Context Navigation

source: branches/samba-3.0/source/passdb/secrets.c@ 124

Visit:

Last change on this file since 124 was 124, checked in by Paul Smedley, 17 years ago
Update source to 3.0.28a
File size: 35.2 KB

Line
1	/*
2	Unix SMB/CIFS implementation.
3	Copyright (C) Andrew Tridgell 1992-2001
4	Copyright (C) Andrew Bartlett 2002
5	Copyright (C) Rafal Szczesniak 2002
6	Copyright (C) Tim Potter 2001
7
8	This program is free software; you can redistribute it and/or modify
9	it under the terms of the GNU General Public License as published by
10	the Free Software Foundation; either version 2 of the License, or
11	(at your option) any later version.
12
13	This program is distributed in the hope that it will be useful,
14	but WITHOUT ANY WARRANTY; without even the implied warranty of
15	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16	GNU General Public License for more details.
17
18	You should have received a copy of the GNU General Public License
19	along with this program; if not, write to the Free Software
20	Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
21	*/
22
23	/* the Samba secrets database stores any generated, private information
24	such as the local SID and machine trust password */
25
26	#include "includes.h"
27
28	#undef DBGC_CLASS
29	#define DBGC_CLASS DBGC_PASSDB
30
31	static TDB_CONTEXT *tdb;
32
33	/* Urrrg. global.... */
34	BOOL global_machine_password_needs_changing;
35
36	/**
37	* Use a TDB to store an incrementing random seed.
38	*
39	* Initialised to the current pid, the very first time Samba starts,
40	* and incremented by one each time it is needed.
41	*
42	* @note Not called by systems with a working /dev/urandom.
43	*/
44	static void get_rand_seed(int *new_seed)
45	{
46	*new_seed = sys_getpid();
47	if (tdb) {
48	tdb_change_int32_atomic(tdb, "INFO/random_seed", new_seed, 1);
49	}
50	}
51
52	/* open up the secrets database */
53	BOOL secrets_init(void)
54	{
55	pstring fname;
56	unsigned char dummy;
57
58	if (tdb)
59	return True;
60
61	pstrcpy(fname, lp_private_dir());
62	pstrcat(fname,"/secrets.tdb");
63
64	tdb = tdb_open_log(fname, 0, TDB_DEFAULT, O_RDWR\|O_CREAT, 0600);
65
66	if (!tdb) {
67	DEBUG(0,("Failed to open %s\n", fname));
68	return False;
69	}
70
71	/**
72	* Set a reseed function for the crypto random generator
73	*
74	* This avoids a problem where systems without /dev/urandom
75	* could send the same challenge to multiple clients
76	*/
77	set_rand_reseed_callback(get_rand_seed);
78
79	/* Ensure that the reseed is done now, while we are root, etc */
80	generate_random_buffer(&dummy, sizeof(dummy));
81
82	return True;
83	}
84
85	/* read a entry from the secrets database - the caller must free the result
86	if size is non-null then the size of the entry is put in there
87	*/
88	void secrets_fetch(const char key, size_t *size)
89	{
90	TDB_DATA dbuf;
91	secrets_init();
92	if (!tdb)
93	return NULL;
94	dbuf = tdb_fetch(tdb, string_tdb_data(key));
95	if (size)
96	*size = dbuf.dsize;
97	return dbuf.dptr;
98	}
99
100	/* store a secrets entry
101	*/
102	BOOL secrets_store(const char key, const void data, size_t size)
103	{
104	secrets_init();
105	if (!tdb)
106	return False;
107	return tdb_trans_store(tdb, string_tdb_data(key),
108	make_tdb_data((const char *)data, size),
109	TDB_REPLACE) == 0;
110	}
111
112
113	/* delete a secets database entry
114	*/
115	BOOL secrets_delete(const char *key)
116	{
117	secrets_init();
118	if (!tdb)
119	return False;
120	return tdb_delete(tdb, string_tdb_data(key)) == 0;
121	}
122
123	BOOL secrets_store_domain_sid(const char domain, const DOM_SID sid)
124	{
125	fstring key;
126	BOOL ret;
127
128	slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_DOMAIN_SID, domain);
129	strupper_m(key);
130	ret = secrets_store(key, sid, sizeof(DOM_SID));
131
132	/* Force a re-query, in case we modified our domain */
133	if (ret)
134	reset_global_sam_sid();
135	return ret;
136	}
137
138	BOOL secrets_fetch_domain_sid(const char domain, DOM_SID sid)
139	{
140	DOM_SID *dyn_sid;
141	fstring key;
142	size_t size = 0;
143
144	slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_DOMAIN_SID, domain);
145	strupper_m(key);
146	dyn_sid = (DOM_SID *)secrets_fetch(key, &size);
147
148	if (dyn_sid == NULL)
149	return False;
150
151	if (size != sizeof(DOM_SID)) {
152	SAFE_FREE(dyn_sid);
153	return False;
154	}
155
156	sid = dyn_sid;
157	SAFE_FREE(dyn_sid);
158	return True;
159	}
160
161	BOOL secrets_store_domain_guid(const char domain, struct GUID guid)
162	{
163	fstring key;
164
165	slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_DOMAIN_GUID, domain);
166	strupper_m(key);
167	return secrets_store(key, guid, sizeof(struct GUID));
168	}
169
170	BOOL secrets_fetch_domain_guid(const char domain, struct GUID guid)
171	{
172	struct GUID *dyn_guid;
173	fstring key;
174	size_t size = 0;
175	struct GUID new_guid;
176
177	slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_DOMAIN_GUID, domain);
178	strupper_m(key);
179	dyn_guid = (struct GUID *)secrets_fetch(key, &size);
180
181	if (!dyn_guid) {
182	if (lp_server_role() == ROLE_DOMAIN_PDC) {
183	smb_uuid_generate_random(&new_guid);
184	if (!secrets_store_domain_guid(domain, &new_guid))
185	return False;
186	dyn_guid = (struct GUID *)secrets_fetch(key, &size);
187	}
188	if (dyn_guid == NULL) {
189	return False;
190	}
191	}
192
193	if (size != sizeof(struct GUID)) {
194	DEBUG(1,("UUID size %d is wrong!\n", (int)size));
195	SAFE_FREE(dyn_guid);
196	return False;
197	}
198
199	guid = dyn_guid;
200	SAFE_FREE(dyn_guid);
201	return True;
202	}
203
204	/**
205	* Form a key for fetching the machine trust account password
206	*
207	* @param domain domain name
208	*
209	* @return stored password's key
210	**/
211	static const char trust_keystr(const char domain)
212	{
213	static fstring keystr;
214
215	slprintf(keystr,sizeof(keystr)-1,"%s/%s",
216	SECRETS_MACHINE_ACCT_PASS, domain);
217	strupper_m(keystr);
218
219	return keystr;
220	}
221
222	/**
223	* Form a key for fetching a trusted domain password
224	*
225	* @param domain trusted domain name
226	*
227	* @return stored password's key
228	**/
229	static char trustdom_keystr(const char domain)
230	{
231	static pstring keystr;
232
233	pstr_sprintf(keystr, "%s/%s", SECRETS_DOMTRUST_ACCT_PASS, domain);
234	strupper_m(keystr);
235
236	return keystr;
