Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-12-13 | s4:ldap_controls: allow DSDB_CONTROL_BYPASS_PASSWORD_HASH_OID over sockets. | Stefan Metzmacher | 1 | -2/+2 | |
The DSDB_CONTROL_BYPASS_PASSWORD_HASH_OID control has to data attached to it. So we can allow it to be send over LDAP. We'll accept this control over the privileged ldapi socket only. metze | |||||
2010-10-31 | s4: Remove the old perl/m4/make/mk-based build system. | Jelmer Vernooij | 1 | -12/+0 | |
The new waf-based build system now has all the same functionality, and the old build system has been broken for quite some time. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sun Oct 31 02:01:44 UTC 2010 on sn-devel-104 | |||||
2010-10-27 | s4-ldb: Changes the aclread module to use LDB_HANDLE_FLAG_UNTRUSTED to ↵ | Nadezhda Ivanova | 1 | -2/+0 | |
determine the source of the request The aclread module used to use a control to make sure the request comes from the ldap server, but now the rootdse filters out any unregistered controls comming from ldap, so the control is lost. Using the LDB_HANDLE_FLAG_UNTRUSTED is a much more elegant solution. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Wed Oct 27 11:55:11 UTC 2010 on sn-devel-104 | |||||
2010-10-26 | waf: Stop automaticaly changing dashes to underscores in library names. | Jelmer Vernooij | 1 | -1/+1 | |
2010-10-26 | waf: Remove lib prefix from libraries manually. | Jelmer Vernooij | 1 | -1/+1 | |
2010-10-26 | s4: Drop duplicate 'lib' prefix for private libraries. | Jelmer Vernooij | 1 | -1/+1 | |
2010-10-24 | s4: Rename LIBCLI_LDAP to libcli_ldap. | Jelmer Vernooij | 1 | -1/+1 | |
2010-10-24 | s4: Rename LIBSAMBA-* to libsamba-* | Jelmer Vernooij | 1 | -1/+1 | |
2010-10-23 | s4/ldb:introduce the LDB_CONTROL_PROVISION_OID control | Matthias Dieter Wallnöfer | 1 | -0/+2 | |
This control is exactly thought for the actions which previously were performed using the RELAX one. We agreed that the RELAX control will only remain for interactions with OpenLDAP. | |||||
2010-10-23 | ldb:rename LDB_CONTROL_BYPASSOPERATIONAL_OID into ↵ | Matthias Dieter Wallnöfer | 1 | -2/+2 | |
LDB_CONTROL_BYPASS_OPERATIONAL_OID It's nicer to have this consistent with "BYPASS_PASSWORD_HASH". | |||||
2010-10-21 | s4-libcli: make LIBCLI_LDAP a private library | Andrew Tridgell | 1 | -7/+8 | |
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> | |||||
2010-10-18 | Revert "s4:dsdb - make the RELAX control private" | Andrew Bartlett | 1 | -2/+1 | |
This must be available to the OpenLDAP backend, to set the GUID values in some situations. We need a proper ACL mechanism to control the use or abuse of this control. This reverts commit 10adee89367cee9add993869280542418fb3d370. | |||||
2010-10-16 | s4:dsdb - make the RELAX control private | Matthias Dieter Wallnöfer | 1 | -1/+2 | |
This makes our LDAP much more secure and less error-prone. Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Oct 16 19:43:36 UTC 2010 on sn-devel-104 | |||||
2010-10-16 | s4:libcli/ldap/ldap_controls.c - fix up the controls list | Matthias Dieter Wallnöfer | 1 | -29/+49 | |
- add missing private controls and comments - use control defines rather than hardcoded values -> easier to comprehend - reorder controls | |||||
2010-09-28 | s4-ildap: two more places that need talloc_reparent() | Andrew Tridgell | 1 | -1/+1 | |
