summaryrefslogtreecommitdiffstats
path: root/source4/dsdb/common
Commit message (Collapse)AuthorAgeFilesLines
...
* Move NS_GUID_string and NS_GUID_from_string to dsdb-common.Jelmer Vernooij2012-03-202-0/+62
|
* s4-lib: Remove unused samdb_msg_set_value()Ricky Nance2012-02-251-15/+0
| | | | | | Found by callcatcher. Ricky Nance
* s4-lib: Remove unused samdb_msg_set_string()Ricky Nance2012-02-251-15/+0
| | | | | | Found by callcatcher. Ricky Nance
* s4-lib: Remove unused samdb_msg_set_int()Ricky Nance2012-02-251-15/+0
| | | | | | Found by callcatcher Ricky Nance
* dsdb: Allow DSDB_CONTROL_PASSWORD_BYPASS_LAST_SET_OID to be specified as a flagAndrew Bartlett2012-01-242-0/+8
|
* s4:dsdb/common/util.c - test LDB result against LDB_SUCCESS as we are always ↵Matthias Dieter Wallnöfer2011-12-091-1/+1
| | | | | | | doing Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Fri Dec 9 12:00:03 CET 2011 on sn-devel-104
* dsdb: Fix the password expiry calculationAmitay Isaacs2011-11-181-1/+1
| | | | | | | | As per Section 3.1.1.4.5.26 [MS-ADTS.pdf], password is expired if pwdLastSet = null, or pwdLastSet = 0, or (maxPwdAge != 0x8000000000000000 and (ST - pwdLastSet) > maxPwdAge)
* dsdb: Handle the case when extended rights string is NULLAmitay Isaacs2011-11-021-4/+7
| | | | | | | | | Pair-Programmed-With: Andrew Tridgell <tridge@samba.org> Signed-off-by: Andrew Tridgell <tridge@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Wed Nov 2 07:03:40 CET 2011 on sn-devel-104
* s4-dsdb: fixed re-join of subdomainAndrew Tridgell2011-10-041-3/+4
| | | | | | if we repeat the join of a subdomain then we try to re-create the NC for the subdomain during a DsAddEntry(). This allows that re-creation to succeed if the NC already exists
* s4-dsdb: simplify samdb_is_gc()Andrew Tridgell2011-10-041-28/+2
| | | | we already have a function for returning the NTDS options
* s4-dsdb: added new control DSDB_MODIFY_PARTIAL_REPLICAAndrew Tridgell2011-10-042-0/+67
| | | | | | | | this control tells the partition module that the DN being created is a partial replica, so it should modify the @PARTITION object to add the partialReplica attribute Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: added NO_GLOBAL_CATALOG controlAndrew Tridgell2011-09-222-1/+11
| | | | | | | this control is used to ask samdb to not return searches with a basedn in partial repica partitions, which is needed to support the difference between a search on the 3268 GC ldap port and the non-GC 389 port
* s4-dsdb: failing to find the object is not an error in dsdb_loadreps()Andrew Tridgell2011-09-221-3/+8
| | | | | we may not have replicated the partition yet, so this should be considered the same as having no repsFrom/repsTo
* s4-dsdb: fixed compiler warningAndrew Tridgell2011-09-081-1/+1
| | | | | | sid can be const Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb Print clearer error messages when invalid account flags are ↵Andrew Bartlett2011-09-051-0/+9
| | | | specified on add
* s4-dsdb Return ACL errors as ldb_errstring()Andrew Bartlett2011-08-261-0/+3
| | | | | | This string is reported to the caller, which makes debugging much easier. Andrew Bartlett
* s4-dsdb: added samdb_ntds_msdcs_dns_name()Andrew Tridgell2011-08-251-2/+37
| | | | | | this gets the DNS name for a NTDS GUID, based on the forest DNS name Pair-Programmed-With: Amitay Isaacs <amitay@gmail.com>
* s4-dsdb: added samdb_dn_to_dns_domain()Andrew Tridgell2011-08-251-0/+36
| | | | | | | this converts a DC into the equivalent DNS domain. It is used when forming t_msdcs NTDS DNS names Pair-Programmed-With: Amitay Isaacs <amitay@gmail.com>
* s4-dsdb: assert that base DNs are used correctlyAndrew Tridgell2011-08-251-0/+3
| | | | | | this will catch future programmer errors with incorrect base DNs Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb Give a less worrying error message on failure to get a transactionAndrew Bartlett2011-08-131-1/+1
|
* s4-dsdb Add ability to force a particular SID in the upgrade caseAndrew Bartlett2011-08-131-1/+16
|
* s4-dsdb Add flag to set DSDB_BYPASS_PASSWORD_HASH controlAndrew Bartlett2011-08-132-0/+9
|
* s4-dsdb: don't cache the NTDS settings DNAndrew Tridgell2011-08-121-9/+8
| | | | | | | | | this DN can change due to a server rename, so we cannot cache it. It is set by provision, but not anywhere else. This seems to not have a large performance impact Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: added dn_format attribute of a dsdb_attributeAndrew Tridgell2011-08-041-7/+0
| | | | | | | this is faster than string comparisons during searches at runtime Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-With: Amitay Isaacs <amitay@gmail.com>
* s4-dsdb: fixed a warning on dsdb_delete()Andrew Tridgell2011-08-041-1/+1
| | | | | | | struct ldb_dn is never const Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-With: Amitay Isaacs <amitay@gmail.com>
* s4-dsdb: make requests for STORAGE_FORMAT control non-criticalAndrew Tridgell2011-08-041-1/+1
| | | | | | | | this allows us to use dsdb_module_dn_by_guid() from levels below the extended_dn_out module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-With: Amitay Isaacs <amitay@gmail.com>
* s4-dsdb: added dsdb_delete() functionAndrew Tridgell2011-07-211-0/+30
| | | | | | | this gives us a delete function that takes the standard set of dsdb flags Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* Standalone samdb_ntds_site_settings_options() helperDave Craft2011-07-141-0/+48
