summaryrefslogtreecommitdiff
path: root/source4/dsdb
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r14426: ensure res is initialisedAndrew Tridgell1-1/+1
(This used to be commit ce1326157c7e139a43ab31d4d1e366b78b69e26f)
2007-10-10r14422: ensure that domain_attrs does not refer to a stack variable in a freedAndrew Tridgell1-35/+30
stack frame. The previous code worked with gcc, but strictly speaking the arrays are out of scope when referenced later in the function, and a compiler could construct them on the fly on the stack. (This used to be commit 489c33806559d0a8ee2bec97fed8ad63a4e1dc17)
2007-10-10r14401: Let samldb intercept the async requests.Simo Sorce1-0/+86
Samld is NOT yet async itself, but as that module only intercepts user,groups or foreign principal creation and nothing else we can accept it not to be asynchronous for now. Simo. (This used to be commit 250dac3072c647caf9f301219922007a3a672d93)
2007-10-10r14390: the rootdse does not show a distinguishedName attributeSimo Sorce1-0/+3
(This used to be commit 179e62d0931b382dc646b90fa8f4d418b2286823)
2007-10-10r14389: rootdse -> asyncSimo Sorce1-19/+107
(This used to be commit 4d76af63b07fd8fb5ca81ca310b174e253e7e4b1)
2007-10-10r14383: Fix non-developer build.Jelmer Vernooij1-1/+1
(This used to be commit f4de155c94b89e586640d11992953a0d5fc0716d)
2007-10-10r14380: Reduce the size of structs.hJelmer Vernooij4-4/+35
(This used to be commit 1a16a6f1dfa66499af43a6b88b3ea69a6a75f1fe)
2007-10-10r14373: remove unreached wrong code, found by sparseStefan Metzmacher1-1/+0
metze (This used to be commit dd485aa9600dd24c8b10c140974df9313f8ff2e8)
2007-10-10r14363: Remove credentials.h from the global includes.Jelmer Vernooij2-0/+2
(This used to be commit 98c4c3051391c6f89df5d133665f51bef66b1563)
2007-10-10r14312: Formatting and comments.Andrew Bartlett1-4/+6
Andrew Bartlett (This used to be commit 1905a27c78165972aaa78b72a199ee9230fbf73d)
2007-10-10r14293: fixed some errors found with beamAndrew Tridgell1-0/+6
(This used to be commit 230636a00ed9bd968356badad596ba7f93ba6c85)
2007-10-10r14181: This doesn't need level 1 debug, it happens whenever the DNS name is ↵Andrew Bartlett1-1/+1
looked up. Andrew Bartlett (This used to be commit 1badf363ab2e67ecca3162b2c0cf5e86f783f8bb)
2007-10-10r13998: From now on ldb_request() will require an alloced requestSimo Sorce2-22/+33
By freeing the request you will be sure everything down the path get freed. this also means you have to steal the results if you want to keep them :) simo. (This used to be commit e8075e6a062ce5edb84485e45d0b841c2ee2af7d)
2007-10-10r13961: make function publicStefan Metzmacher1-1/+1
metze (This used to be commit 9f2e20600d22fbdf582a5a90e8099fe591d5cc48)
2007-10-10r13960: Generate makefile rules for installing/removing shared modules.Jelmer Vernooij1-8/+8
(This used to be commit 2c746980328431ab04852dc668899e3eb042da99)
2007-10-10r13924: Split more prototypes out of include/proto.h + initial work on headerJelmer Vernooij6-0/+9
file dependencies (This used to be commit 122835876748a3eaf5e8d31ad1abddab9acb8781)
2007-10-10r13910: Fix the 'your password has expired' on every login. We now considerAndrew Bartlett1-3/+8
if the 'password does not expire' flag has been set, filling in the PAC and netlogon reply correctly if so. Andrew Bartlett (This used to be commit c530ab5dc6865c422382bc0afa7a86f7ec1acdf2)
2007-10-10r13909: Make this code clearer.Andrew Bartlett1-2/+4
Andrew Bartlett (This used to be commit b89893ab90b50d6b04a6407441fe3e0e4f1688ec)
2007-10-10r13840: Mark some functions as public.Jelmer Vernooij1-8/+0
(This used to be commit 9a188eb1f48a50d92a67a4fc2b3899b90074059a)
2007-10-10r13823: make async_wait part of the modules opsSimo Sorce1-1/+1
(This used to be commit b4202cf030d5f154f0f94f5f501ecd648ba5c48f)
2007-10-10r13803: fixed two errors found with 'make valgrindtest'Andrew Tridgell1-1/+1
(This used to be commit 4257fd91ceca34dd868a9168efc28b6cb63f0357)
2007-10-10r13786: [merge] Add registration functions for LDB modulesJelmer Vernooij9-124/+59
