search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
libndr: change subcontext buffer allocation to allocate on subcontext_start.
[Samba/bb.git] / nsswitch / libwbclient / wbc_sid.c
bloba0b8d0f6a90da0d8c001307a596eeed0ce907ce8
1 /*
2 Unix SMB/CIFS implementation.
3
4 Winbind client API
5
6 Copyright (C) Gerald (Jerry) Carter 2007
7
8
9 This library is free software; you can redistribute it and/or
10 modify it under the terms of the GNU Lesser General Public
11 License as published by the Free Software Foundation; either
12 version 3 of the License, or (at your option) any later version.
13
14 This library is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17 Library General Public License for more details.
18
19 You should have received a copy of the GNU Lesser General Public License
20 along with this program. If not, see <http://www.gnu.org/licenses/>.
21 */
22
23 /* Required Headers */
24
25 #include "replace.h"
26 #include "libwbclient.h"
27 #include "../winbind_client.h"
28
29 /* Convert a binary SID to a character string */
30 wbcErr wbcSidToString(const struct wbcDomainSid *sid,
31 char **sid_string)
32 {
33 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
34 uint32_t id_auth;
35 int i;
36 char *tmp = NULL;
37
38 if (!sid) {
39 wbc_status = WBC_ERR_INVALID_SID;
40 BAIL_ON_WBC_ERROR(wbc_status);
41 }
42
43 id_auth = sid->id_auth[5] +
44 (sid->id_auth[4] << 8) +
45 (sid->id_auth[3] << 16) +
46 (sid->id_auth[2] << 24);
47
48 tmp = talloc_asprintf(NULL, "S-%d-%d", sid->sid_rev_num, id_auth);
49 BAIL_ON_PTR_ERROR(tmp, wbc_status);
50
51 for (i=0; i<sid->num_auths; i++) {
52 char *tmp2;
53 tmp2 = talloc_asprintf_append(tmp, "-%u", sid->sub_auths[i]);
54 BAIL_ON_PTR_ERROR(tmp2, wbc_status);
55
56 tmp = tmp2;
57 }
58
59 *sid_string = tmp;
60 tmp = NULL;
61
62 wbc_status = WBC_ERR_SUCCESS;
63
64 done:
65 talloc_free(tmp);
66
67 return wbc_status;
68 }
69
70 /* Convert a character string to a binary SID */
71 wbcErr wbcStringToSid(const char *str,
72 struct wbcDomainSid *sid)
73 {
74 const char *p;
75 char *q;
76 uint32_t x;
77 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
78
79 if (!sid) {
80 wbc_status = WBC_ERR_INVALID_PARAM;
81 BAIL_ON_WBC_ERROR(wbc_status);
82 }
83
84 /* Sanity check for either "S-" or "s-" */
85
86 if (!str
87 || (str[0]!='S' && str[0]!='s')
88 || (str[1]!='-'))
89 {
90 wbc_status = WBC_ERR_INVALID_PARAM;
91 BAIL_ON_WBC_ERROR(wbc_status);
92 }
93
94 /* Get the SID revision number */
95
96 p = str+2;
97 x = (uint32_t)strtol(p, &q, 10);
98 if (x==0 || !q || *q!='-') {
99 wbc_status = WBC_ERR_INVALID_SID;
100 BAIL_ON_WBC_ERROR(wbc_status);
101 }
102 sid->sid_rev_num = (uint8_t)x;
103
104 /* Next the Identifier Authority. This is stored in big-endian
105 in a 6 byte array. */
106
107 p = q+1;
108 x = (uint32_t)strtol(p, &q, 10);
109 if (!q || *q!='-') {
110 wbc_status = WBC_ERR_INVALID_SID;
111 BAIL_ON_WBC_ERROR(wbc_status);
112 }
