Amitay Isaacs | 21 Aug 06:55 2014

[PATCH] Improve third_party support


This patchset improves the detection of third_party directory without
needing to add symlinks all over the place and also fixes some of the
third_party issues in ldb and ctdb.

Attachment (build.patches): application/octet-stream, 4790 bytes
Volker Lendecke | 20 Aug 17:45 2014

[PATCHSET] Change brlock autocleanup


The attached patchset changes our brlock dead process
autocleanup from "once per fsp" to "when a conflict

This makes us a bit more precise, see the cleanup2 torture
test change. Also, it removes the last real caller of
serverids_exist. When this is in, a lot of clumsy code can

Review&push would be appreciated!




SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen, mailto:kontakt <at>
From 49f9df45e05bb39d15d53c8503c3ab45459d62d5 Mon Sep 17 00:00:00 2001
From: Volker Lendecke <vl <at>>
Date: Tue, 19 Aug 2014 12:36:55 +0000
Subject: [PATCH 1/4] brlock: Do auto-cleanup at conflict time

This avoids the need to do sweeping validate_lock_entries calls
(Continue reading)

Volker Lendecke | 20 Aug 17:42 2014

[PATCH] Some cleanup patches


Review&push would be appreciated!



SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen, mailto:kontakt <at>
From a8a56f8040a5877890d35b264da08c1ab71960b6 Mon Sep 17 00:00:00 2001
From: Volker Lendecke <vl <at>>
Date: Tue, 19 Aug 2014 09:20:49 +0000
Subject: [PATCH 1/3] lib: Check socket length in ctdbd_connect

Signed-off-by: Volker Lendecke <vl <at>>
 source3/lib/ctdbd_conn.c |   10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/source3/lib/ctdbd_conn.c b/source3/lib/ctdbd_conn.c
index 3e5e838..3ba8385 100644
--- a/source3/lib/ctdbd_conn.c
+++ b/source3/lib/ctdbd_conn.c
 <at>  <at>  -214,6 +214,7  <at>  <at>  static int ctdbd_connect(int *pfd)
(Continue reading)

Stefan (metze) Metzmacher | 20 Aug 16:35 2014

Patches bug #10773 (SECINFO_PROTECTED_DACL is not ignored)


here're some patches for

It seems we need to ignore flags like SECINFO_PROTECTED_DACL.

Otherwise we get unexpected behaviours from the Windows
MoveSecurityAttributes() function.

Please review.

Jeremy, do you think we should keep the SECINFO_PROTECTED_DACL
logic in posix_get_nt_acl_common()?

Attachment (tmp.diff): text/x-diff, 7247 bytes
Volker Lendecke | 20 Aug 15:30 2014

[PATCH] smbcontrol: Fix a typo


Review&push would be appreciated.



SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen, mailto:kontakt <at>
From 8fe55c21ca7ff7e8a2a5128d040372306d1d0a5f Mon Sep 17 00:00:00 2001
From: Volker Lendecke <vl <at>>
Date: Mon, 18 Aug 2014 08:24:35 +0000
Subject: [PATCH] smbcontrol: Fix a typo

Signed-off-by: Volker Lendecke <vl <at>>
 source3/utils/smbcontrol.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/source3/utils/smbcontrol.c b/source3/utils/smbcontrol.c
index 7c516c4..69d6161 100644
--- a/source3/utils/smbcontrol.c
+++ b/source3/utils/smbcontrol.c
 <at>  <at>  -225,7 +225,7  <at>  <at>  static bool do_idmap(struct tevent_context *ev,
(Continue reading)

Orlando Richards | 20 Aug 14:35 2014

CTDB - current best version to deploy

Hi folks,

Can anyone advise on the current "stable" version of ctdb it's best to 
deploy with samba 4.1?

We're currently using samba 4.0 and the 1.2.40 branch from the ctdb.git 
repo, but I notice that 2.5 is where all the development effort has been 
this year. We're about to bump up to samba 4.1 and thought it best to 
review this at the same time.


