in nwrap_files_getaddrinfo
adds 8f62cda nwrap: simplify nwrap_add_hname_alias
adds f7b28bd nwrap: simplify nwrap_add_hname
adds 3cc12ec nwrap: move var into scope in nwrap_add_hname()
adds 69af963 nwrap: remove a superfluous comment from nwrap_add_hname_add_new()
adds 4ec47e7 nwrap: remove superfluous comments from nwrap_add_hname_alias()
adds 19d5415 nwrap: remove superfluous comments from nwrap_add_hname()
adds 9502535 nwrap: rewrite linked-list datastructures to be properly separated.
adds 54c825b nwrap: log hash table full message at error level
adds 28f0a8b nwrap: simplify nwrap_files_gethostbyname: remove a variable
adds d681a08 nwrap: simplify nwrap_file_getaddrinfo: remove a variable
adds a725bd7 nwrap: turn nwrap_add_hname_add_to_existing() into bool
adds be8c7dc nwrap: catch NULL ip in nwrap_add_ai
adds 2974cef nwrap: catch null h_name in nwrap_add_hname_add_new
adds 7ec5aae nwrap: catch NULL list in nwrap_add_hname_add_to_existing
adds ddd0ca8 nwrap: better error propagation in nwrap_add_hname_alias
adds f6e4c58 nwrap: better error propagation in nwrap_add_hname()
adds ccb4076 nwrap: log NULL alias name at ERROR level in nwrap_add_hname()
adds 4919f1c nwrap: better error propagation in nwrap_he_parse_line()
adds fe7e163 nwrap: turn nwrap_files_cache_reload() into a bool function
adds 6078126 nwrap: use the error code from nwrap_files_cache_reload() in callers
adds 18be46d nwrap: convert nwrap_files_getaddrinfo() to return EAI error codes
adds 0dc34ea nwrap: in nwrap_files_getaddrinfo, treat failure of nwrap_convert_he_ai as error
adds 154080c nwrap: correctly track EAI_ADDRINFO in nwrap_files_getaddrinfo
adds 34cff9e nwrap: fix treatment of EAI_ADDRINFO in nwrap_files_getaddrinfo
adds 55e9606 nwrap: treat AI_NUMERICHOST correctly in getaddrinfo.
adds 07f1bef nwrap: refactor nwrap_add_hname_* into one nwrap_ed_inventarize.
adds b996f0a nwrap: Fix inventarization of IPs when loading hosts
adds 07b6925 nwrap: rename ai_prev -> ai_cur in nwrap_files_getaddrinfo()
adds a42f658 nwrap: fix a memleak in nwrap_files_getaddrinfo()
adds bf65160 nwrap: rename _ai -> ai_new in nwrap_files_getaddrinfo()
adds a66606c nwrap: use symbols IPPROTO_TCP and IPPROTO_UDP
adds 062c97b nwrap: move setting of ai_{flags|socktype|protocol} into nwrap_convert_he_ai
adds ab2f41b nwrap: add an explaining comment for the ai duplicating loop
adds d198cda nwrap: rewrite the loop for duplication ai entries if socktype not given
adds f1acb0e nwrap: remove ai_tail argument from nwrap_files_getaddrinfo()
adds 8fad97b nwrap: Fix initialization of e entry
adds db0ef5c nwrap: Cast max_hostents to avoid warnings
adds 16b71ae nwrap: Small code shift in nwrap_ed_inventarize_add_to_existing()
adds e94a7c5 nwrap: remove unused member list from struct nwrap_he
adds 736fa61 nwrap: rename nwrap_he.entdata to nwrap_he.entries
adds bf49615 nwrap: catch error to add item to vector in nwrap_he_parse_line()
adds 159fdb0 nwrap: fix leaking the entlists
adds 554963d nwrap: Cleanup shadow getspnam() memory
adds 766e795 nwrap: fix a copy and paste error in the destructor.
adds b54bbb2 nwrap: Fix the build on FreeBSD
adds 5f62197 nwrap: Don't leak memory from gethostbyname*() functions
adds 9b79020 nwrap: Fix the build on Solaris
adds 19b2dcb nwrap: Don't fail if we want to add an existing entry
adds da292b6 nwrap: Fix segfaults while reloading hosts file
adds 7cec309 nss_wrapper: bump version to 1.1.2
adds 7c4d802 talloc: Fix a documentation typo
adds 9790abd ctdb/web: Fix typo.
adds 8f73ae0 ctdb-daemon: Drop the "schedule for deletion" messages to DEBUG level
adds 56ce230 ctdb-recoverd: Fix some uninitialised memory issues
adds 24160ee ctdb-daemon: Don't leak memory if not using recovery lock
adds 18b0aea ctdb-ipalloc: Fix a memory leak
adds d8e4c5a ctdb-scripts: Fix regression in updateip code
adds c23744c ctdb-scripts: Clarify logic for success of interface monitoring
adds 2083883 ctdb-scripts: Superficial clean-ups to 10.interface
adds 4afe822 ctdb-scripts: Don't remove temporary files before use
adds a7ce00c ctdb-scripts: Use more unique temporary file names
adds 3ac2d4b ctdb-tests: Fix some incorrect memory allocations
adds fb5b0ce winbindd: Reset connection for expired session before reconnecting
adds e4adf55 winbindd: Add retry also for ADS method calls
adds 4c6804e winbindd: Remove double retry from some ADS methods
adds 3b6b545 winbindd: Retry on expired session in cm_connect_lsa
adds 276d604 winbindd: Retry on expired session in cm_connect_sam
adds aa3883e winbindd: Retry on expired session in cm_connect_netlogon
adds 6f3656c Revert "winbind: Retry after SESSION_EXPIRED error in ping-dc"
adds 4ab7a00 Use full path to dlinklist.h in includes.
adds 3123e2c Simplify handling of dependencies on external libraries in test_headers.
adds fddca39 samdb: Add explicit dependency on ldb.
adds 2cba491 tevent: Only set public headers field when installing as a public library.
adds 48ebeaa Add private_headers flag to SAMBA_*() functions.
adds 68a3576 tdb: Only set public headers field when installing as a public library.
adds 3eb9065 Error when private libraries have public headers.
adds 5d67d55 talloc: Only set public headers field when installing as a public library.
adds c46a8cf Make gensec private, for now.
adds 2f7dde3 Make libtorture private, for now.
adds 232726a Make libregistry private, for now.
adds 620d5cb Remove public library dcerpc-atsvc.
adds 1860e98 time_basic.h: Remove unnecessary dependency on replace.h
adds ce32f26 ldb: Only set public headers field when installing as a public library.
adds 773cfba Avoid including libds/common/roles.h in public loadparm.h header.
adds 512d15d Make libcli-smb-raw private, for now.
adds ffbd9c4 Add a new header file for functions in lib/util/util.c.
adds 218f96f libcli: Make headers for private libraries private.
adds da8674c Rename 'errors' to 'samba-errors' and make it public.
adds c29188f libsmb: Convert resolve_hosts to sockaddr_storage
adds 812e074 libsmb: Remove ip_service based resolve_lmhosts
adds 9039f1f libcli: Fix a typo
adds 5a2c305 idmap: Fix whitespace
adds 5e1a84c winbind: Properly error check init_lsa_ref_domain_list
adds 2aa1cf4 asn1: Fix a typo
adds f7583be asn1: Make asn1_peek_tag_needed_size static
adds 25243af docs: fix copy'n'paste error in vfs_shadow_copy2 manpage
adds e8e9e7f vfs:shadow_copy2: fix a debug message
adds 490a27b pam_winbind: check != PAM_SUCCESS and != NULL explicitly
adds fba90fd s3:smbd_smb2_reauth_generic_return: make use of smb2req->xconn
adds 3703bca vfs_shadow_copy2: add shadow_copy2_do_convert()
adds 8a49a63 vfs_shadow_copy2: fix case where snapshots are outside the share
adds 7362c27 vfs_shadow_copy2: add a blackbox test suite
adds 19d3fd1 s4-rpc_server: Add missing include for ROLE_ACTIVE_DIRECTORY_DC
adds e320725 ctdb-ipalloc: Split IP allocation into its own build subsystem
adds 39bc356 ctdb-ipalloc: Document the steps involved in a takeover run
adds 0f57acc s4:acl LDB module - fix error message
adds 93e48df ctdb: Fix the O3 developer build
adds 19fffeb ctdb-scripts: further untangle logic for success of interface monitoring
adds 8c2609f Change default LDAP page size to 1000.
adds cf05ba5 s3-libads: Use the configured LDAP page size.
adds d1235c7 ldb: Fix CID 1348110 Uninitialized scalar variable
adds cf163ac security: Add Asserted Identity sids (S-1-18)
adds a924209 s3-util: add helper functions to deal with the S-1-18 domain.
adds ecc7022 s3-util: skip S-1-18 sids in token generaion in sid_array_from_info3().
adds cff17f0 s3: smbd: Remove one more use of lp_posix_pathnames().
adds a2d49fa pidl: Change PyGetSetDef in generated python bindings to use C99 initialisers
adds 177ac58 ldb-samba: Implement transitive extended matching
adds a52bcaa ldb-samba: critical bugfix on original recursive search implementation
adds 1d05f3b ldb-samba: Reenable recursive search
adds 10e3237 ldb-samba: Correct error reporting to match Windows
adds 594778e ldb-samba: Expand testing of recursive search
adds d51a635 ctdb-build: Fix -O3 developer build
adds 006d4c1 docs: Bump version up to 4.4.
adds 0ed60d7 ctdb-protocol: Fix marshaling of seqnum
adds e59712b ctdb-client: Use ctdb_ltdb_header_extract()
adds 555237f ctdb-client: Close ctdb socket connection when client context goes away
adds 8ca76ad ctdb-client: Add a disconnect callback for ctdb client
adds 5d5d88e ctdb-client: Do not delete reqid explicitly
adds a7d54bb ctdb-client: Add missing initialization for h->ev in transaction_start
adds d905179 ctdb-client: Use ctdb_rec_buffer_init() to initialize ctdb_rec_buffer
adds 6cff009 smbcacls: fix uninitialized variable
adds 6ed3985 vfs_shadow_copy2: check crossmountpoints against snapdirseverywhere
adds 718007b docs:smbdotconf: fix tabs/space mixup in logon parameter metadata
adds c9218c4 smbd:smb2_close: remove an irritating blank line
adds a929913 s4-torture: let smb2.replay.replay5 test deal with scale out shares.
adds 8ff3257 s3:passdb: move my_sam_name() from passdb to util_name.c
adds 2f2b57a passdb: change ABI version to 0.25.0 due to removed symbol.
adds ef269c9 substitute: Fix talloc_sub_basic for %G in the case of a local user.
adds 63a13f4 smbstatus: remove obsolete verbose message
adds bfdffea s3:smb2_server: convert encryption desired and required bools to flags
adds 736cd36 s3:smb2_server: store encryption cipher in the channel
adds e501c73 s3:smb2_server: add encryption state tracking flags
adds f59ef03 smbstatus: rework connection dialect printing
adds c2443d6 smbstatus: pass talloc context to traverse_sessionid
adds 603f1de smbstatus: pass talloc context to traverse_connections
adds 5d75078 smbstatus: align session list header and ouput
adds e0fc931 smbstatus: show encrpytion state of sessions
adds 83a557d smbstatus: align tree connect header and output
adds 780743d smbstatus: show encrpytion state of tree connects
adds fe5353c s3:smb2_server: convert signing_required bool to flags bitmap
adds 9d28443 s3:smb2_server: add signing state tracking flags
adds 8d8af47 s3:lib/conn_tdb: store the connection dialect
adds 1e60a3f smbstatus: show signing state of sessions and tcons
adds f955499 libcli/smb: add define SMB_ENCRYPTION_GSSAPI for CIFS encryption type
adds b74bef8 smbstatus: add support for SMB1 signing and CIFS UNIX extensions encryption
adds 30419f2 tests: Rename heimdal blackbox tests
adds f69b6dd tests: Only execute heimdal tests if we build with heimdal
adds c3aaf64 waf: Only build the backupkey rpc test with AD DC enabled
adds 8ec92e5 smbspool: Add string representation of nt_status
adds 3e08469 build: fix ldbsearch panic on FC22
adds d60ffcf smbXsrv: introduce bool smbXsrv_client->server_multi_channel_enabled
adds 91770e3 s3:smb2_negprot: announce multi channel support (disabled)
adds edd781d s3:smb2_sesssetup: treat BINDING in smbd_smb2_session_setup_auth_return
adds a1a8746 s3:smb2_sesssetup: implement SMB3 session bind (disabled)
adds 78ccbb0 s3:smbd: Ignore initial allocation size for directory creation
adds cd86f20 s4:torture: add SMB2 test for directory creation initial allocation size
adds 6f212aa ctdb-scripts: Refactor function interface_monitor() to monitor one interface
adds fe64e76 ctdb-scripts: Rename get_real_iface() -> interface_get_real()
adds 85316c0 ctdb-scripts: Move interface monitoring code to functions file
adds d0f2143 ctdb-scripts: Drop functions mark_up() and mark_down()
adds 06901f4 ctdb-scripts: Rename variable: fail -> down_interfaces_found
adds df5845c ctdb-scripts: CTDB_PARTIALLY_ONLINE_INTERFACES incompatible with NAT gateway
adds 638117c ctdb-scripts: Move monitoring of CTDB_NATGW_PUBLIC_IFACE to 11.natgw
adds d71f747 ctdb-scripts: Tests for monitoring of CTDB_NATGW_PUBLIC_IFACE
adds 1538fc4 ctdb-tools: Add standalone ctdb_natgw tool script
adds 3a2eebf ctdb-tests: Test ctdb CLI tool via a stub
adds 7095c9b ctdb-scripts: New function ctdb_natgw_slave_only()
adds f1265f0 ctdb-tests: NAT gateway slave-only changes
adds bae9fea ctdb: Call out to ctdb_natgw helper from 11.natgw
adds e515968 ctdb-tests: Drop some unnecessary NAT gateway tests
adds 411ccb9 ctdb/tools: Update ctdb CLI tool to call ctdb_natgw
adds 3b64c27 ctdb-scripts: No longer set the NAT gateway capability
adds df6cca2 ctdb-tools: Drop support for setting and viewing NAT gateway capability
adds c8a5ab9 WHATSNEW: CTDB_NATGW_SLAVE_ONLY is no longer used
adds ec802d2 s3:utils/smbget fix recursive download
adds 4d033ba s3:utils/smbget code format
adds 76f1679 s3:utils/smbget use C99 format identifiers
adds b7da062 s3:utils/smbget make use of bool for flags
adds 1bf7905 WHATSNEW: Documentation CTDB changes for v4.4
adds 62c68bd s3-client: Add a KRB5 wrapper for smbspool
adds 500bc01 s3-parm: clean up defaults when removing global parameters
adds 57dab20 vfs_shadow_copy2: remove basedir state variable
adds 8433388 vfs_shadow_copy2: add snapsharepath parameter
adds bbb5a8a vfs_shadow_copy2: add tests for snapsharepath
adds dee38e0 vfs_shadow_copy2: documentation for snapsharepath
adds 6eaf40f s3:lib: fix white spaces in my_sam_name()
adds d67d8e1 s3:lib: remove supefluous comments from map_my_name()
adds a2894cf s3:lib: add braces around if-block in my_sam_name()
adds bc9e1fc librpc:idl: define FSCTL_NET_IFACE_NONE_CAPABLE in ioctl.idl
adds d392e0a lib:socket: add linkspeed, capability and if_index to iface_struct
adds 235f37b lib:socket: get interface index from kernel
adds 64be8e7 lib:socket: set defaults for linkspeed and capability in get_interfaces()
adds 1862aa6 build: detect support for ethtool
adds 549a9ab lib:socket: detect link speed with ethtool ioctl in get_interfaces (on linux)
adds 9f9d6ac smb.h: add linkspeed, capability, and if_index to interface struct
adds e569ffd s3:lib: copy speed, cap, and index in add_interface()
adds 3785be8 s3:lib: remove an unmotivated comment from interpret_interface()
adds 8284b34 s3:lib: extend interpret_interface() to optionally read speed, caps, and index from config
adds 9fcf874 s4:lib:socket: skip extra data in interpret_interface()
adds 99d3dbe docs:smb.conf: document new extra syntax for interfaces.
adds e8a051f s3:smbd: implement fsctl_network_iface_info
adds 6a24ccc s3:smbd: only process fsctl_network_iface_info if multi channel is enabled
adds 5e91bf0 idl:messagaing: add MSG_SMBXSRV_CONNECTION_PASS
adds bae1b94 idl:smbXsrv: add smbXsrv_client_global structures
adds 3590f3f idl:smbXsrv: add smbXsrv_connection_pass structures.
adds 8ab4629 smbd:globals.h: add guid_verified to smbXsrv_connection.smb2.client
adds d77238f smbd: add smbXsrv_client.c
adds 0010dc8 smbd:process: treat initialized table in smbXsrv_connection_init_tables
adds a446966 smbd:process: use smbXsrv_client_create.
adds cfbf450 smbd:smb2_server: let smbd_server_connection_terminate() only call exit_server() for the last connection
adds 7a890a7 smbd:smb2_negprot: implement connection passing based on client_guid
adds 798fcfd loadparm: introduce lp_parm_ulonglong() and lpcfg_parm_ulonglong()
adds 17c9b8d quotas: correct comment about SMB_GROUP_QUOTA_TYPE
adds 345f084 smbd: enable unit-testing of NT_TRANSACT_GET_USER_QUOTA
adds 540dcfa vfs_fake_dfq: add vfs module
adds f71761c selftest: add disk-free and quota tests based on fake_dfq VFS module
adds c464b9e vfs: add path parameter to get_quota
adds 22d757c vfs_cap: add get_quota function
adds cc25335 vfs_shadow_copy2: add get_quota function
adds 72231ec vfs_snapper: add get_quota function
adds 19f9b31 smbd: refactor disk_free handling
adds 279c9ce vfs_fake_dfq: remove quota code from disk_free
adds 9e60cbf vfs_ceph: do not call disk_norm() on disk_free_fn
adds a8eea0c vfs_gpfs: do not call disk_norm() on disk_free_fn
adds de3c2ed make disk_norm() static
adds 6689499 vfs_gpfs: make sure get_quota does not return bogus values
adds 91eeeb7 disk_quotas: style fix
adds 192f151 waf: Only build smb_krb5_wrapper if we have CUPS
adds c1bbe58 WHATSNEW: Extend release notes for Samba 4.4.0rc1.
adds d201a20 WHATSNEW: Add smbstatus changes.
adds 6c547b3 VERSION: Set version to 4.4.0rc1...
adds 1133650 VERSION: Bump version up to 4.4.0rc2...
adds 7da9c65 smbd: show correct disk size for different quota and dfree block sizes
adds 3029dc0 ctdb: do not provide a useless pkgconfig file for ctdb.
adds 2aadb75 selftest: fix test_dfree_quota.sh
adds 1ebeb06 s3-utils/smbget: Fix option parsing and apply samba defaults
adds 9d4cbe6 s3-utils/smbget: Fix reading the rcfile
adds a7046bc s3-utils/smbget: Fix user-/name password reading from rcfile
adds 2978226 s3-utils/smbget: Update manpages for parameter changes
adds 9eed186 WHATSNEW: update with latest parameter updates for smbget
adds f2dc71c s3: smbd: Fix timestamp rounding inside SMB2 create.
adds 522c1c5 ctdb-common: Protocol argument must be in host order for socket() call
adds fe875f3 ctdb-common: Use documented names for protocol family in socket()
adds 04b2073 python:samba: add a generic string_to_byte_array() helper function
adds 280ccf1 python:samba: add a generic arcfour_encrypt() helper function
adds 9517f4b python:samba/join.py: make use of the generic arcfour_encrypt() and string_to_byte_array() functions
adds e91612e python:samba/netcmd/domain: make use of the generic arcfour_encrypt() and string_to_byte_array() functions
adds d6db609 s4:scripting/devel: make use of the generic arcfour_encrypt() and string_to_byte_array() functions
adds 7d7a14f python:tests/core: add tests for arcfour_encrypt() and string_to_byte_array()
adds ac49d96 s3:vfs:glusterfs: fix build after quota changes.
adds b6a6011 docs: Add smbspool_krb5_wrapper manpage
adds f3cfe82 docs-xml: fix typo in smbspool_krb5_wrapper manpage.
adds 0a81ac4 WHATSNEW: Add release notes for Samba 4.4.0rc2.
adds 186206f VERSION: Disable git snapshots for the Samba 4.4.0rc2 release.
adds 0a0276b VERSION: Bump version up to 4.4.0rc3...
adds 6c2a3e2 lib:socket: fix CID 1350010 - integer OVERFLOW_BEFORE_WIDEN
adds ed8a55f smbd: Fix CID 1351215 Improper use of negative value
adds c358f3c smbd: Fix CID 1351216 Dereference null return value
adds 0221677 s3:smbd:open: Skip redundant call to file_set_dosmode when creating a new file.
adds f3bca17 s3: smbd: posix_acls: Fix check for setting u:g:o entry on a filesystem with no ACL support.
adds 2c91eb7 Revert "ctdb-daemon: Check packet generation against database generation"
adds 903b13e loadparm: Fix memory leak issue.
adds 558663a lib/socket: Fix improper use of default interface speed
adds 5ca7624 s3:utils/smbget add a error message on allocation error
adds 08b1ff8 s3:utils/smbget set default blocksize
adds b65697f lib:socket: fix CID 1350009 - illegal memory accesses (BUFFER_SIZE_WARNING)
adds 6774af1 param: Fix str_list_v3 to accept ; again
adds 4f637ba lib/tsocket: workaround sockets not supporting FIONREAD
adds 3a4be07 ctdb-scripts: Drop use of "smbcontrol winbindd ip-dropped ..."
adds 389c89c ctdb: Install helpers under libexecdir
adds 1a70742 s3-waf: Install smbspool_krb5_wrapper in LIBEXECDIR
adds 3e92dce script/release.sh: improve error messages if the tag verification fails
adds a5f6056 script/release.sh: generate announce.${tagname}.patch.txt in announcement_samba_rc()
adds fce2c82 docs: Add example for domain logins to smbspool man page.
adds db13d6a s4-client: Fix cifsdd arg parsing for skip
adds d605d6d docs: Add manpage for cifsdd
adds 956289e libcli: Fix debug message, print sid string for new_ace trustee.
adds a2aea37 Real memeory leak(buildup) issue in loadparm.
adds 84348b2 WHATSNEW: Add release notes for Samba 4.4.0rc3.
adds ff77a11 VERSION: Disable git snapshots for the Samba 4.4.0rc3 release.
adds 57bc152 VERSION: Bump version up to 4.4.0rc4...
adds 6342580 s3:libads: setup the msDS-SupportedEncryptionTypes attribute on ldap_add
adds c17b1f6 s3:clispnego: fix confusing warning in spnego_gen_krb5_wrap()
adds c4536f8 dlist: remove unneeded type argument from DLIST_ADD_END()
adds 2081969 tevent: remove unneeded type argument from DLIST_ADD_END
adds 9e06f33 ldb: remove unneeded type arg from DLIST_ADD_END
adds c373524 dlist: remove unneeded argument from DLIST_DEMOTE()
adds 1a7ceca ldb: remove uneeded type argument from DLIST_DEMOTE()
adds 9d32594 tevent: remove uneeded type argument from DLIST_DEMOTE()
adds 95d89dd ldb: remove unneeded argument type from DLIST_CONCATENATE()
adds ac36022 tevent: remove unneeded type argument from DLIST_CONCATENATE()
adds f20e5b3 dlist: remove unneeded type argument from DLIST_CONCATENATE()
adds 745e81e dlist: remove outdated comment about type argument
adds 96e0a11 tevent: remove outdated comment about type argument in dlist
adds 30e85f4 ldb: remove outdated comment about type argument in dlist
adds 30d815a Fix ETIME handling for Solaris event ports.
adds 77c1e14 tevent: version 0.9.27
adds c5b55c8 lib: tevent: Fix memory leak reported by Pavel Březina <pbrezina at redhat.com> when old signal action restored.
adds bf4b42c tevent: version 0.9.28
adds 9004fa4 access based share enum: handle permission set in configuration files
adds f9aef97 winbindd: introduce add_trusted_domain_from_tdc()
adds 46c1289 winbindd: initialize foreign domain as AD based on trust
adds 2335e6f winbindd: return trust parameters when listing trusts
adds 1372a32 smbd: ignore SVHDX create context
adds e787720 passdb: add linefeed to debug message
adds 52033ae samba3.blackbox.smbclient.forceuser_validusers: Add new test for force user option.
adds ac81bbc s3:utils/smbget another int -> bool conversion
adds b24f898 s3:utils/smbget abort recursive download on error
adds 5298c36 s3:utils/smbget improve check of write() result
adds 7ea0312 s3:utils/smbget remove -P option
adds a51b9a4 s3:utils/smbget update manpage with -P option removal
adds 789c77e WHATSNEW: document removal of -P in smbget
adds 7ebf660 s3:utils/smbget fix option parsing
adds 83b29fb selftest: Reduce code duplication
adds eb40cac selftest: add a helper for the smbget binary
adds 2212643 selftest: Add a blackbox test for smbget
adds 468f67b CVE-2015-7560: s3: smbd: Add refuse_symlink() function that can be used to prevent operations on a symlink.
adds e90c33e CVE-2015-7560: s3: smbd: Refuse to get an ACL from a POSIX file handle on a symlink.
adds 4be4e40 CVE-2015-7560: s3: smbd: Refuse to set an ACL from a POSIX file handle on a symlink.
adds af2e476 CVE-2015-7560: s3: smbd: Refuse to set a POSIX ACL on a symlink.
adds 3f59769 CVE-2015-7560: s3: smbd: Refuse to get a POSIX ACL on a symlink.
adds c1fe124 CVE-2015-7560: s3: smbd: Set return values early, allows removal of code duplication.
adds f803247 CVE-2015-7560: s3: smbd: Silently return no EA's available on a symlink.
adds 863c44a CVE-2015-7560: s3: smbd: Refuse to set EA's on a symlink.
adds 3d09f82 CVE-2015-7560: s3: libsmb: Rename cli_posix_getfaclXX() functions to cli_posix_getacl() as they operate on pathnames.
adds b13711e CVE-2015-7560: s3: libsmb: Add SMB1-only POSIX cli_posix_setacl() functions. Needed for tests.
adds ee4d435 CVE-2015-7560: s3: torture3: Add new POSIX-SYMLINK-ACL test.
adds 1c7096a CVE-2015-7560: s3: torture3: Add new POSIX-SYMLINK-EA test.
adds 71c64e7 CVE-2016-0771: s4:librpc: python_dns and python_dcerpc_dnsp doesn't require client bindings
adds c504551 CVE-2016-0771: librpc: add RPC_NDR_DNSSERVER to dcerpc-samba library
adds 8e5a639 CVE-2016-0771: librpc: add ndr_dnsp_string_list_copy() helper function
adds d3ac9c3 CVE-2016-0771: s4:dns_server: fix idl for dns_txt_record
adds 3fe2141 CVE-2016-0771: dns.idl: make use of dnsp_hinfo
adds 01faa56 CVE-2016-0771: tests/dns: Modify dns tests to match new IDL
adds 48c3137 CVE-2016-0771: tests/dns: prepare script for further testing
adds 3115b40 CVE-2016-0771: tests/dns: FORMERR can simply timeout against Windows
adds 14de523 CVE-2016-0771: tests/dns: Add a comment regarding odd Windows behaviour
adds 5b19529 CVE-2016-0771: tests/dns: restore formerly segfaulting test
adds c6dd132 CVE-2016-0771: tests/dns: Correct error code for formerly unrun test
adds c4e9392 CVE-2016-0771: tests/dns: Add some more test cases for TXT records
adds 111d035 CVE-2016-0771: tests/dns: modify tests to check via RPC
adds 08e558c CVE-2016-0771: dnsserver: don't force UTF-8 for TXT
adds 4402337 CVE-2016-0771: tests/dns: RPC => DNS roundtrip test
adds ee2bdcc CVE-2016-0771: tests: rename test getopt to get_opt
adds f193cd9 CVE-2016-0771: tests/dns: change samba.tests.dns from being a unittest
adds 38eeb06 CVE-2016-0771: tests/dns: Remove dependencies on env variables
adds 54f95be WHATSNEW: Add release notes for Samba 4.4.0rc4.
adds 331c2a3 VERSION: Disable git snapshots for the Samba 4.4.0rc4 release.
adds a5239be VERSION: Bump version up to 4.4.0rc5...
adds d2e0047 ldb: Fix some whitespace
adds 2a420aa ldb: Avoid a "talloc_steal"
adds 68dc117 ldb:ABI: add missing pyldb-util.py3-1.1.25.sigs
adds f511bb3 s4:libcli/ldap: send AbandonRequests for cancelled requests
adds 7a6c31d ldb-samba: fix the timeout setup in ildb_request_send()
adds 68b76db ldb: allow a timeout of -1 result in no timeout timer at all.
adds f305aae pyldb: Free correct context when pyldb_Object_AsDn() fails
adds 11c06aa pyldb: fix memory leak in py_ldb_search()
adds 66112f6 pyldb: fix help message for ldb.search()
adds e5c7304 pyldb: add ldb.search_iterator()
adds f12c897 pyldb: add api tests for search_iterator()
adds 33f4491 pyldb: eliminate warnings from python api test
adds 530693d ldb: add LDB_ATTR_FLAG_FORCE_BASE64_LDIF support
adds 02e325f ldb: add support for LDB_CONTROL_DIRSYNC_EX
adds 2a1ceb8 ldb: version 1.1.26
adds 19c381c s4:libcli/ldap: add support for LDB_CONTROL_DIRSYNC_EX_OID
adds d194ce0 s4-torture: let smb2.replay.replay2 test deal with scale out shares.
adds d20a4c2 s4-torture: let smb2.replay.replay3 test deal with scale out shares.
adds 95c7f0f s4-torture: let smb2.replay.replay4 test deal with scale out shares.
adds 2dd63e5 torture:smb2: rewrite connect test to use torture_asserts
adds cf7a4e1 torture:smb2: rewrite connect test to use torture_asserts for create errors
adds 141605e torture:smb2: fix memory leak in connect test.
adds 0b6c3b5 torture:smb2: improve torture_comments in connect test
adds c3fcfad smbXsrv_open: factor fetch-locking of global record into function
adds 6c78c8d smbXsrv_open: factor fetch-locking of local record into function
adds d5d58b9 smbXsrv_tcon: factor fetch-locking of global record into function
adds 3eec659 smbXsrv_tcon: factor fetch-locking of local record into function
adds 7bbdd9a smbXsrv_session: factor fetch-locking of global record into function
adds 8d8e111 smbXsrv_session: factor fetch-locking of local record into function
adds d0db200 smbXsrv_client: factor fetch-locking of global record into function
adds d3206e9 smbd:smb2_creat: remove outdated TODO comments
adds d3a024a torture:smb2: skip replay3 if server does not support Multi-Channel
adds d019891 torture:smb2: skip replay5 test if server does not support persistent handles
adds b882ed1 torture:smb2: fix skip message if share is not CA
adds a5a7947 dbwrap_util: improve a debug message in dbwrap_delete_action()
adds c0fc2c3 dbwrap: add dbwrap_purge[_bystring]
adds 5b439f5 s3:registry: use dbwrap_purge_bystring instead of dbwrap_delete_bystring
adds 5782344 netlogon_creds_cli: use dbwrap_purge instead of dbwrap_delete where appropriate
adds 2d82282 smbd: fix crash in smbXsrv_client_global_remove()
adds 26577db torture:smb2: skip replay4 if server does not support multi-channel
adds d601af8 torture:smb2: rename replay1 -> replay-commands
adds 1efc89d torture:smb2: split rename2 into multiple tests and extend these
adds b59ff11 torture:smb2:replay: extend CHECK_CREATE_OUT() to know leases
adds e2e2546 torture:smb2: add smb2.replay.replay-dhv2-lease1
adds ef65682 torture:smb2: add smb2.replay.replay-dhv2-lease2
adds 9323ec5 torture:smb2: add smb2.replay.replay-dhv2-lease-oplock
adds fc3c842 torture:smb2: add smb2.replay.replay-oplock-lease
adds 1938d56 torture:smb2: add smb2.replay.replay-dhv2-lease3
adds 19d66b4 smbd:smb2: allow the REPLAY_OPERATION flag for SMB3+ requests
adds 42a81bf librpc:smbXsrv.idl: add flags to smbXsrv_open
adds 579fb66 smbXsrv:open: maintain a replay cache
adds 609faee smb2:create: create replay cache when request has a create_guid
adds 9bce93b smbXsrv:open: add smb2srv_open_lookup_replay_cache()
adds a894f15 smbXsrv.idl: add create_action to smbXsrv_open
adds 8743f5b smbd:smb2: implement create replay
adds 2a80859 smbd:smb2: move op variable into scope of use in smb2_create_send
adds 38091dd dsdb/repl: Ensure we use the LOCAL attid value, not the remote one
adds da0f03b dsgetdcname: return an IP address on rediscovery
adds 16e970f dsgetdcname: fix flag check
adds 5b42463 libnet: make Kerberos domain join site-aware
adds 28e5e95 ctdb-common: For AF_PACKET socket types, protocol is in network order
adds 9d588a9 s3:smbd: rework negprot remote arch detection
adds 4e48421 s3:smbd: add negprot remote arch detection for OSX
adds 0268dc2 vfs_glusterfs: Fix use after free in AIO callback.
