sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-10 01:18:15 +03:00
Code
57,254 Commits 60 Branches 1,145 Tags 453 MiB
3a6bde799d
Commit Graph

97 Commits

Author SHA1 Message Date
Matthias Dieter Wallnöfer
3a6bde799d s4:samdb_set_password/samdb_set_password_sid - Better comments and cosmetics 2009-11-05 12:43:02 +01:00
Matthias Dieter Wallnöfer
85e4995364 s4:sites - get the server site (name) from DSDB 2009-10-18 14:33:43 +02:00
Andrew Tridgell
94897d7a7c s4-dsdb: added samdb_rodc() and samdb_ntds_options() 
Later we will need to make samdb_rodc() look in the database, but for
now we should at least have the function in a central place
 2009-10-15 08:20:37 +11:00
Andrew Bartlett
1dfa2ed423 s4:provision Remove all references to samba4LocalDomain 
This was a bad idea all along, as Simo said at the time.  With the
full MS schema and enforcement of it, it is an even worse idea.

This fixes the provision of the member server in 'make test'

Andrew Bartlett
 2009-10-12 16:50:49 +11:00
Matthias Dieter Wallnöfer
607ceff234 s3/s4 - Adapt the IDL changes on various locations 2009-10-08 09:50:19 +02:00
Matthias Dieter Wallnöfer
2cbff7496e s4:samdb_set_password - Return the maximum password age when requested (not the minimum one) 2009-10-02 17:28:04 +02:00
Matthias Dieter Wallnöfer
6edb92f337 s4:samdb_set_password - cosmetic fixes 2009-10-02 17:27:30 +02:00
Matthias Dieter Wallnöfer
0227697bf4 s4:dsdb/common/sidmap - Remove 
As metze pointed out - this seems to be completely dead code. I too didn't find
any dependencies in other code parts. Therefore remove it.
 2009-10-02 14:22:49 +10:00
Matthias Dieter Wallnöfer
6637887373 s4:dsdb/common/util - remove introduced "samdb_is_capable_dc" call 
I came up with a better solution which is invoked when we try to join a domain
as a DC (in file "libnet_become_dc.c"). Consider a following commit for this
patch.
 2009-09-30 15:58:42 +02:00
Andrew Tridgell
d515b6e326 s4-dsdb: ask for an extended DN in dsdb_find_dn_by_guid() 2009-09-28 10:23:20 +10:00
Andrew Tridgell
9e32648768 s4-dsdb: make dsdb_search_dn_with_deleted public for repl_meta_data module 2009-09-28 10:22:50 +10:00
Andrew Tridgell
1fa735cc86 s4-drs: add SHOW_DELETED control on dsdb utility calls 
The dsdb_find_dn_by_guid() and dsdb_find_sid_by_dn() are using by
the DRS server call getncchanges on objects that may be deleted.
 2009-09-24 10:35:32 -07:00
Andrew Tridgell
6fba3a22fe s4-dsdb: added dsdb_find_sid_by_dn() 2009-09-23 14:01:29 -07:00
Andrew Tridgell
dd7f94a9e2 s4-dsdb: fixed a printf format warning 2009-09-21 15:26:31 -07:00
Matthias Dieter Wallnöfer
6ec69f3e77 s4:dsdb/common/util - Check for the right forest/domain function level 
This adds a function which performs the check for the supported forest and
domain function levels. On an unsuccessful result a textual error message can
be created (parameter "errmsg" != NULL) which gives hints for the user to help
him fixing the issue.
 2009-09-20 22:53:45 +02:00
Anatoliy Atanasov
0b68967096 Move replmd_drsuapi_DsReplicaCursor2_compare to a common place. 2009-09-19 15:42:00 -07:00
Andrew Tridgell
79082f400e s4-dsdb: treat uSNHighest as 0 if @REPLCHANGED doesn't exist 
