search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
merge from 2.2
[Samba/gbeck.git] / source / passdb / passdb.c
bloba0b9726a63dbd1ab4296d1bfdaa4b737216cc3f0
1 /*
2 Unix SMB/Netbios implementation.
3 Version 1.9.
4 Password and authentication handling
5 Copyright (C) Jeremy Allison 1996-1998
6 Copyright (C) Luke Kenneth Casson Leighton 1996-1998
7 Copyright (C) Gerald (Jerry) Carter 2000
8
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
13
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
18
19 You should have received a copy of the GNU General Public License
20 along with this program; if not, write to the Free Software
21 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 */
23
24 #include <dlfcn.h>
25 #include "includes.h"
26
27 extern int DEBUGLEVEL;
28
29 /*
30 * This is set on startup - it defines the SID for this
31 * machine, and therefore the SAM database for which it is
32 * responsible.
33 */
34
35 extern DOM_SID global_sam_sid;
36
37 struct passdb_ops *pdb_ops;
38
39 static void* pdb_handle = NULL;
40
41 /***************************************************************
42 Initialize the password db operations.
43 ***************************************************************/
44 BOOL initialize_password_db(BOOL reload)
45 {
46
47 char* modulename = lp_passdb_module_path();
48
49 return True;
50
51 /* load another module? */
52 if (reload && pdb_handle)
53 {
54 sys_dlclose (pdb_handle);
55 pdb_handle = NULL;
56 }
57
58 /* do we have a module defined or use the default? */
59 if (strlen (modulename) != 0)
60 {
61 if ((pdb_handle=sys_dlopen (modulename, RTLD_LAZY)) == NULL)
62 {
63 DEBUG(0,("initialize_password_db: ERROR - Unable to open passdb module \"%s\"!\n%s\n",
64 modulename, dlerror()));
65 }
66 else
67 DEBUG(1,("initialize_password_db: passdb module \"%s\" loaded successfully\n", modulename));
68 }
69
70 /* either no module name defined or the one that was failed
71 to open. Let's try the default */
72 if (pdb_handle == NULL)
73 {
74 if ((pdb_handle=sys_dlopen ("libpdbfile.so", RTLD_LAZY)) == NULL)
75 {
76 DEBUG(0,("initialize_password_db: ERROR - Unable to open \"libpdbfile.so\" passdb module! No user authentication possible!\n%s\n",
77 dlerror()));
78 return False;
79 }
80 else
81 DEBUG(1,("initialize_password_db: passdb module \"libpdbfile.so\" loaded successfully\n"));
82 }
83
84
85 return (pdb_handle != NULL);
86 }
87
88 /*************************************************************
89 initialises a struct sam_disp_info.
90 **************************************************************/
91 static void pdb_init_dispinfo(struct sam_disp_info *user)
92 {
93 if (user == NULL)
94 return;
95 ZERO_STRUCTP(user);
96 }
97
98 /*************************************************************
99 initialises a struct sam_passwd.
100 ************************************************************/
101 void pdb_init_sam(SAM_ACCOUNT *user)
102 {
103 if (user == NULL)
104 return;
105
106 ZERO_STRUCTP(user);
107
108 user->logon_time = (time_t)0;
109 user->logoff_time = (time_t)-1;
110 user->kickoff_time = (time_t)-1;
111 user->pass_last_set_time = (time_t)-1;
112 user->pass_can_change_time = (time_t)-1;
113 user->pass_must_change_time = (time_t)-1;
114
115 user->unknown_3 = 0x00ffffff; /* don't know */
116 user->logon_divs = 168; /* hours per week */
117 user->hours_len = 21; /* 21 times 8 bits = 168 */
118 memset(user->hours, 0xff, user->hours_len); /* available at all hours */
119 user->unknown_5 = 0x00000000; /* don't know */
120 user->unknown_6 = 0x000004ec; /* don't know */
121 }
122
123 /************************************************************
124 free all pointer members and then reinit the SAM_ACCOUNT
125 ***********************************************************/
126 void pdb_clear_sam(SAM_ACCOUNT *user)
127 {
128 /* do we have a SAM_CCOUTN struct to work with? */
129 if (user == NULL)
130 return;
131
132 /* do we own the memory? */
133 if (user->own_memory)
134 {
135 /* clear all pointer members */
136 if (user->username) free(user->username);
137 if (user->full_name) free(user->full_name);
138 if (user->domain) free(user->domain);
139 if (user->nt_username) free(user->nt_username);
140 if (user->home_dir) free(user->home_dir);
141 if (user->dir_drive) free(user->dir_drive);
142 if (user->logon_script) free(user->logon_script);
143 if (user->profile_path) free(user->profile_path);
144 if (user->acct_desc) free(user->acct_desc);
145 if (user->workstations) free(user->workstations);
146 if (user->unknown_str) free(user->unknown_str);
147 if (user->munged_dial) free(user->munged_dial);
148
149 if (user->lm_pw) free(user->lm_pw);
150 if (user->nt_pw) free(user->nt_pw);
151 }
152
153 /* now initialize */
154 pdb_init_sam(user);
155
156 }
157
158
159 /*************************************************************************
160 Routine to return the next entry in the sam passwd list.
161 *************************************************************************/
162 struct sam_disp_info *pdb_sam_to_dispinfo(SAM_ACCOUNT *user)
163 {
164 static struct sam_disp_info disp_info;
165
166 if (user == NULL)
167 return NULL;
168
169 pdb_init_dispinfo(&disp_info);
170
171 disp_info.smb_name = user->username;
172 disp_info.full_name = user->full_name;
173 disp_info.user_rid = user->user_rid;
174
175 return &disp_info;
176 }
177
178
179 /**********************************************************
180 Encode the account control bits into a string.
181 length = length of string to encode into (including terminating
182 null). length *MUST BE MORE THAN 2* !
183 **********************************************************/
184 char *pdb_encode_acct_ctrl(uint16 acct_ctrl, size_t length)
185 {
186 static fstring acct_str;
187 size_t i = 0;
188
189 acct_str[i++] = '[';
190
191 if (acct_ctrl & ACB_PWNOTREQ ) acct_str[i++] = 'N';
192 if (acct_ctrl & ACB_DISABLED ) acct_str[i++] = 'D';
193 if (acct_ctrl & ACB_HOMDIRREQ) acct_str[i++] = 'H';
194 if (acct_ctrl & ACB_TEMPDUP ) acct_str[i++] = 'T';
195 if (acct_ctrl & ACB_NORMAL ) acct_str[i++] = 'U';
196 if (acct_ctrl & ACB_MNS ) acct_str[i++] = 'M';
197 if (acct_ctrl & ACB_WSTRUST ) acct_str[i++] = 'W';
198 if (acct_ctrl & ACB_SVRTRUST ) acct_str[i++] = 'S';
199 if (acct_ctrl & ACB_AUTOLOCK ) acct_str[i++] = 'L';
200 if (acct_ctrl & ACB_PWNOEXP ) acct_str[i++] = 'X';
201 if (acct_ctrl & ACB_DOMTRUST ) acct_str[i++] = 'I';
202
203 for ( ; i < length - 2 ; i++ ) { acct_str[i] = ' '; }
204
205 i = length - 2;
206 acct_str[i++] = ']';
207 acct_str[i++] = '\0';
208
209 return acct_str;
210 }
211
212 /**********************************************************
213 Decode the account control bits from a string.
214
215 this function breaks coding standards minimum line width of 80 chars.
