summaryrefslogtreecommitdiff
path: root/source4/dsdb/samdb/ldb_modules
AgeCommit message (Collapse)AuthorFilesLines
2007-12-21r26540: Revert my previous commit after concerns raised by Andrew.Jelmer Vernooij11-15/+15
(This used to be commit 6ac86f8be7d9a8c5ab396a93e6d1e6819e11f173)
2007-12-21r26539: Remove unnecessary statics.Jelmer Vernooij11-15/+15
(This used to be commit e53e79eebef3ece6978f0a2b4a1ee0a0814bb5d2)
2007-12-21r26521: Fix newlines.Jelmer Vernooij3-12/+12
(This used to be commit 174aa1583791a4c305bc49cf78f8f10d42701bc9)
2007-12-21r26488: Implement tests for the ranged_results module.Andrew Bartlett1-28/+34
Untested code is broken code, so rework the module until it passes... It turns out that AD puts search attributes onto the wire in the reverse order to what Samba does. This complicates exact value matching, so this is skipped for now. Andrew Bartlett (This used to be commit 91bcb60d31d54e52128d5bd107df4ceb87389889)
2007-12-21r26485: Fix indent, remove left-over debug.Andrew Bartlett1-2/+1
Andrew Bartlett (This used to be commit 2277f2d88716e0911d5f35bd4c979b2fc2f9473b)
2007-12-21r26483: Merge ldb module dependency fixes, fix auth python module.Jelmer Vernooij3-27/+34
(This used to be commit 85eeecf997a071ca7e7ad0247e8d34d49b7ffcbb)
2007-12-21r26430: require explicit specification of loadparm context.Jelmer Vernooij1-1/+1
(This used to be commit 1b947fe0e6e16318e5a8127bb4932d6b5d20bcf6)
2007-12-21r26419: Add a module to implement 'ambigious name resolution' by munging theAndrew Bartlett2-0/+324
incoming LDAP filter. Warning: Any anr search will perform a full index search. Untill ldb gets substring indexes, this is unavoidable. Also implement a testsutie to show we match AD behaviour for this important extension (used in the Active Directory Users and Computers MMC plugin, as a genereral 'find'). This will also be useful to OpenChange, as their server needs to implement this. Andrew Bartlett (This used to be commit 044b50947254ccd516c21cb156ab60ab9e3a582d)
2007-12-21r26360: Add some const.Jelmer Vernooij1-1/+1
(This used to be commit 3616ced29ed2385300f7268a742a9090840b626f)
2007-12-21r26329: Fix more loadparm_context references. Only about a 100 left now.Jelmer Vernooij1-1/+1
(This used to be commit ddf233346d848e91bc6a6a572f0f6120540503b7)
2007-12-21r26319: Split encoding functions out of libcli_ldap.Jelmer Vernooij3-4/+6
(This used to be commit 95a6ef7fc8757ccfd90dbf0d6c9b5098f10b10b6)
2007-12-21r26297: Correct error message. This function verifies attributes, notAndrew Bartlett1-1/+1
objectclasses. Andrew Bartlett (This used to be commit 47422b5e59027461efd7bc45534f9da8e37e3f48)
2007-12-21r26284: Rather than just debug, push the error back up the stack as the errorAndrew Bartlett1-10/+10
string, if we fail to load the schema. Andrew Bartlett (This used to be commit 1dc771f903dd613a4d6494f7fd45d35c4d282a33)
2007-12-21r26283: fix typoAndrew Bartlett1-1/+1
(This used to be commit 7d1169b52b583abee48f4dafac01f5887060002e)
2007-12-21r26282: These modules expect errors, but if we don't wipe the error string, weAndrew Bartlett2-0/+7
get phony error strings at the caller, which is very confusing. Andrew Bartlett (This used to be commit 9ac7f4f6098b392dbe4a883a802d2417e074586a)
2007-12-21r26271: Remove some more uses of global_loadparm.Jelmer Vernooij1-1/+1
(This used to be commit e9875fcd56de0748ed78d7e3c9cdb4919cd96d3c)
2007-12-21r26270: Require specifying the loadparm_context or NULL to ↵Jelmer Vernooij1-1/+1
cli_credentials_guess(). (This used to be commit e52710d6794a25ba697f8c26b43784226964f9cb)