113 sid->id_auth[5] = (x & 0x000000ff);
114 sid->id_auth[4] = (x & 0x0000ff00) >> 8;
115 sid->id_auth[3] = (x & 0x00ff0000) >> 16;
116 sid->id_auth[2] = (x & 0xff000000) >> 24;
117 sid->id_auth[1] = 0;
118 sid->id_auth[0] = 0;
119
120 /* now read the the subauthorities */
121
122 p = q +1;
123 sid->num_auths = 0;
124 while (sid->num_auths < WBC_MAXSUBAUTHS) {
125 x=(uint32_t)strtoul(p, &q, 10);
126 if (p == q)
127 break;
128 if (q == NULL) {
129 wbc_status = WBC_ERR_INVALID_SID;
130 BAIL_ON_WBC_ERROR(wbc_status);
131 }
132 sid->sub_auths[sid->num_auths++] = x;
133
134 if ((*q!='-') || (*q=='\0'))
135 break;
136 p = q + 1;
137 }
138
139 /* IF we ended early, then the SID could not be converted */
140
141 if (q && *q!='\0') {
142 wbc_status = WBC_ERR_INVALID_SID;
143 BAIL_ON_WBC_ERROR(wbc_status);
144 }
145
146 wbc_status = WBC_ERR_SUCCESS;
147
148 done:
149 return wbc_status;
150
151 }
152
153
154 /* Convert a domain and name to SID */
155 wbcErr wbcLookupName(const char *domain,
156 const char *name,
157 struct wbcDomainSid *sid,
158 enum wbcSidType *name_type)
159 {
160 struct winbindd_request request;
161 struct winbindd_response response;
162 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
163
164 if (!sid || !name_type) {
165 wbc_status = WBC_ERR_INVALID_PARAM;
166 BAIL_ON_WBC_ERROR(wbc_status);
167 }
168
169 /* Initialize request */
170
171 ZERO_STRUCT(request);
172 ZERO_STRUCT(response);
173
174 /* dst is already null terminated from the memset above */
175
176 strncpy(request.data.name.dom_name, domain,
177 sizeof(request.data.name.dom_name)-1);
178 strncpy(request.data.name.name, name,
179 sizeof(request.data.name.name)-1);
180
181 wbc_status = wbcRequestResponse(WINBINDD_LOOKUPNAME,
182 &request,
183 &response);
184 BAIL_ON_WBC_ERROR(wbc_status);
185
186 wbc_status = wbcStringToSid(response.data.sid.sid, sid);
187 BAIL_ON_WBC_ERROR(wbc_status);
188
189 *name_type = (enum wbcSidType)response.data.sid.type;
190
191 wbc_status = WBC_ERR_SUCCESS;
192
193 done:
194 return wbc_status;
195 }
196
197
198 /* Convert a SID to a domain and name */
199 wbcErr wbcLookupSid(const struct wbcDomainSid *sid,
200 char **pdomain,
201 char **pname,
202 enum wbcSidType *pname_type)
203 {
204 struct winbindd_request request;
205 struct winbindd_response response;
206 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
207 char *sid_string = NULL;
208 char *domain = NULL;
209 char *name = NULL;
210 enum wbcSidType name_type = WBC_SID_NAME_USE_NONE;
211
212 if (!sid) {
213 wbc_status = WBC_ERR_INVALID_PARAM;
214 BAIL_ON_WBC_ERROR(wbc_status);
215 }
216
217 /* Initialize request */
218
219 ZERO_STRUCT(request);
220 ZERO_STRUCT(response);
221
222 /* dst is already null terminated from the memset above */
223
224 wbc_status = wbcSidToString(sid, &sid_string);
225 BAIL_ON_WBC_ERROR(wbc_status);
226
227 strncpy(request.data.sid, sid_string, sizeof(request.data.sid)-1);