adds 35ec8ac Partly revert "s3:libads: setup the msDS-SupportedEncryptionTypes attribute on ldap_add"
adds f74d7f5 s3:libnet:libnet_join: prepare to allow connecting with machine creds.
adds 0dc8e31 s3:libads:ldap: print LDAP error message with log level 10.
adds c6f7bbd s3:libads:ndr: add ADS_AUTH_USER_CREDS to ndr_print_ads_auth_flags()
adds 35ecc4d s3:libads:ldap: fix ads_check_ou_dn to deal with account_ou not being initialized
adds e2b8b2c s3:libnet:libnet_join: always try to create machineaccount via LDAP first.
adds acc8dd2 s3:librpc:idl:libnet_join: add encryption types to libnet_JoinCtx.
adds 60c5909 s3:libnet:libnet_join: define list of desired encryption types only once.
adds a35ce5d s3:libnet:libnet_join: fill in output enctypes and only modify when necessary.
adds a83a26f s3:libnet:libnet_join: update msDS-SupportedEncryptionTypes (if required) with machine creds.
adds a44025b s3:winbindd: don't unclude two '\0' at the end of the domain list
adds 29b44e5 smbd: Only check dev/inode in open_directory, not the full stat()
adds 36b0b0e build: fix disk-free quota support on Solaris 10
adds 9ab767f selftest: mark samba4.winbind.struct.domain_info.ad_member as flapping
adds 1b08ea3 libsmb/pysmb: add pytalloc-util dependency to fix the build.
adds a411046 build: mark explicit dependencies on pytalloc-util
adds fbb57a5 s3/passdb/py_passdb.c: free frame before returning
adds b9d924a selftest: specify a maximum runtime for 'make testenv' of 1 year
adds 6e83a84 pyldb: Add warning about pyldb_MessageElement_AsMessageElement()
adds aac2ecc pydsdb: Fix returning of ldb.MessageElement.
adds 058b78c pyrpc: Add warning about abuse of py_return_ndr_struct()
adds 5a22910 talloc: Improve testsuite by avoiding path issues
adds e2cd642 talloc: add _pytalloc_get_ptr/_pytalloc_get_mem_ctx helper functions
adds 61ba9bc pytalloc: add a _pytalloc_get_type() helper function and generate PyExc_TypeError on mismatch
adds ab1bcc3 pytalloc: Add new BaseObject
adds 4398286 talloc: Bump version number
adds 1e035b5 pyrpc: Clarify failure mode after pytalloc_reference_ex() improvements
adds 22905ce pidl: Fix our python reference handling
adds 7391fc8 pidl: Use the $mem_ctx helper variable
adds d3bffda pidl: Use a tmp_ctx helper variable
adds 21bf6af repl_meta_data: Correctly use msDS-IntId for custom schema, not the prefixMap value
adds 934623f rpc_server/drsuapi: Block replication of incorrect/duplicate attrid in replPropertMetaData
adds 6a89304 selftest: Update release-4-1-0rc3 with more test records
adds d9b2796 dbcheck: Fix incorrect/duplicate attrid in replPropertMetaData
adds 7bb3111 dbcheck: Avoid spurious warnings in dbcheck due to objectclass sorting
adds ec66fe1 pycredentials: Do not use pytalloc_Object directly
adds 42dfaa1 pycredentials: Remove PyCredentialCacheContainerObject
adds 1e839dc pypassdb: Do not use pytalloc_Object directly
adds 819a07a pyparam: Do not use pytalloc_Object directly
adds ac3265b pytalloc: Add pytalloc_BaseObject_PyType_Ready() wrapper
adds d837f8d pycredentials: Use pytalloc_BaseObject_PyType_Ready()
adds 83aef0a py_passdb: Use pytalloc_BaseObject_PyType_Ready()
adds 4cc1351 pyparam: Use pytalloc_BaseObject_PyType_Ready()
adds 39b05c2 pygensec: Use pytalloc_steal() in gensec_start_{client,server}()
adds 914347f pygensec: Use pytalloc_BaseObject_PyType_Ready()
adds a40c6f9 pyauth: Use pytalloc_BaseObject_PyType_Ready()
adds 5d9eeb5 pyregistry: Use pytalloc_BaseObject_PyType_Ready()
adds 7ea3e7f pysmb: Use pytalloc_get_ptr()
adds 2b1ff18 pysmb: Use pytalloc_get_mem_ctx()
adds b784432 pysmb: Rework py_smb_new() to use pytalloc_steal()
adds f7c7cbd pysmb: Do not use pytalloc_Object directly
adds 4b29e7b pysmb: Use pytalloc_BaseObject_PyType_Ready()
adds 017f1db selftest: Allow 4 hours for the test to run (ouch!)
adds caab62a dbcheck: Check for and remove duplicate values in attributes
adds 5184015 pytalloc: Correct description of pytalloc_Get{Base,}ObjectType behaviour
adds 40fb6fd selftest: Avoid sorting issues on Ubuntu 10.04 vs 14.04
adds 4895c3f param: add parameter "server multi channel support", defaults to off.
adds 8984b15 smbd: enable multi-channel if 'server multi channel support = yes' in the config
adds b65c5f1 WHATSNEW: Add release notes for Samba 4.4.0rc5.
adds 3026d93 VERSION: Disable git snapshots for the Samba 4.4.0rc5 release.
adds 356cff2 VERSION: Bump version up to 4.4.0rc6...
adds 8ed6376 WHATSNEW: document the experimental smb3-multi-channel feature
adds 5d8c95f build: fix build when --without-quota specified
adds d864232 lib/socket/interfaces: Fix some uninitialied bytes.
adds 5a1b236 WHATSNEW: Add release notes for Samba 4.4.0.
adds 30812c4 VERSION: Set version to 4.4.0...
adds c5cb6f4 Imported Upstream version 4.4.0+dfsg
adds 92b8875 Imported Upstream version 4.4.0+dfsg
adds d1b5c43 Updated version 4.4.0+dfsg from 'upstream/4.4.0+dfsg'
adds 1d39651 Package Samba 4.4.0
adds f20a9c4 Added myself as an uploader
adds bc8f352 Release to experimental
adds 2e1014d SECURITY: Samba 4.4.1 release
adds 8dc2e91 Imported Upstream version 4.4.1+dfsg
adds 359f7ee Imported Upstream version 4.4.1+dfsg
adds 3c2f663 Updated version 4.4.1+dfsg from 'upstream/4.4.1+dfsg'
adds d53306a Add regression patch for Joining a 2003 domain as a domain member
adds 8a08f18 NEWS file for big security release
adds 1329238 Release 2:4.4.1+dfsg-1 to experimental
adds 0d47877 Merge in 4.3 history.
adds 2a33a44 VERSION: Bump version up to 4.0.1...
adds 0c1671a ntlmssp: add some missing defines from MS-NLMP to our IDL.
adds 9ed62a3 ntlmssp: fix copy/paste typo in CHALLENGE_MESSAGE in IDL.
adds 3b93cf0 ntlmssp: properly document version defines in IDL (from MS-NLMP).
adds b1f72ca ntlmssp: when pulling messages it is important to clear memory first.
adds 98466ff s4-torture: fill in ntlmssp_NEGOTIATE_MESSAGE_check().
adds dd6b293 s4-torture: activate testing of CHALLENGE and AUTHENTICATE ntlmssp messages.
adds f39d6d4 s4-torture: flesh out ntlmssp_CHALLENGE_MESSAGE_check().
adds baa0a10 s4-torture: add ndr pullpush validation for NTLMSSP CHALLENGE and AUTHENTICATE messages.
adds 2e8f4c8 s4-torture: flesh out ntlmssp_AUTHENTICATE_MESSAGE_check().
adds 4d73b84 s4:torture/ntlmssp fix a compiler warning
adds 84f8c9a spnego: Correctly check asn1_tag_remaining retval
adds b0c603c lib/util_net: move ipv6 linklocal handling into interpret_string_addr_internal()
adds c51b125 lib/util_net: add support for .ipv6-literal.net
adds 338e1a9 s3:test_smbclient_auth.sh: test using the ip address in the unc path (incl. ipv6-literal.net)
adds 557fc14 s3:selftest: run samba3.blackbox.smbclient_auth.plain also with $SERVER_IPV6
adds b6a1b04 epmapper.idl: make epm_twr_t available in python bindings
adds 6ea3642 dcerpc.idl: make WERROR RPC faults available in ndr_print output
adds d356450 librpc/rpc: add error mappings for NO_CALL_ACTIVE, OUT_OF_RESOURCES and BAD_STUB_DATA
adds 93332f4 s4:librpc/rpc: map alter context SEC_PKG_ERROR to NT_STATUS_LOGON_FAILURE
adds 1a5f082 s3:libads: remove unused ads_connect_gc()
adds 26d4f25 wscript_configure_system_mitkrb5: add configure checks for GSS_KRB5_CRED_NO_CI_FLAGS_X
adds 73f2fa6 s3:librpc/gse: make use of GSS_C_EMPTY_BUFFER in gse_init_client
adds b10c1db s3:librpc/gse: fix debug message in gse_init_client()
adds 55b0f3c s3:librpc/gse: set GSS_KRB5_CRED_NO_CI_FLAGS_X in gse_init_client() if available
adds 1448dba s3:librpc/gse: correctly support GENSEC_FEATURE_SESSION_KEY
adds 8614c6c s3:librpc/gse: don't log gss_acquire_creds failed at level 0
adds 028c609 s3:librpc/gse: implement gensec_gse_max_{input,wrapped}_size()
adds 9e8749a s4:pygensec: make sig_size() and sign/check_packet() available
adds 7cad825 auth/gensec: keep a pointer to a possible child/sub gensec_security context
adds 967282e auth/gensec: handle gensec_security_by_sasl_name(NULL, ...)
adds 1317625 auth/gensec: make gensec_security_by_name() public
adds 4f97bcb s3:auth_generic: add auth_generic_client_start_by_name()
adds 76e22d9 s3:auth_generic: add auth_generic_client_start_by_sasl()
adds 3d0fc91 auth/ntlmssp: keep ntlmssp_state->server.netbios_domain on the correct talloc context
adds c6aef8c auth/ntlmssp: add gensec_ntlmssp_server_domain()
adds 6b766dc s3:ntlm_auth: fix --use-cached-creds with ntlmssp-client-1
adds b8eabce s3:torture/test_ntlm_auth.py: replace tabs with whitespaces
adds 06e6d37 s3:torture/test_ntlm_auth.py: add --client-use-cached-creds option
adds eab2039 s3:tests/test_ntlm_auth_s3: test ntlmssp-client-1 with cached credentials
adds 6ed7942 winbindd: pass an memory context to do_ntlm_auth_with_stored_pw()
adds 17d6b17 s3:auth_generic: make use of the top level NTLMSSP client code
adds 4f94262 s3:ntlmssp: remove unused libsmb/ntlmssp_wrap.c
adds 4e2e1f6 auth/ntlmssp: provide a "ntlmssp_resume_ccache" backend
adds 333e02b auth/gensec: add GENSEC_FEATURE_NTLM_CCACHE define
adds cb0719d auth/ntlmssp: implement GENSEC_FEATURE_NTLM_CCACHE
adds 8f69094 s3:auth_generic: add "ntlmssp_resume_ccache" backend in auth_generic_client_prepare()
adds b57c0e7 winbindd: make use of ntlmssp_resume_ccache backend for WINBINDD_CCACHE_NTLMAUTH
adds 75bdf52 s3:ntlm_auth: also use gensec for "ntlmssp-client-1" and "gss-spnego-client"
adds 2663f44 auth/ntlmssp: split out a debug_ntlmssp_flags_raw() that's more complete
adds 2e40c60 auth/ntlmssp: NTLMSSP_NEGOTIATE_VERSION is not a negotiated option
adds 3adc8f5 auth/ntlmssp: define all client neg_flags in gensec_ntlmssp_client_start()
adds 7494612 auth/ntlmssp: set NTLMSSP_ANONYMOUS for anonymous authentication
adds 28725ef auth/ntlmssp: don't send domain and workstation in the NEGOTIATE_MESSAGE
adds 423f193 auth/ntlmssp: add ntlmssp_version_blob()
adds 47cebc5 auth/ntlmssp: let the client always include NTLMSSP_NEGOTIATE_VERSION
adds 62d31f6 auth/ntlmssp: use ntlmssp_version_blob() in the server
adds 159be66 security.idl: add LSAP_TOKEN_INFO_INTEGRITY
adds e2e7ffe ntlmssp.idl: MsAvRestrictions is MsvAvSingleHost now
adds 92d7499 ntlmssp.idl: make AV_PAIR_LIST public
adds 5c61712 librpc/ndr: add ndr_ntlmssp_find_av() helper function
adds c9edc04 auth/ntlmssp: use ndr_push_AV_PAIR_LIST in gensec_ntlmssp_server_negotiate().
adds eafd97e auth/gensec: add GENSEC_FEATURE_LDAP_STYLE define
adds 2a496ba auth/ntlmssp: implement GENSEC_FEATURE_LDAP_STYLE
adds 8f747f6 auth/ntlmssp: add more compat for GENSEC_FEATURE_LDAP_STYLE
adds 482555b auth/ntlmssp: remove ntlmssp_unwrap() fallback for LDAP
adds 2ace844 s4:libcli/ldap: make use of GENSEC_FEATURE_LDAP_STYLE
adds f74c031 s4:libcli/ldap: fix retry authentication after a bad password
adds ff77277 s4:selftest: we don't need to run ldap test with --option=socket:testnonblock=true
adds 0577097 s4:selftest: simplify the loops over samba4.ldb.ldap
adds c5da725 s4:ldap_server: make use of GENSEC_FEATURE_LDAP_STYLE
adds 52629ac s3:libads: add missing TALLOC_FREE(frame) in error path
adds ea56849 s3:libads: make use of GENSEC_FEATURE_LDAP_STYLE
adds 468c68c s3:libads: make use of GENSEC_OID_SPNEGO in ads_sasl_spnego_ntlmssp_bind()
adds 8e7229d s3:libads: provide a generic ads_sasl_spnego_gensec_bind() function
adds 1571a9f s3:libads: don't pass given_principal to ads_generate_service_principal() anymore.
adds 6507d6f s3:libads: keep service and hostname separately in ads_service_principal
adds a16bbec s3:libads: make use of ads_sasl_spnego_gensec_bind() for GSS-SPNEGO with Kerberos
adds 7767d82 s3:libsmb: make use gensec based SPNEGO/NTLMSSP
adds 20c847f s3:libsmb: unused ntlmssp.c
adds 4b55e96 s3:libsmb: let cli_session_setup_ntlmssp*() use gensec_update_send/recv()
adds a7f8e94 s3:libsmb: provide generic cli_session_setup_gensec_send/recv() pair
adds a167728 s3:libsmb: call cli_state_remote_realm() within cli_session_setup_spnego_send()
adds d1921c6 s3:libsmb: make use of cli_session_setup_gensec*() for Kerberos
adds 506ac99 s3:libsmb: remove unused cli_session_setup_kerberos*() functions
adds 5a8126d s3:libsmb: remove unused functions in clispnego.c
adds b282ac7 s4:torture/rpc: do testjoin only via ncalrpc or ncacn_np
adds 528db7f s4:torture: the backupkey tests need to use ncacn_np: for LSA calls
adds fe4cdee s4:selftest: run rpc.samr over ncacn_np instead of ncacn_ip_tcp
adds 934f731 s4:torture:samba3rpc: use an authenticated SMB connection and an anonymous DCERPC connection on top
adds 511dfb4 s4:librpc/rpc: dcerpc_generic_session_key() should only be available on local transports
adds bb63122 s4:rpc_server/samr: hide a possible NO_USER_SESSION_KEY error
adds df14c6a s4:rpc_server: dcesrv_generic_session_key should only work on local transports
adds da66e65 selftest: s!addc.samba.example.com!addom.samba.example.com!
adds 03479af selftest: add some helper scripts to mange a CA
adds 6a09084 selftest: add config and script to create a samba.example.com CA
adds bbb66a9 selftest: add CA-samba.example.com (non-binary) files
adds 91d2c97 selftest: mark commands in manage-CA-samba.example.com.sh as DONE
adds 0e5d2dd selftest: add Samba::prepare_keyblobs() helper function
adds 5e62983 selftest: use Samba::prepare_keyblobs() and use the certs from the new CA
adds 46fa417 selftest: set tls crlfile if it exist
adds 8b90698 selftest: setup information of new samba.example.com CA in the client environment
adds ff65d5b s3:selftest: rpc.samr.passwords.validate should run with [seal] in order to be realistic
adds 402d4ac s3:test_rpcclient_samlogon.sh: test samlogon with schannel
adds 10eda28 s4:torture/netlogon: add/use test_SetupCredentialsPipe() helper function
adds 8dea510 s4:torture/rpc/samr: use DCERPC_SEAL in setup_schannel_netlogon_pipe()
adds dba5783 s4:torture/rpc/samlogon: use DCERPC_SEAL for netr_LogonSamLogonEx and validation level 6
adds eef3a10 s4:torture/rpc: correctly use torture_skip() for test_ManyGetDCName() without NCACN_NP
adds 2c1fa78 s4:torture/rpc/schannel: don't use validation level 6 without privacy
adds 2779ec8 auth/gensec: make sure gensec_security_by_auth_type() returns NULL for AUTH_TYPE_NONE
adds cbeff28 auth/gensec: split out a gensec_verify_dcerpc_auth_level() function
adds 168b015 s4:rpc_server: require access to the machine account credentials
adds 1b646bb s4-smb_server: check for return code of cli_credentials_set_machine_account().
adds 9f3ae00 s3-auth: check for return code of cli_credentials_set_machine_account().
adds 9af768f libsmb: Fix CID 1356312 Explicit null dereferenced
adds 40b3284 libads: Fix CID 1356316 Uninitialized pointer read
adds 54cd107 s4:selftest: run rpc.netlogon.admin also over ncalrpc and ncacn_ip_tcp
adds b4125aa s3:rpc_server/samr: correctly handle session_extract_session_key() failures
adds 1437724 s3:ntlm_auth: pass manage_squid_request() needs a valid struct ntlm_auth_state from within get_password()
adds ebd79e5 CVE-2016-2110: auth/ntlmssp: let ntlmssp_handle_neg_flags() return NTSTATUS
adds 00d1eaa9 CVE-2016-2110: auth/ntlmssp: maintain conf_flags and required_flags variables
adds e6e8da9 CVE-2016-2110: auth/ntlmssp: split allow_lm_response from allow_lm_key
adds 5b86a85 CVE-2016-2110: auth/ntlmssp: don't allow a downgrade from NTLMv2 to LM_AUTH
adds 67787ff CVE-2016-2110: auth/ntlmssp: don't let ntlmssp_handle_neg_flags() change ntlmssp_state->use_ntlmv2
adds 45a1008 CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require flags depending on the requested features
adds 03ccba7 CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require NTLM2 (EXTENDED_SESSIONSECURITY) when using ntlmv2
adds fc3582b CVE-2016-2110: winbindd: add new_spnego to the WINBINDD_CCACHE_NTLMAUTH response
adds 3a934e1 CVE-2016-2110: libcli/auth: use enum spnego_negResult instead of uint8_t
adds beb1f96 CVE-2016-2110: libcli/auth: add SPNEGO_REQUEST_MIC to enum spnego_negResult
adds 77d59f1 CVE-2016-2110: auth/gensec: fix the client side of a new_spnego exchange
adds 6a56dd2 CVE-2016-2110: auth/gensec: fix the client side of a spnego downgrade
adds ce87fef CVE-2016-2110: auth/gensec: require spnego mechListMIC exchange for new_spnego backends
adds 6675796 CVE-2016-2110: auth/gensec: add gensec_may_reset_crypto() infrastructure
adds 6b0ee68 CVE-2016-2110: auth/ntlmssp: call ntlmssp_sign_init if we provide GENSEC_FEATURE_SIGN
adds 769eec8 CVE-2016-2110: auth/ntlmssp: implement gensec_ntlmssp_may_reset_crypto()
adds 95af5d9 CVE-2016-2110: auth/credentials: clear the LMv2 key for NTLMv2 in cli_credentials_get_ntlm_response()
adds f77cf81 CVE-2016-2110: auth/credentials: pass server_timestamp to cli_credentials_get_ntlm_response()
adds d35bc35 CVE-2016-2110: libcli/auth: pass server_timestamp to SMBNTLMv2encrypt_hash()
adds c5032e9 CVE-2016-2110: ntlmssp.idl: add NTLMSSP_MIC_{OFFSET,SIZE}
adds 4956428 CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC checking (as server)
adds 861b86d CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC generation (as client)
adds 0654735 CVE-2016-2111: auth/gensec: require DCERPC_AUTH_LEVEL_INTEGRITY or higher in schannel_update()
adds e1101a6 CVE-2016-2111: auth/gensec: correctly report GENSEC_FEATURE_{SIGN,SEAL} in schannel_have_feature()
adds d960002 CVE-2016-2111: s4:rpc_server: implement 'server schannel = yes' restriction
adds 1d33ade CVE-2016-2111: s3:rpc_server/netlogon: always go through netr_creds_server_step_check()
adds aaf3893 CVE-2016-2111: s4:rpc_server/netlogon: require DCERPC_AUTH_LEVEL_PRIVACY for validation level 6
adds ab0e71b CVE-2016-2111: s3:rpc_server/netlogon: require DCERPC_AUTH_LEVEL_PRIVACY for validation level 6
adds a193154 CVE-2016-2111: s4:torture/rpc: fix rpc.samba3.netlogon ntlmv2 test
adds 80401c9 CVE-2016-2111: s4:torture/rpc: fix rpc.pac ntlmv2 test
adds 8421d13 CVE-2016-2111: libcli/auth: add NTLMv2_RESPONSE_verify_netlogon_creds() helper function
adds 54fef0f CVE-2016-2111: s4:rpc_server/netlogon: check NTLMv2_RESPONSE values for SEC_CHAN_WKSTA
adds b38d560 CVE-2016-2111: s3:rpc_server/netlogon: check NTLMv2_RESPONSE values for SEC_CHAN_WKSTA
adds 7f303d7 CVE-2016-2111: s4:torture/raw: don't use ntlmv2 for dos connection in raw.samba3badpath
adds 379604a CVE-2016-2111: s4:torture/base: don't use ntlmv2 for dos connection in base.samba3error
adds dc359da CVE-2016-2111: s4:libcli: don't allow the LANMAN2 session setup without "client lanman auth = yes"
adds 7e5966f CVE-2016-2111: s4:param: use "client use spnego" to initialize options->use_spnego
adds acd6697 CVE-2016-2111: s4:libcli: don't send a raw NTLMv2 response when we want to use spnego
adds f5035af CVE-2016-2111: s3:libsmb: don't send a raw NTLMv2 response when we want to use spnego
adds 7bad35b CVE-2016-2111: docs-xml: document the new "client NTLMv2 auth" and "client use spnego" interaction
adds 5d69272 CVE-2016-2111: docs-xml: add "raw NTLMv2 auth" defaulting to "yes"
adds 560213f CVE-2016-2111: s3:auth: implement "raw NTLMv2 auth" checks
adds ae29971 CVE-2016-2111: s4:smb_server: implement "raw NTLMv2 auth" checks
adds be45c4b CVE-2016-2111: selftest:Samba3: use "raw NTLMv2 auth = yes" for nt4_dc
adds 0d2e185 CVE-2016-2111: docs-xml/smbdotconf: default "raw NTLMv2 auth" to "no"
adds 187e32b CVE-2016-2112: s3:libads: make sure we detect downgrade attacks
adds 76b1826 CVE-2016-2112: s4:libcli/ldap: honour "client ldap sasl wrapping" option
adds 01acb21 CVE-2016-2112: s4:libcli/ldap: make sure we detect downgrade attacks
adds c4f9336 CVE-2016-2112: s4:libcli/ldap: auto upgrade to SIGN after STRONG_AUTH_REQUIRED
adds 52ae0cc CVE-2016-2112: s4:selftest: use --option=clientldapsaslwrapping=plain for plain connections
adds 483a926 CVE-2016-2112: s4:ldap_server: reduce scope of old_session_info variable
adds 8105ff1 CVE-2016-2112: docs-xml: add "ldap server require strong auth" option
adds f44664d CVE-2016-2112: s4:ldap_server: implement "ldap server require strong auth" option
adds d68c225 CVE-2016-2112: s4:selftest: run samba4.ldap.bind against fl2008r2dc
adds 39c169b CVE-2016-2112: selftest: servers with explicit "ldap server require strong auth" options
adds 5fbce21 CVE-2016-2112: s4:selftest: run some ldap test against ad_dc_ntvfs, fl2008r2dc and fl2003dc
adds 6db65fb CVE-2016-2112: docs-xml: change the default of "ldap server require strong auth" to "yes"
adds 2d2ab58 CVE-2016-2113: s4:lib/tls: create better certificates and sign the host cert with the ca cert
adds 36ec246 CVE-2016-2113: s4:lib/tls: implement infrastructure to do peer verification
adds 5ec881c CVE-2016-2113: docs-xml: add "tls verify peer" option defaulting to "no_check"
adds cd4b292 CVE-2016-2113: s4:selftest: explicitly use '--option="tlsverifypeer=no_check" for some ldaps tests
adds a443abe CVE-2016-2113: s4:libcli/ldap: verify the server certificate and hostname if configured
adds 660dbb8 CVE-2016-2113: s4:librpc/rpc: verify the rpc_proxy certificate and hostname if configured
adds 5c94dfa CVE-2016-2113: selftest: test all "tls verify peer" combinations with ldaps
adds 2ced06d CVE-2016-2113: selftest: use "tls verify peer = no_check"
adds b2af10b CVE-2016-2113: docs-xml: let "tls verify peer" default to "as_strict_as_possible"
adds 4177489 CVE-2016-2114: s4:smb2_server: fix session setup with required signing
adds cc8bbc3 CVE-2016-2114: s3:smbd: use the correct default values for "smb signing"
adds 0b05bc9 CVE-2016-2114: libcli/smb: let mandatory signing imply allowed signing
adds 2c3649c CVE-2016-2114: s3:smbd: enforce "server signing = mandatory"
adds 09a7576 CVE-2016-2114: docs-xml: let the "smb signing" documentation reflect the reality
adds 39282d2 CVE-2016-2115: docs-xml: add "client ipc min protocol" and "client ipc max protocol" options
adds 863d419 CVE-2016-2115: docs-xml: add "client ipc signing" option
adds 8466fe8 CVE-2016-2115: s4:libcli/raw: add smbcli_options.min_protocol
adds f3da02a CVE-2016-2115: s4:libcli/smb2: use the configured min_protocol
adds ee4f114 CVE-2016-2115: s4:libcli/raw: limit maxprotocol to NT1 in smb_raw_negotiate*()
adds dbe7a43 CVE-2016-2115: s4:libcli/raw: pass the minprotocol to smb_raw_negotiate*()
adds 2c62a54 CVE-2016-2115: s4:librpc/rpc: make use of "client ipc *" options for ncacn_np
adds f1dea29 CVE-2016-2115: s3:winbindd: use lp_client_ipc_{min,max}_protocol()
adds 1309832 CVE-2016-2115: s3:winbindd: use lp_client_ipc_signing()
adds afda479 CVE-2016-2115: s3:libsmb: add signing constant SMB_SIGNING_IPC_DEFAULT
adds 80102ed CVE-2016-2115: s3:libsmb: let SMB_SIGNING_IPC_DEFAULT use "client ipc min/max protocol"
adds 0422c64 CVE-2016-2115: net: use SMB_SIGNING_IPC_DEFAULT
adds fdd2807 CVE-2016-2115: s3:lib/netapi: use SMB_SIGNING_IPC_DEFAULT
adds 084b20e CVE-2016-2115: s3:auth_domain: use SMB_SIGNING_IPC_DEFAULT
adds f76e6f9 CVE-2016-2115: s3:libnet: use SMB_SIGNING_IPC_DEFAULT
adds e7ef30e CVE-2016-2115: s3:libsmb: use SMB_SIGNING_IPC_DEFAULT and lp_client_ipc_{min,max}_protocol()
adds d8c3cf1 CVE-2016-2115: docs-xml: always default "client ipc signing" to "mandatory"
adds 3502195 CVE-2016-2118: s4:rpc_server: make it possible to define a min_auth_level on a presentation context
adds e1de6ec CVE-2016-2118: s4:rpc_server/drsuapi: require DCERPC_AUTH_LEVEL_PRIVACY
adds 778dab9 CVE-2016-2118: s4:rpc_server/backupkey: require DCERPC_AUTH_LEVEL_PRIVACY
adds 5d4d8ec CVE-2016-2118: python:tests/dcerpc: use [sign] for dnsserver tests
adds be98e7e CVE-2016-2118: s4:rpc_server/dnsserver: require at least DCERPC_AUTH_LEVEL_INTEGRITY
adds 6142767 CVE-2016-2118: s3: rpcclient: change the default auth level from DCERPC_AUTH_LEVEL_CONNECT to DCERPC_AUTH_LEVEL_INTEGRITY
adds 70ba7b0 CVE-2016-2118: librpc: change the default auth level from DCERPC_AUTH_LEVEL_CONNECT to DCERPC_AUTH_LEVEL_INTEGRITY
adds d565761 CVE-2016-2118: s4:librpc: use integrity by default for authenticated binds
adds 2e9824e CVE-2016-2118: docs-xml: add "allow dcerpc auth level connect" defaulting to "yes"
adds 1a3c82e CVE-2016-2118: s4:rpc_server: make use of "allow dcerpc auth level connect"
adds c98143b CVE-2016-2118: s4:rpc_server/lsa: reject DCERPC_AUTH_LEVEL_CONNECT by default
adds 34969d6 CVE-2016-2118: s4:rpc_server/samr: reject DCERPC_AUTH_LEVEL_CONNECT by default
adds 6568d5d CVE-2016-2118: s4:rpc_server/netlogon: reject DCERPC_AUTH_LEVEL_CONNECT by default
adds 4862ee5 CVE-2016-2118: s4:rpc_server/epmapper: allow DCERPC_AUTH_LEVEL_CONNECT by default
adds 36278e3 CVE-2016-2118: s4:rpc_server/mgmt: allow DCERPC_AUTH_LEVEL_CONNECT by default
adds 2e4f09b CVE-2016-2118: s4:rpc_server/rpcecho: allow DCERPC_AUTH_LEVEL_CONNECT by default
adds 3133233 CVE-2016-2118: s3:rpc_server: make use of "allow dcerpc auth level connect"
adds ba69e95 CVE-2016-2118: s3:rpc_server/{samr,lsa,netlogon}: reject DCERPC_AUTH_LEVEL_CONNECT by default
adds 6750ffd CVE-2016-2118: s3:rpc_server/{epmapper,echo}: allow DCERPC_AUTH_LEVEL_CONNECT by default
adds f425bfd CVE-2016-2118: docs-xml: default "allow dcerpc auth level connect" to "no"
adds e675f63 CVE-2016-2118: s4:rpc_server/samr: allow _samr_ValidatePassword only with PRIVACY...
adds fa0d681 CVE-2016-2118: s3:rpc_server/samr: allow _samr_ValidatePassword only with PRIVACY...
