summaryrefslogtreecommitdiffstats
path: root/source4/lib
Commit message (Collapse)AuthorAgeFilesLines
* s4-ldb: declate ldb_val_to_time()Andrew Tridgell2010-01-021-0/+6
|
* s4-ldb: use safe length limited conversions for int64 and timeAndrew Tridgell2010-01-021-13/+48
|
* s4-dsdb: use safe length limiting in string->integer conversionAndrew Tridgell2010-01-021-11/+35
| | | | | The ldap.py test suite could trigger a read past the end of the struct ldb_val buffer
* s4-ldb: added ldb_val_to_time() Andrew Tridgell2010-01-021-0/+27
| | | | | | This is intended as a replacement for ldb_string_to_time() for ldb_val inputs. This ensures it is length limited and includes additional validity checks
* s4-ldb: show the error code as well as errstrAndrew Tridgell2010-01-021-2/+3
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-ldb: added ldb_module_get_ops()Andrew Tridgell2010-01-022-0/+6
| | | | | | This is needed to support DSDB_FLAG_OWN_MODULE Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-ldb: use the RELAX control to disable single value checking on replaceAndrew Tridgell2010-01-023-5/+16
| | | | | | | | | | When using w2k3 linked attributes we are allowed to have multiple values on a single valued attribute. This happens when the other values are deleted. Setting the RELAX control tell the ldb-tdb backend to not check for this on replace, which means the caller has to check for single valued violations.
* s4-dsdb: split RMD_USN into RMD_LOCAL_USN and RMD_ORIGINATING_USNAndrew Tridgell2010-01-021-1/+6
| | | | | | | | We need a separate RMD_LOCAL_USN to allow us to tell what attributes need to be sent in a getncchanges request. Thanks to Metze for pointing this out. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* pyldb: Add dom_sid.split in favor of less powerful dom_sid_to_rid().Jelmer Vernooij2009-12-312-10/+10
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4:lib/registry/util.c - Reintroduce "FIXME"sMatthias Dieter Wallnöfer2009-12-301-0/+2
| | | | Jelmer suggested to put them in again.
* s4:lib/socket: add socket_get_{remote|local}_addr() to get a tsocket_address ↵Stefan Metzmacher2009-12-242-0/+32
| | | | | | instead of a socket_address metze
* s4:lib/socket: add helpers functions to convert between socket_address and ↵Stefan Metzmacher2009-12-243-1/+48
| | | | | | tsocket_address metze
* s4:ldb Fix declaration in the middle of the codeSimo Sorce2009-12-231-2/+4
|
* s4: Fix the buildSimo Sorce2009-12-231-0/+1
|
* s4: tests controls parsing and using for ldbadd/ldbedit/ldbmodifyMatthieu Patou2009-12-234-1/+90
|
* s4: make ldbadd/ldbmodify/ldbdelete really use the --controls switchMatthieu Patou2009-12-236-9/+230
|
* Samba4 and LDB requires talloc 2.0.1Andrew Bartlett2009-12-221-1/+1
| | | | reported by ewoud@kohlvanwijngaarden.nl
* provision/pyldb: Avoid linking in static python ldb module.Jelmer Vernooij2009-12-212-2/+3
|
* ldb_wrap: Fix compilation when using system ldb.Jelmer Vernooij2009-12-211-1/+1
|
* s4-tort: Tests for "msDS-IntId" attribute implementedKamen Mazdrashki2009-12-211-2/+281
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-tort: Move Schema tests from ldap.py into separate moduleKamen Mazdrashki2009-12-212-133/+221
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* Added oid for AS_SYSTEM control, used to bypass access checks for system ↵Nadezhda Ivanova2009-12-181-0/+6
| | | | operations.
* s4-ldb: fixed a valgrind error in ldbtestAndrew Tridgell2009-12-181-0/+2
| | | | | | we were using msg->dn after the ldb it contained had been freed Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: declare ldb_dn_update_components()Andrew Tridgell2009-12-181-0/+1
|
* s4-dsdb: added ldb_dn_update_components()Andrew Tridgell2009-12-181-0/+23
| | | | | | | | This is used to udpate just the DN components of a ldb_dn, leaving the other extended fields alone. It is needed to prevent linked attribute updates from removing other extended components. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-ldb: display msDS-OptionalFeatureGUID as a GUIDAndrew Tridgell2009-12-181-0/+1
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-ldb: canonicalise the message on ldb_addAndrew Tridgell2009-12-181-0/+9
| | | | | | | | | This canonicalise avoids a problem with an add that has multiple elements with the same el->name. That is allowed by MS servers, and by ldb, but it breaks things like the tdb backend and the repl_meta_data RPMD handling. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: Add a test for adding, deleting, and appending a posixAccount ↵Brendan Powers2009-12-181-0/+30
| | | | | | objectClass to a user Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* Fixed incorrect checking of PRINCIPAL_SELF permissions.Nadezhda Ivanova2009-12-171-2/+41
| | | | | | If an ace has the PRINCIPAL_SELF as trustee, this sid has to be replaced with the onjectSid of the object being checked. PRINCIPAL_SELF is the way to grant rights to an account over itself.