228 wbcFreeMemory(sid_string);
229
230 /* Make request */
231
232 wbc_status = wbcRequestResponse(WINBINDD_LOOKUPSID,
233 &request,
234 &response);
235 BAIL_ON_WBC_ERROR(wbc_status);
236
237 /* Copy out result */
238
239 domain = talloc_strdup(NULL, response.data.name.dom_name);
240 BAIL_ON_PTR_ERROR(domain, wbc_status);
241
242 name = talloc_strdup(NULL, response.data.name.name);
243 BAIL_ON_PTR_ERROR(name, wbc_status);
244
245 name_type = (enum wbcSidType)response.data.name.type;
246
247 wbc_status = WBC_ERR_SUCCESS;
248
249 done:
250 if (WBC_ERROR_IS_OK(wbc_status)) {
251 if (pdomain != NULL) {
252 *pdomain = domain;
253 } else {
254 TALLOC_FREE(domain);
255 }
256 if (pname != NULL) {
257 *pname = name;
258 } else {
259 TALLOC_FREE(name);
260 }
261 if (pname_type != NULL) {
262 *pname_type = name_type;
263 }
264 }
265 else {
266 #if 0
267 /*
268 * Found by Coverity: In this particular routine we can't end
269 * up here with a non-NULL name. Further up there are just two
270 * exit paths that lead here, neither of which leave an
271 * allocated name. If you add more paths up there, re-activate
272 * this.
273 */
274 if (name != NULL) {
275 talloc_free(name);
276 }
277 #endif
278 if (domain != NULL) {
279 talloc_free(domain);
280 }
281 }
282
283 return wbc_status;
284 }
285
286 /* Translate a collection of RIDs within a domain to names */
287
288 wbcErr wbcLookupRids(struct wbcDomainSid *dom_sid,
289 int num_rids,
290 uint32_t *rids,
291 const char **pp_domain_name,
292 const char ***pnames,
293 enum wbcSidType **ptypes)
294 {
295 size_t i, len, ridbuf_size;
296 char *ridlist;
297 char *p;
298 struct winbindd_request request;
299 struct winbindd_response response;
300 char *sid_string = NULL;
301 char *domain_name = NULL;
302 const char **names = NULL;
303 enum wbcSidType *types = NULL;
304 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
305
306 /* Initialise request */
307
308 ZERO_STRUCT(request);
309 ZERO_STRUCT(response);
310
311 if (!dom_sid || (num_rids == 0)) {
312 wbc_status = WBC_ERR_INVALID_PARAM;
313 BAIL_ON_WBC_ERROR(wbc_status);
314 }
315
316 wbc_status = wbcSidToString(dom_sid, &sid_string);
317 BAIL_ON_WBC_ERROR(wbc_status);
318
319 strncpy(request.data.sid, sid_string, sizeof(request.data.sid)-1);
320 wbcFreeMemory(sid_string);
321
322 /* Even if all the Rids were of maximum 32bit values,
323 we would only have 11 bytes per rid in the final array
324 ("4294967296" + \n). Add one more byte for the
325 terminating '\0' */
326
327 ridbuf_size = (sizeof(char)*11) * num_rids + 1;
328
329 ridlist = talloc_zero_array(NULL, char, ridbuf_size);
330 BAIL_ON_PTR_ERROR(ridlist, wbc_status);
331
332 len = 0;
333 for (i=0; i<num_rids && (len-1)>0; i++) {
334 char ridstr[12];
335
336 len = strlen(ridlist);
337 p = ridlist + len;
338
339 snprintf( ridstr, sizeof(ridstr)-1, "%u\n", rids[i]);
340 strncat(p, ridstr, ridbuf_size-len-1);
341 }
342
343 request.extra_data.data = ridlist;