adds 22ab56d CVE-2015-5370: dcerpc.idl: add DCERPC_{NCACN_PAYLOAD,FRAG}_MAX_SIZE defines
adds b77eab0 CVE-2015-5370: librpc/rpc: simplify and harden dcerpc_pull_auth_trailer()
adds b095508 CVE-2015-5370: s3:librpc/rpc: don't call dcerpc_pull_auth_trailer() if auth_length is 0
adds 4867460 CVE-2015-5370: s4:librpc/rpc: send a dcerpc_sec_verification_trailer if needed
adds 32d8e05 CVE-2015-5370: s4:librpc/rpc: maintain dcecli_security->auth_{type,level,context_id}
adds 3f447f6 CVE-2015-5370: s4:librpc/rpc: use auth_context_id = 1
adds 25e48af CVE-2015-5370: s4:librpc/rpc: use a local auth_info variable in ncacn_push_request_sign()
adds 7ee85d6 CVE-2015-5370: s4:librpc/rpc: avoid using hs->p->conn->security_state.auth_info in dcerpc_bh_auth_info()
adds 4907895 CVE-2015-5370: s4:librpc/rpc: avoid using c->security_state.auth_info in ncacn_pull_request_auth()
adds 245fc41 CVE-2015-5370: s4:librpc/rpc: always use ncacn_pull_request_auth() for DCERPC_PKT_RESPONSE pdus
adds 33ee36e CVE-2015-5370: s4:librpc/rpc: avoid dereferencing sec->auth_info in dcerpc_request_prepare_vt()
adds 23f4243 CVE-2015-5370: s4:librpc/rpc: simplify checks if gensec is used in dcerpc_ship_next_request()
adds e05c7dd CVE-2015-5370: s4:librpc/rpc: avoid using dcecli_security->auth_info and use per request values
adds d3bb3ef CVE-2015-5370: s4:librpc/rpc: finally verify the server uses the expected auth_{type,level,context_id} values
adds ac8910f CVE-2015-5370: librpc/rpc: add a dcerpc_verify_ncacn_packet_header() helper function
adds f64f451 CVE-2015-5370: s3:rpc_client: move AS/U hack to the top of cli_pipe_validate_current_pdu()
adds 94de482 CVE-2015-5370: s3:rpc_client: remove useless frag_length check in rpc_api_pipe_got_pdu()
adds f89c218 CVE-2015-5370: s4:librpc/rpc: make use of dcerpc_map_ack_reason() in dcerpc_bind_recv_handler()
adds a96543e CVE-2015-5370: s4:librpc/rpc: handle DCERPC_PKT_FAULT before anything else in dcerpc_alter_context_recv_handler()
adds 50fc638 CVE-2015-5370: s4:librpc/rpc: use dcerpc_verify_ncacn_packet_header() to verify BIND_ACK,ALTER_RESP,RESPONSE pdus
adds 7f348a7 CVE-2015-5370: s4:librpc/rpc: protect dcerpc_request_recv_data() against too large payloads
adds b0349be CVE-2015-5370: s4:rpc_server: make use of talloc_zero()
adds 8332714 CVE-2015-5370: s4:rpc_server: no authentication is indicated by pkt->auth_length == 0
adds 58b1cdf CVE-2015-5370: s4:rpc_server: check the result of dcerpc_pull_auth_trailer() in dcesrv_auth_bind()
adds dc15870 CVE-2015-5370: s4:rpc_server: maintain dcesrv_auth->auth_{type,level,context_id}
adds 1ed3e26 CVE-2015-5370: s4:rpc_server: make use of dce_call->conn->auth_state.auth_* in dcesrv_request()
adds 8ad4695 CVE-2015-5370: s4:rpc_server/lsa: make use of dce_call->conn->auth_state.auth_{level,type}
adds 62f8a54 CVE-2015-5370: s4:rpc_server/samr: make use of dce_call->conn->auth_state.auth_level
adds 08ec7e7 CVE-2015-5370: s4:rpc_server/netlogon: make use of dce_call->conn->auth_state.auth_{level,type}
adds 83d93a8 CVE-2015-5370: s4:rpc_server: correctly maintain dcesrv_connection->max_{recv,xmit}_frag
adds f9ed1a9 CVE-2015-5370: s4:rpc_server: avoid ZERO_STRUCT() in dcesrv_fault()
adds 7c2984a CVE-2015-5370: s4:rpc_server: set alloc_hint = 24 in dcesrv_fault()
adds 448435a CVE-2015-5370: s4:rpc_server: fill context_id in dcesrv_fault()
adds eb16dfa CVE-2015-5370: s4:rpc_server: split out a dcesrv_fault_with_flags() helper function
adds a689216 CVE-2015-5370: s4:rpc_server: add some padding to dcesrv_bind_nak() responses
adds c8a1adb CVE-2015-5370: s4:rpc_server: return the correct secondary_address in dcesrv_bind()
adds b5d0de4 CVE-2015-5370: s4:rpc_server: make dcesrv_process_ncacn_packet() static
adds e3c1c20 CVE-2015-5370: s4:rpc_server: add infrastructure to terminate a connection after a response
adds 75d9b58 CVE-2015-5370: s4:rpc_server: verify the protocol headers before processing pdus
adds 503d08d CVE-2015-5370: s4:rpc_server: ensure that the message ordering doesn't violate the spec
adds af03332e CVE-2015-5370: s4:rpc_server: maintain in and out struct dcerpc_auth per dcesrv_call_state
adds e365d16 CVE-2015-5370: s4:rpc_server: make sure alter_context and auth3 can't change auth_{type,level,context_id}
adds e3775db CVE-2015-5370: s4:rpc_server: let invalid request fragments disconnect the connection with a protocol error
adds bf333e9 CVE-2015-5370: s4:rpc_server: remove pointless dcesrv_find_context() from dcesrv_bind()
adds cace627 CVE-2015-5370: s4:rpc_server: don't derefence an empty ctx_list array in dcesrv_alter()
adds 3d075a4 CVE-2015-5370: s4:rpc_server: changing an existing presentation context via alter_context is a protocol error
adds 9e86b09 CVE-2015-5370: s4:rpc_server: fix the order of error checking in dcesrv_alter()
adds 6a9b4ca CVE-2015-5370: s4:rpc_server: failing authentication should generate a SEC_PKG_ERROR
adds a3008ec CVE-2015-5370: s4:rpc_server: let a failing auth3 mark the authentication as invalid
adds d7af609 CVE-2015-5370: s4:rpc_server: disconnect after a failing dcesrv_auth_request()
adds 74347a4 CVE-2015-5370: s4:rpc_server: give the correct reject reasons for invalid auth_level values
adds d1ffe41 CVE-2015-5370: s4:rpc_server: check frag_length for requests
adds 2fd10be CVE-2015-5370: s4:rpc_server: limit allocation and alloc_hint to 4 MByte
adds 9625f91 CVE-2015-5370: s4:rpc_server: only allow one fragmented call_id at a time
adds 7e682ed CVE-2015-5370: s4:rpc_server: the assoc_group is relative to the connection (association)
adds ddd4d03 CVE-2015-5370: s4:rpc_server: reject DCERPC_PFC_FLAG_PENDING_CANCEL with DCERPC_FAULT_NO_CALL_ACTIVE
adds b1b538a CVE-2015-5370: librpc/rpc: don't allow pkt->auth_length == 0 in dcerpc_pull_auth_trailer()
adds dd2c270 CVE-2015-5370: s3:librpc/rpc: remove auth trailer and possible padding within dcerpc_check_auth()
adds 569781f CVE-2015-5370: s3:librpc/rpc: let dcerpc_check_auth() auth_{type,level} against the expected values.
adds dfab482 CVE-2015-5370: s3:rpc_client: make use of dcerpc_pull_auth_trailer()
adds 654d8a5 CVE-2015-5370: s3:rpc_client: make use of dcerpc_verify_ncacn_packet_header() in cli_pipe_validate_current_pdu()
adds f4ef85f CVE-2015-5370: s3:rpc_client: protect rpc_api_pipe_got_pdu() against too large payloads
adds 5c495ab CVE-2015-5370: s3:rpc_client: verify auth_{type,level} in rpc_pipe_bind_step_one_done()
adds 4c51c89 CVE-2015-5370: s3:rpc_server: make use of dcerpc_pull_auth_trailer() in api_pipe_{bind_req,alter_context,bind_auth3}()
adds 8c7d8c8 CVE-2015-5370: s3:rpc_server: let a failing sec_verification_trailer mark the connection as broken
adds 56014f6 CVE-2015-5370: s3:rpc_server: just call pipe_auth_generic_bind() in api_pipe_bind_req()
adds e6cdac4 CVE-2015-5370: s3:rpc_server: don't ignore failures of dcerpc_push_ncacn_packet()
adds 087b363 CVE-2015-5370: s3:rpc_server: don't allow auth3 if the authentication was already finished
adds bf4a716 CVE-2015-5370: s3:rpc_server: let a failing auth3 mark the authentication as invalid
adds 198ecf4 CVE-2015-5370: s3:rpc_server: make sure auth_level isn't changed by alter_context or auth3
adds 5148a26 CVE-2015-5370: s3:rpc_server: ensure that the message ordering doesn't violate the spec
adds 218bd4a CVE-2015-5370: s3:rpc_server: use 'alter' instead of 'bind' for variables in api_pipe_alter_context()
adds d2c964f CVE-2015-5370: s3:rpc_server: verify presentation context arrays
adds 6456408 CVE-2015-5370: s3:rpc_server: make use of dcerpc_verify_ncacn_packet_header() to verify incoming pdus
adds 9c2592f CVE-2015-5370: s3:rpc_server: disconnect the connection after a fatal FAULT pdu
adds a9c46e8 CVE-2015-5370: s3:rpc_server: let a failing BIND mark the connection as broken
adds 5cfe5ec CVE-2015-5370: s3:rpc_server: use DCERPC_NCA_S_PROTO_ERROR FAULTs for protocol errors
adds 7b902c3 CVE-2015-5370: s3:librpc/rpc: remove unused dcerpc_pull_dcerpc_auth()
adds 6fd2714 CVE-2015-5370: s3:rpc_server: check the transfer syntax in check_bind_req() first
adds e84519d CVE-2015-5370: s3:rpc_server: don't allow an existing context to be changed in check_bind_req()
adds 57d5a84 CVE-2015-5370: s3:rpc_client: pass struct pipe_auth_data to create_rpc_{bind_auth3,alter_context}()
adds 6d509e3 CVE-2015-5370: s3:librpc/rpc: add auth_context_id to struct pipe_auth_data
adds a3fc86d CVE-2015-5370: s3:rpc_client: make use of pipe_auth_data->auth_context_id
adds a663ad5 CVE-2015-5370: s3:rpc_server: make use of pipe_auth_data->auth_context_id
adds 518f8bb CVE-2015-5370: s3:librpc/rpc: make use of auth->auth_context_id in dcerpc_add_auth_footer()
adds 49379e4 CVE-2015-5370: s3:librpc/rpc: verify auth_context_id in dcerpc_check_auth()
adds 97a0811 CVE-2015-5370: s3:rpc_client: verify auth_context_id in rpc_pipe_bind_step_one_done()
adds b65429f CVE-2015-5370: s3:rpc_server: verify auth_context_id in api_pipe_{bind_auth3,alter_context}
adds 45a2445 CVE-2015-5370: libcli/smb: use a max timeout of 1 second in tstream_smbXcli_np_destructor()
adds 4a496d3 CVE-2015-5370: s3:rpc_client: disconnect connection on protocol errors
adds 9d953e2 CVE-2015-5370: s4:librpc/rpc: call dcerpc_connection_dead() on protocol errors
adds 78b84d5 CVE-2015-5370: python/samba/tests: add infrastructure to do raw protocol tests for DCERPC
adds 2c6f01d CVE-2015-5370: python/samba/tests: add some dcerpc raw_protocol tests
adds 13e3e81 CVE-2015-5370: s4:selftest: run samba.tests.dcerpc.raw_protocol against ad_dc
adds bd94b86 WHATSNEW: Add release notes for Samba 4.4.1.
adds c8180d1 VERSION: Disable git snapshots for the 4.4.1 release.
adds bfc9525 VERSION: Bump version up to 4.4.2...
adds 87fb3b8 s3:libads: sasl wrapped LDAP connections against with kerberos and arcfour-hmac-md5
adds 370b3dd WHATSNEW: Add release notes for Samba 4.4.2.
adds 71de921 VERSION: Disable git snapshots for the 4.4.2 release.
adds ecc3685 Imported Upstream version 4.4.2+dfsg
adds 94dc541 Merge tag 'upstream/4.4.2+dfsg' into experimental
adds 5e55407 New upstream release.
adds 411c6db Bump standards version to 3.9.8 (no changes).
adds f02ade3 Fix NEWS file syntax.
adds 6d08067 Fix formatting of my last name.
adds a63ddff Drop build dependency on perl-modules; depend on perl instead.
adds e75c984 Update overrides.
adds 9b7c700 releasing package samba version 2:4.4.2+dfsg-1
adds 05ed298 Imported Upstream version 4.4.0
adds 6e77398 Imported Upstream version 4.3.6
adds 0a386f6 Imported Upstream version 4.3.6
adds 2256e65 Imported Upstream version 4.3.6+dfsg
adds 9b9d1fe Imported Upstream version 4.3.7+dfsg
adds 4a74a50 Merge tag 'upstream/4.3.7+dfsg'
adds 3d490e7 SECURITY: Samba 4.3.7 release
adds 105e5fd NEWS for big security patch
adds 2bf125f Added myself as an uploader
adds cd4cbca Add regression patch for Joining a 2003 domain as a domain member
adds 04da991 Release 2:4.3.7+dfsg-1 to unstable
adds f787cb0c Add patch no_build_system.patch: drop host-specific define that prevents reproducible builds.
adds 298378d Update watch file to retrieve 4.3.X.
adds c23f677 VERSION: Bump version up to 4.3.6...
adds 76f6cf5 CVE-2015-7560: s3: smbd: Add refuse_symlink() function that can be used to prevent operations on a symlink.
adds fa1c482 CVE-2015-7560: s3: smbd: Refuse to get an ACL from a POSIX file handle on a symlink.
adds 774e210 CVE-2015-7560: s3: smbd: Refuse to set an ACL from a POSIX file handle on a symlink.
adds 0be03f1 CVE-2015-7560: s3: smbd: Refuse to set a POSIX ACL on a symlink.
adds 2907193 CVE-2015-7560: s3: smbd: Refuse to get a POSIX ACL on a symlink.
adds e27f9a4 CVE-2015-7560: s3: smbd: Set return values early, allows removal of code duplication.
adds 062876f CVE-2015-7560: s3: smbd: Silently return no EA's available on a symlink.
adds 63ae57f CVE-2015-7560: s3: smbd: Refuse to set EA's on a symlink.
adds 25963b1 CVE-2015-7560: s3: libsmb: Rename cli_posix_getfaclXX() functions to cli_posix_getacl() as they operate on pathnames.
adds 444ba8f CVE-2015-7560: s3: libsmb: Add SMB1-only POSIX cli_posix_setacl() functions. Needed for tests.
adds ceb6dcc CVE-2015-7560: s3: torture3: Add new POSIX-SYMLINK-ACL test.
adds c68280d CVE-2015-7560: s3: torture3: Add new POSIX-SYMLINK-EA test.
adds 7ee8a4c CVE-2016-0771: s4:librpc: python_dns and python_dcerpc_dnsp doesn't require client bindings
adds efaf509 CVE-2016-0771: librpc: add RPC_NDR_DNSSERVER to dcerpc-samba library
adds 7693d68 CVE-2016-0771: librpc: add ndr_dnsp_string_list_copy() helper function
adds df431a3 CVE-2016-0771: s4:dns_server: fix idl for dns_txt_record
adds 1c69840 CVE-2016-0771: dns.idl: make use of dnsp_hinfo
adds 3196b9e CVE-2016-0771: tests/dns: Modify dns tests to match new IDL
adds 18faca0 CVE-2016-0771: tests/dns: prepare script for further testing
adds 51ac36e CVE-2016-0771: tests/dns: FORMERR can simply timeout against Windows
adds 9f7a2a1 CVE-2016-0771: tests/dns: Add a comment regarding odd Windows behaviour
adds 4011a52 CVE-2016-0771: tests/dns: restore formerly segfaulting test
adds 3bca5fc CVE-2016-0771: tests/dns: Correct error code for formerly unrun test
adds 63103d1 CVE-2016-0771: tests/dns: Add some more test cases for TXT records
adds eb46848 CVE-2016-0771: tests/dns: modify tests to check via RPC
adds 2b4c7db CVE-2016-0771: dnsserver: don't force UTF-8 for TXT
adds ad5e885 CVE-2016-0771: tests/dns: RPC => DNS roundtrip test
adds 0dea999 CVE-2016-0771: tests: rename test getopt to get_opt
adds 7a11d99 CVE-2016-0771: tests/dns: change samba.tests.dns from being a unittest
adds b428ecb CVE-2016-0771: tests/dns: Remove dependencies on env variables
adds d6bd81e WHATSNEW: Add release notes for Samba 4.3.6.
adds c7a93d7 VERSION: Disable git snapshots for the 4.3.6 release.
adds a06c22f VERSION: Bump version up to 4.3.7...
adds b5c5fec Prevent a crash in Python modules that try to authenticate by ensuring we reject cases where credendials fields are not intialized.
adds 980785a asn1: Remove an unused asn1 function
adds 7ef1333 asn1: Make asn1_peek_full_tag return 0/errno
adds bb6607a asn1: Add overflow check to asn1_write
adds 6d2f6e1 asn1: Add some early returns
adds d51a607 asn1: Make "struct nesting" private
adds 4b04663 asn1: Add asn1_has_error()
adds 89d0afc lib: Use asn1_has_error()
adds a330540 asn1: Add asn1_set_error()
adds 274c9a4 lib: Use asn1_set_error()
adds a44d9bb asn1: Add asn1_extract_blob()
adds 2b11481 lib: Use asn1_extract_blob()
adds 9ac8312 asn1: Add asn1_has_nesting
adds 54aecd7 lib: Use asn1_has_nesting
adds 95fa77f asn1: Add asn1_current_ofs()
adds 9c89afd lib: Use asn1_current_ofs()
adds c27fd04 libcli: Remove a reference to asn1->ofs
adds 66ea451 asn1: Remove a reference to asn1_data internals
adds 83b6653 asn1: Make 'struct asn1_data' private
adds 5bbf46e s3: smbclient: asn1_extract_blob() stops further asn1 processing by setting has_error.
adds 62e5169 s3:clispnego: fix confusing warning in spnego_gen_krb5_wrap()
adds 24c6d42 s3:pam_smbpass: remove unused dependency to LIBNTLMSSP
adds e73cfb9 tls: increase Diffie-Hellman group size to 2048 bits
adds 5b4999a ntlmssp: add some missing defines from MS-NLMP to our IDL.
adds 1e0e8d6 ntlmssp: fix copy/paste typo in CHALLENGE_MESSAGE in IDL.
adds 42c2d63 ntlmssp: properly document version defines in IDL (from MS-NLMP).
adds 1865f12 ntlmssp: when pulling messages it is important to clear memory first.
adds 109618b s4-torture: fill in ntlmssp_NEGOTIATE_MESSAGE_check().
adds a54b256 s4-torture: activate testing of CHALLENGE and AUTHENTICATE ntlmssp messages.
adds 97ac363 s4-torture: flesh out ntlmssp_CHALLENGE_MESSAGE_check().
adds 14f4002 s4-torture: add ndr pullpush validation for NTLMSSP CHALLENGE and AUTHENTICATE messages.
adds 7019a9c s4-torture: flesh out ntlmssp_AUTHENTICATE_MESSAGE_check().
adds 5530d91 s4:torture/ntlmssp fix a compiler warning
adds a70f620 spnego: Correctly check asn1_tag_remaining retval
adds 6b6fbcf lib/util_net: move ipv6 linklocal handling into interpret_string_addr_internal()
adds 7f24c0b lib/util_net: add support for .ipv6-literal.net
adds 16e14f9 s3:test_smbclient_auth.sh: test using the ip address in the unc path (incl. ipv6-literal.net)
adds 0d53d8a s3:selftest: run samba3.blackbox.smbclient_auth.plain also with $SERVER_IPV6
adds 0117f64 epmapper.idl: make epm_twr_t available in python bindings
adds e7595fa dcerpc.idl: make WERROR RPC faults available in ndr_print output
adds 3121494 librpc/rpc: add error mappings for NO_CALL_ACTIVE, OUT_OF_RESOURCES and BAD_STUB_DATA
adds 49a7697 s4:librpc/rpc: map alter context SEC_PKG_ERROR to NT_STATUS_LOGON_FAILURE
adds 0555445 s3:libads: remove unused ads_connect_gc()
adds 88a09dc wscript_configure_system_mitkrb5: add configure checks for GSS_KRB5_CRED_NO_CI_FLAGS_X
adds 4357b22 s3:librpc/gse: make use of GSS_C_EMPTY_BUFFER in gse_init_client
adds 91e2717 s3:librpc/gse: fix debug message in gse_init_client()
adds 2b351b7 s3:librpc/gse: set GSS_KRB5_CRED_NO_CI_FLAGS_X in gse_init_client() if available
adds 47272c3 s3:librpc/gse: correctly support GENSEC_FEATURE_SESSION_KEY
adds 5a046d5 s3:librpc/gse: don't log gss_acquire_creds failed at level 0
adds f702a9e s3:librpc/gse: implement gensec_gse_max_{input,wrapped}_size()
adds b474d13 s4:pygensec: make sig_size() and sign/check_packet() available
adds 2e6af15 auth/gensec: keep a pointer to a possible child/sub gensec_security context
adds 35f80cf auth/gensec: handle gensec_security_by_sasl_name(NULL, ...)
adds 9e42312 auth/gensec: make gensec_security_by_name() public
adds a0feacf s3:auth_generic: add auth_generic_client_start_by_name()
adds 14b2a51 s3:auth_generic: add auth_generic_client_start_by_sasl()
adds aa0ed80 auth/ntlmssp: keep ntlmssp_state->server.netbios_domain on the correct talloc context
adds 33f7f44 auth/ntlmssp: add gensec_ntlmssp_server_domain()
adds 8800015 s3:ntlm_auth: fix --use-cached-creds with ntlmssp-client-1
adds 2dac558 s3:torture/test_ntlm_auth.py: replace tabs with whitespaces
adds 0f54d60 s3:torture/test_ntlm_auth.py: add --client-use-cached-creds option
adds c9d2b8d s3:tests/test_ntlm_auth_s3: test ntlmssp-client-1 with cached credentials
adds cb7bf55 winbindd: pass an memory context to do_ntlm_auth_with_stored_pw()
adds 993420f s3:auth_generic: make use of the top level NTLMSSP client code
adds 3585e41 s3:ntlmssp: remove unused libsmb/ntlmssp_wrap.c
adds 7fcefea auth/ntlmssp: provide a "ntlmssp_resume_ccache" backend
adds 7303a10 auth/gensec: add GENSEC_FEATURE_NTLM_CCACHE define
adds 81745b6 auth/ntlmssp: implement GENSEC_FEATURE_NTLM_CCACHE
adds 6ee35d9 s3:auth_generic: add "ntlmssp_resume_ccache" backend in auth_generic_client_prepare()
adds aea667c winbindd: make use of ntlmssp_resume_ccache backend for WINBINDD_CCACHE_NTLMAUTH
adds db7e894 s3:ntlm_auth: also use gensec for "ntlmssp-client-1" and "gss-spnego-client"
adds 3938b90 auth/ntlmssp: split out a debug_ntlmssp_flags_raw() that's more complete
adds 6d18d46 auth/ntlmssp: NTLMSSP_NEGOTIATE_VERSION is not a negotiated option
adds 34ce552 auth/ntlmssp: define all client neg_flags in gensec_ntlmssp_client_start()
adds c8059be auth/ntlmssp: set NTLMSSP_ANONYMOUS for anonymous authentication
adds a575c5e auth/ntlmssp: don't send domain and workstation in the NEGOTIATE_MESSAGE
adds 9419ce6 auth/ntlmssp: add ntlmssp_version_blob()
adds 3a52567 auth/ntlmssp: let the client always include NTLMSSP_NEGOTIATE_VERSION
adds 00fbd5b auth/ntlmssp: use ntlmssp_version_blob() in the server
adds c3392f3 security.idl: add LSAP_TOKEN_INFO_INTEGRITY
adds 983edc9 ntlmssp.idl: MsAvRestrictions is MsvAvSingleHost now
adds 30b4e8f ntlmssp.idl: make AV_PAIR_LIST public
adds 3136ede librpc/ndr: add ndr_ntlmssp_find_av() helper function
adds 192d5be auth/ntlmssp: use ndr_push_AV_PAIR_LIST in gensec_ntlmssp_server_negotiate().
adds 6d08a2a auth/gensec: add GENSEC_FEATURE_LDAP_STYLE define
adds 294ef73 auth/ntlmssp: implement GENSEC_FEATURE_LDAP_STYLE
adds 1016c9d auth/ntlmssp: add more compat for GENSEC_FEATURE_LDAP_STYLE
adds debafe8 auth/ntlmssp: remove ntlmssp_unwrap() fallback for LDAP
adds 58478f4 s4:libcli/ldap: make use of GENSEC_FEATURE_LDAP_STYLE
adds b000387 s4:libcli/ldap: fix retry authentication after a bad password
adds ccc1c51 s4:selftest: we don't need to run ldap test with --option=socket:testnonblock=true
adds e2bea35 s4:selftest: simplify the loops over samba4.ldb.ldap
adds 95461fb s4:ldap_server: make use of GENSEC_FEATURE_LDAP_STYLE
adds 383d18d s3:libads: add missing TALLOC_FREE(frame) in error path
adds c63d32b s3:libads: make use of GENSEC_FEATURE_LDAP_STYLE
adds 4cbf13e s3:libads: make use of GENSEC_OID_SPNEGO in ads_sasl_spnego_ntlmssp_bind()
adds 3d3725b s3:libads: provide a generic ads_sasl_spnego_gensec_bind() function
adds e952e63 s3:libads: don't pass given_principal to ads_generate_service_principal() anymore.
adds d19d039 s3:libads: keep service and hostname separately in ads_service_principal
adds 59b8032 s3:libads: make use of ads_sasl_spnego_gensec_bind() for GSS-SPNEGO with Kerberos
adds bbc4eb8 s3:libsmb: make use gensec based SPNEGO/NTLMSSP
adds e8b6ef4 s3:libsmb: unused ntlmssp.c
adds 1498885 s3:libsmb: let cli_session_setup_ntlmssp*() use gensec_update_send/recv()
adds c4c3bd6 s3:libsmb: provide generic cli_session_setup_gensec_send/recv() pair
adds 70d546d s3:libsmb: call cli_state_remote_realm() within cli_session_setup_spnego_send()
adds 8a1d0a9 s3:libsmb: make use of cli_session_setup_gensec*() for Kerberos
adds 979fc6a s3:libsmb: remove unused cli_session_setup_kerberos*() functions
adds 2d6afd9 s3:libsmb: remove unused functions in clispnego.c
adds e09c17a s4:torture/rpc: do testjoin only via ncalrpc or ncacn_np
adds 32ad277 s4:torture: the backupkey tests need to use ncacn_np: for LSA calls
adds fd1e4ec s4:selftest: run rpc.samr over ncacn_np instead of ncacn_ip_tcp
adds 44e2da8 s4:torture:samba3rpc: use an authenticated SMB connection and an anonymous DCERPC connection on top
adds 5182c93 s4:librpc/rpc: dcerpc_generic_session_key() should only be available on local transports
adds 663ec33 s4:rpc_server/samr: hide a possible NO_USER_SESSION_KEY error
adds 1346b27 s4:rpc_server: dcesrv_generic_session_key should only work on local transports
adds f91a66f selftest: s!addc.samba.example.com!addom.samba.example.com!
adds 158e06d selftest: add some helper scripts to mange a CA
adds 08976c4 selftest: add config and script to create a samba.example.com CA
adds 8be3031 selftest: add CA-samba.example.com (non-binary) files
adds f058da2 selftest: mark commands in manage-CA-samba.example.com.sh as DONE
adds 0ad8ef8 selftest: add Samba::prepare_keyblobs() helper function
adds 739e896 selftest: use Samba::prepare_keyblobs() and use the certs from the new CA
adds 1311631 selftest: set tls crlfile if it exist
adds 3f05c5a selftest: setup information of new samba.example.com CA in the client environment
adds 6a3a45d s3:selftest: rpc.samr.passwords.validate should run with [seal] in order to be realistic
adds 1103a6b s3:test_rpcclient_samlogon.sh: test samlogon with schannel
adds 46f52e7 s4:torture/netlogon: add/use test_SetupCredentialsPipe() helper function
adds 8665944 s4:torture/rpc/samr: use DCERPC_SEAL in setup_schannel_netlogon_pipe()
adds 1cd3836 s4:torture/rpc/samlogon: use DCERPC_SEAL for netr_LogonSamLogonEx and validation level 6
adds 61a09ae s4:torture/rpc: correctly use torture_skip() for test_ManyGetDCName() without NCACN_NP
adds 5cdddba s4:torture/rpc/schannel: don't use validation level 6 without privacy
adds c0beb87 auth/gensec: make sure gensec_security_by_auth_type() returns NULL for AUTH_TYPE_NONE
adds a6e7f49 auth/gensec: split out a gensec_verify_dcerpc_auth_level() function
adds bca3039 s4:rpc_server: require access to the machine account credentials
adds 6db7be4 s4-smb_server: check for return code of cli_credentials_set_machine_account().
adds 656795b s3-auth: check for return code of cli_credentials_set_machine_account().
