samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2024-12-25 23:21:54 +03:00

Author	SHA1	Message	Date
Volker Lendecke	a433f1a757	lib: Give util_paths.c its own header Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2017-06-24 01:21:10 +02:00
Andreas Schneider	d1dc2b0e4b	ldb-samba: Fix a possible NULL pointer dereference CID: #1402566 CID: #1402567 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Tue May 16 16:45:43 CEST 2017 on sn-devel-144	2017-05-16 16:45:43 +02:00
Jeremy Allison	b2de5a81bf	s4: popt: Global replace of cmdline_credentials -> popt_get_cmdline_credentials(). Add one use of popt_set_cmdline_credentials(). Fix 80 column limits when cmdline_credentials changes to popt_get_cmdline_credentials(). Signed-off-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>	2017-05-11 20:30:13 +02:00
Lumir Balhar	e9a464911c	python: samba._ldb: Port of samba._ldb to Python 3 compatible form Port of samba._ldb Python module to Python 3 compatible form. Signed-off-by: Lumir Balhar <lbalhar@redhat.com> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>	2017-03-10 07:31:11 +01:00
Stefan Metzmacher	4738754e7d	ldb-samba: remember the error string of a failing bind in ildb_connect() BUG: https://bugzilla.samba.org/show_bug.cgi?id=9048 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2017-03-03 08:59:16 +01:00
Andrew Bartlett	eb1cb17598	ldb-samba: Add new extended match rule DSDB_MATCH_FOR_EXPUNGE This allows us to find links that need to be expunged without passing the whole DB up in the search response. While each message still needs to be examined, this code only has to do memory allocation for entries with links Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-09-01 05:49:14 +02:00
Andrew Bartlett	b8335f6011	lib/ldb-samba: Avoid talloc() in ldif_read_objectSid() by parsing the SID string on the stack Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-07-28 10:06:12 +02:00
Andrew Bartlett	cb6395c858	lib/ldb-samba: Use ndr_push_struct_into_fixed_blob() in ldif_handlers.c This avoids a number of pointless and pointlessly-large allocations in inner loops. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-07-28 10:06:12 +02:00
Garming Sam	4d7c782e00	match_rules: Make cleanup faster and more efficient Signed-off-by: Garming Sam <garming@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-15 10:01:28 +02:00
Garming Sam	3f0435452b	match_rules: Fix a duplicated check Signed-off-by: Garming Sam <garming@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-07-15 10:01:28 +02:00
Andrew Bartlett	61cb3a6a3b	lib/ldb-samba: We can confirm a GUID is a GUID by length The GUID_from_ndr_blob() is pointless and costly Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Fri Jun 17 18:13:56 CEST 2016 on sn-devel-144	2016-06-17 18:13:56 +02:00
Andrew Bartlett	15f191a232	ldb-samba: Add "secret" as a value to hide in LDIF files This is not secret or encrypted in LDAP, but is sensitive in secrets.ldb Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Autobuild-User(master): Garming Sam <garming@samba.org> Autobuild-Date(master): Wed May 11 07:17:38 CEST 2016 on sn-devel-144	2016-05-11 07:17:38 +02:00
Andrew Bartlett	5359031e33	ldb-samba: Use ndr_pull_struct_blob_all_noalloc This avoids pointless talloc() calls in a hot code path. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Autobuild-User(master): Garming Sam <garming@samba.org> Autobuild-Date(master): Tue May 3 11:43:15 CEST 2016 on sn-devel-144	2016-05-03 11:43:15 +02:00
Robin Hack	f4181f25b4	ldb-samba/ldb_matching_rules: Fix CID 1349424 - Uninitialized pointer read Fix unitialized 'visited' value (pointer to pointer) in ldb_eval_transitive_filter() which passes 'visited' value later to ldb_eval_transitive_filter_helper(). Signed-off-by: Robin Hack <hack.robin@gmail.com> Reviewed-by: Jeremy Allison <jra@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Apr 27 02:12:39 CEST 2016 on sn-devel-144	2016-04-27 02:12:39 +02:00
