summaryrefslogtreecommitdiff
path: root/source4/dsdb/samdb
AgeCommit message (Collapse)AuthorFilesLines
2008-10-03Merge commit 'master/master'Andrew Tridgell5-48/+424
2008-10-03fixed the partition module and the GC handlingAndrew Tridgell1-4/+38
- when multiple partitions are searched, consider the search a success if any of the partitions return success - only search the right subset of partitions, looking at the scope and basedn of the search This fixes several errors with GC searches
2008-10-02fixed the sense of ldb base dn comparisons in two places, and use aAndrew Tridgell2-4/+4
direct comparison instead of a sub-tree comparison in another this fixes basedn searches on the global catalog port
2008-10-02Fix crash bugs in error paths: ac is not yet initialized here, and we don'tSimo Sorce1-27/+18
need to call ldb_module_done in the main module functions, we can directly return an error. ldb_module_done() is for callbacks
2008-10-02s4:rootdse: for now don't pass down controls for the rootdse searchStefan Metzmacher1-1/+1
metze
2008-10-02s4:partition: register DOMAIN_SCOPE and SEARCH_OPTIONS controlsStefan Metzmacher1-0/+14
metze
2008-10-02s4:partition: pass down the SEARCH_OPTIONS control as uncriticalStefan Metzmacher1-0/+8
metze
2008-10-02s4:linked_attributes: fix a crash bug when the definition of a target ↵Stefan Metzmacher1-3/+35
attribute is missing Windows 2003 has a broken schema where the definition of msDS-IsDomainFor is missing (which is supposed to be the backlink of the msDS-HasDomainNCs attribute. Our schema is extracted from windows 2003, so we have the problem. As the NET-API-BECOME-DC test triggers this bug, windows 2003 seems to just skip creating a backlink. metze
2008-10-02s4:kludge_acl: just fake support for the SD_FLAGS controlStefan Metzmacher1-0/+20
metze
2008-10-02s4:extended_dn: add support for <GUID=...>, <SID=...> or <WKGUID=...,DC=...> ↵Stefan Metzmacher1-44/+355
as basedn We resolve them into the real basedn before do the real search. metze
2008-09-30Compare sids in samba3sam tests.Jelmer Vernooij1-11/+21
2008-09-29s4:samldb: use the code path with async ldbStefan Metzmacher1-43/+4
This removes the event_context leak that caused NT_STATUS_TOO_MANY_OPENED_FILES in the server, because of all the epool fds metze
2008-09-29LDB ASYNC: misc changesSimo Sorce1-3/+2
2008-09-29LDB ASYNC: samba4 modulesSimo Sorce22-4333/+4946
2008-09-29s4:dsdb: passdown DSDB_CONTROL_REPLICATED_UPDATE_OID for replicated updatesStefan Metzmacher3-3/+37
We need to make sure replicated updates are handled differently in some situations, e.g. we should bypass the schema checks. metze
2008-09-25Revert LDB return code patches from Matthias.Jelmer Vernooij4-16/+16
2008-09-24Cosmetic corrections for the DSDB moduleMatthias Dieter Wallnöfer4-16/+16
This commit applies some cosmetic corrections for the DSDB (Directory Server Database).
2008-09-24Use loadparm since it's required by some modules.Jelmer Vernooij1-6/+6
2008-09-24Move source4/lib/crypto to lib/crypto.Jelmer Vernooij1-1/+1
2008-09-23Merge ldb_search() and ldb_search_exp_fmt() into a simgle function.Simo Sorce9-38/+29
The previous ldb_search() interface made it way too easy to leak results, and being able to use a printf-like expression turns to be really useful.