344 request.extra_len = strlen(ridlist)+1;
345
346 wbc_status = wbcRequestResponse(WINBINDD_LOOKUPRIDS,
347 &request,
348 &response);
349 talloc_free(ridlist);
350 BAIL_ON_WBC_ERROR(wbc_status);
351
352 domain_name = talloc_strdup(NULL, response.data.domain_name);
353 BAIL_ON_PTR_ERROR(domain_name, wbc_status);
354
355 names = talloc_array(NULL, const char*, num_rids);
356 BAIL_ON_PTR_ERROR(names, wbc_status);
357
358 types = talloc_array(NULL, enum wbcSidType, num_rids);
359 BAIL_ON_PTR_ERROR(types, wbc_status);
360
361 p = (char *)response.extra_data.data;
362
363 for (i=0; i<num_rids; i++) {
364 char *q;
365
366 if (*p == '\0') {
367 wbc_status = WBC_ERR_INVALID_RESPONSE;
368 BAIL_ON_WBC_ERROR(wbc_status);
369 }
370
371 types[i] = (enum wbcSidType)strtoul(p, &q, 10);
372
373 if (*q != ' ') {
374 wbc_status = WBC_ERR_INVALID_RESPONSE;
375 BAIL_ON_WBC_ERROR(wbc_status);
376 }
377
378 p = q+1;
379
380 if ((q = strchr(p, '\n')) == NULL) {
381 wbc_status = WBC_ERR_INVALID_RESPONSE;
382 BAIL_ON_WBC_ERROR(wbc_status);
383 }
384
385 *q = '\0';
386
387 names[i] = talloc_strdup(names, p);
388 BAIL_ON_PTR_ERROR(names[i], wbc_status);
389
390 p = q+1;
391 }
392
393 if (*p != '\0') {
394 wbc_status = WBC_ERR_INVALID_RESPONSE;
395 BAIL_ON_WBC_ERROR(wbc_status);
396 }
397
398 wbc_status = WBC_ERR_SUCCESS;
399
400 done:
401 winbindd_free_response(&response);
402
403 if (WBC_ERROR_IS_OK(wbc_status)) {
404 *pp_domain_name = domain_name;
405 *pnames = names;
406 *ptypes = types;
407 }
408 else {
409 if (domain_name)
410 talloc_free(domain_name);
411 if (names)
412 talloc_free(names);
413 if (types)
414 talloc_free(types);
415 }
416
417 return wbc_status;
418 }
419
420 /* Get the groups a user belongs to */
421 wbcErr wbcLookupUserSids(const struct wbcDomainSid *user_sid,
422 bool domain_groups_only,
423 uint32_t *num_sids,
424 struct wbcDomainSid **_sids)
425 {
426 uint32_t i;
427 const char *s;
428 struct winbindd_request request;
429 struct winbindd_response response;
430 char *sid_string = NULL;
431 struct wbcDomainSid *sids = NULL;
432 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
433 int cmd;
434
435 /* Initialise request */
436
437 ZERO_STRUCT(request);
438 ZERO_STRUCT(response);
439
440 if (!user_sid) {
441 wbc_status = WBC_ERR_INVALID_PARAM;
442 BAIL_ON_WBC_ERROR(wbc_status);
443 }
444
445 wbc_status = wbcSidToString(user_sid, &sid_string);
446 BAIL_ON_WBC_ERROR(wbc_status);
447
448 strncpy(request.data.sid, sid_string, sizeof(request.data.sid)-1);
449 wbcFreeMemory(sid_string);
450
451 if (domain_groups_only) {
452 cmd = WINBINDD_GETUSERDOMGROUPS;
453 } else {
454 cmd = WINBINDD_GETUSERSIDS;
455 }
456
457 wbc_status = wbcRequestResponse(cmd,
458 &request,
459 &response);
460 BAIL_ON_WBC_ERROR(wbc_status);
461
462 if (response.data.num_entries &&
463 !response.extra_data.data) {
464 wbc_status = WBC_ERR_INVALID_RESPONSE;
465 BAIL_ON_WBC_ERROR(wbc_status);
466 }
