[Pkg-samba-maint] [Git][samba-team/samba][upstream_4.23] 20 commits: VERSION: Bump version up to Samba 4.23.6...
Michael Tokarev (@mjt)
gitlab at salsa.debian.org
Fri Feb 27 10:14:53 GMT 2026
Michael Tokarev pushed to branch upstream_4.23 at Debian Samba Team / samba
Commits:
733833f8 by Björn Jacke at 2026-01-23T11:48:11+01:00
VERSION: Bump version up to Samba 4.23.6...
and re-enable GIT_SNAPSHOT.
Signed-off-by: Bjoern Jacke <bjacke at samba.org>
- - - - -
87d8b547 by Martin Schwenke at 2026-02-27T06:36:16+00:00
docs-xml:smb.conf: Fix "ctdbd socket" documentation
This has been wrong for a very long time. I only noticed it just
now... :-(
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15977
Signed-off-by: Martin Schwenke <mschwenke at ddn.com>
Reviewed-by: Douglas Bagnall <douglas.bagnall at catalyst.net.nz>
Autobuild-User(master): Martin Schwenke <martins at samba.org>
Autobuild-Date(master): Thu Jan 22 23:06:20 UTC 2026 on atb-devel-224
(cherry picked from commit 8c458675c10bfda66fb86c5ed67d1d6d0cbbaedf)
- - - - -
edd38ee8 by Noel Power at 2026-02-27T06:36:16+00:00
Add basic cmocka unit tests for pthreadpool
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15958
Pair-Programmed-With: Andreas Schneider <asn at samba.org>
Signed-off-by: Noel Power <noel.power at suse.com>
Signed-off-by: Andreas Schneider <asn at samba.org>
Reviewed-by: Stefan Metzmacher <metze at samba.org>
- - - - -
ab1c4f03 by Samuel Cabrero at 2026-02-27T06:36:16+00:00
s3:rpc_client: Fix memory leak opening local named pipe
If no local server name was passed to rpc_pipe_open_local_np() then
get_myname() was called with NULL talloc context instead of the
current stackframe.
This was causing an increase of memory usage on busy servers with long-living
rpcd_* workers.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15979
Signed-off-by: Samuel Cabrero <scabrero at samba.org>
Reviewed-by: Noel Power <noel.power at suse.com>
Reviewed-by: Volker Lendecke <vl at samba.org>
Autobuild-User(master): Volker Lendecke <vl at samba.org>
Autobuild-Date(master): Tue Jan 27 10:13:40 UTC 2026 on atb-devel-224
(cherry picked from commit 24dc455362fb49ef81c99d95880e106a234ce29a)
- - - - -
2e166cee by Noel Power at 2026-02-27T06:36:16+00:00
s3/printing: Fix leaked mem ctx returned from talloc_new
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15979
Signed-off-by: Noel Power <noel.power at suse.com>
Reviewed-by: Gary Lockyer <gary at catalyst.net.nz>
(cherry picked from commit 5ba76344ef807577ea1fd4265d585285eb633971)
- - - - -
ef3f1e35 by Noel Power at 2026-02-27T06:36:16+00:00
s3/printing: Fix leaking parsed options
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15979
Signed-off-by: Noel Power <noel.power at suse.com>
Reviewed-by: Gary Lockyer <gary at catalyst.net.nz>
Autobuild-User(master): Noel Power <npower at samba.org>
Autobuild-Date(master): Fri Jan 30 11:09:44 UTC 2026 on atb-devel-224
(cherry picked from commit 22021dbfa7a94007a511d05f25e49ab73dacbcf5)
- - - - -
971fd730 by Ralph Boehme at 2026-02-27T06:36:16+00:00
smbd: in contend_dirleases() don't bother checking when not enabled
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15984
Signed-off-by: Ralph Boehme <slow at samba.org>
Reviewed-by: Martin Schwenke <martins at samba.org>
Autobuild-User(master): Ralph Böhme <slow at samba.org>
Autobuild-Date(master): Mon Jan 26 12:09:13 UTC 2026 on atb-devel-224
(cherry picked from commit f11bce483a6403d9ed250c874105248c8e9782e2)
- - - - -
820acbc5 by Douglas Bagnall at 2026-02-27T06:36:16+00:00
build: allow `./configure _foo=x` to work like FOO=x
OpenWRT passes arguments like '_python_sysroot=x' after the './configure',
which it expects to work as if the occurred before the './configure'
-- that is, setting environment variables (let's assume its build
system is necessarily complex due to all the cross-compiles).
