sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-25 06:04:04 +03:00
Code
samba-mirror/source4/dsdb/samdb/samdb.h

185 lines
5.2 KiB
C
Raw Normal View History

r14380: Reduce the size of structs.h (This used to be commit 1a16a6f1dfa66499af43a6b88b3ea69a6a75f1fe)
2006-03-14 15:03:25 +00:00
/*
Unix SMB/CIFS implementation.
interface functions for the sam database
Copyright (C) Andrew Tridgell 2004
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
r23792: convert Samba4 to GPLv3 There are still a few tidyups of old FSF addresses to come (in both s3 and s4). More commits soon. (This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
2007-07-10 02:07:03 +00:00
the Free Software Foundation; either version 3 of the License, or
r14380: Reduce the size of structs.h (This used to be commit 1a16a6f1dfa66499af43a6b88b3ea69a6a75f1fe)
2006-03-14 15:03:25 +00:00
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
r23792: convert Samba4 to GPLv3 There are still a few tidyups of old FSF addresses to come (in both s3 and s4). More commits soon. (This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
2007-07-10 02:07:03 +00:00
along with this program. If not, see <http://www.gnu.org/licenses/>.
r14380: Reduce the size of structs.h (This used to be commit 1a16a6f1dfa66499af43a6b88b3ea69a6a75f1fe)
2006-03-14 15:03:25 +00:00
*/
#ifndef __SAMDB_H__
#define __SAMDB_H__
struct auth_session_info;
r20826: make the dsdb_control_current_partition struct public and allocate an oid for the control metze (This used to be commit 684eee52e8812f6d104d8706ab059643ff4faa46)
2007-01-16 10:57:55 +00:00
struct dsdb_control_current_partition;
r20682: make the dsdb_extended_replicated_objects_commit() interface a bit more useful, so that we can apply the schema partition objects with one call metze (This used to be commit 165ff94b8a89ef4b9145405633ed11ab9567376b)
2007-01-11 10:21:38 +00:00
struct dsdb_extended_replicated_object;
struct dsdb_extended_replicated_objects;
r26227: Make loadparm_context part of a server task, move loadparm_contexts further up the call stack. (This used to be commit 0721a07aada6a1fae6dcbd610b8783df57d7bbad)
2007-12-02 17:09:52 +01:00
struct loadparm_context;
s4:lib/tevent: rename structs list="" list="$list event_context:tevent_context" list="$list fd_event:tevent_fd" list="$list timed_event:tevent_timer" for s in $list; do o=`echo $s | cut -d ':' -f1` n=`echo $s | cut -d ':' -f2` r=`git grep "struct $o" |cut -d ':' -f1 |sort -u` files=`echo "$r" | grep -v source3 | grep -v nsswitch | grep -v packaging4` for f in $files; do cat $f | sed -e "s/struct $o/struct $n/g" > $f.tmp mv $f.tmp $f done done metze
2008-12-29 20:24:57 +01:00
struct tevent_context;
r20682: make the dsdb_extended_replicated_objects_commit() interface a bit more useful, so that we can apply the schema partition objects with one call metze (This used to be commit 165ff94b8a89ef4b9145405633ed11ab9567376b)
2007-01-11 10:21:38 +00:00
#include "librpc/gen_ndr/security.h"
#include "lib/ldb/include/ldb.h"
Note the ldb syntax for attribute syntaxes in the table. This includes additional Samba-specific syntaxes made available from the ldif_handlers code. This commit also changes some table to use #defines, to ensure consistancy in other parts of the code. Andrew Bartlett (This used to be commit e26a5efd9a580ed3728e1f449e367b1cd4a73b5f)
2008-08-18 20:30:27 +10:00
#include "lib/ldb-samba/ldif_handlers.h"
r20682: make the dsdb_extended_replicated_objects_commit() interface a bit more useful, so that we can apply the schema partition objects with one call metze (This used to be commit 165ff94b8a89ef4b9145405633ed11ab9567376b)
2007-01-11 10:21:38 +00:00
#include "librpc/gen_ndr/samr.h"
#include "librpc/gen_ndr/drsuapi.h"
#include "librpc/gen_ndr/drsblobs.h"
#include "dsdb/schema/schema.h"
#include "dsdb/samdb/samdb_proto.h"
r26483: Merge ldb module dependency fixes, fix auth python module. (This used to be commit 85eeecf997a071ca7e7ad0247e8d34d49b7ffcbb)
2007-12-17 04:22:44 +01:00
#include "dsdb/common/proto.h"
s4:dsdb Add new dsdb_dn to handle DN+Binary and DN+String This aims to replace (and is based on) the code in ldb_dn.c. It is however much stricter in the DNs it will accept. Andrew Bartlett
2009-11-05 16:57:20 +11:00
#include "dsdb/common/dsdb_dn.h"
libds: share UF_ flags between samba3 and 4. Guenther
2009-06-12 14:27:19 +02:00
#include "../libds/common/flags.h"
r14380: Reduce the size of structs.h (This used to be commit 1a16a6f1dfa66499af43a6b88b3ea69a6a75f1fe)
2006-03-14 15:03:25 +00:00
r20826: make the dsdb_control_current_partition struct public and allocate an oid for the control metze (This used to be commit 684eee52e8812f6d104d8706ab059643ff4faa46)
2007-01-16 10:57:55 +00:00
#define DSDB_CONTROL_CURRENT_PARTITION_OID "1.3.6.1.4.1.7165.4.3.2"
struct dsdb_control_current_partition {
/*
* this is the version of the dsdb_control_current_partition
* version 0: initial implementation
change the dsdb_control_current_partition to not include internal variables This structures was used in two ways. In one way it held variables that are logically internal to the partition module, and in the other way it was used to pass the partition DN down to other modules. This change makes the structure contain just the dn which is being passed down. This change is part of the support for linked attributes. We will be passing this control down from above the partition module to force which partition a request acts upon. The partition module now only adds this control if it isn't already there.