237	}
238
239	/************************************************************************
240	Lock the trust password entry.
241	************************************************************************/
242
243	BOOL secrets_lock_trust_account_password(const char *domain, BOOL dolock)
244	{
245	if (!tdb)
246	return False;
247
248	if (dolock)
249	return (tdb_lock_bystring(tdb, trust_keystr(domain)) == 0);
250	else
251	tdb_unlock_bystring(tdb, trust_keystr(domain));
252	return True;
253	}
254
255	/************************************************************************
256	Routine to get the default secure channel type for trust accounts
257	************************************************************************/
258
259	uint32 get_default_sec_channel(void)
260	{
261	if (lp_server_role() == ROLE_DOMAIN_BDC \|\|
262	lp_server_role() == ROLE_DOMAIN_PDC) {
263	return SEC_CHAN_BDC;
264	} else {
265	return SEC_CHAN_WKSTA;
266	}
267	}
268
269	/************************************************************************
270	Routine to get the trust account password for a domain.
271	This only tries to get the legacy hashed version of the password.
272	The user of this function must have locked the trust password file using
273	the above secrets_lock_trust_account_password().
274	************************************************************************/
275
276	BOOL secrets_fetch_trust_account_password_legacy(const char *domain,
277	uint8 ret_pwd[16],
278	time_t *pass_last_set_time,
279	uint32 *channel)
280	{
281	struct machine_acct_pass *pass;
282	size_t size = 0;
283
284	if (!(pass = (struct machine_acct_pass *)secrets_fetch(
285	trust_keystr(domain), &size))) {
286	DEBUG(5, ("secrets_fetch failed!\n"));
287	return False;
288	}
289
290	if (size != sizeof(*pass)) {
291	DEBUG(0, ("secrets were of incorrect size!\n"));
292	return False;
293	}
294
295	if (pass_last_set_time) {
296	*pass_last_set_time = pass->mod_time;
297	}
298	memcpy(ret_pwd, pass->hash, 16);
299
300	if (channel) {
301	*channel = get_default_sec_channel();
302	}
303
304	/* Test if machine password has expired and needs to be changed */
305	if (lp_machine_password_timeout()) {
306	if (pass->mod_time > 0 && time(NULL) > (pass->mod_time +
307	(time_t)lp_machine_password_timeout())) {
308	global_machine_password_needs_changing = True;
309	}
310	}
311
312	SAFE_FREE(pass);
313	return True;
314	}
315
316	/************************************************************************
317	Routine to get the trust account password for a domain.
318	The user of this function must have locked the trust password file using
319	the above secrets_lock_trust_account_password().
