search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
smbd: Update comment for durable handles
[Samba.git] / nsswitch / wb_common.c
blob45c1969acc225bd699445caa26befd68b8164fae
1 /*
2 Unix SMB/CIFS implementation.
3
4 winbind client common code
5
6 Copyright (C) Tim Potter 2000
7 Copyright (C) Andrew Tridgell 2000
8 Copyright (C) Andrew Bartlett 2002
9 Copyright (C) Matthew Newton 2015
10
11
12 This library is free software; you can redistribute it and/or
13 modify it under the terms of the GNU Lesser General Public
14 License as published by the Free Software Foundation; either
15 version 3 of the License, or (at your option) any later version.
16
17 This library is distributed in the hope that it will be useful,
18 but WITHOUT ANY WARRANTY; without even the implied warranty of
19 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
20 Library General Public License for more details.
21
22 You should have received a copy of the GNU Lesser General Public License
23 along with this program. If not, see <http://www.gnu.org/licenses/>.
24 */
25
26 #include "replace.h"
27 #include "system/select.h"
28 #include "winbind_client.h"
29
30 #ifdef HAVE_PTHREAD_H
31 #include <pthread.h>
32 #endif
33
34 static char client_name[32];
35
36 /* Global context */
37
38 struct winbindd_context {
39 int winbindd_fd; /* winbind file descriptor */
40 bool is_privileged; /* using the privileged socket? */
41 pid_t our_pid; /* calling process pid */
42 };
43
44 #ifdef HAVE_PTHREAD
45 static pthread_mutex_t wb_global_ctx_mutex = PTHREAD_MUTEX_INITIALIZER;
46 #endif
47
48 static struct winbindd_context *get_wb_global_ctx(void)
49 {
50 static struct winbindd_context wb_global_ctx = {
51 .winbindd_fd = -1,
52 .is_privileged = false,
53 .our_pid = 0
54 };
55
56 #ifdef HAVE_PTHREAD
57 pthread_mutex_lock(&wb_global_ctx_mutex);
58 #endif
59 return &wb_global_ctx;
60 }
61
62 static void put_wb_global_ctx(void)
63 {
64 #ifdef HAVE_PTHREAD
65 pthread_mutex_unlock(&wb_global_ctx_mutex);
66 #endif
67 return;
68 }
69
70 /* Free a response structure */
71
72 void winbindd_free_response(struct winbindd_response *response)
73 {
74 /* Free any allocated extra_data */
75
76 if (response)
77 SAFE_FREE(response->extra_data.data);
78 }
79
80 void winbind_set_client_name(const char *name)
81 {
82 if (name == NULL || strlen(name) == 0) {
83 return;
84 }
85
86 (void)snprintf(client_name, sizeof(client_name), "%s", name);
87 }
88
89 static const char *winbind_get_client_name(void)
90 {
91 if (client_name[0] == '\0') {
92 const char *progname = getprogname();
93 int len;
94
95 if (progname == NULL) {
96 progname = "<unknown>";
97 }
98
99 len = snprintf(client_name,
100 sizeof(client_name),
101 "%s",
102 progname);
103 if (len <= 0) {
104 return progname;
105 }
106 }
107
108 return client_name;
109 }
110
111 /* Initialise a request structure */
112
113 static void winbindd_init_request(struct winbindd_request *request,
114 int request_type)
115 {
116 request->length = sizeof(struct winbindd_request);
117
118 request->cmd = (enum winbindd_cmd)request_type;
119 request->pid = getpid();
120
121 (void)snprintf(request->client_name,
122 sizeof(request->client_name),
123 "%s",
124 winbind_get_client_name());
125 }
126
127 /* Initialise a response structure */
128
129 static void init_response(struct winbindd_response *response)
