14 years agor17661: A patch from Martin Kuehl:
Andrew Bartlett [Mon, 21 Aug 2006 10:45:58 +0000 (10:45 +0000)]
r17661: A patch from Martin Kuehl:

This commit extends the samba3sam test suite, which contains tests for
the samba3sam and ldb_map modules, with a lot of tests for inbound,
i.e. add, modify, rename and delete requests.

The tests each add a single record, modify it, rename it, and then
delete it, at each step checking that the operations were successful
and that the right data went into the right partitions.
They are run for an unmapped record, a mapped record with data only in
the remote partition, a mapped record with remote data that is later
modified to include local data, and a mapped record with data in both
the local and remote partitions.

It also adds a function to the backend objects that makes construction
of DNs for their respective partitions more comfortable.


14 years agor17660: fixed configure test
Andrew Tridgell [Mon, 21 Aug 2006 10:30:26 +0000 (10:30 +0000)]
r17660: fixed configure test

14 years agor17659: cope with systems without the x509 gnutls functions
Andrew Tridgell [Mon, 21 Aug 2006 09:27:43 +0000 (09:27 +0000)]
r17659: cope with systems without the x509 gnutls functions

14 years agor17658: several replacement snprintf() fixes.
Andrew Tridgell [Mon, 21 Aug 2006 07:41:17 +0000 (07:41 +0000)]
r17658: several replacement snprintf() fixes.

1) when running the testsuite, actually test against the system
   sprintf(), not against ourselves (doh!)

2) fix the buffer termination to terminate buf2 as well

3) fix handling of %llu, and add a simple test

This fixes a bug with password expiry on solaris

14 years agor17656: some systems (like older solaris) don't return ENOTEMPTY on rmdir()
Andrew Tridgell [Mon, 21 Aug 2006 06:06:02 +0000 (06:06 +0000)]
r17656: some systems (like older solaris) don't return ENOTEMPTY on rmdir()
with non-empty directory

14 years agor17653: fix typo
Simo Sorce [Mon, 21 Aug 2006 05:01:55 +0000 (05:01 +0000)]
r17653: fix typo

14 years agor17652: add oMSyntax to these attributes
Simo Sorce [Mon, 21 Aug 2006 04:44:38 +0000 (04:44 +0000)]
r17652: add oMSyntax to these attributes

14 years agor17651: Commit the set of classess used to generate our schema
Simo Sorce [Mon, 21 Aug 2006 04:33:36 +0000 (04:33 +0000)]
r17651: Commit the set of classess used to generate our schema
and update the schema with the latest additions

14 years agor17648: update minschema.js
Simo Sorce [Mon, 21 Aug 2006 03:52:43 +0000 (03:52 +0000)]
r17648: update minschema.js
this version returns also oMSyntax and oMObjectClass and also
use the right value for the objects CNs

add a nasty hack to ejs' mprLdbMessage() to handle binary blobs situations

14 years agor17647: the init fns should not take a mem_ctx
Andrew Tridgell [Mon, 21 Aug 2006 03:51:55 +0000 (03:51 +0000)]
r17647: the init fns should not take a mem_ctx

14 years agor17646: Use authentication if specified.
Andrew Bartlett [Mon, 21 Aug 2006 02:44:51 +0000 (02:44 +0000)]
r17646: Use authentication if specified.

Andrew Bartlett

14 years agor17645: gcc 4.1.x has started producing "value computed is not used" warnings
Andrew Tridgell [Mon, 21 Aug 2006 01:27:22 +0000 (01:27 +0000)]
r17645: gcc 4.1.x has started producing "value computed is not used" warnings
in very annoying ways for talloc_steal. This rather strange looking
cpp approach avoids these warnings. It's really a problem in gcc, but
better to do this than put up with the huge flood of warnings.

14 years agor17644: change the ldap server to always use the single process model. We are
Andrew Tridgell [Mon, 21 Aug 2006 01:25:20 +0000 (01:25 +0000)]
r17644: change the ldap server to always use the single process model. We are
not aiming to produce a high performance parallel ldap server, so
better to reserve the extra CPUs on a SMP box for file serving.

