2 * Samba Unix/Linux SMB client library
4 * Copyright (C) Gregor Beck 2011
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 3 of the License, or
9 * (at your option) any later version.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program. If not, see <http://www.gnu.org/licenses/>.
21 #include "smbd/globals.h"
22 #include "smbd/smbd.h"
23 #include "../libcli/security/dom_sid.h"
24 #include "../libcli/security/security_token.h"
25 #include "idmap_cache.h"
26 #include "passdb/lookup_sid.h"
29 #include "lib/id_cache.h"
31 static bool uid_in_use(const struct user_struct
*user
, uid_t uid
)
34 if (user
->session_info
&&
35 (user
->session_info
->unix_token
->uid
== uid
)) {
43 static bool gid_in_use(const struct user_struct
*user
, gid_t gid
)
46 if (user
->session_info
!= NULL
) {
48 struct security_unix_token
*utok
;
50 utok
= user
->session_info
->unix_token
;
51 if (utok
->gid
== gid
) {
54 for(i
=0; i
<utok
->ngroups
; i
++) {
55 if (utok
->groups
[i
] == gid
) {
65 static bool sid_in_use(const struct user_struct
*user
,
66 const struct dom_sid
*psid
)
69 struct security_token
*tok
;
71 if (user
->session_info
== NULL
) {
74 tok
= user
->session_info
->security_token
;
77 * Not sure session_info->security_token can
78 * ever be NULL. This check might be not
83 if (security_token_has_sid(tok
, psid
)) {
91 static bool id_in_use(const struct user_struct
*user
,
92 const struct id_cache_ref
*id
)
96 return uid_in_use(user
, id
->id
.uid
);
98 return gid_in_use(user
, id
->id
.gid
);
100 return sid_in_use(user
, &id
->id
.sid
);
107 static void id_cache_kill(struct messaging_context
*msg_ctx
,
110 struct server_id server_id
,
113 const char *msg
= (data
&& data
->data
)
114 ? (const char *)data
->data
: "<NULL>";
115 struct user_struct
*validated_users
=
116 smbd_server_conn
->smb1
.sessions
.validated_users
;
117 struct id_cache_ref id
;
119 if (!id_cache_ref_parse(msg
, &id
)) {
120 DEBUG(0, ("Invalid ?ID: %s\n", msg
));
124 if (id_in_use(validated_users
, &id
)) {
125 exit_server_cleanly(msg
);
129 void id_cache_register_kill_msg(struct messaging_context
*ctx
)
131 messaging_register(ctx
, NULL
, ID_CACHE_KILL
, id_cache_kill
);