search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Remove silly amounts of trailing white spaces.
[Samba.git] / source / passdb / secrets.c
bloba611a3ef042eb03b93305fa24f494e16fd2cb9ff
1 /*
2 Unix SMB/CIFS implementation.
3 Copyright (C) Andrew Tridgell 1992-2001
4 Copyright (C) Andrew Bartlett 2002
5 Copyright (C) Rafal Szczesniak 2002
6 Copyright (C) Tim Potter 2001
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 2 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program; if not, write to the Free Software
20 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
21 */
22
23 /* the Samba secrets database stores any generated, private information
24 such as the local SID and machine trust password */
25
26 #include "includes.h"
27
28 #undef DBGC_CLASS
29 #define DBGC_CLASS DBGC_PASSDB
30
31 static TDB_CONTEXT *tdb;
32
33 /* Urrrg. global.... */
34 BOOL global_machine_password_needs_changing;
35
36 /**
37 * Use a TDB to store an incrementing random seed.
38 *
39 * Initialised to the current pid, the very first time Samba starts,
40 * and incremented by one each time it is needed.
41 *
42 * @note Not called by systems with a working /dev/urandom.
43 */
44 static void get_rand_seed(int *new_seed)
45 {
46 *new_seed = sys_getpid();
47 if (tdb) {
48 tdb_change_int32_atomic(tdb, "INFO/random_seed", new_seed, 1);
49 }
50 }
51
52 /* open up the secrets database */
53 BOOL secrets_init(void)
54 {
55 pstring fname;
56 unsigned char dummy;
57
58 if (tdb)
59 return True;
60
61 pstrcpy(fname, lp_private_dir());
62 pstrcat(fname,"/secrets.tdb");
63
64 tdb = tdb_open_log(fname, 0, TDB_DEFAULT, O_RDWR|O_CREAT, 0600);
65
66 if (!tdb) {
67 DEBUG(0,("Failed to open %s\n", fname));
68 return False;
69 }
70
71 /**
72 * Set a reseed function for the crypto random generator
73 *
74 * This avoids a problem where systems without /dev/urandom
75 * could send the same challenge to multiple clients
76 */
77 set_rand_reseed_callback(get_rand_seed);
78
79 /* Ensure that the reseed is done now, while we are root, etc */
80 generate_random_buffer(&dummy, sizeof(dummy));
81
82 return True;
83 }
84
85 /* read a entry from the secrets database - the caller must free the result
86 if size is non-null then the size of the entry is put in there
87 */
88 void *secrets_fetch(const char *key, size_t *size)
89 {
90 TDB_DATA dbuf;
91 secrets_init();
92 if (!tdb)
93 return NULL;
94 dbuf = tdb_fetch(tdb, string_tdb_data(key));
95 if (size)
96 *size = dbuf.dsize;
97 return dbuf.dptr;
98 }
99
100 /* store a secrets entry
101 */
102 BOOL secrets_store(const char *key, const void *data, size_t size)
103 {
104 secrets_init();
105 if (!tdb)
106 return False;
107 return tdb_trans_store(tdb, string_tdb_data(key),
108 make_tdb_data((const char *)data, size),
109 TDB_REPLACE) == 0;
110 }
111
112
113 /* delete a secets database entry
114 */
115 BOOL secrets_delete(const char *key)
116 {
117 secrets_init();
118 if (!tdb)
119 return False;
120 return tdb_delete(tdb, string_tdb_data(key)) == 0;
121 }
122
123 BOOL secrets_store_domain_sid(const char *domain, const DOM_SID *sid)
124 {
125 fstring key;
126 BOOL ret;
127
128 slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_DOMAIN_SID, domain);
129 strupper_m(key);
130 ret = secrets_store(key, sid, sizeof(DOM_SID));
131
132 /* Force a re-query, in case we modified our domain */
133 if (ret)
134 reset_global_sam_sid();
135 return ret;
136 }
137
138 BOOL secrets_fetch_domain_sid(const char *domain, DOM_SID *sid)
139 {
140 DOM_SID *dyn_sid;
141 fstring key;
142 size_t size = 0;
143
144 slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_DOMAIN_SID, domain);
145 strupper_m(key);
146 dyn_sid = (DOM_SID *)secrets_fetch(key, &size);
147
148 if (dyn_sid == NULL)
149 return False;
150
151 if (size != sizeof(DOM_SID)) {
152 SAFE_FREE(dyn_sid);
153 return False;
154 }
155
156 *sid = *dyn_sid;
157 SAFE_FREE(dyn_sid);
158 return True;
159 }
160
161 BOOL secrets_store_domain_guid(const char *domain, struct GUID *guid)
162 {
163 fstring key;
164
165 slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_DOMAIN_GUID, domain);
166 strupper_m(key);
167 return secrets_store(key, guid, sizeof(struct GUID));
168 }
169
170 BOOL secrets_fetch_domain_guid(const char *domain, struct GUID *guid)
171 {
172 struct GUID *dyn_guid;
173 fstring key;
174 size_t size = 0;
175 struct GUID new_guid;
176
177 slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_DOMAIN_GUID, domain);
178 strupper_m(key);
179 dyn_guid = (struct GUID *)secrets_fetch(key, &size);
180
181 if (!dyn_guid) {
182 if (lp_server_role() == ROLE_DOMAIN_PDC) {
183 smb_uuid_generate_random(&new_guid);
184 if (!secrets_store_domain_guid(domain, &new_guid))
185 return False;
186 dyn_guid = (struct GUID *)secrets_fetch(key, &size);
187 }
188 if (dyn_guid == NULL) {
189 return False;
190 }
191 }
192
193 if (size != sizeof(struct GUID)) {
194 DEBUG(1,("UUID size %d is wrong!\n", (int)size));
195 SAFE_FREE(dyn_guid);
196 return False;
197 }
198
199 *guid = *dyn_guid;
200 SAFE_FREE(dyn_guid);
201 return True;
202 }
203
204 /**
205 * Form a key for fetching the machine trust account password
206 *
207 * @param domain domain name
208 *
209 * @return stored password's key
210 **/
211 static const char *trust_keystr(const char *domain)
212 {
213 static fstring keystr;
214
215 slprintf(keystr,sizeof(keystr)-1,"%s/%s",
216 SECRETS_MACHINE_ACCT_PASS, domain);
217 strupper_m(keystr);
218
219 return keystr;
220 }
221
222 /**
223 * Form a key for fetching a trusted domain password
224 *
225 * @param domain trusted domain name
226 *
227 * @return stored password's key
228 **/
229 static char *trustdom_keystr(const char *domain)
230 {
231 static pstring keystr;
232
233 pstr_sprintf(keystr, "%s/%s", SECRETS_DOMTRUST_ACCT_PASS, domain);
234 strupper_m(keystr);
235
236 return keystr;