14 years agor17642: some more mappings
Simo Sorce [Mon, 21 Aug 2006 00:57:54 +0000 (00:57 +0000)]
r17642: some more mappings

14 years agor17641: some more info, add oMObjectClass values (binary :-/)
Simo Sorce [Mon, 21 Aug 2006 00:50:54 +0000 (00:50 +0000)]
r17641: some more info, add oMObjectClass values (binary :-/)

14 years agor17639: Martin Kuhl noticed that we loaded an incorrect value for
Andrew Bartlett [Sun, 20 Aug 2006 23:30:54 +0000 (23:30 +0000)]
r17639: Martin Kuhl noticed that we loaded an incorrect value for
distinguisedName on templated objects.

In looking how to handle distinguishedName correctly on LDAP, I was
very glad to find it supported entryDN, and this adds another mapping.

Andrew Bartlett

14 years agor17634: Kill off another case where we used dnsDomain, and point it again at
Andrew Bartlett [Sun, 20 Aug 2006 21:58:02 +0000 (21:58 +0000)]
r17634: Kill off another case where we used dnsDomain, and point it again at

Fix to read the nETBIOSName from the correct result.

Andrew Bartlett

14 years agor17633: Return NULL at the end of the file, or else we can't tell the
Andrew Bartlett [Sun, 20 Aug 2006 21:57:08 +0000 (21:57 +0000)]
r17633: Return NULL at the end of the file, or else we can't tell the
difference between end of file and a blank line.

Andrew Bartlett

14 years agor17632: This is the most accurate mappings between LDAP OID Syntaxes and AD Syntaxes.
Simo Sorce [Sun, 20 Aug 2006 21:23:47 +0000 (21:23 +0000)]
r17632: This is the most accurate mappings between LDAP OID Syntaxes and AD Syntaxes.
Generated by scripts that cross information from the Windows Schema and the
aggregate schema and cross verified by searching on the net

14 years agor17631: Some syntaxes from MS in a now vanished internet draft
Simo Sorce [Sun, 20 Aug 2006 21:22:27 +0000 (21:22 +0000)]
r17631: Some syntaxes from MS in a now vanished internet draft

14 years agor17624: Samba3 does not yet do getprinterinfo level 6
Volker Lendecke [Sun, 20 Aug 2006 17:38:15 +0000 (17:38 +0000)]
r17624: Samba3 does not yet do getprinterinfo level 6

14 years agor17614: Our first "client side' ldb module.
Simo Sorce [Sat, 19 Aug 2006 20:53:43 +0000 (20:53 +0000)]
r17614: Our first "client side' ldb module.

This module has been created with the purpose of being used
for searches against ldap servers without the need to handle
the control manually

You can test it by passing -o modules:paged_searches to ldbsearch

The page search size is set to 500 objects.


14 years agor17613: style fix
Simo Sorce [Sat, 19 Aug 2006 20:44:41 +0000 (20:44 +0000)]
r17613: style fix

14 years agor17609: Kill one more use of the fake dnsDomain attribute.
Andrew Bartlett [Fri, 18 Aug 2006 22:20:13 +0000 (22:20 +0000)]
r17609: Kill one more use of the fake dnsDomain attribute.

Add a talloc_steal to avoid a memory leak of the ldb_search result.

Andrew Bartlett

14 years agor17601: Fix declaration after statement.
Andrew Bartlett [Fri, 18 Aug 2006 12:27:14 +0000 (12:27 +0000)]
r17601: Fix declaration after statement.

Andrew Bartlett

14 years agor17600: Finish the schema conversion tool, and add a mapping file, used to map
Andrew Bartlett [Fri, 18 Aug 2006 06:14:21 +0000 (06:14 +0000)]
r17600: Finish the schema conversion tool, and add a mapping file, used to map
OIDs and skip built-in attributes.

