sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-06-21 03:17:08 +03:00
Code
96,413 Commits 62 Branches 1,161 Tags
Commit Graph

140 Commits

Author SHA1 Message Date
Matthias Dieter Wallnöfer
f1535694f7 s4:rootdse LDB module - better that the "edn" control handling is done last 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-09-24 09:25:42 +10:00
Matthias Dieter Wallnöfer
f84724cebc s4:rootdse LDB module - make more use of LDB result constants 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-09-24 09:25:41 +10:00
Matthias Dieter Wallnöfer
08298457d4 s4:rootdse LDB module - fix comment typo 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-09-24 09:25:41 +10:00
Matthias Dieter Wallnöfer
e59cdaf40e s4:rootdse LDB module - fix counter types 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-09-24 09:25:41 +10:00
Andrew Tridgell
34f47a33df s4-rootdse: mark registered controls as non-critical 
this is needed for clients that may include unnecessary controls in
requests and mark them as non-critical
 2010-09-19 19:20:48 -07:00
Andrew Tridgell
3e88f3cf33 s4-rootdse: setup length after NULL check 2010-09-15 15:39:34 +10:00
Anatoliy Atanasov
788bfc8a25 s4/fsmo: Change return type from NTSTATUS to WERROR for drepl_takeFSMOrole 
This removed an unnecessary conversion of the return type in
drepl_take_FSMO_role.
 2010-09-10 13:44:20 +03:00
Andrew Tridgell
c34cae81fe s4-fsmo: update FSMO changes for recent IRPC work 
the IRPC API has changed

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-10 13:08:20 +03:00
Nadezhda Ivanova
36e663ad71 s4-ldap: Added support for FSMO role transfer via LDAP by modify on rootDSE 
GetNCChanges with the corresponding extended operation is initiated and added to
the queue when a modify request is received on becomeSchemaMaster, becomeRidMaster,
becomeNamingMaster, becomeInfrastructureMaster and becomePDC attributes in
rootDSE.
 2010-09-10 13:08:19 +03:00
Andrew Bartlett
6cf29b3e4f s4:security Change struct security_token->sids from struct dom_sid * to struct dom_sid 
This makes the structure much more like NT_USER_TOKEN in the source3/
code.  (The remaining changes are that privilages still need to be merged)

Andrew Bartlett
 2010-08-23 08:50:55 +10:00
Andrew Tridgell
87df785a68 s4-dsdb: use ldb_operr() in the dsdb code 
this replaces "return LDB_ERR_OPERATIONS_ERROR" with "return ldb_operr(ldb)"
in places in the dsdb code where we don't already explicitly set an
error string. This should make is much easier to track down dsdb
module bugs that result in an operations error.
 2010-07-07 20:14:55 +10:00
Andrew Tridgell
2671b5aeb0 s4-dsdb: fixed spelling of supportedSASLMechanisms 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-07-02 12:49:04 +10:00
Kamen Mazdrashki
30a69eb4a0 s4-source4/dsdb/samdb/ldb_modules/rootdse.c: Use DSDB_FLAG_NEXT_MODULE flag 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-02 10:07:43 +10:00
Matthias Dieter Wallnöfer
46bcf883bf s4:rootdse LDB module - strip trailing whitespaces 2010-06-19 17:53:18 +02:00
Matthias Dieter Wallnöfer
7f46a91e77 s4:rootdse LDB module - protect add and delete operations on the rootdse entry 2010-06-19 17:53:18 +02:00
Matthias Dieter Wallnöfer
72e14ea8bd s4:rootdse LDB module - Return "UNWILLING_TO_PERFORM" when no attribute fits on a change 2010-06-19 17:53:17 +02:00
Matthias Dieter Wallnöfer
2af67a3602 s4:rootdse LDB module - refactor error messages 
Fix indentations, use "set_errstring" when no "asprintf" functionality required.
 2010-06-19 17:53:16 +02:00
Matthias Dieter Wallnöfer
b61fa4b676 s4:rootdse LDB module - use LDB result constants 2010-06-11 10:19:19 +02:00
Andrew Tridgell
bb1ba4ff76 s4-drs: added new SECURITY_RO_DOMAIN_CONTROLLER level 
This is used for allowing operations by RODCs, and denying them
operations that should only be allowed for a full DC

This required a new domain_sid argument to
security_session_user_level()

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
Pair-Programmed-With: Rusty Russell <rusty@samba.org>
 2010-04-22 19:36:16 +10:00
Stefan Metzmacher
a7f8c197ad s4:rootdse: only return "tokenGroups", when the client asked for them 
metze
 2010-04-15 19:02:26 +02:00
Matthias Dieter Wallnöfer
ad9e407357 Revert "s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functions" 
We should use the "ldb_get_*_basedn" calls since they are available in the LDB
library.
 2010-04-13 08:55:15 +02:00
Andrew Bartlett
6ef167c37b s4:rootdse Implement "tokenGroups" in the rootDSE 
This returns the currently connected user's full token.  This is very
useful for debugging, and should be used in ACL tests.

Andrew Bartlett
 2010-04-10 21:41:02 +10:00
Andrew Bartlett
2de07761e0 s4:dsdb Change dsdb_get_schema() callers to use new talloc argument 
This choses an appropriate talloc context to attach the schema too,
long enough lived to ensure it does not go away before the operation
compleates.