237 }
238
239 /************************************************************************
240 Lock the trust password entry.
241 ************************************************************************/
242
243 BOOL secrets_lock_trust_account_password(const char *domain, BOOL dolock)
244 {
245 if (!tdb)
246 return False;
247
248 if (dolock)
249 return (tdb_lock_bystring(tdb, trust_keystr(domain)) == 0);
250 else
251 tdb_unlock_bystring(tdb, trust_keystr(domain));
252 return True;
253 }
254
255 /************************************************************************
256 Routine to get the default secure channel type for trust accounts
257 ************************************************************************/
258
259 uint32 get_default_sec_channel(void)
260 {
261 if (lp_server_role() == ROLE_DOMAIN_BDC ||
262 lp_server_role() == ROLE_DOMAIN_PDC) {
263 return SEC_CHAN_BDC;
264 } else {
265 return SEC_CHAN_WKSTA;
266 }
267 }
268
269 /************************************************************************
270 Routine to get the trust account password for a domain.
271 The user of this function must have locked the trust password file using
272 the above secrets_lock_trust_account_password().
273 ************************************************************************/
274
275 BOOL secrets_fetch_trust_account_password(const char *domain, uint8 ret_pwd[16],
276 time_t *pass_last_set_time,
277 uint32 *channel)
278 {
279 struct machine_acct_pass *pass;
280 char *plaintext;
281 size_t size = 0;
282
283 plaintext = secrets_fetch_machine_password(domain, pass_last_set_time,
284 channel);
285 if (plaintext) {
286 DEBUG(4,("Using cleartext machine password\n"));
287 E_md4hash(plaintext, ret_pwd);
288 SAFE_FREE(plaintext);
289 return True;
290 }
291
292 if (!(pass = (struct machine_acct_pass *)secrets_fetch(
293 trust_keystr(domain), &size))) {
294 DEBUG(5, ("secrets_fetch failed!\n"));
295 return False;
296 }
297
298 if (size != sizeof(*pass)) {
299 DEBUG(0, ("secrets were of incorrect size!\n"));
300 return False;
301 }
302
303 if (pass_last_set_time) {
304 *pass_last_set_time = pass->mod_time;
305 }
306 memcpy(ret_pwd, pass->hash, 16);
307
308 if (channel) {
309 *channel = get_default_sec_channel();
310 }
311
312 /* Test if machine password has expired and needs to be changed */
313 if (lp_machine_password_timeout()) {
314 if (pass->mod_time > 0 && time(NULL) > (pass->mod_time +
315 (time_t)lp_machine_password_timeout())) {
316 global_machine_password_needs_changing = True;
317 }
318 }
319
320 SAFE_FREE(pass);
321 return True;
322 }
323
324 /**
325 * Pack SID passed by pointer
326 *
327 * @param pack_buf pointer to buffer which is to be filled with packed data
328 * @param bufsize size of packing buffer
329 * @param sid pointer to sid to be packed
330 *
331 * @return length of the packed representation of the whole structure
332 **/
333 static size_t tdb_sid_pack(char* pack_buf, int bufsize, DOM_SID* sid)
334 {
335 int idx;
336 size_t len = 0;
337
338 if (!sid || !pack_buf) return -1;
339
340 len += tdb_pack(pack_buf + len, bufsize - len, "bb", sid->sid_rev_num,
341 sid->num_auths);
342
343 for (idx = 0; idx < 6; idx++) {
344 len += tdb_pack(pack_buf + len, bufsize - len, "b",
345 sid->id_auth[idx]);
346 }
347
348 for (idx = 0; idx < MAXSUBAUTHS; idx++) {
349 len += tdb_pack(pack_buf + len, bufsize - len, "d",
350 sid->sub_auths[idx]);
351 }
352
353 return len;
354 }
355
356 /**
357 * Unpack SID into a pointer
358 *
359 * @param pack_buf pointer to buffer with packed representation
360 * @param bufsize size of the buffer
361 * @param sid pointer to sid structure to be filled with unpacked data
362 *
363 * @return size of structure unpacked from buffer
364 **/
365 static size_t tdb_sid_unpack(char* pack_buf, int bufsize, DOM_SID* sid)
366 {
367 int idx, len = 0;
368
369 if (!sid || !pack_buf) return -1;
370
371 len += tdb_unpack(pack_buf + len, bufsize - len, "bb",
372 &sid->sid_rev_num, &sid->num_auths);
373
374 for (idx = 0; idx < 6; idx++) {
375 len += tdb_unpack(pack_buf + len, bufsize - len, "b",
376 &sid->id_auth[idx]);
377 }
378
379 for (idx = 0; idx < MAXSUBAUTHS; idx++) {
380 len += tdb_unpack(pack_buf + len, bufsize - len, "d",
381 &sid->sub_auths[idx]);
382 }
383
384 return len;
385 }
386
387 /**
388 * Pack TRUSTED_DOM_PASS passed by pointer
389 *
390 * @param pack_buf pointer to buffer which is to be filled with packed data
391 * @param bufsize size of the buffer
392 * @param pass pointer to trusted domain password to be packed
393 *