Andrew Bartlett

14 years agor17599: Improvements to the AD-like to OpenLDAP format schema conversion utility.
Andrew Bartlett [Fri, 18 Aug 2006 03:52:50 +0000 (03:52 +0000)]
r17599: Improvements to the AD-like to OpenLDAP format schema conversion utility.

We now read the objectClasses, and sort them into order, so that
OpenLDAP will load them.  We do this by walking down the 'subClassOf'
chain.  This should also be used in the objectClass module to sort the
objectClass list, and to populate the @SUBCLASS records.

Andrew Bartlett

14 years agor17598: Patch from Martin Kühl <> to update the samba3sam test
Andrew Bartlett [Thu, 17 Aug 2006 22:18:20 +0000 (22:18 +0000)]
r17598: Patch from Martin Kühl <> to update the samba3sam test
suite, which contains tests for the samba3sam and ldb_map modules,
with a lot of tests for search requests.

The tests add a small set of known records to the database, half of
them with only remote data, half of them split across the local and
remote backends, and test searching these records by DN, by attribute
and with a range of parse trees.

This suite should be extensive enough to ensure that behaviour of
search requests doesn't break.

14 years agor17597: fix prefix path handling
Simo Sorce [Thu, 17 Aug 2006 20:21:14 +0000 (20:21 +0000)]
r17597: fix prefix path handling

14 years agor17596: apply patch from Martin
Simo Sorce [Thu, 17 Aug 2006 20:06:43 +0000 (20:06 +0000)]
r17596: apply patch from Martin

14 years agor17588: this file doesn't exist anymore
Stefan Metzmacher [Thu, 17 Aug 2006 13:41:23 +0000 (13:41 +0000)]
r17588: this file doesn't exist anymore


14 years agor17586: merge lib/netif into lib/socket and use -lnsl -lsocket on the
Stefan Metzmacher [Thu, 17 Aug 2006 13:37:04 +0000 (13:37 +0000)]
r17586: merge lib/netif into lib/socket and use -lnsl -lsocket on the
configure check for the interfaces.

should fix the build on some old sun boxes


14 years agor17582: Fix dependenies for oLschema2ldif.
Andrew Bartlett [Thu, 17 Aug 2006 08:55:09 +0000 (08:55 +0000)]
r17582: Fix dependenies for oLschema2ldif.

Andrew Bartlett

14 years agor17581: Add tool to convert AD schema back to OpenLDAP's schema formatting.
Andrew Bartlett [Thu, 17 Aug 2006 08:49:57 +0000 (08:49 +0000)]
r17581: Add tool to convert AD schema back to OpenLDAP's schema formatting.

Andrew Bartlett

14 years agor17580: Add a new tools to convert back from AD-like schema to OpenLDAP.
Andrew Bartlett [Thu, 17 Aug 2006 08:31:19 +0000 (08:31 +0000)]
r17580: Add a new tools to convert back from AD-like schema to OpenLDAP.

Add attribute syntax mapping to the existing OpenLDAP -> AD tool.

Andrew Bartlett

14 years agor17579: make ldb build g++ friendly
Andrew Tridgell [Thu, 17 Aug 2006 01:52:24 +0000 (01:52 +0000)]
r17579: make ldb build g++ friendly

14 years agor17578: in standalone talloc build ensure we get intptr_t if available (which
Andrew Tridgell [Thu, 17 Aug 2006 01:49:42 +0000 (01:49 +0000)]
r17578: in standalone talloc build ensure we get intptr_t if available (which
makes the discard_const stuff nicer)

14 years agor17577: Patch from Kai Blin <>:
Andrew Bartlett [Thu, 17 Aug 2006 00:44:29 +0000 (00:44 +0000)]
r17577: Patch from Kai Blin <>:

This is the Samba4 version of the ntlm_auth patch that was committed
to Samba3 in revision 17216.

The purpose of this patch is to return session key information, as
well as NTLMSSP negotiated flags to ntlm_auth's caller.  This allows
the bulk data signing and sealing to be handled in a library, supplied
by the caller.

This also allows the caller to ask for features, so that the right
flags get negotiated.

