summaryrefslogtreecommitdiff
path: root/source3/lib/smbldap.c
AgeCommit message (Collapse)AuthorFilesLines
2009-01-05s3:events: change event_add_timed() prototype to match samba4Stefan Metzmacher1-6/+6
metze
2008-10-20Remove the requirement for ldap call made as root. Add in securityJeremy Allison1-7/+0
checks for all SAMR calls. Jeremy.
2008-10-14Use {u,}int64_t instead of SMB_BIG_{U,}INT.Jelmer Vernooij1-1/+1
2008-07-18smbldap: Fix typo in debug message.Karolin Seeger1-1/+1
Karolin (This used to be commit 6e9e85b897431d7378396aada2c32ae470af0edd)
2008-06-03build: fix build warning.Günther Deschner1-1/+1
Guenther (This used to be commit 62fcad0c0548ab53e9c20cfd6301972c68172b95)
2008-06-03Add ldap connection timeout for OpenLDAP and Netscape LDAP libs. This can be ↵Björn Jacke1-1/+25
controlled via the ldap connection timeout parameter. This fixes fallbacks to secondary LDAP servers in multi LDAP server setups like in #4544 (This used to be commit 8e59a2fedc940b081222b0e8f90fe0c5a0981c06)
2008-05-20Cleanup size_t return values in callers of convert_string_allocateTim Prouty1-9/+18
This patch is the second iteration of an inside-out conversion to cleanup functions in charcnv.c returning size_t == -1 to indicate failure. (This used to be commit 6b189dabc562d86dcaa685419d0cb6ea276f100d)
2008-02-08Fix some typos.Karolin Seeger1-2/+2
Karolin (This used to be commit 2bec0a1fb7857e6fb8ec15e5f597b2d4125f105b)
2007-11-14Remove smbldap_get_single_pstring() and all pstringsJeremy Allison1-8/+0
from pdb_ldap.c. I don't have an LDAP passdb setup here, so I'm going to need some help on testing this. Jeremy. (This used to be commit 00760451b6c2b65f3a8a9187789ca4f270b622a2)
2007-10-18RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison1-12/+12
bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
2007-10-10r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell1-2/+1
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r23510: Tidy calls to smb_panic by removing trailing newlines. Print theJames Peach1-10/+5
failed expression in SMB_ASSERT. (This used to be commit 171dc060e2a576d724eed1ca65636bdafffd7713)
2007-10-10r23411: We were missing displayName and that was preventing usSimo Sorce1-0/+1
from successfully deleting an entry when "account" is the STRUCTURAL objectclass used for users and machines. "account" is used each time the user entry is in /etc/passwd and we have only the samba attributes in ldap, as well as for rfc2307(bis) standard based directories. (This used to be commit e6399f1aa1c98d2d6e700245bb95c84f7e173236)
2007-10-10r21785: Avoid an unnecessary gettimeofday() callVolker Lendecke1-1/+1
Volker (This used to be commit a0af6ff736077725cc7d31d9cdecd024fc7e17a1)
2007-10-10r21784: Replace smb_register_idle_event() with event_add_timed(). This fixes ↵Volker Lendecke1-13/+34
winbind who did not run the idle events to drop ldap connections. Volker (This used to be commit af3308ce5a21220ff4c510de356dbaa6cf9ff997)
2007-10-10r21264: LDAP_OPT_ERROR_NUMBER seems more portable than LDAP_OPT_RESULT_CODEVolker Lendecke1-5/+5
(This used to be commit 1b3239f2abea9146c7d0d4af06c47a63e0caf006)
2007-10-10r21263: getpeername() returning -1 is not a reliable indication if a TCP ↵Volker Lendecke1-15/+70
connection is dead. Might be my code, this rings a very distant bell... Attempt to fix bug # 4372. Volker (This used to be commit 730cc3dc1e332449f3e902217ccb9cc3057b9ef3)
2007-10-10r20215: Next step trying to fix the Solaris build.Volker Lendecke1-2/+2
I think "anonimous" is correctly spelled "anonymous". The Solaris compile is referring to this as "anonymous" in line 814 of smbldap.c. Simo, please check. Thanks, Volker (This used to be commit a77d8fa08e5a7c9c0c7c415ce3b7848b265b4b95)
2007-10-10r20116: Start merging in the work done to create the new idmap subsystem.Simo Sorce1-25/+50
Simo. (This used to be commit 50cd8bffeeed2cac755f75fc3d76fe41c451976b)
2007-10-10r18605: sync dlinklist.h with samba4, that means DLIST_ADD_END()Stefan Metzmacher1-2/+1
and DLIST_DEMOTE() now take the type of the tmp pointer not the tmp pointer itself anymore. metze (This used to be commit 2f58645b7094e81dff3734f11aa183ea2ab53d2d)