394 * @return length of the packed representation of the whole structure
395 **/
396 static size_t tdb_trusted_dom_pass_pack(char* pack_buf, int bufsize,
397 TRUSTED_DOM_PASS* pass)
398 {
399 int idx, len = 0;
400
401 if (!pack_buf || !pass) return -1;
402
403 /* packing unicode domain name and password */
404 len += tdb_pack(pack_buf + len, bufsize - len, "d",
405 pass->uni_name_len);
406
407 for (idx = 0; idx < 32; idx++)
408 len += tdb_pack(pack_buf + len, bufsize - len, "w",
409 pass->uni_name[idx]);
410
411 len += tdb_pack(pack_buf + len, bufsize - len, "dPd", pass->pass_len,
412 pass->pass, pass->mod_time);
413
414 /* packing SID structure */
415 len += tdb_sid_pack(pack_buf + len, bufsize - len, &pass->domain_sid);
416
417 return len;
418 }
419
420
421 /**
422 * Unpack TRUSTED_DOM_PASS passed by pointer
423 *
424 * @param pack_buf pointer to buffer with packed representation
425 * @param bufsize size of the buffer
426 * @param pass pointer to trusted domain password to be filled with unpacked data
427 *
428 * @return size of structure unpacked from buffer
429 **/
430 static size_t tdb_trusted_dom_pass_unpack(char* pack_buf, int bufsize,
431 TRUSTED_DOM_PASS* pass)
432 {
433 int idx, len = 0;
434
435 if (!pack_buf || !pass) return -1;
436
437 /* unpack unicode domain name and plaintext password */
438 len += tdb_unpack(pack_buf, bufsize - len, "d", &pass->uni_name_len);
439
440 for (idx = 0; idx < 32; idx++)
441 len += tdb_unpack(pack_buf + len, bufsize - len, "w",
442 &pass->uni_name[idx]);
443
444 len += tdb_unpack(pack_buf + len, bufsize - len, "dPd",
445 &pass->pass_len, &pass->pass, &pass->mod_time);
446
447 /* unpack domain sid */
448 len += tdb_sid_unpack(pack_buf + len, bufsize - len,
449 &pass->domain_sid);
450
451 return len;
452 }
453
454 /************************************************************************
455 Routine to get account password to trusted domain
456 ************************************************************************/
457
458 BOOL secrets_fetch_trusted_domain_password(const char *domain, char** pwd,
459 DOM_SID *sid, time_t *pass_last_set_time)
460 {
461 struct trusted_dom_pass pass;
462 size_t size = 0;
463
464 /* unpacking structures */
465 char* pass_buf;
466 int pass_len = 0;
467
468 ZERO_STRUCT(pass);
469
470 /* fetching trusted domain password structure */
471 if (!(pass_buf = (char *)secrets_fetch(trustdom_keystr(domain),
472 &size))) {
473 DEBUG(5, ("secrets_fetch failed!\n"));
474 return False;
475 }
476
477 /* unpack trusted domain password */
478 pass_len = tdb_trusted_dom_pass_unpack(pass_buf, size, &pass);
479 SAFE_FREE(pass_buf);
480
481 if (pass_len != size) {
482 DEBUG(5, ("Invalid secrets size. Unpacked data doesn't match trusted_dom_pass structure.\n"));
483 return False;
484 }
485
486 /* the trust's password */
487 if (pwd) {
488 *pwd = SMB_STRDUP(pass.pass);
489 if (!*pwd) {
490 return False;
491 }
492 }
493
494 /* last change time */
495 if (pass_last_set_time) *pass_last_set_time = pass.mod_time;
496
497 /* domain sid */
498 if (sid != NULL) sid_copy(sid, &pass.domain_sid);
499
500 return True;
501 }
502
503 /**
504 * Routine to store the password for trusted domain
505 *
506 * @param domain remote domain name
507 * @param pwd plain text password of trust relationship
508 * @param sid remote domain sid
509 *
510 * @return true if succeeded
511 **/
512
513 BOOL secrets_store_trusted_domain_password(const char* domain, const char* pwd,
514 const DOM_SID *sid)
515 {
516 smb_ucs2_t *uni_dom_name;
517
518 /* packing structures */
519 pstring pass_buf;
520 int pass_len = 0;
521 int pass_buf_len = sizeof(pass_buf);
522
523 struct trusted_dom_pass pass;
524 ZERO_STRUCT(pass);
525
526 if (push_ucs2_allocate(&uni_dom_name, domain) == (size_t)-1) {
527 DEBUG(0, ("Could not convert domain name %s to unicode\n",
528 domain));
529 return False;
530 }
531
532 strncpy_w(pass.uni_name, uni_dom_name, sizeof(pass.uni_name) - 1);
533 pass.uni_name_len = strlen_w(uni_dom_name)+1;
534 SAFE_FREE(uni_dom_name);
535
536 /* last change time */
537 pass.mod_time = time(NULL);
538
539 /* password of the trust */
540 pass.pass_len = strlen(pwd);
541 fstrcpy(pass.pass, pwd);
542
543 /* domain sid */
544 sid_copy(&pass.domain_sid, sid);
545
546 pass_len = tdb_trusted_dom_pass_pack(pass_buf, pass_buf_len, &pass);
547
548 return secrets_store(trustdom_keystr(domain), (void *)&pass_buf, pass_len);
549 }
550
551 /************************************************************************
552 Routine to set the plaintext machine account password for a realm
