Remove expired ports:

2010-09-01 net/samba3: Unsupported by the upstream. Please, consider to upgrade.
2010-09-01 net/samba32: Unsupported by the upstream. Please, consider to
upgrade.
2010-09-01 net/samba33: Unsupported by the upstream. Please, consider to
upgrade.

Punt autoconf267->autoconf268

Make samba* work with autoconf-2.67 on 6.x

I'm not entirely sure why it compiles on 7.x/8.x, but nevertheless, the
autoconf-specific parts to these patches absolutely need to go upstream.

Autotools update.   Read ports/UPDATING 20100915 for details.

Approved by:    portmgr (for Mk/bsd.port.mk part)
Tested by:      Multiple -exp runs

Security:       CVE-2010-2063
Feature safe:   yes
Address CVE-2010-2063

Mark as broken on ia64.

Hat:            portmgr

Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#

-CVE-2009-2813: Misconfigured /etc/passwd file may share folders unexpectedly
-CVE-2009-2948: Information disclosure by setuid mount.cifs
-CVE-2009-2906: Remote DoS against smbd on authenticated connections

Security:       CVE-2009-2813, CVE-2009-2948, CVE-2009-2906

Bump port version to Samba 3.0.36

Please note, that the 3.0 series will be DISCONTINUED after this release!

Major enhancements included in Samba 3.0.36 are:

 o Fix Winbind crash on 'getent group' (bug #5906).
 o Excel save operation corrupts file ACLs (bug #4308).
 o Prevent segmentation fault on joining a very long domain name.

Fix CONFLICTS

Security update to the latest version 3.0.35.

Security:       CVE-2009-1888

Upgrade port to the 3.0.34 version. Major enhancements included in Samba:

  o Fix update of machine account passwords.
  o Fix SMB signing issue on Windows Vista with MS Hotfix KB955302.
  o Fix Winbind crashes.
  o Correctly detect if the current dc is the closest one.
  o Add saf_join_store() function to memorize the dc used at join time.
    This avoids problems caused by replication delays shortly after domain
    joins.
  o Fix write list in setups using "security = share".

- Remove conditional checks for FreeBSD 5.x and older

Bump PORTREVISION's after OpenLDAP update.

Suggested by:   rafan

- Fix potential leakage of arbitrary memory contents
- Bump PORTREVISION

PR:             based on 129239
Submitted by:   Eygene Ryabinkin <rea-fbsd@codelabs.ru>
Approved by:    maintainer (timeout, security issue, 2 days), secteam (myself)
Obtained from:  samba git
Security:      
http://www.vuxml.org/freebsd/1583640d-be20-11dd-a578-0030843d3802.html
                http://www.samba.org/samba/security/CVE-2008-4314.html

I was too quick to drop off a hack, that masks "25 years old BSD bug" in
Samba. So, here is small patch that will let people with legacy libc to
run Samba. Funny enough, 6.4 and 7.1 are not going to be affected, but
patch will go into the release CDs...

Update port to the 3.0.32 release. Visible changes are:

 o Prevent crash bug in Winbind caused by a race condition
   when a child process becomes unresponsive.
 o Fix interactive password prompting in the "net" command.
 o Documentation clarifications and typographical fixes.

Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk

Conversion from (now defunct) autoconf-2.61 to autoconf-2.62

Tested by:      exp build run (erwin)

Got rid of != construction to make Kris happier :)

Rearranged Makefile to work better with new slave ports.

Fixed broken pkg_plist.

Update net/samba3 to the 3.0.31 version.

o Correct issues with running Winbind runing on a Samba PDC.
o Problems with trusted Windows 2008 domains.
o Difficulty joining an NT4 or Windows 2000 AD domain.

Fix NFS quota handling

Update net/samba3 to the 3.0.30. Problems, addressed in this version:

  o Problems following domain trusts on a Samba DC.
  o SMB Signing errors.
  o Interoperability issues with Windows 2008 domains.

Approved by:    shaun (mentor, implicit)

Bump portrevision due to upgrade of devel/gettext.

The affected ports are the ones with gettext as a run-dependency
according to ports/INDEX-7 (5007 of them) and the ones with USE_GETTEXT
in Makefile (29 of them).

PR:             ports/124340
Submitted by:   edwin@
Approved by:    portmgr (pav)

This is a security update of Samba 3.0.28a, that address CVE-2008-1105.

Approved by:    shaun (mentor, implicit)
Security:       CVE-2008-1105

Update port to the 3.0.28a revision.

