Samba's tests.
I don't know if there is a good fix for this actually.
Andrew Bartlett
o avoid breaking sssd-
> ad-common.
We can't put a version number in samba-libs as there are multiple
public libraries in there.
(Upstream) Samba doesn't promise not to keep doing this - the
underlying change has happened before, but this time we were honest and
bumped the .so - so s
a python bug, it should not be setting HAVE_STROPTS_H.
See bug 954582
--
Andrew Bartlett https://samba.org/~abartlet/
Authentication Developer, Samba Team https://samba.org
Samba Developer, Catalyst IT
https://catalyst.net.nz/services/samba
d in Python.
The correct fix is for Python not to leak these defines.
Andrew Bartlett
--
Andrew Bartlett https://samba.org/~abartlet/
Authentication Developer, Samba Team https://samba.org
Samba Developer, Catalyst IT
https://catalyst.net.nz/services/samba
bols doesn't match
> completely debian/python3-talloc.symbols
See also https://github.com/samba-team/samba/pull/110 for BaT trying to
fix this kind of thing on FreeBSD.
Andrew Bartlett
--
Andrew Bartlett
https://samba.org/~abartlet/
Authentication Developer, Samba Team https://samba
On Thu, 2017-07-13 at 18:05 +1200, Andrew Bartlett wrote:
> On Thu, 2017-07-13 at 07:14 +0200, Raphael Hertzog wrote:
> > Source: samba
> > Severity: grave
> > Tags: security patch
> > Version: 2:4.1.11+dfsg-1
> >
> > Hi,
> >
> > the followin
eeded.
Proposed updates are in jessie and stretch branches at:
git://git.samba.org/abartlet/samba-debian.git
I've only built them, not tested them. Then again, the upstream
patches were not manually tested either (we relied on autobuild), such
was the rush...
I can uploa
On Thu, 2016-05-26 at 11:40 +0200, Santiago Ruano Rincón wrote:
> El 23/05/16 a las 22:28, Andrew Bartlett escribió:
> >
> > On Wed, 2016-05-18 at 15:47 -0400, Antoine Beaupré wrote:
> > >
> > > On 2016-04-29 08:55:43, Santiago Ruano Rincón wrote:
> &
nt.
I'm happy to review things, just not had the time to switch back on to
debian matters.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
flush' or similar may have helped.
That is, I think wbcListUsers() returned 0 entries, which causes other
code to think a realloc of length 0 'failed'.
wbinfo -u would probably have failed in a similar way, but with a more
useful error message.
Andrew Bartlett
--
Andrew Ba
debian.org/status/logs.php?pkg=ldb&ver=2%3A1.1.24-1
> https://buildd.debian.org/status/fetch.php?pkg=ldb&arch=ppc64&ver=2%3
> A1.1.24-1&stamp=1450397581
> https://buildd.debian.org/status/fetch.php?pkg=ldb&arch=ppc64&ver=2%3
> A1.1.24-1&stamp=1450616129
>
> Regards
>
> Mathieu Parent
>
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
On Sat, 2016-01-02 at 22:22 +, Jelmer Vernooij wrote:
> On Sun, Jan 03, 2016 at 11:00:44AM +1300, Andrew Bartlett wrote:
> > On Sat, 2016-01-02 at 21:51 +, Jelmer Vernooij wrote:
> > > On Sun, Jan 03, 2016 at 10:38:12AM +1300, Andrew Bartlett wrote:
> > > > On
On Sat, 2016-01-02 at 21:51 +, Jelmer Vernooij wrote:
> On Sun, Jan 03, 2016 at 10:38:12AM +1300, Andrew Bartlett wrote:
> > On Thu, 2015-12-31 at 18:53 +1300, Andrew Bartlett wrote:
> > > Just a quick note to say that the LDB build failure isn't a
> > > regressi
On Thu, 2015-12-31 at 18:53 +1300, Andrew Bartlett wrote:
> Just a quick note to say that the LDB build failure isn't a
> regression
> - whatever is going on here has always been going on, it just wasn't
> tested before ldb 1.1.23.
> That said, fixing this is going to r
est for Dn.__contains__
Add a helper function to register a dummy DN extension for testing.
Signed-off-by: Petr Viktorin
Reviewed-by: Andrew Bartlett
Reviewed-by: Stefan Metzmacher
That said, fixing this is going to require gdb on a s390. Is the
porterbox where that should be do
n reproduce this at will on i686 Ubuntu images on the Catalyst
cloud.
Douglas chased it as far as the kernel page layout! It seems to come
down to differences in opinion on how deep a nested stack should be
able to go.
Thanks,
Andrew Bartlett
--
Andrew Bartlett http://sa
On Thu, 2014-10-16 at 02:30 +0200, Marco d'Itri wrote:
> On Oct 16, Andrew Bartlett wrote:
>
> > Thanks. How do you wish to proceed?
> I suggest that you just upload the package.