130 {
131 /* Initialise return value */
132
133 response->result = WINBINDD_ERROR;
134 }
135
136 /* Close established socket */
137
138 static void winbind_close_sock(struct winbindd_context *ctx)
139 {
140 if (!ctx) {
141 return;
142 }
143
144 if (ctx->winbindd_fd != -1) {
145 close(ctx->winbindd_fd);
146 ctx->winbindd_fd = -1;
147 }
148 }
149
150 /* Destructor for global context to ensure fd is closed */
151
152 #ifdef HAVE_DESTRUCTOR_ATTRIBUTE
153 __attribute__((destructor))
154 #elif defined (HAVE_PRAGMA_FINI)
155 #pragma fini (winbind_destructor)
156 #endif
157 static void winbind_destructor(void)
158 {
159 struct winbindd_context *ctx;
160
161 ctx = get_wb_global_ctx();
162 winbind_close_sock(ctx);
163 put_wb_global_ctx();
164 }
165
166 #define CONNECT_TIMEOUT 30
167
168 /* Make sure socket handle isn't stdin, stdout or stderr */
169 #define RECURSION_LIMIT 3
170
171 static int make_nonstd_fd_internals(int fd, int limit /* Recursion limiter */)
172 {
173 int new_fd;
174 if (fd >= 0 && fd <= 2) {
175 #ifdef F_DUPFD
176 if ((new_fd = fcntl(fd, F_DUPFD, 3)) == -1) {
177 return -1;
178 }
179 /* Paranoia */
180 if (new_fd < 3) {
181 close(new_fd);
182 return -1;
183 }
184 close(fd);
185 return new_fd;
186 #else
187 if (limit <= 0)
188 return -1;
189
190 new_fd = dup(fd);
191 if (new_fd == -1)
192 return -1;
193
194 /* use the program stack to hold our list of FDs to close */
195 new_fd = make_nonstd_fd_internals(new_fd, limit - 1);
196 close(fd);
197 return new_fd;
198 #endif
199 }
200 return fd;
201 }
202
203 /****************************************************************************
204 Set a fd into blocking/nonblocking mode. Uses POSIX O_NONBLOCK if available,
205 else
206 if SYSV use O_NDELAY
207 if BSD use FNDELAY
208 Set close on exec also.
209 ****************************************************************************/
210
211 static int make_safe_fd(int fd)
212 {
213 int result, flags;
214 int new_fd = make_nonstd_fd_internals(fd, RECURSION_LIMIT);
215 if (new_fd == -1) {
216 close(fd);
217 return -1;
218 }
219
220 /* Socket should be nonblocking. */
221 #ifdef O_NONBLOCK
222 #define FLAG_TO_SET O_NONBLOCK
223 #else
224 #ifdef SYSV
225 #define FLAG_TO_SET O_NDELAY
226 #else /* BSD */
227 #define FLAG_TO_SET FNDELAY
228 #endif
229 #endif
230
231 if ((flags = fcntl(new_fd, F_GETFL)) == -1) {
232 close(new_fd);
233 return -1;
234 }
235
236 flags |= FLAG_TO_SET;
237 if (fcntl(new_fd, F_SETFL, flags) == -1) {
238 close(new_fd);
239 return -1;
240 }
241
242 #undef FLAG_TO_SET
243
244 /* Socket should be closed on exec() */
245 #ifdef FD_CLOEXEC
246 result = flags = fcntl(new_fd, F_GETFD, 0);
247 if (flags >= 0) {
248 flags |= FD_CLOEXEC;
249 result = fcntl( new_fd, F_SETFD, flags );
250 }
251 if (result < 0) {
252 close(new_fd);
253 return -1;
254 }
255 #endif
256 return new_fd;
257 }
258
259 /**
260 * @internal
261 *
262 * @brief Check if we talk to the privileged pipe which should be owned by root.
263 *
264 * This checks if we have uid_wrapper running and if this is the case it will
265 * allow one to connect to the winbind privileged pipe even it is not owned by root.
266 *
267 * @param[in] uid The uid to check if we can safely talk to the pipe.
268 *
269 * @return If we have access it returns true, else false.