467
468 sids = talloc_array(NULL, struct wbcDomainSid,
469 response.data.num_entries);
470 BAIL_ON_PTR_ERROR(sids, wbc_status);
471
472 s = (const char *)response.extra_data.data;
473 for (i = 0; i < response.data.num_entries; i++) {
474 char *n = strchr(s, '\n');
475 if (n) {
476 *n = '\0';
477 }
478 wbc_status = wbcStringToSid(s, &sids[i]);
479 BAIL_ON_WBC_ERROR(wbc_status);
480 s += strlen(s) + 1;
481 }
482
483 *num_sids = response.data.num_entries;
484 *_sids = sids;
485 sids = NULL;
486 wbc_status = WBC_ERR_SUCCESS;
487
488 done:
489 winbindd_free_response(&response);
490 if (sids) {
491 talloc_free(sids);
492 }
493
494 return wbc_status;
495 }
496
497 static inline
498 wbcErr _sid_to_rid(struct wbcDomainSid *sid, uint32_t *rid)
499 {
500 if (sid->num_auths < 1) {
501 return WBC_ERR_INVALID_RESPONSE;
502 }
503 *rid = sid->sub_auths[sid->num_auths - 1];
504
505 return WBC_ERR_SUCCESS;
506 }
507
508 /* Get alias membership for sids */
509 wbcErr wbcGetSidAliases(const struct wbcDomainSid *dom_sid,
510 struct wbcDomainSid *sids,
511 uint32_t num_sids,
512 uint32_t **alias_rids,
513 uint32_t *num_alias_rids)
514 {
515 uint32_t i;
516 const char *s;
517 struct winbindd_request request;
518 struct winbindd_response response;
519 char *sid_string = NULL;
520 ssize_t sid_len;
521 ssize_t extra_data_len = 0;
522 char * extra_data = NULL;
523 ssize_t buflen = 0;
524 struct wbcDomainSid sid;
525 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
526 uint32_t * rids = NULL;
527
528 /* Initialise request */
529
530 ZERO_STRUCT(request);
531 ZERO_STRUCT(response);
532
533 if (!dom_sid) {
534 wbc_status = WBC_ERR_INVALID_PARAM;
535 BAIL_ON_WBC_ERROR(wbc_status);
536 }
537
538 wbc_status = wbcSidToString(dom_sid, &sid_string);
539 BAIL_ON_WBC_ERROR(wbc_status);
540
541 strncpy(request.data.sid, sid_string, sizeof(request.data.sid)-1);
542 wbcFreeMemory(sid_string);
543 sid_string = NULL;
544
545 /* Lets assume each sid is around 54 characters
546 * S-1-5-AAAAAAAAAAA-BBBBBBBBBBB-CCCCCCCCCCC-DDDDDDDDDDD\n */
547 buflen = 54 * num_sids;
548 extra_data = talloc_array(NULL, char, buflen);
549 if (!extra_data) {
550 wbc_status = WBC_ERR_NO_MEMORY;
551 BAIL_ON_WBC_ERROR(wbc_status);
552 }
553
554 /* Build the sid list */
555 for (i=0; i<num_sids; i++) {
556 if (sid_string) {
557 wbcFreeMemory(sid_string);
558 sid_string = NULL;
559 }
560 wbc_status = wbcSidToString(&sids[i], &sid_string);
561 BAIL_ON_WBC_ERROR(wbc_status);
562
563 sid_len = strlen(sid_string);
564
565 if (buflen < extra_data_len + sid_len + 2) {
566 buflen *= 2;
567 extra_data = talloc_realloc(NULL, extra_data,
568 char, buflen);
569 if (!extra_data) {
570 wbc_status = WBC_ERR_NO_MEMORY;
571 BAIL_ON_WBC_ERROR(wbc_status);
572 }
573 }
574
575 strncpy(&extra_data[extra_data_len], sid_string,
576 buflen - extra_data_len);
577 extra_data_len += sid_len;
578 extra_data[extra_data_len++] = '\n';
579 extra_data[extra_data_len] = '\0';
