summaryrefslogtreecommitdiff
path: root/source3/passdb/secrets.c
AgeCommit message (Collapse)AuthorFilesLines
2009-09-21s3:secrets_schannel: revert to using version 1Stefan Metzmacher1-3/+9
It doesn't really matter if the entries have invalid context in it. Older versions of samba refuse to open the file if the version doesn't match. If we can't parse individual records, we'll fail schannel binds, but the clients are supposed to reestablish the netlogon secure channel by doing ServerReqChallenge/ServerAuthenticate* again. This will just overwrite the old record. metze
2009-08-27s3-schannel: remove remaining code that was using "struct dcinfo".Günther Deschner1-167/+0
Guenther
2009-08-27s3-schannel: upgrade old format schannel_store.tdb.Günther Deschner1-4/+9
Guenther
2009-08-27s3-schannel: add simple wrappers to fetch and store schannel auth info.Günther Deschner1-0/+1
Guenther
2009-08-27s3-schannel: make open_schannel_session_store() public.Günther Deschner1-1/+1
Guenther
2009-07-29s3:secrets: use transaction wrapped store in get rand seed.Michael Adam1-2/+2
Now secrets.tdb is only writen with transactions. Michael
2009-04-14Rework Samba3 to use new libcli/auth code (partial)Andrew Bartlett1-1/+1
This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett
2009-04-14Convert Samba3 to use the common lib/util/charset APIAndrew Bartlett1-4/+4
This removes calls to push_*_allocate() and pull_*_allocate(), as well as convert_string_allocate, as they are not in the common API To allow transition to a common charcnv in future, provide Samba4-like strupper functions in source3/lib/charcnv.c (the actual implementation remains distinct, but the API is now shared) Andrew Bartlett
2008-10-23Use libutil genrand.Jelmer Vernooij1-2/+2
2008-10-14Use GUID_random.Jelmer Vernooij1-1/+1
2008-10-06Store a local schannel key in secrets.tdbVolker Lendecke1-0/+25
2008-08-13first cut at adding full transactions for ctdb to samba3Andrew Tridgell1-2/+2
(This used to be commit f91a3e0f7b7737c1d0667cd961ea950e2b93e592)
2008-06-07Fix a memleak in secrets_fetch_afs_keyVolker Lendecke1-0/+2
Coverity ID 570 (This used to be commit 0f52dc3f7eae7e87b8a71bd099b99b0b3e76a387)
2008-06-07Fix a memleak in secrets_fetch_trust_account_password_legacyVolker Lendecke1-0/+1
Coverity ID 571 (This used to be commit a551773e34af1c118f77784a285e1b885da8655d)
2008-06-07Fix a memleak in fetch_ldap_pwVolker Lendecke1-1/+2
Fix Coverity ID 572, also fix the error check for secrets_fetch failing (This used to be commit 2663c81a782fd4394a9feaaaa987c7f6d38ca5da)
2008-05-20Cleanup size_t return values in callers of convert_string_allocateTim Prouty1-4/+5
This patch is the second iteration of an inside-out conversion to cleanup functions in charcnv.c returning size_t == -1 to indicate failure. (This used to be commit 6b189dabc562d86dcaa685419d0cb6ea276f100d)
2008-04-01Convert dbwrap_trans_delete to NTSTATUSVolker Lendecke1-1/+4
Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit dead193f46c2b19955ab3e5ac5ba343694f4858a)
2008-04-01Convert dbwrap_trans_store to NTSTATUSVolker Lendecke1-3/+6
Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit 5f4de856af1abe63b13059bbe1615cb5877770d0)
2008-04-01passdb/secrets: add secrets_db_ctx() to get the db_contextStefan Metzmacher1-0/+9
metze (This used to be commit 986bc7e8b260265da019b67ec751509eb589d24b)
2008-03-27passdb/secrets: use db_open_trans()Stefan Metzmacher1-1/+2
metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit b61b8ca4944f399216d8e67a48ea7d259258b432)
2008-03-27passdb/secrets: it's enough to use traverse_read() in secrets_trusted_domains()Stefan Metzmacher1-1/+1
metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit 729f7b9ff30e81537a7257daeaa1728c7ae96853)
2008-03-11Convert secrets.c to use dbwrapVolker Lendecke1-128/+93
(This used to be commit 9d30e5991c6fe77ef5fd505efb756554bbe77256)
2008-03-10Use a separate tdb for mutexesVolker Lendecke1-31/+0
Another preparation to convert secrets.c to dbwrap: The dbwrap API does not provide a sane tdb_lock_with_timeout abstraction. In the clustered case the DC mutex is needed per-node anyway, so it is perfectly fine to use a local mutex only. (This used to be commit f94a63cd8f94490780ad9331da229c0bcb2ca5d6)
2008-03-10Convert secrets_lock_trust_account_password to tallocVolker Lendecke1-8/+24
This is preparing the conversion of secrets.c to ctdb (This used to be commit 1307f0130c47b8d740d2b7afe7a5d8d1a655e2a2)
2008-03-10Make use of talloc_asprintf_strupper_m in secrets.cVolker Lendecke1-37/+21
(This used to be commit 3ac4f935c074af768d0b83514f86d010c387817a)
2008-03-10Avoid some pointless checksVolker Lendecke1-12/+0
