summaryrefslogtreecommitdiff
path: root/source4/lib
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r7773: fixed the tls code for the non-GNUTLS caseAndrew Tridgell1-1/+1
(This used to be commit bc6bc84ef4ad3434c6cb8d94a8d7a105ad2fd8c2)
2007-10-10r7769: added client support in the tls library apiAndrew Tridgell2-12/+126
(This used to be commit 71ee6a1df542b95c61217de71e6f56b8ce9d81b5)
2007-10-10r7767: fixed ldb dependenciesAndrew Tridgell1-1/+1
(This used to be commit 97e4ba84fb4cf4b95270c5d49b6bb8a9a92feaac)
2007-10-10r7759: allow ldb_errstring() to be used when not connectedAndrew Tridgell1-0/+3
(This used to be commit 818ae965afad37216d804aa630359d875794612e)
2007-10-10r7754: fixed the local port of accepted sockets in socket_wrapper. This fixesAndrew Tridgell1-4/+3
the problem with the ldap tests in 'make test' (This used to be commit 56fe27623ce31015a5a14f176f1445f51d57b0b8)
2007-10-10r7751: only enable tls on the ldaps port in ldap server, and reject non-tlsAndrew Tridgell2-5/+7
connections on that port (This used to be commit 30da6a1cc41308a16a486111887f45bcf598f064)
2007-10-10r7750: handle STATUS_MORE_ENTRIES on send in tlsAndrew Tridgell1-0/+4
(This used to be commit 135c3367ff737246ea40030d3c852769666ff522)
2007-10-10r7749: some bug fixes from testing with socket:testnonblockAndrew Tridgell1-0/+2
- fixed some infinite loops in asn1.c - ensure asn1 callers know if an error is end of buffer or bad data - handle npending 0 in ldap server (This used to be commit f22c3b84c8912ccd36e676a782b58f1841be8875)
2007-10-10r7747: - simplified the ldap server buffer handlingAndrew Tridgell2-1/+25
- got rid of the special cases for sasl buffers - added a tls_socket_pending() call to determine how much data is waiting on a tls connection - removed the attempt at async handling of ldap calls. The buffers/sockets are all async, but the calls themselves are sync. (This used to be commit 73cb4aad229d08e17e22d5792580bd43a61b142a)
2007-10-10r7745: better handling of recv errors in tls libraryAndrew Tridgell1-1/+10
(This used to be commit 42d8a1a222430bd64962da7cc4ac0193b5c003f7)
2007-10-10r7743: be consistent in how stdin is supported for ldbadd and ldbmodifyAndrew Tridgell1-18/+10
(This used to be commit 3d60b3a8eea5ac6c35cf2e579ae12cef3dc1794e)
2007-10-10r7742: abstracted out the tls code from the web server, so that our other ↵Andrew Tridgell4-0/+646
servers can easily become tls enabled. This will be used to add support for ldaps (This used to be commit 950500f603725349d2a0e22878e83dd1b5975f9f)
2007-10-10r7741: fixed the verbose option in ldbeditAndrew Tridgell1-12/+11
(This used to be commit a440133140a6adb5ea62d37690b9c4ae74dc6be0)
2007-10-10r7740: get rid of our duplicate base64 routinesAndrew Tridgell4-82/+15
(This used to be commit cf17f90a83cf04815544c5408eb56d00546b3e88)
2007-10-10r7739: fixed an off by one bug in the base64 decoder for ldb ldifAndrew Tridgell1-0/+3
(This used to be commit fe2b77af2352f1964402a4286105916e990dc36f)
2007-10-10r7728: handle 64 bit integers in INTEGER matchAndrew Tridgell1-3/+3
(This used to be commit 57132344b4e39a670e683b3db00665e5f7a899fd)
2007-10-10r7726: - removed some unused variablesAndrew Tridgell3-3/+9
- handle ldb_errstring() calls on failed connect (This used to be commit 8698a20fcc6a04ccbe533afd742e7a5df94423ee)
2007-10-10r7719: make the ildap ldb backend use the defaultNamingContext if the basednAndrew Tridgell1-2/+28