adds e681d11 libsmb: Fix CID 1356312 Explicit null dereferenced
adds ba36c3f libads: Fix CID 1356316 Uninitialized pointer read
adds 343637b s4:selftest: run rpc.netlogon.admin also over ncalrpc and ncacn_ip_tcp
adds cce2e6a s3:rpc_server/samr: correctly handle session_extract_session_key() failures
adds 25f0a4c s3:ntlm_auth: pass manage_squid_request() needs a valid struct ntlm_auth_state from within get_password()
adds 8df0d59 CVE-2016-2110: auth/ntlmssp: let ntlmssp_handle_neg_flags() return NTSTATUS
adds f914050 CVE-2016-2110: auth/ntlmssp: maintain conf_flags and required_flags variables
adds 4e5c214 CVE-2016-2110: auth/ntlmssp: split allow_lm_response from allow_lm_key
adds d29c945 CVE-2016-2110: auth/ntlmssp: don't allow a downgrade from NTLMv2 to LM_AUTH
adds a7a0d2e CVE-2016-2110: auth/ntlmssp: don't let ntlmssp_handle_neg_flags() change ntlmssp_state->use_ntlmv2
adds 2ee222b CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require flags depending on the requested features
adds 677e214 CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require NTLM2 (EXTENDED_SESSIONSECURITY) when using ntlmv2
adds 8714377 CVE-2016-2110: winbindd: add new_spnego to the WINBINDD_CCACHE_NTLMAUTH response
adds 0e3bb02 CVE-2016-2110: libcli/auth: use enum spnego_negResult instead of uint8_t
adds efe18dc CVE-2016-2110: libcli/auth: add SPNEGO_REQUEST_MIC to enum spnego_negResult
adds 9440fa8 CVE-2016-2110: auth/gensec: fix the client side of a new_spnego exchange
adds 3673533 CVE-2016-2110: auth/gensec: fix the client side of a spnego downgrade
adds f32ad5c CVE-2016-2110: auth/gensec: require spnego mechListMIC exchange for new_spnego backends
adds 3ae39af CVE-2016-2110: auth/gensec: add gensec_may_reset_crypto() infrastructure
adds b5e95cc CVE-2016-2110: auth/ntlmssp: call ntlmssp_sign_init if we provide GENSEC_FEATURE_SIGN
adds 8cae040 CVE-2016-2110: auth/ntlmssp: implement gensec_ntlmssp_may_reset_crypto()
adds 1cc7fbe CVE-2016-2110: auth/credentials: clear the LMv2 key for NTLMv2 in cli_credentials_get_ntlm_response()
adds a278c35 CVE-2016-2110: auth/credentials: pass server_timestamp to cli_credentials_get_ntlm_response()
adds 299b49f CVE-2016-2110: libcli/auth: pass server_timestamp to SMBNTLMv2encrypt_hash()
adds 39dd2c6 CVE-2016-2110: ntlmssp.idl: add NTLMSSP_MIC_{OFFSET,SIZE}
adds 95a1c91 CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC checking (as server)
adds fc9df72 CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC generation (as client)
adds a6d1056 CVE-2016-2111: auth/gensec: require DCERPC_AUTH_LEVEL_INTEGRITY or higher in schannel_update()
adds b76361d CVE-2016-2111: auth/gensec: correctly report GENSEC_FEATURE_{SIGN,SEAL} in schannel_have_feature()
adds fb8bb0f CVE-2016-2111: s4:rpc_server: implement 'server schannel = yes' restriction
adds 2f393b3 CVE-2016-2111: s3:rpc_server/netlogon: always go through netr_creds_server_step_check()
adds b9b3b1e CVE-2016-2111: s4:rpc_server/netlogon: require DCERPC_AUTH_LEVEL_PRIVACY for validation level 6
adds 630e39d CVE-2016-2111: s3:rpc_server/netlogon: require DCERPC_AUTH_LEVEL_PRIVACY for validation level 6
adds 7434b8d CVE-2016-2111: s4:torture/rpc: fix rpc.samba3.netlogon ntlmv2 test
adds 5074d1e CVE-2016-2111: s4:torture/rpc: fix rpc.pac ntlmv2 test
adds 984d024 CVE-2016-2111: libcli/auth: add NTLMv2_RESPONSE_verify_netlogon_creds() helper function
adds 473bbfa CVE-2016-2111: s4:rpc_server/netlogon: check NTLMv2_RESPONSE values for SEC_CHAN_WKSTA
adds 9784d68 CVE-2016-2111: s3:rpc_server/netlogon: check NTLMv2_RESPONSE values for SEC_CHAN_WKSTA
adds 8e1e621 CVE-2016-2111: s4:torture/raw: don't use ntlmv2 for dos connection in raw.samba3badpath
adds b6899e1 CVE-2016-2111: s4:torture/base: don't use ntlmv2 for dos connection in base.samba3error
adds 5dbffb8 CVE-2016-2111: s4:libcli: don't allow the LANMAN2 session setup without "client lanman auth = yes"
adds a1ae538 CVE-2016-2111: s4:param: use "client use spnego" to initialize options->use_spnego
adds f22b75d CVE-2016-2111: s4:libcli: don't send a raw NTLMv2 response when we want to use spnego
adds f319256 CVE-2016-2111: s3:libsmb: don't send a raw NTLMv2 response when we want to use spnego
adds eaabdc1 CVE-2016-2111: docs-xml: document the new "client NTLMv2 auth" and "client use spnego" interaction
adds 3dbb32c CVE-2016-2111: docs-xml: add "raw NTLMv2 auth" defaulting to "yes"
adds 3643bc9 CVE-2016-2111(<=4.3): docs-xml: add "raw NTLMv2 auth" defaulting to "yes"
adds e260f6a CVE-2016-2111: s3:auth: implement "raw NTLMv2 auth" checks
adds ff1e470 CVE-2016-2111: s4:smb_server: implement "raw NTLMv2 auth" checks
adds dbdd9cb CVE-2016-2111: selftest:Samba3: use "raw NTLMv2 auth = yes" for nt4_dc
adds 60647fa CVE-2016-2111: docs-xml/smbdotconf: default "raw NTLMv2 auth" to "no"
adds a8c60aa CVE-2016-2112: s3:libads: make sure we detect downgrade attacks
adds b723d97 CVE-2016-2112: s4:libcli/ldap: honour "client ldap sasl wrapping" option
adds e072666 CVE-2016-2112: s4:libcli/ldap: make sure we detect downgrade attacks
adds 6977700 CVE-2016-2112: s4:libcli/ldap: auto upgrade to SIGN after STRONG_AUTH_REQUIRED
adds 5172192 CVE-2016-2112: s4:selftest: use --option=clientldapsaslwrapping=plain for plain connections
adds e9cfd12 CVE-2016-2112: s4:ldap_server: reduce scope of old_session_info variable
adds b012535 CVE-2016-2112: docs-xml: add "ldap server require strong auth" option
adds 963236f CVE-2016-2112(<=4.3): docs-xml: add "ldap server require strong auth" option
adds 90cc943 CVE-2016-2112: s4:ldap_server: implement "ldap server require strong auth" option
adds c7f2a10 CVE-2016-2112: s4:selftest: run samba4.ldap.bind against fl2008r2dc
adds 8dad04c CVE-2016-2112: selftest: servers with explicit "ldap server require strong auth" options
adds a027a87 CVE-2016-2112: s4:selftest: run some ldap test against ad_dc_ntvfs, fl2008r2dc and fl2003dc
adds 104a691 CVE-2016-2112: docs-xml: change the default of "ldap server require strong auth" to "yes"
adds 27f1625 CVE-2016-2113: s4:lib/tls: create better certificates and sign the host cert with the ca cert
adds 9ca8e88 CVE-2016-2113: s4:lib/tls: implement infrastructure to do peer verification
adds fc02668 CVE-2016-2113: docs-xml: add "tls verify peer" option defaulting to "no_check"
adds c20ee1b CVE-2016-2113(<=4.3): docs-xml: add "tls verify peer" option defaulting to "no_check"
adds 54a039d CVE-2016-2113: s4:selftest: explicitly use '--option="tlsverifypeer=no_check" for some ldaps tests
adds 389b15e CVE-2016-2113: s4:libcli/ldap: verify the server certificate and hostname if configured
adds fdac236 CVE-2016-2113: s4:librpc/rpc: verify the rpc_proxy certificate and hostname if configured
adds dc4f8d0 CVE-2016-2113: selftest: test all "tls verify peer" combinations with ldaps
adds d778580 CVE-2016-2113: selftest: use "tls verify peer = no_check"
adds 641cbcc CVE-2016-2113: docs-xml: let "tls verify peer" default to "as_strict_as_possible"
adds 2217276 CVE-2016-2114: s4:smb2_server: fix session setup with required signing
adds 67f8524 CVE-2016-2114: s3:smbd: use the correct default values for "smb signing"
adds 7c6c666 CVE-2016-2114: libcli/smb: let mandatory signing imply allowed signing
adds 8611441 CVE-2016-2114: s3:smbd: enforce "server signing = mandatory"
adds 25b05a8 CVE-2016-2114: docs-xml: let the "smb signing" documentation reflect the reality
adds 2f7d773 CVE-2016-2115: docs-xml: add "client ipc min protocol" and "client ipc max protocol" options
adds 9fa185c CVE-2016-2115(<=4.3): docs-xml: add "client ipc min protocol" and "client ipc max protocol" options
adds 668cc85 CVE-2016-2115: docs-xml: add "client ipc signing" option
adds 2c13697 CVE-2016-2115(<=4.3): docs-xml: add "client ipc signing" option
adds c21c9a3 CVE-2016-2115: s4:libcli/raw: add smbcli_options.min_protocol
adds 7903203 CVE-2016-2115: s4:libcli/smb2: use the configured min_protocol
adds 60851a0 CVE-2016-2115: s4:libcli/raw: limit maxprotocol to NT1 in smb_raw_negotiate*()
adds 2220923 CVE-2016-2115: s4:libcli/raw: pass the minprotocol to smb_raw_negotiate*()
adds e0588d9 CVE-2016-2115: s4:librpc/rpc: make use of "client ipc *" options for ncacn_np
adds 5859266 CVE-2016-2115: s3:winbindd: use lp_client_ipc_{min,max}_protocol()
adds 2b23bc3 CVE-2016-2115: s3:winbindd: use lp_client_ipc_signing()
adds bdff08d CVE-2016-2115: s3:libsmb: add signing constant SMB_SIGNING_IPC_DEFAULT
adds 38552d7 CVE-2016-2115: s3:libsmb: let SMB_SIGNING_IPC_DEFAULT use "client ipc min/max protocol"
adds 9339d90 CVE-2016-2115: net: use SMB_SIGNING_IPC_DEFAULT
adds 27c66c4 CVE-2016-2115: s3:lib/netapi: use SMB_SIGNING_IPC_DEFAULT
adds b66500f CVE-2016-2115: s3:auth_domain: use SMB_SIGNING_IPC_DEFAULT
adds cdad358 CVE-2016-2115: s3:libnet: use SMB_SIGNING_IPC_DEFAULT
adds 2d68100 CVE-2016-2115: s3:libsmb: use SMB_SIGNING_IPC_DEFAULT and lp_client_ipc_{min,max}_protocol()
adds fa2630f CVE-2016-2115: docs-xml: always default "client ipc signing" to "mandatory"
adds 31e7611 CVE-2016-2118: s4:rpc_server: make it possible to define a min_auth_level on a presentation context
adds e8dc268 CVE-2016-2118: s4:rpc_server/drsuapi: require DCERPC_AUTH_LEVEL_PRIVACY
adds 5eb6341 CVE-2016-2118: s4:rpc_server/backupkey: require DCERPC_AUTH_LEVEL_PRIVACY
adds 9bfa937 CVE-2016-2118: python:tests/dcerpc: use [sign] for dnsserver tests
adds 0a3d923 CVE-2016-2118: s4:rpc_server/dnsserver: require at least DCERPC_AUTH_LEVEL_INTEGRITY
adds d5659c7 CVE-2016-2118: s3: rpcclient: change the default auth level from DCERPC_AUTH_LEVEL_CONNECT to DCERPC_AUTH_LEVEL_INTEGRITY
adds 9ae9c64 CVE-2016-2118: librpc: change the default auth level from DCERPC_AUTH_LEVEL_CONNECT to DCERPC_AUTH_LEVEL_INTEGRITY
adds 101e8e8 CVE-2016-2118: s4:librpc: use integrity by default for authenticated binds
adds 979067f CVE-2016-2118: docs-xml: add "allow dcerpc auth level connect" defaulting to "yes"
adds e7be37e CVE-2016-2118(<=4.3) docs-xml: add "allow dcerpc auth level connect" defaulting to "yes"
adds 7b93802 CVE-2016-2118: s4:rpc_server: make use of "allow dcerpc auth level connect"
adds ca98500 CVE-2016-2118: s4:rpc_server/lsa: reject DCERPC_AUTH_LEVEL_CONNECT by default
adds 20e4023 CVE-2016-2118: s4:rpc_server/samr: reject DCERPC_AUTH_LEVEL_CONNECT by default
adds 7869c5f CVE-2016-2118: s4:rpc_server/netlogon: reject DCERPC_AUTH_LEVEL_CONNECT by default
adds 8f219a0 CVE-2016-2118: s4:rpc_server/epmapper: allow DCERPC_AUTH_LEVEL_CONNECT by default
adds 6045947 CVE-2016-2118: s4:rpc_server/mgmt: allow DCERPC_AUTH_LEVEL_CONNECT by default
adds a2d14bb CVE-2016-2118: s4:rpc_server/rpcecho: allow DCERPC_AUTH_LEVEL_CONNECT by default
adds 3ba93ce CVE-2016-2118: s3:rpc_server: make use of "allow dcerpc auth level connect"
adds 1ac5f37 CVE-2016-2118: s3:rpc_server/{samr,lsa,netlogon}: reject DCERPC_AUTH_LEVEL_CONNECT by default
adds 4762d25 CVE-2016-2118: s3:rpc_server/{epmapper,echo}: allow DCERPC_AUTH_LEVEL_CONNECT by default
adds e9718e2 CVE-2016-2118: docs-xml: default "allow dcerpc auth level connect" to "no"
adds 45a9ca1 CVE-2016-2118: s4:rpc_server/samr: allow _samr_ValidatePassword only with PRIVACY...
adds 6602e7e CVE-2016-2118: s3:rpc_server/samr: allow _samr_ValidatePassword only with PRIVACY...
adds e96791f CVE-2015-5370: dcerpc.idl: add DCERPC_{NCACN_PAYLOAD,FRAG}_MAX_SIZE defines
adds 82dd128 CVE-2015-5370: librpc/rpc: simplify and harden dcerpc_pull_auth_trailer()
adds 1c7be37 CVE-2015-5370: s3:librpc/rpc: don't call dcerpc_pull_auth_trailer() if auth_length is 0
adds 47d8c31 CVE-2015-5370: s4:librpc/rpc: send a dcerpc_sec_verification_trailer if needed
adds f64b017 CVE-2015-5370: s4:librpc/rpc: maintain dcecli_security->auth_{type,level,context_id}
adds 5be0fb1 CVE-2015-5370: s4:librpc/rpc: use auth_context_id = 1
adds e39b737 CVE-2015-5370: s4:librpc/rpc: use a local auth_info variable in ncacn_push_request_sign()
adds 71c2c21 CVE-2015-5370: s4:librpc/rpc: avoid using hs->p->conn->security_state.auth_info in dcerpc_bh_auth_info()
adds 0899c0a CVE-2015-5370: s4:librpc/rpc: avoid using c->security_state.auth_info in ncacn_pull_request_auth()
adds 3df2b07 CVE-2015-5370: s4:librpc/rpc: always use ncacn_pull_request_auth() for DCERPC_PKT_RESPONSE pdus
adds e6da619 CVE-2015-5370: s4:librpc/rpc: avoid dereferencing sec->auth_info in dcerpc_request_prepare_vt()
adds 220e4ca CVE-2015-5370: s4:librpc/rpc: simplify checks if gensec is used in dcerpc_ship_next_request()
adds 447f9f1 CVE-2015-5370: s4:librpc/rpc: avoid using dcecli_security->auth_info and use per request values
adds 821d484 CVE-2015-5370: s4:librpc/rpc: finally verify the server uses the expected auth_{type,level,context_id} values
adds 21b9022 CVE-2015-5370: librpc/rpc: add a dcerpc_verify_ncacn_packet_header() helper function
adds 735d4ba CVE-2015-5370: s3:rpc_client: move AS/U hack to the top of cli_pipe_validate_current_pdu()
adds 9b9d307 CVE-2015-5370: s3:rpc_client: remove useless frag_length check in rpc_api_pipe_got_pdu()
adds 1551c41 CVE-2015-5370: s4:librpc/rpc: make use of dcerpc_map_ack_reason() in dcerpc_bind_recv_handler()
adds 443e00f CVE-2015-5370: s4:librpc/rpc: handle DCERPC_PKT_FAULT before anything else in dcerpc_alter_context_recv_handler()
adds df2dcc1 CVE-2015-5370: s4:librpc/rpc: use dcerpc_verify_ncacn_packet_header() to verify BIND_ACK,ALTER_RESP,RESPONSE pdus
adds 0235d72 CVE-2015-5370: s4:librpc/rpc: protect dcerpc_request_recv_data() against too large payloads
adds 08f976d CVE-2015-5370: s4:rpc_server: make use of talloc_zero()
adds 308543b CVE-2015-5370: s4:rpc_server: no authentication is indicated by pkt->auth_length == 0
adds 16e3a4c CVE-2015-5370: s4:rpc_server: check the result of dcerpc_pull_auth_trailer() in dcesrv_auth_bind()
adds f8b98b3 CVE-2015-5370: s4:rpc_server: maintain dcesrv_auth->auth_{type,level,context_id}
adds 5325276 CVE-2015-5370: s4:rpc_server: make use of dce_call->conn->auth_state.auth_* in dcesrv_request()
adds 1077b50 CVE-2015-5370: s4:rpc_server/lsa: make use of dce_call->conn->auth_state.auth_{level,type}
adds fd3b82e CVE-2015-5370: s4:rpc_server/samr: make use of dce_call->conn->auth_state.auth_level
adds 563d8fe CVE-2015-5370: s4:rpc_server/netlogon: make use of dce_call->conn->auth_state.auth_{level,type}
adds 3165b23 CVE-2015-5370: s4:rpc_server: correctly maintain dcesrv_connection->max_{recv,xmit}_frag
adds 5eb3b63 CVE-2015-5370: s4:rpc_server: avoid ZERO_STRUCT() in dcesrv_fault()
adds 69e1d93 CVE-2015-5370: s4:rpc_server: set alloc_hint = 24 in dcesrv_fault()
adds 8ba1be0 CVE-2015-5370: s4:rpc_server: fill context_id in dcesrv_fault()
adds 4ea6765 CVE-2015-5370: s4:rpc_server: split out a dcesrv_fault_with_flags() helper function
adds 9f62223 CVE-2015-5370: s4:rpc_server: add some padding to dcesrv_bind_nak() responses
adds 6db7571 CVE-2015-5370: s4:rpc_server: return the correct secondary_address in dcesrv_bind()
adds 5ab994c CVE-2015-5370: s4:rpc_server: make dcesrv_process_ncacn_packet() static
adds e9511b5 CVE-2015-5370: s4:rpc_server: add infrastructure to terminate a connection after a response
adds 2ed603a CVE-2015-5370: s4:rpc_server: verify the protocol headers before processing pdus
adds 26ad208 CVE-2015-5370: s4:rpc_server: ensure that the message ordering doesn't violate the spec
adds 6b2d064 CVE-2015-5370: s4:rpc_server: maintain in and out struct dcerpc_auth per dcesrv_call_state
adds 1d99eec CVE-2015-5370: s4:rpc_server: make sure alter_context and auth3 can't change auth_{type,level,context_id}
adds a7d02ec CVE-2015-5370: s4:rpc_server: let invalid request fragments disconnect the connection with a protocol error
adds 6228c53 CVE-2015-5370: s4:rpc_server: remove pointless dcesrv_find_context() from dcesrv_bind()
adds f0d318f CVE-2015-5370: s4:rpc_server: don't derefence an empty ctx_list array in dcesrv_alter()
adds cf0a939 CVE-2015-5370: s4:rpc_server: changing an existing presentation context via alter_context is a protocol error
adds e0b58a1 CVE-2015-5370: s4:rpc_server: fix the order of error checking in dcesrv_alter()
adds 615019f CVE-2015-5370: s4:rpc_server: failing authentication should generate a SEC_PKG_ERROR
adds 6ed0ef7 CVE-2015-5370: s4:rpc_server: let a failing auth3 mark the authentication as invalid
adds 0e26f3c CVE-2015-5370: s4:rpc_server: disconnect after a failing dcesrv_auth_request()
adds d249ce6 CVE-2015-5370: s4:rpc_server: give the correct reject reasons for invalid auth_level values
adds 3239e26 CVE-2015-5370: s4:rpc_server: check frag_length for requests
adds f77f9bf CVE-2015-5370: s4:rpc_server: limit allocation and alloc_hint to 4 MByte
adds 67e2661 CVE-2015-5370: s4:rpc_server: only allow one fragmented call_id at a time
adds 795b44e CVE-2015-5370: s4:rpc_server: the assoc_group is relative to the connection (association)
adds cce7265 CVE-2015-5370: s4:rpc_server: reject DCERPC_PFC_FLAG_PENDING_CANCEL with DCERPC_FAULT_NO_CALL_ACTIVE
adds db30949 CVE-2015-5370: librpc/rpc: don't allow pkt->auth_length == 0 in dcerpc_pull_auth_trailer()
adds 28d558e CVE-2015-5370: s3:librpc/rpc: remove auth trailer and possible padding within dcerpc_check_auth()
adds f39183c CVE-2015-5370: s3:librpc/rpc: let dcerpc_check_auth() auth_{type,level} against the expected values.
adds f606cfd CVE-2015-5370: s3:rpc_client: make use of dcerpc_pull_auth_trailer()
adds 8e691e7 CVE-2015-5370: s3:rpc_client: make use of dcerpc_verify_ncacn_packet_header() in cli_pipe_validate_current_pdu()
adds e87721a CVE-2015-5370: s3:rpc_client: protect rpc_api_pipe_got_pdu() against too large payloads
adds 0cf8404 CVE-2015-5370: s3:rpc_client: verify auth_{type,level} in rpc_pipe_bind_step_one_done()
adds 905313c CVE-2015-5370: s3:rpc_server: make use of dcerpc_pull_auth_trailer() in api_pipe_{bind_req,alter_context,bind_auth3}()
adds db297a7 CVE-2015-5370: s3:rpc_server: let a failing sec_verification_trailer mark the connection as broken
adds a4a828e CVE-2015-5370: s3:rpc_server: just call pipe_auth_generic_bind() in api_pipe_bind_req()
adds 8695339 CVE-2015-5370: s3:rpc_server: don't ignore failures of dcerpc_push_ncacn_packet()
adds 476c2f5 CVE-2015-5370: s3:rpc_server: don't allow auth3 if the authentication was already finished
adds d11c5d3 CVE-2015-5370: s3:rpc_server: let a failing auth3 mark the authentication as invalid
adds 84cbf3d CVE-2015-5370: s3:rpc_server: make sure auth_level isn't changed by alter_context or auth3
adds e1b75bc CVE-2015-5370: s3:rpc_server: ensure that the message ordering doesn't violate the spec
adds 9832a22 CVE-2015-5370: s3:rpc_server: use 'alter' instead of 'bind' for variables in api_pipe_alter_context()
adds 11df891 CVE-2015-5370: s3:rpc_server: verify presentation context arrays
adds 3f6a270 CVE-2015-5370: s3:rpc_server: make use of dcerpc_verify_ncacn_packet_header() to verify incoming pdus
adds dbcd01e CVE-2015-5370: s3:rpc_server: disconnect the connection after a fatal FAULT pdu
adds 14d97d4 CVE-2015-5370: s3:rpc_server: let a failing BIND mark the connection as broken
adds adaf1ae CVE-2015-5370: s3:rpc_server: use DCERPC_NCA_S_PROTO_ERROR FAULTs for protocol errors
adds 278cdd1 CVE-2015-5370: s3:librpc/rpc: remove unused dcerpc_pull_dcerpc_auth()
adds f3a67c2 CVE-2015-5370: s3:rpc_server: check the transfer syntax in check_bind_req() first
adds 46ddaf3 CVE-2015-5370: s3:rpc_server: don't allow an existing context to be changed in check_bind_req()
adds 73550f4 CVE-2015-5370: s3:rpc_client: pass struct pipe_auth_data to create_rpc_{bind_auth3,alter_context}()
adds 7f2d791 CVE-2015-5370: s3:librpc/rpc: add auth_context_id to struct pipe_auth_data
adds 7ab9a8c CVE-2015-5370: s3:rpc_client: make use of pipe_auth_data->auth_context_id
adds bc001b0 CVE-2015-5370: s3:rpc_server: make use of pipe_auth_data->auth_context_id
adds 365fffe CVE-2015-5370: s3:librpc/rpc: make use of auth->auth_context_id in dcerpc_add_auth_footer()
adds 4449c51 CVE-2015-5370: s3:librpc/rpc: verify auth_context_id in dcerpc_check_auth()
adds ac0d474 CVE-2015-5370: s3:rpc_client: verify auth_context_id in rpc_pipe_bind_step_one_done()
adds cd2911f CVE-2015-5370: s3:rpc_server: verify auth_context_id in api_pipe_{bind_auth3,alter_context}
adds 51a4a8f CVE-2015-5370: libcli/smb: use a max timeout of 1 second in tstream_smbXcli_np_destructor()
adds 6ac5ad0 CVE-2015-5370: s3:rpc_client: disconnect connection on protocol errors
adds a141a37 CVE-2015-5370: s4:librpc/rpc: call dcerpc_connection_dead() on protocol errors
adds 21fe775 CVE-2015-5370: python/samba/tests: add infrastructure to do raw protocol tests for DCERPC
adds 9ec6afa CVE-2015-5370: python/samba/tests: add some dcerpc raw_protocol tests
adds 0e2bcca CVE-2015-5370: s4:selftest: run samba.tests.dcerpc.raw_protocol against ad_dc
adds 17e1b9f WHATSNEW: Add release notes for Samba 4.3.7.
adds 6597749 VERSION: Disable git snapshots for the 4.3.7 release.
adds caa886e VERSION: Bump version up to 4.3.8...
adds ad9257b s3:libads: sasl wrapped LDAP connections against with kerberos and arcfour-hmac-md5
adds 10e9011 WHATSNEW: Add release notes for Samba 4.3.8.
adds 4b4a2bd VERSION: Disable git snapshots for the 4.3.8 release.
adds 9b35890 Imported Upstream version 4.3.8+dfsg
adds eb5dcf0 Merge tag 'upstream/4.3.8+dfsg' into unstable
adds fcb7933 Bump version in Replaces: samba-libs for samba-vfs-modules to 4.3.2+dfsg-1, to fix jessie->stretch upgrades. Closes: #821070
adds 5176d86 Re-apply patch.
adds f05cf99 releasing package samba version 2:4.3.8+dfsg-1
adds a804652 Merge branch 'master' of git+ssh://git.debian.org/git/pkg-samba/samba into master.
adds 8723742 Merge in 4.3 package changes.
adds acaebfa releasing package samba version 2:4.4.2+dfsg-2
adds e8918a1 VERSION: Bump version up to 4.4.3...
adds 9d56304 s3:winbindd:idmap: add domain_has_idmap_config() helper function.
adds 87fcc70 s3:winbindd:idmap_hash: skip domains that already have their own idmap configuration.
adds 8bd67a1 s3:winbindd:idmap: check loadparm in domain_has_idmap_config() helper as well.
adds dab38c3 idmap_hash: rename be_init() --> idmap_hash_initialize()
adds fb0c85b52 idmap_hash: only allow the hash module for default idmap config.
adds 26f5b40 winbind: Fix CID 1357100 Unchecked return value
adds 811fbb2 vfs_acl_common: avoid setting POSIX ACLs if "ignore system acls" is set
adds a6a4532 smbcquotas: print "NO LIMIT" only if returned quota value is 0.
adds 6b66061 s3: libsmb: Fix error where short name length was read as 2 bytes, should be 1.
adds eb96e15 vfs_catia: Fix bug 11827, memleak
adds d4dd33b libads: record session expiry for spnego sasl binds
adds 23497a6 nss_wins: ip_pton expects the raw IP address
adds 85185e7 nss_wins: Fix the hostent setup
adds 2184ae7 cleanupd: restart as needed
adds a4c00ce Fix the smb2_setinfo to handle FS info types and FSQUOTA infolevel
adds 13d563a smbd: Avoid large reads beyond EOF
adds 969ddf1 nwrap: Fix the build on Solaris
adds 06343ea configure: Don't check for inotify on illumos
adds 1a36149 WHATSNEW: Start release notes for Samba 4.4.3.
adds 794d0c2 Mask general purpose signals for notifyd.
adds 8f159c5 s4:gensec_tstream: allow wrapped messages up to a size of 0xfffffff
adds fc3a36c s3:libads/sasl: allow wrapped messages up to a size of 0xfffffff
adds a9a5c60 lib:krb5_wrap:krb5_samba: increase debug level for smb_krb5_get_default_realm_from_ccache().
adds 9aa4b3c s3:librpc:crypto:gse: increase debug level for gse_init_client().
adds 8a8a567 auth/spnego: change log level for 'Failed to setup SPNEGO negTokenInit request: NT_STATUS_INTERNAL_ERROR'
adds f26e6c9 auth/spnego: handle broken mechListMIC response from Windows 2000
adds 0e06d40 auth/ntlmssp: don't require any flags in the ccache_resume code
adds e72697d auth/ntlmssp: don't require NTLMSSP_SIGN for smb connections
adds ce9dc37 s3:libsmb: use password = NULL for anonymous connections
adds eff4ed6 libcli/smb: fix NULL pointer derreference in smbXcli_session_is_authenticated().
adds e61d929 libcli/smb: add smb1cli_session_set_action() helper function
adds 2bae4e9 libcli/smb: add SMB1 session setup action flags
adds ad94c11 libcli/smb: add smbXcli_session_is_guest() helper function
adds 779a339 s3:libsmb: record the session setup action flags
adds 702d846 s3:libsmb: don't finish the gensec handshake for guest logins
adds bc2331b s3:libsmb: use anonymous authentication via spnego if possible
adds 622a603 auth/spnego: only try to verify the mechListMic if signing was negotiated.
adds 039dc0b s4:auth_anonymous: anonymous authentication doesn't allow a password
adds 070ae1b s3:auth_builtin: anonymous authentication doesn't allow a password
adds 696b25f libcli/security: implement SECURITY_GUEST
adds 2a9cbef s3:smbd: make use SMB_SETUP_GUEST constant
adds ab24cfa s3:smbd: only mark real guest sessions with the GUEST flag
adds eb085f3 auth/ntlmssp: do map to guest checking after the authentication
adds c52eab4 auth/spnego: add spnego:simulate_w2k option for testing
adds 6d62364 auth/ntlmssp: add ntlmssp_{client,server}:force_old_spnego option for testing
adds 771bcf9 selftest:Samba4: provide DC_* variables for fl2000dc and fl2008r2dc
adds 7548e8d s3:test_smbclient_auth.sh: this script reqiures 5 arguments
adds 883660a selftest:Samba4: let fl2000dc use Windows2000 supported_enctypes
adds d96f774 selftest:Samba4: let fl2000dc use Windows2000 style SPNEGO/NTLMSSP
adds b9cc3bd s3:selftest: add smbclient_ntlm tests
adds 0c53521 WHATSNEW: Udpate release notes.
adds d89905e WHATSNEW: Add date.
adds f67230d VERSION: Disable git snapshots for the 4.4.3 release.
adds c595a17 Imported Upstream version 4.4.3+dfsg
adds 4ec0ba9 Imported Upstream version 4.4.3+dfsg
new ae67b27 Merge tag 'upstream/4.4.3+dfsg' into unstable
new 46b8815 New upstream release.
new 8f75576 Reapply rfc3454 patch.
