Deprecate the 'socket address' parameter and remove special handling?

> I've been looking over our parameters, as I try to merge the loadparm
> systems.
>
> I started by proposing removing the special behaviour that allows
> 'socket address = ' to mean 'socket address = 0.0.0.0' (attached) in the
> bug that created the current behaviour:
> https://bugzilla.samba.org/show_bug.cgi?id=5944
>
> However, I've been thinking about the broader context, and I'm a bit
> lost as to what this parameter is for exactly.  It seems to be a very
> old parameter from the earliest days of Samba.
>
> Specifically, it seems to be duplicated by 'interfaces = 1.2.3.5' and
> 'bind interfaces only = yes'.  The code in nmbd.c says:  'The parameter
> 'socket address' is now deprecated.' but the manpage fails to mention
> this.
>
> There is no rush to remove this parameter, but I would like to remove it
> in 4.1, so we have only one way to configure the interfaces we bind to.
>
> (Or we could remove it for 4.0 if that were the view of the list).

> On Mon, Jul 23, 2012 at 07:07:27PM +1000, Andrew Bartlett wrote:
> > I've been looking over our parameters, as I try to merge the loadparm
> > systems.
> >
> > I started by proposing removing the special behaviour that allows
> > 'socket address = ' to mean 'socket address = 0.0.0.0' (attached) in the
> > bug that created the current behaviour:
> > https://bugzilla.samba.org/show_bug.cgi?id=5944
> >
> > However, I've been thinking about the broader context, and I'm a bit
> > lost as to what this parameter is for exactly.  It seems to be a very
> > old parameter from the earliest days of Samba.
> >
> > Specifically, it seems to be duplicated by 'interfaces = 1.2.3.5' and
> > 'bind interfaces only = yes'.  The code in nmbd.c says:  'The parameter
> > 'socket address' is now deprecated.' but the manpage fails to mention
> > this.
> >
> > There is no rush to remove this parameter, but I would like to remove it
> > in 4.1, so we have only one way to configure the interfaces we bind to.
> >
> > (Or we could remove it for 4.0 if that were the view of the list).
>
> +1 on removal for me. I think it's been superceeded.

>On Tue, 2012-07-24 at 10:44 -0700, Jeremy Allison wrote:
>> On Mon, Jul 23, 2012 at 07:07:27PM +1000, Andrew Bartlett wrote:
>> > I've been looking over our parameters, as I try to merge the
>loadparm
>> > systems.
>> >
>> > I started by proposing removing the special behaviour that allows
>> > 'socket address = ' to mean 'socket address = 0.0.0.0' (attached)
>in the
>> > bug that created the current behaviour:
>> > https://bugzilla.samba.org/show_bug.cgi?id=5944
>> >
>> > However, I've been thinking about the broader context, and I'm a
>bit
>> > lost as to what this parameter is for exactly.  It seems to be a
>very
>> > old parameter from the earliest days of Samba.
>> >
>> > Specifically, it seems to be duplicated by 'interfaces = 1.2.3.5'
>and
>> > 'bind interfaces only = yes'.  The code in nmbd.c says:  'The
>parameter
>> > 'socket address' is now deprecated.' but the manpage fails to
>mention
>> > this.
>> >
>> > There is no rush to remove this parameter, but I would like to
>remove it
>> > in 4.1, so we have only one way to configure the interfaces we bind
>to.
>> >
>> > (Or we could remove it for 4.0 if that were the view of the list).
>>
>> +1 on removal for me. I think it's been superceeded.
>
>I would vote for removing it in 4.0 and not wait till 4.1

> I'm all for increasing simplicity, but isn't the purpose of "socket
> address=x.y.z.t" to enable samba to respond/listen to a specific address,
> particularly where there are many aliases on an interface. And the
> "interface=" statement to specify which of the interfaces, or ip/masks that
> a particular samba instance will service?
>
> Currently we run authentication services (heimdal/openldap) in one virtual
> machine(vm), and samba3 in another. I plan to insert samba4 onto the
> authentication server (no fileservices) and retain the samba3 server, and
> both running on the same physical machine. I'm concerned, with the removal
> of "socket address", will this approach be inhibited?

> On Wed, 2012-07-25 at 12:06 +1000, Dewayne Geraghty wrote:
>> I'm all for increasing simplicity, but isn't the purpose of "socket
>> address=x.y.z.t" to enable samba to respond/listen to a specific address,
>> particularly where there are many aliases on an interface. And the
>> "interface=" statement to specify which of the interfaces, or ip/masks that
>> a particular samba instance will service?
>>
>> Currently we run authentication services (heimdal/openldap) in one virtual
>> machine(vm), and samba3 in another. I plan to insert samba4 onto the
>> authentication server (no fileservices) and retain the samba3 server, and
>> both running on the same physical machine. I'm concerned, with the removal
>> of "socket address", will this approach be inhibited?
>
> Dewayne,
> as pointed out in the previous emails, you can put ip address in the
> 'interfaces' parameter, and then use 'bind interfaces only = yes' to
> limit samba to talk on those addresses only.
>
> socket address is simply redundant and can be implemented by the above
> options which is why we want to remove it.
>
> Simo.
>

> On Wed, 2012-07-25 at 10:47 -0400, simo wrote:
> > On Wed, 2012-07-25 at 12:06 +1000, Dewayne Geraghty wrote:
> > > I'm all for increasing simplicity, but isn't the purpose of "socket
> > > address=x.y.z.t" to enable samba to respond/listen to a specific address,
> > > particularly where there are many aliases on an interface. And the
> > > "interface=" statement to specify which of the interfaces, or ip/masks that
> > > a particular samba instance will service?
> > >
> > > Currently we run authentication services (heimdal/openldap) in one virtual
> > > machine(vm), and samba3 in another. I plan to insert samba4 onto the
> > > authentication server (no fileservices) and retain the samba3 server, and
> > > both running on the same physical machine. I'm concerned, with the removal
> > > of "socket address", will this approach be inhibited?
> >
> > Dewayne,
> > as pointed out in the previous emails, you can put ip address in the
> > 'interfaces' parameter, and then use 'bind interfaces only = yes' to
> > limit samba to talk on those addresses only.
> >
> > socket address is simply redundant and can be implemented by the above
> > options which is why we want to remove it.
>
> The attached 4 patches work on this.  The first two I'm autobuilding
> now, which just remove the use of 'socket address' as a fallback to our
> recommended 'bind interfaces only = ' and 'interfaces = ' and renames
> 'socket address' to a more specific name.
>
> The second two patches try to eliminate this altogether (which will
> eliminate the nmbd bind on 0.0.0.0 when bind interfaces only is set),
> but these need more work.