search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
r22702: Convert both lookup name and lookup sid to follow the
[Samba.git] / source / nsswitch / winbindd_async.c
blob2ac40ccf3dd50a8a29288e3b5a697e722d7ca980
1 /*
2 Unix SMB/CIFS implementation.
3
4 Async helpers for blocking functions
5
6 Copyright (C) Volker Lendecke 2005
7 Copyright (C) Gerald Carter 2006
8
9 The helpers always consist of three functions:
10
11 * A request setup function that takes the necessary parameters together
12 with a continuation function that is to be called upon completion
13
14 * A private continuation function that is internal only. This is to be
15 called by the lower-level functions in do_async(). Its only task is to
16 properly call the continuation function named above.
17
18 * A worker function that is called inside the appropriate child process.
19
20 This program is free software; you can redistribute it and/or modify
21 it under the terms of the GNU General Public License as published by
22 the Free Software Foundation; either version 2 of the License, or
23 (at your option) any later version.
24
25 This program is distributed in the hope that it will be useful,
26 but WITHOUT ANY WARRANTY; without even the implied warranty of
27 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
28 GNU General Public License for more details.
29
30 You should have received a copy of the GNU General Public License
31 along with this program; if not, write to the Free Software
32 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
33 */
34
35 #include "includes.h"
36 #include "winbindd.h"
37
38 #undef DBGC_CLASS
39 #define DBGC_CLASS DBGC_WINBIND
40
41 struct do_async_state {
42 TALLOC_CTX *mem_ctx;
43 struct winbindd_request request;
44 struct winbindd_response response;
45 void (*cont)(TALLOC_CTX *mem_ctx,
46 BOOL success,
47 struct winbindd_response *response,
48 void *c, void *private_data);
49 void *c, *private_data;
50 };
51
52 static void do_async_recv(void *private_data, BOOL success)
53 {
54 struct do_async_state *state =
55 talloc_get_type_abort(private_data, struct do_async_state);
56
57 state->cont(state->mem_ctx, success, &state->response,
58 state->c, state->private_data);
59 }
60
61 static void do_async(TALLOC_CTX *mem_ctx, struct winbindd_child *child,
62 const struct winbindd_request *request,
63 void (*cont)(TALLOC_CTX *mem_ctx, BOOL success,
64 struct winbindd_response *response,
65 void *c, void *private_data),
66 void *c, void *private_data)
67 {
68 struct do_async_state *state;
69
70 state = TALLOC_ZERO_P(mem_ctx, struct do_async_state);
71 if (state == NULL) {
72 DEBUG(0, ("talloc failed\n"));
73 cont(mem_ctx, False, NULL, c, private_data);
74 return;
75 }
76
77 state->mem_ctx = mem_ctx;
78 state->request = *request;
79 state->request.length = sizeof(state->request);
80 state->cont = cont;
81 state->c = c;
82 state->private_data = private_data;
83
84 async_request(mem_ctx, child, &state->request,
85 &state->response, do_async_recv, state);
86 }
87
88 void do_async_domain(TALLOC_CTX *mem_ctx, struct winbindd_domain *domain,
89 const struct winbindd_request *request,
90 void (*cont)(TALLOC_CTX *mem_ctx, BOOL success,
91 struct winbindd_response *response,
92 void *c, void *private_data),
93 void *c, void *private_data)
94 {
95 struct do_async_state *state;
96
97 state = TALLOC_ZERO_P(mem_ctx, struct do_async_state);
98 if (state == NULL) {
99 DEBUG(0, ("talloc failed\n"));
100 cont(mem_ctx, False, NULL, c, private_data);
101 return;
102 }
103
104 state->mem_ctx = mem_ctx;
105 state->request = *request;
106 state->request.length = sizeof(state->request);
107 state->cont = cont;
108 state->c = c;
109 state->private_data = private_data;
110
111 async_domain_request(mem_ctx, domain, &state->request,
112 &state->response, do_async_recv, state);
113 }
114
115 static void winbindd_set_mapping_recv(TALLOC_CTX *mem_ctx, BOOL success,
116 struct winbindd_response *response,
117 void *c, void *private_data)
118 {
119 void (*cont)(void *priv, BOOL succ) = (void (*)(void *, BOOL))c;
120
121 if (!success) {
122 DEBUG(5, ("Could not trigger idmap_set_mapping\n"));
123 cont(private_data, False);
124 return;
125 }
126
127 if (response->result != WINBINDD_OK) {
128 DEBUG(5, ("idmap_set_mapping returned an error\n"));
129 cont(private_data, False);
130 return;
131 }
132
133 cont(private_data, True);
134 }
135
136 void winbindd_set_mapping_async(TALLOC_CTX *mem_ctx, const struct id_map *map,
137 void (*cont)(void *private_data, BOOL success),
138 void *private_data)
139 {
140 struct winbindd_request request;
141 ZERO_STRUCT(request);
142 request.cmd = WINBINDD_DUAL_SET_MAPPING;
143 request.data.dual_idmapset.id = map->xid.id;
144 request.data.dual_idmapset.type = map->xid.type;
145 sid_to_string(request.data.dual_idmapset.sid, map->sid);
146
147 do_async(mem_ctx, idmap_child(), &request, winbindd_set_mapping_recv,
148 (void *)cont, private_data);
149 }
150
151 enum winbindd_result winbindd_dual_set_mapping(struct winbindd_domain *domain,
152 struct winbindd_cli_state *state)
153 {
154 struct id_map map;
155 DOM_SID sid;
156 NTSTATUS result;
157
158 DEBUG(3, ("[%5lu]: dual_idmapset\n", (unsigned long)state->pid));
159
160 if (!string_to_sid(&sid, state->request.data.dual_idmapset.sid))
161 return WINBINDD_ERROR;
162
163 map.sid = &sid;
164 map.xid.id = state->request.data.dual_idmapset.id;
165 map.xid.type = state->request.data.dual_idmapset.type;
166 map.status = ID_MAPPED;
167
168 result = idmap_set_mapping(&map);
169 return NT_STATUS_IS_OK(result) ? WINBINDD_OK : WINBINDD_ERROR;
170 }
171
172 static void winbindd_set_hwm_recv(TALLOC_CTX *mem_ctx, BOOL success,
173 struct winbindd_response *response,
174 void *c, void *private_data)
175 {
176 void (*cont)(void *priv, BOOL succ) = (void (*)(void *, BOOL))c;
177
178 if (!success) {
179 DEBUG(5, ("Could not trigger idmap_set_hwm\n"));
180 cont(private_data, False);
181 return;
182 }
183
184 if (response->result != WINBINDD_OK) {
185 DEBUG(5, ("idmap_set_hwm returned an error\n"));
186 cont(private_data, False);
187 return;
188 }
189
190 cont(private_data, True);
191 }
192
193 void winbindd_set_hwm_async(TALLOC_CTX *mem_ctx, const struct unixid *xid,
194 void (*cont)(void *private_data, BOOL success),
195 void *private_data)
196 {
