1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
Commit Graph

1916 Commits

Author SHA1 Message Date
Kamen Mazdrashki
7c653c429a s4-source4/dsdb/samdb/ldb_modules/samldb.c: Use DSDB_FLAG_NEXT_MODULE flag
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-02 10:07:53 +10:00
Kamen Mazdrashki
0e023f2340 s4-source4/dsdb/samdb/ldb_modules/samba3sid.c: Use DSDB_FLAG_NEXT_MODULE flag
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-02 10:07:48 +10:00
Kamen Mazdrashki
30a69eb4a0 s4-source4/dsdb/samdb/ldb_modules/rootdse.c: Use DSDB_FLAG_NEXT_MODULE flag
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-02 10:07:43 +10:00
Kamen Mazdrashki
68c6e607d9 s4-source4/dsdb/samdb/ldb_modules/ridalloc.c: Use DSDB_FLAG_NEXT_MODULE flag
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-02 10:07:39 +10:00
Kamen Mazdrashki
f3f87e8dee s4-source4/dsdb/samdb/ldb_modules/repl_meta_data.c: Use DSDB_FLAG_NEXT_MODULE flag
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-02 10:07:34 +10:00
Kamen Mazdrashki
b29921b82e s4-dsdb/samdb/ldb_modules/linked_attributes.c: make use of DSDB_FLAG_NEXT_MODULE flag
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-02 10:07:27 +10:00
Kamen Mazdrashki
f570eec264 s4/dsdb: Add DSDB_FLAG_NEXT_MODULE flag
Although it is not currently used in implementation,
my intention is for callers to clearly state what
action they want to execute.

Currently when a caller wants to pass the call to the next
module in the chain, this flag is either omitted or 0 is used
(which is somewhat hacky, isn't it)

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-07-02 10:07:09 +10:00
Matthias Dieter Wallnöfer
c2e2f783d0 s4:dsdb/tests/python/passwords.py - add the right result codes for user password changes
They will be enabled once the ACL modules supports it. It was my fault to not
import them earlier.
2010-07-01 17:23:01 +02:00
Stefan Metzmacher
14f8953aa4 s4:dsdb: move dsdb python tests from lib/ldb/ to dsdb/
metze
2010-06-30 11:10:28 +02:00
Anatoliy Atanasov
6abfe8904a s4:schema/schema_set.c - free LDB message diffs
Especially the "free"s after "ldb_msg_diff" are very important since the diff
message is allocated on the long-living LDB context.

Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2010-06-30 09:17:44 +02:00
Andrew Bartlett
32b8b401d6 s4:dsdb Fix possible schema segfaults for DRS-replication based schema
The problem here is that if the schema has been modified on the source
domain, there may be attributes that appear over DRS with 0 values (to
indicate that any existing values on the target should be deleted).
This would confuse the previous version of this macro.

Andrew Bartlett
2010-06-30 10:22:59 +10:00
Matthias Dieter Wallnöfer
4f029f6f1b s4:dsdb/new_partition.c - remove the "ldb_next_request" call which we find also below the "if" block 2010-06-29 22:23:15 +02:00
Matthias Dieter Wallnöfer
0e21b4ffa0 Revert "s4/dsdb: Fixed partition_search() not to pass special DN's to LDAP backend."
This reverts commit ed4c107bc1.

See post "Endi's Bug 7530 patches (LDAP backend)" on samba-technical.
2010-06-29 15:14:32 +02:00
Nadezhda Ivanova
845e7a609d Fixed incorrect use of cn instead of lDAPDisplayName 2010-06-29 11:46:22 +03:00
Andrew Bartlett
94637e5fe4 s4:provision Add an msDS-SupportedEncryptionTypes entry to our DC
This ensures that our DC will use all the available encyption types.