is not specified, so: ldbsearch ldap://hostname '(objectclass=user)' works without knowing the domain name (This used to be commit f6c2c5190737ca11f55a147f5295ccca505fb58b)
2007-10-10r7714: enable samba credentials handling in ldb tools. So you can now do aAndrew Tridgell10-58/+38
encrypted ldbedit against w2k3 (This used to be commit 6277c3923e7d9c26753424b1e77ac62f8e0729a4)
2007-10-10r7712: ldb/common/util.c is goneAndrew Tridgell1-1/+0
(This used to be commit aec0544962483b3cd8507b2de6d1552691e72932)
2007-10-10r7711: update callers of ldb_connect() for new syntaxAndrew Tridgell1-4/+11
(This used to be commit f852661463624714ad8e7adc0547b2f07b8f9f6d)
2007-10-10r7710: new command line handling code for ldbAndrew Tridgell3-0/+189
(This used to be commit 5e8db1c9b3bb6c5196652a7af877b4204148c305)
2007-10-10r7709: - convert ldb to use popt, so that it can interact with the sambaAndrew Tridgell23-689/+343
cmdline credentials code (which will be done soon) - added a ldb_init() call, and changed ldb_connect() to take a ldb context. This allows for much better error handling in ldb_connect(), and also made the popt conversion easier - fixed up all the existing backends with the new syntax - improved error handling in *_connect() - fixed a crash bug in the new case_fold_required() code - ensured that ltdb_rename() and all ltdb_search() paths get the read lock - added a ldb_oom() macro to make it easier to report out of memory situations in ldb code (This used to be commit f648fdf187669d6d87d01dd4e786b03cd420f220)
2007-10-10r7690: Move the NT hash generation into the credentials system, rather thanAndrew Bartlett1-11/+69
in all the callers. This also allows us to be more flexible in the type of password we store. Andrew Bartlett (This used to be commit 00b8588c68526e1d86fda0bd81c0b86f690b62c3)
2007-10-10r7669: removed ldap from our configure testsAndrew Tridgell2-17/+0
This takes our link dependencies from this: tridge@blu:~/samba/samba4/source$ ldd bin/ldbsearch libdl.so.2 => /lib/tls/libdl.so.2 (0xb7fc9000) libldap_r.so.2 => /usr/lib/libldap_r.so.2 (0xb7f92000) liblber.so.2 => /usr/local/lib/liblber.so.2 (0xb7f85000) libpam.so.0 => /lib/libpam.so.0 (0xb7f7d000) libc.so.6 => /lib/tls/libc.so.6 (0xb7e48000) /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0xb7fea000) libresolv.so.2 => /lib/tls/libresolv.so.2 (0xb7e36000) libcrypt.so.1 => /lib/tls/libcrypt.so.1 (0xb7e09000) libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0xb7df3000) libgnutls.so.11 => /usr/lib/libgnutls.so.11 (0xb7d8c000) libpthread.so.0 => /lib/tls/libpthread.so.0 (0xb7d7d000) libtasn1.so.2 => /usr/lib/libtasn1.so.2 (0xb7d6d000) libgcrypt.so.11 => /usr/lib/libgcrypt.so.11 (0xb7d20000) libgpg-error.so.0 => /usr/lib/libgpg-error.so.0 (0xb7d1c000) libz.so.1 => /usr/lib/libz.so.1 (0xb7d09000) libnsl.so.1 => /lib/tls/libnsl.so.1 (0xb7cf5000) to this: tridge@blu:~/samba/samba4/source$ ldd bin/ldbsearch libdl.so.2 => /lib/tls/libdl.so.2 (0xb7fc9000) libpam.so.0 => /lib/libpam.so.0 (0xb7fc0000) libc.so.6 => /lib/tls/libc.so.6 (0xb7e8b000) /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0xb7fea000) this finally gets rid of the implicit dependency on pthreads! Yay! (This used to be commit 844d2a20830a4666b6c38f6a58305be64b6b76fa)
2007-10-10r7668: - setup HAVE_ILDAP to enable the ildap backend in ldbAndrew Tridgell1-1/+2
- fixed a bug in socket_connect_ev() (This used to be commit 3f77b879a035929a843e02b798d54eba6625bde7)
