Ralph Böhme | 25 Oct 09:53 2014

Are paths passed to VFS funcs normalized?


are paths guaranteed to be normalized when passed to VFS functions
like SMB_VFS_MKDIR() (besides possibly beginning with "./") ?

I'm currently working on fixing up a 3rd party VFS module that goes
great length towards catching "/.." and stuff in paths.


Michael Adam | 24 Oct 15:23 2014

[RFC] Strategies for CTDB integration into Samba


Triggered by another mail thread, would like to officially
start the discussion or clarification, where we are heading
with the integrated CTDB.

What we have already done:

- CTDB code was intergrated into Samba code, because
  it is not (yet?) a project of its own.
  For instance, parts of the client implementation are
  in the samba code.

- CTDB's build system has been converted to waf, and
  some of the duplicated libraries have been removed.

- As of recently, the top level samba build has been
  extended to also build ctdb.

- CTDB has no version number of its own any more but
  will be released along with Samba as a component
  in the future, starting with 4.2.

What is going on:

- Amitay has just (re)proposed patches that remove
  the ability to build against older ctdb versions
  and maybe with the intention to disable the ability
(Continue reading)

Amitay Isaacs | 24 Oct 04:30 2014

[PATCH] Remove ctdb feature checks from configure


This is a re-post since no one commented on these patches.

These patches remove the configure checks for ctdb features as we now have
the ctdb building with file server code.

Review is appreciated.


Attachment (patches): application/octet-stream, 47 KiB
Amitay Isaacs | 24 Oct 04:25 2014

[PATCH] Add support for BIND 9.10.x


Here are the patches that add support for BIND 9.10.x.

Please review and push if ok.


Attachment (dns.patches): application/octet-stream, 26 KiB
Volker Lendecke | 23 Oct 16:34 2014

[PATCH] Two messaging fixes


Hopefully the comments are descriptive enough. Proper
rundown of structures is hard...

Review&push would be appreciated.




SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen
http://www.sernet.de, mailto:kontakt <at> sernet.de
From a70ecb341775eaa1e8cd6d647d76f4f297549d43 Mon Sep 17 00:00:00 2001
From: Volker Lendecke <vl <at> samba.org>
Date: Wed, 22 Oct 2014 15:02:49 +0000
Subject: [PATCH 1/2] poll_funcs_tevent: Fix a valgrind error

The valgrind error happened in poll_funcs_tevent_handle_destructor in

  if (handle->ctx->refcount == 0)

handle->ctx was already gone at the time this destructor
was called. It happened because during messaging_init the
messaging_dgm subsystem was free'ed.  The unix_msg context and the
(Continue reading)

Martin Schwenke | 23 Oct 12:09 2014

Re: [PATCHES] CTDB logging rework

On Thu, 23 Oct 2014 19:54:01 +1100, Martin Schwenke <martin <at> meltin.net>

> On Fri, 17 Oct 2014 21:00:29 +1100, Martin Schwenke <martin <at> meltin.net>
> wrote:
> > On Fri, 17 Oct 2014 10:55:53 +0200, Volker Lendecke
> > <Volker.Lendecke <at> SerNet.DE> wrote:
> > 
> > > On Fri, Oct 17, 2014 at 02:53:01PM +1100, Martin Schwenke wrote:
> > > > This reworks much of the CTDB logging subsystem.  Main points are:
> > > > 
> > > > * Bug fix to put a newline back at the end of messages logged to file
> > > >   (recent regression).
> > > > 
> > > > * Remove the separate CTDB log daemon.
> > > > 
> > > > * Add syslog via UDP logging, as per RFCs 5424 and RFC5426.
> > > 
> > > As talked about via chat, it would be great to also do
> > > nonblocking sendmsg to /dev/log.
> > 
> > Yep.  I've had more of a think.  I'll simplify it to have just a "file"
> > and a "syslog" backend.  Instead of specifying "syslog-udp", I'll make
> > it "syslog:udp", so the difference can be handled in the setup function.
> > Then I can trivially add "syslog:lossy" (or "syslog:nonblocking").
> > 
> > ... and then I'm getting out of the logging business...  ;-)
> I'm calling this done.  New patches attached.  :-)
(Continue reading)

Andreas Oster | 23 Oct 10:47 2014

Continuous Normalisation error for attribute whenCreated when performing dbcheck

Hi all,

This is a re-posting of a thread I have already opened on the general
list, but for which I did not get/find a solution:

Since the migration of our old Win2k domain to Samba4 some years ago
I get a lot of errors like the following when doing a
"samba-tool dbcheck --cross-ncs --fix" :

ERROR: Normalisation error for attribute whenCreated in
value '19700101000000.0Z' should be '16010101000000.0Z'
Fix normalisation for whenCreated from
CN=rpc-Ns-Group,CN=Schema,CN=Configuration,DC=samdom,DC=com? [YES]
Normalised attribute whenCreated

This repeats 1000+ times for many different entries.

