search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Make code more readable, fix indentation and traling spaces.
[Samba/gbeck.git] / source3 / winbindd / winbindd_user.c
blob270a297b7cdb52510f1a4c1b92fd30762df804e0
1 /*
2 Unix SMB/CIFS implementation.
3
4 Winbind daemon - user related functions
5
6 Copyright (C) Tim Potter 2000
7 Copyright (C) Jeremy Allison 2001.
8 Copyright (C) Gerald (Jerry) Carter 2003.
9
10 This program is free software; you can redistribute it and/or modify
11 it under the terms of the GNU General Public License as published by
12 the Free Software Foundation; either version 3 of the License, or
13 (at your option) any later version.
14
15 This program is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 GNU General Public License for more details.
19
20 You should have received a copy of the GNU General Public License
21 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 */
23
24 #include "includes.h"
25 #include "winbindd.h"
26
27 #undef DBGC_CLASS
28 #define DBGC_CLASS DBGC_WINBIND
29
30 static bool fillup_pw_field(const char *lp_template,
31 const char *username,
32 const char *domname,
33 uid_t uid,
34 gid_t gid,
35 const char *in,
36 fstring out)
37 {
38 char *templ;
39
40 if (out == NULL)
41 return False;
42
43 /* The substitution of %U and %D in the 'template
44 homedir' is done by talloc_sub_specified() below.
45 If we have an in string (which means the value has already
46 been set in the nss_info backend), then use that.
47 Otherwise use the template value passed in. */
48
49 if ( in && !strequal(in,"") && lp_security() == SEC_ADS ) {
50 templ = talloc_sub_specified(NULL, in,
51 username, domname,
52 uid, gid);
53 } else {
54 templ = talloc_sub_specified(NULL, lp_template,
55 username, domname,
56 uid, gid);
57 }
58
59 if (!templ)
60 return False;
61
62 safe_strcpy(out, templ, sizeof(fstring) - 1);
63 TALLOC_FREE(templ);
64
65 return True;
66
67 }
68 /* Fill a pwent structure with information we have obtained */
69
70 static bool winbindd_fill_pwent(char *dom_name, char *user_name,
71 DOM_SID *user_sid, DOM_SID *group_sid,
72 char *full_name, char *homedir, char *shell,
73 struct winbindd_pw *pw)
74 {
75 fstring output_username;
76
77 if (!pw || !dom_name || !user_name)
78 return False;
79
80 /* Resolve the uid number */
81
82 if (!NT_STATUS_IS_OK(idmap_sid_to_uid(user_sid, &pw->pw_uid))) {
83 DEBUG(1, ("error getting user id for sid %s\n",
84 sid_string_dbg(user_sid)));
85 return False;
86 }
87
88 /* Resolve the gid number */
89
90 if (!NT_STATUS_IS_OK(idmap_sid_to_gid(group_sid, &pw->pw_gid))) {
91 DEBUG(1, ("error getting group id for sid %s\n",
92 sid_string_dbg(group_sid)));
93 return False;
94 }
95
96 strlower_m(user_name);
97
98 /* Username */
99
100 fill_domain_username(output_username, dom_name, user_name, True);
101
102 safe_strcpy(pw->pw_name, output_username, sizeof(pw->pw_name) - 1);
103
104 /* Full name (gecos) */
105
106 safe_strcpy(pw->pw_gecos, full_name, sizeof(pw->pw_gecos) - 1);
107
108 /* Home directory and shell */
109
110 if (!fillup_pw_field(lp_template_homedir(), user_name, dom_name,
111 pw->pw_uid, pw->pw_gid, homedir, pw->pw_dir))
112 return False;
113
114 if (!fillup_pw_field(lp_template_shell(), user_name, dom_name,
115 pw->pw_uid, pw->pw_gid, shell, pw->pw_shell))
116 return False;
117
118 /* Password - set to "*" as we can't generate anything useful here.