2009-09-02 13:36:54 +10:00
* version 1: got rid of backend and module fields
r20826: make the dsdb_control_current_partition struct public and allocate an oid for the control metze (This used to be commit 684eee52e8812f6d104d8706ab059643ff4faa46)
2007-01-16 10:57:55 +00:00
*/
change the dsdb_control_current_partition to not include internal variables This structures was used in two ways. In one way it held variables that are logically internal to the partition module, and in the other way it was used to pass the partition DN down to other modules. This change makes the structure contain just the dn which is being passed down. This change is part of the support for linked attributes. We will be passing this control down from above the partition module to force which partition a request acts upon. The partition module now only adds this control if it isn't already there.
2009-09-02 13:36:54 +10:00
#define DSDB_CONTROL_CURRENT_PARTITION_VERSION 1
r20826: make the dsdb_control_current_partition struct public and allocate an oid for the control metze (This used to be commit 684eee52e8812f6d104d8706ab059643ff4faa46)
2007-01-16 10:57:55 +00:00
uint32_t version;
struct ldb_dn *dn;
};
s4:dsdb: passdown DSDB_CONTROL_REPLICATED_UPDATE_OID for replicated updates We need to make sure replicated updates are handled differently in some situations, e.g. we should bypass the schema checks. metze
2008-09-27 02:27:54 +02:00
#define DSDB_CONTROL_REPLICATED_UPDATE_OID "1.3.6.1.4.1.7165.4.3.3"
/* DSDB_CONTROL_REPLICATED_UPDATE_OID has NULL data */
s4:dsdb: split extended_dn into extended_dn_in, extended_dn_out and extended_dn_store. By splitting the module, the extended_dn_in and extended_dn_store moudles can use extended_dn_out to actually get the extended DN. This avoids code duplication. The extended_dn_out module also contains a client implementation of the OpenLDAP dereference control (draft-masarati-ldap-deref-00). This also introduces a new control 'DSDB_CONTROL_DN_STORAGE_FORMAT_OID' to ask the extended_dn_out module to return whatever the 'storage format' is. This allows us to work with both OpenLDAP (which performs a dereference at run time) and LDB (which stores the GUID and SID on disk). Signed-off-by: Stefan Metzmacher <metze@samba.org>
2008-12-16 09:21:55 +01:00
#define DSDB_CONTROL_DN_STORAGE_FORMAT_OID "1.3.6.1.4.1.7165.4.3.4"
/* DSDB_CONTROL_DN_STORAGE_FORMAT_OID has NULL data and behaves very
* much like LDB_CONTROL_EXTENDED_DN_OID when the DB stores an
* extended DN, and otherwise returns normal DNs */
s4:fix allocated control OIDs for "password_hash" LDB module The password hash module controls overlapped others. Sorry, but the "schema_samba4.ldif" hasn't been kept up-to-date.