553 the password is assumed to be a null terminated ascii string
554 ************************************************************************/
555
556 BOOL secrets_store_machine_password(const char *pass, const char *domain, uint32 sec_channel)
557 {
558 char *key = NULL;
559 BOOL ret;
560 uint32 last_change_time;
561 uint32 sec_channel_type;
562
563 asprintf(&key, "%s/%s", SECRETS_MACHINE_PASSWORD, domain);
564 if (!key)
565 return False;
566 strupper_m(key);
567
568 ret = secrets_store(key, pass, strlen(pass)+1);
569 SAFE_FREE(key);
570
571 if (!ret)
572 return ret;
573
574 asprintf(&key, "%s/%s", SECRETS_MACHINE_LAST_CHANGE_TIME, domain);
575 if (!key)
576 return False;
577 strupper_m(key);
578
579 SIVAL(&last_change_time, 0, time(NULL));
580 ret = secrets_store(key, &last_change_time, sizeof(last_change_time));
581 SAFE_FREE(key);
582
583 asprintf(&key, "%s/%s", SECRETS_MACHINE_SEC_CHANNEL_TYPE, domain);
584 if (!key)
585 return False;
586 strupper_m(key);
587
588 SIVAL(&sec_channel_type, 0, sec_channel);
589 ret = secrets_store(key, &sec_channel_type, sizeof(sec_channel_type));
590 SAFE_FREE(key);
591
592 return ret;
593 }
594
595 /************************************************************************
596 Routine to fetch the plaintext machine account password for a realm
597 the password is assumed to be a null terminated ascii string.
598 ************************************************************************/
599
600 char *secrets_fetch_machine_password(const char *domain,
601 time_t *pass_last_set_time,
602 uint32 *channel)
603 {
604 char *key = NULL;
605 char *ret;
606 asprintf(&key, "%s/%s", SECRETS_MACHINE_PASSWORD, domain);
607 strupper_m(key);
608 ret = (char *)secrets_fetch(key, NULL);
609 SAFE_FREE(key);
610
611 if (pass_last_set_time) {
612 size_t size;
613 uint32 *last_set_time;
614 asprintf(&key, "%s/%s", SECRETS_MACHINE_LAST_CHANGE_TIME, domain);
615 strupper_m(key);
616 last_set_time = (unsigned int *)secrets_fetch(key, &size);
617 if (last_set_time) {
618 *pass_last_set_time = IVAL(last_set_time,0);
619 SAFE_FREE(last_set_time);
620 } else {
621 *pass_last_set_time = 0;
622 }
623 SAFE_FREE(key);
624 }
625
626 if (channel) {
627 size_t size;
628 uint32 *channel_type;
629 asprintf(&key, "%s/%s", SECRETS_MACHINE_SEC_CHANNEL_TYPE, domain);
630 strupper_m(key);
631 channel_type = (unsigned int *)secrets_fetch(key, &size);
632 if (channel_type) {
633 *channel = IVAL(channel_type,0);
634 SAFE_FREE(channel_type);
635 } else {
636 *channel = get_default_sec_channel();
637 }
638 SAFE_FREE(key);
639 }
640
641 return ret;
642 }
643
644 /*******************************************************************
645 Wrapper around retrieving the trust account password
646 *******************************************************************/
647
648 BOOL get_trust_pw(const char *domain, uint8 ret_pwd[16], uint32 *channel)
649 {
650 DOM_SID sid;
651 char *pwd;
652 time_t last_set_time;
653
654 /* if we are a DC and this is not our domain, then lookup an account
655 for the domain trust */
656
657 if ( IS_DC && !strequal(domain, lp_workgroup()) && lp_allow_trusted_domains() ) {
658 if (!secrets_fetch_trusted_domain_password(domain, &pwd, &sid,
659 &last_set_time)) {
660 DEBUG(0, ("get_trust_pw: could not fetch trust "
661 "account password for trusted domain %s\n",
662 domain));
663 return False;
664 }
665
666 *channel = SEC_CHAN_DOMAIN;
667 E_md4hash(pwd, ret_pwd);
668 SAFE_FREE(pwd);
669
670 return True;
671 }
672
673 /* Just get the account for the requested domain. In the future this
674 * might also cover to be member of more than one domain. */
675
676 if (secrets_fetch_trust_account_password(domain, ret_pwd,
677 &last_set_time, channel))
678 return True;
679
680 DEBUG(5, ("get_trust_pw: could not fetch trust account "
681 "password for domain %s\n", domain));
682 return False;
683 }
684
685 /************************************************************************
686 Routine to delete the password for trusted domain
687 ************************************************************************/
688
689 BOOL trusted_domain_password_delete(const char *domain)
690 {
691 return secrets_delete(trustdom_keystr(domain));
692 }
693
694 BOOL secrets_store_ldap_pw(const char* dn, char* pw)
695 {
696 char *key = NULL;
697 BOOL ret;
698
699 if (asprintf(&key, "%s/%s", SECRETS_LDAP_BIND_PW, dn) < 0) {
700 DEBUG(0, ("secrets_store_ldap_pw: asprintf failed!\n"));
701 return False;
702 }
703
704 ret = secrets_store(key, pw, strlen(pw)+1);
705
706 SAFE_FREE(key);
707 return ret;