197 struct winbindd_request request;
198 ZERO_STRUCT(request);
199 request.cmd = WINBINDD_DUAL_SET_HWM;
200 request.data.dual_idmapset.id = xid->id;
201 request.data.dual_idmapset.type = xid->type;
202
203 do_async(mem_ctx, idmap_child(), &request, winbindd_set_hwm_recv,
204 (void *)cont, private_data);
205 }
206
207 enum winbindd_result winbindd_dual_set_hwm(struct winbindd_domain *domain,
208 struct winbindd_cli_state *state)
209 {
210 struct unixid xid;
211 NTSTATUS result;
212
213 DEBUG(3, ("[%5lu]: dual_set_hwm\n", (unsigned long)state->pid));
214
215 xid.id = state->request.data.dual_idmapset.id;
216 xid.type = state->request.data.dual_idmapset.type;
217
218 switch (xid.type) {
219 case ID_TYPE_UID:
220 result = idmap_set_uid_hwm(&xid);
221 break;
222 case ID_TYPE_GID:
223 result = idmap_set_gid_hwm(&xid);
224 break;
225 default:
226 return WINBINDD_ERROR;
227 }
228 return NT_STATUS_IS_OK(result) ? WINBINDD_OK : WINBINDD_ERROR;
229 }
230
231 static void winbindd_sids2xids_recv(TALLOC_CTX *mem_ctx, BOOL success,
232 struct winbindd_response *response,
233 void *c, void *private_data)
234 {
235 void (*cont)(void *priv, BOOL succ, void *, int) =
236 (void (*)(void *, BOOL, void *, int))c;
237
238 if (!success) {
239 DEBUG(5, ("Could not trigger sids2xids\n"));
240 cont(private_data, False, NULL, 0);
241 return;
242 }
243
244 if (response->result != WINBINDD_OK) {
245 DEBUG(5, ("sids2xids returned an error\n"));
246 cont(private_data, False, NULL, 0);
247 return;
248 }
249
250 cont(private_data, True, response->extra_data.data, response->length - sizeof(response));
251 }
252
253 void winbindd_sids2xids_async(TALLOC_CTX *mem_ctx, void *sids, int size,
254 void (*cont)(void *private_data, BOOL success, void *data, int len),
255 void *private_data)
256 {
257 struct winbindd_request request;
258 ZERO_STRUCT(request);
259 request.cmd = WINBINDD_DUAL_SIDS2XIDS;
260 request.extra_data.data = (char *)sids;
261 request.extra_len = size;
262 do_async(mem_ctx, idmap_child(), &request, winbindd_sids2xids_recv,
263 (void *)cont, private_data);
264 }
265
266 enum winbindd_result winbindd_dual_sids2xids(struct winbindd_domain *domain,
267 struct winbindd_cli_state *state)
268 {
269 DOM_SID *sids;
270 struct unixid *xids;
271 struct id_map **ids;
272 NTSTATUS result;
273 int num, i;
274
275 DEBUG(3, ("[%5lu]: sids to unix ids\n", (unsigned long)state->pid));
276
277 if (state->request.extra_len == 0) {
278 DEBUG(0, ("Invalid buffer size!\n"));
279 return WINBINDD_ERROR;
280 }
281
282 sids = (DOM_SID *)state->request.extra_data.data;
283 num = state->request.extra_len / sizeof(DOM_SID);
284
285 ids = TALLOC_ZERO_ARRAY(state->mem_ctx, struct id_map *, num + 1);
286 if ( ! ids) {
287 DEBUG(0, ("Out of memory!\n"));
288 return WINBINDD_ERROR;
289 }
290 for (i = 0; i < num; i++) {
291 ids[i] = TALLOC_P(ids, struct id_map);
292 if ( ! ids[i]) {
293 DEBUG(0, ("Out of memory!\n"));
294 talloc_free(ids);
295 return WINBINDD_ERROR;
296 }
297 ids[i]->sid = &sids[i];
298 }
299
300 result = idmap_sids_to_unixids(ids);
301
302 if (NT_STATUS_IS_OK(result)) {
303
304 xids = SMB_MALLOC_ARRAY(struct unixid, num);
305 if ( ! xids) {
306 DEBUG(0, ("Out of memory!\n"));
307 talloc_free(ids);
308 return WINBINDD_ERROR;
309 }
310
311 for (i = 0; i < num; i++) {
312 if (ids[i]->status == ID_MAPPED) {
313 xids[i].type = ids[i]->xid.type;
314 xids[i].id = ids[i]->xid.id;
315 } else {
316 xids[i].type = -1;
317 }
318 }
319
320 state->response.length = sizeof(state->response) + (sizeof(struct unixid) * num);
321 state->response.extra_data.data = xids;
322
323 } else {
324 DEBUG (2, ("idmap_sids_to_unixids returned an error: 0x%08x\n", NT_STATUS_V(result)));
325 talloc_free(ids);
326 return WINBINDD_ERROR;
327 }
328
329 talloc_free(ids);
330 return WINBINDD_OK;
331 }
332
333 static void winbindd_sid2uid_recv(TALLOC_CTX *mem_ctx, BOOL success,
334 struct winbindd_response *response,
335 void *c, void *private_data)
336 {
337 void (*cont)(void *priv, BOOL succ, uid_t uid) =
338 (void (*)(void *, BOOL, uid_t))c;
339
340 if (!success) {
341 DEBUG(5, ("Could not trigger sid2uid\n"));
342 cont(private_data, False, 0);
343 return;
344 }
345
346 if (response->result != WINBINDD_OK) {
347 DEBUG(5, ("sid2uid returned an error\n"));
348 cont(private_data, False, 0);
349 return;
350 }
351
352 cont(private_data, True, response->data.uid);
353 }
354
355 void winbindd_sid2uid_async(TALLOC_CTX *mem_ctx, const DOM_SID *sid,
356 void (*cont)(void *private_data, BOOL success, uid_t uid),
357 void *private_data)
358 {
359 struct winbindd_request request;
360 ZERO_STRUCT(request);
361 request.cmd = WINBINDD_DUAL_SID2UID;
362 sid_to_string(request.data.dual_sid2id.sid, sid);
363 do_async(mem_ctx, idmap_child(), &request, winbindd_sid2uid_recv,
364 (void *)cont, private_data);
365 }
366
367 enum winbindd_result winbindd_dual_sid2uid(struct winbindd_domain *domain,
368 struct winbindd_cli_state *state)
369 {
370 DOM_SID sid;
371 NTSTATUS result;
372
373 DEBUG(3, ("[%5lu]: sid to uid %s\n", (unsigned long)state->pid,
374 state->request.data.dual_sid2id.sid));
375
376 if (!string_to_sid(&sid, state->request.data.dual_sid2id.sid)) {
377 DEBUG(1, ("Could not get convert sid %s from string\n",
378 state->request.data.dual_sid2id.sid));
379 return WINBINDD_ERROR;
380 }
381
382 /* Find uid for this sid and return it, possibly ask the slow remote idmap */
383
384 result = idmap_sid_to_uid(&sid, &(state->response.data.uid));
385
386 return NT_STATUS_IS_OK(result) ? WINBINDD_OK : WINBINDD_ERROR;
387 }
388
389 #if 0 /* not used */
390 static void uid2name_recv(TALLOC_CTX *mem_ctx, BOOL success,
391 struct winbindd_response *response,
392 void *c, void *private_data);
393
394 void winbindd_uid2name_async(TALLOC_CTX *mem_ctx, uid_t uid,
395 void (*cont)(void *private_data, BOOL success,
396 const char *name),
397 void *private_data)
398 {
399 struct winbindd_request request;
400 ZERO_STRUCT(request);
401 request.cmd = WINBINDD_DUAL_UID2NAME;
402 request.data.uid = uid;
403 do_async(mem_ctx, idmap_child(), &request, uid2name_recv,
404 (void *)cont, private_data);
405 }
406 #endif /* not used */
407
408 enum winbindd_result winbindd_dual_uid2name(struct winbindd_domain *domain,
409 struct winbindd_cli_state *state)
410 {
411 struct passwd *pw;
412