14 years agor17570: add dummy functions for the frsrpc and frsapi interfaces
Stefan Metzmacher [Wed, 16 Aug 2006 14:49:22 +0000 (14:49 +0000)]
r17570: add dummy functions for the frsrpc and frsapi interfaces
based on the wireshark information


14 years agor17567: add error code I got from DsGetNCChanges
Stefan Metzmacher [Wed, 16 Aug 2006 08:53:25 +0000 (08:53 +0000)]
r17567: add error code I got from DsGetNCChanges
flag on DsBind


14 years agor17566: test if the compiler support inline, this results
Stefan Metzmacher [Wed, 16 Aug 2006 06:11:22 +0000 (06:11 +0000)]
r17566: test if the compiler support inline, this results

#define inline

if the compiler doesn't support it

This hopefully fix the build on some hosts,
however we should not start to use inline in our
code this is more to not need to touch imported files
from heimdal or popt.


14 years agor17565: expand the test for negative enum values, systems like Tru64
Stefan Metzmacher [Wed, 16 Aug 2006 06:04:36 +0000 (06:04 +0000)]
r17565: expand the test for negative enum values, systems like Tru64
truncate the value to INT_MAX...
So a AC_TRY_RUN test is needed here


14 years agor17564: we don't need a AC_TRY_RUN to test the compiler warning options
Stefan Metzmacher [Wed, 16 Aug 2006 05:59:24 +0000 (05:59 +0000)]
r17564: we don't need a AC_TRY_RUN to test the compiler warning options


14 years agor17553: Actually enable the samba3sam module. Should help 'make test'.
Andrew Bartlett [Tue, 15 Aug 2006 12:59:46 +0000 (12:59 +0000)]
r17553: Actually enable the samba3sam module.  Should help 'make test'.

Andrew Bartlett

14 years agor17548: It is a good idea to commit the fix (from mkhl) before the test that
Andrew Bartlett [Tue, 15 Aug 2006 02:39:38 +0000 (02:39 +0000)]
r17548: It is a good idea to commit the fix (from mkhl) before the test that
shows the need for...

Martin Kuhl writes:

The ejs function `substitute_var' returns `undefined' when the first
argument ends in a pattern that should be substituted.

For that reason, the second assertion fails in the following test-case:

| libinclude("base.js");
| var obj = new Object();
| obj.FOO = "foo";
| obj.BAR = "bar";
| var str1 = "${FOO}:${BAR}";
| var str2 = "${FOO}:${BAR} "; // note the space after the brace
| var sub1 = substitute_var(str1, obj);
| var sub2 = substitute_var(str2, obj);
| assert(str1 + " " == str2);
| assert(sub1 + " " == sub2);

The problem is that the function `split' returns a single-element
array in both cases:
a) the string to split doesn't contain the split pattern
b) the string ends with the split pattern

To work around this, the following patch tests this condition and
returns `undefined' only if the string to split (`list[i]') really
didn't contain a closing brace.

14 years agor17547: Add test by mkhl for some of our variable substituion behaviour.
Andrew Bartlett [Tue, 15 Aug 2006 02:25:10 +0000 (02:25 +0000)]
r17547: Add test by mkhl for some of our variable substituion behaviour.

Andrew Bartlett

14 years agor17546: Test the loading of per-partition modules.
Andrew Bartlett [Tue, 15 Aug 2006 02:24:19 +0000 (02:24 +0000)]
r17546: Test the loading of per-partition modules.

Andrew Bartlett

14 years agor17545: I forgot to commit this file, a source file for the the samba3sam
Andrew Bartlett [Tue, 15 Aug 2006 02:18:32 +0000 (02:18 +0000)]
r17545: I forgot to commit this file, a source file for the the samba3sam
tests, by mkhl.

Andrew Bartlett

14 years agor17544: Add execute bit to js script.
Andrew Bartlett [Tue, 15 Aug 2006 00:31:39 +0000 (00:31 +0000)]
r17544: Add execute bit to js script.