119 Authentication can be done using the pam_winbind module. */
120
121 safe_strcpy(pw->pw_passwd, "*", sizeof(pw->pw_passwd) - 1);
122
123 return True;
124 }
125
126 /* Wrapper for domain->methods->query_user, only on the parent->child pipe */
127
128 enum winbindd_result winbindd_dual_userinfo(struct winbindd_domain *domain,
129 struct winbindd_cli_state *state)
130 {
131 DOM_SID sid;
132 WINBIND_USERINFO user_info;
133 NTSTATUS status;
134
135 /* Ensure null termination */
136 state->request.data.sid[sizeof(state->request.data.sid)-1]='\0';
137
138 DEBUG(3, ("[%5lu]: lookupsid %s\n", (unsigned long)state->pid,
139 state->request.data.sid));
140
141 if (!string_to_sid(&sid, state->request.data.sid)) {
142 DEBUG(5, ("%s not a SID\n", state->request.data.sid));
143 return WINBINDD_ERROR;
144 }
145
146 status = domain->methods->query_user(domain, state->mem_ctx,
147 &sid, &user_info);
148 if (!NT_STATUS_IS_OK(status)) {
149 DEBUG(1, ("error getting user info for sid %s\n",
150 sid_string_dbg(&sid)));
151 return WINBINDD_ERROR;
152 }
153
154 fstrcpy(state->response.data.user_info.acct_name, user_info.acct_name);
155 fstrcpy(state->response.data.user_info.full_name, user_info.full_name);
156 fstrcpy(state->response.data.user_info.homedir, user_info.homedir);
157 fstrcpy(state->response.data.user_info.shell, user_info.shell);
158 state->response.data.user_info.primary_gid = user_info.primary_gid;
159 if (!sid_peek_check_rid(&domain->sid, &user_info.group_sid,
160 &state->response.data.user_info.group_rid)) {
161 DEBUG(1, ("Could not extract group rid out of %s\n",
162 sid_string_dbg(&sid)));
163 return WINBINDD_ERROR;
164 }
165
166 return WINBINDD_OK;
167 }
168
169 struct getpwsid_state {
170 struct winbindd_cli_state *state;
171 struct winbindd_domain *domain;
172 char *username;
173 char *fullname;
174 char *homedir;
175 char *shell;
176 DOM_SID user_sid;
177 uid_t uid;
178 DOM_SID group_sid;
179 gid_t gid;
180 };
181
182 static void getpwsid_queryuser_recv(void *private_data, bool success,
183 const char *acct_name,
184 const char *full_name,
185 const char *homedir,
186 const char *shell,
187 uint32 gid,
188 uint32 group_rid);
189 static void getpwsid_sid2uid_recv(void *private_data, bool success, uid_t uid);
190 static void getpwsid_sid2gid_recv(void *private_data, bool success, gid_t gid);
191
192 static void winbindd_getpwsid(struct winbindd_cli_state *state,
193 const DOM_SID *sid)
194 {
195 struct getpwsid_state *s;
196
197 s = TALLOC_ZERO_P(state->mem_ctx, struct getpwsid_state);
198 if (s == NULL) {
199 DEBUG(0, ("talloc failed\n"));
200 goto error;
201 }
202
203 s->state = state;
204 s->domain = find_domain_from_sid_noinit(sid);
205 if (s->domain == NULL) {
206 DEBUG(3, ("Could not find domain for sid %s\n",
207 sid_string_dbg(sid)));
208 goto error;
209 }
210
211 sid_copy(&s->user_sid, sid);
212
213 query_user_async(s->state->mem_ctx, s->domain, sid,
214 getpwsid_queryuser_recv, s);
215 return;
216
217 error:
218 request_error(state);
219 }
220
221 static void getpwsid_queryuser_recv(void *private_data, bool success,
222 const char *acct_name,
223 const char *full_name,
224 const char *homedir,
225 const char *shell,
226 uint32 gid,
227 uint32 group_rid)
228 {
229 fstring username;
230 struct getpwsid_state *s =
231 talloc_get_type_abort(private_data, struct getpwsid_state);
232
233 if (!success) {
234 DEBUG(5, ("Could not query domain %s SID %s\n",
235 s->domain->name, sid_string_dbg(&s->user_sid)));
236 request_error(s->state);
237 return;
238 }
239
240 if ( acct_name && *acct_name ) {
241 fstrcpy( username, acct_name );
242 } else {
243 char *domain_name = NULL;
244 enum lsa_SidType type;
245 char *user_name = NULL;
246 struct winbindd_domain *domain = NULL;
247
248 domain = find_lookup_domain_from_sid(&s->user_sid);
249 if (domain == NULL) {
250 DEBUG(5, ("find_lookup_domain_from_sid(%s) failed\n",
251 sid_string_dbg(&s->user_sid)));
252 request_error(s->state);
253 return;
254 }
255 winbindd_lookup_name_by_sid(s->state->mem_ctx, domain,
256 &s->user_sid, &domain_name,
257 &user_name, &type );
258
259 /* If this still fails we ar4e done. Just error out */