413 DEBUG(3, ("[%5lu]: uid2name %lu\n", (unsigned long)state->pid,
414 (unsigned long)state->request.data.uid));
415
416 pw = getpwuid(state->request.data.uid);
417 if (pw == NULL) {
418 DEBUG(5, ("User %lu not found\n",
419 (unsigned long)state->request.data.uid));
420 return WINBINDD_ERROR;
421 }
422
423 fstrcpy(state->response.data.name.name, pw->pw_name);
424 return WINBINDD_OK;
425 }
426
427 #if 0 /* not used */
428 static void uid2name_recv(TALLOC_CTX *mem_ctx, BOOL success,
429 struct winbindd_response *response,
430 void *c, void *private_data)
431 {
432 void (*cont)(void *priv, BOOL succ, const char *name) =
433 (void (*)(void *, BOOL, const char *))c;
434
435 if (!success) {
436 DEBUG(5, ("Could not trigger uid2name\n"));
437 cont(private_data, False, NULL);
438 return;
439 }
440
441 if (response->result != WINBINDD_OK) {
442 DEBUG(5, ("uid2name returned an error\n"));
443 cont(private_data, False, NULL);
444 return;
445 }
446
447 cont(private_data, True, response->data.name.name);
448 }
449
450 static void name2uid_recv(TALLOC_CTX *mem_ctx, BOOL success,
451 struct winbindd_response *response,
452 void *c, void *private_data);
453
454 static void winbindd_name2uid_async(TALLOC_CTX *mem_ctx, const char *name,
455 void (*cont)(void *private_data, BOOL success,
456 uid_t uid),
457 void *private_data)
458 {
459 struct winbindd_request request;
460 ZERO_STRUCT(request);
461 request.cmd = WINBINDD_DUAL_NAME2UID;
462 fstrcpy(request.data.username, name);
463 do_async(mem_ctx, idmap_child(), &request, name2uid_recv,
464 (void *)cont, private_data);
465 }
466 #endif /* not used */
467
468 enum winbindd_result winbindd_dual_name2uid(struct winbindd_domain *domain,
469 struct winbindd_cli_state *state)
470 {
471 struct passwd *pw;
472
473 /* Ensure null termination */
474 state->request.data.username
475 [sizeof(state->request.data.username)-1] = '\0';
476
477 DEBUG(3, ("[%5lu]: name2uid %s\n", (unsigned long)state->pid,
478 state->request.data.username));
479
480 pw = getpwnam(state->request.data.username);
481 if (pw == NULL) {
482 return WINBINDD_ERROR;
483 }
484
485 state->response.data.uid = pw->pw_uid;
486 return WINBINDD_OK;
487 }
488
489 #if 0 /* not used */
490 static void name2uid_recv(TALLOC_CTX *mem_ctx, BOOL success,
491 struct winbindd_response *response,
492 void *c, void *private_data)
493 {
494 void (*cont)(void *priv, BOOL succ, uid_t uid) =
495 (void (*)(void *, BOOL, uid_t))c;
496
497 if (!success) {
498 DEBUG(5, ("Could not trigger name2uid\n"));
499 cont(private_data, False, 0);
500 return;
501 }
502
503 if (response->result != WINBINDD_OK) {
504 DEBUG(5, ("name2uid returned an error\n"));
505 cont(private_data, False, 0);
506 return;
507 }
508
509 cont(private_data, True, response->data.uid);
510 }
511 #endif /* not used */
512
513 static void winbindd_sid2gid_recv(TALLOC_CTX *mem_ctx, BOOL success,
514 struct winbindd_response *response,
515 void *c, void *private_data)
516 {
517 void (*cont)(void *priv, BOOL succ, gid_t gid) =
518 (void (*)(void *, BOOL, gid_t))c;
519
520 if (!success) {
521 DEBUG(5, ("Could not trigger sid2gid\n"));
522 cont(private_data, False, 0);
523 return;
524 }
525
526 if (response->result != WINBINDD_OK) {
527 DEBUG(5, ("sid2gid returned an error\n"));
528 cont(private_data, False, 0);
529 return;
530 }
531
532 cont(private_data, True, response->data.gid);
533 }
534
535 void winbindd_sid2gid_async(TALLOC_CTX *mem_ctx, const DOM_SID *sid,
536 void (*cont)(void *private_data, BOOL success, gid_t gid),
537 void *private_data)
538 {
539 struct winbindd_request request;
540 ZERO_STRUCT(request);
541 request.cmd = WINBINDD_DUAL_SID2GID;
542 sid_to_string(request.data.dual_sid2id.sid, sid);
543
544 DEBUG(7,("winbindd_sid2gid_async: Resolving %s to a gid\n",
545 request.data.dual_sid2id.sid));
546
547 do_async(mem_ctx, idmap_child(), &request, winbindd_sid2gid_recv,
548 (void *)cont, private_data);
549 }
550
551 enum winbindd_result winbindd_dual_sid2gid(struct winbindd_domain *domain,
552 struct winbindd_cli_state *state)
553 {
554 DOM_SID sid;
555 NTSTATUS result;
556
557 DEBUG(3, ("[%5lu]: sid to gid %s\n", (unsigned long)state->pid,
558 state->request.data.dual_sid2id.sid));
559
560 if (!string_to_sid(&sid, state->request.data.dual_sid2id.sid)) {
561 DEBUG(1, ("Could not get convert sid %s from string\n",
562 state->request.data.dual_sid2id.sid));
563 return WINBINDD_ERROR;
564 }
565
566 /* Find gid for this sid and return it, possibly ask the slow remote idmap */
567
568 result = idmap_sid_to_gid(&sid, &state->response.data.gid);
569
570 DEBUG(10, ("winbindd_dual_sid2gid: 0x%08x - %s - %u\n", NT_STATUS_V(result), sid_string_static(&sid), state->response.data.gid));
571
572 return NT_STATUS_IS_OK(result) ? WINBINDD_OK : WINBINDD_ERROR;
573 }
574
575 static void gid2name_recv(TALLOC_CTX *mem_ctx, BOOL success,
576 struct winbindd_response *response,
577 void *c, void *private_data)
578 {
579 void (*cont)(void *priv, BOOL succ, const char *name) =
580 (void (*)(void *, BOOL, const char *))c;
581
582 if (!success) {
583 DEBUG(5, ("Could not trigger gid2name\n"));
584 cont(private_data, False, NULL);
585 return;
586 }
587
588 if (response->result != WINBINDD_OK) {
589 DEBUG(5, ("gid2name returned an error\n"));
590 cont(private_data, False, NULL);
591 return;
592 }
593
594 cont(private_data, True, response->data.name.name);
595 }
596
597 void winbindd_gid2name_async(TALLOC_CTX *mem_ctx, gid_t gid,
598 void (*cont)(void *private_data, BOOL success,
599 const char *name),
600 void *private_data)
601 {
602 struct winbindd_request request;
603 ZERO_STRUCT(request);
604 request.cmd = WINBINDD_DUAL_GID2NAME;
605 request.data.gid = gid;
606 do_async(mem_ctx, idmap_child(), &request, gid2name_recv,
607 (void *)cont, private_data);
608 }
609
610 enum winbindd_result winbindd_dual_gid2name(struct winbindd_domain *domain,
611 struct winbindd_cli_state *state)
612 {
613 struct group *gr;
614
615 DEBUG(3, ("[%5lu]: gid2name %lu\n", (unsigned long)state->pid,
616 (unsigned long)state->request.data.gid));
617
618 gr = getgrgid(state->request.data.gid);
619 if (gr == NULL)
620 return WINBINDD_ERROR;
621
622 fstrcpy(state->response.data.name.name, gr->gr_name);
623 return WINBINDD_OK;
624 }
625
626 #if 0 /* not used */
627 static void name2gid_recv(TALLOC_CTX *mem_ctx, BOOL success,
