1 ==============================
2 Release Notes for Samba 4.12.6
4 ==============================
7 This is the latest stable release of the Samba 4.12 release series.
13 o Jeremy Allison <jra@samba.org>
14 * BUG 14403: s3: libsmb: Fix SMB2 client rename bug to a Windows server.
16 o Andrew Bartlett <abartlet@samba.org>
17 * BUG 14424: dsdb: Allow "password hash userPassword schemes = CryptSHA256"
19 * BUG 14450: dbcheck: Allow a dangling forward link outside our known NCs.
21 o Ralph Boehme <slow@samba.org>
22 * BUG 14426: lib/debug: Set the correct default backend loglevel to
24 * BUG 14428: PANIC: Assert failed in get_lease_type().
26 o Bjoern Jacke <bjacke@samba.org>
27 * BUG 14422: util: Fix build on AIX by fixing the order of replace.h include.
29 o Volker Lendecke <vl@samba.org>
30 * BUG 14355: srvsvc_NetFileEnum asserts with open files.
32 o Stefan Metzmacher <metze@samba.org>
33 * BUG 14354: KDC breaks with DES keys still in the database and
34 msDS-SupportedEncryptionTypes 31 indicating support for it.
35 * BUG 14427: s3:smbd: Make sure vfs_ChDir() always sets
36 conn->cwd_fsp->fh->fd = AT_FDCWD.
37 * BUG 14428: PANIC: Assert failed in get_lease_type().
39 o Andreas Schneider <asn@samba.org>
40 * BUG 14358: docs: Fix documentation for require_membership_of of
43 o Martin Schwenke <martin@meltin.net>
44 * BUG 14444: ctdb-scripts: Use nfsconf utility for variable values in CTDB
47 o Andrew Walker <awalker@ixsystems.com>
48 * BUG 14425: s3:winbind:idmap_ad: Make failure to get attrnames for schema
52 #######################################
53 Reporting bugs & Development Discussion
54 #######################################
56 Please discuss this release on the samba-technical mailing list or by
57 joining the #samba-technical IRC channel on irc.freenode.net.
59 If you do report problems then please try to send high quality
60 feedback. If you don't provide vital information to help us track down
61 the problem then you will probably be ignored. All bug reports should
62 be filed under the Samba 4.1 and newer product in the project's Bugzilla
63 database (https://bugzilla.samba.org/).
66 ======================================================================
67 == Our Code, Our Bugs, Our Responsibility.
69 ======================================================================
72 Release notes for older releases follow:
73 ----------------------------------------
75 ==============================
76 Release Notes for Samba 4.12.5
78 ==============================
81 This is the latest stable release of the Samba 4.12 release series.
87 o Jeremy Allison <jra@samba.org>
88 * BUG 14301: Fix smbd panic on force-close share during async io.
89 * BUG 14374: Fix segfault when using SMBC_opendir_ctx() routine for share
90 folder that contains incorrect symbols in any file name.
91 * BUG 14391: Fix DFS links.
93 o Andrew Bartlett <abartlet@samba.org>
94 * BUG 14310: Can't use DNS functionality after a Windows DC has been in
97 o Alexander Bokovoy <ab@samba.org>
98 * BUG 14413: ldapi search to FreeIPA crashes.
100 o Isaac Boukris <iboukris@gmail.com>
101 * BUG 14396: Add net-ads-join dnshostname=fqdn option.
102 * BUG 14406: Fix adding msDS-AdditionalDnsHostName to keytab with Windows DC.
104 o Björn Jacke <bj@sernet.de>
105 * BUG 14386: docs-xml: Update list of posible VFS operations for
108 o Volker Lendecke <vl@samba.org>
109 * BUG 14382: winbindd: Fix a use-after-free when winbind clients exit.
111 o Andreas Schneider <asn@samba.org>
112 * BUG 14370: Client tools are not able to read gencache anymore.
115 #######################################
116 Reporting bugs & Development Discussion
117 #######################################
119 Please discuss this release on the samba-technical mailing list or by
120 joining the #samba-technical IRC channel on irc.freenode.net.
122 If you do report problems then please try to send high quality
123 feedback. If you don't provide vital information to help us track down
124 the problem then you will probably be ignored. All bug reports should
125 be filed under the Samba 4.1 and newer product in the project's Bugzilla
126 database (https://bugzilla.samba.org/).
129 ======================================================================
130 == Our Code, Our Bugs, Our Responsibility.