708 }
709
710 /*******************************************************************
711 Find the ldap password.
712 ******************************************************************/
713
714 BOOL fetch_ldap_pw(char **dn, char** pw)
715 {
716 char *key = NULL;
717 size_t size = 0;
718
719 *dn = smb_xstrdup(lp_ldap_admin_dn());
720
721 if (asprintf(&key, "%s/%s", SECRETS_LDAP_BIND_PW, *dn) < 0) {
722 SAFE_FREE(*dn);
723 DEBUG(0, ("fetch_ldap_pw: asprintf failed!\n"));
724 }
725
726 *pw=(char *)secrets_fetch(key, &size);
727 SAFE_FREE(key);
728
729 if (!size) {
730 /* Upgrade 2.2 style entry */
731 char *p;
732 char* old_style_key = SMB_STRDUP(*dn);
733 char *data;
734 fstring old_style_pw;
735
736 if (!old_style_key) {
737 DEBUG(0, ("fetch_ldap_pw: strdup failed!\n"));
738 return False;
739 }
740
741 for (p=old_style_key; *p; p++)
742 if (*p == ',') *p = '/';
743
744 data=(char *)secrets_fetch(old_style_key, &size);
745 if (!size && size < sizeof(old_style_pw)) {
746 DEBUG(0,("fetch_ldap_pw: neither ldap secret retrieved!\n"));
747 SAFE_FREE(old_style_key);
748 SAFE_FREE(*dn);
749 return False;
750 }
751
752 size = MIN(size, sizeof(fstring)-1);
753 strncpy(old_style_pw, data, size);
754 old_style_pw[size] = 0;
755
756 SAFE_FREE(data);
757
758 if (!secrets_store_ldap_pw(*dn, old_style_pw)) {
759 DEBUG(0,("fetch_ldap_pw: ldap secret could not be upgraded!\n"));
760 SAFE_FREE(old_style_key);
761 SAFE_FREE(*dn);
762 return False;
763 }
764 if (!secrets_delete(old_style_key)) {
765 DEBUG(0,("fetch_ldap_pw: old ldap secret could not be deleted!\n"));
766 }
767
768 SAFE_FREE(old_style_key);
769
770 *pw = smb_xstrdup(old_style_pw);
771 }
772
773 return True;
774 }
775
776 /**
777 * Get trusted domains info from secrets.tdb.
778 **/
779
780 NTSTATUS secrets_trusted_domains(TALLOC_CTX *mem_ctx, uint32 *num_domains,
781 struct trustdom_info ***domains)
782 {
783 TDB_LIST_NODE *keys, *k;
784 char *pattern;
785 TALLOC_CTX *tmp_ctx;
786
787 if (!(tmp_ctx = talloc_new(mem_ctx))) {
788 return NT_STATUS_NO_MEMORY;
789 }
790
791 if (!secrets_init()) return NT_STATUS_ACCESS_DENIED;
792
793 /* generate searching pattern */
794 pattern = talloc_asprintf(tmp_ctx, "%s/*", SECRETS_DOMTRUST_ACCT_PASS);
795 if (pattern == NULL) {
796 DEBUG(0, ("secrets_trusted_domains: talloc_asprintf() "
797 "failed!\n"));
798 TALLOC_FREE(tmp_ctx);
799 return NT_STATUS_NO_MEMORY;
800 }
801
802 *num_domains = 0;
803
804 /*
805 * Make sure that a talloc context for the trustdom_info structs
806 * exists
807 */
808
809 if (!(*domains = TALLOC_ARRAY(mem_ctx, struct trustdom_info *, 1))) {
810 TALLOC_FREE(tmp_ctx);
811 return NT_STATUS_NO_MEMORY;
812 }
813
814 /* fetching trusted domains' data and collecting them in a list */
815 keys = tdb_search_keys(tdb, pattern);
816
817 /* searching for keys in secrets db -- way to go ... */
818 for (k = keys; k; k = k->next) {
819 char *packed_pass;
820 size_t size = 0, packed_size = 0;
821 struct trusted_dom_pass pass;
822 char *secrets_key;
823 struct trustdom_info *dom_info;
824
825 /* important: ensure null-termination of the key string */
826 secrets_key = talloc_strndup(tmp_ctx,
827 k->node_key.dptr,
828 k->node_key.dsize);
829 if (!secrets_key) {
830 DEBUG(0, ("strndup failed!\n"));
831 tdb_search_list_free(keys);
832 TALLOC_FREE(tmp_ctx);
833 return NT_STATUS_NO_MEMORY;
834 }
835
836 packed_pass = (char *)secrets_fetch(secrets_key, &size);
837 packed_size = tdb_trusted_dom_pass_unpack(packed_pass, size,
838 &pass);
839 /* packed representation isn't needed anymore */
840 SAFE_FREE(packed_pass);
841
842 if (size != packed_size) {
843 DEBUG(2, ("Secrets record %s is invalid!\n",
844 secrets_key));
845 continue;
846 }
847
848 if (pass.domain_sid.num_auths != 4) {
849 DEBUG(0, ("SID %s is not a domain sid, has %d "