new 4b71f60 Merge branch 'master' of git+ssh://git.debian.org/git/pkg-samba/samba into unstable
The 4 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
.travis.yml | 31 +
Makefile | 3 +
README | 20 +-
README.Coding | 59 +-
VERSION | 4 +-
WHATSNEW.txt | 1483 ++++----
auth/credentials/credentials.h | 5 +-
auth/credentials/credentials_ntlm.c | 12 +-
auth/credentials/pycredentials.c | 164 +-
auth/credentials/pycredentials.h | 5 -
auth/credentials/wscript_build | 2 +-
auth/gensec/gensec.c | 113 +-
auth/gensec/gensec.h | 4 +
auth/gensec/gensec.pc.in | 11 -
auth/gensec/gensec_internal.h | 7 +
auth/gensec/gensec_start.c | 18 +-
auth/gensec/gensec_util.c | 2 +-
auth/gensec/schannel.c | 22 +-
auth/gensec/spnego.c | 358 +-
auth/gensec/wscript_build | 7 +-
auth/kerberos/gssapi_pac.c | 12 +-
auth/ntlmssp/gensec_ntlmssp.c | 9 +
auth/ntlmssp/gensec_ntlmssp_server.c | 38 +-
auth/ntlmssp/ntlmssp.c | 91 +-
auth/ntlmssp/ntlmssp.h | 17 +
auth/ntlmssp/ntlmssp_client.c | 533 ++-
auth/ntlmssp/ntlmssp_ndr.c | 1 +
auth/ntlmssp/ntlmssp_private.h | 10 +-
auth/ntlmssp/ntlmssp_server.c | 464 ++-
auth/ntlmssp/ntlmssp_sign.c | 103 +-
auth/ntlmssp/ntlmssp_util.c | 176 +-
auth/ntlmssp/wscript_build | 2 +-
buildtools/wafsamba/configure_file.py | 13 +-
buildtools/wafsamba/gccdeps.py | 127 -
buildtools/wafsamba/nothreads.py | 7 +-
buildtools/wafsamba/pkgconfig.py | 15 +-
buildtools/wafsamba/samba_abi.py | 9 +-
buildtools/wafsamba/samba_autoconf.py | 36 +-
buildtools/wafsamba/samba_autoproto.py | 3 +-
buildtools/wafsamba/samba_bundled.py | 58 +-
buildtools/wafsamba/samba_conftests.py | 93 +-
buildtools/wafsamba/samba_cross.py | 4 +-
buildtools/wafsamba/samba_deps.py | 101 +-
buildtools/wafsamba/samba_dist.py | 6 +-
buildtools/wafsamba/samba_headers.py | 5 +-
buildtools/wafsamba/samba_install.py | 11 +-
buildtools/wafsamba/samba_optimisation.py | 30 +-
buildtools/wafsamba/samba_patterns.py | 12 +-
buildtools/wafsamba/samba_perl.py | 9 +-
buildtools/wafsamba/samba_pidl.py | 11 +-
buildtools/wafsamba/samba_python.py | 26 +-
buildtools/wafsamba/samba_third_party.py | 4 +-
buildtools/wafsamba/samba_utils.py | 85 +-
buildtools/wafsamba/samba_version.py | 5 +-
buildtools/wafsamba/samba_wildcard.py | 9 +-
buildtools/wafsamba/symbols.py | 21 +-
buildtools/wafsamba/wafsamba.py | 42 +-
buildtools/wafsamba/wscript | 59 +-
ctdb/client/client.h | 842 +++++
ctdb/client/client_call.c | 177 +
ctdb/client/client_connect.c | 338 ++
ctdb/client/client_control.c | 429 +++
ctdb/client/client_control_sync.c | 3119 ++++++++++++++++
ctdb/client/client_db.c | 2133 +++++++++++
ctdb/client/client_message.c | 227 ++
ctdb/client/client_message_sync.c | 196 +
ctdb/client/client_private.h | 82 +
ctdb/client/client_util.c | 155 +
ctdb/client/ctdb_client.c | 482 +--
ctdb/common/cmdline.c | 40 +-
ctdb/common/cmdline.h | 13 +
ctdb/common/comm.c | 404 +++
ctdb/common/comm.h | 101 +
ctdb/common/common.h | 146 +
ctdb/common/ctdb_fork.c | 163 -
ctdb/common/ctdb_io.c | 46 +-
ctdb/common/ctdb_logging.c | 85 -
ctdb/common/ctdb_ltdb.c | 13 +-
ctdb/common/ctdb_message.c | 286 --
ctdb/common/ctdb_util.c | 117 +-
ctdb/common/db_hash.c | 268 ++
ctdb/common/db_hash.h | 159 +
ctdb/common/logging.c | 103 +
ctdb/common/logging.h | 41 +
ctdb/common/pkt_read.c | 190 +
ctdb/common/pkt_read.h | 98 +
ctdb/common/pkt_write.c | 101 +
ctdb/common/pkt_write.h | 79 +
ctdb/common/rb_tree.c | 16 +-
ctdb/common/reqid.c | 89 +
ctdb/common/reqid.h | 89 +
ctdb/common/srvid.c | 269 ++
ctdb/common/srvid.h | 115 +
ctdb/common/system.h | 65 +
ctdb/common/system_aix.c | 36 +-
ctdb/common/system_common.c | 9 +-
ctdb/common/system_freebsd.c | 52 +-
ctdb/common/system_gnu.c | 38 +-
ctdb/common/system_kfreebsd.c | 51 +-
ctdb/common/system_linux.c | 218 +-
ctdb/common/system_util.c | 10 +-
ctdb/config/ctdb.sudoers | 4 +-
ctdb/config/ctdbd_wrapper | 74 +-
ctdb/config/debug-hung-script.sh | 2 +-
ctdb/config/debug_locks.sh | 24 +-
ctdb/config/events.d/00.ctdb | 60 +-
ctdb/config/events.d/05.system | 176 +
ctdb/config/events.d/10.interface | 161 +-
ctdb/config/events.d/11.natgw | 55 +-
ctdb/config/events.d/13.per_ip_routing | 44 +-
ctdb/config/events.d/40.fs_use | 55 -
ctdb/config/events.d/50.samba | 45 +-
ctdb/config/events.d/60.nfs | 3 +
ctdb/config/events.d/62.cnfs | 78 -
ctdb/config/events.d/README | 271 +-
ctdb/config/functions | 256 +-
ctdb/config/nfs-linux-kernel-callout | 32 +-
ctdb/config/statd-callout | 15 +-
ctdb/ctdb.pc.in | 19 -
ctdb/doc/ctdb-statistics.7 | 4 +-
ctdb/doc/ctdb-statistics.7.html | 134 +-
ctdb/doc/ctdb-tunables.7 | 19 +-
ctdb/doc/ctdb-tunables.7.html | 124 +-
ctdb/doc/ctdb-tunables.7.xml | 28 +-
ctdb/doc/ctdb.1 | 231 +-
ctdb/doc/ctdb.1.html | 351 +-
ctdb/doc/ctdb.1.xml | 189 +-
ctdb/doc/ctdb.7 | 50 +-
ctdb/doc/ctdb.7.html | 97 +-
ctdb/doc/ctdb.7.xml | 71 +-
ctdb/doc/ctdbd.1 | 39 +-
ctdb/doc/ctdbd.1.html | 45 +-
ctdb/doc/ctdbd.1.xml | 44 +-
ctdb/doc/ctdbd.conf.5 | 161 +-
ctdb/doc/ctdbd.conf.5.html | 240 +-
ctdb/doc/ctdbd.conf.5.xml | 228 +-
ctdb/doc/ctdbd_wrapper.1 | 4 +-
ctdb/doc/ctdbd_wrapper.1.html | 4 +-
ctdb/doc/ltdbtool.1 | 4 +-
ctdb/doc/ltdbtool.1.html | 10 +-
ctdb/doc/onnode.1 | 39 +-
ctdb/doc/onnode.1.html | 43 +-
ctdb/doc/onnode.1.xml | 37 +-
ctdb/doc/ping_pong.1 | 4 +-
ctdb/doc/ping_pong.1.html | 8 +-
ctdb/ib/ibw_ctdb.c | 41 +-
ctdb/ib/ibw_ctdb.h | 5 +-
ctdb/ib/ibw_ctdb_init.c | 26 +-
ctdb/ib/ibwrapper.c | 46 +-
ctdb/ib/ibwrapper.h | 2 +-
ctdb/ib/ibwrapper_internal.h | 6 +-
ctdb/ib/ibwrapper_test.c | 68 +-
ctdb/include/common/srvid.h | 1 +
ctdb/include/ctdb.h | 1236 -------
ctdb/include/ctdb_client.h | 839 +++--
ctdb/include/ctdb_logging.h | 54 -
ctdb/include/ctdb_private.h | 1375 +++----
ctdb/include/ctdb_protocol.h | 700 +---
ctdb/include/ctdb_typesafe_cb.h | 177 -
ctdb/include/internal/cmdline.h | 10 -
ctdb/include/internal/includes.h | 24 -
ctdb/include/public/{ => util}/README.txt | 0
ctdb/packaging/RPM/ctdb.spec.in | 47 +-
ctdb/packaging/mkversion.sh | 13 +-
ctdb/protocol/protocol.h | 1022 ++++++
ctdb/protocol/protocol_api.h | 669 ++++
ctdb/protocol/protocol_call.c | 446 +++
ctdb/protocol/protocol_client.c | 2470 +++++++++++++
ctdb/protocol/protocol_control.c | 2087 +++++++++++
ctdb/protocol/protocol_header.c | 73 +
ctdb/protocol/protocol_message.c | 395 ++
ctdb/protocol/protocol_packet.c | 44 +
ctdb/protocol/protocol_private.h | 279 ++
ctdb/protocol/protocol_types.c | 2575 ++++++++++++++
ctdb/protocol/protocol_util.c | 142 +
ctdb/server/ctdb_banning.c | 93 +-
ctdb/server/ctdb_call.c | 217 +-
ctdb/server/ctdb_control.c | 160 +-
ctdb/server/ctdb_daemon.c | 232 +-
ctdb/server/ctdb_event_helper.c | 9 +-
ctdb/server/ctdb_fork.c | 174 +
ctdb/server/ctdb_freeze.c | 852 ++++-
ctdb/server/ctdb_keepalive.c | 35 +-
ctdb/server/ctdb_lock.c | 139 +-
ctdb/server/ctdb_lock_helper.c | 9 +-
ctdb/server/ctdb_logging.c | 36 +-
ctdb/server/ctdb_logging_file.c | 14 +-
ctdb/server/ctdb_logging_syslog.c | 6 +-
ctdb/server/ctdb_ltdb_server.c | 94 +-
ctdb/server/ctdb_monitor.c | 154 +-
ctdb/server/ctdb_persistent.c | 43 +-
ctdb/server/ctdb_recover.c | 182 +-
ctdb/server/ctdb_recoverd.c | 1403 ++++----
ctdb/server/ctdb_recovery_helper.c | 1888 ++++++++++
ctdb/server/ctdb_server.c | 29 +-
ctdb/server/ctdb_serverids.c | 45 +-
ctdb/server/ctdb_statistics.c | 35 +-
ctdb/server/ctdb_takeover.c | 1754 +++------
ctdb/server/ctdb_traverse.c | 69 +-
ctdb/server/ctdb_tunables.c | 136 +-
ctdb/server/ctdb_update_record.c | 49 +-
ctdb/server/ctdb_uptime.c | 14 +-
ctdb/server/ctdb_vacuum.c | 118 +-
ctdb/server/ctdbd.c | 45 +-
ctdb/server/eventscript.c | 104 +-
ctdb/server/ipalloc.c | 53 +
ctdb/server/ipalloc.h | 63 +
ctdb/server/ipalloc_common.c | 206 ++
ctdb/server/ipalloc_deterministic.c | 62 +
ctdb/server/ipalloc_lcp2.c | 515 +++
ctdb/server/ipalloc_nondeterministic.c | 147 +
ctdb/server/ipalloc_private.h | 43 +
ctdb/tcp/ctdb_tcp.h | 6 +-
ctdb/tcp/tcp_connect.c | 60 +-
ctdb/tcp/tcp_init.c | 28 +-
ctdb/tcp/tcp_io.c | 14 +-
ctdb/tests/complex/18_ctdb_reloadips.sh | 6 +-
ctdb/tests/cunit/comm_test_001.sh | 7 +
ctdb/tests/cunit/comm_test_002.sh | 24 +
ctdb/tests/cunit/db_hash_test_001.sh | 7 +
ctdb/tests/cunit/pkt_read_001.sh | 7 +
ctdb/tests/cunit/pkt_write_001.sh | 7 +
ctdb/tests/cunit/protocol_test_001.sh | 9 +
ctdb/tests/cunit/protocol_test_002.sh | 36 +
ctdb/tests/cunit/reqid_test_001.sh | 13 +
ctdb/tests/cunit/srvid_test_001.sh | 7 +
ctdb/tests/eventscripts/00.ctdb.monitor.001.sh | 15 -
ctdb/tests/eventscripts/00.ctdb.monitor.002.sh | 15 -
ctdb/tests/eventscripts/00.ctdb.monitor.003.sh | 19 -
ctdb/tests/eventscripts/00.ctdb.monitor.004.sh | 17 -
ctdb/tests/eventscripts/00.ctdb.monitor.005.sh | 21 -
ctdb/tests/eventscripts/05.system.monitor.001.sh | 14 +
ctdb/tests/eventscripts/05.system.monitor.002.sh | 12 +
ctdb/tests/eventscripts/05.system.monitor.003.sh | 14 +
ctdb/tests/eventscripts/05.system.monitor.004.sh | 12 +
ctdb/tests/eventscripts/05.system.monitor.005.sh | 14 +
ctdb/tests/eventscripts/05.system.monitor.006.sh | 14 +
ctdb/tests/eventscripts/05.system.monitor.007.sh | 12 +
ctdb/tests/eventscripts/05.system.monitor.011.sh | 16 +
ctdb/tests/eventscripts/05.system.monitor.012.sh | 14 +
ctdb/tests/eventscripts/05.system.monitor.013.sh | 19 +
ctdb/tests/eventscripts/05.system.monitor.014.sh | 16 +
ctdb/tests/eventscripts/05.system.monitor.015.sh | 18 +
ctdb/tests/eventscripts/05.system.monitor.016.sh | 16 +
ctdb/tests/eventscripts/05.system.monitor.017.sh | 40 +
ctdb/tests/eventscripts/05.system.monitor.018.sh | 123 +
.../tests/eventscripts/10.interface.monitor.015.sh | 2 +-
.../tests/eventscripts/10.interface.monitor.016.sh | 2 +-
ctdb/tests/eventscripts/11.natgw.005.sh | 24 -
ctdb/tests/eventscripts/11.natgw.041.sh | 5 +-
ctdb/tests/eventscripts/11.natgw.042.sh | 5 +-
ctdb/tests/eventscripts/11.natgw.051.sh | 16 +
ctdb/tests/eventscripts/11.natgw.052.sh | 20 +
ctdb/tests/eventscripts/11.natgw.053.sh | 16 +
ctdb/tests/eventscripts/11.natgw.054.sh | 20 +
ctdb/tests/eventscripts/13.per_ip_routing.023.sh | 26 +
ctdb/tests/eventscripts/50.samba.monitor.110.sh | 20 +
ctdb/tests/eventscripts/50.samba.monitor.111.sh | 25 +
ctdb/tests/eventscripts/50.samba.monitor.112.sh | 13 +
ctdb/tests/eventscripts/50.samba.monitor.113.sh | 16 +
ctdb/tests/eventscripts/scripts/local.sh | 150 +-
ctdb/tests/eventscripts/stubs/ctdb | 77 +-
ctdb/tests/eventscripts/stubs/ctdb_natgw | 34 +
ctdb/tests/eventscripts/stubs/df | 38 +
ctdb/tests/eventscripts/stubs/free | 9 -
ctdb/tests/eventscripts/stubs/ip | 10 +
ctdb/tests/eventscripts/stubs/ps | 2 +-
ctdb/tests/eventscripts/stubs/testparm | 38 +-
ctdb/tests/eventscripts/stubs/timeout | 8 +
ctdb/tests/onnode/functions | 1 +
ctdb/tests/run_tests.sh | 2 +-
ctdb/tests/scripts/integration.bash | 30 +-
ctdb/tests/simple/06_ctdb_getpid.sh | 10 +-
ctdb/tests/simple/11_ctdb_ip.sh | 4 +-
ctdb/tests/simple/12_ctdb_getdebug.sh | 10 +-
ctdb/tests/simple/13_ctdb_setdebug.sh | 16 +-
ctdb/tests/simple/14_ctdb_statistics.sh | 7 +-
ctdb/tests/simple/16_ctdb_config_add_ip.sh | 2 +-
ctdb/tests/simple/20_delip_iface_gc.sh | 2 +-
ctdb/tests/simple/23_ctdb_moveip.sh | 4 +-
ctdb/tests/simple/25_dumpmemory.sh | 17 -
ctdb/tests/simple/35_set_reclock.sh | 124 +
ctdb/tests/simple/35_set_recmaster.sh | 117 -
ctdb/tests/simple/60_recoverd_missing_ip.sh | 2 +-
ctdb/tests/simple/functions | 1 +
ctdb/tests/simple/scripts/local.bash | 5 +
ctdb/tests/simple/scripts/local_daemons.bash | 3 +-
ctdb/tests/src/comm_client_test.c | 216 ++
ctdb/tests/src/comm_server_test.c | 367 ++
ctdb/tests/src/comm_test.c | 260 ++
ctdb/tests/src/ctdb_bench.c | 120 +-
ctdb/tests/src/ctdb_fetch.c | 96 +-
ctdb/tests/src/ctdb_fetch_one.c | 28 +-
ctdb/tests/src/ctdb_fetch_readonly_loop.c | 26 +-
ctdb/tests/src/ctdb_fetch_readonly_once.c | 24 +-
ctdb/tests/src/ctdb_lock_tdb.c | 6 +-
ctdb/tests/src/ctdb_persistent.c | 39 +-
ctdb/tests/src/ctdb_porting_tests.c | 40 +-
ctdb/tests/src/ctdb_randrec.c | 26 +-
ctdb/tests/src/ctdb_store.c | 29 +-
ctdb/tests/src/ctdb_takeover_tests.c | 198 +-
ctdb/tests/src/ctdb_test.c | 20 +-
ctdb/tests/src/ctdb_test_stubs.c | 47 +-
ctdb/tests/src/ctdb_trackingdb_test.c | 21 +-
ctdb/tests/src/ctdb_transaction.c | 38 +-
ctdb/tests/src/ctdb_traverse.c | 33 +-
ctdb/tests/src/ctdb_update_record.c | 25 +-
ctdb/tests/src/ctdb_update_record_persistent.c | 28 +-
ctdb/tests/src/ctdbd_test.c | 25 +-
ctdb/tests/src/db_hash_test.c | 101 +
ctdb/tests/src/pkt_read_test.c | 242 ++
ctdb/tests/src/pkt_write_test.c | 370 ++
ctdb/tests/src/protocol_client_test.c | 2353 ++++++++++++
ctdb/tests/src/protocol_types_test.c | 1287 +++++++
ctdb/tests/src/rb_test.c | 19 +-
ctdb/tests/src/reqid_test.c | 72 +
ctdb/tests/src/srvid_test.c | 78 +
ctdb/tests/takeover/scripts/local.sh | 2 +-
ctdb/tests/takeover/simulation/ctdb_takeover.py | 4 +-
ctdb/tests/test_check_tcp_ports.sh | 3 +-
ctdb/tests/tool/scripts/local.sh | 38 +-
ctdb/tests/tool/stubby.getcapabilities.001.sh | 1 -
ctdb/tests/tool/stubby.getcapabilities.002.sh | 1 -
ctdb/tests/tool/stubby.getcapabilities.004.sh | 5 +-
ctdb/tests/tool/stubby.natgwlist.006.sh | 6 +-
ctdb/tests/tool/stubby.natgwlist.007.sh | 14 +-
ctdb/tests/tool/stubby.natgwlist.009.sh | 36 -
ctdb/tests/tool/stubby.natgwlist.010.sh | 37 -
ctdb/tests/tool/stubby.nodestatus.002.sh | 8 +-
ctdb/tests/tool/stubby.nodestatus.003.sh | 30 -
ctdb/tests/tool/stubby.nodestatus.004.sh | 31 -
ctdb/tests/tool/stubby.nodestatus.005.sh | 34 -
ctdb/tests/tool/stubs/ctdb | 27 +
ctdb/tools/ctdb.c | 568 ++-
ctdb/tools/ctdb_diagnostics | 18 +-
ctdb/tools/ctdb_natgw | 199 ++
ctdb/tools/ctdb_vacuum.c | 193 -
ctdb/tools/ltdbtool.c | 21 +-
ctdb/tools/onnode | 17 +-
ctdb/utils/ping_pong/ping_pong.c | 65 +-
ctdb/utils/pmda/pmda_ctdb.c | 22 +-
ctdb/utils/smnotify/smnotify.c | 2 +-
ctdb/web/iscsi.html | 2 +-
ctdb/web/testing.html | 4 +-
ctdb/wscript | 326 +-
debian/NEWS | 85 +
debian/changelog | 71 +-
debian/control | 25 +-
debian/ctdb.install | 8 +-
debian/gbp.conf | 2 +-
debian/patches/disable-socketwrapper.diff | 24 -
debian/patches/fix-against-talloc-2.1.6.patch | 514 ---
debian/patches/pam-examples.patch | 17 -
debian/patches/series | 3 -
debian/rules | 10 +-
debian/samba-dev.install | 50 +-
debian/samba-libs.install | 12 +-
debian/samba-libs.lintian-overrides | 3 +-
debian/samba-testsuite.install | 2 +-
debian/samba.install | 2 -
debian/smbclient.install | 3 +-
debian/watch | 2 +-
dfs_server/dfs_server_ad.c | 1 +
docs-xml/Samba3-HOWTO/TOSHARG-Passdb.xml | 2 +-
docs-xml/archives/THANKS | 2 +-
docs-xml/build/DTD/samba-doc | 4 +
docs-xml/manpages/cifsdd.8.xml | 101 +
docs-xml/manpages/dbwrap_tool.1.xml | 2 +-
docs-xml/manpages/eventlogadm.8.xml | 2 +-
docs-xml/manpages/findsmb.1.xml | 2 +-
docs-xml/manpages/idmap_ad.8.xml | 2 +-
docs-xml/manpages/idmap_autorid.8.xml | 17 +-
docs-xml/manpages/idmap_hash.8.xml | 2 +-
docs-xml/manpages/idmap_ldap.8.xml | 2 +-
docs-xml/manpages/idmap_nss.8.xml | 2 +-
docs-xml/manpages/idmap_rfc2307.8.xml | 17 +-
docs-xml/manpages/idmap_rid.8.xml | 2 +-
docs-xml/manpages/idmap_script.8.xml | 2 +-
docs-xml/manpages/idmap_tdb.8.xml | 2 +-
docs-xml/manpages/idmap_tdb2.8.xml | 2 +-
docs-xml/manpages/libsmbclient.7.xml | 2 +-
docs-xml/manpages/lmhosts.5.xml | 2 +-
docs-xml/manpages/log2pcap.1.xml | 2 +-
docs-xml/manpages/net.8.xml | 24 +-
docs-xml/manpages/nmbd.8.xml | 2 +-
docs-xml/manpages/nmblookup.1.xml | 2 +-
docs-xml/manpages/ntlm_auth.1.xml | 8 +-
docs-xml/manpages/pam_winbind.8.xml | 4 +-
docs-xml/manpages/pam_winbind.conf.5.xml | 4 +-
docs-xml/manpages/pdbedit.8.xml | 24 +-
docs-xml/manpages/profiles.1.xml | 2 +-
docs-xml/manpages/rpcclient.1.xml | 2 +-
docs-xml/manpages/samba-regedit.8.xml | 2 +-
docs-xml/manpages/samba-tool.8.xml | 2 +-
docs-xml/manpages/samba.7.xml | 2 +-
docs-xml/manpages/samba.8.xml | 2 +-
docs-xml/manpages/sharesec.1.xml | 2 +-
docs-xml/manpages/smb.conf.5.xml | 2 +-
docs-xml/manpages/smbcacls.1.xml | 2 +-
docs-xml/manpages/smbclient.1.xml | 2 +-
docs-xml/manpages/smbcontrol.1.xml | 2 +-
docs-xml/manpages/smbcquotas.1.xml | 2 +-
docs-xml/manpages/smbd.8.xml | 10 +-
docs-xml/manpages/smbget.1.xml | 24 +-
docs-xml/manpages/smbgetrc.5.xml | 10 +-
docs-xml/manpages/smbpasswd.5.xml | 2 +-
docs-xml/manpages/smbpasswd.8.xml | 2 +-
docs-xml/manpages/smbspool.8.xml | 7 +-
docs-xml/manpages/smbstatus.1.xml | 2 +-
docs-xml/manpages/smbta-util.8.xml | 115 -
docs-xml/manpages/smbtar.1.xml | 2 +-
docs-xml/manpages/smbtree.1.xml | 2 +-
docs-xml/manpages/testparm.1.xml | 2 +-
docs-xml/manpages/vfs_acl_tdb.8.xml | 2 +-
docs-xml/manpages/vfs_acl_xattr.8.xml | 2 +-
docs-xml/manpages/vfs_aio_fork.8.xml | 2 +-
docs-xml/manpages/vfs_aio_linux.8.xml | 2 +-
docs-xml/manpages/vfs_aio_pthread.8.xml | 2 +-
docs-xml/manpages/vfs_audit.8.xml | 2 +-
docs-xml/manpages/vfs_btrfs.8.xml | 2 +-
docs-xml/manpages/vfs_cacheprime.8.xml | 2 +-
docs-xml/manpages/vfs_cap.8.xml | 2 +-
docs-xml/manpages/vfs_catia.8.xml | 2 +-
docs-xml/manpages/vfs_ceph.8.xml | 4 +-
docs-xml/manpages/vfs_commit.8.xml | 2 +-
docs-xml/manpages/vfs_crossrename.8.xml | 2 +-
docs-xml/manpages/vfs_default_quota.8.xml | 2 +-
docs-xml/manpages/vfs_dirsort.8.xml | 2 +-
docs-xml/manpages/vfs_extd_audit.8.xml | 2 +-
docs-xml/manpages/vfs_fake_perms.8.xml | 2 +-
docs-xml/manpages/vfs_fileid.8.xml | 2 +-
docs-xml/manpages/vfs_fruit.8.xml | 2 +-
docs-xml/manpages/vfs_full_audit.8.xml | 2 +-
docs-xml/manpages/vfs_glusterfs.8.xml | 2 +-
docs-xml/manpages/vfs_gpfs.8.xml | 2 +-
docs-xml/manpages/vfs_linux_xfs_sgid.8.xml | 2 +-
docs-xml/manpages/vfs_media_harmony.8.xml | 2 +-
docs-xml/manpages/vfs_netatalk.8.xml | 2 +-
docs-xml/manpages/vfs_offline.8.xml | 72 +
docs-xml/manpages/vfs_prealloc.8.xml | 2 +-
docs-xml/manpages/vfs_preopen.8.xml | 2 +-
docs-xml/manpages/vfs_readahead.8.xml | 2 +-
docs-xml/manpages/vfs_readonly.8.xml | 2 +-
docs-xml/manpages/vfs_recycle.8.xml | 2 +-
docs-xml/manpages/vfs_scannedonly.8.xml | 243 --
docs-xml/manpages/vfs_shadow_copy.8.xml | 2 +-
docs-xml/manpages/vfs_shadow_copy2.8.xml | 50 +-
docs-xml/manpages/vfs_shell_snap.8.xml | 2 +-
docs-xml/manpages/vfs_smb_traffic_analyzer.8.xml | 299 --
docs-xml/manpages/vfs_snapper.8.xml | 2 +-
docs-xml/manpages/vfs_streams_depot.8.xml | 2 +-
docs-xml/manpages/vfs_streams_xattr.8.xml | 2 +-
docs-xml/manpages/vfs_syncops.8.xml | 2 +-
docs-xml/manpages/vfs_time_audit.8.xml | 2 +-
docs-xml/manpages/vfs_tsmsm.8.xml | 2 +-
docs-xml/manpages/vfs_unityed_media.8.xml | 2 +-
docs-xml/manpages/vfs_worm.8.xml | 2 +-
docs-xml/manpages/vfs_xattr_tdb.8.xml | 2 +-
docs-xml/manpages/vfs_zfsacl.8.xml | 2 +-
docs-xml/manpages/vfstest.1.xml | 2 +-
docs-xml/manpages/wbinfo.1.xml | 4 +-
docs-xml/manpages/winbind_krb5_locator.7.xml | 2 +-
docs-xml/manpages/winbindd.8.xml | 2 +-
docs-xml/smbdotconf/base/bindinterfacesonly.xml | 2 +-
docs-xml/smbdotconf/base/comment.xml | 2 +-
docs-xml/smbdotconf/base/configbackend.xml | 3 +-
docs-xml/smbdotconf/base/doscharset.xml | 5 +-
docs-xml/smbdotconf/base/interfaces.xml | 25 +-
docs-xml/smbdotconf/base/multicastdnsregister.xml | 2 +-
docs-xml/smbdotconf/base/netbiosaliases.xml | 3 +-
docs-xml/smbdotconf/base/netbiosname.xml | 2 +-
docs-xml/smbdotconf/base/netbiosscope.xml | 2 +-
docs-xml/smbdotconf/base/realm.xml | 3 +-
docs-xml/smbdotconf/base/sharebackend.xml | 2 +-
docs-xml/smbdotconf/base/unixcharset.xml | 5 +-
docs-xml/smbdotconf/base/workgroup.xml | 2 +-
docs-xml/smbdotconf/browse/browseable.xml | 4 +-
docs-xml/smbdotconf/browse/browselist.xml | 2 +-
docs-xml/smbdotconf/browse/domainmaster.xml | 3 +-
docs-xml/smbdotconf/browse/enhancedbrowsing.xml | 2 +-
docs-xml/smbdotconf/browse/lmannounce.xml | 3 +-
docs-xml/smbdotconf/browse/lminterval.xml | 2 +-
docs-xml/smbdotconf/browse/oslevel.xml | 2 +-
docs-xml/smbdotconf/browse/preferredmaster.xml | 5 +-
docs-xml/smbdotconf/domain/allowdnsupdates.xml | 1 +
docs-xml/smbdotconf/domain/dnsupdatecommand.xml | 2 +-
.../smbdotconf/domain/machinepasswordtimeout.xml | 13 +-
docs-xml/smbdotconf/domain/nsupdatecommand.xml | 2 +-
docs-xml/smbdotconf/domain/rndccommand.xml | 2 +-
docs-xml/smbdotconf/domain/spnupdatecommand.xml | 2 +-
docs-xml/smbdotconf/filename/casesensitive.xml | 3 +-
docs-xml/smbdotconf/filename/defaultcase.xml | 6 +-
docs-xml/smbdotconf/filename/deletevetofiles.xml | 2 +-
docs-xml/smbdotconf/filename/hidedotfiles.xml | 2 +-
docs-xml/smbdotconf/filename/hidespecialfiles.xml | 2 +-
docs-xml/smbdotconf/filename/hideunreadable.xml | 2 +-
.../smbdotconf/filename/hideunwriteablefiles.xml | 2 +-
docs-xml/smbdotconf/filename/manglednames.xml | 2 +-
docs-xml/smbdotconf/filename/mangleprefix.xml | 2 +-
docs-xml/smbdotconf/filename/manglingchar.xml | 2 +-
docs-xml/smbdotconf/filename/manglingmethod.xml | 4 +-
docs-xml/smbdotconf/filename/maparchive.xml | 4 +-
docs-xml/smbdotconf/filename/maphidden.xml | 2 +-
docs-xml/smbdotconf/filename/mapreadonly.xml | 3 +-
docs-xml/smbdotconf/filename/mapsystem.xml | 2 +-
docs-xml/smbdotconf/filename/maxstatcachesize.xml | 2 +-
docs-xml/smbdotconf/filename/preservecase.xml | 2 +-
docs-xml/smbdotconf/filename/shortpreservecase.xml | 2 +-
docs-xml/smbdotconf/filename/statcache.xml | 2 +-
.../smbdotconf/filename/storedosattributes.xml | 2 +-
docs-xml/smbdotconf/filename/vetofiles.xml | 2 +-
docs-xml/smbdotconf/filename/vetooplockfiles.xml | 2 +-
.../smbdotconf/ldap/clientldapsaslwrapping.xml | 3 +-
docs-xml/smbdotconf/ldap/ldapadmindn.xml | 4 +-
docs-xml/smbdotconf/ldap/ldapconnectiontimeout.xml | 6 +-
docs-xml/smbdotconf/ldap/ldapdeletedn.xml | 2 +-
docs-xml/smbdotconf/ldap/ldapderef.xml | 7 +-
docs-xml/smbdotconf/ldap/ldapfollowreferral.xml | 7 +-
docs-xml/smbdotconf/ldap/ldapgroupsuffix.xml | 4 +-
docs-xml/smbdotconf/ldap/ldapidmapsuffix.xml | 4 +-
docs-xml/smbdotconf/ldap/ldapmachinesuffix.xml | 8 +-
docs-xml/smbdotconf/ldap/ldappagesize.xml | 8 +-
docs-xml/smbdotconf/ldap/ldappasswdsync.xml | 7 +-
docs-xml/smbdotconf/ldap/ldapreplicationsleep.xml | 2 +-
docs-xml/smbdotconf/ldap/ldapsameditposix.xml | 4 +-
docs-xml/smbdotconf/ldap/ldapsamtrusted.xml | 4 +-
.../ldap/ldapserverrequirestrongauth.xml | 26 +
docs-xml/smbdotconf/ldap/ldapssl.xml | 3 +-
docs-xml/smbdotconf/ldap/ldapsslads.xml | 6 +-
docs-xml/smbdotconf/ldap/ldapsuffix.xml | 2 +-
docs-xml/smbdotconf/ldap/ldaptimeout.xml | 2 +-
docs-xml/smbdotconf/ldap/ldapusersuffix.xml | 8 +-
docs-xml/smbdotconf/locking/blockinglocks.xml | 2 +-
docs-xml/smbdotconf/locking/cscpolicy.xml | 3 +-
docs-xml/smbdotconf/locking/fakeoplocks.xml | 2 +-
docs-xml/smbdotconf/locking/kerneloplocks.xml | 4 +-
docs-xml/smbdotconf/locking/kernelsharemodes.xml | 4 +-
docs-xml/smbdotconf/locking/level2oplocks.xml | 2 +-
docs-xml/smbdotconf/locking/locking.xml | 2 +-
docs-xml/smbdotconf/locking/lockspintime.xml | 2 +-
.../smbdotconf/locking/oplockbreakwaittime.xml | 2 +-
.../smbdotconf/locking/oplockcontentionlimit.xml | 2 +-
docs-xml/smbdotconf/locking/oplocks.xml | 2 +-
docs-xml/smbdotconf/locking/posixlocking.xml | 2 +-
docs-xml/smbdotconf/locking/smb2leases.xml | 2 +-
docs-xml/smbdotconf/locking/strictlocking.xml | 3 +-
docs-xml/smbdotconf/logging/debugclass.xml | 2 +-
.../smbdotconf/logging/debughirestimestamp.xml | 2 +-
docs-xml/smbdotconf/logging/debugpid.xml | 2 +-
.../smbdotconf/logging/debugprefixtimestamp.xml | 2 +-
docs-xml/smbdotconf/logging/debugtimestamp.xml | 15 -
docs-xml/smbdotconf/logging/debuguid.xml | 2 +-
docs-xml/smbdotconf/logging/ldapdebuglevel.xml | 7 +-
docs-xml/smbdotconf/logging/ldapdebugthreshold.xml | 6 +-
docs-xml/smbdotconf/logging/logfile.xml | 3 +-
docs-xml/smbdotconf/logging/logging.xml | 6 +-
docs-xml/smbdotconf/logging/loglevel.xml | 5 +-
docs-xml/smbdotconf/logging/maxlogsize.xml | 2 +-
docs-xml/smbdotconf/logging/syslog.xml | 3 +-
docs-xml/smbdotconf/logging/syslogonly.xml | 3 +-
docs-xml/smbdotconf/logging/timestamplogs.xml | 14 +
docs-xml/smbdotconf/logon/domainlogons.xml | 2 +-
docs-xml/smbdotconf/logon/enableprivileges.xml | 3 +-
.../smbdotconf/logon/initlogondelayedhosts.xml | 2 +-
docs-xml/smbdotconf/logon/logondrive.xml | 2 +-
docs-xml/smbdotconf/logon/logonhome.xml | 2 +-
docs-xml/smbdotconf/logon/logonpath.xml | 2 +-
docs-xml/smbdotconf/logon/logonscript.xml | 2 +-
docs-xml/smbdotconf/misc/addsharecommand.xml | 2 +-
docs-xml/smbdotconf/misc/afsshare.xml | 6 +-
docs-xml/smbdotconf/misc/afsusernamemap.xml | 2 +-
.../smbdotconf/misc/allowinsecurewidelinks.xml | 6 +-
docs-xml/smbdotconf/misc/asyncsmbechohandler.xml | 2 +-
docs-xml/smbdotconf/misc/auto_services.xml | 21 +
docs-xml/smbdotconf/misc/available.xml | 6 +-
docs-xml/smbdotconf/misc/cachedirectory.xml | 4 +-
docs-xml/smbdotconf/misc/changenotify.xml | 2 +-
docs-xml/smbdotconf/misc/changesharecommand.xml | 2 +-
docs-xml/smbdotconf/misc/clusteraddresses.xml | 6 +-
docs-xml/smbdotconf/misc/clustering.xml | 2 +-
docs-xml/smbdotconf/misc/configfile.xml | 2 +-
