summaryrefslogtreecommitdiffstats
path: root/source3/passdb/secrets.c
Commit message (Collapse)AuthorAgeFilesLines
* lib/util: Remove obsolete sys_getpid() and sys_fork().Jelmer Vernooij2012-03-241-1/+1
| | | | | | | | | The performance of these is minimal (these days) and they can return invalid results when used as part of applications that do not use sys_fork(). Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sat Mar 24 21:55:41 CET 2012 on sn-devel-104
* s3-secrets: Remove unused secrets_delete_generic()Andrew Bartlett2012-02-181-16/+0
| | | | | | | | | Found by callcatcher. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sat Feb 18 09:01:15 CET 2012 on sn-devel-104
* s3: Add a "lock_order" argument to db_openVolker Lendecke2012-01-181-1/+2
| | | | | | | This will be used to enforce a lock hierarchy between the databases. We have seen deadlocks between locking.tdb, brlock.tdb, serverid.tdb and notify*.tdb. These should be fixed by refusing a dbwrap_fetch_locked that does not follow a defined lock hierarchy.
* s3-passdb: trying to decouple passdb and secrets a little.Günther Deschner2012-01-181-99/+0
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Jan 18 14:46:18 CET 2012 on sn-devel-104
* s3:secrets: convert to use dbwrap wrapper functions onlyMichael Adam2011-10-111-6/+13
| | | | Avoid direct use of the db_record and db_context structs.
* passdb: Add a function to read secrets db from a specified pathAmitay Isaacs2011-08-131-6/+16
| | | | | This allows to load secrets db from a different location. The original secrets_init() now calls secrets_init_path() with lp_private_dir().
* s3:dbwrap: move all .c and .h files of dbwrap to lib/dbwrap/Michael Adam2011-07-291-1/+1
| | | | | Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Fri Jul 29 13:34:22 CEST 2011 on sn-devel-104
* s3:dbwrap: move db_open() to a file dbwrap_open.c of its own.Michael Adam2011-07-291-0/+1
| | | | | | Also start new folder lib/dbwrap/ where dbwrap_open.c is stored and make the fallbacke implementation functoins non-static and create a dbwrap_private.h header file that contains their prototypes.
* s3-talloc Change TALLOC_P() to talloc()Andrew Bartlett2011-06-091-1/+1
| | | | | Using the standard macro makes it easier to move code into common, as TALLOC_P isn't standard talloc.
* s3-talloc Change TALLOC_ARRAY() to talloc_array()Andrew Bartlett2011-06-091-1/+1
| | | | | Using the standard macro makes it easier to move code into common, as TALLOC_ARRAY isn't standard talloc.
* s3: only include tdb headers where needed.Günther Deschner2011-05-061-0/+1
| | | | Guenther
* s3-passdb: add passdb.h where needed.Günther Deschner2011-03-301-0/+1
| | | | Guenther
* s3-includes: only include system/filesys.h when needed.Günther Deschner2011-03-301-0/+1
| | | | Guenther
* s3: Fix Coverity ID 1034, CHECKED_RETURNVolker Lendecke2011-03-161-3/+1
| | | | In all other places we check the result of secrets_init.
* s3: Fix auth_netlogond to cope with netlogon_creds_CredentialStateVolker Lendecke2011-02-061-25/+0
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Sun Feb 6 17:30:48 CET 2011 on sn-devel-104
* s3: Fix a potential memleak in secrets_fetch_trusted_domain_passwordVolker Lendecke2011-02-061-1/+3
|
* libcli/security Provide a common, top level libcli/security/security.hAndrew Bartlett2010-10-121-0/+1
| | | | | | | | | | | | | | This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
* s3-build: use dbwrap.h only where needed.Günther Deschner2010-08-261-0/+1
| | | | Guenther
* s3-secrets: only include secrets.h when needed.Günther Deschner2010-08-051-0/+1
| | | | Guenther
* s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett2010-05-211-2/+2
| | | | | | | | | | This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3:split secrets.c to put machine account secrets in a new fileAndrew Bartlett2010-05-181-366/+0
| | | | | | | | | | | | | This helps the s3compat effort by allowing these functions to be replaced by functions that query the cli_credentials and secrets.ldb APIs. Also, this changes a couple of DOM_SID to struct dom_sid along the way. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3: Remove use of iconv_convenience.Jelmer Vernooij2010-05-181-3/+3
|
* s3-passdb: Fix typo in debug message.Karolin Seeger2010-03-101-1/+1
| | | | Karolin
* s3-secrets: use autogenerated code for TRUSTED_DOM_PASS struct parsing from ↵Günther Deschner2009-10-291-220/+36
| | | | | | a tdb. Guenther
* s3-passdb: move open_schannel_session_store() to passdb/secrets_schannel.c.Günther Deschner2009-10-281-63/+0
| | | | Guenther
* s3-passdb: add secrets_delete_generic().Günther Deschner2009-10-281-0/+16
| | | | Guenther
* Fix valgrind memory leak in bug #6814 - Fixes for problems reported by valgrindJeremy Allison2009-10-151-0/+1
| | | | Jeremy.
