git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cc67ccb) | patch
s3:secrets: add infrastructure to use secrets_domain_infoB to store credentials
authorStefan Metzmacher <metze@samba.org>
Fri, 19 May 2017 14:28:17 +0000 (16:28 +0200)
committerStefan Metzmacher <metze@samba.org>
Thu, 13 Jul 2017 18:01:29 +0000 (20:01 +0200)
commit835cc1271a5b5154607dd86f4158a2eee134d518
tree47d31d29f37f5fc9938eda1ca27dc34dd23fb340tree
parentcc67ccbe7450641a6a07160c820107adea0cfa3bcommit | diff
s3:secrets: add infrastructure to use secrets_domain_infoB to store credentials

We now store various hashed keys at change time and maintain a lot of details
that will help debugging failed password changes.

We keep storing the legacy values:
 SECRETS/SID/
 SECRETS/DOMGUID/
 SECRETS/MACHINE_LAST_CHANGE_TIME/
 SECRETS/MACHINE_PASSWORD/
 SECRETS/MACHINE_PASSWORD.PREV/
 SECRETS/SALTING_PRINCIPAL/DES/

This allows downgrades to older Samba versions.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=12782

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>
(cherry picked from commit 5f0038fba612afd7fc15b7ab321df979891170d8)
source3/include/secrets.h diff | blob | history
source3/passdb/machine_account_secrets.c diff | blob | history
Samba Shared Repository