docs-xml/smbdotconf/misc/copy.xml | 1 +
.../smbdotconf/misc/ctdblocktimewarnthreshold.xml | 2 +-
docs-xml/smbdotconf/misc/ctdbtimeout.xml | 2 +-
docs-xml/smbdotconf/misc/defaultservice.xml | 2 +-
docs-xml/smbdotconf/misc/deletereadonly.xml | 6 +-
docs-xml/smbdotconf/misc/deletesharecommand.xml | 2 +-
docs-xml/smbdotconf/misc/dfreecachetime.xml | 6 +-
.../smbdotconf/misc/directorynamecachesize.xml | 6 +-
docs-xml/smbdotconf/misc/dmapisupport.xml | 2 +-
docs-xml/smbdotconf/misc/dontdescend.xml | 6 +-
docs-xml/smbdotconf/misc/dosfilemode.xml | 6 +-
docs-xml/smbdotconf/misc/dosfiletimeresolution.xml | 6 +-
docs-xml/smbdotconf/misc/dosfiletimes.xml | 8 +-
.../smbdotconf/misc/fakedirectorycreatetimes.xml | 6 +-
docs-xml/smbdotconf/misc/followsymlinks.xml | 6 +-
docs-xml/smbdotconf/misc/fssprunestale.xml | 2 +-
docs-xml/smbdotconf/misc/fsssequencetimeout.xml | 2 +-
docs-xml/smbdotconf/misc/fstype.xml | 6 +-
docs-xml/smbdotconf/misc/homedirmap.xml | 6 +-
docs-xml/smbdotconf/misc/include.xml | 7 +-
docs-xml/smbdotconf/misc/kernelchangenotify.xml | 2 +-
docs-xml/smbdotconf/misc/lockdirectory.xml | 2 +-
.../smbdotconf/misc/logwriteablefilesonexit.xml | 6 +-
docs-xml/smbdotconf/misc/magicoutput.xml | 6 +-
docs-xml/smbdotconf/misc/magicscript.xml | 6 +-
docs-xml/smbdotconf/misc/messagecommand.xml | 6 +-
.../smbdotconf/misc/nbtclientsocketaddress.xml | 7 +-
docs-xml/smbdotconf/misc/ncalrpcdir.xml | 6 +-
docs-xml/smbdotconf/misc/nishomedir.xml | 6 +-
.../smbdotconf/misc/nmbdbindexplicitbroadcast.xml | 6 +-
docs-xml/smbdotconf/misc/panicaction.xml | 6 +-
docs-xml/smbdotconf/misc/perfcountmodule.xml | 6 +-
docs-xml/smbdotconf/misc/piddirectory.xml | 2 +-
docs-xml/smbdotconf/misc/postexec.xml | 6 +-
docs-xml/smbdotconf/misc/preexec.xml | 8 +-
docs-xml/smbdotconf/misc/preload.xml | 22 -
docs-xml/smbdotconf/misc/registryshares.xml | 2 +-
docs-xml/smbdotconf/misc/remoteannounce.xml | 6 +-
docs-xml/smbdotconf/misc/remotebrowsesync.xml | 6 +-
docs-xml/smbdotconf/misc/resetonzerovc.xml | 6 +-
docs-xml/smbdotconf/misc/rootpostexec.xml | 6 +-
docs-xml/smbdotconf/misc/rootpreexec.xml | 6 +-
docs-xml/smbdotconf/misc/rootpreexecclose.xml | 6 +-
docs-xml/smbdotconf/misc/rpcdaemon.xml | 4 +-
docs-xml/smbdotconf/misc/rpcserver.xml | 4 +-
docs-xml/smbdotconf/misc/smbdprofilinglevel.xml | 7 +-
docs-xml/smbdotconf/misc/statedirectory.xml | 4 +-
docs-xml/smbdotconf/misc/usershareallowguests.xml | 6 +-
docs-xml/smbdotconf/misc/usersharemaxshares.xml | 6 +-
docs-xml/smbdotconf/misc/usershareowneronly.xml | 6 +-
docs-xml/smbdotconf/misc/usersharepath.xml | 6 +-
.../smbdotconf/misc/usershareprefixallowlist.xml | 6 +-
.../smbdotconf/misc/usershareprefixdenylist.xml | 6 +-
.../smbdotconf/misc/usersharetemplateshare.xml | 6 +-
docs-xml/smbdotconf/misc/utmpdirectory.xml | 2 +-
docs-xml/smbdotconf/misc/valid.xml | 7 +-
docs-xml/smbdotconf/misc/volume.xml | 6 +-
docs-xml/smbdotconf/misc/widelinks.xml | 7 +-
docs-xml/smbdotconf/misc/wtmpdirectory.xml | 2 +-
docs-xml/smbdotconf/printing/addportcommand.xml | 2 +-
docs-xml/smbdotconf/printing/addprintercommand.xml | 2 +-
docs-xml/smbdotconf/printing/cupsencrypt.xml | 8 +-
docs-xml/smbdotconf/printing/cupsoptions.xml | 2 +-
docs-xml/smbdotconf/printing/cupsserver.xml | 2 +-
docs-xml/smbdotconf/printing/defaultdevmode.xml | 2 +-
.../smbdotconf/printing/deleteprintercommand.xml | 2 +-
docs-xml/smbdotconf/printing/disablespoolss.xml | 2 +-
docs-xml/smbdotconf/printing/enablespoolss.xml | 3 +-
docs-xml/smbdotconf/printing/enumportscommand.xml | 2 +-
docs-xml/smbdotconf/printing/forceprintername.xml | 2 +-
docs-xml/smbdotconf/printing/iprintserver.xml | 2 +-
docs-xml/smbdotconf/printing/loadprinters.xml | 2 +-
docs-xml/smbdotconf/printing/lppausecommand.xml | 2 +-
docs-xml/smbdotconf/printing/lpqcachetime.xml | 6 +-
docs-xml/smbdotconf/printing/lpqcommand.xml | 2 +-
docs-xml/smbdotconf/printing/lpresumecommand.xml | 2 +-
docs-xml/smbdotconf/printing/lprmcommand.xml | 2 +-
docs-xml/smbdotconf/printing/maxprintjobs.xml | 3 +-
.../smbdotconf/printing/maxreportedprintjobs.xml | 2 +-
docs-xml/smbdotconf/printing/os2drivermap.xml | 2 +-
docs-xml/smbdotconf/printing/printable.xml | 2 +-
docs-xml/smbdotconf/printing/printcapcachetime.xml | 4 +-
docs-xml/smbdotconf/printing/printcapname.xml | 6 +-
docs-xml/smbdotconf/printing/printcommand.xml | 2 +-
docs-xml/smbdotconf/printing/printername.xml | 2 +-
docs-xml/smbdotconf/printing/printing.xml | 4 +-
docs-xml/smbdotconf/printing/printjobusername.xml | 2 +-
.../smbdotconf/printing/printnotifybackchannel.xml | 6 +-
docs-xml/smbdotconf/printing/queuepausecommand.xml | 2 +-
.../smbdotconf/printing/queueresumecommand.xml | 2 +-
.../smbdotconf/printing/showaddprinterwizard.xml | 2 +-
.../smbdotconf/printing/spoolssarchitecture.xml | 6 +-
docs-xml/smbdotconf/printing/spoolssosversion.xml | 6 +-
docs-xml/smbdotconf/printing/useclientdriver.xml | 2 +-
.../smbdotconf/protocol/aclcheckpermissions.xml | 3 +-
docs-xml/smbdotconf/protocol/aclmapfullcontrol.xml | 6 +-
docs-xml/smbdotconf/protocol/cldapport.xml | 2 +-
.../smbdotconf/protocol/clientipcmaxprotocol.xml | 29 +
.../smbdotconf/protocol/clientipcminprotocol.xml | 29 +
docs-xml/smbdotconf/protocol/clientmaxprotocol.xml | 18 +-
docs-xml/smbdotconf/protocol/clientminprotocol.xml | 13 +-
docs-xml/smbdotconf/protocol/clientusespnego.xml | 7 +-
.../smbdotconf/protocol/dcerpcendpointservers.xml | 2 +-
.../smbdotconf/protocol/defersharingviolations.xml | 2 +-
docs-xml/smbdotconf/protocol/dgramport.xml | 2 +-
docs-xml/smbdotconf/protocol/disablenetbios.xml | 2 +-
docs-xml/smbdotconf/protocol/easupport.xml | 2 +-
docs-xml/smbdotconf/protocol/enableasusupport.xml | 6 +-
docs-xml/smbdotconf/protocol/eventloglist.xml | 2 +-
docs-xml/smbdotconf/protocol/largereadwrite.xml | 2 +-
docs-xml/smbdotconf/protocol/mapaclinherit.xml | 2 +-
docs-xml/smbdotconf/protocol/maxmux.xml | 2 +-
docs-xml/smbdotconf/protocol/maxttl.xml | 2 +-
docs-xml/smbdotconf/protocol/maxwinsttl.xml | 2 +-
docs-xml/smbdotconf/protocol/maxxmit.xml | 2 +-
.../smbdotconf/protocol/minreceivefilesize.xml | 7 +-
docs-xml/smbdotconf/protocol/minwinsttl.xml | 2 +-
docs-xml/smbdotconf/protocol/nameresolveorder.xml | 2 +-
docs-xml/smbdotconf/protocol/nbtport.xml | 2 +-
docs-xml/smbdotconf/protocol/ntaclsupport.xml | 2 +-
docs-xml/smbdotconf/protocol/ntpipesupport.xml | 2 +-
docs-xml/smbdotconf/protocol/ntstatussupport.xml | 2 +-
docs-xml/smbdotconf/protocol/profileacls.xml | 2 +-
docs-xml/smbdotconf/protocol/readraw.xml | 6 +-
docs-xml/smbdotconf/protocol/rpcbigendian.xml | 2 +-
docs-xml/smbdotconf/protocol/servermaxprotocol.xml | 7 +-
docs-xml/smbdotconf/protocol/serverminprotocol.xml | 7 +-
.../protocol/servermultichannelsupport.xml | 21 +
docs-xml/smbdotconf/protocol/sharefakefscaps.xml | 4 +-
docs-xml/smbdotconf/protocol/smb2maxcredits.xml | 8 +-
docs-xml/smbdotconf/protocol/smb2maxread.xml | 6 +-
docs-xml/smbdotconf/protocol/smb2maxtrans.xml | 6 +-
docs-xml/smbdotconf/protocol/smb2maxwrite.xml | 6 +-
docs-xml/smbdotconf/protocol/smbports.xml | 3 +-
docs-xml/smbdotconf/protocol/svcctllist.xml | 2 +-
docs-xml/smbdotconf/protocol/timeserver.xml | 2 +-
docs-xml/smbdotconf/protocol/unicode.xml | 2 +-
docs-xml/smbdotconf/protocol/unixextensions.xml | 2 +-
docs-xml/smbdotconf/protocol/usespnego.xml | 3 +-
docs-xml/smbdotconf/protocol/webport.xml | 2 +-
docs-xml/smbdotconf/protocol/writeraw.xml | 6 +-
.../smbdotconf/security/accessbasedshareenum.xml | 4 +-
docs-xml/smbdotconf/security/aclgroupcontrol.xml | 2 +-
docs-xml/smbdotconf/security/adminusers.xml | 2 +-
.../smbdotconf/security/algorithmicridbase.xml | 4 +-
.../security/allowdcerpcauthlevelconnect.xml | 27 +
.../smbdotconf/security/allowtrusteddomains.xml | 4 +-
docs-xml/smbdotconf/security/authmethods.xml | 4 +-
.../smbdotconf/security/checkpasswordscript.xml | 2 +-
docs-xml/smbdotconf/security/clientipcsigning.xml | 26 +
docs-xml/smbdotconf/security/clientlanmanauth.xml | 2 +-
docs-xml/smbdotconf/security/clientntlmv2auth.xml | 7 +-
.../smbdotconf/security/clientplaintextauth.xml | 4 +-
docs-xml/smbdotconf/security/clientschannel.xml | 5 +-
docs-xml/smbdotconf/security/clientsigning.xml | 17 +-
.../security/clientusepsnegoprincipal.xml | 3 +-
docs-xml/smbdotconf/security/createmask.xml | 2 +-
.../smbdotconf/security/dedicatedkeytabfile.xml | 4 +-
docs-xml/smbdotconf/security/directorymask.xml | 4 +-
.../smbdotconf/security/directorysecuritymask.xml | 8 +-
docs-xml/smbdotconf/security/encryptpasswords.xml | 4 +-
docs-xml/smbdotconf/security/forcecreatemode.xml | 2 +-
.../smbdotconf/security/forcedirectorymode.xml | 2 +-
.../security/forcedirectorysecuritymode.xml | 8 +-
docs-xml/smbdotconf/security/forcegroup.xml | 2 +-
.../smbdotconf/security/forceunknownacluser.xml | 2 +-
docs-xml/smbdotconf/security/forceuser.xml | 2 +-
docs-xml/smbdotconf/security/guestaccount.xml | 4 +-
docs-xml/smbdotconf/security/guestok.xml | 4 +-
docs-xml/smbdotconf/security/guestonly.xml | 2 +-
docs-xml/smbdotconf/security/hostsallow.xml | 2 +-
docs-xml/smbdotconf/security/hostsdeny.xml | 2 +-
docs-xml/smbdotconf/security/inheritacls.xml | 2 +-
docs-xml/smbdotconf/security/inheritowner.xml | 2 +-
.../smbdotconf/security/inheritpermissions.xml | 2 +-
docs-xml/smbdotconf/security/invalidusers.xml | 2 +-
docs-xml/smbdotconf/security/kerberosmethod.xml | 5 +-
docs-xml/smbdotconf/security/kpasswdport.xml | 2 +-
docs-xml/smbdotconf/security/krb5port.xml | 2 +-
docs-xml/smbdotconf/security/lanmanauth.xml | 4 +-
docs-xml/smbdotconf/security/maptoguest.xml | 5 +-
.../smbdotconf/security/mapuntrustedtodomain.xml | 4 +-
docs-xml/smbdotconf/security/ntlmauth.xml | 2 +-
docs-xml/smbdotconf/security/nullpasswords.xml | 5 +-
.../smbdotconf/security/obeypamrestrictions.xml | 4 +-
.../security/oldpasswordallowedperiod.xml | 4 +-
docs-xml/smbdotconf/security/onlyuser.xml | 3 +-
docs-xml/smbdotconf/security/pampasswordchange.xml | 4 +-
docs-xml/smbdotconf/security/passdbbackend.xml | 4 +-
.../smbdotconf/security/passdbexpandexplicit.xml | 4 +-
docs-xml/smbdotconf/security/passwdchatdebug.xml | 2 +-
docs-xml/smbdotconf/security/passwdchattimeout.xml | 2 +-
docs-xml/smbdotconf/security/passwdprogram.xml | 4 +-
docs-xml/smbdotconf/security/passwordserver.xml | 4 +-
docs-xml/smbdotconf/security/preloadmodules.xml | 6 +-
docs-xml/smbdotconf/security/privatedir.xml | 4 +-
docs-xml/smbdotconf/security/rawntlmv2auth.xml | 19 +
docs-xml/smbdotconf/security/readlist.xml | 2 +-
docs-xml/smbdotconf/security/readonly.xml | 3 +-
docs-xml/smbdotconf/security/renameuserscript.xml | 4 +-
docs-xml/smbdotconf/security/restrictanonymous.xml | 2 +-
docs-xml/smbdotconf/security/rootdirectory.xml | 6 +-
docs-xml/smbdotconf/security/sambakcccommand.xml | 2 +-
docs-xml/smbdotconf/security/security.xml | 11 +-
docs-xml/smbdotconf/security/serverrole.xml | 11 +-
docs-xml/smbdotconf/security/serverschannel.xml | 5 +-
docs-xml/smbdotconf/security/serversigning.xml | 7 +-
docs-xml/smbdotconf/security/smbencrypt.xml | 5 +-
docs-xml/smbdotconf/security/smbpasswdfile.xml | 4 +-
docs-xml/smbdotconf/security/tlsdhparamsfile.xml | 2 +-
docs-xml/smbdotconf/security/tlsverifypeer.xml | 47 +
docs-xml/smbdotconf/security/unixpasswordsync.xml | 2 +-
docs-xml/smbdotconf/security/username.xml | 5 +-
docs-xml/smbdotconf/security/usernamelevel.xml | 2 +-
docs-xml/smbdotconf/security/usernamemap.xml | 2 +-
.../smbdotconf/security/usernamemapcachetime.xml | 2 +-
docs-xml/smbdotconf/security/usernamemapscript.xml | 2 +-
docs-xml/smbdotconf/security/validusers.xml | 2 +-
docs-xml/smbdotconf/security/writeable.xml | 4 +-
docs-xml/smbdotconf/security/writelist.xml | 2 +-
docs-xml/smbdotconf/tuning/aiomaxthreads.xml | 19 +
docs-xml/smbdotconf/tuning/aioreadsize.xml | 2 +-
docs-xml/smbdotconf/tuning/aiowritesize.xml | 2 +-
.../smbdotconf/tuning/allocationroundupsize.xml | 2 +-
docs-xml/smbdotconf/tuning/blocksize.xml | 2 +-
docs-xml/smbdotconf/tuning/maxdisksize.xml | 2 +-
docs-xml/smbdotconf/tuning/strictrename.xml | 15 +-
docs-xml/smbdotconf/tuning/strictsync.xml | 6 +-
docs-xml/smbdotconf/tuning/writecachesize.xml | 2 +-
docs-xml/smbdotconf/vfs/vfsobjects.xml | 2 +-
docs-xml/smbdotconf/winbind/createkrb5conf.xml | 4 +-
docs-xml/smbdotconf/winbind/idmapbackend.xml | 4 +-
docs-xml/smbdotconf/winbind/idmapcachetime.xml | 2 +-
docs-xml/smbdotconf/winbind/idmapconfig.xml | 2 +-
docs-xml/smbdotconf/winbind/idmapgid.xml | 6 +-
.../smbdotconf/winbind/idmapnegativecachetime.xml | 2 +-
docs-xml/smbdotconf/winbind/idmapuid.xml | 4 +-
docs-xml/smbdotconf/winbind/templatehomedir.xml | 2 +-
docs-xml/smbdotconf/winbind/templateshell.xml | 2 +-
docs-xml/smbdotconf/winbind/winbindcachetime.xml | 2 +-
docs-xml/smbdotconf/winbind/winbindenumgroups.xml | 2 +-
.../smbdotconf/winbind/winbindexpandgroups.xml | 2 +-
docs-xml/smbdotconf/winbind/winbindmaxclients.xml | 2 +-
.../winbind/winbindmaxdomainconnections.xml | 8 +-
.../smbdotconf/winbind/winbindnestedgroups.xml | 2 +-
.../smbdotconf/winbind/winbindnormalizenames.xml | 2 +-
docs-xml/smbdotconf/winbind/winbindnssinfo.xml | 2 +-
.../smbdotconf/winbind/winbindofflinelogon.xml | 4 +-
.../smbdotconf/winbind/winbindreconnectdelay.xml | 2 +-
.../smbdotconf/winbind/winbindrefreshtickets.xml | 2 +-
.../smbdotconf/winbind/winbindrequesttimeout.xml | 2 +-
docs-xml/smbdotconf/winbind/winbindrpconly.xml | 4 +-
docs-xml/smbdotconf/winbind/winbindseparator.xml | 2 +-
.../winbind/winbindtrusteddomainsonly.xml | 2 +-
.../smbdotconf/winbind/winbindusedefaultdomain.xml | 2 +-
docs-xml/smbdotconf/wins/dnsproxy.xml | 2 +-
docs-xml/smbdotconf/wins/winsserver.xml | 2 +-
docs-xml/using_samba/ch02.xml | 2 +-
docs-xml/using_samba/ch05.xml | 2 +-
docs-xml/wscript_build | 11 +-
docs/manpages/cifsdd.8 | 104 +
docs/manpages/dbwrap_tool.1 | 58 +-
docs/manpages/eventlogadm.8 | 6 +-
docs/manpages/findsmb.1 | 6 +-
docs/manpages/idmap_ad.8 | 6 +-
docs/manpages/idmap_autorid.8 | 11 +-
docs/manpages/idmap_hash.8 | 6 +-
docs/manpages/idmap_ldap.8 | 6 +-
docs/manpages/idmap_nss.8 | 6 +-
docs/manpages/idmap_rfc2307.8 | 17 +-
docs/manpages/idmap_rid.8 | 6 +-
docs/manpages/idmap_script.8 | 6 +-
docs/manpages/idmap_tdb.8 | 6 +-
docs/manpages/idmap_tdb2.8 | 6 +-
docs/manpages/libsmbclient.7 | 6 +-
docs/manpages/lmhosts.5 | 6 +-
docs/manpages/log2pcap.1 | 11 +-
docs/manpages/net.8 | 155 +-
docs/manpages/nmbd.8 | 61 +-
docs/manpages/nmblookup.1 | 89 +-
docs/manpages/ntlm_auth.1 | 26 +-
docs/manpages/pam_winbind.8 | 8 +-
docs/manpages/pam_winbind.conf.5 | 8 +-
docs/manpages/pdbedit.8 | 74 +-
docs/manpages/profiles.1 | 58 +-
docs/manpages/rpcclient.1 | 170 +-
docs/manpages/samba-regedit.8 | 165 +-
docs/manpages/samba-tool.8 | 48 +-
docs/manpages/samba.7 | 6 +-
docs/manpages/samba.8 | 58 +-
docs/manpages/sharesec.1 | 53 +-
docs/manpages/smb.conf.5 | 429 ++-
docs/manpages/smbcacls.1 | 170 +-
docs/manpages/smbclient.1 | 170 +-
docs/manpages/smbcontrol.1 | 65 +-
docs/manpages/smbcquotas.1 | 139 +-
docs/manpages/smbd.8 | 61 +-
docs/manpages/smbget.1 | 29 +-
docs/manpages/smbgetrc.5 | 15 +-
docs/manpages/smbpasswd.5 | 6 +-
docs/manpages/smbpasswd.8 | 10 +-
docs/manpages/smbspool.8 | 19 +-
docs/manpages/smbspool_krb5_wrapper.8 | 4 +-
docs/manpages/smbstatus.1 | 53 +-
docs/manpages/smbta-util.8 | 83 -
docs/manpages/smbtar.1 | 6 +-
docs/manpages/smbtree.1 | 139 +-
docs/manpages/testparm.1 | 44 +-
docs/manpages/vfs_acl_tdb.8 | 6 +-
docs/manpages/vfs_acl_xattr.8 | 6 +-
docs/manpages/vfs_aio_fork.8 | 6 +-
docs/manpages/vfs_aio_linux.8 | 6 +-
docs/manpages/vfs_aio_pthread.8 | 6 +-
docs/manpages/vfs_audit.8 | 6 +-
docs/manpages/vfs_btrfs.8 | 6 +-
docs/manpages/vfs_cacheprime.8 | 6 +-
docs/manpages/vfs_cap.8 | 6 +-
docs/manpages/vfs_catia.8 | 6 +-
docs/manpages/vfs_ceph.8 | 8 +-
docs/manpages/vfs_commit.8 | 6 +-
docs/manpages/vfs_crossrename.8 | 6 +-
docs/manpages/vfs_default_quota.8 | 6 +-
docs/manpages/vfs_dirsort.8 | 6 +-
docs/manpages/vfs_extd_audit.8 | 6 +-
docs/manpages/vfs_fake_perms.8 | 6 +-
docs/manpages/vfs_fileid.8 | 6 +-
docs/manpages/vfs_fruit.8 | 6 +-
docs/manpages/vfs_full_audit.8 | 6 +-
docs/manpages/vfs_glusterfs.8 | 6 +-
docs/manpages/vfs_gpfs.8 | 6 +-
docs/manpages/vfs_linux_xfs_sgid.8 | 6 +-
docs/manpages/vfs_media_harmony.8 | 6 +-
docs/manpages/vfs_netatalk.8 | 6 +-
docs/manpages/vfs_offline.8 | 65 +
docs/manpages/vfs_prealloc.8 | 6 +-
docs/manpages/vfs_preopen.8 | 6 +-
docs/manpages/vfs_readahead.8 | 6 +-
docs/manpages/vfs_readonly.8 | 6 +-
docs/manpages/vfs_recycle.8 | 6 +-
docs/manpages/vfs_scannedonly.8 | 164 -
docs/manpages/vfs_shadow_copy.8 | 6 +-
docs/manpages/vfs_shadow_copy2.8 | 77 +-
docs/manpages/vfs_shell_snap.8 | 6 +-
docs/manpages/vfs_smb_traffic_analyzer.8 | 385 --
docs/manpages/vfs_snapper.8 | 6 +-
docs/manpages/vfs_streams_depot.8 | 6 +-
docs/manpages/vfs_streams_xattr.8 | 6 +-
docs/manpages/vfs_syncops.8 | 6 +-
docs/manpages/vfs_time_audit.8 | 6 +-
docs/manpages/vfs_tsmsm.8 | 6 +-
docs/manpages/vfs_unityed_media.8 | 6 +-
docs/manpages/vfs_worm.8 | 6 +-
docs/manpages/vfs_xattr_tdb.8 | 6 +-
docs/manpages/vfs_zfsacl.8 | 6 +-
docs/manpages/vfstest.1 | 53 +-
docs/manpages/wbinfo.1 | 18 +-
docs/manpages/winbind_krb5_locator.7 | 6 +-
docs/manpages/winbindd.8 | 58 +-
dynconfig/dynconfig.c | 7 +-
dynconfig/wscript | 8 +-
examples/VFS/shadow_copy_test.c | 1 +
examples/VFS/skel_opaque.c | 6 +-
examples/VFS/skel_transparent.c | 8 +-
examples/libsmbclient/get_auth_data_fn.h | 16 +-
examples/libsmbclient/teststat.c | 16 +-
examples/libsmbclient/teststat2.c | 16 +-
examples/libsmbclient/testutime.c | 16 +-
examples/pdb/test.c | 4 +-
install_with_python.sh | 41 +-
lib/crypto/REQUIREMENTS | 3 -
lib/dbwrap/dbwrap.c | 9 +-
lib/dbwrap/dbwrap.h | 6 +-
lib/dbwrap/dbwrap_cache.c | 8 +-
lib/dbwrap/dbwrap_local_open.c | 9 +-
lib/dbwrap/dbwrap_private.h | 4 +-
lib/dbwrap/dbwrap_rbt.c | 8 +-
lib/dbwrap/dbwrap_tdb.c | 23 +-
lib/dbwrap/dbwrap_tdb.h | 1 -
lib/dbwrap/dbwrap_util.c | 20 +-
lib/dbwrap/wscript_build | 2 +-
lib/krb5_wrap/krb5_samba.c | 21 +-
lib/ldb-samba/ldb_ildap.c | 12 +-
lib/ldb-samba/ldb_matching_rules.c | 342 ++
lib/ldb-samba/ldb_matching_rules.h | 28 +
lib/ldb-samba/ldb_wrap.c | 8 +-
lib/ldb-samba/ldif_handlers.c | 6 +
lib/ldb-samba/tests/match_rules.py | 1427 +++++++-
lib/ldb-samba/wscript_build | 4 +-
lib/ldb/ABI/ldb-1.1.22.sigs | 264 ++
lib/ldb/ABI/ldb-1.1.23.sigs | 264 ++
lib/ldb/ABI/ldb-1.1.24.sigs | 264 ++
lib/ldb/ABI/ldb-1.1.25.sigs | 265 ++
lib/ldb/ABI/ldb-1.1.26.sigs | 265 ++
...ldb-util-1.1.10.sigs => pyldb-util-1.1.22.sigs} | 0
...ldb-util-1.1.10.sigs => pyldb-util-1.1.23.sigs} | 0
...ldb-util-1.1.10.sigs => pyldb-util-1.1.24.sigs} | 0
...ldb-util-1.1.10.sigs => pyldb-util-1.1.25.sigs} | 0
...ldb-util-1.1.10.sigs => pyldb-util-1.1.26.sigs} | 0
...util-1.1.10.sigs => pyldb-util.py3-1.1.23.sigs} | 0
...util-1.1.10.sigs => pyldb-util.py3-1.1.24.sigs} | 0
...util-1.1.10.sigs => pyldb-util.py3-1.1.25.sigs} | 0
...util-1.1.10.sigs => pyldb-util.py3-1.1.26.sigs} | 0
lib/ldb/_ldb_text.py | 148 +
lib/ldb/common/ldb_controls.c | 73 +-
lib/ldb/common/ldb_dn.c | 38 +-
lib/ldb/common/ldb_ldif.c | 77 +-
lib/ldb/common/ldb_match.c | 5 +-
lib/ldb/common/ldb_modules.c | 6 +-
lib/ldb/common/ldb_pack.c | 274 +-
lib/ldb/include/dlinklist.h | 15 +-
lib/ldb/include/ldb.h | 7 +
lib/ldb/include/ldb_module.h | 18 +
lib/ldb/include/ldb_private.h | 13 +-
lib/ldb/ldb_ldap/ldb_ldap.c | 18 +-
lib/ldb/ldb_sqlite3/ldb_sqlite3.c | 11 +-
lib/ldb/ldb_tdb/ldb_search.c | 19 +-
lib/ldb/ldb_tdb/ldb_tdb.c | 14 +-
lib/ldb/ldb_tdb/ldb_tdb.h | 3 +
lib/ldb/pyldb.c | 1043 ++++--
lib/ldb/pyldb.h | 7 +
lib/ldb/pyldb_util.c | 21 +-
lib/ldb/tests/python/api.py | 845 ++++-
lib/ldb/tests/test-tdb.sh | 7 -
lib/ldb/tools/cmdline.c | 33 +
lib/ldb/wscript | 73 +-
lib/nss_wrapper/nss_wrapper.c | 2015 +++++++++--
lib/nss_wrapper/wscript | 5 +-
lib/param/README | 20 +-
lib/param/loadparm.c | 202 +-
lib/param/loadparm.h | 41 +-
lib/param/param.h | 10 +-
lib/param/param_table.c | 3755 +-------------------
lib/param/util.c | 1 +
lib/param/wscript_build | 6 +
lib/replace/replace.c | 17 +-
lib/replace/wscript | 37 +-
lib/resolv_wrapper/resolv_wrapper.c | 227 +-
lib/resolv_wrapper/wscript | 3 +-
lib/socket/interfaces.c | 66 +
lib/socket/interfaces.h | 3 +
lib/socket/wscript | 7 +
lib/socket_wrapper/socket_wrapper.c | 121 +-
lib/socket_wrapper/wscript | 3 +-
...oc-util-2.0.6.sigs => pytalloc-util-2.1.4.sigs} | 0
...oc-util-2.0.6.sigs => pytalloc-util-2.1.5.sigs} | 0
lib/talloc/ABI/pytalloc-util-2.1.6.sigs | 13 +
lib/talloc/ABI/pytalloc-util.py3-2.1.5.sigs | 5 +
lib/talloc/ABI/pytalloc-util.py3-2.1.6.sigs | 12 +
lib/talloc/ABI/talloc-2.1.4.sigs | 65 +
lib/talloc/ABI/talloc-2.1.5.sigs | 65 +
lib/talloc/ABI/talloc-2.1.6.sigs | 65 +
lib/talloc/pytalloc.c | 86 +
lib/talloc/pytalloc.h | 23 +-
lib/talloc/pytalloc_guide.txt | 40 +-
lib/talloc/pytalloc_private.h | 26 +
lib/talloc/pytalloc_util.c | 199 +-
lib/talloc/talloc.c | 89 +-
lib/talloc/talloc.h | 4 +-
lib/talloc/test_magic_differs.sh | 16 +
lib/talloc/test_magic_differs_helper.c | 12 +
lib/talloc/test_pytalloc.c | 83 +-
lib/talloc/test_pytalloc.py | 73 +-
lib/talloc/testsuite.c | 71 +
lib/talloc/wscript | 23 +-
lib/tdb/ABI/{tdb-1.3.5.sigs => tdb-1.3.8.sigs} | 0
lib/tdb/common/open.c | 7 +
lib/tdb/docs/mutex.txt | 4 +-
lib/tdb/wscript | 4 +-
lib/tdb_wrap/tdb_wrap.c | 12 +-
lib/tevent/ABI/tevent-0.9.26.sigs | 90 +
lib/tevent/ABI/tevent-0.9.27.sigs | 90 +
lib/tevent/ABI/tevent-0.9.28.sigs | 90 +
lib/tevent/doc/tevent_thread.dox | 322 ++
lib/tevent/doc/tevent_tutorial.dox | 2 +
lib/tevent/testsuite.c | 330 ++
lib/tevent/tevent.h | 52 +
lib/tevent/tevent_epoll.c | 6 +-
lib/tevent/tevent_immediate.c | 2 +-
lib/tevent/tevent_poll.c | 7 +-
lib/tevent/tevent_port.c | 22 +-
lib/tevent/tevent_queue.c | 2 +-
lib/tevent/tevent_select.c | 2 +-
lib/tevent/tevent_signal.c | 4 +
lib/tevent/tevent_threads.c | 370 ++
lib/tevent/tevent_util.h | 15 +-
lib/tevent/wscript | 9 +-
lib/torture/torture.c | 14 +-
lib/torture/torture.h | 11 +
lib/torture/torture.pc.in | 12 -
lib/torture/wscript_build | 11 +-
lib/tsocket/tsocket_bsd.c | 13 +-
lib/uid_wrapper/uid_wrapper.c | 646 +++-
lib/uid_wrapper/wscript | 75 +-
lib/util/asn1.c | 121 +-
lib/util/asn1.h | 27 +-
lib/util/charset/util_str.c | 4 +-
lib/util/debug.c | 2 +-
lib/util/debug.h | 20 +-
lib/util/dlinklist.h | 15 +-
lib/util/genrand.c | 259 +-
lib/util/genrand.h | 11 -
lib/util/idtree.c | 7 +-
lib/util/parmlist.c | 111 -
lib/util/parmlist.h | 57 -
lib/util/samba_util.h | 32 +-
lib/util/server_id.c | 110 +-
lib/util/server_id_db.c | 23 +-
lib/util/sys_rw.c | 101 +
{source3/lib => lib/util}/sys_rw.h | 0
lib/util/sys_rw_data.c | 117 +
{source3/lib => lib/util}/sys_rw_data.h | 0
lib/util/talloc_report.c | 4 +-
lib/util/tests/asn1_tests.c | 6 +-
lib/util/tests/dlinklist.c | 8 +-
lib/util/tests/genrand.c | 12 -
lib/util/tests/genrandperf.c | 39 +
lib/util/tests/parmlist.c | 107 -
lib/util/time_basic.c | 3 +-
lib/util/time_basic.h | 3 +-
lib/util/util.c | 2 +-
lib/util/util.h | 53 +
lib/util/util_net.c | 247 +-
lib/util/util_net.h | 1 +
lib/util/util_process.c | 1 +
lib/util/wscript_build | 54 +-
lib/util/wscript_configure | 6 +-
libcli/auth/netlogon_creds_cli.c | 15 +-
libcli/auth/proto.h | 6 +
libcli/auth/smbencrypt.c | 170 +-
libcli/auth/spnego.h | 8 +-
libcli/auth/spnego_parse.c | 55 +-
libcli/auth/wscript_build | 2 +-
libcli/cldap/cldap.c | 14 +-
libcli/dns/dns.c | 34 +-
libcli/dns/libdns.h | 10 +-
libcli/drsuapi/drsuapi.h | 1 +
libcli/drsuapi/repl_decrypt.c | 6 +
libcli/drsuapi/wscript_build | 2 +-
libcli/ldap/ldap_message.c | 34 +-
libcli/ldap/wscript_build | 7 +-
libcli/nbt/libnbt.h | 2 +
libcli/nbt/nbtsocket.c | 7 +-
libcli/security/dom_sid.h | 6 +-
libcli/security/secace.c | 19 -
libcli/security/secace.h | 1 -
libcli/security/secdesc.c | 21 +-
libcli/security/secdesc.h | 5 -
libcli/security/security_token.c | 5 +
libcli/security/security_token.h | 2 +
libcli/security/session.c | 4 +
libcli/security/session.h | 1 +
libcli/security/util_sid.c | 31 +-
libcli/smb/smb1cli_read.c | 53 +-
libcli/smb/smb2_signing.c | 17 +-
libcli/smb/smb2cli_ioctl.c | 84 +-
libcli/smb/smb2cli_query_info.c | 24 +-
libcli/smb/smb2cli_read.c | 26 +-
libcli/smb/smbXcli_base.c | 79 +-
libcli/smb/smbXcli_base.h | 3 +
libcli/smb/smb_constants.h | 8 +-
libcli/smb/smb_signing.c | 4 +
libcli/smb/smb_unix_ext.h | 2 +-
libcli/smb/tstream_smbXcli_np.c | 17 +-
libcli/smb/wscript | 6 +-
libcli/smbreadline/smbreadline.c | 6 +
libcli/util/wscript_build | 6 +-
libds/common/flags.h | 4 +-
libds/common/wscript_build | 6 +-
libgpo/gpo_ldap.c | 2 +-
librpc/idl/clusapi.idl | 154 +-
librpc/idl/dcerpc.idl | 15 +-
librpc/idl/dcom.idl | 131 +-
librpc/idl/epmapper.idl | 2 +-
librpc/idl/ioctl.idl | 1 +
librpc/idl/messaging.idl | 1 +
librpc/idl/negoex.idl | 156 +