580 }
581
582 request.extra_data.data = extra_data;
583 request.extra_len = extra_data_len;
584
585 wbc_status = wbcRequestResponse(WINBINDD_GETSIDALIASES,
586 &request,
587 &response);
588 BAIL_ON_WBC_ERROR(wbc_status);
589
590 if (response.data.num_entries &&
591 !response.extra_data.data) {
592 wbc_status = WBC_ERR_INVALID_RESPONSE;
593 BAIL_ON_WBC_ERROR(wbc_status);
594 }
595
596 rids = talloc_array(NULL, uint32_t,
597 response.data.num_entries);
598 BAIL_ON_PTR_ERROR(sids, wbc_status);
599
600 s = (const char *)response.extra_data.data;
601 for (i = 0; i < response.data.num_entries; i++) {
602 char *n = strchr(s, '\n');
603 if (n) {
604 *n = '\0';
605 }
606 wbc_status = wbcStringToSid(s, &sid);
607 BAIL_ON_WBC_ERROR(wbc_status);
608 wbc_status = _sid_to_rid(&sid, &rids[i]);
609 BAIL_ON_WBC_ERROR(wbc_status);
610 s += strlen(s) + 1;
611 }
612
613 *num_alias_rids = response.data.num_entries;
614 *alias_rids = rids;
615 rids = NULL;
616 wbc_status = WBC_ERR_SUCCESS;
617
618 done:
619 if (sid_string) {
620 wbcFreeMemory(sid_string);
621 }
622 if (extra_data) {
623 talloc_free(extra_data);
624 }
625 winbindd_free_response(&response);
626 if (rids) {
627 talloc_free(rids);
628 }
629
630 return wbc_status;
631 }
632
633
634 /* Lists Users */
635 wbcErr wbcListUsers(const char *domain_name,
636 uint32_t *_num_users,
637 const char ***_users)
638 {
639 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
640 struct winbindd_request request;
641 struct winbindd_response response;
642 uint32_t num_users = 0;
643 const char **users = NULL;
644 const char *next;
645
646 /* Initialise request */
647
648 ZERO_STRUCT(request);
649 ZERO_STRUCT(response);
650
651 if (domain_name) {
652 strncpy(request.domain_name, domain_name,
653 sizeof(request.domain_name)-1);
654 }
655
656 wbc_status = wbcRequestResponse(WINBINDD_LIST_USERS,
657 &request,
658 &response);
659 BAIL_ON_WBC_ERROR(wbc_status);
660
661 /* Look through extra data */
662
663 next = (const char *)response.extra_data.data;
664 while (next) {
665 const char **tmp;
666 const char *current = next;
667 char *k = strchr(next, ',');
668 if (k) {
669 k[0] = '\0';
670 next = k+1;
671 } else {
672 next = NULL;
673 }
674
675 tmp = talloc_realloc(NULL, users,
676 const char *,
677 num_users+1);
678 BAIL_ON_PTR_ERROR(tmp, wbc_status);
679 users = tmp;
680
681 users[num_users] = talloc_strdup(users, current);
682 BAIL_ON_PTR_ERROR(users[num_users], wbc_status);
683
684 num_users++;
685 }
686
687 *_num_users = num_users;
688 *_users = users;
689 users = NULL;
690 wbc_status = WBC_ERR_SUCCESS;
691
692 done:
693 winbindd_free_response(&response);
694 if (users) {
695 talloc_free(users);
696 }
697 return wbc_status;
698 }
699
700 /* Lists Groups */
701 wbcErr wbcListGroups(const char *domain_name,
702 uint32_t *_num_groups,
703 const char ***_groups)
704 {
705 wbcErr wbc_status = WBC_ERR_UNKNOWN_FAILURE;
706 struct winbindd_request request;