| | | | | | | A helper function for retrieving the ntds site settings via standalone function call. Used within KCC Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-drs: cope with missing RMD_ADDTIME in linked attributesAndrew Tridgell2011-06-101-1/+1
| | | | upgraded links can be missing the RMD_ADDTIME field
* s4-dsdb Add transactions to dsdb modify helpersAndrew Bartlett2011-05-081-0/+18
|
* s4-socket: rename allow_access() to socket_allow_access()Andrew Tridgell2011-05-031-1/+1
| | | | | | this prevents a symbol collision with s3 Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: added a ldb err -> NTSTATUS mappingAndrew Tridgell2011-04-041-0/+78
| | | | | | | this is not perfect, but its better than always giving NT_STATUS_UNSUCCESSFUL in our RPC servers Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4/ldb - remove now superflous "ldb_dn_validate" checksMatthias Dieter Wallnöfer2011-03-042-3/+3
| | | | | | | If we immediately afterwards perform an LDB base operation then we don't need an explicit "ldb_dn_validate" check anymore (only OOM makes sense). Reviewed by: Tridge
* s4:dsdb - always handle the attribute "options" as 32bit unsigned integerMatthias Dieter Wallnöfer2011-03-011-2/+3
| | | | | | | | | | It is defined as LDAP syntax 2.5.5.9 so no need at all to treat it as 64-bit integer. Reviewed by: Kamenim and Metze Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Tue Mar 1 12:46:15 CET 2011 on sn-devel-104
* s4:dsdb/common/util.c - remove "samdb_find_or_add_value"Matthias Dieter Wallnöfer2011-03-011-8/+0
| | | | | | This isn't used anymore. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s4:dsdb/common/util.c - fully remove "samdb_msg_add_string"Matthias Dieter Wallnöfer2011-03-011-18/+3
| | | | | | | This isn't needed anymore and will be substituted by "ldb_msg_add_string". Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s4:remove many invocations of "samdb_msg_add_string"Matthias Dieter Wallnöfer2011-03-012-10/+8
| | | | | | | This call can be substituted by "ldb_msg_add_string". We only need to be careful on local objects or talloc'ed ones which live shorter than the message. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* Fix some typesJelmer Vernooij2011-02-281-2/+2
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Mon Feb 28 23:30:06 CET 2011 on sn-devel-104
* s4/dsdb-util: Use DS_NTDSDSA_OPT_IS_GC flag definitionKamen Mazdrashki2011-02-271-1/+1
| | | | | Autobuild-User: Kamen Mazdrashki <kamenim@samba.org> Autobuild-Date: Sun Feb 27 00:10:45 CET 2011 on sn-devel-104
* build: moved libds/common/flag_mapping.c into a common subsystemAndrew Tridgell2011-02-242-0/+3
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* ldb: use #include <ldb.h> for ldbAndrew Tridgell2011-02-102-3/+3
| | | | | | | | thi ensures we are using the header corresponding to the version of ldb we're linking against. Otherwise we could use the system ldb for link and the in-tree one for include Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-auth Remove special case for account_sid from auth_serversupplied_infoAndrew Bartlett2011-01-201-7/+6
| | | | | | | | | | | | This makes everything reference a server_info->sids list, which is now a struct dom_sid *, not a struct dom_sid **. This is in keeping with the other sid lists in the security_token etc. In the process, I also tidy up the talloc tree (move more structures under their logical parents) and check for some possible overflows in situations with a pathological number of sids. Andrew Bartlett
* s4:dsdb_find_nc_root - fix it up to let the provisioning work correctlyMatthias Dieter Wallnöfer2011-01-151-2/+2
| | | | | | | | | | | Use the temporary list unless we have at least the three main "namingContexts" from the rootDSE available (Default, Configuration, Schema - these are mandatory on all AD deployments!). This bug has been discovered by Nadya in relation with her SD work. Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Jan 15 19:01:11 CET 2011 on sn-devel-104
* s4-dsdb: minimise the DN in group expansionAndrew Tridgell2011-01-141-0/+5
| | | | | | | | this DN we have came from an extended DN search, which means it may have multiple extended components. We need to minimise the DN before AD will accept it Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb Implement tokenGroups expansion directly in ldb operational moduleAndrew Bartlett2011-01-141-0/+167
| | | | | | This removes a silly cross-dependency between the ldb moudle stack and auth/ Andrew Bartlett
* s4-dsdb: Added a helper function to get the default dns domain as string.Nadezhda Ivanova2010-12-221-0/+19
|
* s4:dsdb/common/util.c - remove unused variable "ndr_err"Matthias Dieter Wallnöfer2010-12-211-1/+0
|
* s4-dsdb Use sid_blob_parse()Andrew Bartlett2010-12-161-3/+3
|
* s4-smbtorture: Make test names lowercase and dot-separated.Jelmer Vernooij2010-12-111-4/+4
| | | | | | | | This is consistent with the test names used by selftest, should make the names less confusing and easier to integrate with other tools. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sat Dec 11 04:16:13 CET 2010 on sn-devel-104
* s4:fix some shadowed declaration warnings on Solaris by renaming the symbolsMatthias Dieter Wallnöfer2010-12-061-5/+6
|
generated by cgit (git 2.34.1) at 2024-10-12 01:29:35 +0000