-This file contains a history of changes since the first Samba 4 Technology
-Preview. For a general introduction to Samba 4, see the README file in this
-directory. The NEWS file contains a list of differences between
-Samba 3 and Samba 4.
+What's new in Samba 4 alpha2
+============================
-========================================
-Changes in Samba4-TP2
-Release date: 22 March 2006
-========================================
+Samba 4 is the ambitious next version of the Samba suite that is being
+developed in parallel to the stable 3.0 series. The main emphasis in
+this branch is support for the Active Directory logon protocols used
+by Windows 2000 and above.
- * Make ldb async internally (idra)
+Samba 4 is currently not yet in a state where it is usable in
+production environments. Note the WARNINGS below, and the STATUS file,
+which aims to document what should and should not work.
- * Use HDB-LDB as the keytab (abartlet)
+Samba4 alpha2 follows on from our first alpha release, made in
+September, and the Technology Preview series we have offered for some
+time now.
- * Call the wins hook script again (metze)
+WARNINGS
+========
- * Make sure no more then 25 records are added in the WINS database (metze)
-
- * Documentation updates (jelmer)
+Samba4 alpha2 is not a final Samba release. That is more a reference
+to Samba4's lack of the features we expect you will need than a
+statement of code quality, but clearly it hasn't seen a broad
+deployment yet. If you were to upgrade Samba3 (or indeed Windows) to
+Samba4, you would find many things work, but that other key features
+you may have relied on simply are not there yet.
- * Fix termination issue in winreg server (metze)
+For example, while Samba 3.0 is an excellent member of a Active
+Directory domain, Samba4 is happier as a domain controller: (This is
+where we have done most of the research and development).
- * AES fix for Samba 4 <-> Samba4 (abartlet)
+While Samba4 is subjected to an awesome battery of tests on an
+automated basis, and we have found Samba4 to be very stable in it's
+behaviour, we have to recommend against upgrading production servers
+from Samba 3 to Samba 4 at this stage. If you are upgrading an
+experimental server, or looking to develop and test Samba, you should
+backup all configuration and data.
- * Better conformance to FHS (abartlet, jelmer)
+NEW FEATURES
+============
- * Improve internal API and code quality in smbclient (jelmer)
+Samba4 supports the server-side of the Active Directory logon environment
+used by Windows 2000 and later, so we can do full domain join
+and domain logon operations with these clients.
- * Add testsuite for smbclient (jelmer)
+Our Domain Controller (DC) implementation includes our own built-in
+LDAP server and Kerberos Key Distribution Center (KDC) as well as the
+Samba3-like logon services provided over CIFS. We correctly generate
+the infamous Kerberos PAC, and include it with the Kerberos tickets we
+issue.
- * Remove support for password as an optional second parameter in
- smbclient (jelmer)
+The new VFS features in Samba 4 adapts the filesystem on the server to
+match the Windows client semantics, allowing Samba 4 to better match
+windows behaviour and application expectations. This includes file
+annotation information (in streams) and NT ACLs in particular. The
+VFS is backed with an extensive automated test suite.
- * Various warning fixes (metze)
+A new scripting interface has been added to Samba 4, allowing
+Python programs to interface to Samba's internals.
- * Several clarifications of comments (abartlet)
+The Samba 4 architecture is based around an LDAP-like database that
+can use a range of modular backends. One of the backends supports
+standards compliant LDAP servers (including OpenLDAP), and we are
+working on modules to map between AD-like behaviours and this backend.
+We are aiming for Samba 4 to be powerful frontend to large
+directories.
- * Remove use of pstring in some places (jelmer)
+CHANGES SINCE Alpha 1
+=====================
- * Re-add the global -k option to enable kerberos (abartlet)
+In the time since Samba4 Alpha1 was released in September 2007, Samba has
+continued to evolve, but you may particularly notice these areas:
- * Various memory allocation fixes (abartlet)
+ MMC Support: The Active Directory Users and Computers console now
+ handles group membership correctly.
- * Add new cifsdd client (jpeach)
+ member/memberOf: These and other linked attributes are now kept in
+ sync
- * Add tests for even more insane delete-on-close semantics (jra, tridge)
-
- * Initial work on BASE-DELETE test passing (tridge)
+ subtree renames: Renaming a subtree of LDAP objects is now possible,
+ with all linked attributes being kept consistant.
- * Optimizations in tdb (tridge)
+ Python Bindings: Bindings for a future move to Python as the
+ internal scripting language have been created.
- * Improvements to ldb documentation (idra, Brad Hards)
+ Shared library use: In support of projects such as OpenChange,
+ which depend on Samba4, more of Samba4 is built as shared libraries.
- * Check attribute names to obey rfc2251 (idra)
+These are just some of the highlights of the work done in the past few
+months. More details can be found in our SVN history.