Andrew Bartlett
 2010-03-16 19:26:03 +11:00
Matthias Dieter Wallnöfer
b85b9b364f s4:rootdse LDB module - change counter variables to "unsigned" where appropriate 2010-03-07 19:11:03 +01:00
Andrew Tridgell
595982a475 s4-rootdse: we don't need DSDB_FLAG_OWN_MODULE here 2010-02-16 00:12:09 +11:00
Eduardo Lima
9c46f425a2 s4-drs: enable the recyclebin optional feature 
Signed-off-by: Andrew Tridgell <tridge@samba.org>
 2010-02-16 00:12:09 +11:00
Andrew Tridgell
2985aeb8c9 s4-dsdb: isGlobalCatalogReady should be shown by default 
This caused repadmin.exe to crash. Thanks to Hongwei for tracking this
down for us.
 2010-01-17 10:52:31 +11:00
Andrew Tridgell
51bf383c26 s4-dsdb: added isGlobalCatalogReady 
needed for dcdiag.exe
 2010-01-16 14:10:41 +11:00
Andrew Tridgell
0fca76e577 s4-dsdb: added dsdb_functional_level() helper function 2009-12-09 18:18:26 +11:00
Kamen Mazdrashki
db82023af2 s4/drs: remove unused num_prefixes and prefixes from dsdb_schema 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2009-11-06 14:05:49 +01:00
Andrew Tridgell
a4f86c07e5 s4-ldb: fixed request handling for schemaUpdateNow op 2009-10-26 08:38:03 +11:00
Matthias Dieter Wallnöfer
0d7c34a5b4 s4:rootdse module - intendation fixup 2009-10-06 19:37:53 +02:00
Andrew Tridgell
5b684bbfd7 s4-ldap: default edn type is 0 2009-09-21 15:26:32 -07:00
Andrew Tridgell
2fda203230 s4-ldb: add support for extended DNs in the rootDSE 
W2K8 join as a DC relies on being able to ask for the sid component of
extended DNs from the rootDSE DNs
 2009-09-21 15:26:32 -07:00
Andrew Bartlett
271b5af92e s4:dsdb Handle dc/domain/forest functional levels properly 
Rather than have the functional levels scattered in 4 different,
unconnected locations, the provision script now sets it, and the
rootdse module maintains it's copy only as a cached view onto the
original values.

We also use the functional level to determine if we should store AES
Kerberos keys.

Andrew Bartlett
 2009-07-16 09:23:35 +10:00
Anatoliy Atanasov
6b05a9079c Fix for schemaUpdateNow command 2009-07-08 14:40:20 +10:00
Andrew Bartlett
4e58c7881e s4:ldb Allow rootdse module to build without ldb_private.h 
It seems quite reasonable to allow modules to re-initialise the set of
cached DNs on the ldb context.

Andrew Bartlett
 2009-06-30 15:30:13 +10:00
Jelmer Vernooij
edbbbff7ec dsdb: Fix build against system ldb. 2009-06-18 03:09:14 +02:00
Simo Sorce
d4aeed879b Fix all other modules to use ldb_module.h instead of ldb_private.h 
The only 2 modules escaping the rule so far are rootdse and partitions
 2009-01-30 17:07:25 -05:00
Andrew Bartlett
d68ad8218f s4:rootdse: fix the logic to indentify a rootdse search 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2008-12-17 12:29:28 +11:00
Andrew Bartlett
596fe759e1 s4:ldb: make it possible to return per entry controls 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2008-12-17 12:29:27 +11:00
Stefan Metzmacher
1e24fd3ba2 s4:rootdse: for now don't pass down controls for the rootdse search 
metze
 2008-10-02 12:20:58 +02:00
Simo Sorce
51baa8deec LDB ASYNC: samba4 modules 2008-09-29 04:22:20 +02:00
Andrew Bartlett
1f285560bc Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local 
(This used to be commit b12dd8ee5443ebfc204d1684f541d68ffb351197)
 2008-07-25 11:58:51 +10:00
Andrew Bartlett
d65f89f7b9 Clarify how we are doing the 'this is a rootdse query' check. 
(This used to be commit 8dfba3160cc4bc518f3ad8570d104e5baae784ca)
 2008-07-25 08:44:00 +10:00
Anatoliy Atanasov
f619e08f8b Handle schema reloading request. 
The ldif for that operation looks like this:

dn:
changetype: Modify
add: schemaUpdateNow
schemaUpdateNow: 1

It uses the rootdse's object functional attribute schemaUpdateNow.
In rootdse_modify() this command is being recognized and it is send as extended operation with DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID.
In the partition module its dispatched to the schema_fsmo module.
The request is processed in the schema_fsmo module by schema_fsmo_extended().
(This used to be commit 39f9184ddf215f2b512319211c0a05702218ef87)
 2008-07-24 11:54:30 +10:00
Stefan Metzmacher
db0a105aae schema_fsmo: move fsmo info into struct dsdb_schema 
metze
(This used to be commit 8538d305c803268c712a90879f29a2a74ba0ef03)
 2008-07-01 16:55:43 +02:00
Andrew Bartlett
c764791100 Clean up provision and rootdse module to hard-code less stuff. 
In particular, allow for the server DN to be in a different site
(possible outcome of a DRS replication).

Andrew Bartlett
(This used to be commit 9ee4e39fe178317f42fd9a0adceea24b55dfe0f1)
 2008-04-04 12:25:19 +11:00
Jelmer Vernooij
39a817d310 Fix use of some modules (needed _PUBLIC_). 
(This used to be commit ce332130ea77159832da23bab760fa26921719e2)
 2008-02-20 04:33:43 +01:00
Jelmer Vernooij
16109a40c0 Use struct-based rather than function-based initialization for ldb modules everywhere. 
(This used to be commit 85c96a325867f7bcdb412ebc53f8a47dbf7cd89b)
 2008-02-20 01:54:32 +01:00