+ -Werror has been removed by default from CFLAGS
+ PIE and RELRO are enabled by default at build time
+ better integration with systemd by allowing the use of
/bin/systemd-ask-password if available
+ better checks and warnings from cifscreds when used in environments that
do not have a session keyring
- No longer initialize oldfsgid inside acquire_mountpoint() of mount.cifs.c as
-Werror got removed.
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=70
+ mount.cifs: don't pass credentials= option to the kernel
+ doc: update mailing list
+ mount.cifs: don't send a mandatory ver= option to the kernel
+ mount.cifs: remove smb2 multicall binary code
+ doc: remove old XML sources for mount.cifs.8 and cifs.upcall.8
+ mount.cifs: unused variables
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=59
+ the "rootsbindir" can now be specified at configure time
+ mount.cifs now supports the -s option by passing "sloppy" to the
kernel in the options string
+ cifs.upcall now properly respects the domain_realm section in krb5.conf
+ unprivileged users can no longer mount onto dirs into which they
can't chdir (fixes CVE-2012-1586)
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=47
- BuildRequire keyutils-devel for post-10.2 systems.
- BuildRequire libcap-ng-devel for post-11.2 systems.
- BuildRequire libwbclient-devel for post-10.2 systems.
- BuildRequire samba-winbind-devel for CentOS, Fedora, and RHEL systems.
- Add getcifsacl, setcifsacl, cifs.idmap, and cifs.upcall binaries and man
pages to the filelist.
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=41
+ admins can now tell cifs.upcall to use an alternate krb5.conf file
+ on remount, mount.cifs no longer adds a duplicate mtab entry
+ the cifscreds utility has seen a major overhaul to allow for multiuser
mounts without krb5 auth
- Update to cifs-utils 5.2.
+ cifs.idmap can now map uid/gid to SID in addition to the other way around
+ getcifsacl/setcifsacl are now installed by default in /usr/bin instead of
/usr/sbin. The manpages are now in section 1.
+ cifs.upcall has a new scheme for picking the SPN on krb5 mounts. The
hostname is now always lowercased. If we fail to get a ticket using an
unqualified name, it now attempts to guess the domain name.
+ A lot of manpage updates, additions and corrections
- Update to cifs-utils 5.1.
+ fix for a minor security issue that can corrupt the mtab
+ new getcifsacl/setcifsacl tools that allow you to fetch and set raw
Windows ACLs via an xattr.
+ a lot of manpage patches
- Update to cifs-utils 5.0.
+ mount.cifs always uses the original device string to ensure that umounts
by unprivileged users are not problematic
+ there is a new cifs.idmap program for handling idmapping upcalls
+ a lot of manpage patches
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=40
+ fix a segfault that could occur when parsing the address list.
+ fix autoconf/automake problem that could cause compilation to fail.
+ acquire required capabilities before a couple of operations.
+ ensure passwords are not left in memory.
+ cleanup of credential file parsing.
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=17
- Update to cifs-utils 4.3.
+ credential files accept parameter names consistent with mount options.
+ some problems with linking are fixed.
+ libcap-ng is used if it's available.
+ the capability bounding set is zeroed out for greater security.
+ CAP_DAC_OVERRIDE is only enabled when updating the mtab.
OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/cifs-utils?expand=0&rev=12