Just to be clear, I'm not (yet) a Debian Maintainer, so I don't have
upload rights
On Thu, 2014-10-16 at 01:36 +0200, Marco d'Itri wrote:
> On Oct 16, Andrew Bartlett wrote:
>
> > I've prepared a a fix for CVE-2014-3158, an integer overflow potentially
> > permitting a user in the dip group to abuse the privileges of the setuid
> > root ppp
tions also need a fix).
This is my first fix for squeeze-lts, so I'm using this lower-impact
issue to learn the ropes, so feedback most welcome. I'm also not yet a
Debian Maintainer, but will apply for that soon so I can also do the
announcement next time.
Thanks!
Andrew Bartlett
--
On Sun, 2014-01-19 at 11:30 +1100, Brian May wrote:
> On 16 January 2014 14:03, Andrew Bartlett wrote:
> Can we get this patch into the Heimdal package, so we can fix
> that side
>
> of bug #732342?
>
> Once I know the version
On Tue, 2014-01-07 at 16:58 -0800, Steve Langasek wrote:
> On Wed, Jan 08, 2014 at 01:54:32PM +1300, Andrew Bartlett wrote:
>
> > > > Reading symbols from /usr/lib/x86_64-linux-gnu/libhdb.so.9...Reading
> > > > symbols from
> > > > /usr/lib/debug/usr/l
On Wed, 2014-01-15 at 02:32 +1300, Andrew Bartlett wrote:
> On Thu, 2014-01-09 at 18:04 -0600, Jeff Clark wrote:
> > No problem. Will send it over in a few hours.
>
> With all the false starts on this, I've sat on the patches until I can
> test it with the developer
r this pushed, and get the
matching Heimdal patch in.
Brian,
This bug needs a patch to Heimdal as well as to Samba. I'll post you
the patch once I've tested it, and then I guess we need to work on a
stricter version dep here to make sure this all keeps in sync.
Andrew Bartle
On Fri, 2014-01-10 at 12:12 +1300, Andrew Bartlett wrote:
> On Thu, 2014-01-09 at 16:04 -0600, Jeff Clark wrote:
> > Samba needs the hdb plugin updated to support hdb version 8.
> >
> >
> >
> > Heimdal needs the hdb callback function patched because even
here for both heimdal and samba. I can
> submit debug backtraces if anyone is interested.
Thanks for looking into this. I was coming to exactly the same
conclusion.
For upstream, I'll patch Samba, can you submit the patch to Heimdal
(feel free to CC me)?
Thanks,
Andrew Bartlett
--
A
On Wed, 2014-01-08 at 14:29 +1300, Andrew Bartlett wrote:
> On Tue, 2014-01-07 at 16:58 -0800, Steve Langasek wrote:
> > On Wed, Jan 08, 2014 at 01:54:32PM +1300, Andrew Bartlett wrote:
> >
> > > > > Reading symbols from /usr/lib/x86_64-linux-gnu/libhdb.so.9...
On Tue, 2014-01-07 at 16:58 -0800, Steve Langasek wrote:
> On Wed, Jan 08, 2014 at 01:54:32PM +1300, Andrew Bartlett wrote:
>
> > > > Reading symbols from /usr/lib/x86_64-linux-gnu/libhdb.so.9...Reading
> > > > symbols from
> > > > /usr/lib/debug/usr/l
s stack trace shows signs of stack corruption.
> "0x" and "0x0008" are not valid addresses to
> appear in a backtrace.
>
> You may have better luck debugging by running under valgrind, which can
> often detect stack corruption errors at
inced that the problem in the original
> submission of this bug was caused by such a race condition. That case should
> be fixed by the earlier changes.
Thank you so much for you diligent attention to this difficult problem.
Andrew Bartlett
--
Andrew Bartletth
On Wed, 2013-10-30 at 10:22 +0100, Ivo De Decker wrote:
> Hi Andrew,
>
> On Wed, Oct 30, 2013 at 11:34:25AM +1300, Andrew Bartlett wrote:
> > > That'll also cause some confusion though, as those files will be in
> > > sysstatedir on debian but in privatedir on o
On Tue, 2013-10-29 at 00:35 +0100, Jelmer Vernooij wrote:
> On Mon, Oct 28, 2013 at 10:00:12PM +0100, Ivo De Decker wrote:
> > Hi,
> >
> > On Mon, Oct 21, 2013 at 10:37:49PM +1300, Andrew Bartlett wrote:
> > > > Ok. I think we need to undo this /var/lib/samba/pr
On Mon, 2013-10-28 at 22:00 +0100, Ivo De Decker wrote:
> Hi,
>
> On Mon, Oct 21, 2013 at 10:37:49PM +1300, Andrew Bartlett wrote:
> > > Ok. I think we need to undo this /var/lib/samba/private nonsense. It is
> > > a
> > > pointless and imperfect migratio
On Mon, 2013-10-21 at 12:44 +0200, Ivo De Decker wrote:
> Andrew,
>
> On Mon, Oct 21, 2013 at 11:32:14PM +1300, Andrew Bartlett wrote:
> > > cups-config --libs:
> > > -lcups -Wl,-z,relro -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lgnutls
> > > -l
On Mon, 2013-10-21 at 12:20 +0200, Ivo De Decker wrote:
> Hi Andrew,
>
> On Mon, Oct 21, 2013 at 10:45:22PM +1300, Andrew Bartlett wrote:
> > Almost certainly this is due to the output of cups-config. We have had
> > similar issues before, including a patch posted to the li
similar issues before, including a patch posted to the list just last
week.
