2 Unix SMB/CIFS implementation.
3 Net_sam_logon info3 helpers
4 Copyright (C) Alexander Bokovoy 2002.
5 Copyright (C) Andrew Bartlett 2002.
6 Copyright (C) Gerald Carter 2003.
7 Copyright (C) Tim Potter 2003.
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program; if not, write to the Free Software
21 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
26 #define NETSAMLOGON_TDB "netsamlogon_cache.tdb"
28 static TDB_CONTEXT
*netsamlogon_tdb
= NULL
;
30 /***********************************************************************
32 ***********************************************************************/
34 BOOL
netsamlogon_cache_init(void)
36 if (!netsamlogon_tdb
) {
37 netsamlogon_tdb
= tdb_open_log(lock_path(NETSAMLOGON_TDB
), 0,
38 TDB_DEFAULT
, O_RDWR
| O_CREAT
, 0600);
41 return (netsamlogon_tdb
!= NULL
);
45 /***********************************************************************
46 Shutdown samlogon_cache database
47 ***********************************************************************/
49 BOOL
netsamlogon_cache_shutdown(void)
52 return (tdb_close(netsamlogon_tdb
) == 0);
57 /***********************************************************************
58 Clear cache getpwnam and getgroups entries from the winbindd cache
59 ***********************************************************************/
60 void netsamlogon_clear_cached_user(TDB_CONTEXT
*tdb
, NET_USER_INFO_3
*user
)
66 /* We may need to call this function from smbd which will not have
67 winbindd_cache.tdb open. Open the tdb if a NULL is passed. */
70 tdb
= tdb_open_log(lock_path("winbindd_cache.tdb"), 5000,
71 TDB_DEFAULT
, O_RDWR
, 0600);
73 DEBUG(5, ("netsamlogon_clear_cached_user: failed to open cache\n"));
79 unistr2_to_ascii(domain
, &user
->uni_logon_dom
, sizeof(domain
) - 1);
81 /* Clear U/DOMAIN/RID cache entry */
83 asprintf(&key
.dptr
, "U/%s/%d", domain
, user
->user_rid
);
84 key
.dsize
= strlen(key
.dptr
) - 1; /* keys are not NULL terminated */
86 DEBUG(10, ("netsamlogon_clear_cached_user: clearing %s\n", key
.dptr
));
92 /* Clear UG/DOMAIN/RID cache entry */
94 asprintf(&key
.dptr
, "UG/%s/%d", domain
, user
->user_rid
);
95 key
.dsize
= strlen(key
.dptr
) - 1; /* keys are not NULL terminated */
97 DEBUG(10, ("netsamlogon_clear_cached_user: clearing %s\n", key
.dptr
));
107 /***********************************************************************
108 Store a NET_USER_INFO_3 structure in a tdb for later user
109 username should be in UTF-8 format
110 ***********************************************************************/
112 BOOL
netsamlogon_cache_store(TALLOC_CTX
*mem_ctx
, const char * username
, NET_USER_INFO_3
*user
)
119 time_t t
= time(NULL
);
122 if (!netsamlogon_cache_init()) {
123 DEBUG(0,("netsamlogon_cache_store: cannot open %s for write!\n", NETSAMLOGON_TDB
));
127 sid_copy( &user_sid
, &user
->dom_sid
.sid
);
128 sid_append_rid( &user_sid
, user
->user_rid
);
130 /* Prepare key as DOMAIN-SID/USER-RID string */
131 slprintf(keystr
, sizeof(keystr
), "%s", sid_string_static(&user_sid
));
133 DEBUG(10,("netsamlogon_cache_store: SID [%s]\n", keystr
));
135 /* only Samba fills in the username, not sure why NT doesn't */
136 /* so we fill it in since winbindd_getpwnam() makes use of it */
138 if ( !user
->uni_user_name
.buffer
) {
139 init_unistr2( &user
->uni_user_name
, username
, UNI_STR_TERMINATE
);
140 init_uni_hdr( &user
->hdr_user_name
, &user
->uni_user_name
);
145 prs_init( &ps
,MAX_PDU_FRAG_LEN
, mem_ctx
, MARSHALL
);
147 if ( !prs_uint32( "timestamp", &ps
, 0, (uint32
*)&t
) )
150 if ( net_io_user_info3("", user
, &ps
, 0, 3) )
152 data
.dsize
= prs_offset( &ps
);
153 data
.dptr
= prs_data_p( &ps
);
155 if (tdb_store_bystring(netsamlogon_tdb
, keystr
, data
, TDB_REPLACE
) != -1)
164 /***********************************************************************
165 Retrieves a NET_USER_INFO_3 structure from a tdb. Caller must
166 free the user_info struct (malloc()'d memory)
167 ***********************************************************************/
169 NET_USER_INFO_3
* netsamlogon_cache_get( TALLOC_CTX
*mem_ctx
, const DOM_SID
*user_sid
)
171 NET_USER_INFO_3
*user
= NULL
;
177 if (!netsamlogon_cache_init()) {
178 DEBUG(0,("netsamlogon_cache_store: cannot open %s for write!\n", NETSAMLOGON_TDB
));
182 /* Prepare key as DOMAIN-SID/USER-RID string */
183 slprintf(keystr
, sizeof(keystr
), "%s", sid_string_static(user_sid
));
184 DEBUG(10,("netsamlogon_cache_get: SID [%s]\n", keystr
));
186 key
.dsize
= strlen(keystr
)+1;
187 data
= tdb_fetch( netsamlogon_tdb
, key
);
191 if ( (user
= SMB_MALLOC_P(NET_USER_INFO_3
)) == NULL
)
194 prs_init( &ps
, 0, mem_ctx
, UNMARSHALL
);
195 prs_give_memory( &ps
, data
.dptr
, data
.dsize
, True
);
197 if ( !prs_uint32( "timestamp", &ps
, 0, &t
) ) {
202 if ( !net_io_user_info3("", user
, &ps
, 0, 3) ) {
208 #if 0 /* The netsamlogon cache needs to hang around. Something about
209 this feels wrong, but it is the only way we can get all of the
210 groups. The old universal groups cache didn't expire either.
213 time_t now
= time(NULL
);
216 /* is the entry expired? */
219 if ( (time_diff
< 0 ) || (time_diff
> lp_winbind_cache_time()) ) {
220 DEBUG(10,("netsamlogon_cache_get: cache entry expired \n"));
221 tdb_delete( netsamlogon_tdb
, key
);
230 BOOL
netsamlogon_cache_have(const DOM_SID
*user_sid
)
232 TALLOC_CTX
*mem_ctx
= talloc_init("netsamlogon_cache_have");
233 NET_USER_INFO_3
*user
= NULL
;
239 user
= netsamlogon_cache_get(mem_ctx
, user_sid
);
241 result
= (user
!= NULL
);
243 talloc_destroy(mem_ctx
);