850 "auths instead of 4\n",
851 sid_string_static(&pass.domain_sid),
852 pass.domain_sid.num_auths));
853 continue;
854 }
855
856 if (!(dom_info = TALLOC_P(*domains, struct trustdom_info))) {
857 DEBUG(0, ("talloc failed\n"));
858 tdb_search_list_free(keys);
859 TALLOC_FREE(tmp_ctx);
860 return NT_STATUS_NO_MEMORY;
861 }
862
863 if (pull_ucs2_talloc(dom_info, &dom_info->name,
864 pass.uni_name) == (size_t)-1) {
865 DEBUG(2, ("pull_ucs2_talloc failed\n"));
866 tdb_search_list_free(keys);
867 TALLOC_FREE(tmp_ctx);
868 return NT_STATUS_NO_MEMORY;
869 }
870
871 sid_copy(&dom_info->sid, &pass.domain_sid);
872
873 ADD_TO_ARRAY(*domains, struct trustdom_info *, dom_info,
874 domains, num_domains);
875
876 if (*domains == NULL) {
877 tdb_search_list_free(keys);
878 TALLOC_FREE(tmp_ctx);
879 return NT_STATUS_NO_MEMORY;
880 }
881 }
882
883 DEBUG(5, ("secrets_get_trusted_domains: got %d domains\n",
884 *num_domains));
885
886 /* free the results of searching the keys */
887 tdb_search_list_free(keys);
888 TALLOC_FREE(tmp_ctx);
889
890 return NT_STATUS_OK;
891 }
892
893 /*******************************************************************************
894 Lock the secrets tdb based on a string - this is used as a primitive form of mutex
895 between smbd instances.
896 *******************************************************************************/
897
898 BOOL secrets_named_mutex(const char *name, unsigned int timeout)
899 {
900 int ret = 0;
901
902 if (!secrets_init())
903 return False;
904
905 ret = tdb_lock_bystring_with_timeout(tdb, name, timeout);
906 if (ret == 0)
907 DEBUG(10,("secrets_named_mutex: got mutex for %s\n", name ));
908
909 return (ret == 0);
910 }
911
912 /*******************************************************************************
913 Unlock a named mutex.
914 *******************************************************************************/
915
916 void secrets_named_mutex_release(const char *name)
917 {
918 tdb_unlock_bystring(tdb, name);
919 DEBUG(10,("secrets_named_mutex: released mutex for %s\n", name ));
920 }
921
922 /*******************************************************************************
923 Store a complete AFS keyfile into secrets.tdb.
924 *******************************************************************************/
925
926 BOOL secrets_store_afs_keyfile(const char *cell, const struct afs_keyfile *keyfile)
927 {
928 fstring key;
929
930 if ((cell == NULL) || (keyfile == NULL))
931 return False;
932
933 if (ntohl(keyfile->nkeys) > SECRETS_AFS_MAXKEYS)
934 return False;
935
936 slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_AFS_KEYFILE, cell);
937 return secrets_store(key, keyfile, sizeof(struct afs_keyfile));
938 }
939
940 /*******************************************************************************
941 Fetch the current (highest) AFS key from secrets.tdb
942 *******************************************************************************/
943 BOOL secrets_fetch_afs_key(const char *cell, struct afs_key *result)
944 {
945 fstring key;
946 struct afs_keyfile *keyfile;
947 size_t size = 0;
948 uint32 i;
949
950 slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_AFS_KEYFILE, cell);
951
952 keyfile = (struct afs_keyfile *)secrets_fetch(key, &size);
953
954 if (keyfile == NULL)
955 return False;
956
957 if (size != sizeof(struct afs_keyfile)) {
958 SAFE_FREE(keyfile);
959 return False;
960 }
961
962 i = ntohl(keyfile->nkeys);
963
964 if (i > SECRETS_AFS_MAXKEYS) {
965 SAFE_FREE(keyfile);
966 return False;
967 }
968
969 *result = keyfile->entry[i-1];
970
971 result->kvno = ntohl(result->kvno);
972
973 return True;
974 }
975
976 /******************************************************************************
977 When kerberos is not available, choose between anonymous or
978 authenticated connections.