628 struct winbindd_response *response,
629 void *c, void *private_data);
630
631 static void winbindd_name2gid_async(TALLOC_CTX *mem_ctx, const char *name,
632 void (*cont)(void *private_data, BOOL success,
633 gid_t gid),
634 void *private_data)
635 {
636 struct winbindd_request request;
637 ZERO_STRUCT(request);
638 request.cmd = WINBINDD_DUAL_NAME2GID;
639 fstrcpy(request.data.groupname, name);
640 do_async(mem_ctx, idmap_child(), &request, name2gid_recv,
641 (void *)cont, private_data);
642 }
643 #endif /* not used */
644
645 enum winbindd_result winbindd_dual_name2gid(struct winbindd_domain *domain,
646 struct winbindd_cli_state *state)
647 {
648 struct group *gr;
649
650 /* Ensure null termination */
651 state->request.data.groupname
652 [sizeof(state->request.data.groupname)-1] = '\0';
653
654 DEBUG(3, ("[%5lu]: name2gid %s\n", (unsigned long)state->pid,
655 state->request.data.groupname));
656
657 gr = getgrnam(state->request.data.groupname);
658 if (gr == NULL) {
659 return WINBINDD_ERROR;
660 }
661
662 state->response.data.gid = gr->gr_gid;
663 return WINBINDD_OK;
664 }
665
666 #if 0 /* not used */
667 static void name2gid_recv(TALLOC_CTX *mem_ctx, BOOL success,
668 struct winbindd_response *response,
669 void *c, void *private_data)
670 {
671 void (*cont)(void *priv, BOOL succ, gid_t gid) =
672 (void (*)(void *, BOOL, gid_t))c;
673
674 if (!success) {
675 DEBUG(5, ("Could not trigger name2gid\n"));
676 cont(private_data, False, 0);
677 return;
678 }
679
680 if (response->result != WINBINDD_OK) {
681 DEBUG(5, ("name2gid returned an error\n"));
682 cont(private_data, False, 0);
683 return;
684 }
685
686 cont(private_data, True, response->data.gid);
687 }
688 #endif /* not used */
689
690 struct lookupsid_state {
691 DOM_SID sid;
692 void *caller_private_data;
693 };
694
695
696 static void lookupsid_recv2(TALLOC_CTX *mem_ctx, BOOL success,
697 struct winbindd_response *response,
698 void *c, void *private_data)
699 {
700 void (*cont)(void *priv, BOOL succ, const char *dom_name,
701 const char *name, enum lsa_SidType type) =
702 (void (*)(void *, BOOL, const char *, const char *,
703 enum lsa_SidType))c;
704 struct lookupsid_state *s = talloc_get_type_abort(private_data,
705 struct lookupsid_state);
706
707 if (!success) {
708 DEBUG(5, ("Could not trigger lookupsid\n"));
709 cont(s->caller_private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
710 return;
711 }
712
713 if (response->result != WINBINDD_OK) {
714 DEBUG(5, ("lookupsid (forest root) returned an error\n"));
715 cont(s->caller_private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
716 return;
717 }
718
719 cont(s->caller_private_data, True, response->data.name.dom_name,
720 response->data.name.name,
721 (enum lsa_SidType)response->data.name.type);
722 }
723
724 static void lookupsid_recv(TALLOC_CTX *mem_ctx, BOOL success,
725 struct winbindd_response *response,
726 void *c, void *private_data)
727 {
728 void (*cont)(void *priv, BOOL succ, const char *dom_name,
729 const char *name, enum lsa_SidType type) =
730 (void (*)(void *, BOOL, const char *, const char *,
731 enum lsa_SidType))c;
732 struct lookupsid_state *s = talloc_get_type_abort(private_data,
733 struct lookupsid_state);
734
735 if (!success) {
736 DEBUG(5, ("Could not trigger lookupsid\n"));
737 cont(s->caller_private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
738 return;
739 }
740
741 if (response->result != WINBINDD_OK) {
742 /* Try again using the forest root */
743 struct winbindd_domain *root_domain = find_root_domain();
744 struct winbindd_request request;
745
746 if ( !root_domain ) {
747 DEBUG(5,("lookupsid_recv: unable to determine forest root\n"));
748 cont(s->caller_private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
749 return;
750 }
751
752 ZERO_STRUCT(request);
753 request.cmd = WINBINDD_LOOKUPSID;
754 fstrcpy(request.data.sid, sid_string_static(&s->sid));
755
756 do_async_domain(mem_ctx, root_domain, &request, lookupsid_recv2,
757 (void *)cont, s);
758
759 return;
760 }
761
762 cont(s->caller_private_data, True, response->data.name.dom_name,
763 response->data.name.name,
764 (enum lsa_SidType)response->data.name.type);
765 }
766
767 void winbindd_lookupsid_async(TALLOC_CTX *mem_ctx, const DOM_SID *sid,
768 void (*cont)(void *private_data, BOOL success,
769 const char *dom_name,
770 const char *name,
771 enum lsa_SidType type),
772 void *private_data)
773 {
774 struct winbindd_domain *domain;
775 struct winbindd_request request;
776 struct lookupsid_state *s;
777
778 domain = find_lookup_domain_from_sid(sid);
779 if (domain == NULL) {
780 DEBUG(5, ("Could not find domain for sid %s\n",
781 sid_string_static(sid)));
782 cont(private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
783 return;
784 }
785
786 ZERO_STRUCT(request);
787 request.cmd = WINBINDD_LOOKUPSID;
788 fstrcpy(request.data.sid, sid_string_static(sid));
789
790 if ( (s = TALLOC_ZERO_P(mem_ctx, struct lookupsid_state)) == NULL ) {
791 DEBUG(0, ("winbindd_lookupsid_async: talloc failed\n"));
792 cont(private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
793 return;
794 }
795
796 sid_copy( &s->sid, sid );
797 s->caller_private_data = private_data;
798
799 do_async_domain(mem_ctx, domain, &request, lookupsid_recv,
800 (void *)cont, private_data);
801 }
802
803 enum winbindd_result winbindd_dual_lookupsid(struct winbindd_domain *domain,
804 struct winbindd_cli_state *state)
805 {
806 enum lsa_SidType type;
807 DOM_SID sid;
808 char *name;
809 char *dom_name;
810
811 /* Ensure null termination */
812 state->request.data.sid[sizeof(state->request.data.sid)-1]='\0';
813
814 DEBUG(3, ("[%5lu]: lookupsid %s\n", (unsigned long)state->pid,
815 state->request.data.sid));
816
817 /* Lookup sid from PDC using lsa_lookup_sids() */
818
819 if (!string_to_sid(&sid, state->request.data.sid)) {
820 DEBUG(5, ("%s not a SID\n", state->request.data.sid));
821 return WINBINDD_ERROR;
822 }
823
824 /* Lookup the sid */
825
826 if (!winbindd_lookup_name_by_sid(state->mem_ctx, domain, &sid,
827 &dom_name, &name, &type))
828 {
829 TALLOC_FREE(dom_name);
830 TALLOC_FREE(name);
831 return WINBINDD_ERROR;
832 }
833
834 fstrcpy(state->response.data.name.dom_name, dom_name);
835 fstrcpy(state->response.data.name.name, name);
836 state->response.data.name.type = type;