270 */
271 static bool winbind_privileged_pipe_is_root(uid_t uid)
272 {
273 if (uid == 0) {
274 return true;
275 }
276
277 if (uid_wrapper_enabled()) {
278 return true;
279 }
280
281 return false;
282 }
283
284 /* Connect to winbindd socket */
285
286 static int winbind_named_pipe_sock(const char *dir)
287 {
288 struct sockaddr_un sunaddr;
289 struct stat st;
290 int fd;
291 int wait_time;
292 int slept;
293 int ret;
294
295 /* Check permissions on unix socket directory */
296
297 if (lstat(dir, &st) == -1) {
298 errno = ENOENT;
299 return -1;
300 }
301
302 /*
303 * This tells us that the pipe is owned by a privileged
304 * process, as we will be sending passwords to it.
305 */
306 if (!S_ISDIR(st.st_mode) ||
307 !winbind_privileged_pipe_is_root(st.st_uid)) {
308 errno = ENOENT;
309 return -1;
310 }
311
312 /* Connect to socket */
313
314 sunaddr = (struct sockaddr_un) { .sun_family = AF_UNIX };
315
316 ret = snprintf(sunaddr.sun_path, sizeof(sunaddr.sun_path),
317 "%s/%s", dir, WINBINDD_SOCKET_NAME);
318 if ((ret == -1) || (ret >= sizeof(sunaddr.sun_path))) {
319 errno = ENAMETOOLONG;
320 return -1;
321 }
322
323 /* If socket file doesn't exist, don't bother trying to connect
324 with retry. This is an attempt to make the system usable when
325 the winbindd daemon is not running. */
326
327 if (lstat(sunaddr.sun_path, &st) == -1) {
328 errno = ENOENT;
329 return -1;
330 }
331
332 /* Check permissions on unix socket file */
333
334 /*
335 * This tells us that the pipe is owned by a privileged
336 * process, as we will be sending passwords to it.
337 */
338 if (!S_ISSOCK(st.st_mode) ||
339 !winbind_privileged_pipe_is_root(st.st_uid)) {
340 errno = ENOENT;
341 return -1;
342 }
343
344 /* Connect to socket */
345
346 if ((fd = socket(AF_UNIX, SOCK_STREAM, 0)) == -1) {
347 return -1;
348 }
349
350 /* Set socket non-blocking and close on exec. */
351
352 if ((fd = make_safe_fd( fd)) == -1) {
353 return fd;
354 }
355
356 for (wait_time = 0; connect(fd, (struct sockaddr *)&sunaddr, sizeof(sunaddr)) == -1;
357 wait_time += slept) {
358 struct pollfd pfd;
359 int connect_errno = 0;
360 socklen_t errnosize;
361
362 if (wait_time >= CONNECT_TIMEOUT)
363 goto error_out;
364
365 switch (errno) {
366 case EINPROGRESS:
367 pfd.fd = fd;
368 pfd.events = POLLOUT;
369
370 ret = poll(&pfd, 1, (CONNECT_TIMEOUT - wait_time) * 1000);
371
372 if (ret > 0) {
373 errnosize = sizeof(connect_errno);
374
375 ret = getsockopt(fd, SOL_SOCKET,
376 SO_ERROR, &connect_errno, &errnosize);
377
378 if (ret >= 0 && connect_errno == 0) {
379 /* Connect succeed */
380 goto out;
381 }
382 }
383
384 slept = CONNECT_TIMEOUT;
385 break;
386 case EAGAIN:
387 slept = rand() % 3 + 1;
388 sleep(slept);
389 break;
390 default:
391 goto error_out;
392 }
393
394 }
395
396 out:
397
398 return fd;
399
400 error_out:
401
402 close(fd);
403 return -1;
404 }
405
406 static const char *winbindd_socket_dir(void)
407 {
408 if (nss_wrapper_enabled()) {
409 const char *env_dir;
410
411 env_dir = getenv("SELFTEST_WINBINDD_SOCKET_DIR");
412 if (env_dir != NULL) {
413 return env_dir;
414 }
415 }
416
417 return WINBINDD_SOCKET_DIR;
418 }
419
420 /* Connect to winbindd socket */
421
422 static int winbind_open_pipe_sock(struct winbindd_context *ctx,
423 int recursing, int need_priv)
424 {