320	************************************************************************/
321
322	BOOL secrets_fetch_trust_account_password(const char *domain, uint8 ret_pwd[16],
323	time_t *pass_last_set_time,
324	uint32 *channel)
325	{
326	char *plaintext;
327
328	plaintext = secrets_fetch_machine_password(domain, pass_last_set_time,
329	channel);
330	if (plaintext) {
331	DEBUG(4,("Using cleartext machine password\n"));
332	E_md4hash(plaintext, ret_pwd);
333	SAFE_FREE(plaintext);
334	return True;
335	}
336
337	return secrets_fetch_trust_account_password_legacy(domain, ret_pwd,
338	pass_last_set_time,
339	channel);
340	}
341
342	/**
343	* Pack SID passed by pointer
344	*
345	* @param pack_buf pointer to buffer which is to be filled with packed data
346	* @param bufsize size of packing buffer
347	* @param sid pointer to sid to be packed
348	*
349	* @return length of the packed representation of the whole structure
350	**/
351	static size_t tdb_sid_pack(char* pack_buf, int bufsize, DOM_SID* sid)
352	{
353	int idx;
354	size_t len = 0;
355
356	if (!sid \|\| !pack_buf) return -1;
357
358	len += tdb_pack(pack_buf + len, bufsize - len, "bb", sid->sid_rev_num,
359	sid->num_auths);
360
361	for (idx = 0; idx < 6; idx++) {
362	len += tdb_pack(pack_buf + len, bufsize - len, "b",
363	sid->id_auth[idx]);
364	}
365
366	for (idx = 0; idx < MAXSUBAUTHS; idx++) {
367	len += tdb_pack(pack_buf + len, bufsize - len, "d",
368	sid->sub_auths[idx]);
369	}
370
371	return len;
372	}
373
374	/**
375	* Unpack SID into a pointer
376	*
377	* @param pack_buf pointer to buffer with packed representation
378	* @param bufsize size of the buffer
379	* @param sid pointer to sid structure to be filled with unpacked data
380	*
381	* @return size of structure unpacked from buffer
382	**/
383	static size_t tdb_sid_unpack(char* pack_buf, int bufsize, DOM_SID* sid)
384	{
385	int idx, len = 0;
386
387	if (!sid \|\| !pack_buf) return -1;
388
389	len += tdb_unpack(pack_buf + len, bufsize - len, "bb",
390	&sid->sid_rev_num, &sid->num_auths);
391
392	for (idx = 0; idx < 6; idx++) {
393	len += tdb_unpack(pack_buf + len, bufsize - len, "b",
394	&sid->id_auth[idx]);
395	}
396
397	for (idx = 0; idx < MAXSUBAUTHS; idx++) {
398	len += tdb_unpack(pack_buf + len, bufsize - len, "d",
399	&sid->sub_auths[idx]);
400	}
401
402	return len;
403	}
404
405	/**
406	* Pack TRUSTED_DOM_PASS passed by pointer
407	*
408	* @param pack_buf pointer to buffer which is to be filled with packed data
409	* @param bufsize size of the buffer
410	* @param pass pointer to trusted domain password to be packed
411	*
412	* @return length of the packed representation of the whole structure
413	**/
414	static size_t tdb_trusted_dom_pass_pack(char* pack_buf, int bufsize,
415	TRUSTED_DOM_PASS* pass)
416	{
417	int idx, len = 0;
418
419	if (!pack_buf \|\| !pass) return -1;
420
421	/* packing unicode domain name and password */
422	len += tdb_pack(pack_buf + len, bufsize - len, "d",
423	pass->uni_name_len);
424
425	for (idx = 0; idx < 32; idx++)
426	len += tdb_pack(pack_buf + len, bufsize - len, "w",
427	pass->uni_name[idx]);
428
429	len += tdb_pack(pack_buf + len, bufsize - len, "dPd", pass->pass_len,
430	pass->pass, pass->mod_time);
431
432	/* packing SID structure */
433	len += tdb_sid_pack(pack_buf + len, bufsize - len, &pass->domain_sid);
434
435	return len;
436	}
437
438
439	/**
440	* Unpack TRUSTED_DOM_PASS passed by pointer
441	*
442	* @param pack_buf pointer to buffer with packed representation
443	* @param bufsize size of the buffer
444	* @param pass pointer to trusted domain password to be filled with unpacked data
445	*
446	* @return size of structure unpacked from buffer
447	**/
448	static size_t tdb_trusted_dom_pass_unpack(char* pack_buf, int bufsize,
449	TRUSTED_DOM_PASS* pass)
450	{
451	int idx, len = 0;
452
453	if (!pack_buf \|\| !pass) return -1;
454
455	/* unpack unicode domain name and plaintext password */
456	len += tdb_unpack(pack_buf, bufsize - len, "d", &pass->uni_name_len);
457
458	for (idx = 0; idx < 32; idx++)
459	len += tdb_unpack(pack_buf + len, bufsize - len, "w",
460	&pass->uni_name[idx]);
461
462	len += tdb_unpack(pack_buf + len, bufsize - len, "dPd",
463	&pass->pass_len, &pass->pass, &pass->mod_time);
464
465	/* unpack domain sid */
466	len += tdb_sid_unpack(pack_buf + len, bufsize - len,
467	&pass->domain_sid);
468
469	return len;
470	}
471
472	/************************************************************************
473	Routine to get account password to trusted domain
474	************************************************************************/
475
476	BOOL secrets_fetch_trusted_domain_password(const char domain, char* pwd,
477	DOM_SID sid, time_t pass_last_set_time)
478	{
479	struct trusted_dom_pass pass;
480	size_t size = 0;
481
482	/* unpacking structures */
483	char* pass_buf;
484	int pass_len = 0;
485
486	ZERO_STRUCT(pass);
487
488	/* fetching trusted domain password structure */
489	if (!(pass_buf = (char *)secrets_fetch(trustdom_keystr(domain),
490	&size))) {
491	DEBUG(5, ("secrets_fetch failed!\n"));
492	return False;
493	}
494
495	/* unpack trusted domain password */
496	pass_len = tdb_trusted_dom_pass_unpack(pass_buf, size, &pass);
497	SAFE_FREE(pass_buf);
498
499	if (pass_len != size) {
500	DEBUG(5, ("Invalid secrets size. Unpacked data doesn't match trusted_dom_pass structure.\n"));
501	return False;
502	}
503
504	/* the trust's password */
505	if (pwd) {
506	*pwd = SMB_STRDUP(pass.pass);
507	if (!*pwd) {
508	return False;
509	}
510	}
511
512	/* last change time */
513	if (pass_last_set_time) *pass_last_set_time = pass.mod_time;
514
515	/* domain sid */
516	if (sid != NULL) sid_copy(sid, &pass.domain_sid);
517
518	return True;
519	}
520
521	/**
522	* Routine to store the password for trusted domain
523	*
524	* @param domain remote domain name