2007-12-21r26244: Add a module (sans tests for the moment) that implements rangedAndrew Bartlett2-0/+217
results, as used particularly by MMC's Active Directory Users and Computers to list group members. This may be used on any attribute, but is useful to obtain attributes that may be lengthy in 'pages'. The implementation presumes that attributes will always be returned by the DB in the same order. Andrew Bartlett (This used to be commit c789a91e00b47b2f02513e97101b9606d00c6aaa)
2007-12-21r26233: Pass loadparm context when creating krb5 contexts.Jelmer Vernooij1-0/+2
(This used to be commit 7780bf285fdfc30f89409d0436bad0d4b6de5cd4)
2007-12-21r26229: Set loadparm context as opaque pointer in ldb, remove more uses of ↵Jelmer Vernooij2-3/+3
global_loadparm. (This used to be commit 37d05fdc7b0e6b3211ba6ae56b1b5da30a6a392a)
2007-12-21r26192: Handle, test and implement the style of extended_dn requiest that ↵Andrew Bartlett1-26/+64
MMC uses. It appears that the control value is optional, implying type 0 responses. Failing to parse this was causing LDAP disconnects with 'unavailable critical extension'. Andrew Bartlett (This used to be commit 833dfc2f2af84c45f954e428c9ea6babf100ba92)
2007-12-21r26182: Extend our linked attribute testsuite to cover many more possibleAndrew Bartlett1-74/+218
modifications, and then extend our implementation to match. Andrew Bartlett (This used to be commit 65d17f0ad7ead438333abcccb0bd56b038ffb88e)
2007-12-21r26140: Add a new test for searches by distinguieshedName and dn, andAndrew Bartlett1-0/+18
implement these in the simple ldap mapping module. We still don't pass this test, because we must get linked attributes into OpenLDAP. Andrew Bartlett (This used to be commit d41f34e979bb119f71ab3cc2fdb3c08e4b92849c)
2007-12-21r26137: Rename the entryUUID module to better match it's purpose: being aAndrew Bartlett2-51/+61
simple ldap mapping (a complex mapping will follow). Fix the module to handle 'name' better, rather than using the 'name' attribute built into OpenLDAP, rename to samba4RDN. We need to see if this can be handled in the backend. Also rename the functions and inernal module name to entryuuid for consistancy. Andrew Bartlett (This used to be commit a7be80766f4270d63433bbd6a976ebf302ed3433)
2007-12-21r26003: Split up DB_WRAP, as first step in an attempt to sanitize dependencies.Jelmer Vernooij1-1/+1
(This used to be commit 56dfcb4f2f8e74c9d8b2fe3a0df043781188a555)
2007-12-21r25981: Don't create an ldb_request on NULL.Andrew Bartlett1-8/+11
A re-arrangment of the code due to the base DN checking meant that the ac->down_req array wasn't started, so was NULL Andrew Bartlett (This used to be commit 0a44b8e9f3e1a85c27d105cdd1572a0df936f612)
2007-12-21r25949: Make error messages clearer and more correct.Andrew Bartlett1-2/+2
Andrew Bartlett (This used to be commit f0a0d73f768434cb474b311d7c366d1f2a06c8f4)
2007-12-21r25942: Make various ldb modules handle an LDB backend that enforces validityAndrew Bartlett7-163/+348
of Base DNs in searches (returning an error of LDB_ERR_NO_SUCH_ENTRY). We need to handle this if ldb_tdb is to behave correctly compared with LDAP, as well as if we are using an LDAP backend. In doing so, I realised that subtree_rename and subtree_delete (prevention) need rather different wait loops, so it seemed easier to split it out into it's own module. I've fixed the licence on both of these modules to be GPLv3. Andrew Bartlett (This used to be commit d3894c90f31fb45e038ab478cd9d7d34962d069b)