425 #ifdef HAVE_UNIXSOCKET
426 struct winbindd_request request;
427 struct winbindd_response response;
428
429 ZERO_STRUCT(request);
430 ZERO_STRUCT(response);
431
432 if (!ctx) {
433 return -1;
434 }
435
436 if (ctx->our_pid != getpid()) {
437 winbind_close_sock(ctx);
438 ctx->our_pid = getpid();
439 }
440
441 if ((need_priv != 0) && !ctx->is_privileged) {
442 winbind_close_sock(ctx);
443 }
444
445 if (ctx->winbindd_fd != -1) {
446 return ctx->winbindd_fd;
447 }
448
449 if (recursing) {
450 return -1;
451 }
452
453 ctx->winbindd_fd = winbind_named_pipe_sock(winbindd_socket_dir());
454
455 if (ctx->winbindd_fd == -1) {
456 return -1;
457 }
458
459 ctx->is_privileged = false;
460
461 /* version-check the socket */
462
463 request.wb_flags = WBFLAG_RECURSE;
464 if ((winbindd_request_response(ctx, WINBINDD_INTERFACE_VERSION, &request,
465 &response) != NSS_STATUS_SUCCESS) ||
466 (response.data.interface_version != WINBIND_INTERFACE_VERSION)) {
467 winbind_close_sock(ctx);
468 return -1;
469 }
470
471 if (need_priv == 0) {
472 return ctx->winbindd_fd;
473 }
474
475 /* try and get priv pipe */
476
477 request.wb_flags = WBFLAG_RECURSE;
478
479 /* Note that response needs to be initialized to avoid
480 * crashing on clean up after WINBINDD_PRIV_PIPE_DIR call failed
481 * as interface version (from the first request) returned as a fstring,
482 * thus response.extra_data.data will not be NULL even though
483 * winbindd response did not write over it due to a failure */
484 ZERO_STRUCT(response);
485 if (winbindd_request_response(ctx, WINBINDD_PRIV_PIPE_DIR, &request,
486 &response) == NSS_STATUS_SUCCESS) {
487 int fd;
488 fd = winbind_named_pipe_sock((char *)response.extra_data.data);
489 if (fd != -1) {
490 close(ctx->winbindd_fd);
491 ctx->winbindd_fd = fd;
492 ctx->is_privileged = true;
493 }
494
495 SAFE_FREE(response.extra_data.data);
496 }
497
498 if (!ctx->is_privileged) {
499 return -1;
500 }
501
502 return ctx->winbindd_fd;
503 #else
504 return -1;
505 #endif /* HAVE_UNIXSOCKET */
506 }
507
508 /* Write data to winbindd socket */
509
510 static int winbind_write_sock(struct winbindd_context *ctx, void *buffer,
511 int count, int recursing, int need_priv)
512 {
513 int fd, result, nwritten;
514
515 /* Open connection to winbind daemon */
516
517 restart:
518
519 fd = winbind_open_pipe_sock(ctx, recursing, need_priv);
520 if (fd == -1) {
521 errno = ENOENT;
522 return -1;
523 }
524
525 /* Write data to socket */
526
527 nwritten = 0;
528
529 while(nwritten < count) {
530 struct pollfd pfd;
531 int ret;
532
533 /* Catch pipe close on other end by checking if a read()
534 call would not block by calling poll(). */
535
536 pfd.fd = fd;
537 pfd.events = POLLIN|POLLOUT|POLLHUP;
538
539 ret = poll(&pfd, 1, -1);
540 if (ret == -1) {
541 winbind_close_sock(ctx);
542 return -1; /* poll error */
543 }
544
545 /* Write should be OK if fd not available for reading */
546
547 if ((ret == 1) && (pfd.revents & (POLLIN|POLLHUP|POLLERR))) {
548
549 /* Pipe has closed on remote end */
550
551 winbind_close_sock(ctx);
552 goto restart;
553 }
554
555 /* Do the write */
556
557 result = write(fd, (char *)buffer + nwritten,
558 count - nwritten);
559
560 if ((result == -1) || (result == 0)) {
561
562 /* Write failed */
563
564 winbind_close_sock(ctx);
565 return -1;