When a partition is first created it still needs a uSNHighest value
 2009-09-16 03:43:37 -07:00
Andrew Tridgell
424d1c580a s4-dsdb: added dsdb_load_partition_usn and dsdb_save_partition_usn 
These are used to load/save the per-partition uSN values managed by
the repl_meta_data module
 2009-09-13 16:40:00 -07:00
Andrew Tridgell
0ba9a1bd3f s4-kcc: we should only add to the repsFrom if it doesn't already exist 
If we already have a repsFrom for a particular DC and naming context
then we should not overwrite it, as it contains info on what
replication we've already done
 2009-09-12 11:15:27 +10:00
Matthias Dieter Wallnöfer
6677eea3b1 s4:dsdb/common/util.c - Copy parameters to prevent segfaults 
The parameters "lmNewHash" and/or "ntNewHash" could be NULL and when we perform
write operations on them (look below in the code) we could get SIGSEGVs!
 2009-09-06 12:20:21 +02:00
Matthias Dieter Wallnöfer
43cfa69945 s4:dsdb/common/util - Indentation fixes 2009-09-06 12:16:49 +02:00
Andrew Tridgell
5842aa1ffd s4: fixed a missing NULL termination in a attribute list passed to ldb_search 2009-09-04 14:40:51 +10:00
Andrew Tridgell
c37f290043 added dsdb_find_guid_by_dn() 
This will be used by the linked_attribute module
 2009-09-03 18:36:09 +10:00
Andrew Tridgell
5d23ad8c2d added dsdb_find_dn_by_guid() 
This came from the linked_attributes module, but now the
repl_meta_data module needs the same functionality, so move it to a
common routine.
 2009-09-03 18:36:08 +10:00
Matthias Dieter Wallnöfer
e2b12c6f6a s4: Remove obsolete "samdb_password_quality_ok" function (it's just a one-line wrapper) 2009-08-14 00:14:14 +02:00
Matthieu Patou
c50dff4cce Return infinite time for last last logoff when last logoff = 0 2009-08-03 14:08:15 +10:00
Günther Deschner
05fbe0c7f7 libds: merge the UF<->ACB flag mapping functions. 
Guenther
 2009-07-13 15:36:07 +02:00
Günther Deschner
8db45607f8 libds: share UF_ flags between samba3 and 4. 
Guenther
 2009-07-13 15:36:06 +02:00
Andrew Bartlett
2c873c4353 Add const 2009-07-09 14:56:14 +10:00
Volker Lendecke
b4d7607a52 Fix some nonempty blank lines 2009-06-06 10:42:55 +02:00
Andrew Tridgell
b335618d17 fixed interpretation of ACB_PWNOTREQ 
This bit actually means that we should ignore the minimum password
length field for this user. It doesn't mean that the password should
be seen as empty
 2009-05-25 15:23:54 +10:00
Jelmer Vernooij
94069bd274 s4: Use same function signature for convert_* as s3. 2009-03-01 19:55:46 +01:00
Jelmer Vernooij
9ffb6d2d9e Add allow_badcharcnv argument to all conversion function, for 
consistency with Samba 3.
 2009-03-01 06:33:40 +01:00
Jelmer Vernooij
b64b78e4cc Allow overriding the function that ships the request in the Samba 3 
client code.
 2009-01-21 13:40:18 +01:00
Stefan Metzmacher
183c379fe5 s4:lib/tevent: rename structs 
list=""
list="$list event_context:tevent_context"
list="$list fd_event:tevent_fd"
list="$list timed_event:tevent_timer"

for s in $list; do
	o=`echo $s | cut -d ':' -f1`
	n=`echo $s | cut -d ':' -f2`
	r=`git grep "struct $o" |cut -d ':' -f1 |sort -u`
	files=`echo "$r" | grep -v source3 | grep -v nsswitch | grep -v packaging4`
	for f in $files; do
		cat $f | sed -e "s/struct $o/struct $n/g" > $f.tmp
		mv $f.tmp $f
	done
done