2007-10-10r17924: Get rid of warnings now that talloc is merged.Volker Lendecke1-5/+3
Destructors now take a pointer to the "real" destroyed object as an argument. Volker (This used to be commit 70edd716ef0ccb218fe18d1233bd30abe46b62bf)
2007-10-10r17334: Some C++ warningsVolker Lendecke1-2/+3
(This used to be commit 8ae7ed1f3cecbb5285313d17b5f9511e2e622f0b)
2007-10-10r16687: Fix bugs #3901, #3902, #3903 reported by jason@ncac.gwu.edu.Jeremy Allison1-1/+1
Jeremy (This used to be commit c4896b17faa6802f18cc1cec7fcc6168bde2eef0)
2007-10-10r16122: As we use 'inetOrgPerson' as structural objectclass for new accounts forGünther Deschner1-0/+2
eDir, we already add 'sn' as required attribute on LDAP add operations. When we modify an entry, we need to request 'sn' as well in our attribute lists, so that we don't try to add it a second time. Guenther (This used to be commit e018ea3d1d70e68e6802843f88b3245dc09244c9)
2007-10-10r15995: Make smbldap obey config tests. Patch from "John E. Malmberg"Jeremy Allison1-0/+6
<wb8tyw@qsl.net>. Jeremy. (This used to be commit 93dd476a9108adde42de422e1886bbaee75b952b)
2007-10-10r15633: Minor smbldap/pdb_ldap cleanupGünther Deschner1-13/+12
Guenther (This used to be commit 1b5a712467ab8f35211b59bb703a42bdc5e0dfc0)
2007-10-10r14462: Fix warning. ber_tag_t is an unsigned int forJeremy Allison1-1/+1
printing purposes. Jeremy. (This used to be commit 3c33eda430426e40e179799e7341db10c4b2e98e)
2007-10-10r14345: Fix Coverity #71. We don't currently propagate *any*Jeremy Allison1-10/+15
alloc error back up the stack from smbldap_set_mod() so ensure we abort correctly. Jeremy. (This used to be commit 9a1e35079af9404e1775e2a098990277b3771086)
2007-10-10r14060: Only set the last rebind timestamp when we did rebind after a non-readGünther Deschner1-2/+21
LDAP operation. That way we avoid the replication sleep after a simple redirected search operation Guenther (This used to be commit d236caac211ff45a3e2da73a3b0316194740a722)
2007-10-10r13693: More Solaris/LDAP fixes from Bjoern <bjoern@j3e.de>Volker Lendecke1-3/+3
(This used to be commit 7c098ca0ae4c7e11c7100fb09b42ce716beffb56)
2007-10-10r13316: Let the carnage begin....Gerald Carter1-48/+173
Sync with trunk as off r13315 (This used to be commit 17e63ac4ed8325c0d44fe62b2442449f3298559f)
2007-10-10r12714: Fix segfault in pdb_nds.c.Günther Deschner1-4/+4
Guenther (This used to be commit f78c7f8abea4cb598eca78fa3beacee8a3caee20)
2007-10-10r11876: When we are using START_TLS to secure the LDAP connection, we *have* toGünther Deschner1-3/+12
call START_TLS again after rebinding to another LDAP server. (ldaps:// uri's are handled at by recent versions of OpenLDAP). Guenther (This used to be commit 3ccea032cb681426a1b29907a44b87b8a94e0840)
2007-10-10r11874: Merge LDAP connection setup in lib/smbldap.c and pdb_nds.c.Günther Deschner1-50/+137
Also allow to use START_TLS in the pdb_nds_update_login_attempts function when doing simple binds to eDir. Guenther (This used to be commit 04a3ac5e50e93f74dfddfead5cb3f335ce991e9a)
2007-10-10r10656: BIG merge from trunk. Features not copied overGerald Carter1-1/+5
* \PIPE\unixinfo * winbindd's {group,alias}membership new functions * winbindd's lookupsids() functionality * swat (trunk changes to be reverted as per discussion with Deryck) (This used to be commit 939c3cb5d78e3a2236209b296aa8aba8bdce32d3)
2007-10-10r9953: get rid of compiler warning.Günther Deschner1-1/+1
Guenther (This used to be commit d4698acd5039dec0a375bb2841d02a2e305ded74)
2007-10-10r8892: Fix #2942 - missing value in debug ! Doh !Jeremy Allison1-1/+1
Jeremy. (This used to be commit 8bb12c66d37a1cfbd3069cdba408cc051e84112a)
2007-10-10r8757: Add debug messages so we can see what attributes and values are beingJeremy Allison1-0/+3
set/deleted/modified in an ldap query. Jeremy. (This used to be commit 813207205436ba4ebd2148285f937c05be8ffd22)
2007-10-10r7139: trying to reduce the number of diffs between trunk and 3.0; changing ↵Gerald Carter1-246/+17
version to 3.0.20pre1 (This used to be commit 9727d05241574042dd3aa8844ae5c701d22e2da1)
2007-10-10r6351: This is quite a large and intrusive patch, but there are not many ↵Volker Lendecke1-14/+144
