sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-28 17:47:29 +03:00
Code
57,785 Commits 60 Branches 1,146 Tags
Commit Graph

321 Commits

Author SHA1 Message Date
Michael Adam
557535302c s3:pdb_ldap: fix a comment typo 
Michael
 2009-11-19 17:55:47 +01:00
Michael Adam
457055871a s3: shortcut uid_to_sid when "ldapsam:trusted = yes" 
The normal uid_to_sid behaviour is to call sys_getpwuid()
to get the name for the given uid and then call the
getsampwnam passdb method for the resulting name.

In the ldapsam:trusted case we can reduce the uid_to_sid
operation to one simple search for the uidNumber attribute
and only get the sambaSID attribute from the correspoinding
LDAP object. This reduces the number of ldap roundtrips
for this operation.

Michael
 2009-11-19 17:55:47 +01:00
Michael Adam
1e3c4b381a s3:smbd: also fill the memcache with sid<->id mappings in ldapsam_sid_to_id() 
not only the persistent idmap cache.

Michael
 2009-11-13 16:19:32 +01:00
Michael Adam
d2673253e3 s3:smbd: make idmap cache persistent for "ldapsam:trusted". 
This stores the mappings found in the idmap cache (which lives
inside gencache). This cache is already read in sid_to_Xid()
and Xid_to_sid() for ldapsam:trusted, this fills the opposite
direction, massively reducing the number of ldap roundtrips
across smbd restarts.

Michael
 2009-11-13 16:19:31 +01:00
Volker Lendecke
1220534716 Fix large paged search 
Signed-off-by: Michael Adam <obnox@samba.org>
 2009-11-13 11:36:06 +01:00
Björn Jacke
7006352206 s3:ldap: don't search when no values where found 2009-11-02 01:55:27 +01:00
Björn Jacke
72cec4a031 ѕ3:ldap: search for account policies in objectclass sambaDomain, not * 2009-10-31 00:48:20 +01:00
Günther Deschner
d168d7fe3c s3-pdb_ldap: fix crash bug in ldapsam_set_trusteddom_pw(). 
Thanks Volker for the hint.

Guenther
 2009-10-20 21:44:02 +02:00
Günther Deschner
f092d689c5 s3-pdb_ldap: Fix bug #4296: Clean up group membership while deleting a user. 
Note that this only is tried with editposix=yes.

Guenther
 2009-09-02 12:40:47 +02:00
Günther Deschner
20225d83dd s3-pdb_ldap: Make ldapsam_alias_memberships behave like the tdbsam equivalent. 
This lets samr_GetAliasMembership return with NT_STATUS_OK when called with 0
sids (just what w2k3 does).

Guenther
 2009-08-03 16:32:15 +02:00
Volker Lendecke
d050541330 Fix bug 5886 
Ok, that's a very long-standing one. I finally got around to install a recent
OpenLDAP and test the different variants of setting a NULL password etc.

Thanks all for your patience!

Volker
 2009-07-14 23:16:28 +02:00
Günther Deschner
9f15ef11bd s3-account_policy: add pdb_policy_type enum. 
Guenther
 2009-07-14 12:12:18 +02:00
Volker Lendecke
c624a704be Make escape_ldap_string take a talloc context 2009-07-09 22:25:29 +02:00
Volker Lendecke
91a8cb851e Fix bug #6431 - local groups from 3.0 setups no longer found. 
Search for groups without group suffix, group suffix is only used for new entries.
 2009-06-30 11:42:15 -07:00
Volker Lendecke
711544d494 Turn the pdb_rid_algorithm into a capabilities call that returns flags 2009-06-28 22:13:50 +02:00
Volker Lendecke
a51e6ce43c Pass a talloc_ctx to pdb_enum_aliasmem 2009-06-08 21:14:10 +02:00
Günther Deschner
fbb1e990ab s3-samr: fix return code of _samr_LookupRids when run with pdb_ldap. 
when _samr_LookupRids is called with no rids, it needs to return
NT_STATUS_NONE_MAPPED (not NT_STATUS_NO_MEMORY).

Found by RPC-SAMR torture test.

