* Upgrade net/samba43 and net/samba44 to address multiple vulnerabilities

* Switch port to use net/openldap24-sasl-client as some authorization methods don't work with plain openldap24-client. * Changed namespace used by vfs_fruit to be compatiable with net/netatalk3. * Removed old DNS crypto patch, as it SEEMS it was superseded by recent code changes. Please, notify me if you see that internal DNS doesn't handle signed requests properly anymore. Security: CVE-2016-2123 CVE-2016-2125 CVE-2016-2126
author: Timur I. Bakeyev <timur@FreeBSD.org> 2016-12-28 02:51:57 +0000
committer: Timur I. Bakeyev <timur@FreeBSD.org> 2016-12-28 02:51:57 +0000
commit: 6980d56b3ab2ca8d5d7e354d1470fe7d2326e0d9 (patch)
tree: f737704db0caa7e97955ff17517820520ac01054 /net/samba44/files/patch-source3__smbd__open.c
parent: - Update to 1.3.4 (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/net/samba44/files/patch-source3__smbd__open.c b/net/samba44/files/patch-source3__smbd__open.c
new file mode 100644
index 000000000000..96aa7dfae8aa
--- /dev/null
+++ b/net/samba44/files/patch-source3__smbd__open.c
@@ -0,0 +1,11 @@
+--- source3/smbd/open.c.orig	2016-12-25 13:08:58.349614000 +0000
++++ source3/smbd/open.c	2016-12-25 13:09:10.968754000 +0000
+@@ -3890,7 +3890,7 @@
+ 	unsigned int num_streams = 0;
+ 	TALLOC_CTX *frame = talloc_stackframe();
+ 	NTSTATUS status;
+-	bool saved_posix_pathnames;
++	bool saved_posix_pathnames = false;
+ 
+ 	status = vfs_streaminfo(conn, NULL, fname, talloc_tos(),
+ 				&num_streams, &stream_info);
author	Timur I. Bakeyev <timur@FreeBSD.org>	2016-12-28 02:51:57 +0000
committer	Timur I. Bakeyev <timur@FreeBSD.org>	2016-12-28 02:51:57 +0000
commit	6980d56b3ab2ca8d5d7e354d1470fe7d2326e0d9 (patch)
tree	f737704db0caa7e97955ff17517820520ac01054 /net/samba44/files/patch-source3__smbd__open.c
parent	- Update to 1.3.4 (diff)