566 }
567
568 nwritten += result;
569 }
570
571 return nwritten;
572 }
573
574 /* Read data from winbindd socket */
575
576 static int winbind_read_sock(struct winbindd_context *ctx,
577 void *buffer, int count)
578 {
579 int fd;
580 int nread = 0;
581 int total_time = 0;
582
583 fd = winbind_open_pipe_sock(ctx, false, false);
584 if (fd == -1) {
585 return -1;
586 }
587
588 /* Read data from socket */
589 while(nread < count) {
590 struct pollfd pfd;
591 int ret;
592
593 /* Catch pipe close on other end by checking if a read()
594 call would not block by calling poll(). */
595
596 pfd.fd = fd;
597 pfd.events = POLLIN|POLLHUP;
598
599 /* Wait for 5 seconds for a reply. May need to parameterise this... */
600
601 ret = poll(&pfd, 1, 5000);
602 if (ret == -1) {
603 winbind_close_sock(ctx);
604 return -1; /* poll error */
605 }
606
607 if (ret == 0) {
608 /* Not ready for read yet... */
609 if (total_time >= 300) {
610 /* Timeout */
611 winbind_close_sock(ctx);
612 return -1;
613 }
614 total_time += 5;
615 continue;
616 }
617
618 if ((ret == 1) && (pfd.revents & (POLLIN|POLLHUP|POLLERR))) {
619
620 /* Do the Read */
621
622 int result = read(fd, (char *)buffer + nread,
623 count - nread);
624
625 if ((result == -1) || (result == 0)) {
626
627 /* Read failed. I think the only useful thing we
628 can do here is just return -1 and fail since the
629 transaction has failed half way through. */
630
631 winbind_close_sock(ctx);
632 return -1;
633 }
634
635 nread += result;
636
637 }
638 }
639
640 return nread;
641 }
642
643 /* Read reply */
644
645 static int winbindd_read_reply(struct winbindd_context *ctx,
646 struct winbindd_response *response)
647 {
648 int result1, result2 = 0;
649
650 if (!response) {
651 return -1;
652 }
653
654 /* Read fixed length response */
655
656 result1 = winbind_read_sock(ctx, response,
657 sizeof(struct winbindd_response));
658
659 /* We actually send the pointer value of the extra_data field from
660 the server. This has no meaning in the client's address space
661 so we clear it out. */
662
663 response->extra_data.data = NULL;
664
665 if (result1 == -1) {
666 return -1;
667 }
668
669 if (response->length < sizeof(struct winbindd_response)) {
670 return -1;
671 }
672
673 /* Read variable length response */
674
675 if (response->length > sizeof(struct winbindd_response)) {
676 int extra_data_len = response->length -
677 sizeof(struct winbindd_response);
678
679 /* Mallocate memory for extra data */
680
681 if (!(response->extra_data.data = malloc(extra_data_len))) {
682 return -1;
683 }
684
685 result2 = winbind_read_sock(ctx, response->extra_data.data,
686 extra_data_len);
687 if (result2 == -1) {
688 winbindd_free_response(response);
689 return -1;
690 }
691 }
692
693 /* Return total amount of data read */
694
695 return result1 + result2;
696 }
697
698 /*
699 * send simple types of requests
700 */
701
702 static NSS_STATUS winbindd_send_request(
703 struct winbindd_context *ctx,
704 int req_type,
705 int need_priv,
706 struct winbindd_request *request)
707 {
708 struct winbindd_request lrequest;
709
710 /* Check for our tricky environment variable */
711
712 if (winbind_env_set()) {
713 return NSS_STATUS_NOTFOUND;
714 }
715
716 if (!request) {
717 ZERO_STRUCT(lrequest);
718 request = &lrequest;
719 }
720