- * Allow WINS replication with NT4SP6A (metze)
- * Add ManageDSAIT control (Pete Rowley, idra)
+CHANGES
+=======
- * Add tests for LDB controls (idra)
+Those familiar with Samba 3 can find a list of user-visible changes
+since that release series in the NEWS file.
- * Various LDB crash fixes (idra)
+KNOWN ISSUES
+============
- * Initial work on vlv LDB control (idra)
+- Domain member support is in it's infancy, and is not comparable to
+ the support found in Samba3.
- * Add -p option to smbtorture (jpeach)
+- There is no printing support in the current release.
- * Several improvements to the SMB URL and UNC parsing (jpeach)
+- The Samba4 port of the CTDB clustering support is not yet complete
- * Make DCE/RPC connect functions work async (rafal)
+- Clock Synchronisation is critical. Many 'wrong password' errors are
+ actually due to Kerberos objecting to a clock skew between client
+ and server.
- * Fix invalid steal on supportedControls (closes: #3525) (abartlet)
+RUNNING Samba4
+==============
- * Start parsing saslauthd requests (metze)
+A short guide to setting up Samba 4 can be found in the howto.txt file
+in root of the tarball.
- * Split the NBT-WINSREPLICATION test into multiple tests (metze)
+DEVELOPMENT and FEEDBACK
+========================
+Bugs can be filed at https://bugzilla.samba.org/ but please be aware
+that many features are simply not expected to work at this stage.
- * Add new ACB-bits as seen in acct_flags in the PAC info3 (gd)
+The Samba Wiki at http://wiki.samba.org should detail some of these
+development plans.
- * Move header files out of include/ (jelmer)
-
- * Create separate library for generic utility functions (jelmer)
+Development and general discussion about Samba 4 happens mainly on
+the #samba-technical IRC channel (on irc.freenode.net) and
+the samba-technical mailing list (see http://lists.samba.org/ for
+details).
- * Add highestCommittedUSN, uSNChanged and uSNCreated support to LDB (tridge)
-
- * Allow more control over the the winbindd socket location (abartlet)
-
- * Allow messaging without a server messaging context (abartlet)
-
- * Make GSSAPI SASL mech work (abartlet)
-
- * Write out Samba4 version when provisioning (idra)
-
- * Allow servers to bind to non-broadcast interfaces (tridge, abartlet)
-
- * Initialize some ASN.1 elements that are optional (metze)
-
- * Various improvements to RPC-SCHANNEL (abartlet)
-
- * Make Samba4 pass some of the newer schannel tests (abartlet)
-
- * Better handling of connections without SPNEGO (abartlet)
-
- * Generate seperate headers for RPC client functions (jelmer)
-
- * Improve NTLMSSP tests (abartlet, vl)
-
- * Support any size pointers in pidl (tridge)
-
- * Large overhaul of the opendb code to pass BASE-DELETE (tridge)
-
- * Use doxygen for documenting lib/util and lib/registry (jelmer)
-
- * Add registration mechanism for modules and backends in ldb (idra, jelmer)
-
- * Support building shared libraries in the build system (metze, jelmer)
-
- * Install headers in a sane location (jelmer)
-
- * Fix BASE-NEGNOWAIT (tridge)
-
- * Add prefixes to most of the SMB-related functions (metze)
-
- * Get rid of proto.h (jelmer)
-
- * Reduce number of headers included in includes.h (jelmer)
-
- * Support header dependencies (jelmer)
-
- * Add RAW-NOTIFY (tridge, metze)
-
- * Fix 'your password has expired' on every login (abartlet)
-
- * Improvements to RPC-SAMSYNC (abartlet)
-
- * Work on supporting change notify (tridge, metze)
-
- * Reopen log files after SIGHUP (metze)
-
- * Add BUGS.txt (#3523) (jelmer)
-
- * Add summary to configure (#3442) (metze, jelmer)
-
- * Swig fixes (idra)
-
- * Improve NBT-WINSREPLICATION-OWNED test (metze)
-
- * Fix a lot of compiler warnings (metze)
-
- * Several code improvements found by static code checker (tridge, metze)
-
- * Force correct alignment when in ASCII mode (#2921) (tridge)
-
- * Fix coverity bug #127 (vl)
-
- * Add support for changing process titles (metze)
-
- * Support raw NTLMSSP (abartlet)
-
- * Fix debug levels in several places (abartlet)
-
- * Work to unify the ntvfs structures for smb and smb2 (metze, tridge)
-
- * Initial work on asynchronous libnet (rafal)
-
- * Improvements to the wide character set functions (tridge)
-
- * Several heimdal build improvements (abartlet, jelmer)
-
- * A lot of small cleanups and typo fixes
- (metze, abartlet, idra, jpeach, tridge, jelmer)
git.samba.org / samba.git / blobdiff