216 reason: vertical line-up code clarity - all case statements fit into
217 15 lines, which is more important.
218 **********************************************************/
219
220 uint16 pdb_decode_acct_ctrl(const char *p)
221 {
222 uint16 acct_ctrl = 0;
223 BOOL finished = False;
224
225 /*
226 * Check if the account type bits have been encoded after the
227 * NT password (in the form [NDHTUWSLXI]).
228 */
229
230 if (*p != '[') return 0;
231
232 for (p++; *p && !finished; p++)
233 {
234 switch (*p)
235 {
236 case 'N': { acct_ctrl |= ACB_PWNOTREQ ; break; /* 'N'o password. */ }
237 case 'D': { acct_ctrl |= ACB_DISABLED ; break; /* 'D'isabled. */ }
238 case 'H': { acct_ctrl |= ACB_HOMDIRREQ; break; /* 'H'omedir required. */ }
239 case 'T': { acct_ctrl |= ACB_TEMPDUP ; break; /* 'T'emp account. */ }
240 case 'U': { acct_ctrl |= ACB_NORMAL ; break; /* 'U'ser account (normal). */ }
241 case 'M': { acct_ctrl |= ACB_MNS ; break; /* 'M'NS logon user account. What is this ? */ }
242 case 'W': { acct_ctrl |= ACB_WSTRUST ; break; /* 'W'orkstation account. */ }
243 case 'S': { acct_ctrl |= ACB_SVRTRUST ; break; /* 'S'erver account. */ }
244 case 'L': { acct_ctrl |= ACB_AUTOLOCK ; break; /* 'L'ocked account. */ }
245 case 'X': { acct_ctrl |= ACB_PWNOEXP ; break; /* No 'X'piry on password */ }
246 case 'I': { acct_ctrl |= ACB_DOMTRUST ; break; /* 'I'nterdomain trust account. */ }
247 case ' ': { break; }
248 case ':':
249 case '\n':
250 case '\0':
251 case ']':
252 default: { finished = True; }
253 }
254 }
255
256 return acct_ctrl;
257 }
258
259 /*************************************************************
260 Routine to set 32 hex password characters from a 16 byte array.
261 **************************************************************/
262 void pdb_sethexpwd(char *p, unsigned char *pwd, uint16 acct_ctrl)
263 {
264 if (pwd != NULL) {
265 int i;
266 for (i = 0; i < 16; i++)
267 slprintf(&p[i*2], 3, "%02X", pwd[i]);
268 } else {
269 if (acct_ctrl & ACB_PWNOTREQ)
270 safe_strcpy(p, "NO PASSWORDXXXXXXXXXXXXXXXXXXXXX", 33);
271 else
272 safe_strcpy(p, "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX", 33);
273 }
274 }
275
276 /*************************************************************
277 Routine to get the 32 hex characters and turn them
278 into a 16 byte array.
279 **************************************************************/
280 BOOL pdb_gethexpwd(char *p, unsigned char *pwd)
281 {
282 int i;
283 unsigned char lonybble, hinybble;
284 char *hexchars = "0123456789ABCDEF";
285 char *p1, *p2;
286
287 if (!p) return (False);
288
289 for (i = 0; i < 32; i += 2)
290 {
291 hinybble = toupper(p[i]);
292 lonybble = toupper(p[i + 1]);
293
294 p1 = strchr(hexchars, hinybble);
295 p2 = strchr(hexchars, lonybble);
296
297 if (!p1 || !p2)
298 {
299 return (False);
300 }
301
302 hinybble = PTR_DIFF(p1, hexchars);
303 lonybble = PTR_DIFF(p2, hexchars);
304
305 pwd[i / 2] = (hinybble << 4) | lonybble;
306 }
307 return (True);
308 }
309
310 /*******************************************************************
311 Group and User RID username mapping function
312 ********************************************************************/
313 BOOL pdb_name_to_rid(char *user_name, uint32 *u_rid, uint32 *g_rid)
314 {
315 struct passwd *pw = Get_Pwnam(user_name, False);
316
317 if (u_rid == NULL || g_rid == NULL || user_name == NULL)
318 {
319 return False;
320 }
321
322 if (!pw)
323 {
324 DEBUG(1,("Username %s is invalid on this system\n", user_name));
325 return False;
326 }
327
328 if (user_in_list(user_name, lp_domain_guest_users()))
329 {
330 *u_rid = DOMAIN_USER_RID_GUEST;
331 }
332 else if (user_in_list(user_name, lp_domain_admin_users()))
333 {
334 *u_rid = DOMAIN_USER_RID_ADMIN;
335 }
336 else
337 {
338 /* turn the unix UID into a Domain RID. this is what the posix
339 sub-system does (adds 1000 to the uid) */
340 *u_rid = pdb_uid_to_user_rid(pw->pw_uid);
341 }
342
343 /* absolutely no idea what to do about the unix GID to Domain RID mapping */
344 *g_rid = pdb_gid_to_group_rid(pw->pw_gid);
345
346 return True;
347 }
348
349 /*******************************************************************
350 Converts NT user RID to a UNIX uid.
351 ********************************************************************/
352 uid_t pdb_user_rid_to_uid(uint32 user_rid)
353 {
354 return (uid_t)(((user_rid & (~USER_RID_TYPE))- 1000)/RID_MULTIPLIER);
355 }
356
357 /*******************************************************************
358 Converts NT user RID to a UNIX gid.
359 ********************************************************************/
360
361 gid_t pdb_user_rid_to_gid(uint32 user_rid)
362 {
363 return (uid_t)(((user_rid & (~GROUP_RID_TYPE))- 1000)/RID_MULTIPLIER);
364 }
365
366 /*******************************************************************
367 converts UNIX uid to an NT User RID.
368 ********************************************************************/
369
370 uint32 pdb_uid_to_user_rid(uid_t uid)
371 {
372 return (((((uint32)uid)*RID_MULTIPLIER) + 1000) | USER_RID_TYPE);
373 }
374
375 /*******************************************************************
376 converts NT Group RID to a UNIX uid.
377 ********************************************************************/
378
379 uint32 pdb_gid_to_group_rid(gid_t gid)
380 {
381 return (((((uint32)gid)*RID_MULTIPLIER) + 1000) | GROUP_RID_TYPE);
382 }
383
384 /*******************************************************************
385 Decides if a RID is a well known RID.
386 ********************************************************************/
387
388 static BOOL pdb_rid_is_well_known(uint32 rid)
389 {
390 return (rid < 1000);
391 }
392
393 /*******************************************************************
394 Decides if a RID is a user or group RID.
395 ********************************************************************/
396 BOOL pdb_rid_is_user(uint32 rid)
397 {
398 /* lkcl i understand that NT attaches an enumeration to a RID
399 * such that it can be identified as either a user, group etc
400 * type. there are 5 such categories, and they are documented.
401 */
402 if(pdb_rid_is_well_known(rid)) {
403 /*
404 * The only well known user RIDs are DOMAIN_USER_RID_ADMIN
405 * and DOMAIN_USER_RID_GUEST.