Guenther
 2009-06-07 02:24:21 +02:00
Volker Lendecke
14c1362034 Fix some nonempty blank lines 2009-05-31 12:16:34 +02:00
Jeremy Allison
196084d641 Fix the last few format arg missmatches I missed. 
Jeremy.
 2009-05-12 10:38:00 -07:00
Volker Lendecke
c9efd454c5 Fix bug 6157 
This patch picks the alphabetically smallest one of the multi-value attribute
"uid". This fixes a regression against 3.0 and also becomes deterministic.
 2009-05-12 15:21:46 +02:00
Jeremy Allison
b4c9cfb2af Fix a bunch of compiler warnings about wrong format types. 
Should make Solaris 10 builds look cleaner.
Jeremy.
 2009-05-11 21:56:57 -07:00
Björn Jacke
f238809d23 s3/ldap: also handle DirX return codes 2009-05-08 00:33:30 +02:00
Günther Deschner
fee4c99be4 s3-ldap: fix more callers of smbldap_dn_talloc() that were passing a NULL context. 
Guenther
 2009-05-05 21:22:28 +02:00
Günther Deschner
5b37df21f6 s3-ldapsam: Fix Bug #6313: ldapsam_update_sam_account() crashes while doing talloc_free on malloced memory. 
Guenther
 2009-05-05 21:14:53 +02:00
Andrew Bartlett
f28f113d8e Rework Samba3 to use new libcli/auth code (partial) 
This commit is mostly to cope with the removal of SamOemHash (replaced
by arcfour_crypt()) and other collisions (such as changed function
arguments compared to Samba3).

We still provide creds_hash3 until Samba3 uses the credentials code in
netlogon server

Andrew Bartlett
 2009-04-14 16:23:35 +10:00
Andrew Bartlett
3b3e21bd9b Convert Samba3 to use the common lib/util/charset API 
This removes calls to push_*_allocate() and pull_*_allocate(), as well
as convert_string_allocate, as they are not in the common API

To allow transition to a common charcnv in future, provide Samba4-like
strupper functions in source3/lib/charcnv.c

(the actual implementation remains distinct, but the API is now shared)

Andrew Bartlett
 2009-04-14 12:53:56 +10:00
Andrew Bartlett
9512640155 s3:smbldap Remove smbldap_get_dn 
This removes one more caller to pull_utf8_allocate()

Signed-off-by: Günther Deschner <gd@samba.org>
 2009-04-06 14:52:51 +02:00
Volker Lendecke
46bcb10b5a Shape up pdb_search a bit by making it a talloc ctx with a destructor 2009-03-07 17:51:21 +01:00
Jeremy Allison
669f2a02e2 Fix printf warnings found on systems where time_t <> long int. 
Jeremy.
 2009-02-19 13:36:20 -08:00
todd stecher
989ad44d32 Memory leaks and other fixes found by Coverity 2009-01-21 17:13:03 -08:00
Jeremy Allison
aa4abac6b7 Fix more ‘asprintf’, declared with attribute warn_unused_result. 
Jeremy.
 2008-12-23 10:42:25 -08:00
Günther Deschner
9203954428 s3-ldapsam: Fix Bug 5957: do not abort rename process on valid rename script. 
Guenther
(cherry picked from commit 26139344fd0fac4fdd2a6752628b252fbd9b7450)
(cherry picked from commit 866efa63a26f75bbf17cd4bebf639594e2feafba)
 2008-12-09 17:41:26 +01:00
John H Terpstra
b39237d3b3 pdb_ldap: Raise level for debug message to avoid log file flooding. 
(This used to be commit 9b863a10da8762f715c16f147d6cd1e79422d248)
 2008-07-24 09:49:28 +02:00
Karolin Seeger
490b60b500 Use LDAP macros instead of attribute names. 
Karolin
(This used to be commit 7dae8b04f126d0ac86a452dcf373a690ee687ead)
 2008-07-18 15:36:20 +02:00
Karolin Seeger
df15541926 Fix typo. 
retieve -> retrieve