librpc/idl/ntlmssp.idl | 48 +-
librpc/idl/orpc.idl | 36 +-
librpc/idl/oxidresolver.idl | 52 +-
librpc/idl/remact.idl | 44 +-
librpc/idl/rot.idl | 58 +-
librpc/idl/security.idl | 12 +
librpc/idl/witness.idl | 6 +-
librpc/idl/wmi.idl | 8 +-
librpc/idl/wscript_build | 2 +-
librpc/idl/xattr.idl | 1 +
librpc/ndr/libndr.h | 6 +-
librpc/ndr/ndr_basic.c | 4 +-
librpc/ndr/ndr_dns.c | 2 +-
librpc/ndr/ndr_nbt.c | 2 +-
librpc/ndr/ndr_negoex.c | 520 +++
librpc/ndr/ndr_negoex.h | 37 +
librpc/ndr/ndr_ntlmssp.c | 16 +
librpc/ndr/ndr_ntlmssp.h | 2 +
librpc/rpc/binding.c | 4 +-
librpc/rpc/dcerpc_error.c | 6 +-
librpc/rpc/dcerpc_util.c | 141 +-
librpc/rpc/rpc_common.h | 10 +-
librpc/tools/wscript_build | 2 +-
librpc/wscript_build | 11 +-
nsswitch/libwbclient/tests/wbclient.c | 20 +-
nsswitch/libwbclient/wbc_pam.c | 21 +-
nsswitch/pam_winbind.c | 28 +-
nsswitch/wb_common.c | 4 +-
nsswitch/wbinfo.c | 10 +
nsswitch/winbind_struct_protocol.h | 1 +
nsswitch/wins.c | 245 +-
nsswitch/wins_freebsd.c | 81 +
nsswitch/wscript_build | 9 +-
packaging/RHEL-CTDB/configure.rpm | 2 -
packaging/RHEL-CTDB/samba.spec.tmpl | 10 +-
packaging/RHEL/samba.spec.tmpl | 6 +-
pidl/lib/Parse/Pidl/Samba3/ClientNDR.pm | 11 +-
pidl/lib/Parse/Pidl/Samba3/Template.pm | 11 +-
pidl/lib/Parse/Pidl/Samba4/NDR/Client.pm | 11 +-
pidl/lib/Parse/Pidl/Samba4/Python.pm | 43 +-
pidl/lib/Parse/Pidl/Samba4/Template.pm | 11 +-
pidl/lib/Parse/Pidl/Util.pm | 16 +-
pidl/wscript | 5 +-
python/pyglue.c | 11 +
python/samba/__init__.py | 1 +
python/samba/dbchecker.py | 160 +-
python/samba/join.py | 144 +-
python/samba/kcc/__init__.py | 372 +-
python/samba/kcc/kcc_utils.py | 105 +-
python/samba/kcc/ldif_import_export.py | 10 +-
python/samba/netcmd/dns.py | 6 +-
python/samba/netcmd/domain.py | 267 +-
python/samba/netcmd/drs.py | 46 +
python/samba/netcmd/main.py | 2 -
python/samba/netcmd/ntacl.py | 24 +-
python/samba/netcmd/sites.py | 163 +-
python/samba/netcmd/user.py | 10 +-
python/samba/netcmd/vampire.py | 55 -
python/samba/ntacls.py | 8 +
python/samba/provision/__init__.py | 11 +-
python/samba/provision/sambadns.py | 15 +-
python/samba/remove_dc.py | 435 +++
python/samba/samdb.py | 25 +-
python/samba/sites.py | 52 +-
python/samba/subnets.py | 186 +
python/samba/tests/__init__.py | 527 ++-
python/samba/tests/blackbox/samba_tool_drs.py | 169 +-
python/samba/tests/dcerpc/array.py | 171 +
python/samba/tests/dcerpc/dnsserver.py | 2 +-
python/samba/tests/dcerpc/raw_protocol.py | 2623 ++++++++++++++
python/samba/tests/dcerpc/rpc_talloc.py | 14 +-
python/samba/tests/dns.py | 34 +-
python/samba/tests/docs.py | 142 +-
python/samba/tests/kcc/ldif_import_export.py | 37 +-
python/samba/tests/provision.py | 3 -
python/samba/tests/samba_tool/sites.py | 136 +
python/samba/upgradehelpers.py | 2 +-
python/uuidmodule.c | 58 -
python/wscript_build | 8 -
script/autobuild.py | 89 +-
script/generate_param.py | 159 +-
script/release.sh | 44 +-
selftest/flapping | 2 +
selftest/knownfail | 44 +-
.../DC-addc.addom.samba.example.com-S02-cert.pem | 191 +
.../DC-addc.addom.samba.example.com-S02-key.pem | 54 +
...DC-addc.addom.samba.example.com-S02-openssl.cnf | 250 ++
...ddc.addom.samba.example.com-S02-private-key.pem | 51 +
.../DC-addc.addom.samba.example.com-S02-req.pem | 30 +
.../DC-addc.addom.samba.example.com-cert.pem | 1 +
...DC-addc.addom.samba.example.com-private-key.pem | 1 +
.../DC-localdc.samba.example.com-S00-cert.pem | 190 +
.../DC-localdc.samba.example.com-S00-key.pem | 54 +
.../DC-localdc.samba.example.com-S00-openssl.cnf | 250 ++
...C-localdc.samba.example.com-S00-private-key.pem | 51 +
.../DC-localdc.samba.example.com-S00-req.pem | 30 +
.../DC-localdc.samba.example.com-cert.pem | 1 +
.../DC-localdc.samba.example.com-private-key.pem | 1 +
.../manage-ca/CA-samba.example.com/NewCerts/00.pem | 190 +
.../manage-ca/CA-samba.example.com/NewCerts/01.pem | 169 +
.../manage-ca/CA-samba.example.com/NewCerts/02.pem | 191 +
.../manage-ca/CA-samba.example.com/NewCerts/03.pem | 169 +
.../Private/CA-samba.example.com-crlnumber.txt | 1 +
.../Private/CA-samba.example.com-crlnumber.txt.old | 1 +
.../Private/CA-samba.example.com-index.txt | 4 +
.../Private/CA-samba.example.com-index.txt.attr | 1 +
.../CA-samba.example.com-index.txt.attr.old | 1 +
.../Private/CA-samba.example.com-index.txt.old | 3 +
.../Private/CA-samba.example.com-openssl.cnf | 203 ++
.../Private/CA-samba.example.com-private-key.pem | 102 +
.../Private/CA-samba.example.com-serial.txt | 1 +
.../Private/CA-samba.example.com-serial.txt.old | 1 +
.../Public/CA-samba.example.com-cert.pem | 62 +
.../Public/CA-samba.example.com-crl.pem | 32 +
...inistrator at addom.samba.example.com-S03-cert.pem | 169 +
...ministrator at addom.samba.example.com-S03-key.pem | 30 +
...strator at addom.samba.example.com-S03-openssl.cnf | 242 ++
...tor at addom.samba.example.com-S03-private-key.pem | 27 +
...ministrator at addom.samba.example.com-S03-req.pem | 19 +
...-administrator at addom.samba.example.com-cert.pem | 1 +
...strator at addom.samba.example.com-private-key.pem | 1 +
...ER-administrator at samba.example.com-S01-cert.pem | 169 +
...SER-administrator at samba.example.com-S01-key.pem | 30 +
...administrator at samba.example.com-S01-openssl.cnf | 242 ++
...nistrator at samba.example.com-S01-private-key.pem | 27 +
...SER-administrator at samba.example.com-S01-req.pem | 19 +
.../USER-administrator at samba.example.com-cert.pem | 1 +
...administrator at samba.example.com-private-key.pem | 1 +
selftest/manage-ca/manage-CA-samba.example.com.cnf | 21 +
selftest/manage-ca/manage-CA-samba.example.com.sh | 18 +
selftest/manage-ca/manage-ca.sh | 387 ++
.../manage-CA-example.com.cnf | 17 +
.../openssl-BASE-template.cnf | 201 ++
.../manage-ca.templates.d/openssl-CA-template.cnf | 2 +
.../manage-ca.templates.d/openssl-DC-template.cnf | 49 +
.../openssl-USER-template.cnf | 41 +
selftest/selftest.pl | 50 +-
selftest/selftesthelpers.py | 2 +
selftest/target/Samba.pm | 124 +-
selftest/target/Samba3.pm | 154 +-
selftest/target/Samba4.pm | 365 +-
selftest/tests.py | 4 +
source3/auth/auth.c | 2 +-
source3/auth/auth_builtin.c | 47 +-
source3/auth/auth_domain.c | 2 +-
source3/auth/auth_samba4.c | 13 +-
source3/auth/auth_util.c | 15 +
source3/auth/pampass.c | 2 +-
source3/client/clitar.c | 12 +-
source3/client/dnsbrowse.c | 2 +-
source3/client/smbspool.c | 4 +-
source3/include/MacExtensions.h | 10 +-
source3/include/ads.h | 2 -
source3/include/auth_generic.h | 7 +-
source3/include/ctdbd_conn.h | 102 +-
source3/include/messages.h | 18 +-
source3/include/ntquotas.h | 2 +-
source3/include/passdb.h | 2 +-
source3/include/proto.h | 115 +-
source3/include/samba_linux_quota.h | 2 +-
source3/include/secrets.h | 1 +
source3/include/serverid.h | 13 +-
source3/include/session.h | 5 +-
source3/include/smb.h | 10 +-
source3/include/smb_ldap.h | 2 +-
source3/include/smbprofile.h | 4 +-
source3/include/tldap.h | 1 +
source3/include/vfs.h | 20 +-
source3/include/vfs_macros.h | 8 +-
source3/lib/background.c | 2 +-
source3/lib/cluster_support.c | 16 +
source3/lib/cluster_support.h | 1 +
source3/lib/conn_tdb.c | 10 +
source3/lib/conn_tdb.h | 4 +
source3/lib/ctdb_dummy.c | 68 +-
source3/lib/ctdbd_conn.c | 783 ++--
source3/lib/dbwrap/dbwrap_ctdb.c | 148 +-
source3/lib/dbwrap/dbwrap_open.c | 1 +
source3/lib/dbwrap/dbwrap_watch.c | 188 +-
source3/lib/dummyparam.c | 30 -
source3/lib/events.c | 2 +-
source3/lib/gencache.c | 42 +-
source3/lib/gencache.h | 52 +
source3/lib/interface.c | 113 +-
source3/lib/messages.c | 69 +-
source3/lib/messages_ctdbd.c | 62 +-
source3/lib/messages_dgm.c | 113 +-
source3/lib/messages_dgm.h | 3 +-
source3/lib/messages_dgm_ref.c | 17 +-
source3/lib/messages_dgm_ref.h | 2 +-
source3/lib/netapi/cm.c | 2 +-
.../examples/netdomjoin-gui/netdomjoin-gui.c | 2 +-
source3/lib/poll_funcs/poll_funcs_tevent.c | 2 +-
source3/lib/popt_common.c | 2 +-
source3/lib/privileges.c | 2 +-
source3/lib/pthreadpool/pthreadpool.c | 11 +-
source3/lib/recvfile.c | 2 +-
source3/lib/server_id_db_util.c | 10 +-
source3/lib/serverid.c | 243 +-
source3/lib/sessionid_tdb.c | 33 +-
source3/lib/smbldap.c | 6 +-
source3/lib/substitute.c | 4 +-
source3/lib/sys_rw.c | 101 -
source3/lib/sys_rw_data.c | 117 -
source3/lib/sysquotas_nfs.c | 7 -
source3/lib/talloc_dict.c | 7 +-
source3/lib/tldap.c | 29 +-
source3/lib/tldap_util.c | 2 +-
source3/lib/unix_msg/unix_msg.c | 4 +-
source3/lib/util.c | 184 +-
source3/lib/util_cluster.c | 9 +-
source3/lib/util_ea.c | 2 +-
source3/lib/util_file.c | 2 +-
source3/lib/util_names.c | 14 +
source3/lib/util_path.c | 95 +
source3/lib/util_path.h | 31 +
source3/lib/util_procid.c | 69 +
source3/lib/util_procid.h | 37 +
source3/lib/util_sec.c | 14 +
source3/lib/util_sid.c | 11 +-
source3/lib/util_sock.c | 6 +-
source3/lib/util_specialsids.c | 40 +
source3/lib/util_transfer_file.c | 2 +-
source3/lib/util_tsock.c | 5 +-
source3/lib/util_tsock.h | 38 +
source3/libads/ads_proto.h | 7 +-
source3/libads/ads_struct.c | 12 +-
source3/libads/krb5_setpw.c | 13 +-
source3/libads/ldap.c | 196 +-
source3/libads/ldap_utils.c | 4 +-
source3/libads/ndr.c | 2 +-
source3/libads/sasl.c | 684 ++--
source3/libnet/libnet_dssync.c | 1 +
source3/libnet/libnet_join.c | 245 +-
source3/librpc/crypto/gse.c | 96 +-
source3/librpc/idl/libnet_join.idl | 4 +-
source3/librpc/idl/smbXsrv.idl | 117 +-
source3/librpc/rpc/dcerpc.h | 10 +-
source3/librpc/rpc/dcerpc_helpers.c | 98 +-
source3/libsmb/auth_generic.c | 51 +-
source3/libsmb/cliconnect.c | 717 ++--
source3/libsmb/clidfs.c | 2 +-
source3/libsmb/clientgen.c | 9 +
source3/libsmb/clifsinfo.c | 2 -
source3/libsmb/clilist.c | 2 +-
source3/libsmb/cliquota.c | 6 +-
source3/libsmb/clireadwrite.c | 8 +-
source3/libsmb/clispnego.c | 283 +-
source3/libsmb/dsgetdcname.c | 40 +-
source3/libsmb/libsmb_printjob.c | 4 +-
source3/libsmb/namequery.c | 80 +-
source3/libsmb/ntlmssp.c | 765 ----
source3/libsmb/ntlmssp_wrap.c | 135 -
source3/libsmb/passchange.c | 7 +-
source3/libsmb/pylibsmb.c | 2 +-
source3/libsmb/unexpected.c | 3 +-
source3/locale/net/de.po | 8 +-
source3/modules/nfs4_acls.c | 248 +-
source3/modules/nfs4_acls.h | 32 +-
source3/modules/perfcount_test.c | 1 +
source3/modules/vfs_acl_common.c | 147 +-
source3/modules/vfs_acl_tdb.c | 3 +-
source3/modules/vfs_acl_xattr.c | 3 +-
source3/modules/vfs_aio_fork.c | 15 +-
source3/modules/vfs_aio_linux.c | 25 +-
source3/modules/vfs_aio_posix.c | 301 --
source3/modules/vfs_aio_pthread.c | 6 +-
source3/modules/vfs_aixacl2.c | 16 +-
source3/modules/vfs_audit.c | 1 +
source3/modules/vfs_cacheprime.c | 2 +-
source3/modules/vfs_cap.c | 21 +-
source3/modules/vfs_catia.c | 7 +-
source3/modules/vfs_ceph.c | 5 +-
source3/modules/vfs_default.c | 48 +-
source3/modules/vfs_default_quota.c | 13 +-
source3/modules/vfs_dirsort.c | 1 +
source3/modules/vfs_extd_audit.c | 1 +
source3/modules/vfs_fake_dfq.c | 174 +
source3/modules/vfs_fruit.c | 6 +-
source3/modules/vfs_full_audit.c | 9 +-
source3/modules/vfs_glusterfs.c | 170 +-
source3/modules/vfs_gpfs.c | 134 +-
source3/modules/vfs_nfs4acl_xattr.c | 36 +-
source3/modules/vfs_offline.c | 47 +
source3/modules/vfs_posix_eadb.c | 2 +-
source3/modules/vfs_preopen.c | 2 +-
source3/modules/vfs_scannedonly.c | 1043 ------
source3/modules/vfs_shadow_copy2.c | 116 +-
source3/modules/vfs_smb_traffic_analyzer.c | 946 -----
source3/modules/vfs_smb_traffic_analyzer.h | 157 -
source3/modules/vfs_snapper.c | 36 +-
source3/modules/vfs_syncops.c | 1 +
source3/modules/vfs_time_audit.c | 6 +-
source3/modules/vfs_zfsacl.c | 13 +-
source3/modules/wscript_build | 42 +-
source3/nmbd/asyncdns.c | 4 +-
source3/nmbd/nmbd.c | 3 +-
source3/nmbd/nmbd_browserdb.c | 2 +-
source3/nmbd/nmbd_packets.c | 2 +-
source3/nmbd/nmbd_responserecordsdb.c | 2 +-
source3/nmbd/nmbd_serverlistdb.c | 2 +-
source3/pam_smbpass/CHANGELOG | 31 -
source3/pam_smbpass/INSTALL | 64 -
source3/pam_smbpass/README | 68 -
source3/pam_smbpass/TODO | 7 -
source3/pam_smbpass/general.h | 134 -
source3/pam_smbpass/pam_smb_acct.c | 150 -
source3/pam_smbpass/pam_smb_auth.c | 264 --
source3/pam_smbpass/pam_smb_passwd.c | 365 --
source3/pam_smbpass/samples/README | 3 -
source3/pam_smbpass/samples/kdc-pdc | 15 -
source3/pam_smbpass/samples/password-mature | 14 -
source3/pam_smbpass/samples/password-migration | 18 -
source3/pam_smbpass/samples/password-sync | 15 -
source3/pam_smbpass/support.c | 698 ----
source3/pam_smbpass/support.h | 57 -
source3/pam_smbpass/wscript_build | 16 -
source3/param/loadparm.c | 240 +-
source3/passdb/ABI/samba-passdb-0.24.2.sigs | 313 ++
source3/passdb/ABI/samba-passdb-0.25.0.sigs | 312 ++
source3/passdb/machine_account_secrets.c | 32 +-
source3/passdb/passdb.c | 21 +-
source3/passdb/pdb_get_set.c | 24 +-
source3/passdb/pdb_ipa.c | 2 +-
source3/passdb/py_passdb.c | 285 +-
source3/passdb/secrets.c | 29 -
source3/printing/notify.c | 2 +-
source3/printing/print_cups.c | 4 +-
source3/printing/printing.c | 2 +-
source3/printing/queue_process.c | 4 +-
source3/printing/spoolssd.c | 12 +-
source3/profile/profile.c | 4 +-
source3/registry/reg_backend_db.c | 7 +-
source3/registry/reg_objects.c | 4 +-
source3/registry/regfio.c | 2 +-
source3/rpc_client/cli_pipe.c | 314 +-
source3/rpc_client/rpc_transport_np.c | 3 +-
source3/rpc_server/epmd.c | 6 +-
source3/rpc_server/fss/srv_fss_agent.c | 9 +-
source3/rpc_server/fss/srv_fss_state.c | 12 +-
source3/rpc_server/fssd.c | 4 +-
source3/rpc_server/lsa/srv_lsa_nt.c | 2 +-
source3/rpc_server/lsasd.c | 10 +-
source3/rpc_server/mdssd.c | 11 +-
source3/rpc_server/netlogon/srv_netlog_nt.c | 57 +-
source3/rpc_server/rpc_handles.c | 1 +
source3/rpc_server/rpc_ncacn_np.c | 3 +-
source3/rpc_server/rpc_pipes.h | 11 +
source3/rpc_server/rpc_server.c | 12 +
source3/rpc_server/samr/srv_samr_chgpasswd.c | 2 +-
source3/rpc_server/samr/srv_samr_nt.c | 21 +-
source3/rpc_server/spoolss/srv_spoolss_nt.c | 83 +
source3/rpc_server/srv_pipe.c | 494 ++-
source3/rpc_server/srvsvc/srv_srvsvc_nt.c | 23 +-
source3/rpcclient/cmd_clusapi.c | 58 +
source3/rpcclient/cmd_witness.c | 5 +
source3/rpcclient/rpcclient.c | 5 +-
source3/script/tests/test_dfree_quota.sh | 174 +
source3/script/tests/test_forceuser_validusers.sh | 59 +
source3/script/tests/test_ntlm_auth_s3.sh | 198 +-
source3/script/tests/test_offline.sh | 33 +
source3/script/tests/test_rpcclient_samlogon.sh | 11 +-
source3/script/tests/test_shadow_copy.sh | 1 +
source3/script/tests/test_smbclient_auth.sh | 13 +-
source3/script/tests/test_smbclient_ntlm.sh | 40 +
source3/script/tests/test_smbclient_s3.sh | 60 +
source3/script/tests/test_smbclient_tarmode.pl | 6 +-
source3/script/tests/test_smbget.sh | 236 ++
source3/script/tests/test_valid_users.sh | 70 +
source3/selftest/tests.py | 16 +-
source3/smbd/aio.c | 64 +-
source3/smbd/blocking.c | 2 +-
source3/smbd/dfree.c | 15 +-
source3/smbd/dir.c | 13 +-
source3/smbd/dosmode.c | 65 +-
source3/smbd/filename.c | 55 +-
source3/smbd/globals.c | 3 -
source3/smbd/globals.h | 63 +-
source3/smbd/negprot.c | 159 +-
source3/smbd/notify.c | 3 +-
source3/smbd/notify_inotify.c | 2 +-
source3/smbd/notifyd/notifyd.c | 67 +-
source3/smbd/ntquotas.c | 2 +-
source3/smbd/nttrans.c | 95 +-
source3/smbd/open.c | 34 +-
source3/smbd/posix_acls.c | 30 +-
source3/smbd/process.c | 112 +-
source3/smbd/proto.h | 28 +-
source3/smbd/quotas.c | 42 +-
source3/smbd/reply.c | 228 +-
source3/smbd/scavenger.c | 57 +-
source3/smbd/seal.c | 2 -
source3/smbd/server.c | 227 +-
source3/smbd/server_exit.c | 10 +-
source3/smbd/sesssetup.c | 56 +-
source3/smbd/smb2_break.c | 8 +-
source3/smbd/smb2_close.c | 1 -
source3/smbd/smb2_create.c | 130 +-
source3/smbd/smb2_flush.c | 60 +-
source3/smbd/smb2_ioctl_filesys.c | 7 +-
source3/smbd/smb2_ioctl_network_fs.c | 136 +
source3/smbd/smb2_negprot.c | 87 +-
source3/smbd/smb2_query_directory.c | 12 +-
source3/smbd/smb2_read.c | 2 +-
source3/smbd/smb2_server.c | 201 +-
source3/smbd/smb2_sesssetup.c | 337 +-
source3/smbd/smb2_setinfo.c | 18 +
source3/smbd/smb2_tcon.c | 12 +-
source3/smbd/smbXsrv_client.c | 781 ++++
source3/smbd/smbXsrv_open.c | 288 +-
source3/smbd/smbXsrv_session.c | 345 +-
source3/smbd/smbXsrv_tcon.c | 119 +-
source3/smbd/smbd_cleanupd.c | 156 +
source3/smbd/smbd_cleanupd.h | 33 +
source3/smbd/trans2.c | 419 ++-
source3/smbd/vfs.c | 4 +-
source3/torture/test_ntlm_auth.py | 553 +--
source3/torture/torture.c | 11 +-
source3/utils/net.c | 8 +-
source3/utils/net.h | 1 +
source3/utils/net_ads.c | 66 +-
source3/utils/net_rpc.c | 2 +-
source3/utils/net_serverid.c | 62 +-
source3/utils/net_util.c | 2 +-
source3/utils/ntlm_auth.c | 896 +----
source3/utils/pdbedit.c | 43 +-
source3/utils/smbcontrol.c | 2 +-
source3/utils/smbcquotas.c | 2 +-
source3/utils/smbfilter.c | 2 +-
source3/utils/smbget.c | 759 ++--
source3/utils/smbta-util.c | 211 --
source3/utils/status.c | 207 +-
source3/winbindd/idmap.c | 41 +
source3/winbindd/idmap_ad.c | 1 +
source3/winbindd/idmap_autorid.c | 1 +
source3/winbindd/idmap_hash/idmap_hash.c | 33 +-
source3/winbindd/idmap_nss.c | 8 +-
source3/winbindd/idmap_rfc2307.c | 40 +-
source3/winbindd/idmap_rid.c | 7 +-
source3/winbindd/idmap_script.c | 1 +
source3/winbindd/idmap_tdb2.c | 1 +
source3/winbindd/idmap_util.c | 4 +-
source3/winbindd/wb_sids2xids.c | 14 +-
source3/winbindd/winbindd.c | 13 +-
source3/winbindd/winbindd_ads.c | 2 +-
source3/winbindd/winbindd_cache.c | 2 +-
source3/winbindd/winbindd_ccache_access.c | 44 +-
source3/winbindd/winbindd_cm.c | 10 +-
source3/winbindd/winbindd_cred_cache.c | 24 -
source3/winbindd/winbindd_dual.c | 6 +-
source3/winbindd/winbindd_misc.c | 13 +-
source3/winbindd/winbindd_msrpc.c | 2 +-
source3/winbindd/winbindd_pam.c | 13 +-
source3/winbindd/winbindd_proto.h | 1 +
source3/winbindd/winbindd_util.c | 155 +-
source3/winbindd/wscript_build | 16 +-
source3/wscript | 256 +-
source3/wscript_build | 70 +-
source4/auth/gensec/gensec_gssapi.c | 5 +-
source4/auth/gensec/gensec_krb5.c | 24 +-
source4/auth/gensec/gensec_tstream.c | 6 +-
source4/auth/gensec/pygensec.c | 162 +-
source4/auth/kerberos/kerberos-notes.txt | 2 +-
source4/auth/kerberos/kerberos_util.c | 13 +-
source4/auth/kerberos/wscript_build | 2 +-
source4/auth/ntlm/auth.c | 3 +-
source4/auth/ntlm/auth_anonymous.c | 30 +
source4/auth/ntlm/auth_sam.c | 1 +
source4/auth/ntlm/auth_unix.c | 6 +-
source4/auth/ntlm/auth_util.c | 4 +-
source4/auth/ntlm/auth_winbind.c | 15 +-
source4/auth/pyauth.c | 14 +-
source4/cldap_server/cldap_server.c | 1 +
source4/client/cifsdd.c | 2 +-
source4/dns_server/dlz_bind9.c | 16 +-
source4/dns_server/dns_query.c | 569 ++-
source4/dns_server/dns_server.c | 73 +-
source4/dns_server/dns_server.h | 11 +-
source4/dns_server/dns_utils.c | 92 +-
source4/dns_server/dnsserver_common.c | 192 +-
source4/dns_server/dnsserver_common.h | 18 +-
source4/dns_server/pydns.c | 319 ++
source4/dns_server/wscript_build | 8 +-
source4/dsdb/common/util.c | 2 +-
source4/dsdb/common/util_trusts.c | 2 +-
source4/dsdb/dns/dns_update.c | 1 +
source4/dsdb/kcc/kcc_drs_replica_info.c | 2 +-
source4/dsdb/kcc/kcc_service.c | 1 +
source4/dsdb/pydsdb.c | 9 +-
source4/dsdb/repl/drepl_notify.c | 2 +-
source4/dsdb/repl/drepl_out_helpers.c | 3 +
source4/dsdb/repl/drepl_out_pull.c | 2 +-
source4/dsdb/repl/drepl_partitions.c | 4 +-
source4/dsdb/repl/drepl_service.c | 1 +
source4/dsdb/repl/replicated_objects.c | 92 +-
source4/dsdb/samdb/ldb_modules/acl.c | 2 +-
source4/dsdb/samdb/ldb_modules/descriptor.c | 4 +-
source4/dsdb/samdb/ldb_modules/dns_notify.c | 2 +-
source4/dsdb/samdb/ldb_modules/extended_dn_in.c | 4 +-
source4/dsdb/samdb/ldb_modules/linked_attributes.c | 2 +-
source4/dsdb/samdb/ldb_modules/operational.c | 2 +-
source4/dsdb/samdb/ldb_modules/repl_meta_data.c | 121 +-
source4/dsdb/samdb/ldb_modules/rootdse.c | 2 +-
source4/dsdb/samdb/ldb_modules/samldb.c | 289 +-
source4/dsdb/samdb/ldb_modules/secrets_tdb_sync.c | 2 +-
source4/dsdb/samdb/ldb_modules/update_keytab.c | 2 +-
.../dsdb/samdb/ldb_modules/wscript_build_server | 2 +-
source4/dsdb/samdb/samdb.h | 1 +
source4/dsdb/schema/schema_query.c | 8 +-
source4/dsdb/schema/schema_syntax.c | 12 +-
source4/dsdb/tests/python/acl.py | 2 +-
source4/dsdb/tests/python/ldap_schema.py | 31 +-
source4/dsdb/tests/python/sites.py | 447 ++-
source4/dsdb/wscript_build | 4 +-
source4/echo_server/echo_server.c | 3 +-
.../heimdal/lib/gssapi/krb5/accept_sec_context.c | 71 +-
source4/heimdal/lib/roken/resolve.c | 1 +
source4/heimdal_build/wscript_build | 10 +-
source4/heimdal_build/wscript_configure | 10 +-
source4/kdc/db-glue.c | 206 +-
source4/kdc/db-glue.h | 8 +-
source4/kdc/hdb-samba4.c | 138 +-
source4/kdc/kdc.c | 1 +
source4/kdc/pac-glue.c | 1 -
source4/kdc/sdb.c | 131 +
source4/kdc/sdb.h | 126 +
source4/kdc/sdb_to_hdb.c | 347 ++
source4/kdc/wscript_build | 19 +-
source4/ldap_server/ldap_backend.c | 2 +-
source4/ldap_server/ldap_bind.c | 50 +-
source4/ldap_server/ldap_server.c | 7 +
source4/ldap_server/ldap_server.h | 2 +
source4/lib/com/dcom/dcom.h | 2 +-
source4/lib/com/dcom/main.c | 8 +-
source4/lib/http/http.c | 2 +-
source4/lib/messaging/messaging.c | 10 +-
source4/lib/messaging/pymessaging.c | 2 +-
source4/lib/registry/pyregistry.c | 19 +-
source4/lib/registry/registry.pc.in | 12 -
source4/lib/registry/wscript_build | 5 +-
source4/lib/socket/interface.c | 11 +-
source4/lib/socket/wscript_build | 2 +-
source4/lib/stream/packet.c | 2 +-
source4/lib/tls/tls.c | 90 +-
source4/lib/tls/tls.h | 30 +-
source4/lib/tls/tls_tstream.c | 251 +-
source4/lib/tls/tlscert.c | 18 +-
source4/lib/tls/wscript | 31 +-
source4/lib/wmi/tools/wmis.c | 3 +-
source4/lib/wmi/wmi_wrap.c | 2 +-
source4/lib/wmi/wmicore.c | 3 +-
source4/libcli/cliconnect.c | 2 +-
source4/libcli/dgram/dgramsocket.c | 2 +-
source4/libcli/ldap/ldap_bind.c | 62 +-
source4/libcli/ldap/ldap_client.c | 61 +-
source4/libcli/ldap/ldap_controls.c | 49 +-
source4/libcli/ldap/wscript_build | 4 +-
source4/libcli/pysmb.c | 116 +-
source4/libcli/raw/libcliraw.h | 1 +
source4/libcli/raw/rawnegotiate.c | 11 +-
source4/libcli/raw/smbclient-raw.pc.in | 10 -
source4/libcli/resolve/resolve.c | 2 +-
source4/libcli/smb2/connect.c | 7 +-
source4/libcli/smb2/wscript_build | 2 +-
source4/libcli/smb_composite/connect.c | 1 +
source4/libcli/smb_composite/sesssetup.c | 35 +-
source4/libcli/wbclient/wscript_build | 2 +-
source4/libcli/wscript_build | 14 +-
source4/libnet/libnet_vampire.c | 293 +-
source4/libnet/py_net.c | 59 -
source4/librpc/dcerpc_atsvc.pc.in | 11 -
source4/librpc/rpc/dcerpc.c | 357 +-
source4/librpc/rpc/dcerpc.h | 14 +-
source4/librpc/rpc/dcerpc_auth.c | 93 +-
source4/librpc/rpc/dcerpc_connect.c | 22 +
source4/librpc/rpc/dcerpc_roh.c | 13 +-
source4/librpc/rpc/dcerpc_util.c | 22 +-
source4/librpc/rpc/pyrpc.c | 8 +-
source4/librpc/rpc/pyrpc_util.c | 3 +
source4/librpc/wscript_build | 18 +-
source4/nbt_server/dgram/netlogon.c | 1 +
source4/nbt_server/register.c | 3 +-
source4/nbt_server/wins/winsserver.c | 2 +-
source4/ntvfs/ntvfs_base.c | 2 +-
source4/ntvfs/posix/posix_eadb.h | 2 +-
source4/ntvfs/posix/pvfs_notify.c | 2 +-
source4/ntvfs/posix/python/pyposix_eadb.c | 4 +-
source4/ntvfs/posix/python/pyxattr_native.c | 4 +-
source4/ntvfs/posix/python/pyxattr_tdb.c | 19 +-
source4/ntvfs/sysdep/wscript_configure | 13 +-
source4/ntvfs/unixuid/vfs_unixuid.c | 3 +
source4/param/loadparm.c | 3 +-
source4/param/pyparam.c | 87 +-
source4/param/secrets.c | 53 -
source4/param/secrets.h | 8 -
source4/param/share_ldb.c | 2 +-
source4/param/tests/loadparm.c | 1 +
source4/rpc_server/backupkey/dcesrv_backupkey.c | 1053 +++---
.../backupkey/dcesrv_backupkey_heimdal.c | 1854 ++++++++++
source4/rpc_server/common/reply.c | 59 +-
source4/rpc_server/common/server_info.c | 1 +
source4/rpc_server/dcerpc_server.c | 834 ++++-
source4/rpc_server/dcerpc_server.h | 57 +-
source4/rpc_server/dcesrv_auth.c | 261 +-
source4/rpc_server/dcesrv_mgmt.c | 8 +
source4/rpc_server/dnsserver/dcerpc_dnsserver.c | 15 +-
source4/rpc_server/dnsserver/dnsdb.c | 6 +-
source4/rpc_server/drsuapi/dcesrv_drsuapi.c | 8 +
source4/rpc_server/drsuapi/getncchanges.c | 10 +
source4/rpc_server/echo/rpc_echo.c | 7 +
source4/rpc_server/epmapper/rpc_epmapper.c | 8 +
source4/rpc_server/handles.c | 8 +-
source4/rpc_server/lsa/dcesrv_lsa.c | 9 +
source4/rpc_server/lsa/lsa_lookup.c | 12 +-
source4/rpc_server/netlogon/dcerpc_netlogon.c | 46 +-
source4/rpc_server/remote/dcesrv_remote.c | 8 +-
source4/rpc_server/samr/dcesrv_samr.c | 12 +
source4/rpc_server/samr/dcesrv_samr.h | 1 +
source4/rpc_server/samr/samr_password.c | 25 +-
source4/rpc_server/spoolss/dcesrv_spoolss.c | 2 +-
source4/rpc_server/wscript_build | 24 +-
source4/scripting/bin/gen_hresult.py | 2 +-
source4/scripting/bin/gen_ntstatus.py | 30 +-
source4/scripting/bin/samba_dnsupdate | 34 +-
source4/scripting/bin/samba_kcc | 74 +-