2007-12-21r25941: Use samdb_relative_path() (new function in samdb.c) in the partitionsAndrew Bartlett1-30/+3
module. Andrew Bartlett (This used to be commit c8d1ab30845fa1496c85630b138b1cb512c2b6aa)
2007-12-21r25940: Rework the samldb and templates handling.Andrew Bartlett1-35/+48
Templates just don't belong in the sam.ldb, as they don't obey any of the other rules. This moves them to a seperate templates.ldb. In samldb, this patch reworks the duplicate SID and Name detection code, to use ldb_search_exp_fmt() rather than gendb_search. This returns far more useful errors, which we now handle and report better. The call to samdb_search_for_parent_domain() has been moved in samldb, to allow both the account and SID uniqueness checks to be in the same domain. This function also returns better errors. dcesrv_drsuapi.c is updated for the new prototype of samdb_search_for_parent_domain() Andrew Bartlett (This used to be commit f1ab90c88c782c693b41795d70368650806543b5)
2007-12-21r25920: ndr: change NTSTAUS into enum ndr_err_code (samba4 callers)Stefan Metzmacher7-93/+110
lib/messaging/ lib/registry/ lib/ldb-samba/ librpc/rpc/ auth/auth_winbind.c auth/gensec/ auth/kerberos/ dsdb/repl/ dsdb/samdb/ dsdb/schema/ torture/ cluster/ctdb/ kdc/ ntvfs/ipc/ torture/rap/ ntvfs/ utils/getntacl.c ntptr/ smb_server/ libcli/wrepl/ wrepl_server/ libcli/cldap/ libcli/dgram/ libcli/ldap/ libcli/raw/ libcli/nbt/ libnet/ winbind/ rpc_server/ metze (This used to be commit 6223c7fddc972687eb577e04fc1c8e0604c35435)
2007-12-21r25891: Test that we get the correct return value when we attempt to referenceAndrew Bartlett1-2/+2
invalid entries with a linked attribute. Make Samba4 pass that test, by fixing a silly bug in the linked_attributes module. (By passing down the 'original' request structure, tdb would override our handle, and therefore we would never be called for the 'wait', which collects the errors). Fix up the provision templates to handle the newly required referential integrity. Andrew Bartlett (This used to be commit 0377d85bbdcb2c4f110b0519005f0d1d10bc0c0b)
2007-12-21r25887: Build Samba-specific ldb modules as dso's.Jelmer Vernooij1-2/+23
(This used to be commit 9d73becbb24fbde2e319e18e84af35d9efaeefda)
2007-12-21r25839: use nss_wrapper code in samba4 ifStefan Metzmacher1-1/+1
--enable-nss-wrapper or --enable-developer is given metze (This used to be commit f8bc6b9ad0eec60bff7fdc5653397efd9a044a29)
2007-12-21r25788: Use a single routine to handle the creation of modify requests in theAndrew Bartlett1-202/+132
linked_attributs code. This drasticly reduces the code duplication here. Andrew Bartlett (This used to be commit c66e188e6729a8e12854017d62067b4ae4a23af8)
2007-12-21r25781: Handle and test linked attribute renames.Andrew Bartlett1-7/+310
Andrew Bartlett (This used to be commit 56d9dd5140b6d7d7bbaa2f59ecdff7ee70c4faac)
2007-12-21r25780: fix bool returnStefan Metzmacher1-1/+1
metze (This used to be commit 7b77210d3e2c644d28d6e3795e6c4423dc6ea4bf)
2007-12-21r25763: Handle modifies, in the easy case (add/delete of elements), for theAndrew Bartlett1-1/+151
linked attributes. Andrew Bartlett (This used to be commit c6a6246fbde996ec7e85cb66f060cfe8b90044dd)
2007-12-21r25762: This test belongs best with the other checks for a valid parent, inAndrew Bartlett2-8/+8
the objectclass module. Andrew Bartlett (This used to be commit 16a292fcb134adec110cbc4c8f0fb03323750a45)
2007-12-21r25761: Rename to be a DN to be a child of itself wasn't being checked for.Andrew Bartlett1-0/+8