707 struct winbindd_response response;
708 uint32_t num_groups = 0;
709 const char **groups = NULL;
710 const char *next;
711
712 /* Initialise request */
713
714 ZERO_STRUCT(request);
715 ZERO_STRUCT(response);
716
717 if (domain_name) {
718 strncpy(request.domain_name, domain_name,
719 sizeof(request.domain_name)-1);
720 }
721
722 wbc_status = wbcRequestResponse(WINBINDD_LIST_GROUPS,
723 &request,
724 &response);
725 BAIL_ON_WBC_ERROR(wbc_status);
726
727 /* Look through extra data */
728
729 next = (const char *)response.extra_data.data;
730 while (next) {
731 const char **tmp;
732 const char *current = next;
733 char *k = strchr(next, ',');
734 if (k) {
735 k[0] = '\0';
736 next = k+1;
737 } else {
738 next = NULL;
739 }
740
741 tmp = talloc_realloc(NULL, groups,
742 const char *,
743 num_groups+1);
744 BAIL_ON_PTR_ERROR(tmp, wbc_status);
745 groups = tmp;
746
747 groups[num_groups] = talloc_strdup(groups, current);
748 BAIL_ON_PTR_ERROR(groups[num_groups], wbc_status);
749
750 num_groups++;
751 }
752
753 *_num_groups = num_groups;
754 *_groups = groups;
755 groups = NULL;
756 wbc_status = WBC_ERR_SUCCESS;
757
758 done:
759 winbindd_free_response(&response);
760 if (groups) {
761 talloc_free(groups);
762 }
763 return wbc_status;
764 }
765
766 wbcErr wbcGetDisplayName(const struct wbcDomainSid *sid,
767 char **pdomain,
768 char **pfullname,
769 enum wbcSidType *pname_type)
770 {
771 wbcErr wbc_status;
772 char *domain = NULL;
773 char *name = NULL;
774 enum wbcSidType name_type;
775
776 wbc_status = wbcLookupSid(sid, &domain, &name, &name_type);
777 BAIL_ON_WBC_ERROR(wbc_status);
778
779 if (name_type == WBC_SID_NAME_USER) {
780 uid_t uid;
781 struct passwd *pwd;
782
783 wbc_status = wbcSidToUid(sid, &uid);
784 BAIL_ON_WBC_ERROR(wbc_status);
785
786 wbc_status = wbcGetpwuid(uid, &pwd);
787 BAIL_ON_WBC_ERROR(wbc_status);
788
789 wbcFreeMemory(name);
790
791 name = talloc_strdup(NULL, pwd->pw_gecos);
792 BAIL_ON_PTR_ERROR(name, wbc_status);
793 }
794
795 wbc_status = WBC_ERR_SUCCESS;
796
797 done:
798 if (WBC_ERROR_IS_OK(wbc_status)) {
799 *pdomain = domain;
800 *pfullname = name;
801 *pname_type = name_type;
802 } else {
803 wbcFreeMemory(domain);
804 wbcFreeMemory(name);
805 }
806
807 return wbc_status;
808 }
809
810 const char* wbcSidTypeString(enum wbcSidType type)
811 {
812 switch (type) {
813 case WBC_SID_NAME_USE_NONE: return "SID_NONE";
814 case WBC_SID_NAME_USER: return "SID_USER";
815 case WBC_SID_NAME_DOM_GRP: return "SID_DOM_GROUP";
816 case WBC_SID_NAME_DOMAIN: return "SID_DOMAIN";
817 case WBC_SID_NAME_ALIAS: return "SID_ALIAS";
818 case WBC_SID_NAME_WKN_GRP: return "SID_WKN_GROUP";
819 case WBC_SID_NAME_DELETED: return "SID_DELETED";
820 case WBC_SID_NAME_INVALID: return "SID_INVALID";
821 case WBC_SID_NAME_UNKNOWN: return "SID_UNKNOWN";
822 case WBC_SID_NAME_COMPUTER: return "SID_COMPUTER";
823 default: return "Unknown type";
824 }
825 }