525	* @param pwd plain text password of trust relationship
526	* @param sid remote domain sid
527	*
528	* @return true if succeeded
529	**/
530
531	BOOL secrets_store_trusted_domain_password(const char* domain, const char* pwd,
532	const DOM_SID *sid)
533	{
534	smb_ucs2_t *uni_dom_name;
535
536	/* packing structures */
537	pstring pass_buf;
538	int pass_len = 0;
539	int pass_buf_len = sizeof(pass_buf);
540
541	struct trusted_dom_pass pass;
542	ZERO_STRUCT(pass);
543
544	if (push_ucs2_allocate(&uni_dom_name, domain) == (size_t)-1) {
545	DEBUG(0, ("Could not convert domain name %s to unicode\n",
546	domain));
547	return False;
548	}
549
550	strncpy_w(pass.uni_name, uni_dom_name, sizeof(pass.uni_name) - 1);
551	pass.uni_name_len = strlen_w(uni_dom_name)+1;
552	SAFE_FREE(uni_dom_name);
553
554	/* last change time */
555	pass.mod_time = time(NULL);
556
557	/* password of the trust */
558	pass.pass_len = strlen(pwd);
559	fstrcpy(pass.pass, pwd);
560
561	/* domain sid */
562	sid_copy(&pass.domain_sid, sid);
563
564	pass_len = tdb_trusted_dom_pass_pack(pass_buf, pass_buf_len, &pass);
565
566	return secrets_store(trustdom_keystr(domain), (void *)&pass_buf, pass_len);
567	}
568
569	/************************************************************************
570	Routine to set the plaintext machine account password for a realm
571	the password is assumed to be a null terminated ascii string
572	************************************************************************/
573
574	BOOL secrets_store_machine_password(const char pass, const char domain, uint32 sec_channel)
575	{
576	char *key = NULL;
577	BOOL ret;
578	uint32 last_change_time;
579	uint32 sec_channel_type;
580
581	asprintf(&key, "%s/%s", SECRETS_MACHINE_PASSWORD, domain);
582	if (!key)
583	return False;
584	strupper_m(key);
585
586	ret = secrets_store(key, pass, strlen(pass)+1);
587	SAFE_FREE(key);
588
589	if (!ret)
590	return ret;
591
592	asprintf(&key, "%s/%s", SECRETS_MACHINE_LAST_CHANGE_TIME, domain);
593	if (!key)
594	return False;
595	strupper_m(key);
596
597	SIVAL(&last_change_time, 0, time(NULL));
598	ret = secrets_store(key, &last_change_time, sizeof(last_change_time));
599	SAFE_FREE(key);
600
601	asprintf(&key, "%s/%s", SECRETS_MACHINE_SEC_CHANNEL_TYPE, domain);
602	if (!key)
603	return False;
604	strupper_m(key);
605
606	SIVAL(&sec_channel_type, 0, sec_channel);
607	ret = secrets_store(key, &sec_channel_type, sizeof(sec_channel_type));
608	SAFE_FREE(key);
609
610	return ret;
611	}
612
613	/************************************************************************
614	Routine to fetch the plaintext machine account password for a realm
615	the password is assumed to be a null terminated ascii string.
616	************************************************************************/
617
618	char secrets_fetch_machine_password(const char domain,
619	time_t *pass_last_set_time,
620	uint32 *channel)
621	{
622	char *key = NULL;
623	char *ret;
624	asprintf(&key, "%s/%s", SECRETS_MACHINE_PASSWORD, domain);
625	strupper_m(key);
626	ret = (char *)secrets_fetch(key, NULL);
627	SAFE_FREE(key);
628
629	if (pass_last_set_time) {
630	size_t size;
631	uint32 *last_set_time;
632	asprintf(&key, "%s/%s", SECRETS_MACHINE_LAST_CHANGE_TIME, domain);
633	strupper_m(key);
634	last_set_time = (unsigned int *)secrets_fetch(key, &size);
635	if (last_set_time) {
636	*pass_last_set_time = IVAL(last_set_time,0);
637	SAFE_FREE(last_set_time);
638	} else {
639	*pass_last_set_time = 0;
640	}
641	SAFE_FREE(key);
642	}
643
644	if (channel) {
645	size_t size;
646	uint32 *channel_type;
647	asprintf(&key, "%s/%s", SECRETS_MACHINE_SEC_CHANNEL_TYPE, domain);
648	strupper_m(key);
649	channel_type = (unsigned int *)secrets_fetch(key, &size);
650	if (channel_type) {
651	*channel = IVAL(channel_type,0);
652	SAFE_FREE(channel_type);
653	} else {
654	*channel = get_default_sec_channel();
655	}
656	SAFE_FREE(key);
657	}
658
659	return ret;
660	}
661
662	BOOL is_trusted_domain_situation(const char *domain_name)
663	{
664	return IS_DC &&
665	lp_allow_trusted_domains() &&
666	!strequal(domain_name, lp_workgroup());
667	}
668
669	/*******************************************************************
670	Wrapper around retrieving the clear text trust account password.
671	appropriate account name is stored in account_name.
672	Caller must free password, but not account_name.
673	*******************************************************************/
674
675	BOOL get_trust_pw_clear(const char domain, char *ret_pwd,
676	const char *account_name, uint32 channel)
677	{
678	char *pwd;
679	time_t last_set_time;
680
681	/* if we are a DC and this is not our domain, then lookup an account
682	* for the domain trust */
683
684	if (is_trusted_domain_situation(domain)) {
685	if (!secrets_fetch_trusted_domain_password(domain, ret_pwd,
686	NULL, &last_set_time))
687	{
688	DEBUG(0, ("get_trust_pw: could not fetch trust "
689	"account password for trusted domain %s\n",
690	domain));
691	return False;
692	}
693
694	if (channel != NULL) {
695	*channel = SEC_CHAN_DOMAIN;
696	}
697
698	if (account_name != NULL) {
699	*account_name = lp_workgroup();
700	}
701
702	return True;
703	}
704
705	/* Just get the account for the requested domain. In the future this
706	* might also cover to be member of more than one domain. */
707
708	pwd = secrets_fetch_machine_password(domain, &last_set_time, channel);
709
710	if (pwd != NULL) {
711	*ret_pwd = pwd;
712	if (account_name != NULL) {
713	*account_name = global_myname();
714	}
715
716	return True;
717	}
718
719	DEBUG(5, ("get_trust_pw_clear: could not fetch clear text trust "
720	"account password for domain %s\n", domain));
721	return False;
722	}
723
724	/*******************************************************************
725	Wrapper around retrieving the trust account password.
726	appropriate account name is stored in account_name.
