summaryrefslogtreecommitdiff
path: root/source3/passdb
AgeCommit message (Collapse)AuthorFilesLines
2008-05-26Remove unused function is_trusted_domain_situation().Michael Adam1-6/+0
This combined check has been replaced by is_dc_trusted_domain_situation() which does not check for lp_allow_trusted_domains(). Michael (This used to be commit 0a24c038b7bc6edef0021eb121a072cc7e8f9165)
2008-05-26passdb: check for is_dc_trusted_domain_situation() in get_trust_pw_hash().Michael Adam1-1/+1
Before fetching legacy password hash, check for trusted domain situation, but also fail if trusted domain support is not enabled. Michael (This used to be commit aa1b8287f44f47f23bd4158112d0a132df04426c)
2008-05-26passdb: add comment explaining logic in get_trust_pw_clear().Michael Adam1-2/+16
Michael (This used to be commit 5f197c659e9c8a573ba5032c7f90c816df45770c)
2008-05-26passdb: in get_trust_pw_clear() correctly fail if trusted domains not supportedMichael Adam1-1/+5
(but trusted domain situation was found) This completes the fix for bugs #5425 and #5451 by Steven Dannemann, in that now no special cases are left uncovered. Michael (This used to be commit 0b26bcd3becb869319bca48bbf244c18b6e8e3dd)
2008-05-26Add function is_dc_trusted_domain_situation().Michael Adam1-3/+7
This is like is_trusted_domain_situation() except that it does not check for lp_allow_trusted_domains(). Michael (This used to be commit a284c8843528972904d142b573f1170a08c97751)
2008-05-23Manually port Steven Dannenman fix for using the correct machine domain whenGerald W. Carter1-3/+3
looking up trust credentials in our tdb. commit fd0ae47046d37ec8297396a2733209c4d999ea91 Author: Steven Danneman <sdanneman@isilon.com> Date: Thu May 8 13:34:49 2008 -0700 Use machine account and machine password from our domain when contacting trusted domains. (This used to be commit 69b37ae60757075a0712149c5f97f17ee22c2e41)
2008-05-20Cleanup size_t return values in callers of convert_string_allocateTim Prouty2-28/+59
This patch is the second iteration of an inside-out conversion to cleanup functions in charcnv.c returning size_t == -1 to indicate failure. (This used to be commit 6b189dabc562d86dcaa685419d0cb6ea276f100d)
2008-05-06Fix a panic in the [ug]id2sid valgrind bug fixVolker Lendecke1-4/+6
Always, always run "make test" before pushing stuff :-) (This used to be commit 1444db8be1de00a3e9c805f1accd8f1f4670d729)
2008-05-06Fix a valgrind bug in the new [ug]id2sid cacheVolker Lendecke1-6/+6
When we're given a SID, it is not always padded with zeros. Only look at the initialized parts in the SID. (This used to be commit 8717085dba832cfe6d7b807a10f779e495adc326)
2008-05-05Remove unix_homedir from struct user_structVolker Lendecke1-8/+0
This makes pdb_get_unix_homedir unused. I wonder if that was ever really used... (This used to be commit 36bfd32f1ff878e827db91e9bf233719ecca5b01)
2008-04-15pdb_tdb: fix the upgrade code, db_traverse returns the number of records!Stefan Metzmacher1-1/+3
metze (This used to be commit baaf571d540ace5119c528fd35bceab335bd6741)
2008-04-01Convert dbwrap_trans_delete to NTSTATUSVolker Lendecke1-1/+4
Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit dead193f46c2b19955ab3e5ac5ba343694f4858a)
2008-04-01Convert dbwrap_trans_store to NTSTATUSVolker Lendecke1-3/+6
Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit 5f4de856af1abe63b13059bbe1615cb5877770d0)
2008-04-01pdb_tdb: use != 0 instead off == -1 for dbwrap functionsStefan Metzmacher1-1/+1