(The KDC reads this entry to determine what the server supports)

Andrew Bartlett
2010-06-29 16:59:22 +10:00
Kamen Mazdrashki
1e8876a4f1 s4/repl_meta_data: remove duplicated (and commented out) log 2010-06-29 00:35:23 +03:00
Endi S. Dewata
ed4c107bc1 s4/dsdb: Fixed partition_search() not to pass special DN's to LDAP backend.
Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2010-06-28 19:33:45 +02:00
Matthias Dieter Wallnöfer
4fc51ad07a s4:repl_meta_data LDB module - fix counter type 2010-06-28 14:51:09 +02:00
Matthias Dieter Wallnöfer
fc2d8fcb83 s4:acl LDB module - fix counter type 2010-06-28 14:51:09 +02:00
Nadezhda Ivanova
5a18fc2b2a Implementation of self membership validated right.
When this right is granted, the user can add or remove themselves from a group even
if they dont have write property right.
2010-06-28 10:43:50 +03:00
Kamen Mazdrashki
431386f327 s4/drs: re-implement 'renaming' object replication
We should rename objects only after we make sure, that
changes on the partner DC are newer than what we have.
This fixes a bug, when we have following situation with 2 DCs:
- we have an object O on the two DCs
- we rename (delete) object O on DC1
- DC1 replicates from DC2
In the above scenario, object O will be renamed back
to its original name (i.e. it will be restored).

Now, we check that DC2 state is older than what we have,
so nothing happens with object's DN.
2010-06-28 04:43:29 +03:00
Stefan Metzmacher
7905901bc0 s4:dsdb/ridalloc: add comment about windows behavior regarding rIDUsedPool
metze
2010-06-26 09:50:55 +02:00
Kamen Mazdrashki
163ed44903 s4/drs: DsReplicaSync should search partition to Sync
by any valid DSName attribute given, be it - partition DN,
partition GUID or partition SID
2010-06-25 04:51:59 +03:00
Andrew Tridgell
4cb423f527 s4-python: python is not always in /usr/bin
Using "#!/usr/bin/env python" is more portable. It still isn't ideal
though, as we should really use the python path found at configure
time. We do that in many places already, but some don't.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2010-06-24 18:46:57 +10:00
Andrew Bartlett
c4482bf53e libds:common Remove DS_DC_* domain functionality flags
These are just a subset of the DS_DOMAIN_ functionality flags, are compared and often confused with each other.  Just make them one set.

Andrew Bartlett
2010-06-23 20:10:03 +10:00
Matthias Dieter Wallnöfer
26a95463a6 s4:operational LDB module - fix a misleading comment 2010-06-23 09:53:23 +02:00
Matthias Dieter Wallnöfer
0e637be43b s4:password_hash LDB module - fix another problem regarding the lanman hash
When a user only provides only the lanman hash (and nothing else) and the
lanman authentication is deactivated then we end in an account with no
password attribute at all! Lock this down.
2010-06-22 22:21:04 +02:00
Matthias Dieter Wallnöfer
c38f94ed9b s4:dsdb_load_partition_usn - free the right memory context (tmp_ctx) 2010-06-21 11:10:02 +02:00
Kamen Mazdrashki
3aa8853f58 s4/dsdb: msg_idx->dn should be allocated in msg_idx mem context 2010-06-21 02:57:56 +03:00
Kamen Mazdrashki
cc7e2c10f2 s4/dsdb: Move schema accessors cleanup in separate function
This way dsdb_setup_sorted_accessors() will
free memory allocated for accessor arrays correctly
in case of failure,
2010-06-21 02:57:56 +03:00
Kamen Mazdrashki
267645ca55 s4/dsdb-schema: Index attributes on msDS-IntId value
O(n) search for dsdb_attribute by msDS-IntId value was
replaced by binary-search in ordered index.

I've choosen the approach of separate index on msDS-IntId values
as I think it is more clear what we are searching for.
And it should little bit faster as we can clearly determine
in which index to perform the search based on ATTID value -
ATTIDs based on prefixMap and ATTIDs based on msDS-IntId
are in separate ranges.