837
838 TALLOC_FREE(dom_name);
839 TALLOC_FREE(name);
840 return WINBINDD_OK;
841 }
842
843 /********************************************************************
844 This is the second callback after contacting the forest root
845 ********************************************************************/
846
847 struct lookupname_state {
848 char *dom_name;
849 char *name;
850 void *caller_private_data;
851 };
852
853
854 static void lookupname_recv2(TALLOC_CTX *mem_ctx, BOOL success,
855 struct winbindd_response *response,
856 void *c, void *private_data)
857 {
858 void (*cont)(void *priv, BOOL succ, const DOM_SID *sid,
859 enum lsa_SidType type) =
860 (void (*)(void *, BOOL, const DOM_SID *, enum lsa_SidType))c;
861 DOM_SID sid;
862 struct lookupname_state *s = talloc_get_type_abort( private_data,
863 struct lookupname_state );
864
865
866 if (!success) {
867 DEBUG(5, ("Could not trigger lookup_name\n"));
868 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
869 return;
870 }
871
872 if (response->result != WINBINDD_OK) {
873 DEBUG(5, ("lookup_name returned an error\n"));
874 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
875 return;
876 }
877
878 if (!string_to_sid(&sid, response->data.sid.sid)) {
879 DEBUG(0, ("Could not convert string %s to sid\n",
880 response->data.sid.sid));
881 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
882 return;
883 }
884
885 cont(s->caller_private_data, True, &sid,
886 (enum lsa_SidType)response->data.sid.type);
887 }
888
889 /********************************************************************
890 This is the first callback after contacting our own domain
891 ********************************************************************/
892
893 static void lookupname_recv(TALLOC_CTX *mem_ctx, BOOL success,
894 struct winbindd_response *response,
895 void *c, void *private_data)
896 {
897 void (*cont)(void *priv, BOOL succ, const DOM_SID *sid,
898 enum lsa_SidType type) =
899 (void (*)(void *, BOOL, const DOM_SID *, enum lsa_SidType))c;
900 DOM_SID sid;
901 struct lookupname_state *s = talloc_get_type_abort( private_data,
902 struct lookupname_state );
903
904 if (!success) {
905 DEBUG(5, ("lookupname_recv: lookup_name() failed!\n"));
906 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
907 return;
908 }
909
910 if (response->result != WINBINDD_OK) {
911 /* Try again using the forest root */
912 struct winbindd_domain *root_domain = find_root_domain();
913 struct winbindd_request request;
914
915 if ( !root_domain ) {
916 DEBUG(5,("lookupname_recv: unable to determine forest root\n"));
917 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
918 return;
919 }
920
921 ZERO_STRUCT(request);
922 request.cmd = WINBINDD_LOOKUPNAME;
923
924 fstrcpy( request.data.name.dom_name, s->dom_name );
925 fstrcpy( request.data.name.name, s->name );
926
927 do_async_domain(mem_ctx, root_domain, &request, lookupname_recv2,
928 (void *)cont, s);
929
930 return;
931 }
932
933 if (!string_to_sid(&sid, response->data.sid.sid)) {
934 DEBUG(0, ("Could not convert string %s to sid\n",
935 response->data.sid.sid));
936 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
937 return;
938 }
939
940 cont(s->caller_private_data, True, &sid,
941 (enum lsa_SidType)response->data.sid.type);
942 }
943
944 /********************************************************************
945 The lookup name call first contacts a DC in its own domain
946 and fallbacks to contact a DC in the forest in our domain doesn't
947 know the name.
948 ********************************************************************/
949
950 void winbindd_lookupname_async(TALLOC_CTX *mem_ctx,
951 const char *dom_name, const char *name,
952 void (*cont)(void *private_data, BOOL success,
953 const DOM_SID *sid,
954 enum lsa_SidType type),
955 void *private_data)
956 {
957 struct winbindd_request request;
958 struct winbindd_domain *domain;
959 struct lookupname_state *s;
960
961 if ( (domain = find_lookup_domain_from_name(dom_name)) == NULL ) {
962 DEBUG(5, ("Could not find domain for name %s\n", dom_name));
963 cont(private_data, False, NULL, SID_NAME_UNKNOWN);
964 return;
965 }
966
967 ZERO_STRUCT(request);
968 request.cmd = WINBINDD_LOOKUPNAME;
969 fstrcpy(request.data.name.dom_name, dom_name);
970 fstrcpy(request.data.name.name, name);
971
972 if ( (s = TALLOC_ZERO_P(mem_ctx, struct lookupname_state)) == NULL ) {
973 DEBUG(0, ("winbindd_lookupname_async: talloc failed\n"));
974 cont(private_data, False, NULL, SID_NAME_UNKNOWN);
975 return;
976 }
977
978 s->dom_name = talloc_strdup( s, dom_name );
979 s->name = talloc_strdup( s, name );
980 s->caller_private_data = private_data;
981
982 do_async_domain(mem_ctx, domain, &request, lookupname_recv,
983 (void *)cont, s);
984 }
985
986 enum winbindd_result winbindd_dual_lookupname(struct winbindd_domain *domain,
987 struct winbindd_cli_state *state)
988 {
989 enum lsa_SidType type;
990 char *name_domain, *name_user;
991 DOM_SID sid;
992 char *p;
993
994 /* Ensure null termination */
995 state->request.data.name.dom_name[sizeof(state->request.data.name.dom_name)-1]='\0';
996
997 /* Ensure null termination */
998 state->request.data.name.name[sizeof(state->request.data.name.name)-1]='\0';
999
1000 /* cope with the name being a fully qualified name */
1001 p = strstr(state->request.data.name.name, lp_winbind_separator());
1002 if (p) {
1003 *p = 0;
1004 name_domain = state->request.data.name.name;
1005 name_user = p+1;
1006 } else {
1007 name_domain = state->request.data.name.dom_name;
1008 name_user = state->request.data.name.name;
1009 }
1010
1011 DEBUG(3, ("[%5lu]: lookupname %s%s%s\n", (unsigned long)state->pid,
1012 name_domain, lp_winbind_separator(), name_user));
1013
1014 /* Lookup name from DC using lsa_lookup_names() */
1015 if (!winbindd_lookup_sid_by_name(state->mem_ctx, domain, name_domain,
1016 name_user, &sid, &type)) {
1017 return WINBINDD_ERROR;
1018 }
1019
1020 sid_to_string(state->response.data.sid.sid, &sid);
1021 state->response.data.sid.type = type;
1022
1023 return WINBINDD_OK;
1024 }
1025
1026 BOOL print_sidlist(TALLOC_CTX *mem_ctx, const DOM_SID *sids,
1027 size_t num_sids, char **result, ssize_t *len)
1028 {
1029 size_t i;
1030 size_t buflen = 0;
1031
1032 *len = 0;
1033 *result = NULL;
1034 for (i=0; i<num_sids; i++) {