406 */
407 if(rid == DOMAIN_USER_RID_ADMIN || rid == DOMAIN_USER_RID_GUEST)
408 return True;
409 } else if((rid & RID_TYPE_MASK) == USER_RID_TYPE) {
410 return True;
411 }
412 return False;
413 }
414
415 /*******************************************************************
416 Convert a rid into a name. Used in the lookup SID rpc.
417 ********************************************************************/
418 BOOL local_lookup_rid(uint32 rid, char *name, enum SID_NAME_USE *psid_name_use)
419 {
420
421 BOOL is_user = pdb_rid_is_user(rid);
422
423 DEBUG(5,("local_lookup_rid: looking up %s RID %u.\n", is_user ? "user" :
424 "group", (unsigned int)rid));
425
426 if(is_user) {
427 if(rid == DOMAIN_USER_RID_ADMIN) {
428 pstring admin_users;
429 char *p = admin_users;
430 pstrcpy( admin_users, lp_domain_admin_users());
431 if(!next_token(&p, name, NULL, sizeof(fstring)))
432 fstrcpy(name, "Administrator");
433 } else if (rid == DOMAIN_USER_RID_GUEST) {
434 pstring guest_users;
435 char *p = guest_users;
436 pstrcpy( guest_users, lp_domain_guest_users());
437 if(!next_token(&p, name, NULL, sizeof(fstring)))
438 fstrcpy(name, "Guest");
439 } else {
440 uid_t uid;
441 struct passwd *pass;
442
443 /*
444 * Don't try to convert the rid to a name if
445 * running in appliance mode
446 */
447 if (lp_hide_local_users())
448 return False;
449
450 uid = pdb_user_rid_to_uid(rid);
451 pass = sys_getpwuid(uid);
452
453 *psid_name_use = SID_NAME_USER;
454
455 DEBUG(5,("local_lookup_rid: looking up uid %u %s\n", (unsigned int)uid,
456 pass ? "succeeded" : "failed" ));
457
458 if(!pass) {
459 slprintf(name, sizeof(fstring)-1, "unix_user.%u", (unsigned int)uid);
460 return True;
461 }
462
463 fstrcpy(name, pass->pw_name);
464
465 DEBUG(5,("local_lookup_rid: found user %s for rid %u\n", name,
466 (unsigned int)rid ));
467 }
468
469 } else {
470 gid_t gid;
471 struct group *gr;
472
473 /*
474 * Don't try to convert the rid to a name if running
475 * in appliance mode
476 */
477
478 if (lp_hide_local_users())
479 return False;
480
481 gid = pdb_user_rid_to_gid(rid);
482 gr = getgrgid(gid);
483
484 *psid_name_use = SID_NAME_ALIAS;
485
486 DEBUG(5,("local_local_rid: looking up gid %u %s\n", (unsigned int)gid,
487 gr ? "succeeded" : "failed" ));
488
489 if(!gr) {
490 slprintf(name, sizeof(fstring)-1, "unix_group.%u", (unsigned int)gid);
491 return True;
492 }
493
494 fstrcpy( name, gr->gr_name);
495
496 DEBUG(5,("local_lookup_rid: found group %s for rid %u\n", name,
497 (unsigned int)rid ));
498 }
499
500 return True;
501 }
502
503 /*******************************************************************
504 Convert a name into a SID. Used in the lookup name rpc.
505 ********************************************************************/
506
507 BOOL local_lookup_name(const char *c_domain, const char *c_user, DOM_SID *psid, enum SID_NAME_USE *psid_name_use)
508 {
509 extern DOM_SID global_sid_World_Domain;
510 struct passwd *pass = NULL;
511 DOM_SID local_sid;
512 fstring user;
513 fstring domain;
514
515 /*
516 * domain and user may be quoted const strings, and map_username and
517 * friends can modify them. Make a modifiable copy. JRA.
518 */
519
520 fstrcpy(domain, c_domain);
521 fstrcpy(user, c_user);
522
523 sid_copy(&local_sid, &global_sam_sid);
524
525 /*
526 * Special case for MACHINE\Everyone. Map to the world_sid.
527 */
528
529 if(strequal(user, "Everyone")) {
530 sid_copy( psid, &global_sid_World_Domain);
531 sid_append_rid(psid, 0);
532 *psid_name_use = SID_NAME_ALIAS;
533 return True;
534 }
535
536 /*
537 * Don't lookup local unix users if running in appliance mode
538 */
539 if (lp_hide_local_users())
540 return False;
541
542 (void)map_username(user);
543
544 if(!(pass = sys_getpwnam(user))) {
545 /*
546 * Maybe it was a group ?
547 */
548 struct group *grp = getgrnam(user);
549
550 if(!grp)
551 return False;
552
553 sid_append_rid( &local_sid, pdb_gid_to_group_rid(grp->gr_gid));
554 *psid_name_use = SID_NAME_ALIAS;
555 } else {
556
557 sid_append_rid( &local_sid, pdb_uid_to_user_rid(pass->pw_uid));
558 *psid_name_use = SID_NAME_USER;
559 }
560
561 sid_copy( psid, &local_sid);
562
563 return True;
564 }
565
566 /****************************************************************************
567 Convert a uid to SID - locally.
568 ****************************************************************************/
569 DOM_SID *local_uid_to_sid(DOM_SID *psid, uid_t uid)
570 {
571 extern DOM_SID global_sam_sid;
572
573 sid_copy(psid, &global_sam_sid);
574 sid_append_rid(psid, pdb_uid_to_user_rid(uid));
575
576 return psid;
577 }
578
579
580 /****************************************************************************
581 Convert a SID to uid - locally.
582 ****************************************************************************/
583 BOOL local_sid_to_uid(uid_t *puid, DOM_SID *psid, enum SID_NAME_USE *name_type)
584 {
585 extern DOM_SID global_sam_sid;
586
587 DOM_SID dom_sid;
588 uint32 rid;
589 fstring str;
590 struct passwd *pass;
591
592 *name_type = SID_NAME_UNKNOWN;
593
594 sid_copy(&dom_sid, psid);
595 sid_split_rid(&dom_sid, &rid);
596
597 if (!pdb_rid_is_user(rid))
598 return False;
599
600 /*
601 * We can only convert to a uid if this is our local
602 * Domain SID (ie. we are the controling authority).
603 */
604 if (!sid_equal(&global_sam_sid, &dom_sid))
605 return False;
606
607 *puid = pdb_user_rid_to_uid(rid);
608
609 /*
610 * Ensure this uid really does exist.