2007-10-10r7667: added a ldb ildap backend, using our internal ldap client library. ↵Andrew Tridgell4-1/+421
Next step is to remove the check for the ldap libraries in configure (This used to be commit 74841dbb2a86bb1c584b5c26c4cd24a818a65a34)
2007-10-10r7666: fixed a memory leak in the ldap ldb backendAndrew Tridgell1-3/+2
(This used to be commit ac3f33c61555a2afa30fe446676013564982e257)
2007-10-10r7660: improved error handling in socket_connect_ev() (it matters when nameAndrew Tridgell1-0/+3
resolution fails) (This used to be commit 4013c2ddea0cd03f875e2acf40d2a34344017d05)
2007-10-10r7641: Fix based on work from "Shlomi Yaakobovich" <Shlomi@exanet.com> to catchJeremy Allison1-6/+7
loops in corrupted tdb files. Jeremy. (This used to be commit f9f3037d6855259edd56fd5a23d63dbb37f0a751)
2007-10-10r7635: change the license of this file to lgpl like the rest of ldbSimo Sorce1-14/+30
(This used to be commit 8735188b46d4bb6c3d63d22a8c6f3fad2c82df89)
2007-10-10r7633: this patch started as an attempt to make the dcerpc code use a givenAndrew Tridgell8-13/+26
event_context for the socket_connect() call, so that when things that use dcerpc are running alongside anything else it doesn't block the whole process during a connect. Then of course I needed to change any code that created a dcerpc connection (such as the auth code) to also take an event context, and anything that called that and so on .... thus the size of the patch. There were 3 places where I punted: - abartlet wanted me to add a gensec_set_event_context() call instead of adding it to the gensec init calls. Andrew, my apologies for not doing this. I didn't do it as adding a new parameter allowed me to catch all the callers with the compiler. Now that its done, we could go back and use gensec_set_event_context() - the ejs code calls auth initialisation, which means it should pass in the event context from the web server. I punted on that. Needs fixing. - I used a NULL event context in dcom_get_pipe(). This is equivalent to what we did already, but should be fixed to use a callers event context. Jelmer, can you think of a clean way to do that? I also cleaned up a couple of things: - libnet_context_destroy() makes no sense. I removed it. - removed some unused vars in various places (This used to be commit 3a3025485bdb8f600ab528c0b4b4eef0c65e3fc9)
2007-10-10r7627: Fix warning in unused (?) function.Tim Potter1-1/+1
(This used to be commit a4d05988637b4e607c3cdad83bfb1e9cf923b7f0)
2007-10-10r7626: a new ldap client library. Main features are:Andrew Tridgell4-5/+82
- hooked into events system, so requests can be truly async and won't interfere with other processing happening at the same time - uses NTSTATUS codes for errors (previously errors were mostly ignored). In a similar fashion to the DOS error handling, I have reserved a range of the NTSTATUS code 32 bit space for LDAP error codes, so a function can return a LDAP error code in a NTSTATUS - much cleaner packet handling (This used to be commit 2e3c660b2fc20e046d82bf1cc296422b6e7dfad0)
2007-10-10r7615: fix the build and simplify gendb_search_dnSimo Sorce2-29/+16
(This used to be commit b38bb63175ae0bdcf833c017e5fbbfc2c0769506)
2007-10-10r7608: bug fix after yesterday's changeSimo Sorce1-1/+1
(This used to be commit 0218fc678e375a05fbc4da5500706199340918e2)
2007-10-10r7602: fix some compiler warningsDerrell Lipman3-3/+3
(This used to be commit ce9966e091d36f66d409ac6f7b5e462c9dc37325)