727	*******************************************************************/
728
729	BOOL get_trust_pw_hash(const char *domain, uint8 ret_pwd[16],
730	const char *account_name, uint32 channel)
731	{
732	char *pwd = NULL;
733	time_t last_set_time;
734
735	if (get_trust_pw_clear(domain, &pwd, account_name, channel)) {
736	E_md4hash(pwd, ret_pwd);
737	SAFE_FREE(pwd);
738	return True;
739	} else if (is_trusted_domain_situation(domain)) {
740	return False;
741	}
742
743	/* as a fallback, try to get the hashed pwd directly from the tdb... */
744
745	if (secrets_fetch_trust_account_password_legacy(domain, ret_pwd,
746	&last_set_time,
747	channel))
748	{
749	if (account_name != NULL) {
750	*account_name = global_myname();
751	}
752
753	return True;
754	}
755
756	DEBUG(5, ("get_trust_pw_hash: could not fetch trust account "
757	"password for domain %s\n", domain));
758	return False;
759	}
760
761	/************************************************************************
762	Routine to delete the password for trusted domain
763	************************************************************************/
764
765	BOOL trusted_domain_password_delete(const char *domain)
766	{
767	return secrets_delete(trustdom_keystr(domain));
768	}
769
770	BOOL secrets_store_ldap_pw(const char* dn, char* pw)
771	{
772	char *key = NULL;
773	BOOL ret;
774
775	if (asprintf(&key, "%s/%s", SECRETS_LDAP_BIND_PW, dn) < 0) {
776	DEBUG(0, ("secrets_store_ldap_pw: asprintf failed!\n"));
777	return False;
778	}
779
780	ret = secrets_store(key, pw, strlen(pw)+1);
781
782	SAFE_FREE(key);
783	return ret;
784	}
785
786	/*******************************************************************
787	Find the ldap password.
788	******************************************************************/
789
790	BOOL fetch_ldap_pw(char dn, char pw)
791	{
792	char *key = NULL;
793	size_t size = 0;
794
795	*dn = smb_xstrdup(lp_ldap_admin_dn());
796
797	if (asprintf(&key, "%s/%s", SECRETS_LDAP_BIND_PW, *dn) < 0) {
798	SAFE_FREE(*dn);
799	DEBUG(0, ("fetch_ldap_pw: asprintf failed!\n"));
800	}
801
802	pw=(char )secrets_fetch(key, &size);
803	SAFE_FREE(key);
804
805	if (!size) {
806	/* Upgrade 2.2 style entry */
807	char *p;
808	char* old_style_key = SMB_STRDUP(*dn);
809	char *data;
810	fstring old_style_pw;
811
812	if (!old_style_key) {
813	DEBUG(0, ("fetch_ldap_pw: strdup failed!\n"));
814	return False;
815	}
816
817	for (p=old_style_key; *p; p++)
818	if (p == ',') p = '/';
819
820	data=(char *)secrets_fetch(old_style_key, &size);
821	if (!size && size < sizeof(old_style_pw)) {
822	DEBUG(0,("fetch_ldap_pw: neither ldap secret retrieved!\n"));
823	SAFE_FREE(old_style_key);
824	SAFE_FREE(*dn);
825	return False;
826	}
827
828	size = MIN(size, sizeof(fstring)-1);
829	strncpy(old_style_pw, data, size);
830	old_style_pw[size] = 0;
831
832	SAFE_FREE(data);
833
834	if (!secrets_store_ldap_pw(*dn, old_style_pw)) {
835	DEBUG(0,("fetch_ldap_pw: ldap secret could not be upgraded!\n"));
836	SAFE_FREE(old_style_key);
837	SAFE_FREE(*dn);
838	return False;
839	}
840	if (!secrets_delete(old_style_key)) {
841	DEBUG(0,("fetch_ldap_pw: old ldap secret could not be deleted!\n"));
842	}
843
844	SAFE_FREE(old_style_key);
845
846	*pw = smb_xstrdup(old_style_pw);
847	}
848
849	return True;
850	}
851
852	/**
853	* Get trusted domains info from secrets.tdb.