Stefan Metzmacher	e55806e83e	ldb-samba:wscript: python_samba__ldb depends on pyauth BUG: https://bugzilla.samba.org/show_bug.cgi?id=11789 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Wed Mar 16 01:34:29 CET 2016 on sn-devel-144	2016-03-16 01:34:29 +01:00
Andrew Bartlett	4c38e74d7c	dsdb: Introduce LDB_SYNTAX_SAMBA_OCTET_STRING The sort order for this function is more expected than the sort order for ldb_comparsion_binary() Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-03-09 10:32:16 +01:00
Stefan Metzmacher	5db9f865bc	ldb-samba: fix the timeout setup in ildb_request_send() We need to use the startime as reference not the current time. We also allow timeout == -1 to indicate no timeout at all. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2016-02-17 03:43:22 +01:00
Adrian Cochrane	594778e580	ldb-samba: Expand testing of recursive search Signed-off-by: Adrian Cochrane <adrianc@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Mon Jan 18 07:49:43 CET 2016 on sn-devel-144	2016-01-18 07:49:43 +01:00
Adrian Cochrane	10e32377a4	ldb-samba: Correct error reporting to match Windows In some cases instead of replying with an error Windows instead returns 0 results. Signed-off-by: Adrian Cochrane <adrianc@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-01-18 04:42:21 +01:00
Adrian Cochrane	a52bcaaf20	ldb-samba: critical bugfix on original recursive search implementation In the original patch (listed previously), when the search recurses it will inevitably reallocate the visited list to a new array in memory. When this happens the original patch didn't update it's reference to the array. This patch adds an extra level of indirection on the visited list in order to fix this bug. Signed-off-by: Adrian Cochrane <adrianc@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-01-18 04:42:21 +01:00
Samuel Cabrero	177ac584c9	ldb-samba: Implement transitive extended matching Documented in [MS-ADTS] section 3.1.1.3.4.4.3 LDAP_MATCHING_RULE_TRANSITIVE_EVAL This allows a search filter such as: member:1.2.840.113556.1.4.1941:=cn=user,cn=users,dc=samba,dc=example,dc=com This searches not only the member attribute, but also any member attributes that point at an object with this member in them. All the various DN syntax types are supported, not just plain DNs. Signed-off-by: Samuel Cabrero <samuelcabrero@kernevil.me> (abartlet: Fixed compile error: return makes integer from pointer without a cast) Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz> (returned to Samba by revert of `dc2d5ccd56`, returning the original commit `2a22ba34cd`) Signed-off-by: Andrew Bartlett <abartlet@samba.org> Signed-off-by: Adrian Cochrane <adrianc@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2016-01-18 04:42:21 +01:00
Jelmer Vernooĳ	da8674c72a	Rename 'errors' to 'samba-errors' and make it public. This is necessary because it has public headers. Signed-off-by: Jelmer Vernooĳ <jelmer@jelmer.uk> Reviewed-By: Andrew Bartlett <abartlet@samba.org> Reviewed-By: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Jelmer Vernooij <jelmer@samba.org> Autobuild-Date(master): Wed Jan 13 07:47:04 CET 2016 on sn-devel-144	2016-01-13 07:47:04 +01:00
Adrian Cochrane	c505076422	Fix propagation of LDB errors through TDB. Returning a non-zero value from a tdb_traverse callback indicates that tdb_traverse should stop traversing the database. This error code IS NOT propagated back to the caller, so LTDB must record the error otherwise. This patch corrects LTDB for this misunderstanding. Naturally exposing these errors changes the behaviour of some tests. This commit fixes that as well. Signed-off-by: Adrian Cochrane <adrianc@catalyst.net.nz> Reviewed-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2015-12-04 06:08:29 +01:00