260 if ( !user_name ) {
261 DEBUG(5,("Could not obtain a name for SID %s\n",
262 sid_string_dbg(&s->user_sid)));
263 request_error(s->state);
264 return;
265 }
266
267 fstrcpy( username, user_name );
268 }
269
270 strlower_m( username );
271 s->username = talloc_strdup(s->state->mem_ctx, username);
272
273 ws_name_replace( s->username, WB_REPLACE_CHAR );
274
275 s->fullname = talloc_strdup(s->state->mem_ctx, full_name);
276 s->homedir = talloc_strdup(s->state->mem_ctx, homedir);
277 s->shell = talloc_strdup(s->state->mem_ctx, shell);
278 s->gid = gid;
279 sid_copy(&s->group_sid, &s->domain->sid);
280 sid_append_rid(&s->group_sid, group_rid);
281
282 winbindd_sid2uid_async(s->state->mem_ctx, &s->user_sid,
283 getpwsid_sid2uid_recv, s);
284 }
285
286 static void getpwsid_sid2uid_recv(void *private_data, bool success, uid_t uid)
287 {
288 struct getpwsid_state *s =
289 talloc_get_type_abort(private_data, struct getpwsid_state);
290
291 if (!success) {
292 DEBUG(5, ("Could not query uid for user %s\\%s\n",
293 s->domain->name, s->username));
294 request_error(s->state);
295 return;
296 }
297
298 s->uid = uid;
299 winbindd_sid2gid_async(s->state->mem_ctx, &s->group_sid,
300 getpwsid_sid2gid_recv, s);
301 }
302
303 static void getpwsid_sid2gid_recv(void *private_data, bool success, gid_t gid)
304 {
305 struct getpwsid_state *s =
306 talloc_get_type_abort(private_data, struct getpwsid_state);
307 struct winbindd_pw *pw;
308 fstring output_username;
309
310 /* allow the nss backend to override the primary group ID.
311 If the gid has already been set, then keep it.
312 This makes me feel dirty. If the nss backend already
313 gave us a gid, we don't really care whether the sid2gid()
314 call worked or not. --jerry */
315
316 if ( s->gid == (gid_t)-1 ) {
317
318 if (!success) {
319 DEBUG(5, ("Could not query gid for user %s\\%s\n",
320 s->domain->name, s->username));
321 goto failed;
322 }
323
324 /* take what the sid2gid() call gave us */
325 s->gid = gid;
326 }
327
328 pw = &s->state->response.data.pw;
329 pw->pw_uid = s->uid;
330 pw->pw_gid = s->gid;
331 fill_domain_username(output_username, s->domain->name, s->username, True);
332 safe_strcpy(pw->pw_name, output_username, sizeof(pw->pw_name) - 1);
333 safe_strcpy(pw->pw_gecos, s->fullname, sizeof(pw->pw_gecos) - 1);
334
335 if (!fillup_pw_field(lp_template_homedir(), s->username, s->domain->name,
336 pw->pw_uid, pw->pw_gid, s->homedir, pw->pw_dir)) {
337 DEBUG(5, ("Could not compose homedir\n"));
338 goto failed;
339 }
340
341 if (!fillup_pw_field(lp_template_shell(), s->username, s->domain->name,
342 pw->pw_uid, pw->pw_gid, s->shell, pw->pw_shell)) {
343 DEBUG(5, ("Could not compose shell\n"));
344 goto failed;
345 }
346
347 /* Password - set to "*" as we can't generate anything useful here.
348 Authentication can be done using the pam_winbind module. */
349
350 safe_strcpy(pw->pw_passwd, "*", sizeof(pw->pw_passwd) - 1);
351
352 request_ok(s->state);
353 return;
354
355 failed:
356 request_error(s->state);
357 }
358
359 /* Return a password structure from a username. */
360
361 static void getpwnam_name2sid_recv(void *private_data, bool success,
362 const DOM_SID *sid, enum lsa_SidType type);
363
364 void winbindd_getpwnam(struct winbindd_cli_state *state)
365 {
366 struct winbindd_domain *domain;
367 fstring domname, username;
368 char *domuser;
369 size_t dusize;
370
371 domuser = state->request.data.username;
372 dusize = sizeof(state->request.data.username);
373
374 /* Ensure null termination (it's an fstring) */
375 domuser[dusize-1] = '\0';
376
377 DEBUG(3, ("[%5lu]: getpwnam %s\n",
378 (unsigned long)state->pid,
379 domuser));
380
381 ws_name_return(domuser, WB_REPLACE_CHAR);
382
383 if (!parse_domain_user(domuser, domname, username)) {
384 DEBUG(5, ("Could not parse domain user: %s\n", domuser));
385 request_error(state);
386 return;
387 }
388
389 /* Get info for the domain */
390
391 domain = find_domain_from_name(domname);
392
393 if (domain == NULL) {
394 DEBUG(7, ("could not find domain entry for domain %s. "
395 "Using primary domain\n", domname));
396 if ( (domain = find_our_domain()) == NULL ) {