Andrew Bartlett

14 years agor17543: Patch from Martin Kühl <> to extend the
Andrew Bartlett [Mon, 14 Aug 2006 23:41:10 +0000 (23:41 +0000)]
r17543: Patch from Martin Kühl <> to extend the
samba3sam test cases for ldb_map, and to include this into our default
'make test'.

14 years agor17542: In using ldb_map, I ran across some very odd behaviours when we search
Andrew Bartlett [Mon, 14 Aug 2006 23:25:04 +0000 (23:25 +0000)]
r17542: In using ldb_map, I ran across some very odd behaviours when we search
for objectClass=xyz.  The code has been warning at me 'no
covert_operator set', and indeed this is the case.  (It then proceeds to
strip this as a search expression)

In this commit, I have implemented a convert_operator for objectClass,
by pretending it is a simple MAP_CONVERT operator for the search

I also have changed the logic for when we should bail out.  I can only
see reason to bail out on the search if we have both local and remote
trees.  How can a remote-only search be un-splittable?

Andrew Bartlett

14 years agor17540: store command line args of in local vars
Stefan Metzmacher [Mon, 14 Aug 2006 16:35:56 +0000 (16:35 +0000)]
r17540: store command line args of in local vars
as $0,$1,$2,$3 may change in side the script
or included scripts.

This fixes the usage of SOCKET_WRAPPER on non linux
systems (tested on IRIX 6.4)


14 years agor17539: add HMAC-MD5 test code based on the example values from rfc 2104, 2202
Stefan Metzmacher [Mon, 14 Aug 2006 14:56:21 +0000 (14:56 +0000)]
r17539: add HMAC-MD5 test code based on the example values from rfc 2104, 2202


14 years agor17538: this function should be static...
Stefan Metzmacher [Mon, 14 Aug 2006 14:53:38 +0000 (14:53 +0000)]
r17538: this function should be static...


14 years agor17537: if we replace inet_ntoa() we need a prototype of
Stefan Metzmacher [Mon, 14 Aug 2006 13:10:53 +0000 (13:10 +0000)]
r17537: if we replace inet_ntoa() we need a prototype of


14 years agor17534: Try another group for 'wheel' on True64.
Andrew Bartlett [Mon, 14 Aug 2006 11:38:29 +0000 (11:38 +0000)]
r17534: Try another group for 'wheel' on True64.

14 years agor17533: add missing include, so that "socket options = TCP_NODELY" as
Stefan Metzmacher [Mon, 14 Aug 2006 09:58:50 +0000 (09:58 +0000)]
r17533: add missing include, so that "socket options = TCP_NODELY" as
default can work...


14 years agor17532: merge from SAMBA_3_0 Revision: 17460
Stefan Metzmacher [Mon, 14 Aug 2006 09:52:58 +0000 (09:52 +0000)]
r17532: merge from SAMBA_3_0 Revision: 17460
 First step at fixing the build breakage with the groupmapping test. On Linux,
 F_RDLCK is defined to 0, for example NetBSD has it at 1.

 Still does not work fully though. Still investigating.


14 years agor17531: fix whitespaces
Stefan Metzmacher [Mon, 14 Aug 2006 07:40:18 +0000 (07:40 +0000)]
r17531: fix whitespaces


14 years agor17530: Watching the build farm mails carefully pays off...
Andrew Bartlett [Mon, 14 Aug 2006 03:28:25 +0000 (03:28 +0000)]
r17530: Watching the build farm mails carefully pays off...

This was another declaration before statement bug, in my just-committed code..

Andrew Bartlett

14 years agor17529: Simo doesn't like the use of the internal ldb_errstring in functions
Andrew Bartlett [Mon, 14 Aug 2006 02:50:18 +0000 (02:50 +0000)]
r17529: Simo doesn't like the use of the internal ldb_errstring in functions
not used purely as ldb module helper functions.  This now passes these
strings back as explicit parameters.

Andrew Bartlett

14 years agor17528: This is an additional item of schema we require.
Andrew Bartlett [Mon, 14 Aug 2006 01:48:32 +0000 (01:48 +0000)]
r17528: This is an additional item of schema we require.

