Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-06-10 | s3: Fix EnumDomainAliases when no aliases are in LDAP | Volker Lendecke | 1 | -6/+4 | |
We used to return NT_STATUS_ACCESS_DENIED, now we just return 0 entries, just like W2k8 does. usrmgr.exe was pretty unhappy with the NT_STATUS_ACCESS_DENIED | |||||
2010-06-10 | s3:pdb_ldap: fix bug 7505 - init_sam_from_ldap stores group in sid2uid cache | Michael Adam | 1 | -1/+1 | |
2010-05-21 | s3:dom_sid Global replace of DOM_SID with struct dom_sid | Andrew Bartlett | 1 | -51/+51 | |
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-21 | s3:passdb Remove use of uint8 uint16 and uint32 in favour of C99 types | Andrew Bartlett | 1 | -60/+60 | |
Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2010-05-18 | s3-rpc_misc: clean out include/rpc_misc.h. | Günther Deschner | 1 | -1/+1 | |
Well known rids don't really belong into an rpc header, just use the ones defined in security.idl. Guenther | |||||
2010-04-29 | s3-pdb_ldap: fix memleak. | Günther Deschner | 1 | -2/+2 | |
Guenther | |||||
2010-03-16 | s3: Make login_cache_write take a pointer | Volker Lendecke | 1 | -1/+1 | |
2010-03-16 | s3: Make login_cache_read take a pointer, avoid a malloc | Volker Lendecke | 1 | -9/+8 | |
2010-03-16 | s3: Remove a typedef | Volker Lendecke | 1 | -2/+2 | |
2010-02-10 | s3: change ldap filter to what really was intended | Björn Jacke | 1 | -1/+1 | |
2010-02-08 | s3:pdb_ldap: don't search for the users primary group, if we already know it | Stefan Metzmacher | 1 | -31/+35 | |
metze | |||||
2010-02-08 | s3:pdb_ldap: optimize ldapsam_alias_memberships() and cache ldap searches. | Stefan Metzmacher | 1 | -7/+29 | |
ldapsam_alias_memberships() does the same LDAP search twice, triggered via add_aliases() from create_local_nt_token(). This happens when no domain aliases are used. metze | |||||
2010-02-08 | s3:pdb_ldap: try to build the full unix_pw structure with ldapsam:trusted ↵ | Stefan Metzmacher | 1 | -5/+85 | |
support And also store the gid_to_sid mappings in the idmap_cache. metze | |||||
2010-02-08 | s3: shortcut gid_to_sid when "ldapsam:trusted = yes" | Stefan Metzmacher | 1 | -0/+71 | |
The normal gid_to_sid behaviour is to call sys_getgrgid() to get the name for the given gid and then call the getsamgrnam passdb method for the resulting name. In the ldapsam:trusted case we can reduce the gid_to_sid operation to one simple search for the gidNumber attribute and only get the sambaSID attribute from the correspoinding LDAP object. This reduces the number of ldap roundtrips for this operation. metze | |||||
2010-02-05 | s3: Hide some uses of pdb_get_init_flags (which I would love to remove...) | Volker Lendecke | 1 | -1/+1 | |
2010-01-23 | s3: Remove some pointless uses of string_sid_talloc | Volker Lendecke | 1 | -8/+6 | |
2010-01-21 | s3:pdb_ldap: Fix large paged search. | Volker Lendecke | 1 | -0/+1 | |
Fix bug #6981 (Paged Search with DirX LDAP server broken). (cherry picked from commit 0a3b576c0a4298cbe600ad8943e401e3a0639359) | |||||
2010-01-14 | s3:pdb_ldap: restore Samba 3.0.x behavior and use the first "uid" value. | Stefan Metzmacher | 1 | -1/+1 | |
See bug #6157 for more details. metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (cherry picked from commit 25806f43ddee7e2653e907eea2c6fcc075960fa1) | |||||
2010-01-12 | s3: Remove a pointless if-statement | Volker Lendecke | 1 | -3/+2 | |
2010-01-07 | s3:pdb_ldap:init_sam_from_ldap: untangle an assignment from the check | Michael Adam | 1 | -3/+3 | |
to enhance readability and denbuggability. Michael | |||||
2009-11-19 | s3:pdb_ldap: fix a comment typo | Michael Adam | 1 | -1/+1 | |
Michael | |||||
2009-11-19 | s3: shortcut uid_to_sid when "ldapsam:trusted = yes" | Michael Adam | 1 | -0/+75 | |
The normal uid_to_sid behaviour is to call sys_getpwuid() to get the name for the given uid and then call the getsampwnam passdb method for the resulting name. In the ldapsam:trusted case we can reduce the uid_to_sid operation to one simple search for the uidNumber attribute and only get the sambaSID attribute from the correspoinding LDAP object. This reduces the number of ldap roundtrips for this operation. Michael | |||||
2009-11-13 | s3:smbd: also fill the memcache with sid<->id mappings in ldapsam_sid_to_id() | Michael Adam | 1 | -0/+2 | |
not only the persistent idmap cache. Michael | |||||
2009-11-13 | s3:smbd: make idmap cache persistent for "ldapsam:trusted". | Michael Adam | 1 | -0/+4 | |