Applications that use LDB modules will now have to run ldb_global_init() before they can use LDB. The next step will be adding support for loading LDB modules from .so files. This will also allow us to use one LDB without difference between the standalone and the Samba-specific build (This used to be commit 52a235650514039bf8ffee99a784bbc1b6ae6b92)
2007-10-10r13700: added highestCommittedUSN, uSNChanged and uSNCreated support, usingAndrew Tridgell1-0/+9
the @BASEINFO sequenceNumber (simo, I changed the function pointer to a structure element as you preferred) (This used to be commit 68c9ac38c7eed221b44499ee3d74597063dfe7a1)
2007-10-10r13616: Add new ldb functions: ldb_msg_add_steal_string() andAndrew Bartlett1-7/+7
ldb_msg_add_steal_value(). These try to maintain the talloc heirachy, which must be correct otherwise talloc_steal operations of entire attribute lists fails. This fixes the currentTime value, found by using Microsoft's dcdiag tool (before this commit, it pointed to invalid memory, due to the changes in -r 13606) Andrew Bartlett (This used to be commit 424df1bb369fddcfd358cf26dd0da9d3851d181e)
2007-10-10r13615: Make ldb_set_errstring get ldb instead of module as parameter.Simo Sorce4-18/+24
The module was just used to get to the ldb so it was meningless. Also add LDB_WAIT_ONCE e relative code in ldb_ildap.c (This used to be commit d5b467b7c132b0bd4d23918ba7bf3370b1afcce8)
2007-10-10r13606: An attempt to fix #3525.Andrew Bartlett1-1/+5
The problem was that the supportedControls were being stolen into the result sent to the client, then talloc_free()ed. This caused them to be invalid on the next rootDSE query. This also tries to avoid attaching the result to the long-term samdb context, and avoids an extra loop in the result processing (pointed out by tridge). Andrew BARtlett (This used to be commit d0b8957f38fda4d84a318d6121ad87ba53a9ddb3)
2007-10-10r13507: the 'data' element of LDAP controls is optional.Stefan Metzmacher1-0/+3
(prepare the next commit) metze (This used to be commit a1bbf7f2982185cb6cd544b65b4709ab33a850c5)
2007-10-10r13353: Fix a crash bug in rootdse when we do not pass in credentialsSimo Sorce2-9/+7
a plain ldbsearch would just crash Fix kludge_acl, not passing on the second stage registration phase to other modules Simo (This used to be commit bec99c5cb65d8c32fd4f636ed2f5383fb1b39830)
2007-10-10r13282: Indentation, and ensure we handle the talloc_free in the right placeAndrew Bartlett1-4/+4
all the time. Andrew Bartlett (This used to be commit 2aa9fefbb30959f29e9d5a79c4880f33a747b68c)
2007-10-10r13264: Move declaration before code.James Peach1-5/+6
(This used to be commit 6e55241a843f80cc513d06266b54b38ce48c51ed)
2007-10-10r13256: Free temporary memory on error cases, and try to clean up what's leftAndrew Bartlett1-0/+9
earlier. Move gendb_search() to use talloc_vasprintf() and steal only the parts actually being used for the results. Andrew Bartlett (This used to be commit 53efb3e3e980c768e0aee216ccd8dc3e14707246)
2007-10-10r13253: More work to ensure that we don't keep data on long-term contexts.Andrew Bartlett1-0/+5
Andrew Bartlett (This used to be commit 35517573ff807339f96573e58bdec29073be9594)
2007-10-10r13252: Cleanup, both in code, comments and talloc use:Andrew Bartlett1-9/+30
In particular, I've used the --leak-report-full option to smbd to track down memory that shouldn't be on a long-term context. This is now talloc_free()ed much earlier. Andrew Bartlett (This used to be commit c6eb74f42989d62c82d2a219251837b09df8491c)
2007-10-10r13207: Use the new API for using/not using kerbeors in hdb-ldb.cAndrew Bartlett1-1/+5
Update the rootdse module to use the new schema. Andrew Bartlett (This used to be commit b0b150d08ac39ed486071487826da2e306db6a0b)
2007-10-10r13150: Correct comment.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit c34666abc170687daa8dcd085020880b598caaf7)
2007-10-10r12998: A big update to samldb.cAndrew Bartlett1-194/+433
