Update to Samba 4.13.9

Guenther
2021-05-11 12:43:03 +02:00 · 2021-05-11 12:43:03 +02:00 · 0bbffd4f99
parent 4ccc117a9d
commit 0bbffd4f99
4 changed files with 8 additions and 161 deletions
--- a/.gitignore
+++ b/.gitignore
@ -239,3 +239,5 @@ samba-3.6.0pre1.tar.gz
 /samba-4.13.7.tar.asc
 /samba-4.13.8.tar.xz
 /samba-4.13.8.tar.asc
+/samba-4.13.9.tar.xz
+/samba-4.13.9.tar.asc
--- a/samba-bz14675-fix.patch
+++ b/samba-bz14675-fix.patch
@ -1,157 +0,0 @@
-From 75a66ce1da41c5b081771b2db55c2994d378d882 Mon Sep 17 00:00:00 2001
-From: Ralph Boehme <slow@samba.org>
-Date: Tue, 23 Mar 2021 11:40:21 +0100
-Subject: [PATCH 1/3] pidl: set the per-request memory context in the pidl
- generator
-
-The talloc memory context referenced by the pipe_struct mem_ctx member is used
-as talloc parent for RPC response data by the RPC service implementations.
-
-In Samba versions up to 4.10 all talloc children of p->mem_ctx were freed after
-a RPC response was delivered by calling talloc_free_children(p->mem_ctx). Commit
-60fa8e255254d38e9443bf96f2c0f31430be6ab8 removed this call which resulted in all
-memory allocations on this context not getting released, which can consume
-significant memory in long running RPC connections.
-
-Instead of putting the talloc_free_children(p->mem_ctx) back, just use the
-mem_ctx argument of the ${pipename}_op_dispatch_internal() function which is a
-dcesrv_call_state object created by dcesrv_process_ncacn_packet() and released
-by the RPC server when the RPC request processing is finished.
-
-BUG: https://bugzilla.samba.org/show_bug.cgi?id=14675
-CI: https://gitlab.com/samba-team/samba/-/merge_requests/1861
-
-Signed-off-by: Ralph Boehme <slow@samba.org>
-Reviewed-by: Volker Lendecke <vl@samba.org>
-(cherry picked from commit 4c3fb2a5912966a61e7ebdb05eb3231a0e1d6033)
---
- pidl/lib/Parse/Pidl/Samba4/NDR/ServerCompat.pm | 2 ++
- source3/rpc_server/rpc_handles.c               | 6 ------
- 2 files changed, 2 insertions(+), 6 deletions(-)
-
-diff --git a/pidl/lib/Parse/Pidl/Samba4/NDR/ServerCompat.pm b/pidl/lib/Parse/Pidl/Samba4/NDR/ServerCompat.pm
-index 54feea0a9ef..d1368c3dbca 100644
--- a/pidl/lib/Parse/Pidl/Samba4/NDR/ServerCompat.pm
-+++ b/pidl/lib/Parse/Pidl/Samba4/NDR/ServerCompat.pm
-@@ -299,6 +299,7 @@ sub boilerplate_iface($)
- 	$self->pidl("/* Update pipes struct opnum */");
- 	$self->pidl("p->opnum = opnum;");
- 	$self->pidl("p->dce_call = dce_call;");
-+	$self->pidl("p->mem_ctx = mem_ctx;");
- 	$self->pidl("/* Update pipes struct session info */");
- 	$self->pidl("pipe_session_info = p->session_info;");
- 	$self->pidl("p->session_info = dce_call->auth_state->session_info;");
-@@ -344,6 +345,7 @@ sub boilerplate_iface($)
- 	$self->pidl("");
- 
- 	$self->pidl("p->dce_call = NULL;");
-+	$self->pidl("p->mem_ctx = NULL;");
- 	$self->pidl("/* Restore session info */");
- 	$self->pidl("p->session_info = pipe_session_info;");
- 	$self->pidl("p->auth.auth_type = 0;");
-diff --git a/source3/rpc_server/rpc_handles.c b/source3/rpc_server/rpc_handles.c
-index 45968746440..9ef93231466 100644
--- a/source3/rpc_server/rpc_handles.c
-+++ b/source3/rpc_server/rpc_handles.c
-@@ -60,12 +60,6 @@ int make_base_pipes_struct(TALLOC_CTX *mem_ctx,
- 		return ENOMEM;
- 	}
- 
-	p->mem_ctx = talloc_named(p, 0, "pipe %s %p", pipe_name, p);
-	if (!p->mem_ctx) {
-		talloc_free(p);
-		return ENOMEM;
-	}
-
- 	p->msg_ctx = msg_ctx;
- 	p->transport = transport;
- 
-- 
-2.30.2
-
-
-From 33a7749f7fc5c58752815789d086d696a20878e7 Mon Sep 17 00:00:00 2001
-From: Ralph Boehme <slow@samba.org>
-Date: Mon, 22 Mar 2021 12:06:39 +0100
-Subject: [PATCH 2/3] spools: avoid leaking memory into the callers mem_ctx
-
-BUG: https://bugzilla.samba.org/show_bug.cgi?id=14675
-CI: https://gitlab.com/samba-team/samba/-/merge_requests/1861
-
-Signed-off-by: Ralph Boehme <slow@samba.org>
-Reviewed-by: Volker Lendecke <vl@samba.org>
-(cherry picked from commit 481176ec745c14b78fca68e01a61c83405a4b97b)
---
- source3/rpc_server/spoolss/srv_spoolss_nt.c | 6 ++++--
- 1 file changed, 4 insertions(+), 2 deletions(-)
-
-diff --git a/source3/rpc_server/spoolss/srv_spoolss_nt.c b/source3/rpc_server/spoolss/srv_spoolss_nt.c
-index d20c19d5271..24ea7367ec8 100644
--- a/source3/rpc_server/spoolss/srv_spoolss_nt.c
-+++ b/source3/rpc_server/spoolss/srv_spoolss_nt.c
-@@ -5731,7 +5731,8 @@ static WERROR construct_printer_driver_info_level(TALLOC_CTX *mem_ctx,
- 	}
- 
- 	if (pinfo2->drivername == NULL || pinfo2->drivername[0] == '\0') {
-		return WERR_UNKNOWN_PRINTER_DRIVER;
-+		result = WERR_UNKNOWN_PRINTER_DRIVER;
-+		goto done;
- 	}
- 
- 	DBG_INFO("Construct printer driver [%s] for [%s]\n",
-@@ -7023,7 +7024,8 @@ static WERROR update_printer(struct pipes_struct *p,
- 		raddr = tsocket_address_inet_addr_string(p->remote_address,
- 							 p->mem_ctx);
- 		if (raddr == NULL) {
-			return WERR_NOT_ENOUGH_MEMORY;
-+			result = WERR_NOT_ENOUGH_MEMORY;
-+			goto done;
- 		}
- 
- 		/* add_printer_hook() will call reload_services() */
-- 
-2.30.2
-
-
-From 602290d48d3bc49acca64a089822f26da293ee1e Mon Sep 17 00:00:00 2001
-From: Volker Lendecke <vl@samba.org>
-Date: Tue, 23 Mar 2021 17:06:15 +0100
-Subject: [PATCH 3/3] rpc_server3: Fix a memleak for internal pipes
-MIME-Version: 1.0
-Content-Type: text/plain; charset=UTF-8
-Content-Transfer-Encoding: 8bit
-
-state->call should not be talloc'ed off a long-lived context
-
-BUG: https://bugzilla.samba.org/show_bug.cgi?id=14675
-CI: https://gitlab.com/samba-team/samba/-/merge_requests/1861
-RN: Memory leak in the RPC server
-
-Signed-off-by: Volker Lendecke <vl@samba.org>
-Reviewed-by: Samuel Cabrero <scabrero@samba.org>
-Reviewed-by: Ralph Boehme <slow@samba.org>
-
-Autobuild-User(master): Ralph Böhme <slow@samba.org>
-Autobuild-Date(master): Wed Mar 31 12:14:01 UTC 2021 on sn-devel-184
-
-(cherry picked from commit 12f516e4680753460e7fe8811e6c6ff70057580c)
---
- source3/rpc_server/rpc_ncacn_np.c | 2 +-
- 1 file changed, 1 insertion(+), 1 deletion(-)
-
-diff --git a/source3/rpc_server/rpc_ncacn_np.c b/source3/rpc_server/rpc_ncacn_np.c
-index 9ba271c2479..494b002e714 100644
--- a/source3/rpc_server/rpc_ncacn_np.c
-+++ b/source3/rpc_server/rpc_ncacn_np.c
-@@ -476,7 +476,7 @@ static struct tevent_req *rpcint_bh_raw_call_send(TALLOC_CTX *mem_ctx,
- 		return tevent_req_post(req, ev);
- 	}
- 
-	state->call = talloc_zero(hs->conn, struct dcesrv_call_state);
-+	state->call = talloc_zero(state, struct dcesrv_call_state);
- 	if (tevent_req_nomem(state->call, req)) {
- 		return tevent_req_post(req, ev);
- 	}
-- 
-2.30.2
-
--- a/samba.spec
+++ b/samba.spec
@ -10,7 +10,7 @@