979
980 We need to use an authenticated connection if DCs have the
981 RestrictAnonymous registry entry set > 0, or the "Additional
982 restrictions for anonymous connections" set in the win2k Local
983 Security Policy.
984
985 Caller to free() result in domain, username, password
986 *******************************************************************************/
987 void secrets_fetch_ipc_userpass(char **username, char **domain, char **password)
988 {
989 *username = (char *)secrets_fetch(SECRETS_AUTH_USER, NULL);
990 *domain = (char *)secrets_fetch(SECRETS_AUTH_DOMAIN, NULL);
991 *password = (char *)secrets_fetch(SECRETS_AUTH_PASSWORD, NULL);
992
993 if (*username && **username) {
994
995 if (!*domain || !**domain)
996 *domain = smb_xstrdup(lp_workgroup());
997
998 if (!*password || !**password)
999 *password = smb_xstrdup("");
1000
1001 DEBUG(3, ("IPC$ connections done by user %s\\%s\n",
1002 *domain, *username));
1003
1004 } else {
1005 DEBUG(3, ("IPC$ connections done anonymously\n"));
1006 *username = smb_xstrdup("");
1007 *domain = smb_xstrdup("");
1008 *password = smb_xstrdup("");
1009 }
1010 }
1011
1012 /******************************************************************************
1013 Open or create the schannel session store tdb.
1014 *******************************************************************************/
1015
1016 static TDB_CONTEXT *open_schannel_session_store(TALLOC_CTX *mem_ctx)
1017 {
1018 TDB_DATA vers;
1019 uint32 ver;
1020 TDB_CONTEXT *tdb_sc = NULL;
1021 char *fname = talloc_asprintf(mem_ctx, "%s/schannel_store.tdb", lp_private_dir());
1022
1023 if (!fname) {
1024 return NULL;
1025 }
1026
1027 tdb_sc = tdb_open_log(fname, 0, TDB_DEFAULT, O_RDWR|O_CREAT, 0600);
1028
1029 if (!tdb_sc) {
1030 DEBUG(0,("open_schannel_session_store: Failed to open %s\n", fname));
1031 TALLOC_FREE(fname);
1032 return NULL;
1033 }
1034
1035 vers = tdb_fetch_bystring(tdb_sc, "SCHANNEL_STORE_VERSION");
1036 if (vers.dptr == NULL) {
1037 /* First opener, no version. */
1038 SIVAL(&ver,0,1);
1039 vers.dptr = (char *)&ver;
1040 vers.dsize = 4;
1041 tdb_store_bystring(tdb_sc, "SCHANNEL_STORE_VERSION", vers, TDB_REPLACE);
1042 vers.dptr = NULL;
1043 } else if (vers.dsize == 4) {
1044 ver = IVAL(vers.dptr,0);
1045 if (ver != 1) {
1046 tdb_close(tdb_sc);
1047 tdb_sc = NULL;
1048 DEBUG(0,("open_schannel_session_store: wrong version number %d in %s\n",
1049 (int)ver, fname ));
1050 }
1051 } else {
1052 tdb_close(tdb_sc);
1053 tdb_sc = NULL;
1054 DEBUG(0,("open_schannel_session_store: wrong version number size %d in %s\n",
1055 (int)vers.dsize, fname ));
1056 }
1057
1058 SAFE_FREE(vers.dptr);
1059 TALLOC_FREE(fname);
1060
1061 return tdb_sc;
1062 }
1063
1064 /******************************************************************************
1065 Store the schannel state after an AUTH2 call.
1066 Note we must be root here.
1067 *******************************************************************************/
1068
1069 BOOL secrets_store_schannel_session_info(TALLOC_CTX *mem_ctx,
1070 const char *remote_machine,
1071 const struct dcinfo *pdc)
1072 {
1073 TDB_CONTEXT *tdb_sc = NULL;
1074 TDB_DATA value;
1075 BOOL ret;
1076 char *keystr = talloc_asprintf(mem_ctx, "%s/%s", SECRETS_SCHANNEL_STATE,
1077 remote_machine);
1078 if (!keystr) {
1079 return False;
1080 }
1081
1082 strupper_m(keystr);
1083
1084 /* Work out how large the record is. */
1085 value.dsize = tdb_pack(NULL, 0, "dBBBBBfff",
1086 pdc->sequence,
1087 8, pdc->seed_chal.data,
1088 8, pdc->clnt_chal.data,
1089 8, pdc->srv_chal.data,
1090 16, pdc->sess_key,
1091 16, pdc->mach_pw,
1092 pdc->mach_acct,
1093 pdc->remote_machine,
1094 pdc->domain);
1095
1096 value.dptr = (char *)TALLOC(mem_ctx, value.dsize);
1097 if (!value.dptr) {
1098 TALLOC_FREE(keystr);
1099 return False;
1100 }
1101
1102 value.dsize = tdb_pack(value.dptr, value.dsize, "dBBBBBfff",
1103 pdc->sequence,
1104 8, pdc->seed_chal.data,
1105 8, pdc->clnt_chal.data,
1106 8, pdc->srv_chal.data,
1107 16, pdc->sess_key,
1108 16, pdc->mach_pw,
1109 pdc->mach_acct,
1110 pdc->remote_machine,
1111 pdc->domain);
1112
1113 tdb_sc = open_schannel_session_store(mem_ctx);
1114 if (!tdb_sc) {
1115 TALLOC_FREE(keystr);
1116 TALLOC_FREE(value.dptr);
1117 return False;
1118 }
1119
1120 ret = (tdb_store_bystring(tdb_sc, keystr, value, TDB_REPLACE) == 0 ? True : False);
1121
1122 DEBUG(3,("secrets_store_schannel_session_info: stored schannel info with key %s\n",
1123 keystr ));
1124
1125 tdb_close(tdb_sc);
1126 TALLOC_FREE(keystr);
1127 TALLOC_FREE(value.dptr);
1128 return ret;
1129 }
1130
1131 /******************************************************************************