pieces that can be taken out of it, so I decided to commit this in one lump. It changes the passdb enumerating functions to use ldap paged results where possible. In particular the samr calls querydispinfo, enumdomusers and friends have undergone significant internal changes. I have tested this extensively with rpcclient and a bit with usrmgr.exe. More tests and the merge to trunk will follow later. The code is based on a first implementation by Günther Deschner, but has evolved quite a bit since then. Volker (This used to be commit f0bb44ac58e190e19eb4e92928979b0446e611c9)
2007-10-10r6149: Fixes bugs #2498 and 2484.Derrell Lipman1-2/+5
1. using smbc_getxattr() et al, one may now request all access control entities in the ACL without getting all other NT attributes. 2. added the ability to exclude specified attributes from the result set provided by smbc_getxattr() et al, when requesting all attributes, all NT attributes, or all DOS attributes. 3. eliminated all compiler warnings, including when --enable-developer compiler flags are in use. removed -Wcast-qual flag from list, as that is specifically to force warnings in the case of casting away qualifiers. Note: In the process of eliminating compiler warnings, a few nasties were discovered. In the file libads/sasl.c, PRIVATE kerberos interfaces are being used; and in libsmb/clikrb5.c, both PRIAVE and DEPRECATED kerberos interfaces are being used. Someone who knows kerberos should look at these and determine if there is an alternate method of accomplishing the task. (This used to be commit 994694f7f26da5099f071e1381271a70407f33bb)
2007-10-10r6127: Eliminated all compiler warnings pertaining to mismatched ↵Derrell Lipman1-2/+2
"qualifiers". The whole of samba comiles warning-free with the default compiler flags. Temporarily defined -Wall to locate other potential problems. Found an unused static function (#ifdefed out rather than deleted, in case it's needed for something in progress). There are also a number of uses of undeclared functions, mostly krb5_*. Files with these problems need to have appropriate header files included, but they are not fixed in this update. oplock_linux.c.c has undefined functions capget() and capset(), which need to have "#undef _POSIX_SOURCE" specified before including <sys/capability.h>, but that could potentially have other side effects, so that remains uncorrected as well. The flag -Wall should be added permanently to CFLAGS, and all warnings then generated should be eliminated. (This used to be commit 5b19ede88ed80318e392f8017f4573fbb2ecbe0f)
2007-10-10r5565: fix breakage on gcc 2.96Gerald Carter1-1/+1
(This used to be commit 67f8a1e3bc545d4ebbe0f7d05ea16c6231f2e82c)
2007-10-10r5556: Fix the build on AIX.Günther Deschner1-4/+14
use AF_UNIX instead of AF_LOCAL (thanks to Doug VanLeuven <roamdad-at-sonic.net>) and make smbldap_open() a bit more readable. Guenther (This used to be commit 526d6a9493cd091f2a9b8e072f11e673133fe5c1)
2007-10-10r5522: Better handling of LDAP over IPC connections that have expired on theGünther Deschner1-4/+1
LDAP-Server. Guenther (This used to be commit 8017a7a150023dc3353181f7737b2363d38593fa)
2007-10-10r5428: Apply some const. LDAP attribs should now be declared const char ↵Volker Lendecke1-8/+8
*attr[]. This gives some new warnings in smbldap.c, but a the callers are cleaned up. Volker (This used to be commit 543799fc0ddc3176469acc1fab7093c41556d403)
2007-10-10r5349: After talking with Jerry, reverted the addition of account policies toGünther Deschner1-87/+1
passdb in 3_0 (they are still in trunk). Guenther (This used to be commit fdf9bdbbac1d8d4f3b3e1fc7e49c1e659b9301b1)
2007-10-10r4989: Display failed LDAP-server-uri.Günther Deschner1-1/+2
Guenther (This used to be commit d433c7b476005064b9cfd339bbd8a25b40de59c1)
2007-10-10r4925: Migrate Account Policies to passdb (esp. replicating ldapsam).Günther Deschner1-1/+87
Does automated migration from account_policy.tdb v1 and v2 and offers a pdbedit-Migration interface. Jerry, please feel free to revert that if you have other plans. Guenther (This used to be commit 75af83dfcd8ef365b4b1180453060ae5176389f5)