Can someone post the cups-config --libs and --ldflags output on a
affected system?
Andrew Bartlett
--
Andrew Bartletthttp://samba.org/~abartlet/
Authentication Developer, Samba Team
s.
For example, a significant number of issues came about as folks tried to
divine if a particular TDB was short, medium or long-term, when no such
separation existed in the code.
We (upstream) have gone to significant effort to integrate the FHS
changes that have been proposed via Debian, I can
you examine logfiles to show that this was the case? Samba should
print it's version in the logs when starting up.
We changed the default passdb backend long before 3.6.
Is there as passdb.tdb anywhere else on your system?
Andrew Bartlett
--
Andrew Bartlett
bsam
for quite some time now.
Can you show us your smb.conf?
I was assuming the bug here is that the automatic migration between
smb.conf backends was lost, which would permit an upgrade from a very
old version to one using tdbsam by default, but I can't find any
evidence in the packaging sou
e we use waf in Debian, the waf code has been included
as source).
Andrew Bartlett
--
Andrew Bartletthttp://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...
d to fix the issue, and was (if I
recall correctly) in the samba4 experimental packages before we updated
to a modern version of Samba including the fix upstream.
That said, I don't propose we do anything other than migrate samba4 in
from experimental to fix this.
Andrew Bartlett
--
Andrew
On Fri, 2013-06-21 at 10:33 +0200, Raphael Hertzog wrote:
> On Fri, 21 Jun 2013, Andrew Bartlett wrote:
> > dbwrap*.so is now in samba-common-bin. The issue is that this almost
> > certainly depends on the credentials library, so we may need yet another
> > library package,
with a lot of work, so any assistance you can give would be
most welcome, it is series and isn't a trivial issue to fix.
Certainly fixing it in unstable seems unlikely except for migration of
the soon to be experimental package from samba_4.0, so that is where the
effort needs to be made.
Thank
.
>
> Indeed, has no documentation about Samba PDC Kerberized in the Internet,
> I think only my, but, for Active Directory have many documentations.
That is because aside from interesting hacks with Linux clients, the
only Samba Kerberised DC is Samba4.
(and yes, running Heimd
of implementing the documented
> syntax -- only when the approved syntax changes.
Our list code allows these separators.
> If you can point me to some resource that said to use the comma, then I'll
> happily implement that check.
I'm pretty sure it has been standard s
rfaces, but that there are none, might be acceptable.
That said, a system that can't even report that the loopback device
exists is a pretty poor system...
Andrew Bartlett
--
Andrew Bartletthttp://samba.org/~abartlet/
Authentication Developer, Samba Team
a big part of what Samba does, and I'm a
bit worried you can't test any of this.
Andrew Bartlett
--
Andrew Bartletthttp://samba.org/~abartlet/
Samba Developer, SuSE Labs, Novell Inc.http://suse.de
Authentication Developer, Samba Team
On Fri, May 27, 2005 at 12:20:49PM -0700, Steve Langasek wrote:
> > > > > On Sat, May 28, 2005 at 05:17:39AM +1000, Andrew Bartlett wrote:
> > > > > Yeah, on second look I see that it can be done in smbmount, and this
> > > > > would
> > >
On Sat, 2005-05-28 at 18:39 +0200, Bill Allombert wrote:
> On Fri, May 27, 2005 at 12:20:49PM -0700, Steve Langasek wrote:
> > On Sat, May 28, 2005 at 05:17:39AM +1000, Andrew Bartlett wrote:
> > Yeah, on second look I see that it can be done in smbmount, and this would
> > be
provides the session setup. (Contrasting with the cifs vfs,
which is all in-kernel).
> An appropriate fix might be for the kernel to ignore the presence of
> CAP_UNIX when uid/gid options have been passed to mount.
This is also a very sensible way to handle it, and is the only 's
ing now (SAT MAY-7-2005)
> > what should smb.conf have to do with smbclient? I thought thats for the
> > server
> > only?
The smb.conf file is used extensively by both the client and server code.
Andrew Bartlett
--
Andrew Bartletthttp://samb
trace-children option, but not smbd's -i, the
valgrind errors will end up in the normal Samba logfiles (we redirect
stderr).
Thanks,
Andrew Bartlett
--
Andrew Bartletthttp://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
S
ainer will at least need a
valgrind trace of the deamon crashing, to find where the double-free is.
Andrew Bartlett
--
Andrew Bartletthttp://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Student Network Administrator, Hawker C
52 matches
Mail list logo