854	**/
855
856	NTSTATUS secrets_trusted_domains(TALLOC_CTX mem_ctx, uint32 num_domains,
857	struct trustdom_info ***domains)
858	{
859	TDB_LIST_NODE keys, k;
860	char *pattern;
861	TALLOC_CTX *tmp_ctx;
862
863	if (!(tmp_ctx = talloc_new(mem_ctx))) {
864	return NT_STATUS_NO_MEMORY;
865	}
866
867	if (!secrets_init()) return NT_STATUS_ACCESS_DENIED;
868
869	/* generate searching pattern */
870	pattern = talloc_asprintf(tmp_ctx, "%s/*", SECRETS_DOMTRUST_ACCT_PASS);
871	if (pattern == NULL) {
872	DEBUG(0, ("secrets_trusted_domains: talloc_asprintf() "
873	"failed!\n"));
874	TALLOC_FREE(tmp_ctx);
875	return NT_STATUS_NO_MEMORY;
876	}
877
878	*num_domains = 0;
879
880	/*
881	* Make sure that a talloc context for the trustdom_info structs
882	* exists
883	*/
884
885	if (!(domains = TALLOC_ARRAY(mem_ctx, struct trustdom_info , 1))) {
886	TALLOC_FREE(tmp_ctx);
887	return NT_STATUS_NO_MEMORY;
888	}
889
890	/* fetching trusted domains' data and collecting them in a list */
891	keys = tdb_search_keys(tdb, pattern);
892
893	/* searching for keys in secrets db -- way to go ... */
894	for (k = keys; k; k = k->next) {
895	char *packed_pass;
896	size_t size = 0, packed_size = 0;
897	struct trusted_dom_pass pass;
898	char *secrets_key;
899	struct trustdom_info *dom_info;
900
901	/* important: ensure null-termination of the key string */
902	secrets_key = talloc_strndup(tmp_ctx,
903	k->node_key.dptr,
904	k->node_key.dsize);
905	if (!secrets_key) {
906	DEBUG(0, ("strndup failed!\n"));
907	tdb_search_list_free(keys);
908	TALLOC_FREE(tmp_ctx);
909	return NT_STATUS_NO_MEMORY;
910	}
911
912	packed_pass = (char *)secrets_fetch(secrets_key, &size);
913	packed_size = tdb_trusted_dom_pass_unpack(packed_pass, size,
914	&pass);
915	/* packed representation isn't needed anymore */
916	SAFE_FREE(packed_pass);
917
918	if (size != packed_size) {
919	DEBUG(2, ("Secrets record %s is invalid!\n",
920	secrets_key));
921	continue;
922	}
923
924	if (pass.domain_sid.num_auths != 4) {
925	DEBUG(0, ("SID %s is not a domain sid, has %d "
926	"auths instead of 4\n",
927	sid_string_static(&pass.domain_sid),
928	pass.domain_sid.num_auths));
929	continue;
930	}
931
932	if (!(dom_info = TALLOC_P(*domains, struct trustdom_info))) {
933	DEBUG(0, ("talloc failed\n"));
934	tdb_search_list_free(keys);
935	TALLOC_FREE(tmp_ctx);
936	return NT_STATUS_NO_MEMORY;
937	}
938
939	if (pull_ucs2_talloc(dom_info, &dom_info->name,
940	pass.uni_name) == (size_t)-1) {
941	DEBUG(2, ("pull_ucs2_talloc failed\n"));
942	tdb_search_list_free(keys);
943	TALLOC_FREE(tmp_ctx);
944	return NT_STATUS_NO_MEMORY;
945	}
946
947	sid_copy(&dom_info->sid, &pass.domain_sid);
948
949	ADD_TO_ARRAY(domains, struct trustdom_info , dom_info,
950	domains, num_domains);
951
952	if (*domains == NULL) {
953	tdb_search_list_free(keys);
954	TALLOC_FREE(tmp_ctx);
955	return NT_STATUS_NO_MEMORY;
956	}
957	}
958
959	DEBUG(5, ("secrets_get_trusted_domains: got %d domains\n",
960	*num_domains));
961
962	/* free the results of searching the keys */
963	tdb_search_list_free(keys);
964	TALLOC_FREE(tmp_ctx);
965
966	return NT_STATUS_OK;
967	}
968
969	/*******************************************************************************
970	Lock the secrets tdb based on a string - this is used as a primitive form of mutex
971	between smbd instances.
972	*******************************************************************************/
973
974	BOOL secrets_named_mutex(const char *name, unsigned int timeout)
975	{
976	int ret = 0;
977
978	if (!secrets_init())
979	return False;
980
981	ret = tdb_lock_bystring_with_timeout(tdb, name, timeout);
982	if (ret == 0)
983	DEBUG(10,("secrets_named_mutex: got mutex for %s\n", name ));
984
985	return (ret == 0);
986	}
987
988	/*******************************************************************************
989	Unlock a named mutex.
990	*******************************************************************************/
991
992	void secrets_named_mutex_release(const char *name)
993	{
994	tdb_unlock_bystring(tdb, name);
995	DEBUG(10,("secrets_named_mutex: released mutex for %s\n", name ));
996	}
997
998	/*******************************************************************************
999	Store a complete AFS keyfile into secrets.tdb.
1000	*******************************************************************************/
1001
1002	BOOL secrets_store_afs_keyfile(const char cell, const struct afs_keyfile keyfile)
1003	{
1004	fstring key;
1005
1006	if ((cell == NULL) \|\| (keyfile == NULL))
1007	return False;
1008
1009	if (ntohl(keyfile->nkeys) > SECRETS_AFS_MAXKEYS)
1010	return False;
1011
1012	slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_AFS_KEYFILE, cell);
1013	return secrets_store(key, keyfile, sizeof(struct afs_keyfile));
1014	}
1015
1016	/*******************************************************************************
1017	Fetch the current (highest) AFS key from secrets.tdb
1018	*******************************************************************************/
1019	BOOL secrets_fetch_afs_key(const char cell, struct afs_key result)
1020	{
1021	fstring key;
1022	struct afs_keyfile *keyfile;
1023	size_t size = 0;
1024	uint32 i;
1025
1026	slprintf(key, sizeof(key)-1, "%s/%s", SECRETS_AFS_KEYFILE, cell);
1027
1028	keyfile = (struct afs_keyfile *)secrets_fetch(key, &size);
1029
1030	if (keyfile == NULL)
1031	return False;
1032
1033	if (size != sizeof(struct afs_keyfile)) {
1034	SAFE_FREE(keyfile);
1035	return False;
1036	}
1037
1038	i = ntohl(keyfile->nkeys);
1039
1040	if (i > SECRETS_AFS_MAXKEYS) {
1041	SAFE_FREE(keyfile);
1042	return False;
1043	}
1044
1045	*result = keyfile->entry[i-1];
1046
1047	result->kvno = ntohl(result->kvno);
1048
1049	return True;
1050	}
1051
1052	/******************************************************************************
1053	When kerberos is not available, choose between anonymous or
1054	authenticated connections.