Where is the script we used to create this schema file in the first

Andrew Bartlett

14 years agor17527: Don't duplicate the entire test setup just to allow testing of the new
Andrew Bartlett [Mon, 14 Aug 2006 01:14:32 +0000 (01:14 +0000)]
r17527: Don't duplicate the entire test setup just to allow testing of the new
ldb-backed shares configuration.

Andrew Bartlett

14 years agor17526: Move timestamp generation into the objectGUID module. It probably
Andrew Bartlett [Mon, 14 Aug 2006 00:59:57 +0000 (00:59 +0000)]
r17526: Move timestamp generation into the objectGUID module.  It probably
needs to be renamed (operation_add?).

This allows me to match the behaviour and substitute with the
entryUUID module for remote LDAP connections.

Andrew Bartlett

14 years agor17525: This is a merge from the Google Summer of Code 2006 project by Martin Kühl
Andrew Bartlett [Sun, 13 Aug 2006 23:58:04 +0000 (23:58 +0000)]
r17525: This is a merge from the Google Summer of Code 2006 project by Martin Kühl

Martin took over the work done last year by Jelmer, in last year's
SoC.  This was a substanital task, as the the ldb modules API changed
significantly during the past year, with the addition of async calls.

This changeset reimplements and enables the ldb_map ldb module and
adapts the example module and test case, both named samba3sam, to the

The ldb_map module supports splitting an ldb database into two parts
(called the "local" and "remote" part) and storing the data in one of
them (the remote database) in a different format while the other acts
as a fallback.
This allows ldb to e.g. store to and load data from a remote LDAP
server and present it according to the Samba4 schema while still
allowing the LDAP to present and modify its data separately.

A complex example of this is the samba3sam module (by Jelmer
Vernooij), which maps data between the samba3 and samba4 schemas.

A simpler example is given by the entryUUID module (by Andrew
Bartlett), which handles some of the differences between AD and
OpenLDAP in operational attributes.  It principally maps objectGUID,
to and from entryUUID elements.  This is also an example of a module
that doesn't use the local backend as fallback storage.

This merge also splits the ldb_map.c file into smaller, more
manageable parts.

14 years agor17524: Lets see if we can try and get the socket_wapper includes to be
Andrew Bartlett [Sun, 13 Aug 2006 22:57:05 +0000 (22:57 +0000)]
r17524: Lets see if we can try and get the socket_wapper includes to be
pre-processed last, and get AIX and some other hosts to pass make test
again (I think the macros were being over-overridden).

Andrew Bartlett

14 years agor17523: FIXME is a macro (I think) on some platforms (AIX), and this caused pain.
Andrew Bartlett [Sun, 13 Aug 2006 12:42:25 +0000 (12:42 +0000)]
r17523: FIXME is a macro (I think) on some platforms (AIX), and this caused pain.

Andrew Bartlett

14 years agor17522: Fix another declaration after statement.
Andrew Bartlett [Sun, 13 Aug 2006 12:34:41 +0000 (12:34 +0000)]
r17522: Fix another declaration after statement.

Andrew Bartlett

14 years agor17520: If the blkid library fails, I don't see any reason to return more of
Andrew Bartlett [Sun, 13 Aug 2006 11:55:13 +0000 (11:55 +0000)]
r17520: If the blkid library fails, I don't see any reason to return more of
an error than if we don't have it.  We might not be on a volume that
can store/return such a GUID.

(Try to fix one of the build farm failures).

Andrew Bartlett

14 years agor17517: Fix declaration after statement, which breaks the build on older GCC.
Andrew Bartlett [Sun, 13 Aug 2006 10:20:21 +0000 (10:20 +0000)]
r17517: Fix declaration after statement, which breaks the build on older GCC.