This used to work (or at least not cause a failure return code) until
the upgrade to waf 2.1.5 or 2.1.6 in mid-2025, when waf started using
the argparse parser.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15990
Signed-off-by: Douglas Bagnall <douglas.bagnall at catalyst.net.nz>
Reviewed-by: Gary Lockyer <gary at catalyst.net.nz>
Autobuild-User(master): Douglas Bagnall <dbagnall at samba.org>
Autobuild-Date(master): Wed Feb 18 00:00:30 UTC 2026 on atb-devel-224
[back-ported from commit bd66dc2418318716083bf40e447f9815b199fc25,
fixing a conflict in script/autobuild.py]
- - - - -
e1a65912 by Günther Deschner at 2026-02-27T06:36:16+00:00
docs-xml: fix manpage for "net offlinejoin requestodj"
One actually does *NOT* need to provide AD credentials to process a
requestodj operation. This is run as root and populates Samba's
databases based on the ODJ blob. Thanks John Mulligan for pointing this out.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15964
Guenther
Signed-off-by: Guenther Deschner <gd at samba.org>
Reviewed-by: John Mulligan <jmulligan at redhat.com>
Autobuild-User(master): Günther Deschner <gd at samba.org>
Autobuild-Date(master): Thu Dec 11 15:19:13 UTC 2025 on atb-devel-224
(cherry picked from commit a44abbfde048c378fcadea0d597762f7eb10a6a4)
- - - - -
2a1a4ca2 by Martin Schwenke at 2026-02-27T06:36:16+00:00
ctdb-tests: Update statd-callout unit test infrastructure
Don't cheat. Keep some state about what is happening, similar to what
statd_callout and statd_callout_helper are expected to keep. This
means hinting arguments to check_shared_storage_statd_state() and
check_statd_callout_smnotify() can be dropped.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15939
Signed-off-by: Martin Schwenke <mschwenke at ddn.com>
Reviewed-by: Anoop C S <anoopcs at samba.org>
(cherry picked from commit 85afee0a83dd2f70b90cff4c1e21b865640261fb)
- - - - -
7cf0f098 by Peter Schwenke at 2026-02-27T06:36:16+00:00
ctdb-scripts: Only send notifies for newly taken IPs
We no longer delete shared state (and send notifies) for
IPs previously held by the current node. The NFS lock manager
won't have released locks for these IPs, so won't generate
SM_MON on reclaim attempts. Therefore, there will be
no add-client to put them back.
We now record newly taken IP addresses in takeip,
and only send notifies for those during
ipreallocated. The extra notifies were also confusing
statd.
Update existing tests to always simulate taking all of a node's IPs.
This causes no output changes.
Test updates confirm the subtleties of the statd_callout_helper
behaviour change. These pretend to only take a single IP, so
SM_NOTIFY must not be sent for other IPs. Shared state should
remain for these other files.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15939
Signed-off-by: Peter Schwenke <pschwenke at ddn.com>
Signed-off-by: Martin Schwenke <mschwenke at ddn.com>
Reviewed-by: Anoop C S <anoopcs at samba.org>
(cherry picked from commit e4914e6a4f1cb77eebf86c5ab3f241c2a9e5bd05)
- - - - -
f4a7d868 by Peter Schwenke at 2026-02-27T06:36:16+00:00
ctdb-failover: Add sm-notify to statd_callout
sm-notify is required when an NFS client reboots.
rpc-statd on the client will send an sm-notify to
rpc-statd on the NFS sever.