2007-10-10r7601: ldb_sqlite3 work in progressDerrell Lipman5-47/+231
(This used to be commit 0a64948152a446b5e127578d49b1ed8a90a1a222)
2007-10-10r7597: removed the bogus get_myfullname() and get_mydomname() calls, and putAndrew Tridgell1-56/+0
them in the ntlmssp code, which is the only place they are used. Andrew, please remove them completely once you have some more reliable way to get this info they are bogus as gethostname() may give us a short hostname (and does on lot of systems), so the calls often give totally the wrong result anyway (This used to be commit 35ec292f86bf663618b4bd03133d9bbd6e2faf10)
2007-10-10r7596: next step in ldap cleanup. I'm aiming to get rid of the cut&pastedAndrew Tridgell1-3/+5
ldif parsing code in libcli/ldap/ldap_ldif.c, and instead use the ldb ldif code. To do that I have changed the ldap code to use 'struct ldb_message_element' instead of 'struct ldap_attribute'. They are essentially the same structure anyway, so by making them really the same it will be much easier to use the ldb code in libcli/ldap/ I have also made 'struct ldb_val' the same as a DATA_BLOB, which will simplify data handling in quite a few places (I haven't yet removed all the code that maps between these two, that will come later) (This used to be commit 87fc3073392236221a3a6b933284e9e477c24ae5)
2007-10-10r7586: ldb_sqlite3 making progress. add and search have indicated a ↵Derrell Lipman3-379/+306
willingness to operate properly on initial testing (This used to be commit 86ca8639e0ddc2525f8ed0ca9879d9f98c0cd00e)
2007-10-10r7582: Better way to have a fast path searching for a specific DN.Simo Sorce6-15/+49
Old way was ugly and had a bug, you couldn't add an attribute named dn or distinguishedName and search for it, tdb would change that search in a dn search. This makes it also possible to search by dn against an ldap server as the old method was not supported by ldap syntaxes. sss (This used to be commit a614466dec2484a0d39bdfae53da822cfcf80926)
2007-10-10r7572: fixed filter in test suiteAndrew Tridgell1-1/+1
(This used to be commit 73d2e5df0ccf4ab1b78a1044058efd8e2479aa1a)
2007-10-10r7571: fixed the generation of the filter string for extended filtersAndrew Tridgell1-1/+1
(This used to be commit 348a86e64392245571204ac5004e73221ac441f5)
2007-10-10r7564: added a test showing the search expression that w2k is actually givingAndrew Tridgell1-0/+19
us that triggered this work (This used to be commit 853b8cd72dbb8c50d527e66aa7b5692060b66d2b)
2007-10-10r7562: work in progressDerrell Lipman1-323/+699
(This used to be commit d8a9ce78533639f510b60b48c8f305bd07f3f717)
2007-10-10r7561: moved OID constants into ldb.h and used manifest constants in ldb_match.cDerrell Lipman2-2/+8
(This used to be commit 42cbb155c20779c458f727488c8554842b24681b)
2007-10-10r7560: added tests for extended bitop search functionsAndrew Tridgell2-0/+50
(This used to be commit 7b58b3a9c53952f606eb75f5e916e0cf994b2d06)
2007-10-10r7559: support 64 bit matching in bitopsAndrew Tridgell1-6/+6
(This used to be commit 0c44a67001b9ae91c1ba7fc52f22d1eafc22dcc7)
2007-10-10r7558: added support in ldb for extended ldap search requests. These areAndrew Tridgell6-14/+193
using to perform such things as bitop tests on integers. So far I have only added support for the 1.2.840.113556.1.4.803 and 1.2.840.113556.1.4.804 rules, which are for bitwise and/or (This used to be commit 5f773b065f1db959e59c02de68bcf30cef1a6c2c)