Andrew Bartlett

14 years agor17516: Change helper function names to make more clear what they are meant to do
Simo Sorce [Sun, 13 Aug 2006 08:00:36 +0000 (08:00 +0000)]
r17516: Change helper function names to make more clear what they are meant to do

14 years agor17515: Fix warnings
Simo Sorce [Sun, 13 Aug 2006 07:57:42 +0000 (07:57 +0000)]
r17515: Fix warnings

14 years agor17514: Simplify the way to set ldb errors and add another
Simo Sorce [Sun, 13 Aug 2006 07:33:57 +0000 (07:33 +0000)]
r17514: Simplify the way to set ldb errors and add another
helper function to set them.

14 years agor17513: ldb_set_errstring is an ldb private string, samdb uses DEBUG() statements
Simo Sorce [Sun, 13 Aug 2006 07:32:05 +0000 (07:32 +0000)]
r17513: ldb_set_errstring is an ldb private string, samdb uses DEBUG() statements

14 years agor17507: pread and pwrite depends on HAVE_PREAD/HAVE_PWRITE not HAVE_PREAD_DECL/HAVE_P...
Simo Sorce [Sat, 12 Aug 2006 19:05:18 +0000 (19:05 +0000)]
r17507: pread and pwrite depends on HAVE_PREAD/HAVE_PWRITE not HAVE_PREAD_DECL/HAVE_PWRITE_DECL
and common/io.h already defines pread and pwrite as static if they are not.

remove unneded defines

14 years agor17505: we are setting the timeout with the provide function right after.
Simo Sorce [Sat, 12 Aug 2006 15:22:58 +0000 (15:22 +0000)]
r17505: we are setting the timeout with the provide function right after.

14 years agor17504: Do not use the invented unixID but use the rfc2307 uidNumber and gidNumber...
Simo Sorce [Sat, 12 Aug 2006 15:22:03 +0000 (15:22 +0000)]
r17504: Do not use the invented unixID but use the rfc2307 uidNumber and gidNumber attributes instead
Do not change unixName right now, we don't have an attribute to use in the posixGroup class,
and I think we should remove its usage altogether and look up users and groups by their uid/gid only.


14 years agor17503: Add a useful function to search for a DN
Simo Sorce [Sat, 12 Aug 2006 15:20:06 +0000 (15:20 +0000)]
r17503: Add a useful function to search for a DN

14 years agor17499: Open the main database only the minimum times during a provision.
Andrew Bartlett [Fri, 11 Aug 2006 22:11:29 +0000 (22:11 +0000)]
r17499: Open the main database only the minimum times during a provision.

This causes things to operate as just one transaction (locally), and
to make a minimum of TCP connections when connecting to a remote LDAP

Taking advantage of this, create another file to handle loading the
Samba4 specific schema extensions.  Also comment out 'middleName' and
reassign the OID to one in the Samba4 range, as it is 'stolen' from a
netscape range that is used in OpenLDAP and interenet standards for

Andrew Bartlett

14 years agor17495: run LOCAL-CRYPTO-MD4 and LOCAL-CRYPTO-MD5 with make test
Stefan Metzmacher [Fri, 11 Aug 2006 13:16:59 +0000 (13:16 +0000)]
r17495: run LOCAL-CRYPTO-MD4 and LOCAL-CRYPTO-MD5 with make test


14 years agor17494: add tests for the example values from rfc 1320 (MD4)
Stefan Metzmacher [Fri, 11 Aug 2006 13:13:03 +0000 (13:13 +0000)]
r17494: add tests for the example values from rfc 1320 (MD4)


14 years agor17493: fix typo
Stefan Metzmacher [Fri, 11 Aug 2006 11:47:11 +0000 (11:47 +0000)]
r17493: fix typo


14 years agor17492: add a test with the example values from rfc1321 (MD5)
Stefan Metzmacher [Fri, 11 Aug 2006 11:26:58 +0000 (11:26 +0000)]
r17492: add a test with the example values from rfc1321 (MD5)


14 years agor17491: I forgot to commit this...fix make test...sorry:-)
Stefan Metzmacher [Fri, 11 Aug 2006 11:23:50 +0000 (11:23 +0000)]
r17491: I forgot to commit this...fix make test...sorry:-)