132 ======================================================================
135 ----------------------------------------------------------------------
138 ==============================
139 Release Notes for Samba 4.12.4
141 ==============================
144 This is a security release in order to address the following defects:
146 o CVE-2020-10730: NULL pointer de-reference and use-after-free in Samba AD DC
147 LDAP Server with ASQ, VLV and paged_results.
148 o CVE-2020-10745: Parsing and packing of NBT and DNS packets can consume
150 o CVE-2020-10760: LDAP Use-after-free in Samba AD DC Global Catalog with
151 paged_results and VLV.
152 o CVE-2020-14303: Empty UDP packet DoS in Samba AD DC nbtd.
160 A client combining the 'ASQ' and 'VLV' LDAP controls can cause a NULL pointer
161 de-reference and further combinations with the LDAP paged_results feature can
162 give a use-after-free in Samba's AD DC LDAP server.
164 o CVE-2020-10745: Parsing and packing of NBT and DNS packets can consume
168 The use of the paged_results or VLV controls against the Global Catalog LDAP
169 server on the AD DC will cause a use-after-free.
172 The AD DC NBT server in Samba 4.0 will enter a CPU spin and not process
173 further requests once it receives an empty (zero-length) UDP packet to
176 For more details, please refer to the security advisories.
182 o Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
183 * BUG 14378: CVE-2020-10745: Invalid DNS or NBT queries containing dots use
184 several seconds of CPU each.
186 o Andrew Bartlett <abartlet@samba.org>
187 * BUG 14364: CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ
189 * BUG 14402: CVE-2020-10760: Fix use-after-free in AD DC Global Catalog LDAP
190 server with paged_result or VLV.
191 * BUG 14417: CVE-2020-14303: Fix endless loop from empty UDP packet sent to
194 o Gary Lockyer <gary@catalyst.net.nz>
195 * BUG 14364: CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ
196 and VLV combined, ldb: Bump version to 2.1.4.
199 #######################################
200 Reporting bugs & Development Discussion
201 #######################################
203 Please discuss this release on the samba-technical mailing list or by
204 joining the #samba-technical IRC channel on irc.freenode.net.
206 If you do report problems then please try to send high quality
207 feedback. If you don't provide vital information to help us track down
208 the problem then you will probably be ignored. All bug reports should
209 be filed under the Samba 4.1 and newer product in the project's Bugzilla
210 database (https://bugzilla.samba.org/).
213 ======================================================================
214 == Our Code, Our Bugs, Our Responsibility.
216 ======================================================================
219 ----------------------------------------------------------------------
222 ==============================
223 Release Notes for Samba 4.12.3
225 ==============================
228 This is the latest stable release of the Samba 4.12 release series.
234 o Jeremy Allison <jra@samba.org>
235 * BUG 14301: Fix smbd panic on force-close share during async io.
236 * BUG 14343: s3: vfs_full_audit: Add missing fcntl entry in vfs_op_names[]
238 * BUG 14361: vfs_io_uring: Fix data corruption with Windows clients.
239 * BUG 14372: Fix smbd crashes when MacOS Catalina connects if iconv
240 initialization fails.
242 o Ralph Boehme <slow@samba.org>
243 * BUG 14150: Exporting from macOS Adobe Illustrator creates multiple copies.
244 * BUG 14256: smbd does a chdir() twice per request.
245 * BUG 14320: smbd mistakenly updates a file's write-time on close.
246 * BUG 14350: vfs_shadow_copy2: implement case canonicalisation in
247 shadow_copy2_get_real_filename().
248 * BUG 14375: Fix Windows 7 clients problem after upgrading samba file server.
250 o Alexander Bokovoy <ab@samba.org>
251 * BUG 14359: s3: Pass DCE RPC handle type to create_policy_hnd.
253 o Isaac Boukris <iboukris@gmail.com>
254 * BUG 14155: Fix uxsuccess test with new MIT krb5 library 1.18.
255 * BUG 14342: mit-kdc: Explicitly reject S4U requests.
257 o Anoop C S <anoopcs@redhat.com>
258 * BUG 14352: dbwrap_watch: Set rec->value_valid while returning nested
259 share_mode_do_locked().
261 o Amit Kumar <amitkuma@redhat.com>
262 * BUG 14345: lib:util: Fix smbclient -l basename dir.
264 o Volker Lendecke <vl@samba.org>
265 * BUG 14336: s3:libads: Fix ads_get_upn().