secrets_init() makes sure that the tdb is initialized (This used to be commit 8725dbc8888cf7a1d3d9d1205678fcd3ca3c6350)
2008-03-10Use talloc_tos() in secrets_initVolker Lendecke1-12/+5
(This used to be commit 27065382d9b692b5885265c9d60ffb7ec7748c38)
2008-02-09More paranoid checks for secrets_init() success.Günther Deschner1-13/+35
Guenther (This used to be commit 5e60852bae61be72dee9d5b93c59ac900aba73ae)
2008-01-07Add secrets_shutdown().Günther Deschner1-0/+13
Guenther (This used to be commit dd3fbd93b6e5fe8b5e3a3727a64a38d5ae46fcbf)
2007-12-19Add and use some keystr functions using talloc_tos() in secrets api.Günther Deschner1-44/+123
Guenther (This used to be commit 6ccbf67a0c6f117978df55d4e2565d34fddf9317)
2007-12-15Replace sid_string_static by sid_string_dbg in DEBUGsVolker Lendecke1-1/+1
(This used to be commit bb35e794ec129805e874ceba882bcc1e84791a09)
2007-12-13Refactor the lagacy part of secrets_fetch_trust_account_password() outMichael Adam1-13/+31
into a new function secrets_fetch_trust_account_password_legacy() that does only try to obtain the hashed version of the machine password directly from secrets.tdb. Michael (This used to be commit 91da12b751b3168dc40049f3e90c10d840393efc)
2007-12-13Remove two unneeded functions.Michael Adam1-23/+0
secrets_store_trust_account_password() and trust_password_delete() are the write access functions to the SECRETS/$MACHINE.ACC/domain keys in secrets.tdb, the md4 hashed machine passwords. These are not used any more: Current code always writes the clear text password. Michael (This used to be commit 4788fe392427901f6b1c505e3a743136ac8a91ca)
2007-12-12Fix logic and prevent segfaults in secrets trustdom tdb pack code.Michael Adam1-14/+14
New size calculation logic in tdb_trusted_dom_pass_pack() and tdb_sid_pack() used accumulated sizes as successive offsets to buffer pointer. Michael (This used to be commit 9c24713b402978e74dc8691be5cab71d8666eb41)
2007-12-12Fix secrets_store_trusted_domain_password() after pstring removal.Michael Adam1-1/+1
Jeremy, this small "&" sign has given me a headache... :-) Michael (This used to be commit 7590b12a994cc3c5f299ce7f3299c76adad1c599)
2007-12-03Change tdb_unpack "P" to return a malloc'ed string ratherJeremy Allison1-1/+6
than expect a pstring space to put data into. Fix the (few) callers. Jeremy. (This used to be commit 7722a7d2c63f84b8105aa775b39f0ceedd4ed513)
2007-11-20More pstring elimination.Jeremy Allison1-18/+76
Jeremy. (This used to be commit 15074de938539e7a9c527d9a6d81792adc2ac3d0)
2007-11-05static pstring removalVolker Lendecke1-5/+9
(This used to be commit 5490e2d77233f594a42cb32eda8215014db544e3)
2007-10-18RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison1-29/+29
bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
2007-10-10[GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch.Gerald (Jerry) Carter1-51/+36
(This used to be commit 5c6c8e1fe93f340005110a7833946191659d88ab)
2007-10-10r24991: Kill all those lots of trailing whitespaces from secrets.c.Michael Adam1-72/+72
These red bars in vi really hurt my eyes... :-o Michael (This used to be commit 2e99e141c3254fe072756697b8db3cbd4e4f1db4)
2007-10-10r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell1-2/+1
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r22125: Fix a warningVolker Lendecke1-1/+1
(This used to be commit 1c0ceb5fe217bd7210072869a1313c7ac67ff118)
2007-10-10r22009: change TDB_DATA from char * to unsigned char *Stefan Metzmacher1-13/+13
and fix all compiler warnings in the users metze (This used to be commit 3a28443079c141a6ce8182c65b56ca210e34f37f)
2007-10-10r21981: as we use tdb_trans_store(), we should also use tdb_trans_delete()Stefan Metzmacher1-1/+1
metze (This used to be commit 2d2f8099684c4516ed685e5bb2a21541d53645ac)
2007-10-10r21831: Back out r21823 for a while, this is going into a bzr tree first.Volker Lendecke1-20/+1
Volker (This used to be commit fd0ee6722ddfcb64b5cc9c699375524ae3d8709b)
2007-10-10r21823: Let secrets_store_machine_password() also store the account name. ↵Volker Lendecke1-1/+20
Not used yet, the next step will be a secrets_fetch_machine_account() function that also pulls the account name to be used in the appropriate places. Volker (This used to be commit f94e5af72e282f70ca5454cdf3aed510b747eb93)
2007-10-10r21819: Wrap all steps in secrets_store_machine_password into one singleVolker Lendecke1-12/+50
transaction. Succeed all or store nothing. Volker (This used to be commit 4efc7b45985e807532214959c1872cd6e7865ab8)
2007-10-10r21818: Remove some unused codeVolker Lendecke1-23/+0
(This used to be commit f88eab91c43570e4da7a4a6cd117e7b7ebf53331)