14 years agor17490: add all test values from rfc 2202
Stefan Metzmacher [Fri, 11 Aug 2006 10:49:38 +0000 (10:49 +0000)]
r17490: add all test values from rfc 2202


14 years agor17489: run the crypto tests with test
Stefan Metzmacher [Fri, 11 Aug 2006 09:35:52 +0000 (09:35 +0000)]
r17489: run the crypto tests with test


14 years agor17488: - add SHA1 and HMACSHA1 functions, based on rfc 2104,2202,3174
Stefan Metzmacher [Fri, 11 Aug 2006 08:02:43 +0000 (08:02 +0000)]
r17488: - add SHA1 and HMACSHA1 functions, based on rfc 2104,2202,3174
- and add torture tests also based on the rfc's


14 years agor17484: Make last version of the function generating random set of changes
Rafal Szczesniak [Thu, 10 Aug 2006 20:42:07 +0000 (20:42 +0000)]
r17484: Make last version of the function generating random set of changes
more fair to each of the fields (ie. don't create new code at midnight
after a long day...).

This will be useful for testing multiple changes at once and verifying
correctness. A few testing runs already demostrated some missing pieces.


14 years agor17478: Add BENCH-READWRITE test to simulate read/write workload from simultaneous...
Alexander Bokovoy [Thu, 10 Aug 2006 11:51:43 +0000 (11:51 +0000)]
r17478: Add BENCH-READWRITE test to simulate read/write workload from simultaneous async clients. This code is based on concept from Mathias Dietz <>

14 years agor17474: Allow the partitions module to load modules for specific backends.
Andrew Bartlett [Thu, 10 Aug 2006 01:51:27 +0000 (01:51 +0000)]
r17474: Allow the partitions module to load modules for specific backends.

Andrew Bartlett

14 years agor17473: Split loading a list of modules and initialising them into a seperate
Andrew Bartlett [Thu, 10 Aug 2006 00:52:56 +0000 (00:52 +0000)]
r17473: Split loading a list of modules and initialising them into a seperate

Andrew Bartlett

14 years agor17472: Remove unused variable.
Rafal Szczesniak [Wed, 9 Aug 2006 22:10:26 +0000 (22:10 +0000)]
r17472: Remove unused variable.


14 years agor17471: Add a function generating pseudorandom set of changes to test
Rafal Szczesniak [Wed, 9 Aug 2006 22:09:47 +0000 (22:09 +0000)]
r17471: Add a function generating pseudorandom set of changes to test
user modify routines.


14 years agor17450: A bit more protection against memory allocation errors.
Rafal Szczesniak [Mon, 7 Aug 2006 20:43:06 +0000 (20:43 +0000)]
r17450: A bit more protection against memory allocation errors.


14 years agor17449: Add another field to the test before expanding the whole test
Rafal Szczesniak [Mon, 7 Aug 2006 20:30:58 +0000 (20:30 +0000)]
r17449: Add another field to the test before expanding the whole test
to more complex form.


14 years agor17448: Define macros to set fields in api function modifying user account.
Rafal Szczesniak [Mon, 7 Aug 2006 20:29:18 +0000 (20:29 +0000)]
r17448: Define macros to set fields in api function modifying user account.


14 years agor17447: Add more fields to user modify routines.
Rafal Szczesniak [Mon, 7 Aug 2006 20:28:09 +0000 (20:28 +0000)]
r17447: Add more fields to user modify routines.


14 years agor17442: print out credentials on the "secret" objectClass and "trustedDomain"
Stefan Metzmacher [Mon, 7 Aug 2006 17:26:51 +0000 (17:26 +0000)]
r17442: print out credentials on the "secret" objectClass and "trustedDomain"


14 years agor17441: add some more attribute with credentials in them
Stefan Metzmacher [Mon, 7 Aug 2006 17:25:52 +0000 (17:25 +0000)]
r17441: add some more attribute with credentials in them


14 years agor17438: extend the comment
Stefan Metzmacher [Mon, 7 Aug 2006 13:39:52 +0000 (13:39 +0000)]
r17438: extend the comment