Other way to implement this index was to merge msDS-IntId values
in attributeID_id index.
This led me to a shorted but not so obvious implementation.
2010-06-21 02:57:55 +03:00
Matthias Dieter Wallnöfer
fbd0902958 s4:subtree_delete LDB module - now do support tree delete operations 2010-06-20 18:52:30 +02:00
Matthias Dieter Wallnöfer
87d0f63632 s4:dsdb - add a new dsdb delete function which understands the tree delete control 2010-06-20 18:52:29 +02:00
Matthias Dieter Wallnöfer
2fb715b484 s4:samldb LDB module - remove "samldb_set_defaultObjectCategory"
As far as I can tell and the test show the DN gets now normalised automatically
when stored into the database.

Anyway, if we find a case where this doesn't happen then I propose to do it
centrally for all DN attributes in common since we should get away from special
attribute hacks as far as possible.
2010-06-20 18:52:27 +02:00
Jelmer Vernooij
9e02764f7c pydsdb: Mark all SamDB and Schema methods that are in pydsdb as
private, to discourage them being called directly.
2010-06-20 15:22:49 +02:00
Matthieu Patou
f3e7d0ae8f s4: Using control bypassoperational allow the logic of this module to be bypassed for some given attributes
Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
2010-06-20 00:43:08 +02:00
Jelmer Vernooij
74309eb29c pydsdb: Move write_prefixes_from_schema_to_ldb to pydsdb from pyglue. 2010-06-19 22:46:43 +02:00
Jelmer Vernooij
a4f60ffe4b pydsdb: Move dsdb_set_schema_from_ldb to pydsdb. 2010-06-19 22:46:43 +02:00
Jelmer Vernooij
05b108a06b pydsdb: Move set_schema_from_ldif function to pydsdb from pyglue. 2010-06-19 22:46:43 +02:00
Matthias Dieter Wallnöfer
131be8da0f s4:instancetype LDB module - "instanceType" is single-valued - MS-ADTS 3.1.1.5.2.2 2010-06-19 19:37:47 +02:00
Matthias Dieter Wallnöfer
d16697df49 s4:objectclass LDB module - disable delete operations when "SYSTEM_FLAG_DISALLOW_DELETE" is specified 2010-06-19 17:53:19 +02:00
Matthias Dieter Wallnöfer
46bcf883bf s4:rootdse LDB module - strip trailing whitespaces 2010-06-19 17:53:18 +02:00
Matthias Dieter Wallnöfer
7f46a91e77 s4:rootdse LDB module - protect add and delete operations on the rootdse entry 2010-06-19 17:53:18 +02:00
Matthias Dieter Wallnöfer
72e14ea8bd s4:rootdse LDB module - Return "UNWILLING_TO_PERFORM" when no attribute fits on a change 2010-06-19 17:53:17 +02:00
Matthias Dieter Wallnöfer
2af67a3602 s4:rootdse LDB module - refactor error messages
Fix indentations, use "set_errstring" when no "asprintf" functionality required.
2010-06-19 17:53:16 +02:00
Matthias Dieter Wallnöfer
a4381239ba s4:objectclass LDB module - use the old DN when displaying error messages 2010-06-19 17:53:16 +02:00
Matthias Dieter Wallnöfer
ee2bb4474f s4:objectclass LDB module - add a better message when the parent DN is invalid 2010-06-19 17:53:15 +02:00
Matthias Dieter Wallnöfer
04890bb750 s4:objectclass LDB module - add an error message when someone tries to add entries without objectclasses 2010-06-19 17:53:15 +02:00
Matthias Dieter Wallnöfer
9da8b06112 s4:objectclass LDB module - handle the case when there is a retry to add the root basedn
This isn't quitted with a normal "NO_SUCH_OBJECT" (parent not found) but with a
very special referral: one with the DN itself and the hostname is the last
component value of the DN.
2010-06-19 17:53:14 +02:00
Jelmer Vernooij
b03637cb9e dsdb: Fix includes when building against system ldb. 2010-06-19 14:46:22 +02:00