266 * BUG 14348: ctdb: Fix a memleak.
267 * BUG 14366: Malicous SMB1 server can crash libsmbclient.
269 o Gary Lockyer <gary@catalyst.net.nz>
270 * BUG 14330: ldb: Bump version to 2.1.3, LMDB databases can grow without
273 o Stefan Metzmacher <metze@samba.org>
274 * BUG 14361: vfs_io_uring: Fix data corruption with Windows clients.
276 o Noel Power <noel.power@suse.com>
277 * BUG 14344: s3/librpc/crypto: Fix double free with unresolved credential
280 o Andreas Schneider <asn@samba.org>
281 * BUG 14358: docs-xml: Fix usernames in pam_winbind manpages.
284 #######################################
285 Reporting bugs & Development Discussion
286 #######################################
288 Please discuss this release on the samba-technical mailing list or by
289 joining the #samba-technical IRC channel on irc.freenode.net.
291 If you do report problems then please try to send high quality
292 feedback. If you don't provide vital information to help us track down
293 the problem then you will probably be ignored. All bug reports should
294 be filed under the Samba 4.1 and newer product in the project's Bugzilla
295 database (https://bugzilla.samba.org/).
298 ======================================================================
299 == Our Code, Our Bugs, Our Responsibility.
301 ======================================================================
304 ----------------------------------------------------------------------
307 ==============================
308 Release Notes for Samba 4.12.2
310 ==============================
313 This is a security release in order to address the following defects:
315 o CVE-2020-10700: Use-after-free in Samba AD DC LDAP Server with ASQ
316 o CVE-2020-10704: LDAP Denial of Service (stack overflow) in Samba AD DC
324 A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a
325 use-after-free in Samba's AD DC LDAP server.
327 A deeply nested filter in an un-authenticated LDAP search can exhaust the
328 LDAP server's stack memory causing a SIGSEGV.
330 For more details, please refer to the security advisories.
336 o Andrew Bartlett <abartlet@samba.org>
337 * BUG 14331: CVE-2020-10700: Fix use-after-free in AD DC LDAP server when
338 ASQ and paged_results combined.
340 o Gary Lockyer <gary@catalyst.net.nz>
341 * BUG 20454: CVE-2020-10704: Fix LDAP Denial of Service (stack overflow) in
345 #######################################
346 Reporting bugs & Development Discussion
347 #######################################
349 Please discuss this release on the samba-technical mailing list or by
350 joining the #samba-technical IRC channel on irc.freenode.net.
352 If you do report problems then please try to send high quality
353 feedback. If you don't provide vital information to help us track down
354 the problem then you will probably be ignored. All bug reports should
355 be filed under the Samba 4.1 and newer product in the project's Bugzilla
356 database (https://bugzilla.samba.org/).
359 ======================================================================
360 == Our Code, Our Bugs, Our Responsibility.
362 ======================================================================
365 ----------------------------------------------------------------------
368 ==============================
369 Release Notes for Samba 4.12.1
371 ==============================
374 This is the latest stable release of the Samba 4.12 release series.
380 o Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
381 * BUG 14295: nmblib: Avoid undefined behaviour in handle_name_ptrs().
383 o Björn Baumbach <bb@sernet.de>
384 * BUG 14296: samba-tool group: Handle group names with special chars
387 o Ralph Boehme <slow@samba.org>
388 * BUG 14293: Add missing check for DMAPI offline status in async DOS
390 * BUG 14295: Starting ctdb node that was powered off hard before results in
392 * BUG 14307: smbd: Ignore set NTACL requests which contain S-1-5-88 NFS ACEs.
393 * BUG 14316: vfs_recycle: Prevent flooding the log if we're called on
396 o Günther Deschner <gd@samba.org>
397 * BUG 14313: librpc: Fix IDL for svcctl_ChangeServiceConfigW.
398 * BUG 14327: nsswitch: Fix use-after-free causing segfault in
401 o Art M. Gallagher <repos@artmg.net>
402 * BUG 13622: fruit:time machine max size is broken on arm.
404 o Amitay Isaacs <amitay@gmail.com>
405 * BUG 14294: CTDB recovery corner cases can cause record resurrection and
408 o Noel Power <noel.power@suse.com>
409 * BUG 14332: s3/utils: Fix double free error with smbtree.