these contexts can have references Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Tue Sep 28 00:04:03 UTC 2010 on sn-devel-104 | |||||
2010-09-27 | s4-ildap: fixed a talloc_steal with references error | Andrew Tridgell | 1 | -1/+1 | |
We need talloc_reparent() instead Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Mon Sep 27 20:38:00 UTC 2010 on sn-devel-104 | |||||
2010-09-27 | s4:libcli/ldap: fix sending oneway requests | Stefan Metzmacher | 1 | -18/+26 | |
metze | |||||
2010-09-26 | s4-ldap: Added a control to apply the access checks on read via LDAP | Nadezhda Ivanova | 1 | -0/+2 | |
2010-09-10 | s4/ldap: use time_mono for reconnect timeout | Björn Jacke | 1 | -2/+2 | |
2010-08-17 | s4-dsdb: added support for LDB_CONTROL_RODC_DCPROMO_OID | Andrew Tridgell | 1 | -0/+1 | |
this control adds a unique msDS-SecondaryKrbTgtNumber attribute to a user object. There is some 'interesting' interaction with the rangeLower and rangeUpper attributes and this add. We don't implementat rangeLower/rangeUpper yet, but when we do we'll need an override for this control (or be careful about module ordering). Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> | |||||
2010-08-17 | s4-ldap: use common functions for ldap flag controls encode/decode | Andrew Tridgell | 1 | -163/+11 | |
many controls are simple present/not-present flags, and don't need their own parsers Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> | |||||
2010-07-16 | s4-loadparm: 2nd half of lp_ to lpcfg_ conversion | Andrew Tridgell | 2 | -5/+5 | |
this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org> | |||||
2010-06-28 | s4/libcli: Register LDB_CONTROL_REVEAL_INTERNALS and ↵ | Endi S. Dewata | 1 | -0/+4 | |
DSDB_CONTROL_PASSWORD_CHANGE_STATUS_OID controls. Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org> | |||||
2010-06-20 | ldb:controls - add the "TREE_DELETE" control for allowing subtree deletes | Matthias Dieter Wallnöfer | 1 | -0/+20 | |
2010-06-20 | s4:ldap_controls.c - remove encoding functions for private recalculate SD ↵ | Matthias Dieter Wallnöfer | 1 | -19/+0 | |
control | |||||
2010-06-07 | s4: Remove an uselessly exposed control | Matthieu Patou | 1 | -1/+0 | |
2010-05-21 | s4:libcli/ldap Update headermap.txt (autotools build) and wscript_build for ↵ | Andrew Bartlett | 1 | -1/+1 | |
libcli_ldap.h It took a little while to find where to update this... Andrew Bartlett | |||||
2010-05-21 | s4:libcli/ldap Rename ldap.h to libcli_ldap.h | Andrew Bartlett | 6 | -5/+5 | |
It is a problem if a samba header is called ldap.h if we also want to use OpenLDAP's ldap.h Andrew Bartlett | |||||
2010-04-06 | s4-waf: mark the wscript files as python so vim/emacs knows how to highlight ↵ | Andrew Tridgell | 1 | -0/+2 | |
them | |||||
2010-04-06 | s4-waf: install the rest of the headers | Andrew Tridgell | 1 | -5/+1 | |
2010-04-06 | build: commit all the waf build files in the tree | Andrew Tridgell | 1 | -0/+12 | |
2010-03-02 | s4-libcli: Added NULL handlers for DSDB_CONTROL_DN_STORAGE_FORMAT_OID and ↵ | Endi S. Dewata | 1 | -0/+4 | |
LDB_CONTROL_AS_SYSTEM_OID Signed-off-by: Andrew Bartlett <abartlet@samba.org> | |||||
2010-02-17 | s4/ldap: Refactor the fix for ldap nested searches | Kamen Mazdrashki | 1 | -4/+0 | |
