Remove support for Samba 4.2 and 4.3, they are unsupported upstream.

net/samba43: Mark 4.2 and 4.3 deprecated

 - Add deprecation date and message
 - Update/simplify conflicts

PR:		219514
Approved by:	timur (maintainer)
MFH:		2017Q2
Security:	6f4d96c0-4062-11e7-b291-b499baebfeaf

Add devel/p5-Parse-Pidl44, based on samba44 sources to allow building
net/samba{42,43,44}

- Add USES=samba to handle dependency on samba
  Valid ARGS:  build, env, lib, run (default: build,run)
- Add SAMBA_DEFAULT to bsd.default-versions.mk (default: 4.3)
- Remove obsolete samba36 ports
- Modify samba4x ports to install libsmbclient
- Convert the ports tree to USES=samba

Reviewed by:	mat
Differential Revision:	https://reviews.freebsd.org/D8919

Remove WANT_OPENLDAP_SASL from a few ports as it prevents users from easily
installing a desktop environment and samba.
WANT_OPENLDAP_SASL must not be used in invidual ports Makefiles.
Note: there is a wip to rewrite the handling of openldap in ports

With hat:	portmgr
Reviewed by:	mat
MFH:		2017Q1
Differential Revision:	https://reviews.freebsd.org/D9083

Fix packaging with DEVELOPER knob off.

* Upgrade net/samba43 and net/samba44 to address multiple vulnerabilities
* Switch port to use net/openldap24-sasl-client as some authorization methods
don't work with plain openldap24-client.
* Changed namespace used by vfs_fruit to be compatiable with net/netatalk3.
* Removed old DNS crypto patch, as it SEEMS it was superseded by recent code
changes. Please, notify me if you see that internal DNS
doesn't handle signed requests properly anymore.

Security:	CVE-2016-2123
		CVE-2016-2125
		CVE-2016-2126

Do not redefine DEBUG_DESC when its meaning more or less matches the default
option description.  Those ports where it meant something more specific were
left untouched.

${RM} already has -f.

PR:		213570
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	Absolight

Cleanup $() variables in ports Makefiles.

Mostly replace with ${}, but sometime, replace with $$() because it is
what was intended in the first place. (I think.)

Sponsored by:	Absolight

Fixed missed Python module requirement :(

Update Samba 4.2, 4.3 and 4.4 to the lates version to address CVE-2016-2119
(Client side SMB2/3 required signing can be downgraded).

Security:	CVE-2016-2119

Update samba42 and samba43 to the latest versions. A lot of fixes are made to
fix the fixes in the previous security fixes :)

* BUG 11841: Fix NT_STATUS_ACCESS_DENIED when accessing Windows
  public share.
* BUG 11847: Only validate MIC if "map to guest" is not being used.
* BUG 11849: auth/ntlmssp: Add ntlmssp_{client,server}:force_old_spnego
  option for testing.
* BUG 11850: NetAPP SMB servers don't negotiate NTLMSSP_SIGN.
* BUG 11858: Allow anonymous smb connections.
* BUG 11870: Fix ads_sasl_spnego_gensec_bind(KRB5).
* BUG 11872: Fix 'wbinfo -u' and 'net ads search'.

Fixed problem with the undeclared clearenv() that broke the build.
Applied additional patches to fix problem with talloc 2.1.6 and failed
provisioning, thanks to Andrey Kramarenko for pointing me to the patches and
support.

PR:		208767
		208767

Update Samba ports to versions 4.2.11 and 4.3.8 respectivelly, to address
BadLock vulnerability(http://badlock.org).

Security:	CVE-2016-2118

Remove ${PORTSDIR}/ from dependencies, categories m, n, o, and p.

With hat:	portmgr
Sponsored by:	Absolight

- Update security/gnutls to 3.4.10.
- Rename the LIBDANE option DANE because that's the name of the protocol
  supported by libgnutls-dane and gnutls-cli.  Also clarify the option
  description.
- Add an IDN option.
- libgnutls-openssl has been removed in 3.4.  Some ports used this library
  in their LIB_DEPENDS but no port actually required it.
- Some old API functions have been removed.  Ports that used these have been
  updated or patched to use the new API.
- Add a patch to print/cups to prevent overlinking of libgnutls.so.
- Bump PORTREVISION on dependent ports.

net-im/jabber: This port used the old API to give users fine grained
control over which crypto algorithms were used via a configuration file.
It's not immediately obvious how to port this to the new API so the port
always uses the defaults now.

www/hydra: Mark BROKEN.  This uses more removed calls than the other ports,
is said to be alpha quality and not fully functional and has been abandoned
10 years ago.

PR:		207768
Exp-run by:	antoine
Approved by:	portmgr (antoine)

Combine print/cups-base, print/cups-client and print/cups-image into
print/cups and update it to 2.1.3.  Also remove print/cups-pstoraster,
improve print/cups-filters, print/foomatic-* and update print/hplip to
3.16.2.

Long description:

First some background.  When you hand a file to cups it sets up a chain of
filter programs that converts the file to something a printer understands.
Each filter has a cost associated with it and cups tries to find the
cheapest chain.  Costs used to be configured in such a way that files were
first converted to PostScript.  This could then be manipulated further (e.g.
putting multiple pages on one sheet) before finally being sent to a
PostScript printer or another filter like pstoraster which produces a raster
format understood by non-PostScript printer drivers.  Nowadays most filters

A security fix release of Samba 4.1, 4.2 and 4.3. Samba 4.1 is also marked as
deprecated.

Security:	CVE-2015-3223
		CVE-2015-5252
		CVE-2015-5299
		CVE-2015-5296
		CVE-2015-8467
		CVE-2015-5330

A new version 4.3.1 of Samba suite. Handle with care.