This updates the module to handle both SID allocation and nextRid updating while importing users. (As imported users already have a SID, so don't go via the allocation step). We also ensure that SIDs in the database are unquie at create time. Furthermore, at allocation time, we double-check the SID isn't already in use, and that we don't create a foriegnSecurityPrincipal for a 'local' sid. Also create random samAccountName entries for users without one (we were setting $000000-000000000000). We may want to seperate the uniqueness code from the rest of samldb, and into a module with the objectguid code, which needs similar checks. These checks also need to apply to modification, or those modifications denied outright. Also update part of the testsuite to validate this. Andrew Bartlett (This used to be commit 7a9c8eee4bea88f5f0bb7c62f701476384b7dc84)
2007-10-10r12996: Restrict this search to domain objects.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 4d69eae382a789910d24ecadfb08b8d95a3c04b0)
2007-10-10r12943: Generate a SID for the domain join account using the modules, ratherAndrew Bartlett1-2/+0
than a hardcoded SID. Fix the samldb module to return the what *was* the nextrid, rather than the new nextrid (that is for next time). Andrew Bartlett (This used to be commit ffe9042e15cebbc7ff1bac90ec39835753d6caa7)
2007-10-10r12895: Error strings save lives.Andrew Bartlett1-10/+16
err, they save time at least. The correct use of an error string in this case quickly pinpoited an overzealous check, and saved me hours of painful debugging. Andrew Bartlett (This used to be commit 26946c90e87a94453a5ad3e9e26ef19b36656237)
2007-10-10r12860: Remove unused function. (we handle this in the password_hash module).Andrew Bartlett1-22/+0
Andrew Bartlett (This used to be commit daa4b76800024c1494eeda675c46af3790fac788)
2007-10-10r12851: Fix some typosJelmer Vernooij2-4/+4
(This used to be commit 61ae77beecd573809d917dd86d1fac6cc40e967d)
2007-10-10r12842: don't include system headers directlyStefan Metzmacher1-1/+1
metze (This used to be commit 976052c6561dee7232c1a10fb977b1c4776825a2)
2007-10-10r12818: When denying an operation, include what we think the username is inAndrew Bartlett1-1/+16
the error message. Andrew Bartlett (This used to be commit 36c1f67f12d5ac83a7a205c0ec152a79c4a8ba4b)
2007-10-10r12773: - remove unused variable, fix the build with some old compilersStefan Metzmacher1-3/+0
metze (This used to be commit 1253784c923b569593b5207c14567c637f3a7ae7)
2007-10-10r12769: Make ldb_next_request() evident, I was much confused on first sightSimo Sorce1-4/+6
Simo. (This used to be commit 2f0c7b896274e5e15e150c70d7ebe70355f6c4c0)
2007-10-10r12763: Oops. If you call ldb_search from within an ldb module's searchAndrew Bartlett1-1/+3
request handler, you really have to watch the recursion issues... Andrew Bartlett (This used to be commit 46628e86a2be6d334b2d0427e7052517c7ab1d4c)
2007-10-10r12762: Simo correctly asked that the policy logic (which attributes containAndrew Bartlett1-26/+62
passwords) be moved into the database, and not be hard-coded in the module source. Andrew Bartlett (This used to be commit 1fbe09ce818ac1603bd747610262865b8698fe04)
2007-10-10r12746: An initial version of the kludge_acls module.Andrew Bartlett2-0/+223
This should be replaced with real ACLs, which tridge is working on. In the meantime, the rules are very simple: - SYSTEM and Administrators can read all. - Users and anonymous cannot read passwords, can read everything else - list of 'password' attributes is hard-coded Most of the difficult work in this was fighting with the C/js interface to add a system_session() all, as it still doesn't get on with me :-) Andrew Bartlett (This used to be commit be9d0cae8989429ef47a713d8f0a82f12966fc78)
2007-10-10r12743: Remove the ugly way we had to make a second stage init and introduceSimo Sorce7-39/+26
a second_stage_init private function for modules that need a second stage init. Simo. (This used to be commit 5e8b365fa2d93801a5de1d9ea76ce9d5546bd248)
2007-10-10r12733: Merge ldap/ldb controls into main treeSimo Sorce8-7/+392
There's still lot of work to do but the patch is stable enough to be pushed into the main samba4 tree. Simo. (This used to be commit 77125feaff252cab44d26593093a9c211c846ce8)