metze (This used to be commit d4826a01369c00b5e83cd62c2412a4eb826e216d)
2008-04-01passdb: guard pdb_generate_sam_sid() with a transactionStefan Metzmacher1-2/+24
This prevents possible races with some dbwrap backends metze (This used to be commit 9322442510d9c2cf16c25f5109fe81b277c44881)
2008-04-01passdb/secrets: add secrets_db_ctx() to get the db_contextStefan Metzmacher1-0/+9
metze (This used to be commit 986bc7e8b260265da019b67ec751509eb589d24b)
2008-03-27pdb_tdb: use db_open_trans()Stefan Metzmacher1-1/+1
metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit 9925cc01a2a4739d6cde5991eb0d0b79ae13353b)
2008-03-27pdb_tdb: use db_sam->transaction_start(db_sam) != 0 consistentStefan Metzmacher1-1/+1
metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit 3bf9ab640e9a79157fcfee0b5d0cde5badc92755)
2008-03-27passdb/secrets: use db_open_trans()Stefan Metzmacher1-1/+2
metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit b61b8ca4944f399216d8e67a48ea7d259258b432)
2008-03-27passdb/secrets: it's enough to use traverse_read() in secrets_trusted_domains()Stefan Metzmacher1-1/+1
metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit 729f7b9ff30e81537a7257daeaa1728c7ae96853)
2008-03-17Coverity fixesMarc VanHeyningen2-6/+14
(This used to be commit 3fc85d22590550f0539215d020e4411bf5b14363)
2008-03-17Convert pdb_tdb to use dbwrapVolker Lendecke1-318/+316
(This used to be commit 948ab77863b12b1b0bd1c970004b84b9bb1bb2fa)
2008-03-14Fix bug 4901Volker Lendecke1-3/+8
(This used to be commit 1dd8fa9a521046f1de8173ac00224706c5249665)
2008-03-11Convert secrets.c to use dbwrapVolker Lendecke1-128/+93
(This used to be commit 9d30e5991c6fe77ef5fd505efb756554bbe77256)
2008-03-10Use a separate tdb for mutexesVolker Lendecke1-31/+0
Another preparation to convert secrets.c to dbwrap: The dbwrap API does not provide a sane tdb_lock_with_timeout abstraction. In the clustered case the DC mutex is needed per-node anyway, so it is perfectly fine to use a local mutex only. (This used to be commit f94a63cd8f94490780ad9331da229c0bcb2ca5d6)
2008-03-10Convert secrets_lock_trust_account_password to tallocVolker Lendecke1-8/+24
This is preparing the conversion of secrets.c to ctdb (This used to be commit 1307f0130c47b8d740d2b7afe7a5d8d1a655e2a2)
2008-03-10Make use of talloc_asprintf_strupper_m in secrets.cVolker Lendecke1-37/+21
(This used to be commit 3ac4f935c074af768d0b83514f86d010c387817a)
2008-03-10Avoid some pointless checksVolker Lendecke1-12/+0
secrets_init() makes sure that the tdb is initialized (This used to be commit 8725dbc8888cf7a1d3d9d1205678fcd3ca3c6350)
2008-03-10Use talloc_tos() in secrets_initVolker Lendecke1-12/+5
(This used to be commit 27065382d9b692b5885265c9d60ffb7ec7748c38)
2008-03-05Fix a memleak -- Coverity ID 222Volker Lendecke1-1/+2
(cherry picked from commit a40781bafa3a8f0c7737164bca6cf74b0a452e72) (This used to be commit 86cabcad74ac06d888f2a352a2bef3abea1ed85c)
2008-03-04Fix crash bug in pdb_init_ldapsam().Günther Deschner1-2/+2
Karolin, this needs to be in 3-2-stable. Guenther (This used to be commit 0d73bde6de4391e7aec862424762473441fa0905)
2008-02-25Fix some warningsVolker Lendecke1-1/+4
warning: ignoring return value of 'asprintf', declared with attribute warn_unused_result (This used to be commit ad37b7b0aee265a3e4d8b7552610f4b9a105434d)
2008-02-19Change ldap search filter. This function is also used to search machine ↵Karolin Seeger1-2/+2