Major changes:

  o Failure to join Windows 2008 domains
  o Windows Vista (including SP1 RC) interop issues

Approved by:    shaun (mentor, implicit)

Samba 3.0.28 is a security release to address CVE-2007-6015.

Approved by:            portmgr (marcus)

Update the forbidden reference to the VuXML entry I just created.

Hat:    secteam

Make Samba forbidden till Timur had the time to upgrade this, because
samba appears to be vulnerable to remote code execution which could harm
our users.

This will be removed after we have a safe version to which we can upgrade.

Hat:                                    secteam
Discussed with and requested by:        timur

- Fix 2 Security bugs

 o CVS-2007-4572
     Stack buffer overflow in nmbd's logon request processing.

 o CVE-2007-5398
     Remote code execution in Samba's WINS server daemon (nmbd)
     when processing name registration followed name query requests.
- Bump PORTREVISION

Approved by:    portmgr (erwin), maintainer
Security:      
http://www.vuxml.org/freebsd/a63b15f9-97ff-11dc-9e48-0016179b2dd5.html

Remove support for OSVERSION < 5

Switch autoconf dependencies from 2.53 or 2.59 to 2.61.

PR:             ports/116639
Submitted by:   aDe

This is a cummulative update of net/samba3 from version 3.0.25a to
3.0.26a. Detailed list of all the changes can be found:

  http://www.samba.org/samba/history/samba-3.0.26a.html

Changes are:
o Memory leaks in Winbind's IDMap manager.
o CVE-2007-4138 - Incorrect primary group assignment for domain
  users using the rfc2307 or sfu winbind nss info plugin.
o File sharing with Widows 9x clients.
o Winbind running out of file descriptors due to stalled child
  processes.
o MS-DFS inter-operability issues.
o Offline caching of files with Windows XP/Vista clients.
o Improper cleanup of expired or invalid byte range locks on files.
o Crashes is idmap_ldap and idmap_rid.

Approved by:    shaun (mentor)

- Remove the DESTDIR modifications from individual ports as we have a new,
  fully chrooted DESTDIR, which does not need such any more.

Sponsored by:   Google Summer of Code 2007
Approved by:    portmgr (pav)

Bump PORTREVISION for a few apps due to gnutls update.

- Update to 3.0.25a.

Major bug fixes included in Samba 3.0.25a are:

  o Missing supplementary Unix group membership when using "force
    group".
  o Premature expiration of domain user passwords when using a
    Samba domain controller.
  o Failure to open the Windows object picker against a server
    configured to use "security = domain".
  * Authentication failures when using security = server.

Plus additional local fixes.

PR:             ports/113358
Submitted by:   maintainer

An update of net/samba3 to the 3.0.25 version plus security fixes.

Major features included in the 3.0.25 code base are:

  o Significant improvements in the winbind off-line logon support.
  o Support for secure DDNS updates as part of the 'net ads join'
    process.
  o Rewritten IdMap interface which allows for TTL based caching and
    per domain backends.
  o New plug-in interface for the "winbind nss info" parameter.
  o New file change notify subsystem which is able to make use of
    inotify on Linux.
  o Support for passing Windows security descriptors to a VFS
    plug-in allowing for multiple Unix ACL implements to running
    side by side on the Same server.

- Update to 3.0.24
   This release contains fixes for the following security advisories:
   o CVE-2007-0452 (Potential Denial of Service bug in smbd)
   o CVE-2007-0453 (Buffer overrun in NSS host lookup Winbind
     NSS library on Solaris)
   o CVE-2007-0454 (Format string bug in afsacl.so VFS plugin)

- Improve RC-file.

PR:             ports/108803
Submitted by:   maintainer

- Update to 3.0.23d
- Reset PORTREVISION in net/samba-nmblookup
- Add samba3 entry in UPDATING

PR:             105857
Submitted by:   maintainer

Fix a bug introduced by a previous patch, whereby pam_winbind.so would
fail to load correctly.

PR:             ports/104269
Submitted by:   Dominic Marks <dom@helenmarks.co.uk>
Approved by:    portmgr (erwin)

- Fix two bugs in the current samba 3.0.23c code, which stopped testparm
  and winbindd from working. [1]

- Fix rc.d script variable checks. [2]

PR:             ports/104200 [1], ports/103799 [2]
Submitted by:   Timur I. Bakeyev <timur@gnu.org> (maintainer) [1],
                Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> [2]

- Maintainer reports: [1]

  After recent release of Samba 3.0.23c and corresponding version of
  port several problems with it were reported back by the users.