2010-06-13 18:19:37 +02:00
#define DSDB_CONTROL_PASSWORD_CHANGE_STATUS_OID "1.3.6.1.4.1.7165.4.3.8"
s4:dsdb: add new controls - Add a new control for getting status informations (domain informations, password change status) directly from the module - Add a new control for allowing direct hash changes - Introduce an addtional control "change_old password checked" for the password
2009-09-23 19:25:54 +02:00
struct dsdb_control_password_change_status {
struct {
uint32_t pwdProperties;
uint32_t pwdHistoryLength;
int64_t maxPwdAge;
int64_t minPwdAge;
uint32_t minPwdLength;
bool store_cleartext;
const char *netbios_domain;
const char *dns_domain;
const char *realm;
} domain_data;
enum samPwdChangeReason reject_reason;
};
s4:fix allocated control OIDs for "password_hash" LDB module The password hash module controls overlapped others. Sorry, but the "schema_samba4.ldif" hasn't been kept up-to-date.
2010-06-13 18:19:37 +02:00
#define DSDB_CONTROL_PASSWORD_HASH_VALUES_OID "1.3.6.1.4.1.7165.4.3.9"
s4:dsdb: add new controls - Add a new control for getting status informations (domain informations, password change status) directly from the module - Add a new control for allowing direct hash changes - Introduce an addtional control "change_old password checked" for the password
2009-09-23 19:25:54 +02:00
s4:fix allocated control OIDs for "password_hash" LDB module The password hash module controls overlapped others. Sorry, but the "schema_samba4.ldif" hasn't been kept up-to-date.
2010-06-13 18:19:37 +02:00
#define DSDB_CONTROL_PASSWORD_CHANGE_OLD_PW_CHECKED_OID "1.3.6.1.4.1.7165.4.3.10"
s4:dsdb: add new controls - Add a new control for getting status informations (domain informations, password change status) directly from the module - Add a new control for allowing direct hash changes - Introduce an addtional control "change_old password checked" for the password
2009-09-23 19:25:54 +02:00
s4:dsdb Add control for signaling between repl_meta_data and linked_attributes This control will allow the linked_attributes module to know if repl_meta_data has already handled the creation of forward and back links. Andrew Bartlett
2010-06-14 15:30:36 +10:00
/**
DSDB_CONTROL_APPLY_LINKS is internal to Samba4 - a token passed between repl_meta_data and linked_attributes modules
*/
#define DSDB_CONTROL_APPLY_LINKS "1.3.6.1.4.1.7165.4.3.11"
s4:dsdb: allocate DSDB_CONTROL_BYPASS_PASSWORD_HASH_OID When importing users from Samba3 we need to control all values. metze
2010-06-30 08:24:35 +02:00
/*
* this should only be used for importing users from Samba3
*/
#define DSDB_CONTROL_BYPASS_PASSWORD_HASH_OID "1.3.6.1.4.1.7165.4.3.12"
r20587: prepare the DSDB_EXTENDED_REPLICATED_OBJECTS_OID handling metze (This used to be commit ef3b325db060d43a7c2e058f6b8914b5867cd321)
2007-01-06 10:15:02 +00:00
#define DSDB_EXTENDED_REPLICATED_OBJECTS_OID "1.3.6.1.4.1.7165.4.4.1"
r20629: add a wrapper function for ldb_extended(ldb, DSDB_EXTENDED_REPLICATED_OBJECTS_OID, out, &ext_res); which prepares the replicated objects, the repl_meta_data ldb module will then add the uSNCreated, uSNChanged and some other things and will apply the objects to the partition specific ldb metze (This used to be commit 48d568a75b8109807af29f5d9604240c20c1a116)
2007-01-09 11:15:56 +00:00
struct dsdb_extended_replicated_object {
struct ldb_message *msg;
r20680: prepare the helper functions for applying replicated objects to pass all needed info to the repl_meta_data module metze (This used to be commit d5db31cde279cf05bd13bcf0da03767ab3498079)
2007-01-11 09:45:30 +00:00
struct ldb_val guid_value;
r20726: - only add the rdn attribute and it's meta_data when the 'name' attribute is there - add the values for objectGUID and whenChanged inside the ldb module, so that the ldb module has only replicated attributes as input metze (This used to be commit 0ecb07e0526462529fb21cec30e789a9002b30a1)
2007-01-13 10:53:12 +00:00
const char *when_changed;
r20680: prepare the helper functions for applying replicated objects to pass all needed info to the repl_meta_data module metze (This used to be commit d5db31cde279cf05bd13bcf0da03767ab3498079)
2007-01-11 09:45:30 +00:00
struct replPropertyMetaDataBlob *meta_data;