Volker Lendecke	6404c07266	ldb: Fix a "ignoring return value" warning Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Wed Oct 28 19:04:15 CET 2015 on sn-devel-104	2015-10-28 19:04:15 +01:00
Andrew Bartlett	dc2d5ccd56	Revert "ldb-samba: Implement transitive extended matching" This reverts commit `2a22ba34cd`. selftest/knownfail entries are added to ensure 'make test' continues to pass BUG: https://bugzilla.samba.org/show_bug.cgi?id=10493 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2015-08-17 17:43:36 +02:00
Stefan Metzmacher	19e4a101db	ldb-samba: implement --show-binary for msDS-RevealedUsers Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2015-03-12 17:13:43 +01:00
Petr Viktorin	02980268e8	Remove use of the "staticforward" macro This macro was used for compatibility with broken compilers. Since Python 2.3, it is always defined as `static`, and only exists "for source compatibility with old C extensions". Signed-off-by: Petr Viktorin <pviktori@redhat.com> Reviewed-by: Jelmer Vernooij <jelmer@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>	2015-01-22 10:51:07 +01:00
Andrew Bartlett	7cfe6e9117	lib/ldb-samba: Add comment dicouraging use of schemaUpgradeInProgress Signed-off-by: Garming Sam <garming@catalyst.net.nz> Pair-programmed-with: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Autobuild-User(master): Garming Sam <garming@samba.org> Autobuild-Date(master): Mon Dec 22 02:42:42 CET 2014 on sn-devel-104	2014-12-22 02:42:42 +01:00
Samuel Cabrero	5f47ca786e	ldb-samba-tests: Add tests for transitive matching rule Signed-off-by: Samuel Cabrero <samuelcabrero@kernevil.me> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2014-12-22 00:18:09 +01:00
Samuel Cabrero	2a22ba34cd	ldb-samba: Implement transitive extended matching Documented in [MS-ADTS] section 3.1.1.3.4.4.3 LDAP_MATCHING_RULE_TRANSITIVE_EVAL This allows a search filter such as: member:1.2.840.113556.1.4.1941:=cn=user,cn=users,dc=samba,dc=example,dc=com This searches not only the member attribute, but also any member attributes that point at an object with this member in them. All the various DN syntax types are supported, not just plain DNs. Signed-off-by: Samuel Cabrero <samuelcabrero@kernevil.me> (abartlet: Fixed compile error: return makes integer from pointer without a cast) Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>	2014-12-22 00:18:09 +01:00
Stefan Metzmacher	5c60dc429f	lib/ldb-samba: add ldif handler for msDS-TrustForestTrustInfo Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>	2014-11-20 16:23:06 +01:00
Stefan Metzmacher	8d33cddcb0	ldb-samba: fix a memory leak in ldif_canonicalise_objectCategory() Searches for '(objectCategory=Person)' will leak a ldb_dn structure on the ldb_context. These searches are typically used by Zarafa. Bug: https://bugzilla.samba.org/show_bug.cgi?id=10469 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org> Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Thu Jul 17 00:51:57 CEST 2014 on sn-devel-104	2014-07-17 00:51:57 +02:00
Kai Blin	e9cff21831	ldbsamba: Move pyldb-utils dependency to python_samba__ldb This allows to build smbd statically again. Pair-programmed-with: Stefan Metzmacher <metze@samba.org> Signed-off-by: Kai Blin <kai@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Kai Blin <kai@samba.org> Autobuild-Date(master): Wed May 14 04:01:46 CEST 2014 on sn-devel-104	2014-05-14 04:01:46 +02:00