  - Fix for the broken OPTIONS menu due overlong line. That addresses PR
    ports/103158 and ports/102980
  - Fix build on FreeBSD 7. PR ports/102919.
  - Several fixes to the rc.d/samba script, as well as a new code.
    Should handle 'restart' properly now.
  - Remove enforcement of a daemon shutdown during deinstallation due
    several requests.
  - SAMBA_PRIVATEDIR can now be redefined.

- Warn the user if FAM_SUPPORT is enabled contrary to the selected
  OPTIONS. [2]

PR:             ports/103170 [1] ports/103276 [2]
Submitted by:   Timur I. Bakeyev <timur@gnu.org> (mainainer) [1],
                Scot Hetzel <swhetzel@gmail.com> [2]
Approved by:    maintainer [2]

*** net/samba3:
- Update to 3.0.23c

Common bugs fixed in 3.0.23c include: [1]

  o Authentication failures in pam_winbind when the AD domain
    policy is set to not expire passwords.
  o Authorization failures when using smb.conf options such
    as "valid users" with the smbpasswd passdb backend.

*** net/samba-libsmbclient: [2]
- Small cosmetic changes

*** net/py-samba: [3]
- Reset PORTREVISION back, as master port version bumped

PR:             ports/102805 [1]
                ports/102806 [2]
                ports/102807 [3]
Submitted by:   Timur I. Bakeyev <timur@gnu.org> (maintainer)

- Update to 3.0.23b

Common bugs fixed in 3.0.23b include:

  o Ambiguity with unqualified names in smb.conf parameters
    such as "force user" and "valid users".
  o Errors in 'net ads join' caused by bad IP address in the list
    of domain controllers.
  o SMB signing errors in the client and server code.
  o Domain join failures when using smbpasswd on a Samba PDC.

Common bugs fixed in 3.0.23a include:

  o Failure to strip the domain name from groups when 'winbind
    use default domain = yes'

- Upgrade to 3.0.23 (including security fix).

   o Improved 'make test'
   o New offline mode in winbindd.
   o New Kerberos support for pam_winbind.so.
   o New handling of unmapped users and groups.
   o New non-root share management tools.
   o Improved support for local and BUILTIN groups.
   o Winbind IDMAP integration with RFC2307 schema objects supported
     by Windows 2003 R2.
   o Rewritten 'net ads join' to mimic Windows XP without requiring
     administrative rights to join a domain.

PR:             ports/100100
Submitted by:   maintainer

- Update to 3.0.22

PR:             95325
Submitted by:   maintainer
Security:       http://us5.samba.org/samba/security/CAN-2006-1059.html,
CVE-2006-1059

Fix build of the slave port net/samba-libsmbclient in the case
where WRKDIRPREFIX is set.

PR:             93626
Submitted by:   NIIMI Satoshi <sa2c@sa2c.net>
Approved by:    maintainer

Update to 3.0.21b
- Server crashes in smbd.
- Compile issues on 64-bit platforms.
- Crash bugs on big-endian systems.
- Over 30 bugzilla reports closed.

PR:             93552
Submitted by:   maintainer

- Update to 3.0.21a

Common bugs fixed in 3.0.21 include:

  o Missing groups in a user's token when logging in via kerberos
  o Incompatibilities with newer MS Windows hotfixes and
    embedded OS platforms
  o Portability and crash bugs.
  o Performance issues in winbindd.

New features introduced in Samba 3.0.21 include:

  o Complete NTLMv2 support by consolidating authentication
    mechanism used at the CIFS and RPC layers.
  o The capability to manage Unix services using the Win32

Mass-conversion to the USE_AUTOTOOLS New World Order.  The code present
in bsd.autotools.mk essentially makes this a no-op given that all the
old variables set a USE_AUTOTOOLS_COMPAT variable, which is parsed in
exactly the same way as USE_AUTOTOOLS itself.

Moreover, USE_AUTOTOOLS has already been extensively tested by the GNOME
team -- all GNOME 2.12.x ports use it.

Preliminary documentation can be found at:
        http://people.FreeBSD.org/~ade/autotools.txt

which is in the process of being SGMLized before introduction into the
Porters Handbook.

Light blue touch-paper.  Run.

- Update to 3.0.20b

Changes:
 o A crash bug in winbindd
 o Reporting files as read-only instead of returning the
    correct error code of "access denied"
 o File system quota support defects
 o Stability problems with winbindd.
 o Crash bugs caused by incompatibilities on 64-bit systems.
 o User Manager interoperability problems.