Current implementation synchronizes processing for all types of LDAP request, not only LDAP_Search ones. Synchronization for ldap replies processing is done locally in ldb_ildap module as this concerns only ildb_callback() function. Signed-off-by: Anatoliy Atanasov <anatoliy.atanasov@postpath.com> | |||||
2010-01-29 | s4/ldap: Fix nested searches SEGFAULT bug | Kamen Mazdrashki | 1 | -0/+4 | |
Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
2009-11-28 | s4: fix SD update and password change in upgrade script | Matthieu Patou | 1 | -0/+20 | |
- reserve a new Samba OID for recalculate SD control - fix the update SD function - fix handling of kvno in the update_machine_account_password function - fix handling of handles in RPC winreg server Signed-off-by: Andrew Tridgell <tridge@samba.org> | |||||
2009-11-19 | s4:ldbcli - Added encoder/decoder for relax control. | Endi S. Dewata | 1 | -2/+20 | |
2009-11-12 | s4:libcli/ldap Add 'relax' OID to known network representations | Andrew Bartlett | 1 | -0/+2 | |
This patch, inspired by a patche by Endi S. Dewata <edewata@redhat.com>, allows this control to be passed to the LDAP backend. Andrew Bartlett | |||||
2009-10-14 | s4: Changes the old occurences of "lp_realm" in "lp_dnsdomain" where needed | Matthias Dieter Wallnöfer | 1 | -1/+3 | |
For KERBEROS applications the realm should be upcase (function "lp_realm") but for DNS ones it should be used lowcase (function "lp_dnsdomain"). This patch implements the use of both in the right way. | |||||
2009-10-02 | s4: fix various warnings (not "const" related ones) | Matthias Dieter Wallnöfer | 2 | -3/+2 | |
2009-08-17 | s4:libcli/ldap Explain why we set a hostname for ldapi:// connections | Andrew Bartlett | 1 | -1/+3 | |
It is a pretty odd thing to do, and it's only because of the restrictions of DIGEST-MD5 in Cyrus SASL that we do it. Andrew Bartlett | |||||
2009-07-31 | s4:libcli/ldap: the tls code steals the original socket on its own now | Stefan Metzmacher | 1 | -3/+0 | |
metze | |||||
2009-07-23 | s4:libcli/ldap: add support for new Recycle Bin Feature LDAP Controls | Stefan Metzmacher | 1 | -0/+40 | |
LDAP_SERVER_SHOW_RECYCLED_OID 1.2.840.113556.1.4.2064 LDAP_SERVER_SHOW_DEACTIVATED_LINK_OID 1.2.840.113556.1.4.2065 metze | |||||
2009-06-10 | fixed the encoding/decoding of the reverse attribute for server side sort | Andrew Tridgell | 1 | -3/+10 | |
2009-02-24 | libcli/ldap: move generic ldap control encoding code to ldap_message.c | Stefan Metzmacher | 2 | -129/+6 | |
As they can we static there, we pass the specific handlers as parameter where we need to support controls. metze | |||||
2009-02-24 | s4:libcli/ldap: don't use 'void **out' as arguments as the behavior is not ↵ | Stefan Metzmacher | 1 | -17/+32 | |
defined in C. metze | |||||
2009-02-24 | libcli/ldap: move ldap_ndr from source4/ to toplevel | Stefan Metzmacher | 3 | -114/+1 | |
metze | |||||
2009-02-24 | libcli/ldap: move ldap_errors.h to the toplevel and install it | Stefan Metzmacher | 1 | -66/+0 | |
metze | |||||
2009-02-24 | libcli/ldap: move ldap_message.[ch] from source4/ to the toplevel | Stefan Metzmacher | 4 | -1701/+1 | |
metze | |||||
2009-02-24 | s4:libcli/ldap: remove reference to DEBUG() | Stefan Metzmacher | 1 | -1/+0 | |
This prepares using ldap_message.c in source3/ later metze | |||||
2009-02-24 | s4:libcli: split out LIBCLI_LDAP_MESSAGE subsystem | Stefan Metzmacher | 5 | -287/+300 | |
metze |