struct ldb_message *msg,
struct sdb_entry *entry)
{
+ TALLOC_CTX *tmp_ctx = NULL;
struct loadparm_context *lp_ctx = kdc_db_ctx->lp_ctx;
uint32_t userAccountControl;
uint32_t msDS_User_Account_Control_Computed;
ZERO_STRUCTP(entry);
+ tmp_ctx = talloc_new(mem_ctx);
+ if (tmp_ctx == NULL) {
+ return ENOMEM;
+ }
+
if (supported_enctypes == 0) {
supported_enctypes = default_supported_enctypes;
}
is_computer = TRUE;
}
- p = talloc_zero(mem_ctx, struct samba_kdc_entry);
+ p = talloc_zero(tmp_ctx, struct samba_kdc_entry);
if (!p) {
ret = ENOMEM;
goto out;
*/
if (krb5_princ_size(context, principal) > 2) {
char *third_part
- = smb_krb5_principal_get_comp_string(mem_ctx,
+ = smb_krb5_principal_get_comp_string(tmp_ctx,
context,
principal,
2);
entry->flags.server = 1;
realm = smb_krb5_principal_get_realm(
- mem_ctx, context, principal);
+ tmp_ctx, context, principal);
if (realm == NULL) {
ret = ENOMEM;
goto out;
(flags & SDB_F_FOR_AS_REQ) &&
!(flags & SDB_F_ARMOR_PRINCIPAL))
{
- ret = authn_policy_kerberos_client(kdc_db_ctx->samdb, mem_ctx, msg,
+ ret = authn_policy_kerberos_client(kdc_db_ctx->samdb, tmp_ctx, msg,
&authn_client_policy);
if (ret) {
goto out;
* apply to it.
*/
if (ent_type == SAMBA_KDC_ENT_TYPE_SERVER) {
- ret = authn_policy_server(kdc_db_ctx->samdb, mem_ctx, msg,
+ ret = authn_policy_server(kdc_db_ctx->samdb, tmp_ctx, msg,
&authn_server_policy);
if (ret) {
goto out;
sdb_entry_free(entry);
}
+ talloc_free(tmp_ctx);
return ret;
}
struct ldb_message *msg,
struct sdb_entry *entry)
{
+ TALLOC_CTX *tmp_ctx = NULL;
struct loadparm_context *lp_ctx = kdc_db_ctx->lp_ctx;
const char *our_realm = lpcfg_realm(lp_ctx);
char *partner_realm = NULL;
ZERO_STRUCTP(entry);
+ tmp_ctx = talloc_new(mem_ctx);
+ if (tmp_ctx == NULL) {
+ return ENOMEM;
+ }
+
if (dsdb_functional_level(kdc_db_ctx->samdb) >= DS_DOMAIN_FUNCTION_2008) {
/* If not told otherwise, Windows now assumes that trusts support AES. */
supported_enctypes = ldb_msg_find_attr_as_uint(msg,
supported_enctypes &= kdc_enctypes;
supported_session_etypes &= kdc_enctypes;
- status = dsdb_trust_parse_tdo_info(mem_ctx, msg, &tdo);
+ status = dsdb_trust_parse_tdo_info(tmp_ctx, msg, &tdo);
if (!NT_STATUS_IS_OK(status)) {
krb5_clear_error_message(context);
ret = ENOMEM;
ret = SDB_ERR_NOENTRY;
goto out;
}
- partner_realm = strupper_talloc(mem_ctx, tdo->domain_name.string);
+ partner_realm = strupper_talloc(tmp_ctx, tdo->domain_name.string);
if (partner_realm == NULL) {
krb5_clear_error_message(context);
ret = ENOMEM;
goto out;
}
- ndr_err = ndr_pull_struct_blob(password_val, mem_ctx, &password_blob,
+ ndr_err = ndr_pull_struct_blob(password_val, tmp_ctx, &password_blob,
(ndr_pull_flags_fn_t)ndr_pull_trustAuthInOutBlob);
if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
krb5_clear_error_message(context);
goto out;
}
- p = talloc_zero(mem_ctx, struct samba_kdc_entry);
+ p = talloc_zero(tmp_ctx, struct samba_kdc_entry);
if (!p) {
ret = ENOMEM;
goto out;
break;
}
- ok = convert_string_talloc(mem_ctx,
+ ok = convert_string_talloc(tmp_ctx,
CH_UTF16MUNGED, CH_UTF8,
password_utf16.data,
password_utf16.length,
sdb_entry_free(entry);
}
+ talloc_free(tmp_ctx);
return ret;
}
projects / thirdparty / samba.git / commitdiff