PR:             ports/87517
Submitted by:   maintainer

Update to 3.0.20.
Additional features introduced in Samba 3.0.20 include:

  o Support for several new Win32 rpc pipes.
  o Improved support for OS/2 clients.
  o New 'net rpc service' tool for managing Win32 services.
  o Capability to set the owner on new files and directory
    based on the parent's ownership.
  o Experimental, asynchronous IO file serving support.
  o Completed Support for Microsoft Print Migrator.
  o New Winbind IDmap plugin (ad) for retrieving uid and gid
    from AD servers which maintain the SFU user and group
    attributes.
  o Rewritten support for POSIX pathnames when utilizing
    the Linux CIFS fs client.
  o New asynchronous winbindd.
  o Support for Microsoft Print Migrator.
  o New Windows NT registry file I/O library.
  o New user right (SeTakeOwnershipPrivilege) added.
  o New "net share migrate" options.

PR:             85276
Submitted by:   Timur I. Bakeyev (maintainer)
Approved by:    perky (mentor)

- Unbreak net/samba3 and japanese/samba3 on 7-current.
- Portability changes for 4.x.

Submitted by:   maintainer

- Turn off ADS in samba-libsmbclient when PACKAGE_BUILDING. Proper fix will
  be conjured by maintainer later.

Reported by:    krismail

- Update to 3.0.14a

PR:             ports/80029
Submitted by:   Timur I. Bakeyev <timur@gnu.org> (maintainer)

At Kris's request, back out the MACHINE_ARCH spelling correction until
after 5.4-RELEASE.

Assist getting more ports working on AMD64 by obeying the
Ports Collection documentation and use 'ARCH' rather than 'MACHINE_ARCH'.

Fix a bug that breaks copy/delete of files from Win98 Explorer.

Bugzilla:       https://bugzilla.samba.org/show_bug.cgi?id=2501
Approved by:    portmgr (krion)

Update to version 3.0.12.

Currently, ADS support is off for the package builds, as it creates
dependency problems with Kerberos5.  Also, an experimental support
for extended attributes is included.

PR:             ports/79037
Submitted by:   maintainer

Update to 3.0.11.

PR:             ports/77187
Submitted by:   maintainer

Split the postgresql ports into a server and a client part.

All ports depending on postgresql shall use the USE_PGSQL=yes knob
defined in Mk/bsd.ports.mk. Bumping portrevisions where needed.

PR:             75344
Approved by:    portmgr@ (kris), ade & sean (mentors)

Re-word a warning message. Fix a spelling error[1] and bring to
active tense.

Submitted by:   Timothy Luoma <tim@tnluoma.com>

- Update to 3.0.10

PR:             ports/75168
Submitted by:   Joerg Pulz <Joerg.Pulz(at)frm2.tum.de>
Reworked by:    maintainer

Update to 3.0.9

o Problem updating roaming user profiles.
o Crash in smbd when printing from a Windows 9x client.
o Unresolved symbols in libsmbclient which caused
  applications such as KDE's konqueror to fail when
  accessing smb:// URLs.

PR:             ports/74223
Submitted by:   maintainer

- Update to 3.0.8
  o Fix for CAN-2004-0930 -- smbd remote DoS vulnerability.

PR:             ports/73701
Submitted by:   Timur Bakeyev <timur@gnu.org> (maintainer)

- Resurrect I18N option again with renaming as WITH_MULTIBYTE.

Approved by:    maintainer

Remove files accidently not removed from previous commit.

Approved by:    portmgr

Update to fix recently announced security vulnerability (DoS issues).

PR:             71704
Submitted by:   Timur Bakeyev <timur@gnu.org>
Approved by:    portmgr (marcus)

Add a patch to fix compilation of quota support on 4-STABLE.

Submitted by: Mario Ferreira <lioux@FreeBSD.org>

Update to 3.0.6.

Submitted by: maintainer

Make fetchable.

Submitted by: maintainer

Update to 3.0.5.

Submitted by:   MAINTAINER

 Here I attach the patch that fixes mentioned 3 problems as well as few others:

 * BUG 1315 - wbinfo -t unsuccessful on 3.0.4
 * BUG 1319 - Cannot write to a share with write-list users
 * BUG 1345 - Macromedia Homesite cannot connect anymore after upgrade to 3.0.4

 * Patch from Rudolf Cejka <cejkar@fit.vutbr.cz> - rpcclient does not recognize
     parameters in -c <command> correctly.

 * Patch from Joerg Pulz <Joerg.Pulz@frm2.tum.de> - fixes to samba.sh startup
script.

PR:             ports/67865
Submitted by:   edwin@mavetju.org,Rudolf Cejka <cejkar@fit.vutbr.cz>,Joerg Pulz
<Joerg.Pulz@frm2.tum.de>
Approved by:    maintainer