611 */
612 if(!(pass = sys_getpwuid(*puid)))
613 return False;
614
615 DEBUG(10,("local_sid_to_uid: SID %s -> uid (%u) (%s).\n", sid_to_string( str, psid),
616 (unsigned int)*puid, pass->pw_name ));
617
618 return True;
619 }
620
621 /****************************************************************************
622 Convert a gid to SID - locally.
623 ****************************************************************************/
624 DOM_SID *local_gid_to_sid(DOM_SID *psid, gid_t gid)
625 {
626 extern DOM_SID global_sam_sid;
627
628 sid_copy(psid, &global_sam_sid);
629 sid_append_rid(psid, pdb_gid_to_group_rid(gid));
630
631 return psid;
632 }
633
634 /****************************************************************************
635 Convert a SID to gid - locally.
636 ****************************************************************************/
637 BOOL local_sid_to_gid(gid_t *pgid, DOM_SID *psid, enum SID_NAME_USE *name_type)
638 {
639 extern DOM_SID global_sam_sid;
640 DOM_SID dom_sid;
641 uint32 rid;
642 fstring str;
643 struct group *grp;
644
645 *name_type = SID_NAME_UNKNOWN;
646
647 sid_copy(&dom_sid, psid);
648 sid_split_rid(&dom_sid, &rid);
649
650 /*
651 * We can only convert to a gid if this is our local
652 * Domain SID (ie. we are the controling authority).
653 */
654
655 if (!sid_equal(&global_sam_sid, &dom_sid))
656 return False;
657
658 if (pdb_rid_is_user(rid))
659 return False;
660
661 *pgid = pdb_user_rid_to_gid(rid);
662
663 /*
664 * Ensure this gid really does exist.
665 */
666
667 if(!(grp = getgrgid(*pgid)))
668 return False;
669
670 DEBUG(10,("local_sid_to_gid: SID %s -> gid (%u) (%s).\n", sid_to_string( str, psid),
671 (unsigned int)*pgid, grp->gr_name ));
672
673 return True;
674 }
675
676 static void select_name(fstring *string, char **name, const UNISTR2 *from)
677 {
678 if (from->buffer != 0)
679 {
680 unistr2_to_ascii(*string, from, sizeof(*string));
681 *name = *string;
682 }
683 }
684
685 /*************************************************************
686 copies a SAM_USER_INFO_23 to a SAM_ACCOUNT
687 **************************************************************/
688 void copy_id23_to_sam_passwd(SAM_ACCOUNT *to, SAM_USER_INFO_23 *from)
689 {
690 static fstring smb_name;
691 static fstring full_name;
692 static fstring home_dir;
693 static fstring dir_drive;
694 static fstring logon_script;
695 static fstring profile_path;
696 static fstring acct_desc;
697 static fstring workstations;
698 static fstring unknown_str;
699 static fstring munged_dial;
700
701 if (from == NULL || to == NULL)
702 return;
703
704 to->logon_time = nt_time_to_unix(&from->logon_time);
705 to->logoff_time = nt_time_to_unix(&from->logoff_time);
706 to->kickoff_time = nt_time_to_unix(&from->kickoff_time);
707 to->pass_last_set_time = nt_time_to_unix(&from->pass_last_set_time);
708 to->pass_can_change_time = nt_time_to_unix(&from->pass_can_change_time);
709 to->pass_must_change_time = nt_time_to_unix(&from->pass_must_change_time);
710
711 select_name(&smb_name , &to->username , &from->uni_user_name );
712 select_name(&full_name , &to->full_name , &from->uni_full_name );
713 select_name(&home_dir , &to->home_dir , &from->uni_home_dir );
714 select_name(&dir_drive , &to->dir_drive , &from->uni_dir_drive );
715 select_name(&logon_script, &to->logon_script, &from->uni_logon_script);
716 select_name(&profile_path, &to->profile_path, &from->uni_profile_path);
717 select_name(&acct_desc , &to->acct_desc , &from->uni_acct_desc );
718 select_name(&workstations, &to->workstations, &from->uni_workstations);
719 select_name(&unknown_str , &to->unknown_str , &from->uni_unknown_str );
720 select_name(&munged_dial , &to->munged_dial , &from->uni_munged_dial );
721
722 to->user_rid = from->user_rid;
723 to->group_rid = from->group_rid;
724
725 to->acct_ctrl = from->acb_info;
726 to->unknown_3 = from->unknown_3;
727
728 to->logon_divs = from->logon_divs;
729 to->hours_len = from->logon_hrs.len;
730 memcpy(to->hours, from->logon_hrs.hours, MAX_HOURS_LEN);
731
732 to->unknown_5 = from->unknown_5;
733 to->unknown_6 = from->unknown_6;
734 }
735
736 /*************************************************************
737 copies a sam passwd.
738 **************************************************************/
739 void copy_id21_to_sam_passwd(SAM_ACCOUNT *to, SAM_USER_INFO_21 *from)
740 {
741 static fstring smb_name;
742 static fstring full_name;
743 static fstring home_dir;
744 static fstring dir_drive;
745 static fstring logon_script;
746 static fstring profile_path;
747 static fstring acct_desc;
748 static fstring workstations;
749 static fstring unknown_str;
750 static fstring munged_dial;
751
752 if (from == NULL || to == NULL)
753 return;
754
755 to->logon_time = nt_time_to_unix(&from->logon_time);
756 to->logoff_time = nt_time_to_unix(&from->logoff_time);
757 to->kickoff_time = nt_time_to_unix(&from->kickoff_time);
758 to->pass_last_set_time = nt_time_to_unix(&from->pass_last_set_time);
759 to->pass_can_change_time = nt_time_to_unix(&from->pass_can_change_time);
760 to->pass_must_change_time = nt_time_to_unix(&from->pass_must_change_time);
761
762 select_name(&smb_name , &to->username , &from->uni_user_name );
763 select_name(&full_name , &to->full_name , &from->uni_full_name );
764 select_name(&home_dir , &to->home_dir , &from->uni_home_dir );
765 select_name(&dir_drive , &to->dir_drive , &from->uni_dir_drive );
766 select_name(&logon_script, &to->logon_script, &from->uni_logon_script);
767 select_name(&profile_path, &to->profile_path, &from->uni_profile_path);
768 select_name(&acct_desc , &to->acct_desc , &from->uni_acct_desc );
769 select_name(&workstations, &to->workstations, &from->uni_workstations);
770 select_name(&unknown_str , &to->unknown_str , &from->uni_unknown_str );
771 select_name(&munged_dial , &to->munged_dial , &from->uni_munged_dial );
772
773 to->user_rid = from->user_rid;
774 to->group_rid = from->group_rid;
775
776 /* FIXME!! Do we need to copy the passwords here as well?
777 I don't know. Need to figure this out --jerry */
778
779 to->acct_ctrl = from->acb_info;
780 to->unknown_3 = from->unknown_3;
781
782 to->logon_divs = from->logon_divs;
783 to->hours_len = from->logon_hrs.len;
784 memcpy(to->hours, from->logon_hrs.hours, MAX_HOURS_LEN);
785
786 to->unknown_5 = from->unknown_5;
787 to->unknown_6 = from->unknown_6;
788 }
789
790
791 /*************************************************************
792 copies a sam passwd.
793 **************************************************************/
794 void copy_sam_passwd(SAM_ACCOUNT *to, const SAM_ACCOUNT *from)
795 {
796 static fstring smb_name="";
797 static fstring full_name="";
798 static fstring home_dir="";
799 static fstring dir_drive="";
800 static fstring logon_script="";
801 static fstring profile_path="";
802 static fstring acct_desc="";
803 static fstring workstations="";
804 static fstring unknown_str="";
805 static fstring munged_dial="";
806 static uint8 lm_pw[16], nt_pw[16];
807
808 if (from == NULL || to == NULL)
809 return;
810
811 /* we won't own this memory so set the flag.