r20629: add a wrapper function for ldb_extended(ldb, DSDB_EXTENDED_REPLICATED_OBJECTS_OID, out, &ext_res); which prepares the replicated objects, the repl_meta_data ldb module will then add the uSNCreated, uSNChanged and some other things and will apply the objects to the partition specific ldb metze (This used to be commit 48d568a75b8109807af29f5d9604240c20c1a116)
2007-01-09 11:15:56 +00:00
};
r20587: prepare the DSDB_EXTENDED_REPLICATED_OBJECTS_OID handling metze (This used to be commit ef3b325db060d43a7c2e058f6b8914b5867cd321)
2007-01-06 10:15:02 +00:00
struct dsdb_extended_replicated_objects {
r20729: add a version number to struct dsdb_extended_replicated_objects metze (This used to be commit 2e79863d54030526841e5858e7be6a815c25593b)
2007-01-13 11:37:13 +00:00
/*
* this is the version of the dsdb_extended_replicated_objects
* version 0: initial implementation
*/
add the the linked attributes elements to the repl structure This exposes the linked_attributes to the repl_meta_data module
2009-09-03 12:52:31 +10:00
#define DSDB_EXTENDED_REPLICATED_OBJECTS_VERSION 1
r20729: add a version number to struct dsdb_extended_replicated_objects metze (This used to be commit 2e79863d54030526841e5858e7be6a815c25593b)
2007-01-13 11:37:13 +00:00
uint32_t version;
r20599: - forward extended operations in the partitions module - by default the operations goes to all partitions - but some wellkown ones will go to just one partition (DSDB_EXTENDED_REPLICATED_OBJECTS_OID for now) I'll soon change the partitions module so that it'll attach a DSDB_CONTROL_PARTITION_CONTEXT_OID control to give the repl_meta_data or other partition specific modules a chance to to know for which partition it should work. metze (This used to be commit 0ed53c6d0f4a4e43ff9c8943730eeb57c735201b)
2007-01-07 19:11:27 +00:00
struct ldb_dn *partition_dn;
r20629: add a wrapper function for ldb_extended(ldb, DSDB_EXTENDED_REPLICATED_OBJECTS_OID, out, &ext_res); which prepares the replicated objects, the repl_meta_data ldb module will then add the uSNCreated, uSNChanged and some other things and will apply the objects to the partition specific ldb metze (This used to be commit 48d568a75b8109807af29f5d9604240c20c1a116)
2007-01-09 11:15:56 +00:00
r20709: pass a repsFromTo1 struct down as it contains all needed info for the source dsa and the highwater mark vector metze (This used to be commit a31e017e5388e5abd6ed9d09adcf26d2527954a6)
2007-01-12 16:02:10 +00:00
const struct repsFromTo1 *source_dsa;
r20705: store the "replUpToDateVector" attribute in DSDB_EXTENDED_REPLICATED_OBJECTS metze (This used to be commit c9e7a58f6a16dfa28323fd0fd01ad6ee516c51b0)
2007-01-12 13:17:25 +00:00
const struct drsuapi_DsReplicaCursor2CtrEx *uptodateness_vector;
r20629: add a wrapper function for ldb_extended(ldb, DSDB_EXTENDED_REPLICATED_OBJECTS_OID, out, &ext_res); which prepares the replicated objects, the repl_meta_data ldb module will then add the uSNCreated, uSNChanged and some other things and will apply the objects to the partition specific ldb metze (This used to be commit 48d568a75b8109807af29f5d9604240c20c1a116)
2007-01-09 11:15:56 +00:00
uint32_t num_objects;
struct dsdb_extended_replicated_object *objects;
add the the linked attributes elements to the repl structure This exposes the linked_attributes to the repl_meta_data module
2009-09-03 12:52:31 +10:00
uint32_t linked_attributes_count;
const struct drsuapi_DsReplicaLinkedAttribute *linked_attributes;
r20587: prepare the DSDB_EXTENDED_REPLICATED_OBJECTS_OID handling metze (This used to be commit ef3b325db060d43a7c2e058f6b8914b5867cd321)
2007-01-06 10:15:02 +00:00
};
r20871: implement the validFSMOs constructed attribute on the rootdse for the schema, domain naming and pdc fsmo roles infrastructure and rid manager will be added later, when we have module for them metze (This used to be commit 308f9cf822a3a34dae28a5fa5aa850e2adbeb472)
2007-01-18 01:31:09 +00:00
struct dsdb_naming_fsmo {
bool we_are_master;
struct ldb_dn *master_dn;
};
struct dsdb_pdc_fsmo {
bool we_are_master;
struct ldb_dn *master_dn;
};
s4:dsdb Rework modules create new partitions at runtime This is done by passing an extended operation to the partitions module to extend the @PARTITION record and to extend the in-memory list of partitions. This also splits things up into module parts that belong above and below repl_meta_data Also slit the partitions module into two files due to the complexity of the code Andrew Barltett
