search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
s3:lib: Make sure that have_rsrc is initialized
[Samba.git] / source3 / auth / auth_builtin.c
blobf16b3cc2934e71d2b9d9c8fcb00454b31aa061c7
1 /*
2 Unix SMB/CIFS implementation.
3 Generic authentication types
4 Copyright (C) Andrew Bartlett 2001-2002
5 Copyright (C) Jelmer Vernooij 2002
6
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3 of the License, or
10 (at your option) any later version.
11
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
16
17 You should have received a copy of the GNU General Public License
18 along with this program. If not, see <http://www.gnu.org/licenses/>.
19 */
20
21 #include "includes.h"
22 #include "auth.h"
23
24 #undef DBGC_CLASS
25 #define DBGC_CLASS DBGC_AUTH
26
27 /**
28 * Return a guest logon for anonymous users (username = "")
29 *
30 * Typically used as the first module in the auth chain, this allows
31 * guest logons to be dealt with in one place. Non-guest logons 'fail'
32 * and pass onto the next module.
33 **/
34
35 static NTSTATUS check_anonymous_security(const struct auth_context *auth_context,
36 void *my_private_data,
37 TALLOC_CTX *mem_ctx,
38 const struct auth_usersupplied_info *user_info,
39 struct auth_serversupplied_info **server_info)
40 {
41 DEBUG(10, ("Check auth for: [%s]\n", user_info->mapped.account_name));
42
43 if (user_info->mapped.account_name && *user_info->mapped.account_name) {
44 /* mark this as 'not for me' */
45 return NT_STATUS_NOT_IMPLEMENTED;
46 }
47
48 switch (user_info->password_state) {
49 case AUTH_PASSWORD_PLAIN:
50 if (user_info->password.plaintext != NULL &&
51 strlen(user_info->password.plaintext) > 0)
52 {
53 /* mark this as 'not for me' */
54 return NT_STATUS_NOT_IMPLEMENTED;
55 }
56 break;
57 case AUTH_PASSWORD_HASH:
58 if (user_info->password.hash.lanman != NULL) {
59 /* mark this as 'not for me' */
60 return NT_STATUS_NOT_IMPLEMENTED;
61 }
62 if (user_info->password.hash.nt != NULL) {
63 /* mark this as 'not for me' */
64 return NT_STATUS_NOT_IMPLEMENTED;
65 }
66 break;
67 case AUTH_PASSWORD_RESPONSE:
68 if (user_info->password.response.lanman.length == 1) {
69 if (user_info->password.response.lanman.data[0] != '\0') {
70 /* mark this as 'not for me' */
71 return NT_STATUS_NOT_IMPLEMENTED;
72 }
73 } else if (user_info->password.response.lanman.length > 1) {
74 /* mark this as 'not for me' */
75 return NT_STATUS_NOT_IMPLEMENTED;
76 }
77 if (user_info->password.response.nt.length > 0) {
78 /* mark this as 'not for me' */
79 return NT_STATUS_NOT_IMPLEMENTED;
80 }
81 break;
82 }
83
84 return make_server_info_anonymous(NULL, server_info);
85 }
86
87 /* Guest modules initialisation */
88
89 static NTSTATUS auth_init_anonymous(
90 struct auth_context *auth_context,
91 const char *options,
92 struct auth_methods **auth_method)
93 {
94 struct auth_methods *result;
95
96 result = talloc_zero(auth_context, struct auth_methods);
97 if (result == NULL) {
98 return NT_STATUS_NO_MEMORY;
99 }
100 result->auth = check_anonymous_security;
101 result->name = "anonymous";
102
103 *auth_method = result;
104 return NT_STATUS_OK;
105 }
106
107 #ifdef DEVELOPER
108 /**
109 * Return an error based on username
110 *
111 * This function allows the testing of obsure errors, as well as the generation
112 * of NT_STATUS -> DOS error mapping tables.
113 *
114 * This module is of no value to end-users.
115 *
116 * The password is ignored.
117 *
118 * @return An NTSTATUS value based on the username
119 **/
120
121 static NTSTATUS check_name_to_ntstatus_security(const struct auth_context *auth_context,
122 void *my_private_data,
123 TALLOC_CTX *mem_ctx,
124 const struct auth_usersupplied_info *user_info,
125 struct auth_serversupplied_info **server_info)
126 {
127 NTSTATUS nt_status;
128 fstring user;
129 long error_num;
130
131 DEBUG(10, ("Check auth for: [%s]\n", user_info->mapped.account_name));
132
133 fstrcpy(user, user_info->client.account_name);
134
135 if (strnequal("NT_STATUS", user, strlen("NT_STATUS"))) {
136 if (!strupper_m(user)) {
137 return NT_STATUS_INVALID_PARAMETER;
138 }
139 return nt_status_string_to_code(user);
140 }
141
142 if (!strlower_m(user)) {
143 return NT_STATUS_INVALID_PARAMETER;
144 }
145 error_num = strtoul(user, NULL, 16);
146
147 DEBUG(5,("check_name_to_ntstatus_security: Error for user %s was %lx\n", user, error_num));
148
149 nt_status = NT_STATUS(error_num);
150
151 return nt_status;
152 }
153
154 /** Module initialisation function */
155
156 static NTSTATUS auth_init_name_to_ntstatus(
157 struct auth_context *auth_context,
158 const char *param,
159 struct auth_methods **auth_method)
160 {
161 struct auth_methods *result;
162
163 result = talloc_zero(auth_context, struct auth_methods);
164 if (result == NULL) {
165 return NT_STATUS_NO_MEMORY;
166 }
167 result->auth = check_name_to_ntstatus_security;
168 result->name = "name_to_ntstatus";
169
170 *auth_method = result;
171 return NT_STATUS_OK;
172 }
173
174 #endif /* DEVELOPER */
175
176 NTSTATUS auth_builtin_init(TALLOC_CTX *mem_ctx)
177 {
178 smb_register_auth(AUTH_INTERFACE_VERSION, "anonymous", auth_init_anonymous);
179 #ifdef DEVELOPER
180 smb_register_auth(AUTH_INTERFACE_VERSION, "name_to_ntstatus", auth_init_name_to_ntstatus);
181 #endif
182 return NT_STATUS_OK;
183 }
Samba GIT mirror