812 This will also clear the strings from 'to' */
813 pdb_set_mem_ownership (to, False);
814
815 memcpy(to, from, sizeof(*from));
816
817 if (from->username != NULL)
818 {
819 fstrcpy(smb_name , from->username);
820 to->username = smb_name;
821 }
822
823 if (from->full_name != NULL)
824 {
825 fstrcpy(full_name, from->full_name);
826 to->full_name = full_name;
827 }
828
829 if (from->home_dir != NULL)
830 {
831 fstrcpy(home_dir, from->home_dir);
832 to->home_dir = home_dir;
833 }
834
835 if (from->dir_drive != NULL)
836 {
837 fstrcpy(dir_drive , from->dir_drive);
838 to->dir_drive = dir_drive;
839 }
840
841 if (from->logon_script != NULL)
842 {
843 fstrcpy(logon_script , from->logon_script);
844 to->logon_script = logon_script;
845 }
846
847 if (from->profile_path != NULL)
848 {
849 fstrcpy(profile_path , from->profile_path);
850 to->profile_path = profile_path;
851 }
852
853 if (from->acct_desc != NULL)
854 {
855 fstrcpy(acct_desc , from->acct_desc);
856 to->acct_desc = acct_desc;
857 }
858
859 if (from->workstations != NULL)
860 {
861 fstrcpy(workstations , from->workstations);
862 to->workstations = workstations;
863 }
864
865 if (from->unknown_str != NULL)
866 {
867 fstrcpy(unknown_str , from->unknown_str);
868 to->unknown_str = unknown_str;
869 }
870
871 if (from->munged_dial != NULL)
872 {
873 fstrcpy(munged_dial , from->munged_dial);
874 to->munged_dial = munged_dial;
875 }
876
877 if (from->nt_pw != NULL)
878 {
879 memcpy (nt_pw, from->nt_pw, 16);
880 to->nt_pw = nt_pw;
881 }
882
883 if (from->lm_pw != NULL)
884 {
885 memcpy (lm_pw, from->lm_pw, 16);
886 to->lm_pw = lm_pw;
887 }
888
889 return;
890 }
891
892 /*************************************************************
893 change a password entry in the local smbpasswd file
894
895 FIXME!! The function needs to be abstracted into the
896 passdb interface or something. It is currently being called
897 by _api_samr_create_user() in rpc_server/srv_samr.c
898
899 --jerry
900 *************************************************************/
901
902 BOOL local_password_change(char *user_name, int local_flags,
903 char *new_passwd,
904 char *err_str, size_t err_str_len,
905 char *msg_str, size_t msg_str_len)
906 {
907 struct passwd *pwd = NULL;
908 SAM_ACCOUNT *sam_pass;
909 SAM_ACCOUNT new_sam_acct;
910 uchar new_p16[16];
911 uchar new_nt_p16[16];
912
913 *err_str = '\0';
914 *msg_str = '\0';
915
916 if (local_flags & LOCAL_ADD_USER) {
917
918 /*
919 * Check for a local account - if we're adding only.
920 */
921
922 if(!(pwd = sys_getpwnam(user_name))) {
923 slprintf(err_str, err_str_len - 1, "User %s does not \
924 exist in system password file (usually /etc/passwd). Cannot add \
925 account without a valid local system user.\n", user_name);
926 return False;
927 }
928 }
929
930 /* Calculate the MD4 hash (NT compatible) of the new password. */
931 nt_lm_owf_gen(new_passwd, new_nt_p16, new_p16);
932
933 /* Get the smb passwd entry for this user */
934 sam_pass = pdb_getsampwnam(user_name);
935 if (sam_pass == NULL)
936 {
937 if(!(local_flags & LOCAL_ADD_USER))
938 {
939 slprintf(err_str, err_str_len-1,"Failed to find entry for user %s.\n", user_name);
940 return False;
941 }
942
943 /* create the SAM_ACCOUNT struct and call pdb_add_sam_account.
944 Because the new_sam_pwd only exists in the scope of this function
945 we will not allocate memory for members */
946 pdb_init_sam (&new_sam_acct);
947 pdb_set_mem_ownership (&new_sam_acct, False);
948 pdb_set_username (&new_sam_acct, user_name);
949 pdb_set_fullname (&new_sam_acct, pwd->pw_gecos);
950 pdb_set_uid (&new_sam_acct, pwd->pw_uid);
951 pdb_set_gid (&new_sam_acct, pwd->pw_gid);
952 pdb_set_pass_last_set_time(&new_sam_acct, time(NULL));
953 pdb_set_profile_path (&new_sam_acct, lp_logon_path());
954 pdb_set_homedir (&new_sam_acct, lp_logon_home());
955 pdb_set_dir_drive (&new_sam_acct, lp_logon_drive());
956 pdb_set_logon_script (&new_sam_acct, lp_logon_script());
957
958 /* set account flags */
959 pdb_set_acct_ctrl(&new_sam_acct,((local_flags & LOCAL_TRUST_ACCOUNT) ? ACB_WSTRUST : ACB_NORMAL) );
960 if (local_flags & LOCAL_DISABLE_USER)
961 {
962 pdb_set_acct_ctrl (&new_sam_acct, pdb_get_acct_ctrl(&new_sam_acct)|ACB_DISABLED);
963 }
964 if (local_flags & LOCAL_SET_NO_PASSWORD)
965 {
966 pdb_set_acct_ctrl (&new_sam_acct, pdb_get_acct_ctrl(&new_sam_acct)|ACB_PWNOTREQ);
967 }
968 else
969 {
970 /* set the passwords here. if we get to here it means
971 we have a valid, active account */
972 pdb_set_lanman_passwd (&new_sam_acct, new_p16);
973 pdb_set_nt_passwd (&new_sam_acct, new_nt_p16);
974 }
975
976
977 if (pdb_add_sam_account(&new_sam_acct))
978 {
979 slprintf(msg_str, msg_str_len-1, "Added user %s.\n", user_name);
980 pdb_clear_sam (&new_sam_acct);
981 return True;
982 }
983 else
984 {
985 slprintf(err_str, err_str_len-1, "Failed to add entry for user %s.\n", user_name);
986 return False;
987 }
988 }
989 else
990 {
991 /* the entry already existed */
992 local_flags &= ~LOCAL_ADD_USER;
993 }
994
995 /*
996 * We are root - just write the new password
997 * and the valid last change time.
