samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2025-01-25 06:04:04 +03:00

Author	SHA1	Message	Date
Stefan Metzmacher	61548c7c94	s4:kdc: avoid using sdb_entry_ex in mit_samba_get_principal() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	5926219278	s4:kdc: avoid using sdb_entry_ex in samba_wdc_reget_pac() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	68dfb46361	s4:libnet: avoid using sdb_entry_ex and use sdb_entry directly Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	14487c4027	s4:kdc: samba_kdc_{first,next}key() only need sdb_entry sdb_entry_ex will be removed shortly. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	3cba1641fd	s4:kdc: samba_kdc_fetch() only needs sdb_entry sdb_entry_ex will be removed shortly. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	83b3695bd3	s4:kdc: remove unused sdb_entry_ex_to_kdb_entry_ex() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	f223f2150b	s4:kdc: use sdb_entry_to_krb5_db_entry() directly We should avoid sdb_entry_ex, as it will be removed soon. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	225c610f68	s4:kdc: remove unused sdb_entry_ex_to_hdb_entry_ex() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	dceae1bb13	s4:kdc: use sdb_entry_to_hdb_entry() directly We should avoid sdb_entry_ex, as it will be removed soon. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	a71b74b207	s4:kdc: hdb_samba4_fetch_fast_cookie() don't need sdb_entry_ex Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	158132c9d0	s4:kdc: samba_kdc_seq() only needs sdb_entry sdb_entry_ex will be removed shortly. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	ac1cdffe7c	s4:kdc: samba_kdc_fetch_server() only needs sdb_entry sdb_entry_ex will be removed shortly. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	e74a8992cc	s4:kdc: samba_kdc_fetch_krbtgt() only needs sdb_entry sdb_entry_ex will be removed shortly. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	b8c738a956	s4:kdc: samba_kdc_fetch_client() only needs sdb_entry sdb_entry_ex will be removed shortly. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	e528c93c54	s4:kdc: samba_kdc_lookup_realm() only needs sdb_entry sdb_entry_ex will be removed shortly. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	e5eb8c8c3d	s4:kdc: only pass sdb_entry to samba_kdc_message2entry() It no longer needs sdb_entry_ex. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	d3770c7d96	s4:kdc: only pass sdb_entry to samba_kdc_trust_message2entry() It no longer needs sdb_entry_ex. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	57829933c3	s4:kdc: only ZERO and free sdb_entry in samba_kdc_trust_message2entry() sdb_entry_ex only contains sdb_entry, so this is still doing the same, but we want to remove sdb_entry_ex soon. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	f81e3b4988	s4:kdc: s/entry_ex->entry\./entry->/g in samba_kdc_trust_message2entry() We should avoid using entry_ex->entry as sdb_entry_ex will be removed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	049c906091	s4:kdc: only ZERO and free sdb_entry in samba_kdc_message2entry() sdb_entry_ex only contains sdb_entry, so this is still doing the same, but we want to remove sdb_entry_ex soon. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	477ea29e91	s4:kdc: s/entry_ex->entry\./entry->/g in samba_kdc_message2entry() We should avoid using entry_ex->entry as sdb_entry_ex will be removed. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	4878ea144a	s4:kdc: only pass sdb_entry to samba_kdc_message2entry_keys() sdb_entry_ex will be removed as it just contains sdb_entry. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	d5951bbfa7	s4:kdc: remove unused principal argument to samba_kdc_trust_message2entry() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	79565856c2	s4:kdc: split out a samba_kdc_fill_user_keys() helper function This will simplify further changes, e.g. asking for a specific kvno or returning the password history in order to prevent badPwdCount updates with passwords in the history. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	c3171a7361	s4:kdc: remove Primary:Kerberos usage from samba_kdc_message2entry_keys() Most likely the kerberos libraries don't support DES anymore, so there's no point in exposing them at all. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	b8c0f40690	s4:kdc: only pass keys to samba_kdc_set_random_keys() This prepares the removal of sdb_entry_ex. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	35508449bf	s4:kdc: only pass sdb_keys to samba_kdc_set_fixed_keys() This prepares the removal of sdb_entry_ex. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	28924f3566	s4:kdc: add a samba_kdc_sort_keys() function using TYPESAFE_QSORT() This is better than calloc/free each time. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	c95a0bca5f	s4:kdc: expose a sdb_entry_free() function We'll remove sdb_entry_ex soon. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	f8d9cdb5ff	s4:kdc: expose sdb_entry_to_hdb_entry() function We'll remove sdb_entry_ex soon. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	cd295a8979	s4:kdc: expose a sdb_entry_to_krb5_db_entry() function We'll remove sdb_entry_ex soon. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	c2eb50861d	s4:kdc: let samba_kdc_entry take references to sdb_entry and kdc_entry kdc_entry can be hdb_entry or krb5_db_entry. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	788ccb8cb9	s4:kdc: make the logic between ZERO_STRUCTP(entry_ex) and sdb_free_entry(entry_ex) clearer samba_kdc_[trust_]message2entry() always starts with ZERO_STRUCTP(entry_ex) and cleans up on error with sdb_free_entry(entry_ex), leaving a cleared structure again. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14054 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	2323f9d2e2	s4:kdc: let sdb_entry have a typed samba_kdc_entry pointer Both layers are owned by us so there's no need for an void pointer. This simplifies the code a lot and allows further cleanups. Eventually we can remove sdb_entry_ex and only use sdb_entry, as Heimdal also removed hdb_entry_ex. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	732d9ceedc	s4:kdc: remove unused samba_kdc_entry->entry_ex It will only ever point to an sdb_entry_ex and becomes a stale pointer fast, as sdb_free_entry() called before any talloc_free() can happen (with a destructor still set). Note the talloc parent of samba_kdc_entry is the samba_kdc_db_context longterm context. The next commits will fill samba_kdc_entry_destructor with logic again, but for now remove the unused code. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	9c7de9a56e	s4:kdc: split out a sdb_keys_free() helper function Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	d2f471f9a4	s4:kdc: rename free_sdb_key() as public sdb_key_free() function Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	9bc5aeddfd	s4:kdc: make free_sdb_entry() static Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	a77933f9d2	s4:kdc: let samba_kdc_entry_destructor() call sdb_free_entry() It's basically the same as free_sdb_entry(), but the next step will make free_sdb_entry() private. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	ccd11c2c25	s4:kdc: don't leak salt in free_sdb_key() Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	97dbdb48d8	s4:kdc: call krb5_free_keyblock_contents() in free_sdb_key() This is much clearer than doing it in sdb_free_entry() already. It also simplifies the next cleanups. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	ff03d88d6e	s4:kdc: remove unused sdb_entry_ex->free_entry() It seems we need to take a closer look at the memory hierachy of the sdb_entry related code. I'll check that during the next commits, but for now just remove use the unused hook. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	4f6a34df68	s4:libnet: ask for SDB_F_ADMIN_DATA in order to create a keytab entry Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	244e188083	s4:libnet: sdb_free_entry() already clears everything There's no need to know about '.free_entry'. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	829bb366f3	s4:kdc: let sdb_free_entry clear sdb_entry_ex at the end Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	6152db35a6	s4:kdc: let sdb_entry_ex_to_krb5_db_entry() initialize 'k' at the beginning This is clearer and make further changes easier. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	ba6fccf443	s4:kdc: let sdb_entry_to_hdb_entry() initialize *h at the beginning This is clearer and make further changes easier. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	7312bca8c7	s4:kdc: remove unused mkvno from sdb_key This is not related to the kvno of the key, the mkvno tells the HDB layer that the keys need to be decrypted with a master key (with the given [m]kvno). Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Stefan Metzmacher	ab0946a75d	s4:kdc: strictly have 2 16-bit parts in krbtgt kvnos Even if the msDS-KeyVersionNumber of the main krbtgt account if larger than 65535, we need to have the 16 upper bits all zero in order to avoid mixing the keys with an RODC. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14951 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>	2022-03-24 09:19:33 +00:00
Volker Lendecke	393176e967	lib: Use talloc_zero, save a ZERO_STRUCT Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>	2022-03-23 16:57:28 +00:00

1 2 3 4 5 ...

37648 Commits