accounts which may be located in a different ou. This is an extension to e71a48bb80cee85afcccacbce2884c0d600f4d72. Karolin (This used to be commit e5cc8b683cba3f2f3a84b1636b3d5bee1bfc0dda)
2008-02-17Use netr_SamInfo3 in remaining places.Günther Deschner2-2/+2
Guenther (This used to be commit 92fca97951bf7adf8caaeabdaff21682b18dd91f)
2008-02-13nsswitch: convert winbind_env_set(), winbind_on() and winbind_off() into macrosStefan Metzmacher1-2/+2
metze (This used to be commit 5f623f54a919cc687d0ff16c16038c05a501008d)
2008-02-12Add get_logon_hours_from_pdb() (inspired by samba4).Günther Deschner1-0/+23
Guenther (This used to be commit e1bcb7d82f22810e342a18aacbcfe49c3902bcb4)
2008-02-11Change ldap search filter. This function is also used to search machine ↵Karolin Seeger1-1/+1
accounts which may be organized in a different ou. Karolin (This used to be commit e71a48bb80cee85afcccacbce2884c0d600f4d72)
2008-02-09More paranoid checks for secrets_init() success.Günther Deschner1-13/+35
Guenther (This used to be commit 5e60852bae61be72dee9d5b93c59ac900aba73ae)
2008-02-08Fix typo.Karolin Seeger1-1/+1
Karolin (This used to be commit 53b83bb53ff02878748fada589fd2faf3520d260)
2008-02-05Don't return true on talloc fail.Jeremy Allison1-0/+12
Jeremy. (This used to be commit 21594cb34c683262ed4f743b68c35e586676ff75)
2008-02-04Fix valgrind errorsVolker Lendecke1-1/+17
We need to keep the names around on the search. Probably a tdb_move would do it here as well, but RPC is not the fastest thing on earth anyway... Thanks to Günther for pointing that out to me! (This used to be commit c9472ae61039adf178e047d89dbcc698dfa57059)
2008-02-04Remove a staticVolker Lendecke1-4/+1
I very much doubt that this is called enough to justify a global. If this turns out to be a hot code path, we might reconsider :-) (This used to be commit 5223d18ea2d891418a0f833f58cc3502cb26ce03)
2008-01-25Fix lookup_sids to detect unix_groups and unix_users domain sids.Michael Adam1-0/+10
This fixes panics in wbcLookupRids when 1-2-22 was passed as a domain sid. Michael (This used to be commit c0d9732cf4482b0db02c75f316ff2b41f3336425)
2008-01-25Add a debug message: show the sid lookup_sid() was called for.Michael Adam1-0/+2
Michael (This used to be commit 6c7c6c3f85a4bd171c62031b2b8e59d3f7054061)
2008-01-25Add a debug message to lookup_rids() printing the domain SID.Michael Adam1-0/+3
This is to ease debugging. I sporadically get panics that are apparently due to NULL domain sid passed to lookup_rids somewhere. Michael (This used to be commit 723e877c241dd5a0c8addb89507c9eda75b88ea4)
2008-01-12Fix CID 469. new_acct can't be NULL here.Jeremy Allison1-2/+1
Jeremy. (This used to be commit c79e9414c4baed6e61fc6a3f766395b873bcc4ea)
2008-01-09Fix memleak in ldapsam_rename_sam_account() found by IBM checker.Michael Adam1-1/+1
The check for out of memory was the wrong way round. Michael (This used to be commit d7a7b793203b986823859ac5171d2d4c30e52415)
2008-01-09Convert add_sid_to_array() add_sid_to_array_unique() to return NTSTATUS.Michael Adam1-7/+11
Michael (This used to be commit 6b2b9a60ef857ec31da5fea631535205fbdede4a)
2008-01-07Add secrets_shutdown().Günther Deschner1-0/+13
Guenther (This used to be commit dd3fbd93b6e5fe8b5e3a3727a64a38d5ae46fcbf)
2008-01-02Fix for bug #5163 from Laurent Pinchart <pinchart@skynet.be>Jeremy Allison1-0/+4
Failure to change password in ldap is mapped to NT_STATUS_UNSUCCESSFUL unconditionally. Jeremy. (This used to be commit 9369d6e907a49da1fbf2a5690118412b8d1a0383)