1035 sprintf_append(mem_ctx, result, len, &buflen,
1036 "%s\n", sid_string_static(&sids[i]));
1037 }
1038
1039 if ((num_sids != 0) && (*result == NULL)) {
1040 return False;
1041 }
1042
1043 return True;
1044 }
1045
1046 static BOOL parse_sidlist(TALLOC_CTX *mem_ctx, char *sidstr,
1047 DOM_SID **sids, size_t *num_sids)
1048 {
1049 char *p, *q;
1050
1051 p = sidstr;
1052 if (p == NULL)
1053 return False;
1054
1055 while (p[0] != '\0') {
1056 DOM_SID sid;
1057 q = strchr(p, '\n');
1058 if (q == NULL) {
1059 DEBUG(0, ("Got invalid sidstr: %s\n", p));
1060 return False;
1061 }
1062 *q = '\0';
1063 q += 1;
1064 if (!string_to_sid(&sid, p)) {
1065 DEBUG(0, ("Could not parse sid %s\n", p));
1066 return False;
1067 }
1068 if (!add_sid_to_array(mem_ctx, &sid, sids, num_sids)) {
1069 return False;
1070 }
1071 p = q;
1072 }
1073 return True;
1074 }
1075
1076 static BOOL parse_ridlist(TALLOC_CTX *mem_ctx, char *ridstr,
1077 uint32 **rids, size_t *num_rids)
1078 {
1079 char *p;
1080
1081 p = ridstr;
1082 if (p == NULL)
1083 return False;
1084
1085 while (p[0] != '\0') {
1086 uint32 rid;
1087 char *q;
1088 rid = strtoul(p, &q, 10);
1089 if (*q != '\n') {
1090 DEBUG(0, ("Got invalid ridstr: %s\n", p));
1091 return False;
1092 }
1093 p = q+1;
1094 ADD_TO_ARRAY(mem_ctx, uint32, rid, rids, num_rids);
1095 }
1096 return True;
1097 }
1098
1099 enum winbindd_result winbindd_dual_lookuprids(struct winbindd_domain *domain,
1100 struct winbindd_cli_state *state)
1101 {
1102 uint32 *rids = NULL;
1103 size_t i, buflen, num_rids = 0;
1104 ssize_t len;
1105 DOM_SID domain_sid;
1106 char *domain_name;
1107 char **names;
1108 enum lsa_SidType *types;
1109 NTSTATUS status;
1110 char *result;
1111
1112 DEBUG(10, ("Looking up RIDs for domain %s (%s)\n",
1113 state->request.domain_name,
1114 state->request.data.sid));
1115
1116 if (!parse_ridlist(state->mem_ctx, state->request.extra_data.data,
1117 &rids, &num_rids)) {
1118 DEBUG(5, ("Could not parse ridlist\n"));
1119 return WINBINDD_ERROR;
1120 }
1121
1122 if (!string_to_sid(&domain_sid, state->request.data.sid)) {
1123 DEBUG(5, ("Could not parse domain sid %s\n",
1124 state->request.data.sid));
1125 return WINBINDD_ERROR;
1126 }
1127
1128 status = domain->methods->rids_to_names(domain, state->mem_ctx,
1129 &domain_sid, rids, num_rids,
1130 &domain_name,
1131 &names, &types);
1132
1133 if (!NT_STATUS_IS_OK(status) &&
1134 !NT_STATUS_EQUAL(status, STATUS_SOME_UNMAPPED)) {
1135 return WINBINDD_ERROR;
1136 }
1137
1138 len = 0;
1139 buflen = 0;
1140 result = NULL;
1141
1142 for (i=0; i<num_rids; i++) {
1143 sprintf_append(state->mem_ctx, &result, &len, &buflen,
1144 "%d %s\n", types[i], names[i]);
1145 }
1146
1147 fstrcpy(state->response.data.domain_name, domain_name);
1148
1149 if (result != NULL) {
1150 state->response.extra_data.data = SMB_STRDUP(result);
1151 if (!state->response.extra_data.data) {
1152 return WINBINDD_ERROR;
1153 }
1154 state->response.length += len+1;
1155 }
1156
1157 return WINBINDD_OK;
1158 }
1159
1160 static void getsidaliases_recv(TALLOC_CTX *mem_ctx, BOOL success,
1161 struct winbindd_response *response,
1162 void *c, void *private_data)
1163 {
1164 void (*cont)(void *priv, BOOL succ,
1165 DOM_SID *aliases, size_t num_aliases) =
1166 (void (*)(void *, BOOL, DOM_SID *, size_t))c;
1167 char *aliases_str;
1168 DOM_SID *sids = NULL;
1169 size_t num_sids = 0;
1170
1171 if (!success) {
1172 DEBUG(5, ("Could not trigger getsidaliases\n"));
1173 cont(private_data, success, NULL, 0);
1174 return;
1175 }
1176
1177 if (response->result != WINBINDD_OK) {
1178 DEBUG(5, ("getsidaliases returned an error\n"));
1179 cont(private_data, False, NULL, 0);
1180 return;
1181 }
1182
1183 aliases_str = (char *)response->extra_data.data;
1184
1185 if (aliases_str == NULL) {
1186 DEBUG(10, ("getsidaliases return 0 SIDs\n"));
1187 cont(private_data, True, NULL, 0);
1188 return;
1189 }
1190
1191 if (!parse_sidlist(mem_ctx, aliases_str, &sids, &num_sids)) {
1192 DEBUG(0, ("Could not parse sids\n"));
1193 cont(private_data, False, NULL, 0);
1194 return;
1195 }
1196
1197 SAFE_FREE(response->extra_data.data);
1198
1199 cont(private_data, True, sids, num_sids);
1200 }
1201
1202 void winbindd_getsidaliases_async(struct winbindd_domain *domain,
1203 TALLOC_CTX *mem_ctx,
1204 const DOM_SID *sids, size_t num_sids,
1205 void (*cont)(void *private_data,
1206 BOOL success,
1207 const DOM_SID *aliases,
1208 size_t num_aliases),
1209 void *private_data)
1210 {
1211 struct winbindd_request request;
1212 char *sidstr = NULL;
1213 ssize_t len;
1214
1215 if (num_sids == 0) {
1216 cont(private_data, True, NULL, 0);
1217 return;
1218 }
1219
1220 if (!print_sidlist(mem_ctx, sids, num_sids, &sidstr, &len)) {
1221 cont(private_data, False, NULL, 0);
1222 return;
1223 }
1224
1225 ZERO_STRUCT(request);
1226 request.cmd = WINBINDD_DUAL_GETSIDALIASES;
1227 request.extra_len = len;
1228 request.extra_data.data = sidstr;
1229
1230 do_async_domain(mem_ctx, domain, &request, getsidaliases_recv,
1231 (void *)cont, private_data);
1232 }
1233
1234 enum winbindd_result winbindd_dual_getsidaliases(struct winbindd_domain *domain,
1235 struct winbindd_cli_state *state)
1236 {
1237 DOM_SID *sids = NULL;
1238 size_t num_sids = 0;
1239 char *sidstr = NULL;
1240 ssize_t len;
1241 size_t i;
1242 uint32 num_aliases;
1243 uint32 *alias_rids;
1244 NTSTATUS result;
1245
1246 DEBUG(3, ("[%5lu]: getsidaliases\n", (unsigned long)state->pid));
1247
1248 sidstr = state->request.extra_data.data;
1249 if (sidstr == NULL) {
1250 sidstr = talloc_strdup(state->mem_ctx, "\n"); /* No SID */
1251 if (!sidstr) {
1252 DEBUG(0, ("Out of memory\n"));
1253 return WINBINDD_ERROR;
1254 }
1255 }
1256
1257 DEBUG(10, ("Sidlist: %s\n", sidstr));
1258
1259 if (!parse_sidlist(state->mem_ctx, sidstr, &sids, &num_sids)) {
1260 DEBUG(0, ("Could not parse SID list: %s\n", sidstr));
1261 return WINBINDD_ERROR;
1262 }
1263
1264 num_aliases = 0;
1265 alias_rids = NULL;
1266
1267 result = domain->methods->lookup_useraliases(domain,
1268 state->mem_ctx,
1269 num_sids, sids,
1270 &num_aliases,
1271 &alias_rids);
1272
1273 if (!NT_STATUS_IS_OK(result)) {
1274 DEBUG(3, ("Could not lookup_useraliases: %s\n",
1275 nt_errstr(result)));
1276 return WINBINDD_ERROR;
1277 }
1278
1279 num_sids = 0;
1280 sids = NULL;
1281 sidstr = NULL;
1282
1283 DEBUG(10, ("Got %d aliases\n", num_aliases));
