summaryrefslogtreecommitdiff
path: root/source4/dsdb/samdb
AgeCommit message (Expand)AuthorFilesLines
2023-04-06dsdb: fix spelling in password_hash.cRob van der Linde1-2/+2
2023-04-05CVE-2023-0225 s4-acl: Don't return early if dNSHostName element has no valuesJoseph Sutton1-5/+7
2023-04-05s4-dsdb: Remove DSDB_ACL_CHECKS_DIRSYNC_FLAGJoseph Sutton2-10/+2
2023-04-05CVE-2023-0614 s4-dsdb: Treat confidential attributes as unindexedJoseph Sutton1-1/+9
2023-04-05CVE-2023-0614 ldb: Use binary search to check whether attribute is secretJoseph Sutton1-21/+35
2023-04-05CVE-2023-0614 s4-acl: Avoid calling dsdb_module_am_system() if we can help itJoseph Sutton1-3/+8
2023-04-05CVE-2023-0614 ldb: Prevent disclosure of confidential attributesJoseph Sutton3-450/+574
2023-04-05CVE-2023-0614 s4-acl: Split out function to set up access checking variablesJoseph Sutton1-34/+81
2023-04-05CVE-2023-0614 s4-acl: Split out logic to remove access checking attributesJoseph Sutton1-23/+35
2023-04-05CVE-2023-0614 s4:dsdb/extended_dn_in: Don't modify a search tree we don't ownJoseph Sutton1-8/+32
2023-04-05CVE-2023-0614 s4-acl: Use ldb functions for handling inaccessible message ele...Joseph Sutton1-52/+10
2023-04-05CVE-2023-0614 s4-acl: Make some parameters constJoseph Sutton1-2/+2
2023-04-05CVE-2023-0614 s4:dsdb: Use talloc_get_type_abort() more consistentlyJoseph Sutton4-5/+5
2023-03-23s4:dsdb/extended_dn_out: hide backlinks with DSDB_RMD_FLAG_HIDDEN_BL by defaultStefan Metzmacher1-1/+24
2023-03-23s4:dsdb/extended_dn_out: use dsdb_dn_val_rmd_flags() instead of dsdb_dn_is_de...Stefan Metzmacher1-1/+3
2023-03-23s4:dsdb/extended_dn_out: make use of the existing have_reveal_control variableStefan Metzmacher1-2/+1
2023-03-23s4:dsdb/objectclass_attrs: allow all backlinks even if not allowed by the schemaStefan Metzmacher1-0/+8
2023-03-23s4:dsdb/repl_meta_data: let replmd_process_backlink() set DSDB_RMD_FLAG_HIDDE...Stefan Metzmacher1-1/+91
2023-03-23s4:dsdb/repl_meta_data: let replmd_process_backlink() use the source_dn variableStefan Metzmacher1-1/+1
2023-03-23s4:dsdb/repl_meta_data: let replmd_process_backlink() use dsdb_module_obj_by_...Stefan Metzmacher1-1/+9
2023-03-23s4:dsdb/util: split out dsdb_module_obj_by_guid() from dsdb_module_dn_by_guid()Stefan Metzmacher1-6/+37
2023-03-23s4:dsdb/repl_meta_data: check replmd_add_backlink() result in replmd_modify_l...Stefan Metzmacher1-0/+4
2023-03-23s3:dsdb/repl_meta_data: fix possible memleak on error in replmd_modify_la_add()Stefan Metzmacher1-0/+1
2023-03-22s4/dsdb/repl_meta_data: Pass NULL into ldb_msg_add_emptyJoseph Sutton1-1/+1
2023-03-14dsdb: Avoid ERROR(ldb): uncaught exception - Deleted target CN=NTDS Settings....Andrew Bartlett1-1/+12
2023-03-14selftest/drs: Demonstrate ERROR(ldb): uncaught exception - Deleted target CN=...Andrew Bartlett1-0/+2
2023-02-08s4/dsdb/samldb: Disallow setting a domain-local group as a primary groupJoseph Sutton1-1/+13
2023-02-08auth: Align integer typesJoseph Sutton1-4/+4
2023-02-08s4-dsdb: Simplify search expressionJoseph Sutton1-4/+2
2023-02-08ldap: Make use of LDB_OID_COMPARATOR constantsJoseph Sutton1-4/+15
2023-02-08ldap: Cut down on string substitutionJoseph Sutton1-2/+2
2023-02-08auth: Make more liberal use of SID index constantsJoseph Sutton1-2/+2
2023-02-08auth: Shorten long SID flags combinationsJoseph Sutton1-1/+1
2023-02-08auth: Store group attributes in auth_user_info_dcJoseph Sutton3-13/+18
2023-02-06s4:samdb: Remove unused variableAndreas Schneider1-2/+1
2023-02-06s4:samdb: Remove trailing whitespacesAndreas Schneider1-1/+1
2023-01-31s4-dsdb: Schedule SD propegation only after successful renameAndrew Bartlett1-39/+95
2022-09-16CVE-2020-25720 s4:dsdb/descriptor: explain lack of dSHeuristics checkAndrew Bartlett1-0/+9
2022-09-16CVE-2020-25720 s4:dsdb/descriptor: Validate owner SIDs written to security de...Joseph Sutton1-1/+92
2022-09-16CVE-2020-25720 s4-acl: Omit sDRightsEffective for computers unless all rights...Joseph Sutton1-0/+11
2022-09-16CVE-2020-25720: s4-acl: Owner no longer has implicit Write DACLNadezhda Ivanova4-35/+82
2022-09-16CVE-2020-25720: s4-acl: Change behavior of Create Children checkNadezhda Ivanova3-53/+399
2022-09-16CVE-2020-25720: s4-acl: Move definition of acl_check_self_membership()Joseph Sutton1-72/+72
2022-09-16CVE-2020-25720 s4/dsdb/util: Add functions for dsHeuristics 28, 29Joseph Sutton1-0/+40
2022-09-12CVE-2021-20251 s4:dsdb: Make badPwdCount update atomicJoseph Sutton1-3/+24
2022-09-12CVE-2021-20251 s4:dsdb: Update bad password count inside transactionJoseph Sutton1-18/+19
2022-07-28CVE-2022-32743 dsdb/modules/acl: Allow simultaneous sAMAccountName, dNSHostNa...Joseph Sutton1-20/+65
2022-07-28CVE-2022-32743 dsdb/modules/acl: Account for sAMAccountName without $Joseph Sutton1-2/+10
2022-07-28CVE-2022-32743 dsdb/modules/acl: Handle FORCE_ALLOW_VALIDATED_DNS_HOSTNAME_SP...Joseph Sutton1-57/+91
2022-07-28CVE-2022-32743 dsdb/common: Add FORCE_ALLOW_VALIDATED_DNS_HOSTNAME_SPN_WRITE ...Joseph Sutton2-0/+7
generated by cgit v1.2.3 (git 2.25.1) at 2026-06-11 03:48:51 +0000