2009-10-02 10:28:29 +10:00
#define DSDB_EXTENDED_CREATE_PARTITION_OID "1.3.6.1.4.1.7165.4.4.4"
struct dsdb_create_partition_exop {
struct ldb_dn *new_dn;
};
dsdb: add a comment about the parameter to DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID metze (This used to be commit 2f06fbe06be2e1b77ea013ddba853ce819e58e88)
2008-07-24 10:00:20 +02:00
/*
* the schema_dn is passed as struct ldb_dn in
* req->op.extended.data
*/
Handle schema reloading request. The ldif for that operation looks like this: dn: changetype: Modify add: schemaUpdateNow schemaUpdateNow: 1 It uses the rootdse's object functional attribute schemaUpdateNow. In rootdse_modify() this command is being recognized and it is send as extended operation with DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID. In the partition module its dispatched to the schema_fsmo module. The request is processed in the schema_fsmo module by schema_fsmo_extended(). (This used to be commit 39f9184ddf215f2b512319211c0a05702218ef87)
2008-07-23 09:59:17 +03:00
#define DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID "1.3.6.1.4.1.7165.4.4.2"
s4:dsdb: add support for DSDB_OPENLDAP_DEREFERENCE_CONTROL Encode and decode the OpenLDAP dereference control (draft-masarati-ldap-deref-00) At this time, the ldb_controls infrustructure does not handle request and reply controls having different formats, so this is purely the client implementation (ie, there is no decode of the client->server packet, and no encode of the server->client packet). Signed-off-by: Stefan Metzmacher <metze@samba.org>
2008-12-16 08:28:55 +01:00
#define DSDB_OPENLDAP_DEREFERENCE_CONTROL "1.3.6.1.4.1.4203.666.5.16"
struct dsdb_openldap_dereference {
const char *source_attribute;
const char **dereference_attribute;
};
struct dsdb_openldap_dereference_control {
struct dsdb_openldap_dereference **dereference;
};
struct dsdb_openldap_dereference_result {
const char *source_attribute;
const char *dereferenced_dn;
int num_attributes;
struct ldb_message_element *attributes;
};
struct dsdb_openldap_dereference_result_control {
struct dsdb_openldap_dereference_result **attributes;
};
s4:dsdb Rework modules create new partitions at runtime This is done by passing an extended operation to the partitions module to extend the @PARTITION record and to extend the in-memory list of partitions. This also splits things up into module parts that belong above and below repl_meta_data Also slit the partitions module into two files due to the complexity of the code Andrew Barltett
2009-10-02 10:28:29 +10:00
#define DSDB_PARTITION_DN "@PARTITION"
#define DSDB_PARTITION_ATTR "partition"
s4:dsdb Rework samdb code to use 'storage format' DNs for defaultObjectCategory It is important to always ensure that this attribute has an extended DN if the rest of the database stores things that way. The knowlege of what format the DN is stored on disk with is passed around in an LDB opaque. Andrew Bartlett
2009-11-16 18:46:28 +11:00
#define DSDB_EXTENDED_DN_STORE_FORMAT_OPAQUE_NAME "dsdb_extended_dn_store_format"
struct dsdb_extended_dn_store_format {
bool store_extended_dn_in_ldb;
};
s4:dsdb Move module configuration from each ldb into samba_dsdb.c This makes getting the module order correct, the obligation of Samba4 developers, and not system administrators. In particular, once an ldb is updated to use only the 'samba_dsdb' module, no further changes to the ldb should be required when upgrading to later Samba4 versions. (thanks to metze for the suggestion of samba_dsdb as a long-term stable name for the module) Andrew Bartlett
2009-11-23 20:30:35 +11:00
#define DSDB_OPAQUE_PARTITION_MODULE_MSG_OPAQUE_NAME "DSDB_OPAQUE_PARTITION_MODULE_MSG"
s4-dsdb: added an extended operation for allocating a new RID pool This will be called by getncchanges when a client asks for a DRSUAPI_EXOP_FSMO_RID_ALLOC operation Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-06 19:34:14 +11:00
/* this takes a struct dsdb_fsmo_extended_op */
#define DSDB_EXTENDED_ALLOCATE_RID_POOL "1.3.6.1.4.1.7165.4.4.5"
struct dsdb_fsmo_extended_op {
uint64_t fsmo_info;
struct GUID destination_dsa_guid;
};
r14380: Reduce the size of structs.h (This used to be commit 1a16a6f1dfa66499af43a6b88b3ea69a6a75f1fe)
2006-03-14 15:03:25 +00:00
#endif /* __SAMDB_H__ */
Copy Permalink