1284
1285 for (i=0; i<num_aliases; i++) {
1286 DOM_SID sid;
1287 DEBUGADD(10, (" rid %d\n", alias_rids[i]));
1288 sid_copy(&sid, &domain->sid);
1289 sid_append_rid(&sid, alias_rids[i]);
1290 if (!add_sid_to_array(state->mem_ctx, &sid, &sids, &num_sids)) {
1291 return WINBINDD_ERROR;
1292 }
1293 }
1294
1295
1296 if (!print_sidlist(state->mem_ctx, sids, num_sids, &sidstr, &len)) {
1297 DEBUG(0, ("Could not print_sidlist\n"));
1298 state->response.extra_data.data = NULL;
1299 return WINBINDD_ERROR;
1300 }
1301
1302 state->response.extra_data.data = NULL;
1303
1304 if (sidstr) {
1305 state->response.extra_data.data = SMB_STRDUP(sidstr);
1306 if (!state->response.extra_data.data) {
1307 DEBUG(0, ("Out of memory\n"));
1308 return WINBINDD_ERROR;
1309 }
1310 DEBUG(10, ("aliases_list: %s\n",
1311 (char *)state->response.extra_data.data));
1312 state->response.length += len+1;
1313 }
1314
1315 return WINBINDD_OK;
1316 }
1317
1318 struct gettoken_state {
1319 TALLOC_CTX *mem_ctx;
1320 DOM_SID user_sid;
1321 struct winbindd_domain *alias_domain;
1322 struct winbindd_domain *local_alias_domain;
1323 struct winbindd_domain *builtin_domain;
1324 DOM_SID *sids;
1325 size_t num_sids;
1326 void (*cont)(void *private_data, BOOL success, DOM_SID *sids, size_t num_sids);
1327 void *private_data;
1328 };
1329
1330 static void gettoken_recvdomgroups(TALLOC_CTX *mem_ctx, BOOL success,
1331 struct winbindd_response *response,
1332 void *c, void *private_data);
1333 static void gettoken_recvaliases(void *private_data, BOOL success,
1334 const DOM_SID *aliases,
1335 size_t num_aliases);
1336
1337
1338 void winbindd_gettoken_async(TALLOC_CTX *mem_ctx, const DOM_SID *user_sid,
1339 void (*cont)(void *private_data, BOOL success,
1340 DOM_SID *sids, size_t num_sids),
1341 void *private_data)
1342 {
1343 struct winbindd_domain *domain;
1344 struct winbindd_request request;
1345 struct gettoken_state *state;
1346
1347 state = TALLOC_ZERO_P(mem_ctx, struct gettoken_state);
1348 if (state == NULL) {
1349 DEBUG(0, ("talloc failed\n"));
1350 cont(private_data, False, NULL, 0);
1351 return;
1352 }
1353
1354 state->mem_ctx = mem_ctx;
1355 sid_copy(&state->user_sid, user_sid);
1356 state->alias_domain = find_our_domain();
1357 state->local_alias_domain = find_domain_from_name( get_global_sam_name() );
1358 state->builtin_domain = find_builtin_domain();
1359 state->cont = cont;
1360 state->private_data = private_data;
1361
1362 domain = find_domain_from_sid_noinit(user_sid);
1363 if (domain == NULL) {
1364 DEBUG(5, ("Could not find domain from SID %s\n",
1365 sid_string_static(user_sid)));
1366 cont(private_data, False, NULL, 0);
1367 return;
1368 }
1369
1370 ZERO_STRUCT(request);
1371 request.cmd = WINBINDD_GETUSERDOMGROUPS;
1372 fstrcpy(request.data.sid, sid_string_static(user_sid));
1373
1374 do_async_domain(mem_ctx, domain, &request, gettoken_recvdomgroups,
1375 NULL, state);
1376 }
1377
1378 static void gettoken_recvdomgroups(TALLOC_CTX *mem_ctx, BOOL success,
1379 struct winbindd_response *response,
1380 void *c, void *private_data)
1381 {
1382 struct gettoken_state *state =
1383 talloc_get_type_abort(private_data, struct gettoken_state);
1384 char *sids_str;
1385
1386 if (!success) {
1387 DEBUG(10, ("Could not get domain groups\n"));
1388 state->cont(state->private_data, False, NULL, 0);
1389 return;
1390 }
1391
1392 sids_str = (char *)response->extra_data.data;
1393
1394 if (sids_str == NULL) {
1395 /* This could be normal if we are dealing with a
1396 local user and local groups */
1397
1398 if ( !sid_check_is_in_our_domain( &state->user_sid ) ) {
1399 DEBUG(10, ("Received no domain groups\n"));
1400 state->cont(state->private_data, True, NULL, 0);
1401 return;
1402 }
1403 }
1404
1405 state->sids = NULL;
1406 state->num_sids = 0;
1407
1408 if (!add_sid_to_array(mem_ctx, &state->user_sid, &state->sids,
1409 &state->num_sids)) {
1410 DEBUG(0, ("Out of memory\n"));
1411 state->cont(state->private_data, False, NULL, 0);
1412 return;
1413 }
1414
1415 if (sids_str && !parse_sidlist(mem_ctx, sids_str, &state->sids,
1416 &state->num_sids)) {
1417 DEBUG(0, ("Could not parse sids\n"));
1418 state->cont(state->private_data, False, NULL, 0);
1419 return;
1420 }
1421
1422 SAFE_FREE(response->extra_data.data);
1423
1424 if (state->alias_domain == NULL) {
1425 DEBUG(10, ("Don't expand domain local groups\n"));
1426 state->cont(state->private_data, True, state->sids,
1427 state->num_sids);
1428 return;
1429 }
1430
1431 winbindd_getsidaliases_async(state->alias_domain, mem_ctx,
1432 state->sids, state->num_sids,
1433 gettoken_recvaliases, state);
1434 }
1435
1436 static void gettoken_recvaliases(void *private_data, BOOL success,
1437 const DOM_SID *aliases,
1438 size_t num_aliases)
1439 {
1440 struct gettoken_state *state = (struct gettoken_state *)private_data;
1441 size_t i;
1442
1443 if (!success) {
1444 DEBUG(10, ("Could not receive domain local groups\n"));
1445 state->cont(state->private_data, False, NULL, 0);
1446 return;
1447 }
1448
1449 for (i=0; i<num_aliases; i++) {
1450 if (!add_sid_to_array(state->mem_ctx, &aliases[i],
1451 &state->sids, &state->num_sids)) {
1452 DEBUG(0, ("Out of memory\n"));
1453 state->cont(state->private_data, False, NULL, 0);
1454 return;
1455 }
1456 }
1457
1458 if (state->local_alias_domain != NULL) {
1459 struct winbindd_domain *local_domain = state->local_alias_domain;
1460 DEBUG(10, ("Expanding our own local groups\n"));
1461 state->local_alias_domain = NULL;
1462 winbindd_getsidaliases_async(local_domain, state->mem_ctx,
1463 state->sids, state->num_sids,
1464 gettoken_recvaliases, state);
1465 return;
1466 }
1467
1468 if (state->builtin_domain != NULL) {
1469 struct winbindd_domain *builtin_domain = state->builtin_domain;
1470 DEBUG(10, ("Expanding our own BUILTIN groups\n"));
1471 state->builtin_domain = NULL;
1472 winbindd_getsidaliases_async(builtin_domain, state->mem_ctx,
1473 state->sids, state->num_sids,
1474 gettoken_recvaliases, state);
1475 return;
1476 }
1477
1478 state->cont(state->private_data, True, state->sids, state->num_sids);
1479 }
1480
1481 static void query_user_recv(TALLOC_CTX *mem_ctx, BOOL success,
1482 struct winbindd_response *response,
1483 void *c, void *private_data)
1484 {
1485 void (*cont)(void *priv, BOOL succ, const char *acct_name,