metze
 2008-12-29 20:46:40 +01:00
Günther Deschner
c8a8c2388b s4-dsdb: add samdb_msg_add_parameters. 
Guenther
 2008-11-10 21:46:25 +01:00
Günther Deschner
e78379be0b s4-dsdb: add samdb_result_parameters. 
Guenther
 2008-11-10 21:46:25 +01:00
Jelmer Vernooij
37d885c51a Remove iconv_convenience argument from convert_string{,talloc}() but 
make them wrappers around convert_string{,talloc}_convenience().
 2008-10-24 14:26:46 +02:00
Jelmer Vernooij
87ec1d2532 Make sure prototypes are always included, make some functions static and 
remove some unused functions.
 2008-10-20 18:59:51 +02:00
Andrew Bartlett
99315a19be Fix errrors in new password handling code found by RPC-SAMR. 
I'm very glad we have such a comprehensive testsuite for the SAMR
password change process, as it makes this a much easier task to get
right.

Andrew Bartlett
 2008-10-17 12:41:02 +11:00
Andrew Bartlett
7c88ea8aad Create a 'straight paper path' for UTF16 passwords. 
This uses a virtual attribute 'clearTextPassword' (name chosen to
match references in MS-SAMR) that contains the length-limited blob
containing an allegidly UTF16 password.  This ensures we do no
validation or filtering of the password before we get a chance to MD4
it.  We can then do the required munging into UTF8, and in future
implement the rules Microsoft has provided us with for invalid inputs.

All layers in the process now deal with the strings as length-limited
inputs, incluing the krb5 string2key calls.

This commit also includes a small change to samdb_result_passwords()
to ensure that LM passwords are not returned to the application logic
if LM authentication is disabled.

The objectClass module has been modified to allow the
clearTextPassword attribute to pass down the stack.

Andrew Bartlett
 2008-10-16 12:48:16 +11:00
Jelmer Vernooij
218f482fbf Use common strlist implementation in Samba 3 and Samba 4. 2008-10-12 00:56:56 +02:00
Jelmer Vernooij
9565999755 Fix include paths to new location of libutil. 2008-10-11 21:31:42 +02:00
Simo Sorce
508527890a Merge ldb_search() and ldb_search_exp_fmt() into a simgle function. 
The previous ldb_search() interface made it way too easy to leak results,
and being able to use a printf-like expression turns to be really useful.
 2008-09-23 18:17:46 -04:00
Andrew Bartlett
a33eaf564f Add definition for SYSTEM_FLAG_ATTR_IS_RDN 
(This used to be commit 36f727c4a7)
 2008-09-08 14:33:05 +10:00
Andrew Bartlett
add717dd0e Add schema search flags from MS-ADTS 
(This used to be commit 731d9e569a)
 2008-08-20 15:45:16 +10:00
Michael Adam
db36f37b8f libnet_become_dc: send msDS_Behavior_Version == 3 (win2k8) in DsAddEntry 
instead of version 2 (win2k3).
This makes the NET-API-BECOME-DC test work against windows 2003 and 2008.

Michael
(This used to be commit a7bfa1fb1b)
 2008-07-23 18:02:44 +02:00
Andrew Bartlett
44ea6a26fd rename sambaPassword -> userPassword. 
This attribute is used in a very similar way (virtual attribute
updating the password) in AD on Win2003, so eliminate the difference.

This should not cause a problem for on-disk passwords, as by default
we do not store the plaintext at all.

Andrew Bartlett
(This used to be commit 1cf0d75149)
 2008-07-12 15:26:42 +10:00
Michael Adam
60b303d4c2 dsdb: eliminate disards qualifyer compile warning. 
Michael
(This used to be commit 3b0917dbc5)
 2008-07-09 16:00:19 +02:00
Simo Sorce
929adc9efa Make up the right dependencies now that ldb depends on libevents 
(This used to be commit 3b8eec7ca3)
 2008-06-14 11:59:19 -04:00