411 o Martin Schwenke <martin@meltin.net>
412 * BUG 14294: CTDB recovery corner cases can cause record resurrection and
414 * BUG 14295: Starting ctdb node that was powered off hard before results in
416 * BUG 14324: CTDB recovery daemon can crash due to dereference of NULL
420 #######################################
421 Reporting bugs & Development Discussion
422 #######################################
424 Please discuss this release on the samba-technical mailing list or by
425 joining the #samba-technical IRC channel on irc.freenode.net.
427 If you do report problems then please try to send high quality
428 feedback. If you don't provide vital information to help us track down
429 the problem then you will probably be ignored. All bug reports should
430 be filed under the Samba 4.1 and newer product in the project's Bugzilla
431 database (https://bugzilla.samba.org/).
434 ======================================================================
435 == Our Code, Our Bugs, Our Responsibility.
437 ======================================================================
440 ----------------------------------------------------------------------
443 ==============================
444 Release Notes for Samba 4.12.0
446 ==============================
449 This is the first stable release of the Samba 4.12 release series.
450 Please read the release notes carefully before upgrading.
459 Samba's minimum runtime requirement for python was raised to Python
460 3.4 with samba 4.11. Samba 4.12 raises this minimum version to Python
461 3.5 both to access new features and because this is the oldest version
462 we test with in our CI infrastructure.
464 (Build time support for the file server with Python 2.6 has not
467 Removing in-tree cryptography: GnuTLS 3.4.7 required
468 ----------------------------------------------------
470 Samba is making efforts to remove in-tree cryptographic functionality,
471 and to instead rely on externally maintained libraries. To this end,
472 Samba has chosen GnuTLS as our standard cryptographic provider.
474 Samba now requires GnuTLS 3.4.7 to be installed (including development
475 headers at build time) for all configurations, not just the Samba AD
478 Thanks to this work Samba no longer ships an in-tree DES
479 implementation and on GnuTLS 3.6.5 or later Samba will include no
480 in-tree cryptography other than the MD4 hash and that
481 implemented in our copy of Heimdal.
483 Using GnuTLS for SMB3 encryption you will notice huge performance and copy
484 speed improvements. Tests with the CIFS Kernel client from Linux Kernel 5.3
485 show a 3x speed improvement for writing and a 2.5x speed improvement for reads!
487 NOTE WELL: The use of GnuTLS means that Samba will honour the
488 system-wide 'FIPS mode' (a reference to the US FIPS-140 cryptographic
489 standard) and so will not operate in many still common situations if
490 this system-wide parameter is in effect, as many of our protocols rely
491 on outdated cryptography.
493 A future Samba version will mitigate this to some extent where good
494 cryptography effectively wraps bad cryptography, but for now that above
497 zlib library is now required to build Samba
498 -------------------------------------------
500 Samba no longer includes a local copy of zlib in our source tarball.
501 By removing this we do not need to ship (even where we did not
502 build) the old, broken zip encryption code found there.
504 New Spotlight backend for Elasticsearch
505 ---------------------------------------
507 Support for the macOS specific Spotlight search protocol has been enhanced
508 significantly. Starting with 4.12 Samba supports using Elasticsearch as search
509 backend. Various new parameters have been added to configure this:
511 spotlight backend = noindex | elasticsearch | tracker
512 elasticsearch:address = ADDRESS
513 elasticsearch:port = PORT
514 elasticsearch:use tls = BOOLEAN
515 elasticsearch:index = INDEXNAME
516 elasticsearch:mappings = PATH
517 elasticsearch:max results = NUMBER
519 Samba also ships a Spotlight client command "mdfind" which can be used to search
520 any SMB server that runs the Spotlight RPC service. See the manpage of mdfind
523 Note that when upgrading existing installations that are using the previous
524 default Spotlight backend Gnome Tracker must explicitly set "spotlight backend =
525 tracker" as the new default is "noindex".
527 'net ads kerberos pac save' and 'net eventlog export'
528 -----------------------------------------------------
530 The 'net ads kerberos pac save' and 'net eventlog export' tools will
531 no longer silently overwrite an existing file during data export. If
532 the filename given exits, an error will be shown.
537 A large number of fuzz targets have been added to Samba, and Samba has
538 been registered in Google's oss-fuzz cloud fuzzing service. In
539 particular, we now have good fuzzing coverage of our generated NDR
542 A large number of issues have been found and fixed thanks to this
545 'samba-tool' improvements add contacts as member to groups
546 ----------------------------------------------------------
548 Previously 'samba-tool group addmemers' can just add users, groups and
549 computers as members to groups. But also contacts can be members of
550 groups. Samba 4.12 adds the functionality to add contacts to
551 groups. Since contacts have no sAMAccountName, it's possible that
552 there are more than one contact with the same name in different
553 organizational units. Therefore it's necessary to have an option to
554 handle group members by their DN.