Add a test case.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15938
Signed-off-by: Peter Schwenke <pschwenke at ddn.com>
Reviewed-by: Martin Schwenke <martin at meltin.net>
Reviewed-by: Anoop C S <anoopcs at samba.org>
Autobuild-User(master): Martin Schwenke <martins at samba.org>
Autobuild-Date(master): Wed Feb 18 12:29:16 UTC 2026 on atb-devel-224
(cherry picked from commit 7c5ce115f2c11e5a2dd326238f08bc5e7c10641c)
- - - - -
41c6ba6d by Noel Power at 2026-02-27T06:36:16+00:00
selftest: Update tests to use --use-kereros=desired|required no creds
Add tests to call smbclient without passing credentials to
demonstrate failure with --use-kereros=desired
Also add knownfail
Signed-off-by: Noel Power <noel.power at suse.com>
Reviewed-by: Andreas Schneider <asn at samba.org>
(cherry picked from commit a22af9420965083b99b956477d1833000b7f2414)
- - - - -
0b82fded by Noel Power at 2026-02-27T06:36:16+00:00
auth/credentials: Fix regression with --use-kerberos=desired for smbclient
As part of the gse_krb5 processing the following call chain
gensec_gse_client_start()
---> gensec_kerberos_possible()
---> cli_credentials_authentication_requested()
gensec_kerberos_possible() will always fail when
cli_credentials_get_kerberos_state() returns CRED_USE_KERBEROS_DESIRED
It seems since use kerberos == desired is the default that it isn't
necessary to see if credentials were modified to indicated authentication
was requested. gensec_kerberos_possible() should afaics return true
if kerberos is desired OR required (regardless of whether credentials
were requested)
This commit removes the knownfail associated with this bug.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=15789
Signed-off-by: <noel.power at suse.com>
Reviewed-by: Andreas Schneider <asn at samba.org>
(cherry picked from commit 88f42eb222f299189d5f5f8204ae353e63a50970)
- - - - -
ad5edb8d by Noel Power at 2026-02-27T06:36:16+00:00
s3/libsmb: cli_session_creds_init fails when kerberos is desired
There is a regression with code using cli_session_creds_init when
cli_credentials_get_kerberos_state() returns CRED_USE_KERBEROS_DESIRED
Authentication succeeds when boolean fallback_after_kerberos is false
and fails when true.
There doesn't seem to be a good reason why the value of
fallback_after_kerberos should initialise the krb5 ccache or not.
It would seems that krb5 cache should be setup for creds
for *any* kerberos auth (whether fallback is enabled or not)
Partial patch from <will69 at gmx.de> (see bug referenced below)
Bug: https://bugzilla.samba.org/show_bug.cgi?id=15789
Signed-off-by: Noel Power <noel.power at suse.com>
Reviewed-by: Andreas Schneider <asn at samba.org>
(cherry picked from commit 1c48599105736499d18aa1f647bce9e1f8dbdcca)
- - - - -
98ba0555 by Noel Power at 2026-02-27T06:36:16+00:00
s3/libsmb: block anon authentication fallback is use-kerberos = desired
When cli_credentials_get_kerberos_state returns CRED_USE_KERBEROS_REQUIRED
libsmbclient method SMBC_server_internal will still try to fallback to
anon NTLM. This patch prevents that.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=15789
Signed-off-by: Noel Power <noel.power at suse.com>
Reviewed-by: Andreas Schneider <asn at samba.org>
Autobuild-User(master): Noel Power <npower at samba.org>
Autobuild-Date(master): Tue Feb 17 16:06:18 UTC 2026 on atb-devel-224
(cherry picked from commit bc868800276fe09cbcb206ebe4cb4da32af7599f)
- - - - -
269c91de by Ralph Boehme at 2026-02-27T07:38:26+00:00
selftest: mark "smb2.lease.rename_dir_openfile" as flapping
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15978
Signed-off-by: Ralph Boehme <slow at samba.org>
Reviewed-by: Björn Jacke <bjacke at samba.org>
Autobuild-User(master): Ralph Böhme <slow at samba.org>
Autobuild-Date(master): Mon Feb 23 12:37:28 UTC 2026 on atb-devel-224
(cherry picked from commit 437436832fdddfda692fac01452ad7bc4a0b6e3d)
Autobuild-User(v4-23-test): Björn Jacke <bjacke at samba.org>
Autobuild-Date(v4-23-test): Fri Feb 27 07:38:26 UTC 2026 on atb-devel-224
- - - - -
8204255c by Björn Jacke at 2026-02-27T10:13:55+01:00
WHATSNEW: Add release notes for Samba 4.23.6.