* s3: use enum netr_SchannelType all over the place.Günther Deschner2009-10-131-5/+6
| | | | Guenther
* s3:secrets_schannel: revert to using version 1Stefan Metzmacher2009-09-211-3/+9
| | | | | | | | | | | | | It doesn't really matter if the entries have invalid context in it. Older versions of samba refuse to open the file if the version doesn't match. If we can't parse individual records, we'll fail schannel binds, but the clients are supposed to reestablish the netlogon secure channel by doing ServerReqChallenge/ServerAuthenticate* again. This will just overwrite the old record. metze
* s3-schannel: remove remaining code that was using "struct dcinfo".Günther Deschner2009-08-271-167/+0
| | | | Guenther
* s3-schannel: upgrade old format schannel_store.tdb.Günther Deschner2009-08-271-4/+9
| | | | Guenther
* s3-schannel: add simple wrappers to fetch and store schannel auth info.Günther Deschner2009-08-271-0/+1
| | | | Guenther
* s3-schannel: make open_schannel_session_store() public.Günther Deschner2009-08-271-1/+1
| | | | Guenther
* s3:secrets: use transaction wrapped store in get rand seed.Michael Adam2009-07-291-2/+2
| | | | | | Now secrets.tdb is only writen with transactions. Michael
* Rework Samba3 to use new libcli/auth code (partial)Andrew Bartlett2009-04-141-1/+1
| | | | | | | | | | | This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett
* Convert Samba3 to use the common lib/util/charset APIAndrew Bartlett2009-04-141-4/+4
| | | | | | | | | | | | This removes calls to push_*_allocate() and pull_*_allocate(), as well as convert_string_allocate, as they are not in the common API To allow transition to a common charcnv in future, provide Samba4-like strupper functions in source3/lib/charcnv.c (the actual implementation remains distinct, but the API is now shared) Andrew Bartlett
* Use libutil genrand.Jelmer Vernooij2008-10-231-2/+2
|
* Use GUID_random.Jelmer Vernooij2008-10-141-1/+1
|
* Store a local schannel key in secrets.tdbVolker Lendecke2008-10-061-0/+25
|
* first cut at adding full transactions for ctdb to samba3Andrew Tridgell2008-08-131-2/+2
| | | | (This used to be commit f91a3e0f7b7737c1d0667cd961ea950e2b93e592)
* Fix a memleak in secrets_fetch_afs_keyVolker Lendecke2008-06-071-0/+2
| | | | | Coverity ID 570 (This used to be commit 0f52dc3f7eae7e87b8a71bd099b99b0b3e76a387)
* Fix a memleak in secrets_fetch_trust_account_password_legacyVolker Lendecke2008-06-071-0/+1
| | | | | Coverity ID 571 (This used to be commit a551773e34af1c118f77784a285e1b885da8655d)
* Fix a memleak in fetch_ldap_pwVolker Lendecke2008-06-071-1/+2
| | | | | Fix Coverity ID 572, also fix the error check for secrets_fetch failing (This used to be commit 2663c81a782fd4394a9feaaaa987c7f6d38ca5da)
* Cleanup size_t return values in callers of convert_string_allocateTim Prouty2008-05-201-4/+5
| | | | | | This patch is the second iteration of an inside-out conversion to cleanup functions in charcnv.c returning size_t == -1 to indicate failure. (This used to be commit 6b189dabc562d86dcaa685419d0cb6ea276f100d)
* Convert dbwrap_trans_delete to NTSTATUSVolker Lendecke2008-04-011-1/+4
| | | | | Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit dead193f46c2b19955ab3e5ac5ba343694f4858a)
* Convert dbwrap_trans_store to NTSTATUSVolker Lendecke2008-04-011-3/+6
| | | | | Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit 5f4de856af1abe63b13059bbe1615cb5877770d0)
* passdb/secrets: add secrets_db_ctx() to get the db_contextStefan Metzmacher2008-04-011-0/+9
| | | | | metze (This used to be commit 986bc7e8b260265da019b67ec751509eb589d24b)
* passdb/secrets: use db_open_trans()Stefan Metzmacher2008-03-271-1/+2
| | | | | | | metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit b61b8ca4944f399216d8e67a48ea7d259258b432)
* passdb/secrets: it's enough to use traverse_read() in secrets_trusted_domains()Stefan Metzmacher2008-03-271-1/+1
| | | | | | | metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (This used to be commit 729f7b9ff30e81537a7257daeaa1728c7ae96853)
* Convert secrets.c to use dbwrapVolker Lendecke2008-03-111-128/+93
| | | | (This used to be commit 9d30e5991c6fe77ef5fd505efb756554bbe77256)