This stores the mappings found in the idmap cache (which lives inside gencache). This cache is already read in sid_to_Xid() and Xid_to_sid() for ldapsam:trusted, this fills the opposite direction, massively reducing the number of ldap roundtrips across smbd restarts. Michael | |||||
2009-11-13 | Fix large paged search | Volker Lendecke | 1 | -0/+1 | |
Signed-off-by: Michael Adam <obnox@samba.org> | |||||
2009-11-02 | s3:ldap: don't search when no values where found | Björn Jacke | 1 | -1/+1 | |
2009-10-31 | ѕ3:ldap: search for account policies in objectclass sambaDomain, not * | Björn Jacke | 1 | -1/+6 | |
2009-10-20 | s3-pdb_ldap: fix crash bug in ldapsam_set_trusteddom_pw(). | Günther Deschner | 1 | -2/+2 | |
Thanks Volker for the hint. Guenther | |||||
2009-09-02 | s3-pdb_ldap: Fix bug #4296: Clean up group membership while deleting a user. | Günther Deschner | 1 | -0/+46 | |
Note that this only is tried with editposix=yes. Guenther | |||||
2009-08-03 | s3-pdb_ldap: Make ldapsam_alias_memberships behave like the tdbsam equivalent. | Günther Deschner | 1 | -0/+7 | |
This lets samr_GetAliasMembership return with NT_STATUS_OK when called with 0 sids (just what w2k3 does). Guenther | |||||
2009-07-14 | Fix bug 5886 | Volker Lendecke | 1 | -8/+26 | |
Ok, that's a very long-standing one. I finally got around to install a recent OpenLDAP and test the different variants of setting a NULL password etc. Thanks all for your patience! Volker | |||||
2009-07-14 | s3-account_policy: add pdb_policy_type enum. | Günther Deschner | 1 | -19/+21 | |
Guenther | |||||
2009-07-09 | Make escape_ldap_string take a talloc context | Volker Lendecke | 1 | -23/+22 | |
2009-06-30 | Fix bug #6431 - local groups from 3.0 setups no longer found. | Volker Lendecke | 1 | -8/+8 | |
Search for groups without group suffix, group suffix is only used for new entries. | |||||
2009-06-28 | Turn the pdb_rid_algorithm into a capabilities call that returns flags | Volker Lendecke | 1 | -3/+3 | |
2009-06-08 | Pass a talloc_ctx to pdb_enum_aliasmem | Volker Lendecke | 1 | -1/+2 | |
2009-06-07 | s3-samr: fix return code of _samr_LookupRids when run with pdb_ldap. | Günther Deschner | 1 | -0/+5 | |
when _samr_LookupRids is called with no rids, it needs to return NT_STATUS_NONE_MAPPED (not NT_STATUS_NO_MEMORY). Found by RPC-SAMR torture test. Guenther | |||||
2009-05-31 | Fix some nonempty blank lines | Volker Lendecke | 1 | -52/+52 | |
2009-05-12 | Fix the last few format arg missmatches I missed. | Jeremy Allison | 1 | -4/+4 | |
Jeremy. | |||||
2009-05-12 | Fix bug 6157 | Volker Lendecke | 1 | -1/+1 | |
This patch picks the alphabetically smallest one of the multi-value attribute "uid". This fixes a regression against 3.0 and also becomes deterministic. | |||||
2009-05-11 | Fix a bunch of compiler warnings about wrong format types. | Jeremy Allison | 1 | -7/+7 | |
Should make Solaris 10 builds look cleaner. Jeremy. | |||||
2009-05-08 | s3/ldap: also handle DirX return codes | Björn Jacke | 1 | -0/+2 | |
2009-05-05 | s3-ldap: fix more callers of smbldap_dn_talloc() that were passing a NULL ↵ | Günther Deschner | 1 | -1/+1 | |
context. Guenther | |||||
2009-05-05 | s3-ldapsam: Fix Bug #6313: ldapsam_update_sam_account() crashes while doing ↵ | Günther Deschner | 1 | -1/+1 | |
talloc_free on malloced memory. Guenther | |||||
2009-04-14 | Rework Samba3 to use new libcli/auth code (partial) | Andrew Bartlett | 1 | -0/+1 | |
This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett | |||||
2009-04-14 | Convert Samba3 to use the common lib/util/charset API | Andrew Bartlett | 1 | -11/+11 | |
This removes calls to push_*_allocate() and pull_*_allocate(), as well as convert_string_allocate, as they are not in the common API To allow transition to a common charcnv in future, provide Samba4-like strupper functions in source3/lib/charcnv.c (the actual implementation remains distinct, but the API is now shared) Andrew Bartlett | |||||
2009-04-06 | s3:smbldap Remove smbldap_get_dn | Andrew Bartlett | 1 | -28/+15 | |
This removes one more caller to pull_utf8_allocate() Signed-off-by: Günther Deschner <gd@samba.org> | |||||
2009-03-07 | Shape up pdb_search a bit by making it a talloc ctx with a destructor | Volker Lendecke | 1 | -10/+10 | |
2009-02-19 | Fix printf warnings found on systems where time_t <> long int. | Jeremy Allison | 1 | -8/+8 | |
Jeremy. | |||||
2009-01-21 | Memory leaks and other fixes found by Coverity | todd stecher | 1 | -0/+1 | |