1486 const char *full_name, const char *homedir,
1487 const char *shell, uint32 gid, uint32 group_rid) =
1488 (void (*)(void *, BOOL, const char *, const char *,
1489 const char *, const char *, uint32, uint32))c;
1490
1491 if (!success) {
1492 DEBUG(5, ("Could not trigger query_user\n"));
1493 cont(private_data, False, NULL, NULL, NULL, NULL, -1, -1);
1494 return;
1495 }
1496
1497 cont(private_data, True, response->data.user_info.acct_name,
1498 response->data.user_info.full_name,
1499 response->data.user_info.homedir,
1500 response->data.user_info.shell,
1501 response->data.user_info.primary_gid,
1502 response->data.user_info.group_rid);
1503 }
1504
1505 void query_user_async(TALLOC_CTX *mem_ctx, struct winbindd_domain *domain,
1506 const DOM_SID *sid,
1507 void (*cont)(void *private_data, BOOL success,
1508 const char *acct_name,
1509 const char *full_name,
1510 const char *homedir,
1511 const char *shell,
1512 gid_t gid,
1513 uint32 group_rid),
1514 void *private_data)
1515 {
1516 struct winbindd_request request;
1517 ZERO_STRUCT(request);
1518 request.cmd = WINBINDD_DUAL_USERINFO;
1519 sid_to_string(request.data.sid, sid);
1520 do_async_domain(mem_ctx, domain, &request, query_user_recv,
1521 (void *)cont, private_data);
1522 }
1523
1524 /* The following uid2sid/gid2sid functions has been contributed by
1525 * Keith Reynolds <Keith.Reynolds@centrify.com> */
1526
1527 static void winbindd_uid2sid_recv(TALLOC_CTX *mem_ctx, BOOL success,
1528 struct winbindd_response *response,
1529 void *c, void *private_data)
1530 {
1531 void (*cont)(void *priv, BOOL succ, const char *sid) =
1532 (void (*)(void *, BOOL, const char *))c;
1533
1534 if (!success) {
1535 DEBUG(5, ("Could not trigger uid2sid\n"));
1536 cont(private_data, False, NULL);
1537 return;
1538 }
1539
1540 if (response->result != WINBINDD_OK) {
1541 DEBUG(5, ("uid2sid returned an error\n"));
1542 cont(private_data, False, NULL);
1543 return;
1544 }
1545
1546 cont(private_data, True, response->data.sid.sid);
1547 }
1548
1549 void winbindd_uid2sid_async(TALLOC_CTX *mem_ctx, uid_t uid,
1550 void (*cont)(void *private_data, BOOL success, const char *sid),
1551 void *private_data)
1552 {
1553 struct winbindd_request request;
1554
1555 ZERO_STRUCT(request);
1556 request.cmd = WINBINDD_DUAL_UID2SID;
1557 request.data.uid = uid;
1558 do_async(mem_ctx, idmap_child(), &request, winbindd_uid2sid_recv,
1559 (void *)cont, private_data);
1560 }
1561
1562 enum winbindd_result winbindd_dual_uid2sid(struct winbindd_domain *domain,
1563 struct winbindd_cli_state *state)
1564 {
1565 DOM_SID sid;
1566 NTSTATUS result;
1567
1568 DEBUG(3,("[%5lu]: uid to sid %lu\n",
1569 (unsigned long)state->pid,
1570 (unsigned long) state->request.data.uid));
1571
1572 /* Find sid for this uid and return it, possibly ask the slow remote idmap */
1573 result = idmap_uid_to_sid(&sid, state->request.data.uid);
1574
1575 if (NT_STATUS_IS_OK(result)) {
1576 sid_to_string(state->response.data.sid.sid, &sid);
1577 state->response.data.sid.type = SID_NAME_USER;
1578 return WINBINDD_OK;
1579 }
1580
1581 return WINBINDD_ERROR;
1582 }
1583
1584 static void winbindd_gid2sid_recv(TALLOC_CTX *mem_ctx, BOOL success,
1585 struct winbindd_response *response,
1586 void *c, void *private_data)
1587 {
1588 void (*cont)(void *priv, BOOL succ, const char *sid) =
1589 (void (*)(void *, BOOL, const char *))c;
1590
1591 if (!success) {
1592 DEBUG(5, ("Could not trigger gid2sid\n"));
1593 cont(private_data, False, NULL);
1594 return;
1595 }
1596
1597 if (response->result != WINBINDD_OK) {
1598 DEBUG(5, ("gid2sid returned an error\n"));
1599 cont(private_data, False, NULL);
1600 return;
1601 }
1602
1603 cont(private_data, True, response->data.sid.sid);
1604 }
1605
1606 void winbindd_gid2sid_async(TALLOC_CTX *mem_ctx, gid_t gid,
1607 void (*cont)(void *private_data, BOOL success, const char *sid),
1608 void *private_data)
1609 {
1610 struct winbindd_request request;
1611
1612 ZERO_STRUCT(request);
1613 request.cmd = WINBINDD_DUAL_GID2SID;
1614 request.data.gid = gid;
1615 do_async(mem_ctx, idmap_child(), &request, winbindd_gid2sid_recv,
1616 (void *)cont, private_data);
1617 }
1618
1619 enum winbindd_result winbindd_dual_gid2sid(struct winbindd_domain *domain,
1620 struct winbindd_cli_state *state)
1621 {
1622 DOM_SID sid;
1623 NTSTATUS result;
1624
1625 DEBUG(3,("[%5lu]: gid %lu to sid\n",
1626 (unsigned long)state->pid,
1627 (unsigned long) state->request.data.gid));
1628
1629 /* Find sid for this gid and return it, possibly ask the slow remote idmap */
1630 result = idmap_gid_to_sid(&sid, state->request.data.gid);
1631
1632 if (NT_STATUS_IS_OK(result)) {
1633 sid_to_string(state->response.data.sid.sid, &sid);
1634 DEBUG(10, ("[%5lu]: retrieved sid: %s\n",
1635 (unsigned long)state->pid,
1636 state->response.data.sid.sid));
1637 state->response.data.sid.type = SID_NAME_DOM_GRP;
1638 return WINBINDD_OK;
1639 }
1640
1641 return WINBINDD_ERROR;
1642 }
1643
1644 static void winbindd_dump_id_maps_recv(TALLOC_CTX *mem_ctx, BOOL success,
1645 struct winbindd_response *response,
1646 void *c, void *private_data)
1647 {
1648 void (*cont)(void *priv, BOOL succ) =
1649 (void (*)(void *, BOOL))c;
1650
1651 if (!success) {
1652 DEBUG(5, ("Could not trigger a map dump\n"));
1653 cont(private_data, False);
1654 return;
1655 }
1656
1657 if (response->result != WINBINDD_OK) {
1658 DEBUG(5, ("idmap dump maps returned an error\n"));
1659 cont(private_data, False);
1660 return;
1661 }
1662
1663 cont(private_data, True);
1664 }
1665
1666 void winbindd_dump_maps_async(TALLOC_CTX *mem_ctx, void *data, int size,
1667 void (*cont)(void *private_data, BOOL success),
1668 void *private_data)
1669 {
1670 struct winbindd_request request;
1671 ZERO_STRUCT(request);
1672 request.cmd = WINBINDD_DUAL_DUMP_MAPS;
1673 request.extra_data.data = (char *)data;
1674 request.extra_len = size;
1675 do_async(mem_ctx, idmap_child(), &request, winbindd_dump_id_maps_recv,
1676 (void *)cont, private_data);
1677 }
1678
1679 enum winbindd_result winbindd_dual_dump_maps(struct winbindd_domain *domain,
1680 struct winbindd_cli_state *state)
1681 {
1682 DEBUG(3, ("[%5lu]: dual dump maps\n", (unsigned long)state->pid));
1683
1684 idmap_dump_maps((char *)state->request.extra_data.data);
1685
1686 return WINBINDD_OK;
1687 }
1688
Samba GIT mirror