This prevents CN=test,dc=samba,dc=example,dc=com being renamed into CN=test2,cn=test,dc=samba,dc=example,dc=com Andrew Bartlett (This used to be commit 958a92ed0c6bee19d8b86df7c66330d2bba23e46)
2007-12-21r25755: Fix a couple of memory leaks, in particular a new leak onto the NULLAndrew Bartlett1-3/+5
context caused by my objectclass module work. Andrew Bartlett (This used to be commit 2a835d900fee71e4461d5d18e39b4358fa6fdfba)
2007-12-21r25754: More work on normal forms for ldb input.Andrew Bartlett1-69/+147
This patch is to ensure that all attributes are in the same case as the schema specifies. In the process, I ensure that all attributes are indeed in the schema. This ensures we use the schema case, not the user supplied case for future responses, which assists any (incorrect, but possible) case sensitive processing on a client. I've also removed more of the subtle 'schema &&' that metze objected to in the for loops, moving to a much more explicit 'if (schema)'. Andrew Bartlett (This used to be commit bfc96fff063e7cc278755c043b9da0ed4b75a615)
2007-12-21r25753: Move cn=rootdse to @ROOTDSE to avoid being caught up in schema ↵Andrew Bartlett1-2/+2
restrictions. Andrew Bartlett (This used to be commit f3390c9054244c0e4381007b36bbac9a17800570)
2007-12-21r25750: Update the objectclass module to improve consistency in Samba4.Andrew Bartlett1-78/+351
The aim here is to ensure that if we have CN=Users,DC=samba,DC=example,DC=com that we cannot have a DN of the form cn=admin ,cn=useRS,DC=samba,DC=example,DC=com This module pulls apart the DN, fixes up the relative DN part, and searches for the parent to copy the base from. I've used the objectclass module, as I intend to also validate the placement of child objects, by reading the allowedChildClasses virtual attribute. In the future, I'll also force the attribute names to be consistant (using the case from the schema). Andrew Bartlett (This used to be commit c0a0c69ac5a81cfcb7c7d5ba38db59f8686c30ab)
2007-12-21r25748: Don't segfault if we don't have a schema yet.Andrew Bartlett1-0/+12
Andrew Bartlett (This used to be commit 388e15a4c1fab55d376be956c2a7168b946bc994)
2007-12-21r25747: Implement linked attributes, for add operations.Andrew Bartlett2-0/+324
Much more work is still required here, particularly to handle this better during the provision, and to handle modifies and deletes, but this is a start. Andrew Bartlett (This used to be commit 2ba99d58e9fe1f8e4b15a58a2fdfce6e876f99b4)
2007-12-21r25729: Fix silly regression in the subtree_rename - I broke normal renames.Andrew Bartlett1-1/+1
Bug 5041 Andrew Bartlett (This used to be commit 7e68051bb7a9ac5f1b232c32b7614db61c3c1bc4)
2007-12-21r25723: Add a check to prevent deletion of entries with children. Sadly MMCAndrew Bartlett1-1/+112
doesn't trigger it's recursive delete correctly, but the error return is correct (but perhaps needs a different LDAP wire format). Andrew Bartlett (This used to be commit 10ba3ae6990098e772683de9144b13b3f1d45a36)
2007-12-21r25710: Finally fix subtree renames. Untested code is broken code and in thisAndrew Bartlett2-17/+18
case an oddity of the javascript caused the test to 'pass'. For the same oddity, we have a failure in ldb's handling of spaces in DNs. We need to resolve that too. Andrew Bartlett (This used to be commit e8cbac1a46f4d3b083e6bb5a509ef1ba47bebff1)
2007-12-21r25705: Ensure we return the out value to the caller.Andrew Bartlett1-0/+2
Andrew Bartlett (This used to be commit 3434262ad74c366ac58319c70880ca50898fa78c)
generated by cgit (git 2.34.1) at 2024-11-03 20:40:38 +0000