998 */
999
1000 if(local_flags & LOCAL_DISABLE_USER)
1001 {
1002 pdb_set_acct_ctrl (sam_pass, pdb_get_acct_ctrl(sam_pass)|ACB_DISABLED);
1003 }
1004 else if (local_flags & LOCAL_ENABLE_USER)
1005 {
1006 if(pdb_get_lanman_passwd(sam_pass) == NULL)
1007 {
1008 pdb_set_lanman_passwd (sam_pass, new_p16);
1009 pdb_set_nt_passwd (sam_pass, new_nt_p16);
1010 }
1011 pdb_set_acct_ctrl (sam_pass, pdb_get_acct_ctrl(sam_pass)&(~ACB_DISABLED));
1012 } else if (local_flags & LOCAL_SET_NO_PASSWORD)
1013 {
1014 pdb_set_acct_ctrl (sam_pass, pdb_get_acct_ctrl(sam_pass)|ACB_PWNOTREQ);
1015
1016 /* This is needed to preserve ACB_PWNOTREQ in mod_smbfilepwd_entry */
1017 pdb_set_lanman_passwd (sam_pass, NULL);
1018 pdb_set_nt_passwd (sam_pass, NULL);
1019 }
1020 else
1021 {
1022 /*
1023 * If we're dealing with setting a completely empty user account
1024 * ie. One with a password of 'XXXX', but not set disabled (like
1025 * an account created from scratch) then if the old password was
1026 * 'XX's then getsmbpwent will have set the ACB_DISABLED flag.
1027 * We remove that as we're giving this user their first password
1028 * and the decision hasn't really been made to disable them (ie.
1029 * don't create them disabled). JRA.
1030 */
1031 if ((pdb_get_lanman_passwd(sam_pass)==NULL) && (pdb_get_acct_ctrl(sam_pass)&ACB_DISABLED))
1032 pdb_set_acct_ctrl (sam_pass, pdb_get_acct_ctrl(sam_pass)&(~ACB_DISABLED));
1033 pdb_set_acct_ctrl (sam_pass, pdb_get_acct_ctrl(sam_pass)&(~ACB_PWNOTREQ));
1034 pdb_set_lanman_passwd (sam_pass, new_p16);
1035 pdb_set_nt_passwd (sam_pass, new_nt_p16);
1036 }
1037
1038 if(local_flags & LOCAL_DELETE_USER)
1039 {
1040 if (!pdb_delete_sam_account(user_name))
1041 {
1042 slprintf(err_str,err_str_len-1, "Failed to delete entry for user %s.\n", user_name);
1043 return False;
1044 }
1045 slprintf(msg_str, msg_str_len-1, "Deleted user %s.\n", user_name);
1046 }
1047 else
1048 {
1049 if(!pdb_update_sam_account(sam_pass, True))
1050 {
1051 slprintf(err_str, err_str_len-1, "Failed to modify entry for user %s.\n", user_name);
1052 return False;
1053 }
1054 if(local_flags & LOCAL_DISABLE_USER)
1055 slprintf(msg_str, msg_str_len-1, "Disabled user %s.\n", user_name);
1056 else if (local_flags & LOCAL_ENABLE_USER)
1057 slprintf(msg_str, msg_str_len-1, "Enabled user %s.\n", user_name);
1058 else if (local_flags & LOCAL_SET_NO_PASSWORD)
1059 slprintf(msg_str, msg_str_len-1, "User %s password set to none.\n", user_name);
1060 }
1061
1062 return True;
1063 }
1064
1065
1066 /*********************************************************************
1067 collection of get...() functions for SAM_ACCOUNT_INFO
1068 ********************************************************************/
1069 uint16 pdb_get_acct_ctrl (SAM_ACCOUNT *sampass)
1070 {
1071 if (sampass)
1072 return (sampass->acct_ctrl);
1073 else
1074 return (ACB_DISABLED);
1075 }
1076
1077 time_t pdb_get_logon_time (SAM_ACCOUNT *sampass)
1078 {
1079 if (sampass)
1080 return (sampass->logon_time);
1081 else
1082 return (0);
1083 }
1084
1085 time_t pdb_get_logoff_time (SAM_ACCOUNT *sampass)
1086 {
1087 if (sampass)
1088 return (sampass->logoff_time);
1089 else
1090 return (-1);
1091 }
1092
1093 time_t pdb_get_kickoff_time (SAM_ACCOUNT *sampass)
1094 {
1095 if (sampass)
1096 return (sampass->kickoff_time);
1097 else
1098 return (-1);
1099 }
1100
1101 time_t pdb_get_pass_last_set_time (SAM_ACCOUNT *sampass)
1102 {
1103 if (sampass)
1104 return (sampass->pass_last_set_time);
1105 else
1106 return (-1);
1107 }
1108
1109 time_t pdb_get_pass_can_change_time (SAM_ACCOUNT *sampass)
1110 {
1111 if (sampass)
1112 return (sampass->pass_can_change_time);
1113 else
1114 return (-1);
1115 }
1116
1117 time_t pdb_get_pass_must_change_time (SAM_ACCOUNT *sampass)
1118 {
1119 if (sampass)
1120 return (sampass->pass_must_change_time);
1121 else
1122 return (-1);
1123 }
1124
1125 uint16 pdb_get_logon_divs (SAM_ACCOUNT *sampass)
1126 {
1127 if (sampass)
1128 return (sampass->logon_divs);
1129 else
1130 return (-1);
1131 }
1132
1133 uint32 pdb_get_hours_len (SAM_ACCOUNT *sampass)
1134 {
1135 if (sampass)
1136 return (sampass->hours_len);
1137 else
1138 return (-1);
1139 }
1140
1141 uint8* pdb_get_hours (SAM_ACCOUNT *sampass)
1142 {
1143 if (sampass)
1144 return (sampass->hours);
1145 else
1146 return (NULL);
1147 }
1148
1149 uint8* pdb_get_nt_passwd (SAM_ACCOUNT *sampass)
1150 {
1151 if (sampass)
1152 return (sampass->nt_pw);
1153 else
1154 return (NULL);
1155 }
1156
1157 uint8* pdb_get_lanman_passwd (SAM_ACCOUNT *sampass)
1158 {
1159 if (sampass)
1160 return (sampass->lm_pw);
1161 else
1162 return (NULL);
1163 }
1164
1165
1166 uint32 pdb_get_user_rid (SAM_ACCOUNT *sampass)
1167 {
1168 if (sampass)
1169 return (sampass->user_rid);
1170 else
1171 return (-1);
1172 }
1173
1174 uint32 pdb_get_group_rid (SAM_ACCOUNT *sampass)
1175 {
1176 if (sampass)
1177 return (sampass->group_rid);
1178 else
1179 return (-1);
1180 }
1181
1182 uid_t pdb_get_uid (SAM_ACCOUNT *sampass)
1183 {
1184 if (sampass)
1185 return (sampass->uid);
1186 else
1187 return ((uid_t)-1);
1188 }
1189
1190 gid_t pdb_get_gid (SAM_ACCOUNT *sampass)
1191 {
1192 if (sampass)
1193 return (sampass->gid);
1194 else
1195 return ((gid_t)-1);
1196 }
1197
1198 char* pdb_get_username (SAM_ACCOUNT *sampass)
1199 {
1200 if (sampass)
1201 return (sampass->username);
1202 else
1203 return (NULL);
1204 }
1205
1206 char* pdb_get_domain (SAM_ACCOUNT *sampass)
1207 {
1208 if (sampass)
1209 return (sampass->domain);
1210 else
1211 return (NULL);
1212 }
1213