* s4-ldb: show the OID of any unhandled critical controlsAndrew Tridgell2009-12-161-4/+9
| | | | | | | It isn't very useful just saying that a control is not supported, without saying which one is the problem Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-ldb: fixed a transaction error on prepare_commitAndrew Tridgell2009-12-161-2/+2
| | | | | | | when a prepare commit fails, we need to give a cancel to all modules, not a commit! Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-ldb: added --show-deactivated-link command line optionAndrew Tridgell2009-12-161-1/+8
| | | | this adds the SHOW_DEACTIVATED_LINK control
* Removed ldb_modify_ctrl from ldb, implemented as a static in ldap_backend.Nadezhda Ivanova2009-12-152-31/+4
|
* s4:tls: fix the build on SolarisBrian Lu2009-12-151-0/+3
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s4-ldb: added new ldb_dn extended components for linked attributesAndrew Tridgell2009-12-141-0/+30
| | | | These will store linked attribute replication meta data
* s4-ldb: added a function to filter extended components of a ldb_dnAndrew Tridgell2009-12-141-0/+16
| | | | | We need to be able to filter out components that should not be exposed to users
* s4-ldb: added a new "reveal" controlAndrew Tridgell2009-12-143-1/+43
| | | | | | This control will allow inspection of internal ldb values, which would normally be stripped before being presented to users. The first use will be stripping linked attribute meta data extended components.
* s4-ldb: sort the linearized extended DN by component nameAndrew Tridgell2009-12-141-0/+14
| | | | This will make life easier when handling deleted linked attributes
* Implementation of sDRightsEffective, allowedAttributesEffective and ↵Nadezhda Ivanova2009-12-101-1/+126
| | | | | | allowedChildClassesEffective. Behavior as documented in WSPP and tested. Needs optimisation though.
* s4-ldb: fixed 2 bugs in ldb_dn_set_extended_component()Andrew Tridgell2009-12-101-2/+5
| | | | | | | | | | The first bug was that setting a component twice could cause it to appear twice in the DN. The second bug was that using an existing ldb_val from a previous call of ldb_dn_get_extended_component() as an argument to ldb_dn_set_extended_component() would cause a valgrind error (as the array the val pointed into will change).
* s4-ldb: use GUID_to_ndr_blob()Andrew Tridgell2009-12-102-5/+8
|
* s4-ldb: simplify ldif handlers using new GUID functionsAndrew Tridgell2009-12-101-8/+9
|
* s4-ldb: fixed nested searches inside ldb modulesAndrew Tridgell2009-12-092-4/+12
| | | | | | | We need to keep a search count in ltdb to allow for nesting of searches inside a module Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-ldb: added a missing ltdb_unlock_read()Andrew Tridgell2009-12-091-0/+1
|
* s4-ldb: fixed ldbdel with -r (recursive deletion)Andrew Tridgell2009-12-081-0/+15
| | | | We need to delete the deepest DNs first
* s4:build Bump ldb and tdb required versions.Andrew Bartlett2009-12-082-2/+2
| | | | Hopefully this will ensure we don't get an older version from the system.
* s4:ldb Add a function to match a message against an objectClassAndrew Bartlett2009-12-072-0/+22
| | | | | | | (as objectClass will always be a case insensitive ascii string, we can make a much simpler match function here than for the general case). Andrew Bartlett
* s4:ldap.py Improve testsuite for primaryGroupToken behaviourAndrew Bartlett2009-12-071-0/+22
| | | | | | | | | | This tries to show that the domain object should not have a primaryGroupToken, for example. (This passes against the old and new code, as the failure case requires an object with an objectSid, and exactly one group in it's subtree. Sadly I don't know of a valid structure that I can construct to test this). Andrew Bartlett
* s4-ldif: Fix memory leek in ldb_ldif_write()Kamen Mazdrashki2009-12-051-0/+2
|
* s4-ldb: the '1' form of extended_dn search is easier to readAndrew Tridgell2009-12-011-1/+1
| | | | | The '1' form gives GUIDs and SIDs in the ascii form as normally used for display.
generated by cgit (git 2.34.1) at 2025-09-27 03:03:30 +0000