source4/scripting/bin/samba_upgradedns | 28 +-
source4/scripting/bin/samba_upgradeprovision | 2 +-
source4/selftest/tests.py | 122 +-
source4/setup/wscript_build | 2 +-
source4/smb_server/smb/negprot.c | 6 +-
source4/smb_server/smb/sesssetup.c | 10 +
source4/smb_server/smb/wscript_build | 2 +-
source4/smb_server/smb2/negprot.c | 7 +-
source4/smb_server/smb2/receive.c | 2 +-
source4/smb_server/smb2/sesssetup.c | 8 -
source4/smb_server/smb2/wscript_build | 2 +-
source4/smb_server/smb_server.h | 2 +-
source4/smb_server/wscript_build | 4 +-
source4/smbd/process_standard.c | 6 -
source4/smbd/server.c | 9 +-
source4/smbd/service.c | 2 +-
source4/torture/basic/aliases.c | 4 +-
source4/torture/basic/base.c | 21 +-
source4/torture/basic/misc.c | 4 +-
source4/torture/drs/wscript_build | 2 +-
source4/torture/gentest.c | 7 +-
source4/torture/ldap/cldap.c | 13 +-
source4/torture/ldap/netlogon.c | 13 +-
source4/torture/ldb/ldb.c | 463 ++-
source4/torture/local/fsrvp_state.c | 20 +-
source4/torture/local/local.c | 1 -
source4/torture/local/wscript_build | 2 +-
source4/torture/nbench/nbio.c | 4 +-
source4/torture/nbt/wins.c | 3 +-
source4/torture/ndr/backupkey.c | 6 +-
source4/torture/ndr/clusapi.c | 383 ++
source4/torture/ndr/ndr.c | 6 +-
source4/torture/ndr/negoex.c | 100 +
source4/torture/ndr/ntlmssp.c | 183 +-
source4/torture/ndr/witness.c | 44 +
source4/torture/raw/pingpong.c | 2 +-
source4/torture/raw/samba3misc.c | 7 +
source4/torture/raw/session.c | 2 +-
source4/torture/rpc/backupkey.c | 820 +++--
source4/torture/rpc/backupkey_heimdal.c | 2147 +++++++++++
source4/torture/rpc/clusapi.c | 459 ++-
source4/torture/rpc/forest_trust.c | 12 +-
source4/torture/rpc/fsrvp.c | 2 +-
source4/torture/rpc/lsa.c | 34 +-
source4/torture/rpc/netlogon.c | 101 +-
source4/torture/rpc/netlogon.h | 7 +
source4/torture/rpc/oxidresolve.c | 100 +-
source4/torture/rpc/remact.c | 47 +-
source4/torture/rpc/remote_pac.c | 39 +-
source4/torture/rpc/rpc.c | 4 +-
source4/torture/rpc/samba3rpc.c | 61 +-
source4/torture/rpc/samlogon.c | 3 +-
source4/torture/rpc/samr.c | 4 +-
source4/torture/rpc/schannel.c | 29 +-
source4/torture/rpc/spoolss.c | 2 +-
source4/torture/rpc/spoolss_notify.c | 2 +-
source4/torture/rpc/testjoin.c | 35 +-
source4/torture/smb2/connect.c | 89 +-
source4/torture/smb2/dir.c | 28 +
source4/torture/smb2/durable_open.c | 2 +-
source4/torture/smb2/rename.c | 2 +-
source4/torture/smb2/replay.c | 1381 ++++++-
source4/torture/smb2/session.c | 340 +-
source4/torture/smb2/smb2.c | 4 +-
source4/torture/smb2/streams.c | 74 +
source4/torture/unix/whoami.c | 16 +-
source4/torture/util_smb.c | 6 +-
source4/torture/vfs/fruit.c | 2 +-
source4/torture/vfs/vfs.c | 2 +-
source4/torture/winbind/struct_based.c | 15 +-
source4/torture/wscript_build | 47 +-
source4/utils/man/ntlm_auth4.1.xml | 2 +-
source4/web_server/web_server.c | 15 +-
source4/web_server/wsgi.c | 7 -
source4/wrepl_server/wrepl_server.c | 4 +-
testprogs/blackbox/dbcheck-oldrelease.sh | 82 +-
testprogs/blackbox/demote-saveddb.sh | 67 +
testprogs/blackbox/test_kinit.sh | 273 --
testprogs/blackbox/test_kinit_heimdal.sh | 273 ++
...init_trusts.sh => test_kinit_trusts_heimdal.sh} | 0
testprogs/blackbox/test_ldb_simple.sh | 41 +
testprogs/blackbox/test_net_ads.sh | 35 +
testprogs/blackbox/test_pdbtest.sh | 7 +
.../{test_pkinit.sh => test_pkinit_heimdal.sh} | 0
testprogs/win32/spoolss/README.win32 | 2 +-
testprogs/win32/spoolss/testspoolss.c | 4 +-
tests/oldquotas.c | 174 +
testsuite/headers/wscript_build | 13 +-
third_party/waf/wafadmin/3rdparty/gccdeps.py | 2 +-
.../waf/wafadmin/3rdparty/print_commands.py | 25 +
third_party/waf/wafadmin/Build.py | 4 +
third_party/waf/wafadmin/Node.py | 7 +
third_party/waf/wafadmin/TaskGen.py | 3 +
third_party/waf/wafadmin/Tools/cc.py | 6 +-
third_party/waf/wafadmin/Tools/ccroot.py | 10 +-
third_party/waf/wafadmin/Tools/config_c.py | 4 +
third_party/waf/wafadmin/Tools/msvc.py | 2 +-
third_party/waf/wafadmin/Tools/osx.py | 6 +-
third_party/waf/wafadmin/Utils.py | 44 +-
wscript | 25 +-
wscript_configure_system_mitkrb5 | 4 +-
1883 files changed, 93949 insertions(+), 41484 deletions(-)
create mode 100644 .travis.yml
delete mode 100644 auth/gensec/gensec.pc.in
delete mode 100644 buildtools/wafsamba/gccdeps.py
create mode 100644 ctdb/client/client.h
create mode 100644 ctdb/client/client_call.c
create mode 100644 ctdb/client/client_connect.c
create mode 100644 ctdb/client/client_control.c
create mode 100644 ctdb/client/client_control_sync.c
create mode 100644 ctdb/client/client_db.c
create mode 100644 ctdb/client/client_message.c
create mode 100644 ctdb/client/client_message_sync.c
create mode 100644 ctdb/client/client_private.h
create mode 100644 ctdb/client/client_util.c
create mode 100644 ctdb/common/cmdline.h
create mode 100644 ctdb/common/comm.c
create mode 100644 ctdb/common/comm.h
create mode 100644 ctdb/common/common.h
delete mode 100644 ctdb/common/ctdb_fork.c
delete mode 100644 ctdb/common/ctdb_logging.c
delete mode 100644 ctdb/common/ctdb_message.c
create mode 100644 ctdb/common/db_hash.c
create mode 100644 ctdb/common/db_hash.h
create mode 100644 ctdb/common/logging.c
create mode 100644 ctdb/common/logging.h
create mode 100644 ctdb/common/pkt_read.c
create mode 100644 ctdb/common/pkt_read.h
create mode 100644 ctdb/common/pkt_write.c
create mode 100644 ctdb/common/pkt_write.h
create mode 100644 ctdb/common/reqid.c
create mode 100644 ctdb/common/reqid.h
create mode 100644 ctdb/common/srvid.c
create mode 100644 ctdb/common/srvid.h
create mode 100644 ctdb/common/system.h
create mode 100755 ctdb/config/events.d/05.system
delete mode 100644 ctdb/config/events.d/40.fs_use
delete mode 100755 ctdb/config/events.d/62.cnfs
delete mode 100644 ctdb/ctdb.pc.in
create mode 120000 ctdb/include/common/srvid.h
delete mode 100644 ctdb/include/ctdb.h
delete mode 100644 ctdb/include/ctdb_logging.h
delete mode 100644 ctdb/include/ctdb_typesafe_cb.h
delete mode 100644 ctdb/include/internal/cmdline.h
delete mode 100644 ctdb/include/internal/includes.h
copy ctdb/include/public/{ => util}/README.txt (100%)
create mode 100644 ctdb/protocol/protocol.h
create mode 100644 ctdb/protocol/protocol_api.h
create mode 100644 ctdb/protocol/protocol_call.c
create mode 100644 ctdb/protocol/protocol_client.c
create mode 100644 ctdb/protocol/protocol_control.c
create mode 100644 ctdb/protocol/protocol_header.c
create mode 100644 ctdb/protocol/protocol_message.c
create mode 100644 ctdb/protocol/protocol_packet.c
create mode 100644 ctdb/protocol/protocol_private.h
create mode 100644 ctdb/protocol/protocol_types.c
create mode 100644 ctdb/protocol/protocol_util.c
create mode 100644 ctdb/server/ctdb_fork.c
create mode 100644 ctdb/server/ctdb_recovery_helper.c
create mode 100644 ctdb/server/ipalloc.c
create mode 100644 ctdb/server/ipalloc.h
create mode 100644 ctdb/server/ipalloc_common.c
create mode 100644 ctdb/server/ipalloc_deterministic.c
create mode 100644 ctdb/server/ipalloc_lcp2.c
create mode 100644 ctdb/server/ipalloc_nondeterministic.c
create mode 100644 ctdb/server/ipalloc_private.h
create mode 100755 ctdb/tests/cunit/comm_test_001.sh
create mode 100755 ctdb/tests/cunit/comm_test_002.sh
create mode 100755 ctdb/tests/cunit/db_hash_test_001.sh
create mode 100755 ctdb/tests/cunit/pkt_read_001.sh
create mode 100755 ctdb/tests/cunit/pkt_write_001.sh
create mode 100755 ctdb/tests/cunit/protocol_test_001.sh
create mode 100755 ctdb/tests/cunit/protocol_test_002.sh
create mode 100755 ctdb/tests/cunit/reqid_test_001.sh
create mode 100755 ctdb/tests/cunit/srvid_test_001.sh
delete mode 100755 ctdb/tests/eventscripts/00.ctdb.monitor.001.sh
delete mode 100755 ctdb/tests/eventscripts/00.ctdb.monitor.002.sh
delete mode 100755 ctdb/tests/eventscripts/00.ctdb.monitor.003.sh
delete mode 100755 ctdb/tests/eventscripts/00.ctdb.monitor.004.sh
delete mode 100755 ctdb/tests/eventscripts/00.ctdb.monitor.005.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.001.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.002.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.003.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.004.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.005.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.006.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.007.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.011.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.012.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.013.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.014.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.015.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.016.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.017.sh
create mode 100755 ctdb/tests/eventscripts/05.system.monitor.018.sh
delete mode 100755 ctdb/tests/eventscripts/11.natgw.005.sh
create mode 100755 ctdb/tests/eventscripts/11.natgw.051.sh
create mode 100755 ctdb/tests/eventscripts/11.natgw.052.sh
create mode 100755 ctdb/tests/eventscripts/11.natgw.053.sh
create mode 100755 ctdb/tests/eventscripts/11.natgw.054.sh
create mode 100755 ctdb/tests/eventscripts/13.per_ip_routing.023.sh
create mode 100755 ctdb/tests/eventscripts/50.samba.monitor.110.sh
create mode 100755 ctdb/tests/eventscripts/50.samba.monitor.111.sh
create mode 100755 ctdb/tests/eventscripts/50.samba.monitor.112.sh
create mode 100755 ctdb/tests/eventscripts/50.samba.monitor.113.sh
create mode 100755 ctdb/tests/eventscripts/stubs/ctdb_natgw
create mode 100755 ctdb/tests/eventscripts/stubs/df
delete mode 100755 ctdb/tests/eventscripts/stubs/free
create mode 100755 ctdb/tests/eventscripts/stubs/timeout
create mode 120000 ctdb/tests/onnode/functions
create mode 100755 ctdb/tests/simple/35_set_reclock.sh
delete mode 100755 ctdb/tests/simple/35_set_recmaster.sh
create mode 120000 ctdb/tests/simple/functions
create mode 100644 ctdb/tests/src/comm_client_test.c
create mode 100644 ctdb/tests/src/comm_server_test.c
create mode 100644 ctdb/tests/src/comm_test.c
create mode 100644 ctdb/tests/src/db_hash_test.c
create mode 100644 ctdb/tests/src/pkt_read_test.c
create mode 100644 ctdb/tests/src/pkt_write_test.c
create mode 100644 ctdb/tests/src/protocol_client_test.c
create mode 100644 ctdb/tests/src/protocol_types_test.c
create mode 100644 ctdb/tests/src/reqid_test.c
create mode 100644 ctdb/tests/src/srvid_test.c
delete mode 100755 ctdb/tests/tool/stubby.natgwlist.009.sh
delete mode 100755 ctdb/tests/tool/stubby.natgwlist.010.sh
delete mode 100755 ctdb/tests/tool/stubby.nodestatus.003.sh
delete mode 100755 ctdb/tests/tool/stubby.nodestatus.004.sh
delete mode 100755 ctdb/tests/tool/stubby.nodestatus.005.sh
create mode 100755 ctdb/tests/tool/stubs/ctdb
create mode 100755 ctdb/tools/ctdb_natgw
delete mode 100644 ctdb/tools/ctdb_vacuum.c
delete mode 100644 debian/patches/disable-socketwrapper.diff
delete mode 100644 debian/patches/fix-against-talloc-2.1.6.patch
delete mode 100644 debian/patches/pam-examples.patch
create mode 100644 docs-xml/manpages/cifsdd.8.xml
delete mode 100644 docs-xml/manpages/smbta-util.8.xml
create mode 100644 docs-xml/manpages/vfs_offline.8.xml
delete mode 100644 docs-xml/manpages/vfs_scannedonly.8.xml
delete mode 100644 docs-xml/manpages/vfs_smb_traffic_analyzer.8.xml
create mode 100644 docs-xml/smbdotconf/ldap/ldapserverrequirestrongauth.xml
delete mode 100644 docs-xml/smbdotconf/logging/debugtimestamp.xml
create mode 100644 docs-xml/smbdotconf/logging/timestamplogs.xml
create mode 100644 docs-xml/smbdotconf/misc/auto_services.xml
delete mode 100644 docs-xml/smbdotconf/misc/preload.xml
create mode 100644 docs-xml/smbdotconf/protocol/clientipcmaxprotocol.xml
create mode 100644 docs-xml/smbdotconf/protocol/clientipcminprotocol.xml
create mode 100644 docs-xml/smbdotconf/protocol/servermultichannelsupport.xml
create mode 100644 docs-xml/smbdotconf/security/allowdcerpcauthlevelconnect.xml
create mode 100644 docs-xml/smbdotconf/security/clientipcsigning.xml
create mode 100644 docs-xml/smbdotconf/security/rawntlmv2auth.xml
create mode 100644 docs-xml/smbdotconf/security/tlsverifypeer.xml
create mode 100644 docs-xml/smbdotconf/tuning/aiomaxthreads.xml
create mode 100644 docs/manpages/cifsdd.8
delete mode 100644 docs/manpages/smbta-util.8
create mode 100644 docs/manpages/vfs_offline.8
delete mode 100644 docs/manpages/vfs_scannedonly.8
delete mode 100644 docs/manpages/vfs_smb_traffic_analyzer.8
create mode 100644 lib/ldb-samba/ldb_matching_rules.c
create mode 100644 lib/ldb-samba/ldb_matching_rules.h
create mode 100644 lib/ldb/ABI/ldb-1.1.22.sigs
create mode 100644 lib/ldb/ABI/ldb-1.1.23.sigs
create mode 100644 lib/ldb/ABI/ldb-1.1.24.sigs
create mode 100644 lib/ldb/ABI/ldb-1.1.25.sigs
create mode 100644 lib/ldb/ABI/ldb-1.1.26.sigs
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util-1.1.22.sigs} (100%)
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util-1.1.23.sigs} (100%)
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util-1.1.24.sigs} (100%)
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util-1.1.25.sigs} (100%)
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util-1.1.26.sigs} (100%)
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util.py3-1.1.23.sigs} (100%)
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util.py3-1.1.24.sigs} (100%)
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util.py3-1.1.25.sigs} (100%)
copy lib/ldb/ABI/{pyldb-util-1.1.10.sigs => pyldb-util.py3-1.1.26.sigs} (100%)
create mode 100644 lib/ldb/_ldb_text.py
create mode 100644 lib/socket/wscript
copy lib/talloc/ABI/{pytalloc-util-2.0.6.sigs => pytalloc-util-2.1.4.sigs} (100%)
copy lib/talloc/ABI/{pytalloc-util-2.0.6.sigs => pytalloc-util-2.1.5.sigs} (100%)
create mode 100644 lib/talloc/ABI/pytalloc-util-2.1.6.sigs
create mode 100644 lib/talloc/ABI/pytalloc-util.py3-2.1.5.sigs
create mode 100644 lib/talloc/ABI/pytalloc-util.py3-2.1.6.sigs
create mode 100644 lib/talloc/ABI/talloc-2.1.4.sigs
create mode 100644 lib/talloc/ABI/talloc-2.1.5.sigs
create mode 100644 lib/talloc/ABI/talloc-2.1.6.sigs
create mode 100644 lib/talloc/pytalloc_private.h
create mode 100755 lib/talloc/test_magic_differs.sh
create mode 100644 lib/talloc/test_magic_differs_helper.c
copy lib/tdb/ABI/{tdb-1.3.5.sigs => tdb-1.3.8.sigs} (100%)
create mode 100644 lib/tevent/ABI/tevent-0.9.26.sigs
create mode 100644 lib/tevent/ABI/tevent-0.9.27.sigs
create mode 100644 lib/tevent/ABI/tevent-0.9.28.sigs
create mode 100644 lib/tevent/doc/tevent_thread.dox
create mode 100644 lib/tevent/tevent_threads.c
delete mode 100644 lib/torture/torture.pc.in
delete mode 100644 lib/util/parmlist.c
delete mode 100644 lib/util/parmlist.h
create mode 100644 lib/util/sys_rw.c
rename {source3/lib => lib/util}/sys_rw.h (100%)
create mode 100644 lib/util/sys_rw_data.c
rename {source3/lib => lib/util}/sys_rw_data.h (100%)
create mode 100644 lib/util/tests/genrandperf.c
delete mode 100644 lib/util/tests/parmlist.c
create mode 100644 lib/util/util.h
create mode 100644 librpc/idl/negoex.idl
create mode 100644 librpc/ndr/ndr_negoex.c
create mode 100644 librpc/ndr/ndr_negoex.h
create mode 100644 nsswitch/wins_freebsd.c
delete mode 100644 python/samba/netcmd/vampire.py
create mode 100644 python/samba/remove_dc.py
create mode 100644 python/samba/subnets.py
create mode 100644 python/samba/tests/dcerpc/array.py
create mode 100755 python/samba/tests/dcerpc/raw_protocol.py
create mode 100644 python/samba/tests/samba_tool/sites.py
delete mode 100644 python/uuidmodule.c
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/addc.addom.samba.example.com/DC-addc.addom.samba.example.com-S02-cert.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/addc.addom.samba.example.com/DC-addc.addom.samba.example.com-S02-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/addc.addom.samba.example.com/DC-addc.addom.samba.example.com-S02-openssl.cnf
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/addc.addom.samba.example.com/DC-addc.addom.samba.example.com-S02-private-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/addc.addom.samba.example.com/DC-addc.addom.samba.example.com-S02-req.pem
create mode 120000 selftest/manage-ca/CA-samba.example.com/DCs/addc.addom.samba.example.com/DC-addc.addom.samba.example.com-cert.pem
create mode 120000 selftest/manage-ca/CA-samba.example.com/DCs/addc.addom.samba.example.com/DC-addc.addom.samba.example.com-private-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/localdc.samba.example.com/DC-localdc.samba.example.com-S00-cert.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/localdc.samba.example.com/DC-localdc.samba.example.com-S00-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/localdc.samba.example.com/DC-localdc.samba.example.com-S00-openssl.cnf
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/localdc.samba.example.com/DC-localdc.samba.example.com-S00-private-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/DCs/localdc.samba.example.com/DC-localdc.samba.example.com-S00-req.pem
create mode 120000 selftest/manage-ca/CA-samba.example.com/DCs/localdc.samba.example.com/DC-localdc.samba.example.com-cert.pem
create mode 120000 selftest/manage-ca/CA-samba.example.com/DCs/localdc.samba.example.com/DC-localdc.samba.example.com-private-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/NewCerts/00.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/NewCerts/01.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/NewCerts/02.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/NewCerts/03.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-crlnumber.txt
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-crlnumber.txt.old
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-index.txt
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-index.txt.attr
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-index.txt.attr.old
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-index.txt.old
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-openssl.cnf
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-private-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-serial.txt
create mode 100644 selftest/manage-ca/CA-samba.example.com/Private/CA-samba.example.com-serial.txt.old
create mode 100644 selftest/manage-ca/CA-samba.example.com/Public/CA-samba.example.com-cert.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Public/CA-samba.example.com-crl.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at addom.samba.example.com/USER-administrator at addom.samba.example.com-S03-cert.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at addom.samba.example.com/USER-administrator at addom.samba.example.com-S03-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at addom.samba.example.com/USER-administrator at addom.samba.example.com-S03-openssl.cnf
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at addom.samba.example.com/USER-administrator at addom.samba.example.com-S03-private-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at addom.samba.example.com/USER-administrator at addom.samba.example.com-S03-req.pem
create mode 120000 selftest/manage-ca/CA-samba.example.com/Users/administrator at addom.samba.example.com/USER-administrator at addom.samba.example.com-cert.pem
create mode 120000 selftest/manage-ca/CA-samba.example.com/Users/administrator at addom.samba.example.com/USER-administrator at addom.samba.example.com-private-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at samba.example.com/USER-administrator at samba.example.com-S01-cert.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at samba.example.com/USER-administrator at samba.example.com-S01-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at samba.example.com/USER-administrator at samba.example.com-S01-openssl.cnf
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at samba.example.com/USER-administrator at samba.example.com-S01-private-key.pem
create mode 100644 selftest/manage-ca/CA-samba.example.com/Users/administrator at samba.example.com/USER-administrator at samba.example.com-S01-req.pem
create mode 120000 selftest/manage-ca/CA-samba.example.com/Users/administrator at samba.example.com/USER-administrator at samba.example.com-cert.pem
create mode 120000 selftest/manage-ca/CA-samba.example.com/Users/administrator at samba.example.com/USER-administrator at samba.example.com-private-key.pem
create mode 100644 selftest/manage-ca/manage-CA-samba.example.com.cnf
create mode 100644 selftest/manage-ca/manage-CA-samba.example.com.sh
create mode 100755 selftest/manage-ca/manage-ca.sh
create mode 100644 selftest/manage-ca/manage-ca.templates.d/manage-CA-example.com.cnf
create mode 100644 selftest/manage-ca/manage-ca.templates.d/openssl-BASE-template.cnf
create mode 100644 selftest/manage-ca/manage-ca.templates.d/openssl-CA-template.cnf
create mode 100644 selftest/manage-ca/manage-ca.templates.d/openssl-DC-template.cnf
create mode 100644 selftest/manage-ca/manage-ca.templates.d/openssl-USER-template.cnf
delete mode 100644 source3/lib/dummyparam.c
create mode 100644 source3/lib/gencache.h
delete mode 100644 source3/lib/sys_rw.c
delete mode 100644 source3/lib/sys_rw_data.c
create mode 100644 source3/lib/util_path.c
create mode 100644 source3/lib/util_path.h
create mode 100644 source3/lib/util_procid.c
create mode 100644 source3/lib/util_procid.h
create mode 100644 source3/lib/util_specialsids.c
create mode 100644 source3/lib/util_tsock.h
delete mode 100644 source3/libsmb/ntlmssp.c
delete mode 100644 source3/libsmb/ntlmssp_wrap.c
delete mode 100644 source3/modules/vfs_aio_posix.c
create mode 100644 source3/modules/vfs_fake_dfq.c
create mode 100644 source3/modules/vfs_offline.c
delete mode 100644 source3/modules/vfs_scannedonly.c
delete mode 100644 source3/modules/vfs_smb_traffic_analyzer.c
delete mode 100644 source3/modules/vfs_smb_traffic_analyzer.h
delete mode 100644 source3/pam_smbpass/CHANGELOG
delete mode 100644 source3/pam_smbpass/INSTALL
delete mode 100644 source3/pam_smbpass/README
delete mode 100644 source3/pam_smbpass/TODO
delete mode 100644 source3/pam_smbpass/general.h
delete mode 100644 source3/pam_smbpass/pam_smb_acct.c
delete mode 100644 source3/pam_smbpass/pam_smb_auth.c
delete mode 100644 source3/pam_smbpass/pam_smb_passwd.c
delete mode 100644 source3/pam_smbpass/samples/README
delete mode 100644 source3/pam_smbpass/samples/kdc-pdc
delete mode 100644 source3/pam_smbpass/samples/password-mature
delete mode 100644 source3/pam_smbpass/samples/password-migration
delete mode 100644 source3/pam_smbpass/samples/password-sync
delete mode 100644 source3/pam_smbpass/support.c
delete mode 100644 source3/pam_smbpass/support.h
delete mode 100644 source3/pam_smbpass/wscript_build
create mode 100644 source3/passdb/ABI/samba-passdb-0.24.2.sigs
create mode 100644 source3/passdb/ABI/samba-passdb-0.25.0.sigs
create mode 100755 source3/script/tests/test_dfree_quota.sh
create mode 100755 source3/script/tests/test_forceuser_validusers.sh
create mode 100755 source3/script/tests/test_offline.sh
create mode 100755 source3/script/tests/test_smbclient_ntlm.sh
create mode 100755 source3/script/tests/test_smbget.sh
create mode 100755 source3/script/tests/test_valid_users.sh
create mode 100644 source3/smbd/smbXsrv_client.c
create mode 100644 source3/smbd/smbd_cleanupd.c
create mode 100644 source3/smbd/smbd_cleanupd.h
delete mode 100644 source3/utils/smbta-util.c
create mode 100644 source4/dns_server/pydns.c
create mode 100644 source4/kdc/sdb.c
create mode 100644 source4/kdc/sdb.h
create mode 100644 source4/kdc/sdb_to_hdb.c
delete mode 100644 source4/lib/registry/registry.pc.in
delete mode 100644 source4/libcli/raw/smbclient-raw.pc.in
delete mode 100644 source4/librpc/dcerpc_atsvc.pc.in
create mode 100644 source4/rpc_server/backupkey/dcesrv_backupkey_heimdal.c
create mode 100644 source4/torture/ndr/clusapi.c
create mode 100644 source4/torture/ndr/negoex.c
create mode 100644 source4/torture/rpc/backupkey_heimdal.c
mode change 100644 => 100755 source4/torture/smb2/rename.c
create mode 100755 testprogs/blackbox/demote-saveddb.sh
delete mode 100755 testprogs/blackbox/test_kinit.sh
create mode 100755 testprogs/blackbox/test_kinit_heimdal.sh
rename testprogs/blackbox/{test_kinit_trusts.sh => test_kinit_trusts_heimdal.sh} (100%)
create mode 100755 testprogs/blackbox/test_ldb_simple.sh
create mode 100755 testprogs/blackbox/test_net_ads.sh
rename testprogs/blackbox/{test_pkinit.sh => test_pkinit_heimdal.sh} (100%)
create mode 100644 tests/oldquotas.c
create mode 100644 third_party/waf/wafadmin/3rdparty/print_commands.py
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-samba/samba.git
More information about the Pkg-samba-maint
mailing list