Andrew Bartlett	befae7f6e6	ldb_ildap: Map some wrong username/password errors on to LDB_ERR_INVALID_CREDENTIALS This is better than just LDB_ERR_OPERATIONS_ERROR for all errors. Andrew Bartlett Change-Id: Id832cf02fcd1dc0347d5ab9eb9a2db78fda39dc6 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>	2014-04-02 17:12:46 +02:00
Stefan Metzmacher	850788591b	lib/ldb-samba: add more attributes with LDB_SYNTAX_SAMBA_GUID Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Guenther Deschner <gd@samba.org>	2014-02-11 16:02:13 +01:00
Christian Ambach	f1acab1643	lib/ldb-samba: fix a compiler warning about macro redefinition Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2013-12-12 14:21:27 -08:00
Andrew Bartlett	f2bccebd91	lib/ldb-samba/ldb_ildap: Also skip special base DNs This is so we do not search for @REPLCHANGED against ldap Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Nadezhda Ivanova <nivanova@symas.com>	2013-09-17 05:56:56 +02:00
Stefan Metzmacher	5f93822ede	lib/ldb-samba: only debug LDB_DEBUG_TRACE at level 10 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Björn Jacke <bj@sernet.de>	2013-07-09 15:19:23 +02:00
Stefan Metzmacher	8e0752f4d6	lib/ldb-samba: make use of DBGC_LDB Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Björn Jacke <bj@sernet.de>	2013-07-09 15:19:18 +02:00
Andrew Bartlett	5d96498680	s4-dsdb: Avoid printing secret attributes in ldb trace logs These are printed when Samba has debug level 10, which is often used for debugging. To indicate that these attributes are secret, we set an opaque. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Aug 29 06:04:33 CEST 2012 on sn-devel-104	2012-08-29 06:04:33 +02:00
Matthias Dieter Wallnöfer	536c082505	LDB:ldif_handlers.c - LDB_OP_GREATER/LDB_OP_LESS are thought as ">=" or "<=" Signed-off-by: Andrew Bartlett <abartlet@samba.org>	2012-08-22 01:31:55 +02:00
Björn Jacke	13f8674a15	build: rename security → samba-security there is a libsecurity on OSF1 which clasheѕ with our security lib. see bug #9023. Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Björn Jacke <bj@sernet.de> Autobuild-Date(master): Fri Aug 10 14:22:21 CEST 2012 on sn-devel-104	2012-08-10 14:22:20 +02:00
Andrew Bartlett	11d60d13dc	s4-ldb_wrap: Do not vasprintf() the ldb debug messages that will not be shown This malloc() and free() actually shows up quite high on a call profile of provision of the AD DC. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Thu Aug 9 13:51:06 CEST 2012 on sn-devel-104	2012-08-09 13:51:06 +02:00
Rusty Russell	df4a6e8228	ldb: use tdb directly, not tdb_compat. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>	2012-06-19 05:38:07 +02:00
Rusty Russell	ae62d46a9f	ldb_wrap.c: fix TDB2-incompatible API usage. Auditing revealed one place still expecting a -1 return on failure: tdb2 returns the (negative) errcode directly, so the portable way to do this is to check for != 0. Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>	2012-01-30 09:25:50 +10:30
Amitay Isaacs	20e425f7a8	ldif-handler: Fix the case for attribute dnsproperty	2011-12-23 16:18:25 +11:00
Amitay Isaacs	7ba004da24	ldb-samba: Added handler to decode dnsProperty attribute Signed-off-by: Andrew Tridgell <tridge@samba.org>	2011-10-20 05:53:05 +02:00
Andrew Tridgell	1df100393b	s4-ldb: enable display of partialAttributeSet with --show-binary	2011-10-04 15:08:55 +11:00
Andrew Tridgell	ef3d860b2e	s4-ldb: allow decoding of trustAuthIncoming and trustAuthOutgoing this allows --show-binary to display trustAuthOutgoing and trustAuthIncoming NDR blobs. Useful for debugging trust issues Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>	2011-09-05 11:19:25 +02:00
Jelmer Vernooij	292fe74971	credentials: Rename library to samba-credentials to avoid name clashes. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Thu Aug 18 22:16:38 CEST 2011 on sn-devel-104	2011-08-18 22:16:38 +02:00

1 2

56 Commits