Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2009-11-12 | s4:dsdb Add expected value tests for most DRS syntax conversions | Andrew Bartlett | 1 | -6/+6 | |
I've left out those for which I could not find an expected value in my default Windows 2003 server's database, and the values that rely on the current prefix map at the time. Andrew Bartlett | |||||
2009-11-12 | s4:dsdb Cosmetic fixes found by metze in review of dsdb_dn changes | Andrew Bartlett | 1 | -1/+2 | |
These changes include reworking the code to call ldb_module_get_ctx() less often (avoid the function calls, particularly during the step into a complex function). Andrew Bartlett | |||||
2009-11-12 | s4:dsdb Ensure we allow 'odd' lengths for DN+String | Andrew Bartlett | 1 | -5/+5 | |
(Found in a code review by metze) Andrew Bartlett | |||||
2009-11-12 | s4:dsdb Add extensive tests for the behaviour of dsdb_dn | Andrew Bartlett | 1 | -0/+357 | |
2009-11-12 | s4:dsdb Add new dsdb_dn to handle DN+Binary and DN+String | Andrew Bartlett | 2 | -0/+340 | |
This aims to replace (and is based on) the code in ldb_dn.c. It is however much stricter in the DNs it will accept. Andrew Bartlett | |||||
2009-11-07 | s4:dsdb/common/util - samdb_result_hashes - use "unsigned int" for counters | Matthias Dieter Wallnöfer | 1 | -2/+1 | |
2009-11-06 | s4:samdb_check_password - allow the password string to be NULL | Matthias Dieter Wallnöfer | 1 | -0/+1 | |
This deactivates the password complexity check, but not the minimum password length one, since the length is specified. This change is needed by my password module work. | |||||
2009-11-06 | s4:samdb_validate_password - Adapt the function to use the UNIX charset for ↵ | Matthias Dieter Wallnöfer | 1 | -20/+7 | |
the password data blob | |||||
2009-11-05 | s4:dsdb/common/util - Add a new utility function "samdb_check_password" | Matthias Dieter Wallnöfer | 1 | -9/+45 | |
This function performs basic password checks and will be used by the "samrValidatePassword" call and the "password_hash" module. | |||||
2009-11-05 | s4:samdb_set_password/samdb_set_password_sid - Better comments and cosmetics | Matthias Dieter Wallnöfer | 1 | -28/+34 | |
2009-10-18 | s4:sites - get the server site (name) from DSDB | Matthias Dieter Wallnöfer | 1 | -0/+10 | |
2009-10-15 | s4-dsdb: added samdb_rodc() and samdb_ntds_options() | Andrew Tridgell | 1 | -0/+50 | |
Later we will need to make samdb_rodc() look in the database, but for now we should at least have the function in a central place | |||||
2009-10-12 | s4:provision Remove all references to samba4LocalDomain | Andrew Bartlett | 1 | -1/+1 | |
This was a bad idea all along, as Simo said at the time. With the full MS schema and enforcement of it, it is an even worse idea. This fixes the provision of the member server in 'make test' Andrew Bartlett | |||||
2009-10-08 | s3/s4 - Adapt the IDL changes on various locations | Matthias Dieter Wallnöfer | 1 | -11/+14 | |
2009-10-02 | s4:samdb_set_password - Return the maximum password age when requested (not ↵ | Matthias Dieter Wallnöfer | 1 | -2/+3 | |
the minimum one) | |||||
2009-10-02 | s4:samdb_set_password - cosmetic fixes | Matthias Dieter Wallnöfer | 1 | -44/+58 | |
2009-10-02 | s4:dsdb/common/sidmap - Remove | Matthias Dieter Wallnöfer | 1 | -612/+0 | |
As metze pointed out - this seems to be completely dead code. I too didn't find any dependencies in other code parts. Therefore remove it. | |||||
2009-09-30 | s4:dsdb/common/util - remove introduced "samdb_is_capable_dc" call | Matthias Dieter Wallnöfer | 1 | -57/+0 | |
I came up with a better solution which is invoked when we try to join a domain as a DC (in file "libnet_become_dc.c"). Consider a following commit for this patch. | |||||
2009-09-28 | s4-dsdb: ask for an extended DN in dsdb_find_dn_by_guid() | Andrew Tridgell | 1 | -0/+5 | |
2009-09-28 | s4-dsdb: make dsdb_search_dn_with_deleted public for repl_meta_data module | Andrew Tridgell | 1 | -5/+5 | |
2009-09-24 | s4-drs: add SHOW_DELETED control on dsdb utility calls | Andrew Tridgell | 1 | -2/+60 | |
The dsdb_find_dn_by_guid() and dsdb_find_sid_by_dn() are using by the DRS server call getncchanges on objects that may be deleted. | |||||
2009-09-23 | s4-dsdb: added dsdb_find_sid_by_dn() | Andrew Tridgell | 1 | -0/+30 | |
2009-09-21 | s4-dsdb: fixed a printf format warning | Andrew Tridgell | 1 | -1/+1 | |
2009-09-20 | s4:dsdb/common/util - Check for the right forest/domain function level | Matthias Dieter Wallnöfer | 1 | -0/+57 | |
This adds a function which performs the check for the supported forest and domain function levels. On an unsuccessful result a textual error message can be created (parameter "errmsg" != NULL) which gives hints for the user to help him fixing the issue. | |||||
2009-09-19 | Move replmd_drsuapi_DsReplicaCursor2_compare to a common place. | Anatoliy Atanasov | 1 | -0/+6 | |
2009-09-16 | s4-dsdb: treat uSNHighest as 0 if @REPLCHANGED doesn't exist | Andrew Tridgell | 1 | -0/+8 | |