1055
1056	We need to use an authenticated connection if DCs have the
1057	RestrictAnonymous registry entry set > 0, or the "Additional
1058	restrictions for anonymous connections" set in the win2k Local
1059	Security Policy.
1060
1061	Caller to free() result in domain, username, password
1062	*******************************************************************************/
1063	void secrets_fetch_ipc_userpass(char username, char domain, char **password)
1064	{
1065	username = (char )secrets_fetch(SECRETS_AUTH_USER, NULL);
1066	domain = (char )secrets_fetch(SECRETS_AUTH_DOMAIN, NULL);
1067	password = (char )secrets_fetch(SECRETS_AUTH_PASSWORD, NULL);
1068
1069	if (username && *username) {
1070
1071	if (!domain \|\| !*domain)
1072	*domain = smb_xstrdup(lp_workgroup());
1073
1074	if (!password \|\| !*password)
1075	*password = smb_xstrdup("");
1076
1077	DEBUG(3, ("IPC$ connections done by user %s\\%s\n",
1078	domain, username));
1079
1080	} else {
1081	DEBUG(3, ("IPC$ connections done anonymously\n"));
1082	*username = smb_xstrdup("");
1083	*domain = smb_xstrdup("");
1084	*password = smb_xstrdup("");
1085	}
1086	}
1087
1088	/******************************************************************************
1089	Open or create the schannel session store tdb.
1090	*******************************************************************************/
1091
1092	static TDB_CONTEXT open_schannel_session_store(TALLOC_CTX mem_ctx)
1093	{
1094	TDB_DATA vers;
1095	uint32 ver;
1096	TDB_CONTEXT *tdb_sc = NULL;
1097	char *fname = talloc_asprintf(mem_ctx, "%s/schannel_store.tdb", lp_private_dir());
1098
1099	if (!fname) {
1100	return NULL;
1101	}
1102
1103	tdb_sc = tdb_open_log(fname, 0, TDB_DEFAULT, O_RDWR\|O_CREAT, 0600);
1104
1105	if (!tdb_sc) {
1106	DEBUG(0,("open_schannel_session_store: Failed to open %s\n", fname));
1107	TALLOC_FREE(fname);
1108	return NULL;
1109	}
1110
1111	vers = tdb_fetch_bystring(tdb_sc, "SCHANNEL_STORE_VERSION");
1112	if (vers.dptr == NULL) {
1113	/* First opener, no version. */
1114	SIVAL(&ver,0,1);
1115	vers.dptr = (char *)&ver;
1116	vers.dsize = 4;
1117	tdb_store_bystring(tdb_sc, "SCHANNEL_STORE_VERSION", vers, TDB_REPLACE);
1118	vers.dptr = NULL;
1119	} else if (vers.dsize == 4) {
1120	ver = IVAL(vers.dptr,0);
1121	if (ver != 1) {
1122	tdb_close(tdb_sc);
1123	tdb_sc = NULL;
1124	DEBUG(0,("open_schannel_session_store: wrong version number %d in %s\n",
1125	(int)ver, fname ));
1126	}
1127	} else {
1128	tdb_close(tdb_sc);
1129	tdb_sc = NULL;
1130	DEBUG(0,("open_schannel_session_store: wrong version number size %d in %s\n",
1131	(int)vers.dsize, fname ));
1132	}
1133
1134	SAFE_FREE(vers.dptr);
1135	TALLOC_FREE(fname);
1136
1137	return tdb_sc;
1138	}
1139
1140	/******************************************************************************
1141	Store the schannel state after an AUTH2 call.
1142	Note we must be root here.
1143	*******************************************************************************/
1144
1145	BOOL secrets_store_schannel_session_info(TALLOC_CTX *mem_ctx,
1146	const char *remote_machine,
1147	const struct dcinfo *pdc)
1148	{
1149	TDB_CONTEXT *tdb_sc = NULL;
1150	TDB_DATA value;
1151	BOOL ret;
1152	char *keystr = talloc_asprintf(mem_ctx, "%s/%s", SECRETS_SCHANNEL_STATE,
1153	remote_machine);
1154	if (!keystr) {
1155	return False;
1156	}
1157
1158	strupper_m(keystr);
1159
1160	/* Work out how large the record is. */
1161	value.dsize = tdb_pack(NULL, 0, "dBBBBBfff",
1162	pdc->sequence,
1163	8, pdc->seed_chal.data,
1164	8, pdc->clnt_chal.data,
1165	8, pdc->srv_chal.data,
1166	16, pdc->sess_key,
1167	16, pdc->mach_pw,
1168	pdc->mach_acct,
1169	pdc->remote_machine,
1170	pdc->domain);
1171
1172	value.dptr = (char *)TALLOC(mem_ctx, value.dsize);
1173	if (!value.dptr) {
1174	TALLOC_FREE(keystr);
1175	return False;
1176	}
1177
1178	value.dsize = tdb_pack(value.dptr, value.dsize, "dBBBBBfff",
1179	pdc->sequence,
1180	8, pdc->seed_chal.data,
1181	8, pdc->clnt_chal.data,
1182	8, pdc->srv_chal.data,
1183	16, pdc->sess_key,
1184	16, pdc->mach_pw,
1185	pdc->mach_acct,
1186	pdc->remote_machine,
1187	pdc->domain);
1188
1189	tdb_sc = open_schannel_session_store(mem_ctx);
1190	if (!tdb_sc) {
1191	TALLOC_FREE(keystr);
1192	TALLOC_FREE(value.dptr);
1193	return False;
1194	}
1195
1196	ret = (tdb_store_bystring(tdb_sc, keystr, value, TDB_REPLACE) == 0 ? True : False);
1197
1198	DEBUG(3,("secrets_store_schannel_session_info: stored schannel info with key %s\n",
1199	keystr ));
1200
1201	tdb_close(tdb_sc);
1202	TALLOC_FREE(keystr);
1203	TALLOC_FREE(value.dptr);
1204	return ret;
1205	}
1206
1207	/******************************************************************************