721 /* Fill in request and send down pipe */
722
723 winbindd_init_request(request, req_type);
724
725 if (winbind_write_sock(ctx, request, sizeof(*request),
726 request->wb_flags & WBFLAG_RECURSE,
727 need_priv) == -1)
728 {
729 /* Set ENOENT for consistency. Required by some apps */
730 errno = ENOENT;
731
732 return NSS_STATUS_UNAVAIL;
733 }
734
735 if ((request->extra_len != 0) &&
736 (winbind_write_sock(ctx, request->extra_data.data,
737 request->extra_len,
738 request->wb_flags & WBFLAG_RECURSE,
739 need_priv) == -1))
740 {
741 /* Set ENOENT for consistency. Required by some apps */
742 errno = ENOENT;
743
744 return NSS_STATUS_UNAVAIL;
745 }
746
747 return NSS_STATUS_SUCCESS;
748 }
749
750 /*
751 * Get results from winbindd request
752 */
753
754 static NSS_STATUS winbindd_get_response(struct winbindd_context *ctx,
755 struct winbindd_response *response)
756 {
757 struct winbindd_response lresponse;
758
759 if (!response) {
760 ZERO_STRUCT(lresponse);
761 response = &lresponse;
762 }
763
764 init_response(response);
765
766 /* Wait for reply */
767 if (winbindd_read_reply(ctx, response) == -1) {
768 /* Set ENOENT for consistency. Required by some apps */
769 errno = ENOENT;
770
771 return NSS_STATUS_UNAVAIL;
772 }
773
774 /* Throw away extra data if client didn't request it */
775 if (response == &lresponse) {
776 winbindd_free_response(response);
777 }
778
779 /* Copy reply data from socket */
780 if (response->result != WINBINDD_OK) {
781 return NSS_STATUS_NOTFOUND;
782 }
783
784 return NSS_STATUS_SUCCESS;
785 }
786
787 /* Handle simple types of requests */
788
789 NSS_STATUS winbindd_request_response(struct winbindd_context *ctx,
790 int req_type,
791 struct winbindd_request *request,
792 struct winbindd_response *response)
793 {
794 NSS_STATUS status = NSS_STATUS_UNAVAIL;
795 bool release_global_ctx = false;
796
797 if (ctx == NULL) {
798 ctx = get_wb_global_ctx();
799 release_global_ctx = true;
800 }
801
802 status = winbindd_send_request(ctx, req_type, 0, request);
803 if (status != NSS_STATUS_SUCCESS) {
804 goto out;
805 }
806 status = winbindd_get_response(ctx, response);
807
808 out:
809 if (release_global_ctx) {
810 put_wb_global_ctx();
811 }
812 return status;
813 }
814
815 NSS_STATUS winbindd_priv_request_response(struct winbindd_context *ctx,
816 int req_type,
817 struct winbindd_request *request,
818 struct winbindd_response *response)
819 {
820 NSS_STATUS status = NSS_STATUS_UNAVAIL;
821 bool release_global_ctx = false;
822
823 if (ctx == NULL) {
824 ctx = get_wb_global_ctx();
825 release_global_ctx = true;
826 }
827
828 status = winbindd_send_request(ctx, req_type, 1, request);
829 if (status != NSS_STATUS_SUCCESS) {
830 goto out;
831 }
832 status = winbindd_get_response(ctx, response);
833
834 out:
835 if (release_global_ctx) {
836 put_wb_global_ctx();
837 }
838 return status;
839 }
840
841 /* Create and free winbindd context */
842
843 struct winbindd_context *winbindd_ctx_create(void)
844 {
845 struct winbindd_context *ctx;
846
847 ctx = calloc(1, sizeof(struct winbindd_context));
848
849 if (!ctx) {
850 return NULL;
851 }
852
853 ctx->winbindd_fd = -1;
854
855 return ctx;
856 }
857
858 void winbindd_ctx_free(struct winbindd_context *ctx)
859 {
860 winbind_close_sock(ctx);
861 free(ctx);
862 }
Samba GIT mirror