Karolin
(This used to be commit 37c64130701ab13b6f34998ac17fec2d128c2e08)
 2008-07-14 16:40:36 +02:00
Volker Lendecke
90f3da4720 Fix some memleaks regarding trustdom passwords 
(This used to be commit 3d2913d599a4cd773614110ec7b7493aa7adb547)
 2008-07-10 18:25:00 +02:00
Volker Lendecke
ad91d960d0 Fix some uninitialized variable references via ndr_print 
(This used to be commit 26fb3fea812867f8b0dfe6a1be59e4922ed86e45)
 2008-07-10 18:24:54 +02:00
Volker Lendecke
516e381e09 Give a nice error message if trying to join with a non-privileged user 
(This used to be commit 347772fc39d9c7a96fcc72c9707696cc6abd89d7)
 2008-07-10 10:48:15 +02:00
Tim Prouty
fb37f15600 Cleanup size_t return values in callers of convert_string_allocate 
This patch is the second iteration of an inside-out conversion to cleanup
functions in charcnv.c returning size_t == -1 to indicate failure.
(This used to be commit 6b189dabc562d86dcaa685419d0cb6ea276f100d)
 2008-05-20 22:40:13 +02:00
Marc VanHeyningen
e06aa46b9f Coverity fixes 
(This used to be commit 3fc85d22590550f0539215d020e4411bf5b14363)
 2008-03-17 20:52:25 +01:00
Volker Lendecke
f3856d074f Fix bug 4901 
(This used to be commit 1dd8fa9a521046f1de8173ac00224706c5249665)
 2008-03-14 18:01:23 +01:00
Volker Lendecke
9d7cad7e82 Fix a memleak -- Coverity ID 222 
(cherry picked from commit a40781bafa3a8f0c7737164bca6cf74b0a452e72)
(This used to be commit 86cabcad74ac06d888f2a352a2bef3abea1ed85c)
 2008-03-05 18:44:26 +01:00
Günther Deschner
2c5e04b1f7 Fix crash bug in pdb_init_ldapsam(). 
Karolin, this needs to be in 3-2-stable.

Guenther
(This used to be commit 0d73bde6de4391e7aec862424762473441fa0905)
 2008-03-04 11:03:35 +01:00
Karolin Seeger
cdb88dcf6b Change ldap search filter. This function is also used to search machine accounts which may be located in a different ou. This is an extension to e71a48bb80cee85afcccacbce2884c0d600f4d72. 
Karolin
(This used to be commit e5cc8b683cba3f2f3a84b1636b3d5bee1bfc0dda)
 2008-02-19 12:35:54 +01:00
Karolin Seeger
cd50bc575e Change ldap search filter. This function is also used to search machine accounts which may be organized in a different ou. 
Karolin
(This used to be commit e71a48bb80cee85afcccacbce2884c0d600f4d72)
 2008-02-11 10:03:47 +01:00
Michael Adam
7c6d77dd88 Fix memleak in ldapsam_rename_sam_account() found by IBM checker. 
The check for out of memory was the wrong way round.

Michael
(This used to be commit d7a7b793203b986823859ac5171d2d4c30e52415)
 2008-01-09 22:09:55 +01:00
Michael Adam
f3603d5a5a Convert add_sid_to_array() add_sid_to_array_unique() to return NTSTATUS. 
Michael
(This used to be commit 6b2b9a60ef857ec31da5fea631535205fbdede4a)
 2008-01-09 01:47:10 +01:00
Jeremy Allison
cfcdeb52bf Fix for bug #5163 from Laurent Pinchart <pinchart@skynet.be> 
Failure to change password in ldap is mapped to NT_STATUS_UNSUCCESSFUL unconditionally.
Jeremy.
(This used to be commit 9369d6e907a49da1fbf2a5690118412b8d1a0383)
 2008-01-02 18:20:23 -08:00
Volker Lendecke
e70c97ef85 Remove the sampwent interface 
(This used to be commit 9e80b969fb40766de2c9b1a05d16bf4d4c6e46f7)
 2007-12-26 18:57:15 +01:00
Volker Lendecke
2e07c2ade8 s/sid_to_string/sid_to_fstring/ 
least surprise for callers
(This used to be commit eb523ba77697346a365589101aac379febecd546)
 2007-12-15 22:47:30 +01:00