1208	Restore the schannel state on a client reconnect.
1209	Note we must be root here.
1210	*******************************************************************************/
1211
1212	BOOL secrets_restore_schannel_session_info(TALLOC_CTX *mem_ctx,
1213	const char *remote_machine,
1214	struct dcinfo **ppdc)
1215	{
1216	TDB_CONTEXT *tdb_sc = NULL;
1217	TDB_DATA value;
1218	unsigned char *pseed_chal = NULL;
1219	unsigned char *pclnt_chal = NULL;
1220	unsigned char *psrv_chal = NULL;
1221	unsigned char *psess_key = NULL;
1222	unsigned char *pmach_pw = NULL;
1223	uint32 l1, l2, l3, l4, l5;
1224	int ret;
1225	struct dcinfo *pdc = NULL;
1226	char *keystr = talloc_asprintf(mem_ctx, "%s/%s", SECRETS_SCHANNEL_STATE,
1227	remote_machine);
1228
1229	*ppdc = NULL;
1230
1231	if (!keystr) {
1232	return False;
1233	}
1234
1235	strupper_m(keystr);
1236
1237	tdb_sc = open_schannel_session_store(mem_ctx);
1238	if (!tdb_sc) {
1239	TALLOC_FREE(keystr);
1240	return False;
1241	}
1242
1243	value = tdb_fetch_bystring(tdb_sc, keystr);
1244	if (!value.dptr) {
1245	DEBUG(0,("secrets_restore_schannel_session_info: Failed to find entry with key %s\n",
1246	keystr ));
1247	tdb_close(tdb_sc);
1248	return False;
1249	}
1250
1251	pdc = TALLOC_ZERO_P(mem_ctx, struct dcinfo);
1252
1253	/* Retrieve the record. */
1254	ret = tdb_unpack(value.dptr, value.dsize, "dBBBBBfff",
1255	&pdc->sequence,
1256	&l1, &pseed_chal,
1257	&l2, &pclnt_chal,
1258	&l3, &psrv_chal,
1259	&l4, &psess_key,
1260	&l5, &pmach_pw,
1261	&pdc->mach_acct,
1262	&pdc->remote_machine,
1263	&pdc->domain);
1264
1265	if (ret == -1 \|\| l1 != 8 \|\| l2 != 8 \|\| l3 != 8 \|\| l4 != 16 \|\| l5 != 16) {
1266	/* Bad record - delete it. */
1267	tdb_delete_bystring(tdb_sc, keystr);
1268	tdb_close(tdb_sc);
1269	TALLOC_FREE(keystr);
1270	TALLOC_FREE(pdc);
1271	SAFE_FREE(pseed_chal);
1272	SAFE_FREE(pclnt_chal);
1273	SAFE_FREE(psrv_chal);
1274	SAFE_FREE(psess_key);
1275	SAFE_FREE(pmach_pw);
1276	SAFE_FREE(value.dptr);
1277	return False;
1278	}
1279
1280	tdb_close(tdb_sc);
1281
1282	memcpy(pdc->seed_chal.data, pseed_chal, 8);
1283	memcpy(pdc->clnt_chal.data, pclnt_chal, 8);
1284	memcpy(pdc->srv_chal.data, psrv_chal, 8);
1285	memcpy(pdc->sess_key, psess_key, 16);
1286	memcpy(pdc->mach_pw, pmach_pw, 16);
1287
1288	/* We know these are true so didn't bother to store them. */
1289	pdc->challenge_sent = True;
1290	pdc->authenticated = True;
1291
1292	DEBUG(3,("secrets_restore_schannel_session_info: restored schannel info key %s\n",
1293	keystr ));
1294
1295	SAFE_FREE(pseed_chal);
1296	SAFE_FREE(pclnt_chal);
1297	SAFE_FREE(psrv_chal);
1298	SAFE_FREE(psess_key);
1299	SAFE_FREE(pmach_pw);
1300
1301	TALLOC_FREE(keystr);
1302	SAFE_FREE(value.dptr);
1303
1304	*ppdc = pdc;
1305
1306	return True;
1307	}
1308
1309	BOOL secrets_store_generic(const char owner, const char key, const char *secret)
1310	{
1311	char *tdbkey = NULL;
1312	BOOL ret;
1313
1314	if (asprintf(&tdbkey, "SECRETS/GENERIC/%s/%s", owner, key) < 0) {
1315	DEBUG(0, ("asprintf failed!\n"));
1316	return False;
1317	}
1318
1319	ret = secrets_store(tdbkey, secret, strlen(secret)+1);
1320
1321	SAFE_FREE(tdbkey);
1322	return ret;
1323	}
1324
1325	/*******************************************************************
1326	Find the ldap password.
1327	******************************************************************/
1328
1329	char secrets_fetch_generic(const char owner, const char *key)
1330	{
1331	char *secret = NULL;
1332	char *tdbkey = NULL;
1333
1334	if (( ! owner) \|\| ( ! key)) {
1335	DEBUG(1, ("Invalid Paramters"));
1336	return NULL;
1337	}
1338
1339	if (asprintf(&tdbkey, "SECRETS/GENERIC/%s/%s", owner, key) < 0) {
1340	DEBUG(0, ("Out of memory!\n"));
1341	return NULL;
1342	}
1343
1344	secret = (char *)secrets_fetch(tdbkey, NULL);
1345	SAFE_FREE(tdbkey);
1346
1347	return secret;
1348	}
1349

Note: See TracBrowser for help on using the repository browser.

Download in other formats: