- Don't care at all what the real uid is when we call toggle_dac_capability().
- Make use of the stored return code in toggle_dac_capability() of mount.cifs.
- Declare krb5_auth_con_set_req_cksumtype if the prototype does not exist.
- Initialize bkupuid and bkupgid.
- BuildRequire pkg-config for post-10.2 systems and else pkgconfig.
- mount.cifs: fix up some -D_FORTIFY_SOURCE=2 warnings
- Update to cifs-utils 5.4.
+ the "rootsbindir" can now be specified at configure time
+ mount.cifs now supports the -s option by passing "sloppy" to the
kernel in the options string
+ cifs.upcall now properly respects the domain_realm section in krb5.conf
+ unprivileged users can no longer mount onto dirs into which they
can't chdir (fixes CVE-2012-1586)
OBS-URL: https://build.opensuse.org/request/show/114748
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cifs-utils?expand=0&rev=20
+ the "rootsbindir" can now be specified at configure time
+ mount.cifs now supports the -s option by passing "sloppy" to the
kernel in the options string
+ cifs.upcall now properly respects the domain_realm section in krb5.conf
+ unprivileged users can no longer mount onto dirs into which they
can't chdir (fixes CVE-2012-1586)
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=47
- BuildRequire autoconf to avoid implicit dependency for post-11.4 systems.
- BuildRequire keyutils-devel for post-10.2 systems.
- BuildRequire libcap-ng-devel for post-11.2 systems.
- BuildRequire libwbclient-devel for post-10.2 systems.
- BuildRequire samba-winbind-devel for CentOS, Fedora, and RHEL systems.
- Add getcifsacl, setcifsacl, cifs.idmap, and cifs.upcall binaries and man
pages to the filelist.
- Update to cifs-utils 5.3.
+ admins can now tell cifs.upcall to use an alternate krb5.conf file
+ on remount, mount.cifs no longer adds a duplicate mtab entry
+ the cifscreds utility has seen a major overhaul to allow for multiuser
mounts without krb5 auth
- Update to cifs-utils 5.2.
+ cifs.idmap can now map uid/gid to SID in addition to the other way around
+ getcifsacl/setcifsacl are now installed by default in /usr/bin instead of
/usr/sbin. The manpages are now in section 1.
+ cifs.upcall has a new scheme for picking the SPN on krb5 mounts. The
hostname is now always lowercased. If we fail to get a ticket using an
unqualified name, it now attempts to guess the domain name.
+ A lot of manpage updates, additions and corrections
- Update to cifs-utils 5.1.
+ fix for a minor security issue that can corrupt the mtab
+ new getcifsacl/setcifsacl tools that allow you to fetch and set raw
Windows ACLs via an xattr.
+ a lot of manpage patches
- Update to cifs-utils 5.0.
+ mount.cifs always uses the original device string to ensure that umounts
by unprivileged users are not problematic
+ there is a new cifs.idmap program for handling idmapping upcalls
+ a lot of manpage patches
OBS-URL: https://build.opensuse.org/request/show/102472
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cifs-utils?expand=0&rev=18
- BuildRequire keyutils-devel for post-10.2 systems.
- BuildRequire libcap-ng-devel for post-11.2 systems.
- BuildRequire libwbclient-devel for post-10.2 systems.
- BuildRequire samba-winbind-devel for CentOS, Fedora, and RHEL systems.
- Add getcifsacl, setcifsacl, cifs.idmap, and cifs.upcall binaries and man
pages to the filelist.
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=41
+ admins can now tell cifs.upcall to use an alternate krb5.conf file
+ on remount, mount.cifs no longer adds a duplicate mtab entry
+ the cifscreds utility has seen a major overhaul to allow for multiuser
mounts without krb5 auth
- Update to cifs-utils 5.2.
+ cifs.idmap can now map uid/gid to SID in addition to the other way around
+ getcifsacl/setcifsacl are now installed by default in /usr/bin instead of
/usr/sbin. The manpages are now in section 1.
+ cifs.upcall has a new scheme for picking the SPN on krb5 mounts. The
hostname is now always lowercased. If we fail to get a ticket using an
unqualified name, it now attempts to guess the domain name.
+ A lot of manpage updates, additions and corrections
- Update to cifs-utils 5.1.
+ fix for a minor security issue that can corrupt the mtab
+ new getcifsacl/setcifsacl tools that allow you to fetch and set raw
Windows ACLs via an xattr.
+ a lot of manpage patches
- Update to cifs-utils 5.0.
+ mount.cifs always uses the original device string to ensure that umounts
by unprivileged users are not problematic
+ there is a new cifs.idmap program for handling idmapping upcalls
+ a lot of manpage patches
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=40
+ fix a segfault that could occur when parsing the address list.
+ fix autoconf/automake problem that could cause compilation to fail.
+ acquire required capabilities before a couple of operations.
+ ensure passwords are not left in memory.
+ cleanup of credential file parsing.
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=17