 %define main_release 0

-%define samba_version 4.13.8
+%define samba_version 4.13.9
 %define talloc_version 2.3.1
 %define tdb_version 1.4.3
 %define tevent_version 0.10.2
@ -136,7 +136,6 @@ Patch1:         samba-s4u.patch
 #
 # Generate the patchset using: git format-patch -l1 --stdout -N > samba-4.13-redhat.patch
 Patch2:         samba-4.13-redhat.patch
-Patch3:         samba-bz14675-fix.patch

 Requires(pre): /usr/sbin/groupadd
 Requires(post): systemd
@ -3628,6 +3627,9 @@ fi
 %endif

 %changelog
+* Tue May 11 2021 Guenther Deschner <gdeschner@redhat.com> - 4.13.9-0
+- Update to Samba 4.13.9
+
 * Thu Apr 29 2021 Guenther Deschner <gdeschner@redhat.com> - 4.13.8-0
 - Update to Samba 4.13.8
 - resolves: #1949442, #1955027 - Security fixes for CVE-2021-20254
--- a/4
+++ b/4
@ -1,2 +1,2 @@
-SHA512 (samba-4.13.8.tar.xz) = 777cb3ff452288fb086daa4772bb88a4c97144330fec46738f00c0e74263be0d00f75106c666ec42158f986e77f81a0e7ec04c1088753ec2847474984a89ee7e
-SHA512 (samba-4.13.8.tar.asc) = 105530a11014bac9f4466a1413fee0060078264c08426a65aab86f52947a8d8d3557dbf6216cae6808cc3deab1a37378f1da3f17cae956a24adf69c7908908b7
+SHA512 (samba-4.13.9.tar.xz) = 1e0a55e741c67cf5a63a3954906487a497a258e745c59f9a82a3c058426d4bbe5ca2855c3aab479299a88dafb05aa3e3fb0bead3d30e4777034470960ad22bad
+SHA512 (samba-4.13.9.tar.asc) = 8c5a6ef154188eca0beb7913b75979db5f407d4d052f65bcd5daca0ac355d52c701dd9704da9252461ed3303f240b60873cafc6e16451a47681abaf7f45c15d0