2008-09-21Fix last samba3sam.py test.Jelmer Vernooij1-24/+28
2008-09-21Fix DNs - only one more samba3sam test failing now.Jelmer Vernooij1-80/+72
2008-09-20More code simplifications.Jelmer Vernooij1-24/+25
2008-09-19Fix formatting.Jelmer Vernooij1-35/+63
2008-09-19Simplify code, remove print statements.Jelmer Vernooij1-29/+42
2008-09-19Fix objectclass tests.Jelmer Vernooij1-4/+3
2008-09-18Improve formatting.Jelmer Vernooij1-66/+54
2008-09-18Fix tests, be less verbose.Jelmer Vernooij1-35/+35
2008-09-18Fix some tests.Jelmer Vernooij1-4/+16
2008-09-12Remove ancient remains of first experimentations aboutSimo Sorce4-1781/+0
supporting a schema (This used to be commit 53b57300c799a079b4d64815243fe6120e0a9fa2)
2008-09-08Try to implement the right logic for systemFlagsAndrew Bartlett1-0/+37
The MS-ADTS document has quite detailed instrucitons on how these flags should be processed. This change also causes the correct sign-wrapping to occour, as these are declared as signed integers. Andrew Bartlett (This used to be commit 5c3d237a6d721dc75166bdc5ac0c6e76a4495bf7)
2008-09-08Don't expose passwords, even to the administrator.Andrew Bartlett1-1/+14
This ensures they don't leak over LDAP, but does not prevent access, as ldbsearch locally still bypasses these controls. Andrew Bartlett (This used to be commit fa3f3bab33001770a9d7e33875bf212636f6c128)
2008-08-22fixed error handling in ANR code Andrew Tridgell1-18/+24
when we can't process an ANR request we need to continue with the parse tree we were given, not a NULL tree (This used to be commit ed66feb80aac7432049fe9fd86a9232984587e17)
2008-08-21Don't walk past the end of ldb values.Andrew Bartlett5-8/+8
This is a partial fix towards bugs due to us walking past the end of what we think are strings in ldb. There is much more work to do in this area. Andrew Bartlett (This used to be commit 5805a9a8f35fd90fa4f718f73534817fa3bbdfd2)
2008-08-21Don't maniplate control entries in samldbAndrew Bartlett1-0/+4
(This used to be commit 8003ee9abf474de534677283fc499f9a3d992b20)
2008-08-20Use the new SEARCH_FLAG_ANR defineAndrew Bartlett1-1/+1
(This used to be commit 07d122ce2c255124dfb3acf71a3afdf52f06e1b1)
2008-08-18Note the ldb syntax for attribute syntaxes in the table.Andrew Bartlett1-0/+1
This includes additional Samba-specific syntaxes made available from the ldif_handlers code. This commit also changes some table to use #defines, to ensure consistancy in other parts of the code. Andrew Bartlett (This used to be commit e26a5efd9a580ed3728e1f449e367b1cd4a73b5f)
2008-08-18Ensure we fail to proceed if the schema won't load.Andrew Bartlett1-0/+1
(This used to be commit 07107c45c35a11979bf68a14b2c4df9415880fcb)
2008-08-18Remove references to the unused @SUBCLASS feature.Andrew Bartlett1-1/+1
This was removed from ldb_tdb a while ago Andrew Bartlett (This used to be commit fcb87e77860b449ac3483ccec5e6b5ed087540f2)
2008-08-15Generate the subSchema in cn=AggregateAndrew Bartlett1-5/+201
This reads the schema from the in-memory structure, when the magic attributes are requested. The code is a modified version of that used in the ad2oLschema tool (now shared). The schema_fsmo module handles the insertion of the generated result. As such, this commit also removes these entries from the setup/schema.ldif Metze's previous stub of this functionality is also removed. Andrew Bartlett (This used to be commit c7c32ec7b42bdf0f7b669644516438c71b364e60)
2008-07-28Remove unused variableAndrew Bartlett1-1/+0
(This used to be commit 31a303c099e26423160010c48b305434d4cbea25)
2008-07-26dsdb: add a comment about the parameter to DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OIDStefan Metzmacher1-0/+4
metze (This used to be commit 2f06fbe06be2e1b77ea013ddba853ce819e58e88)
2008-07-25Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-localAndrew Bartlett5-119/+501
(This used to be commit b12dd8ee5443ebfc204d1684f541d68ffb351197)
2008-07-25Clarify how we are doing the 'this is a rootdse query' check.Andrew Bartlett1-1/+2
(This used to be commit 8dfba3160cc4bc518f3ad8570d104e5baae784ca)
2008-07-24password_hash: fix the callers after drsblobs.idl changesStefan Metzmacher1-33/+41
metze (This used to be commit fac7c79afae05a88ecc2a63c8eb9f2fd53ab7ce6)
2008-07-24Handle schema reloading request.Anatoliy Atanasov4-4/+158
The ldif for that operation looks like this: dn: changetype: Modify add: schemaUpdateNow schemaUpdateNow: 1 It uses the rootdse's object functional attribute schemaUpdateNow. In rootdse_modify() this command is being recognized and it is send as extended operation with DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID. In the partition module its dispatched to the schema_fsmo module. The request is processed in the schema_fsmo module by schema_fsmo_extended(). (This used to be commit 39f9184ddf215f2b512319211c0a05702218ef87)
2008-07-23password_hash: add generation of the Primary:Kerberos-Newer-Keys blobStefan Metzmacher1-3/+216
But it's still of by default until we now what triggers this generation. It could be that the value is always generated but the KDC only uses it when in a specific funtional level, but it could also be that it's only generated in a specific functional level. metze (This used to be commit 08618bbd508ede0bb9e1922fae562cffdca41cbd)
2008-07-23password_hash: order the supplementalCredentials Packages in the same order ↵Stefan Metzmacher1-13/+55
like windows metze (This used to be commit ca9cd81a1798fb15195566422b3cad7c282fce89)
2008-07-23password_hash: split the generation of krb5 keys into a different functionStefan Metzmacher1-92/+69
metze (This used to be commit 4ad73a0bf8952783d3d9a7339c0c4fd8ca28981a)
2008-07-23password_hash: simplify the logic if we have cleartext we always generate ↵Stefan Metzmacher1-2/+2
the hashes metze (This used to be commit 5edff84429ef0d03b47a438e18861d26c97e17b6)
generated by cgit (git 2.34.1) at 2024-07-14 05:46:50 +0000