1214 char* pdb_get_nt_username (SAM_ACCOUNT *sampass)
1215 {
1216 if (sampass)
1217 return (sampass->nt_username);
1218 else
1219 return (NULL);
1220 }
1221
1222 char* pdb_get_fullname (SAM_ACCOUNT *sampass)
1223 {
1224 if (sampass)
1225 return (sampass->full_name);
1226 else
1227 return (NULL);
1228 }
1229
1230 char* pdb_get_homedir (SAM_ACCOUNT *sampass)
1231 {
1232 if (sampass)
1233 return (sampass->home_dir);
1234 else
1235 return (NULL);
1236 }
1237
1238 char* pdb_get_dirdrive (SAM_ACCOUNT *sampass)
1239 {
1240 if (sampass)
1241 return (sampass->dir_drive);
1242 else
1243 return (NULL);
1244 }
1245
1246 char* pdb_get_logon_script (SAM_ACCOUNT *sampass)
1247 {
1248 if (sampass)
1249 return (sampass->logon_script);
1250 else
1251 return (NULL);
1252 }
1253
1254 char* pdb_get_profile_path (SAM_ACCOUNT *sampass)
1255 {
1256 if (sampass)
1257 return (sampass->profile_path);
1258 else
1259 return (NULL);
1260 }
1261
1262 char* pdb_get_acct_desc (SAM_ACCOUNT *sampass)
1263 {
1264 if (sampass)
1265 return (sampass->acct_desc);
1266 else
1267 return (NULL);
1268 }
1269
1270 char* pdb_get_workstations (SAM_ACCOUNT *sampass)
1271 {
1272 if (sampass)
1273 return (sampass->workstations);
1274 else
1275 return (NULL);
1276 }
1277
1278 char* pdb_get_munged_dial (SAM_ACCOUNT *sampass)
1279 {
1280 if (sampass)
1281 return (sampass->munged_dial);
1282 else
1283 return (NULL);
1284 }
1285
1286 uint32 pdb_get_unknown3 (SAM_ACCOUNT *sampass)
1287 {
1288 if (sampass)
1289 return (sampass->unknown_3);
1290 else
1291 return (-1);
1292 }
1293
1294 uint32 pdb_get_unknown5 (SAM_ACCOUNT *sampass)
1295 {
1296 if (sampass)
1297 return (sampass->unknown_5);
1298 else
1299 return (-1);
1300 }
1301
1302 uint32 pdb_get_unknown6 (SAM_ACCOUNT *sampass)
1303 {
1304 if (sampass)
1305 return (sampass->unknown_6);
1306 else
1307 return (-1);
1308 }
1309
1310 /*********************************************************************
1311 collection of set...() functions for SAM_ACCOUNT_INFO
1312 ********************************************************************/
1313
1314 /********************************************************************
1315 The purpose of this flag is to determine whether or not we
1316 should free the memory when we are done. This allows us to
1317 use local static variables for string (reduce the number of
1318 malloc() calls) while still allowing for flexibility of
1319 dynamic objects.
1320
1321 We always clear the structure even if setting the flag to the
1322 same value.
1323 *******************************************************************/
1324 void pdb_set_mem_ownership (SAM_ACCOUNT *sampass, BOOL flag)
1325 {
1326 /* if we have no SAM_ACCOUNT struct or no change, then done */
1327 if (sampass == NULL)
1328 return;
1329
1330 /* clear the struct and set the ownership flag */
1331 pdb_clear_sam (sampass);
1332 sampass->own_memory = flag;
1333
1334 return;
1335 }
1336
1337 BOOL pdb_set_acct_ctrl (SAM_ACCOUNT *sampass, uint16 flags)
1338 {
1339 if (!sampass)
1340 return False;
1341
1342 if (sampass)
1343 {
1344 sampass->acct_ctrl = flags;
1345 return True;
1346 }
1347
1348 return False;
1349 }
1350
1351 BOOL pdb_set_logon_time (SAM_ACCOUNT *sampass, time_t mytime)
1352 {
1353 if (!sampass)
1354 return False;
1355
1356 sampass->logon_time = mytime;
1357 return True;
1358 }
1359
1360 BOOL pdb_set_logoff_time (SAM_ACCOUNT *sampass, time_t mytime)
1361 {
1362 if (!sampass)
1363 return False;
1364
1365 sampass->logoff_time = mytime;
1366 return True;
1367 }
1368
1369 BOOL pdb_set_kickoff_time (SAM_ACCOUNT *sampass, time_t mytime)
1370 {
1371 if (!sampass)
1372 return False;
1373
1374 sampass->kickoff_time = mytime;
1375 return True;
1376 }
1377
1378 BOOL pdb_set_pass_can_change_time (SAM_ACCOUNT *sampass, time_t mytime)
1379 {
1380 if (!sampass)
1381 return False;
1382
1383 sampass->pass_can_change_time = mytime;
1384 return True;
1385 }
1386
1387 BOOL pdb_set_pass_must_change_time (SAM_ACCOUNT *sampass, time_t mytime)
1388 {
1389 if (!sampass)
1390 return False;
1391
1392 sampass->pass_must_change_time = mytime;
1393 return True;
1394 }
1395
1396 BOOL pdb_set_pass_last_set_time (SAM_ACCOUNT *sampass, time_t mytime)
1397 {
1398 if (!sampass)
1399 return False;
1400
1401 sampass->pass_last_set_time = mytime;
1402 return True;
1403 }
1404
1405 BOOL pdb_set_hours_len (SAM_ACCOUNT *sampass, uint32 len)
1406 {
1407 if (!sampass)
1408 return False;
1409
1410 sampass->hours_len = len;
1411 return True;
1412 }
1413
1414 BOOL pdb_set_logons_divs (SAM_ACCOUNT *sampass, uint16 hours)
1415 {
1416 if (!sampass)
1417 return False;
1418
1419 sampass->logon_divs = hours;
1420 return True;
1421 }
1422
1423 BOOL pdb_set_uid (SAM_ACCOUNT *sampass, uid_t uid)
1424 {
1425 if (!sampass)
1426 return False;
1427
1428 sampass->uid = uid;
1429 return True;
1430 }
1431
1432 BOOL pdb_set_gid (SAM_ACCOUNT *sampass, gid_t gid)
1433 {
1434 if (!sampass)
1435 return False;
1436
1437 sampass->gid = gid;
1438 return True;
1439 }
1440
1441 BOOL pdb_set_user_rid (SAM_ACCOUNT *sampass, uint32 rid)
1442 {
1443 if (!sampass)
1444 return False;
1445
1446 sampass->user_rid = rid;
1447 return True;
1448 }
1449
1450 BOOL pdb_set_group_rid (SAM_ACCOUNT *sampass, uint32 grid)
1451 {
1452 if (!sampass)
1453 return False;
1454
1455 sampass->group_rid = grid;
1456 return True;
1457 }
1458
1459 BOOL pdb_set_username (SAM_ACCOUNT *sampass, char *username)
1460 {
1461 if (!sampass)
1462 return False;
1463
1464 if (!sampass->own_memory)
1465 sampass->username = username;
1466 else
1467 {