The samba-tool unfortunately does not fix the issue because when I start
it a second time it will complain again, this time with values switched

value '16010101000000.0Z' should be '19700101000000.0Z'

Does anyone have an idea how to fix this ?

Thank you very much for your kind help.

best regards
(Continue reading)

Michael Adam | 23 Oct 08:06 2014

Status and demo of SMB3 Multi-Channel in Samba


we are working on implementing SMB3 Multi-Channel in Samba.
The wiki page https://wiki.samba.org/index.php/Samba3/SMB3
contains details about our plans for the various items
of SMB3, and multi-channel in particular.

The current state can be found in Metze's and my
master3-multi-channel branch:

Since the WIP code is already working to a great extent, I have
created a screencast of a demo.  It can be downloaded here:

or watched directly on vimeo: https://vimeo.com/109683912

I have also written a blog post with a couple of explanations:

(also agregated on http://planet.samba.org/).

Cheers - Michael
Vince George (vincgeor | 23 Oct 00:15 2014

How to verify Samba RPM Files?

Hi All,

I have downloaded a RHEL5 release including several Samba RPM files and I want to verify their integrity & authenticity.

It's the first time I am using rpm and ran the two command-lines against a Samba rpm file...

1st Command-Line: : rpm -K samba3-3.6.24-45.el5.x86_64.rpm

samba3-3.6.24-45.el5.x86_64.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS: GPG#f4428b1a)

2nd Command-Line: :  rpm -K -v samba3-3.6.24-45.el5.x86_64.rpm

    Header V4 DSA signature: NOKEY, key ID f4428b1a
    Header SHA1 digest: OK (0ba26692ea1fa6c5fc19d4bf9ae5b5f6b2f8a5dd)
    MD5 digest: OK (3f09dc73be6069fd79b2a32ee6e3b51a)
    V4 DSA signature: NOKEY, key ID f4428b1a

How do I verify the signatures of the Samba RPM? Am I missing some public key file?


Vince George | Solutions Manager - Consultant
Mobile: (201) 519-3777
vincgeor <at> cisco.com<mailto:vincgeor <at> cisco.com> | www.cisco.com<http://www.cisco.com/>
This email may contain confidential and privileged material for the sole
use of the intended recipient. Any review, use, distribution or disclosure
(Continue reading)

Jeremy Allison | 22 Oct 18:01 2014

Amazon implements Samba Active Directory in the cloud !

Dan Shearer pointed out the following (thanks Dan):


"The New AWS Directory Service

Today we are introducing the AWS Directory Service to address
these challenges! This managed service provides two types of
directories. You can connect to an existing on-premises directory
or you can set up and run a new, Samba-based directory in the Cloud."

Congratulations to everyone on the Team who
created SambaAD and all our users and testers
who have helped us make the code work so well !

Hopefully we'll get a lot more bug reports and
upstream code changes from all the extra usage
and Amazon corporate backing.

Truely we live in interesting times :-).


Andreas Schneider | 21 Oct 15:22 2014

resolv_wrapper source code available


we pushed resolv_wrapper to git.samba.org! Thanks to Michael Adam for the 
review and Jakub Hrozek for his help on this project.


resolv_wrapper can run in two modes.

1) Redirect name server queries to a DNS server using a resolv.conf
   and socket_wrapper.
2) Fake DNS responses using a dns_hosts_file (like Samba does).

Both are needed cause 1) doesn't work on some BSDs.

Details can be found here:


I'm currently setting up nightly builds. As soon as we fixed all bugs on all 
platforms we will release version 1.0.0.


	-- andreas


Andreas Schneider                   GPG-ID: CC014E3D
Samba Team                             asn <at> samba.org
(Continue reading)