1132 Restore the schannel state on a client reconnect.
1133 Note we must be root here.
1134 *******************************************************************************/
1135
1136 BOOL secrets_restore_schannel_session_info(TALLOC_CTX *mem_ctx,
1137 const char *remote_machine,
1138 struct dcinfo **ppdc)
1139 {
1140 TDB_CONTEXT *tdb_sc = NULL;
1141 TDB_DATA value;
1142 unsigned char *pseed_chal = NULL;
1143 unsigned char *pclnt_chal = NULL;
1144 unsigned char *psrv_chal = NULL;
1145 unsigned char *psess_key = NULL;
1146 unsigned char *pmach_pw = NULL;
1147 uint32 l1, l2, l3, l4, l5;
1148 int ret;
1149 struct dcinfo *pdc = NULL;
1150 char *keystr = talloc_asprintf(mem_ctx, "%s/%s", SECRETS_SCHANNEL_STATE,
1151 remote_machine);
1152
1153 *ppdc = NULL;
1154
1155 if (!keystr) {
1156 return False;
1157 }
1158
1159 strupper_m(keystr);
1160
1161 tdb_sc = open_schannel_session_store(mem_ctx);
1162 if (!tdb_sc) {
1163 TALLOC_FREE(keystr);
1164 return False;
1165 }
1166
1167 value = tdb_fetch_bystring(tdb_sc, keystr);
1168 if (!value.dptr) {
1169 DEBUG(0,("secrets_restore_schannel_session_info: Failed to find entry with key %s\n",
1170 keystr ));
1171 tdb_close(tdb_sc);
1172 return False;
1173 }
1174
1175 pdc = TALLOC_ZERO_P(mem_ctx, struct dcinfo);
1176
1177 /* Retrieve the record. */
1178 ret = tdb_unpack(value.dptr, value.dsize, "dBBBBBfff",
1179 &pdc->sequence,
1180 &l1, &pseed_chal,
1181 &l2, &pclnt_chal,
1182 &l3, &psrv_chal,
1183 &l4, &psess_key,
1184 &l5, &pmach_pw,
1185 &pdc->mach_acct,
1186 &pdc->remote_machine,
1187 &pdc->domain);
1188
1189 if (ret == -1 || l1 != 8 || l2 != 8 || l3 != 8 || l4 != 16 || l5 != 16) {
1190 /* Bad record - delete it. */
1191 tdb_delete_bystring(tdb_sc, keystr);
1192 tdb_close(tdb_sc);
1193 TALLOC_FREE(keystr);
1194 TALLOC_FREE(pdc);
1195 SAFE_FREE(pseed_chal);
1196 SAFE_FREE(pclnt_chal);
1197 SAFE_FREE(psrv_chal);
1198 SAFE_FREE(psess_key);
1199 SAFE_FREE(pmach_pw);
1200 SAFE_FREE(value.dptr);
1201 return False;
1202 }
1203
1204 tdb_close(tdb_sc);
1205
1206 memcpy(pdc->seed_chal.data, pseed_chal, 8);
1207 memcpy(pdc->clnt_chal.data, pclnt_chal, 8);
1208 memcpy(pdc->srv_chal.data, psrv_chal, 8);
1209 memcpy(pdc->sess_key, psess_key, 16);
1210 memcpy(pdc->mach_pw, pmach_pw, 16);
1211
1212 /* We know these are true so didn't bother to store them. */
1213 pdc->challenge_sent = True;
1214 pdc->authenticated = True;
1215
1216 DEBUG(3,("secrets_restore_schannel_session_info: restored schannel info key %s\n",
1217 keystr ));
1218
1219 SAFE_FREE(pseed_chal);
1220 SAFE_FREE(pclnt_chal);
1221 SAFE_FREE(psrv_chal);
1222 SAFE_FREE(psess_key);
1223 SAFE_FREE(pmach_pw);
1224
1225 TALLOC_FREE(keystr);
1226 SAFE_FREE(value.dptr);
1227
1228 *ppdc = pdc;
1229
1230 return True;
1231 }
1232
1233 BOOL secrets_store_generic(const char *owner, const char *key, const char *secret)
1234 {
1235 char *tdbkey = NULL;
1236 BOOL ret;
1237
1238 if (asprintf(&tdbkey, "SECRETS/GENERIC/%s/%s", owner, key) < 0) {
1239 DEBUG(0, ("asprintf failed!\n"));
1240 return False;
1241 }
1242
1243 ret = secrets_store(tdbkey, secret, strlen(secret)+1);
1244
1245 SAFE_FREE(tdbkey);
1246 return ret;
1247 }
1248
1249 /*******************************************************************
1250 Find the ldap password.
1251 ******************************************************************/
1252
1253 char *secrets_fetch_generic(const char *owner, const char *key)
1254 {
1255 char *secret = NULL;
1256 char *tdbkey = NULL;
1257
1258 if (( ! owner) || ( ! key)) {
1259 DEBUG(1, ("Invalid Paramters"));
1260 return NULL;
1261 }
1262
1263 if (asprintf(&tdbkey, "SECRETS/GENERIC/%s/%s", owner, key) < 0) {
1264 DEBUG(0, ("Out of memory!\n"));
1265 return NULL;
1266 }
1267
1268 secret = (char *)secrets_fetch(tdbkey, NULL);
1269 SAFE_FREE(tdbkey);
1270
1271 return secret;
1272 }
1273
Samba GIT mirror