1468 if ( (sampass->username=strdup(username)) == NULL )
1469 {
1470 DEBUG (0,("pdb_set_username: ERROR - Unable to malloc memory for [%s]\n", username));
1471 return False;
1472 }
1473 }
1474
1475 return True;
1476 }
1477
1478 BOOL pdb_set_domain (SAM_ACCOUNT *sampass, char *domain)
1479 {
1480 if (!sampass)
1481 return False;
1482
1483 if (!sampass->own_memory)
1484 sampass->domain = domain;
1485 else
1486 {
1487 if ( (sampass->domain=strdup(domain)) == NULL )
1488 {
1489 DEBUG (0,("pdb_set_domain: ERROR - Unable to malloc memory for [%s]\n", domain));
1490 return False;
1491 }
1492 }
1493
1494 return True;
1495 }
1496
1497 BOOL pdb_set_nt_username (SAM_ACCOUNT *sampass, char *nt_username)
1498 {
1499 if (!sampass)
1500 return False;
1501
1502 if (!sampass->own_memory)
1503 sampass->nt_username = nt_username;
1504 else
1505 {
1506 if ( (sampass->nt_username=strdup(nt_username)) == NULL )
1507 {
1508 DEBUG (0,("pdb_set_nt_username: ERROR - Unable to malloc memory for [%s]\n", nt_username));
1509 return False;
1510 }
1511 }
1512
1513 return True;
1514 }
1515
1516 BOOL pdb_set_fullname (SAM_ACCOUNT *sampass, char *fullname)
1517 {
1518 if (!sampass)
1519 return False;
1520
1521 if (!sampass->own_memory)
1522 sampass->full_name = fullname;
1523 else
1524 {
1525 if ( (sampass->full_name=strdup(fullname)) == NULL )
1526 {
1527 DEBUG (0,("pdb_set_fullname: ERROR - Unable to malloc memory for [%s]\n", fullname));
1528 return False;
1529 }
1530 }
1531
1532 return True;
1533 }
1534
1535 BOOL pdb_set_logon_script (SAM_ACCOUNT *sampass, char *logon_script)
1536 {
1537 if (!sampass)
1538 return False;
1539
1540 if (!sampass->own_memory)
1541 sampass->logon_script = logon_script;
1542 else
1543 {
1544 if ( (sampass->logon_script=strdup(logon_script)) == NULL )
1545 {
1546 DEBUG (0,("pdb_set_logon_script: ERROR - Unable to malloc memory for [%s]\n", logon_script));
1547 return False;
1548 }
1549 }
1550
1551 return True;
1552 }
1553
1554 BOOL pdb_set_profile_path (SAM_ACCOUNT *sampass, char *profile_path)
1555 {
1556 if (!sampass)
1557 return False;
1558
1559 if (!sampass->own_memory)
1560 sampass->profile_path = profile_path;
1561 else
1562 {
1563 if ( (sampass->profile_path=strdup(profile_path)) == NULL )
1564 {
1565 DEBUG (0,("pdb_set_profile_path: ERROR - Unable to malloc memory for [%s]\n", profile_path));
1566 return False;
1567 }
1568 }
1569
1570 return True;
1571 }
1572
1573 BOOL pdb_set_dir_drive (SAM_ACCOUNT *sampass, char *dir_drive)
1574 {
1575 if (!sampass)
1576 return False;
1577
1578 if (!sampass->own_memory)
1579 sampass->dir_drive = dir_drive;
1580 else
1581 {
1582 if ( (sampass->dir_drive=strdup(dir_drive)) == NULL )
1583 {
1584 DEBUG (0,("pdb_set_dir_drive: ERROR - Unable to malloc memory for [%s]\n", dir_drive));
1585 return False;
1586 }
1587 }
1588
1589 return True;
1590 }
1591
1592 BOOL pdb_set_homedir (SAM_ACCOUNT *sampass, char *homedir)
1593 {
1594 if (!sampass)
1595 return False;
1596
1597 if (!sampass->own_memory)
1598 sampass->home_dir = homedir;
1599 else
1600 {
1601 if ( (sampass->home_dir=strdup(homedir)) == NULL )
1602 {
1603 DEBUG (0,("pdb_set_home_dir: ERROR - Unable to malloc memory for [%s]\n", homedir));
1604 return False;
1605 }
1606 }
1607
1608 return True;
1609 }
1610
1611 BOOL pdb_set_acct_desc (SAM_ACCOUNT *sampass, char *acct_desc)
1612 {
1613 if (!sampass)
1614 return False;
1615
1616 if (!sampass->own_memory)
1617 sampass->acct_desc = acct_desc;
1618 else
1619 {
1620 if ( (sampass->acct_desc=strdup(acct_desc)) == NULL )
1621 {
1622 DEBUG (0,("pdb_set_acct_desc: ERROR - Unable to malloc memory for [%s]\n", acct_desc));
1623 return False;
1624 }
1625 }
1626
1627 return True;
1628 }
1629 BOOL pdb_set_workstations (SAM_ACCOUNT *sampass, char *workstations)
1630 {
1631 if (!sampass)
1632 return False;
1633
1634 if (!sampass->own_memory)
1635 sampass->workstations = workstations;
1636 else
1637 {
1638 if ( (sampass->workstations=strdup(workstations)) == NULL )
1639 {
1640 DEBUG (0,("pdb_set_workstations: ERROR - Unable to malloc memory for [%s]\n", workstations));
1641 return False;
1642 }
1643 }
1644
1645 return True;
1646 }
1647
1648 BOOL pdb_set_munged_dial (SAM_ACCOUNT *sampass, char *munged_dial)
1649 {
1650 if (!sampass)
1651 return False;
1652
1653 if (!sampass->own_memory)
1654 sampass->munged_dial = munged_dial;
1655 else
1656 {
1657 if ( (sampass->munged_dial=strdup(munged_dial)) == NULL )
1658 {
1659 DEBUG (0,("pdb_set_munged_dial: ERROR - Unable to malloc memory for [%s]\n", munged_dial));
1660 return False;
1661 }
1662 }
1663
1664 return True;
1665 }
1666
1667 BOOL pdb_set_nt_passwd (SAM_ACCOUNT *sampass, uint8 *pwd)
1668 {
1669 if ( (!sampass) ||(pwd == NULL) )
1670 return False;
1671
1672 if (!sampass->own_memory)
1673 sampass->nt_pw = pwd;
1674 else
1675 {
1676 if ((sampass->nt_pw=(uint8*)malloc(sizeof(uint8)*16)) == NULL)
1677 {
1678 DEBUG(0,("pdb_set_nt_passwd: ERROR - out of memory for nt_pw!\n"));
1679 return False;
1680 }
1681 if (!memcpy(sampass->nt_pw, pwd, 16))
1682 return False;
1683 }
1684
1685 return True;
1686 }
1687
1688 BOOL pdb_set_lanman_passwd (SAM_ACCOUNT *sampass, uint8 *pwd)
1689 {
1690 if ( (!sampass) ||(pwd == NULL) )
1691 return False;
1692
1693 if (!sampass->own_memory)
1694 sampass->lm_pw = pwd;
1695 else
1696 {
1697 if ((sampass->lm_pw=(uint8*)malloc(sizeof(uint8)*16)) == NULL)
1698 {
1699 DEBUG(0,("pdb_set_lanman_passwd: ERROR - out of memory for lm_pw!\n"));
1700 return False;
1701 }
1702 if (!memcpy(sampass->lm_pw, pwd, 16))
1703 return False;
1704 }
1705
1706 return True;
1707 }
WIP