Signed-off-by: Bjoern Jacke <bjacke at samba.org>
- - - - -
5eb5fcf3 by Björn Jacke at 2026-02-27T10:19:58+01:00
VERSION: Disable GIT_SNAPSHOT for the 4.23.6 release.
Signed-off-by: Bjoern Jacke <bjacke at samba.org>
- - - - -
67cb5a74 by Michael Tokarev at 2026-02-27T13:10:27+03:00
New upstream version 4.23.6+dfsg
- - - - -
33 changed files:
- VERSION
- WHATSNEW.txt
- auth/gensec/gensec_util.c
- buildtools/wafsamba/samba_utils.py
- ctdb/config/events/legacy/60.nfs.script
- ctdb/failover/statd_callout.c
- ctdb/tests/UNIT/eventscripts/scripts/statd-callout.sh
- ctdb/tests/UNIT/eventscripts/statd-callout.001.sh
- ctdb/tests/UNIT/eventscripts/statd-callout.002.sh
- ctdb/tests/UNIT/eventscripts/statd-callout.004.sh
- ctdb/tests/UNIT/eventscripts/statd-callout.005.sh
- ctdb/tests/UNIT/eventscripts/statd-callout.006.sh
- + ctdb/tests/UNIT/eventscripts/statd-callout.008.sh
- + ctdb/tests/UNIT/eventscripts/statd-callout.050.sh
- + ctdb/tests/UNIT/eventscripts/statd-callout.108.sh
- + ctdb/tests/UNIT/eventscripts/statd-callout.150.sh
- + ctdb/tests/UNIT/eventscripts/statd-callout.208.sh
- + ctdb/tests/UNIT/eventscripts/statd-callout.250.sh
- ctdb/tools/statd_callout_helper
- docs-xml/manpages/net.8.xml
- docs-xml/smbdotconf/misc/ctdbdsocket.xml
- + lib/pthreadpool/test_pthreadpool.c
- lib/pthreadpool/wscript_build
- script/autobuild.py
- + selftest/flapping.d/smb2.lease
- source3/libsmb/cliconnect.c
- source3/libsmb/libsmb_server.c
- source3/printing/print_cups.c
- source3/printing/printing.c
- source3/rpc_client/cli_pipe.c
- source3/script/tests/test_smbclient_kerberos.sh
- source3/selftest/tests.py
- source3/smbd/smb2_oplock.c
The diff was not included because it is too large.
View it on GitLab: https://salsa.debian.org/samba-team/samba/-/compare/46ffb42ccd050de7e880e778ad962d1de84acd66...67cb5a7439a9291984011bf291fdb26e6d422db0
--
View it on GitLab: https://salsa.debian.org/samba-team/samba/-/compare/46ffb42ccd050de7e880e778ad962d1de84acd66...67cb5a7439a9291984011bf291fdb26e6d422db0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-samba-maint/attachments/20260227/50af70b2/attachment-0001.htm>
More information about the Pkg-samba-maint
mailing list