When a partition is first created it still needs a uSNHighest value | |||||
2009-09-13 | s4-dsdb: added dsdb_load_partition_usn and dsdb_save_partition_usn | Andrew Tridgell | 1 | -0/+146 | |
These are used to load/save the per-partition uSN values managed by the repl_meta_data module | |||||
2009-09-12 | s4-kcc: we should only add to the repsFrom if it doesn't already exist | Andrew Tridgell | 1 | -0/+111 | |
If we already have a repsFrom for a particular DC and naming context then we should not overwrite it, as it contains info on what replication we've already done | |||||
2009-09-06 | s4:dsdb/common/util.c - Copy parameters to prevent segfaults | Matthias Dieter Wallnöfer | 1 | -3/+8 | |
The parameters "lmNewHash" and/or "ntNewHash" could be NULL and when we perform write operations on them (look below in the code) we could get SIGSEGVs! | |||||
2009-09-06 | s4:dsdb/common/util - Indentation fixes | Matthias Dieter Wallnöfer | 1 | -4/+5 | |
2009-09-04 | s4: fixed a missing NULL termination in a attribute list passed to ldb_search | Andrew Tridgell | 1 | -1/+1 | |
2009-09-03 | added dsdb_find_guid_by_dn() | Andrew Tridgell | 1 | -1/+21 | |
This will be used by the linked_attribute module | |||||
2009-09-03 | added dsdb_find_dn_by_guid() | Andrew Tridgell | 1 | -0/+78 | |
This came from the linked_attributes module, but now the repl_meta_data module needs the same functionality, so move it to a common routine. | |||||
2009-08-14 | s4: Remove obsolete "samdb_password_quality_ok" function (it's just a ↵ | Matthias Dieter Wallnöfer | 1 | -10/+1 | |
one-line wrapper) | |||||
2009-08-03 | Return infinite time for last last logoff when last logoff = 0 | Matthieu Patou | 1 | -0/+16 | |
2009-07-13 | libds: merge the UF<->ACB flag mapping functions. | Günther Deschner | 3 | -149/+4 | |
Guenther | |||||
2009-07-13 | libds: share UF_ flags between samba3 and 4. | Günther Deschner | 4 | -140/+3 | |
Guenther | |||||
2009-07-09 | Add const | Andrew Bartlett | 1 | -2/+2 | |
2009-06-06 | Fix some nonempty blank lines | Volker Lendecke | 1 | -41/+37 | |
2009-05-25 | fixed interpretation of ACB_PWNOTREQ | Andrew Tridgell | 1 | -1/+6 | |
This bit actually means that we should ignore the minimum password length field for this user. It doesn't mean that the password should be seen as empty | |||||
2009-03-01 | s4: Use same function signature for convert_* as s3. | Jelmer Vernooij | 1 | -1/+1 | |
2009-03-01 | Add allow_badcharcnv argument to all conversion function, for | Jelmer Vernooij | 1 | -1/+1 | |
consistency with Samba 3. | |||||
2009-01-21 | Allow overriding the function that ships the request in the Samba 3 | Jelmer Vernooij | 1 | -1/+1 | |
client code. | |||||
2008-12-29 | s4:lib/tevent: rename structs | Stefan Metzmacher | 1 | -1/+1 | |
list="" list="$list event_context:tevent_context" list="$list fd_event:tevent_fd" list="$list timed_event:tevent_timer" for s in $list; do o=`echo $s | cut -d ':' -f1` n=`echo $s | cut -d ':' -f2` r=`git grep "struct $o" |cut -d ':' -f1 |sort -u` files=`echo "$r" | grep -v source3 | grep -v nsswitch | grep -v packaging4` for f in $files; do cat $f | sed -e "s/struct $o/struct $n/g" > $f.tmp mv $f.tmp $f done done metze | |||||
2008-11-10 | s4-dsdb: add samdb_msg_add_parameters. | Günther Deschner | 1 | -0/+11 | |
Guenther | |||||
2008-11-10 | s4-dsdb: add samdb_result_parameters. | Günther Deschner | 1 | -0/+22 | |
Guenther | |||||
2008-10-24 | Remove iconv_convenience argument from convert_string{,talloc}() but | Jelmer Vernooij | 1 | -1/+1 | |
make them wrappers around convert_string{,talloc}_convenience(). | |||||
2008-10-20 | Make sure prototypes are always included, make some functions static and | Jelmer Vernooij | 1 | -0/+2 | |
remove some unused functions. | |||||
2008-10-17 | Fix errrors in new password handling code found by RPC-SAMR. | Andrew Bartlett | 1 | -1/+1 | |
I'm very glad we have such a comprehensive testsuite for the SAMR password change process, as it makes this a much easier task to get right. Andrew Bartlett | |||||
2008-10-16 | Create a 'straight paper path' for UTF16 passwords. | Andrew Bartlett | 1 | -37/+51 | |
This uses a virtual attribute 'clearTextPassword' (name chosen to match references in MS-SAMR) that contains the length-limited blob containing an allegidly UTF16 password. This ensures we do no validation or filtering of the password before we get a chance to MD4 it. We can then do the required munging into UTF8, and in future implement the rules Microsoft has provided us with for invalid inputs. All layers in the process now deal with the strings as length-limited inputs, incluing the krb5 string2key calls. This commit also includes a small change to samdb_result_passwords() to ensure that LM passwords are not returned to the application logic if LM authentication is disabled. The objectClass module has been modified to allow the clearTextPassword attribute to pass down the stack. Andrew Bartlett |