        Dr Orlando Richards
Research Facilities (ECDF) Systems Leader
        Information Services
    IT Infrastructure Division
        Tel: 0131 650 4994
      skype: orlando.richards

The University of Edinburgh is a charitable body, registered in 
Scotland, with registration number SC005336.

Diogo V. kersting | 14 Aug 00:03 2014

Patch with improved localization of pam_winbind for portuguese


Diogo V. Kersting
Joachim Misselbeck AT | 15 Aug 13:32 2014

Problem with winbind on SLES 11 SP2

Dear samba Users,

we have a problem with Winbind and connection to a Windows 2012 R2 AD with
for several months. 
The winbind processes terminate the connection with the AD after about 5
days and 
can be activated only by restart again. 
several attempts the problem a demarcate was unsuccessful. 
A suspicion that it is up to the fryer password change could be eliminated. 
Technical Environment: 

DC Win2012 R2 version number. 6.3.9600, the domain functional level 2008 R2 
Samba version: Version 3.6.3- SUSE Code11-x86_64 
WinbindVersion: Version 3.6.3- SUSE Code11-x86_64 

Incomprehensible is the problem only occurs on one of the 20 boxes. 
All SLES 11 are virtualized and run under VMware (VCenter 5.5). 

For tips on solution I would be grateful. 
Log files, I can readily provide. 



Please don't print this e-mail unless you really need to.

Diese E-Mail und ihre beigefuegten Anhaenge sind vertraulich und
ausschliesslich fuer den bezeichneten Adressaten oder dessen Vertreter
bestimmt. Sollten Sie nicht der vorgesehene Adressat dieser E-Mail oder
(Continue reading)

Niklas Andersson | 18 Aug 18:12 2014

100% Open Active Directory - client and server


 I have setup a POC for integrating Samba4 AD DC with realmd/sssd using

 If you have Docker installed and you are familiar with the technology it
won't take you more than 15 minutes to get working client/server.

 Here is the server (docker-dc) [1], and here is the client (docker-realmd)



Niklas Andersson | 17 Aug 03:52 2014

Unable to alter DNS in Samba4


 Installed Samba4 as DC in a Docker container. Using Utopic and Samba
4.1.11 as a base.

 The install and provisioning goes smooth - I have also confirmed I can
join using realmd from another client :)

 But, the problem is that you want this containerized, and the ip address
to your DC in your new containers are not valid.

 So, I tried to alter it, but I got errors. I have tried several dns
operations and everything that has to do with update/new records fail.
Queries works nicely. I can add users to the directory, so it seems limited
to dns..

Here is the log: (Old IP is, and I want to change it to

root <at> dc:/# samba-tool dns update
A -d 10
INFO: Current debug levels:
  all: 10
  tdb: 10
  printdrivers: 10
  lanman: 10
  smb: 10
  rpc_parse: 10
  rpc_srv: 10
  rpc_cli: 10
(Continue reading)

Amitay Isaacs | 20 Aug 05:55 2014

[PATCH] CTDB changes

Hi All,

Here are some more CTDB locking changes.  These changes add a TALLOC_CTX to
all the locking calls.  So the requests are correctly created using the
specified TALLOC_CTX and freeing the context will automatically clean up
lock context associated with it.

This patch series also includes a patch to fix one of the long standing
issues of high hopcounts.  In some case, a lock request will keep bouncing
back and forth between two nodes very quickly.  This occurs during a small
window when a record is migrated from one node to other node and the
migrated record has not yet been written to the database.  During this time
the dmaster information on both the nodes is inconsistent and each node
points to the other node as dmaster.  This issue was further complicated by
ctdb lock wait processes getting starved when waiting for robust mutex lock
for the migrated record.  We need to ensure that ctdb lock wait processes
run with higher priority than smbd, so ctdb can finish migration of records
quickly.  Also, hold off all the record requests if there is record
migration in progress.  This will avoid record requests bouncing between
the nodes like crazy.

The patches are in my ctdb-wip branch and are also attached.;a=shortlog;h=refs/heads/ctdb-wip

Please review and push if ok.

Attachment (ctdb.patches): application/octet-stream, 31 KiB
(Continue reading)