git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 97b72e3) | patch
s3:secrets: add infrastructure to use secrets_domain_infoB to store credentials
authorStefan Metzmacher <metze@samba.org>
Fri, 19 May 2017 14:28:17 +0000 (16:28 +0200)
committerStefan Metzmacher <metze@samba.org>
Thu, 13 Jul 2017 08:51:20 +0000 (10:51 +0200)
commitf3da29546508024971153081f7714b6846b4d1fa
treed0343bf1b7f791ca161805bb7edfb0131a10f4e6tree
parent97b72e3f1cdddcd11964e96b9d549a1b6ebfbbd3commit | diff
s3:secrets: add infrastructure to use secrets_domain_infoB to store credentials

We now store various hashed keys at change time and maintain a lot of details
that will help debugging failed password changes.

We keep storing the legacy values:
 SECRETS/SID/
 SECRETS/DOMGUID/
 SECRETS/MACHINE_LAST_CHANGE_TIME/
 SECRETS/MACHINE_PASSWORD/
 SECRETS/MACHINE_PASSWORD.PREV/
 SECRETS/SALTING_PRINCIPAL/DES/

This allows downgrades to older Samba versions.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=12782

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>
(cherry picked from commit 5f0038fba612afd7fc15b7ab321df979891170d8)
source3/include/secrets.h diff | blob | history
source3/passdb/machine_account_secrets.c diff | blob | history
Samba Shared Repository