556 To get the DN of an object there is now the "--full-dn" option available
557 for all necessary commands.
559 The MS Windows UI allows to search for specific types of group members
560 when searching for new members for a group. This feature is included
561 here with the new samba-tool group addmembers "--object-type=OBJECTYPE"
562 option. The different types are selected accordingly to the Windows
563 UI. The default samba-toole behaviour shouldn't be changed.
565 Allow filtering by OU or subtree in samba-tool
566 ----------------------------------------------
568 A new "--base-dn" and "--member-base-dn" option is added to relevant
569 samba-tool user, group and ou management commands to allow operation
570 on just one part of the AD tree, such as a single OU.
578 Samba now uses a sentinel value based on utimensat(2) UTIME_OMIT to denote
579 to-be-ignored timestamp variables passed to the SMB_VFS_NTIMES() VFS function.
581 VFS modules can check whether any of the time values inside a struct
582 smb_file_time is to be ignored by calling is_omit_timespec() on the value.
584 'io_uring' vfs module
585 ---------------------
587 The module makes use of the new io_uring infrastructure
588 (intruduced in Linux 5.1), see https://lwn.net/Articles/776703/
590 Currently this implements SMB_VFS_{PREAD,PWRITE,FSYNC}_SEND/RECV
591 and avoids the overhead of the userspace threadpool in the default
592 vfs backend. See also vfs_io_uring(8).
594 In order to build the module you need the liburing userspace library
595 and its developement headers installed, see
596 https://git.kernel.dk/cgit/liburing/
598 At runtime you'll need a Linux kernel with version 5.1 or higher.
599 Note that 5.4.14 and 5.4.15 have a regression that breaks the Samba
600 module! The regression was fixed in Linux 5.4.16 again.
602 MS-DFS changes in the VFS
603 -------------------------
605 This release changes set getting and setting of MS-DFS redirects
606 on the filesystem to go through two new VFS functions:
608 SMB_VFS_CREATE_DFS_PATHAT()
609 SMB_VFS_READ_DFS_PATHAT()
611 instead of smbd explicitly storing MS-DFS redirects inside
612 symbolic links on the filesystem. The underlying default
613 implementations of this has not changed, the redirects are
614 still stored inside symbolic links on the filesystem, but
615 moving the creation and reading of these links into the VFS
616 as first-class functions now allows alternate methods of
617 storing them (maybe in extended attributes) for OEMs who
618 don't want to mis-use filesystem symbolic links in this
625 * The ctdb_mutex_fcntl_helper periodically re-checks the lock file
627 The re-check period is specified using a 2nd argument to this
628 helper. The default re-check period is 5s.
630 If the file no longer exists or the inode number changes then the
631 helper exits. This triggers an election.
637 The smb.conf parameter "write cache size" has been removed.
639 Since the in-memory write caching code was written, our write path has
640 changed significantly. In particular we have gained very flexible
641 support for async I/O, with the new linux io_uring interface in
642 development. The old write cache concept which cached data in main
643 memory followed by a blocking pwrite no longer gives any improvement
644 on modern systems, and may make performance worse on memory-contrained
645 systems, so this functionality should not be enabled in core smbd
648 In addition, it complicated the write code, which is a performance
651 If required for specialist purposes, it can be recreated as a VFS
654 Retiring DES encryption types in Kerberos.
655 ------------------------------------------
656 With this release, support for DES encryption types has been removed from
657 Samba, and setting DES_ONLY flag for an account will cause Kerberos
658 authentication to fail for that account (see RFC-6649).
660 Samba-DC: DES keys no longer saved in DB.
661 -----------------------------------------
662 When a new password is set for an account, Samba DC will store random keys
663 in DB instead of DES keys derived from the password. If the account is being
664 migrated to Windbows or to an older version of Samba in order to use DES keys,
665 the password must be reset to make it work.
667 Heimdal-DC: removal of weak-crypto.
668 -----------------------------------
669 Following removal of DES encryption types from Samba, the embedded Heimdal
670 build has been updated to not compile weak crypto code (HEIM_WEAK_CRYPTO).
672 vfs_netatalk: The netatalk VFS module has been removed.
673 -------------------------------------------------------
675 The netatalk VFS module has been removed. It was unmaintained and is not needed
678 BIND9_FLATFILE deprecated
679 -------------------------
681 The BIND9_FLATFILE DNS backend is deprecated in this release and will
682 be removed in the future. This was only practically useful on a single
683 domain controller or under expert care and supervision.
685 This release removes the 'rndc command' smb.conf parameter, which
686 supported this configuration by writing out a list of DCs permitted to
687 make changes to the DNS Zone and nudging the 'named' server if a new
688 DC was added to the domain. Administrators using BIND9_FLATFILE will
689 need to maintain this manually from now on.
695 Parameter Name Description Default
696 -------------- ----------- -------
698 elasticsearch:address New localhost
699 elasticsearch:port New 9200
700 elasticsearch:use tls New No
701 elasticsearch:index New _all
702 elasticsearch:mappings New DATADIR/elasticsearch_mappings.json
703 elasticsearch:max results New 100
704 nfs4:acedup Changed default merge
706 write cache size Removed
707 spotlight backend New noindex
710 CHANGES SINCE 4.12.0rc4
711 =======================
713 o Andrew Bartlett <abartlet@samba.org>
714 * BUG 14258: dsdb: Correctly handle memory in objectclass_attrs.
717 CHANGES SINCE 4.12.0rc3
718 =======================
720 o Jeremy Allison <jra@samba.org>
721 * BUG 14269: s3: DFS: Don't allow link deletion on a read-only share.
723 o Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
724 * BUG 14284: pidl/wscript: configure should insist on Parse::Yapp::Driver.
726 o Andrew Bartlett <abartlet@samba.org>
727 * BUG 14270: ldb: Fix search with scope ONE and small result sets.
728 * BUG 14284: build: Do not check if system perl modules should be bundled.
730 o Volker Lendecke <vl@samba.org>
731 * BUG 14285: smbd fails to handle EINTR from open(2) properly.
733 o Stefan Metzmacher <metze@samba.org>
734 * BUG 14270: ldb: version 2.1.1.
737 CHANGES SINCE 4.12.0rc2
738 =======================
740 o Jeremy Allison <jra@samba.org>
741 * BUG 14282: Set getting and setting of MS-DFS redirects on the filesystem
742 to go through two new VFS functions SMB_VFS_CREATE_DFS_PATHAT() and
743 SMB_VFS_READ_DFS_PATHAT().
745 o Andrew Bartlett <abartlet@samba.org>
746 * BUG 14255: bootstrap: Remove un-used dependency python3-crypto.
748 o Volker Lendecke <vl@samba.org>
749 * BUG 14247: Fix CID 1458418 and 1458420.
750 * BUG 14281: lib: Fix a shutdown crash with "clustering = yes".
752 o Stefan Metzmacher <metze@samba.org>
753 * BUG 14247: Winbind member (source3) fails local SAM auth with empty domain
755 * BUG 14265: winbindd: Handle missing idmap in getgrgid().
756 * BUG 14271: Don't use forward declaration for GnuTLS typedefs.
757 * BUG 14280: Add io_uring vfs module.
759 o Andreas Schneider <asn@samba.org>
760 * BUG 14250: libcli:smb: Improve check for gnutls_aead_cipher_(en|de)cryptv2.
763 CHANGES SINCE 4.12.0rc1
764 =======================
766 o Jeremy Allison <jra@samba.org>
767 * BUG 14239: s3: lib: nmblib. Clean up and harden nmb packet processing.
769 o Andreas Schneider <asn@samba.org>
770 * BUG 14253: lib:util: Log mkdir error on correct debug levels.
776 https://wiki.samba.org/index.php/Release_Planning_for_Samba_4.12#Release_blocking_bugs
779 #######################################
780 Reporting bugs & Development Discussion
781 #######################################
783 Please discuss this release on the samba-technical mailing list or by
784 joining the #samba-technical IRC channel on irc.freenode.net.
786 If you do report problems then please try to send high quality
787 feedback. If you don't provide vital information to help us track down
788 the problem then you will probably be ignored. All bug reports should
789 be filed under the Samba 4.1 and newer product in the project's Bugzilla
790 database (https://bugzilla.samba.org/).
793 ======================================================================
794 == Our Code, Our Bugs, Our Responsibility.
796 ======================================================================