397 DEBUG(0,("Cannot find my primary domain structure!\n"));
398 request_error(state);
399 return;
400 }
401 }
402
403 if (strequal(domname, lp_workgroup()) &&
404 lp_winbind_trusted_domains_only() ) {
405 DEBUG(7,("winbindd_getpwnam: My domain -- "
406 "rejecting getpwnam() for %s\\%s.\n",
407 domname, username));
408 request_error(state);
409 return;
410 }
411
412 /* Get rid and name type from name. The following costs 1 packet */
413
414 winbindd_lookupname_async(state->mem_ctx, domname, username,
415 getpwnam_name2sid_recv, WINBINDD_GETPWNAM,
416 state);
417 }
418
419 static void getpwnam_name2sid_recv(void *private_data, bool success,
420 const DOM_SID *sid, enum lsa_SidType type)
421 {
422 struct winbindd_cli_state *state =
423 (struct winbindd_cli_state *)private_data;
424 fstring domname, username;
425
426 if (!success) {
427 DEBUG(5, ("Could not lookup name for user %s\n",
428 state->request.data.username));
429 request_error(state);
430 return;
431 }
432
433 if ((type != SID_NAME_USER) && (type != SID_NAME_COMPUTER)) {
434 DEBUG(5, ("%s is not a user\n", state->request.data.username));
435 request_error(state);
436 return;
437 }
438
439 if ( parse_domain_user(state->request.data.username, domname, username) ) {
440 check_domain_trusted( domname, sid );
441 }
442
443
444
445 winbindd_getpwsid(state, sid);
446 }
447
448 static void getpwuid_recv(void *private_data, bool success, const char *sid)
449 {
450 struct winbindd_cli_state *state =
451 (struct winbindd_cli_state *)private_data;
452 DOM_SID user_sid;
453
454 if (!success) {
455 DEBUG(10,("uid2sid_recv: uid [%lu] to sid mapping failed\n.",
456 (unsigned long)(state->request.data.uid)));
457 request_error(state);
458 return;
459 }
460
461 DEBUG(10,("uid2sid_recv: uid %lu has sid %s\n",
462 (unsigned long)(state->request.data.uid), sid));
463
464 string_to_sid(&user_sid, sid);
465 winbindd_getpwsid(state, &user_sid);
466 }
467
468 /* Return a password structure given a uid number */
469 void winbindd_getpwuid(struct winbindd_cli_state *state)
470 {
471 DEBUG(3, ("[%5lu]: getpwuid %lu\n", (unsigned long)state->pid,
472 (unsigned long)state->request.data.uid));
473
474 /* always query idmap via the async interface */
475 /* if this turns to be too slow we will add here a direct query to the cache */
476 winbindd_uid2sid_async(state->mem_ctx, state->request.data.uid, getpwuid_recv, state);
477 }
478
479 /*
480 * set/get/endpwent functions
481 */
482
483 /* Rewind file pointer for ntdom passwd database */
484
485 static bool winbindd_setpwent_internal(struct winbindd_cli_state *state)
486 {
487 struct winbindd_domain *domain;
488
489 DEBUG(3, ("[%5lu]: setpwent\n", (unsigned long)state->pid));
490
491 /* Check user has enabled this */
492
493 if (!lp_winbind_enum_users()) {
494 return False;
495 }
496
497 /* Free old static data if it exists */
498
499 if (state->getpwent_state != NULL) {
500 free_getent_state(state->getpwent_state);
501 state->getpwent_state = NULL;
502 }
503
504 #if 0 /* JERRY */
505 /* add any local users we have */
506
507 if ( (domain_state = (struct getent_state *)malloc(sizeof(struct getent_state))) == NULL )
508 return False;
509
510 ZERO_STRUCTP(domain_state);
511
512 /* Add to list of open domains */
513
514 DLIST_ADD(state->getpwent_state, domain_state);
515 #endif
516
517 /* Create sam pipes for each domain we know about */
518
519 for(domain = domain_list(); domain != NULL; domain = domain->next) {
520 struct getent_state *domain_state;
521
522
523 /* don't add our domaina if we are a PDC or if we
524 are a member of a Samba domain */
525
526 if ( (IS_DC || lp_winbind_trusted_domains_only())
527 && strequal(domain->name, lp_workgroup()) )
528 {
529 continue;
530 }
531
532 /* Create a state record for this domain */
533
534 if ((domain_state = SMB_MALLOC_P(struct getent_state)) == NULL) {
535 DEBUG(0, ("malloc failed\n"));
536 return False;
537 }
538
539 ZERO_STRUCTP(domain_state);
540
541 fstrcpy(domain_state->domain_name, domain->name);
542
543 /* Add to list of open domains */
544
545 DLIST_ADD(state->getpwent_state, domain_state);
546 }
547
548 state->getpwent_initialized = True;
549 return True;
550 }
551
552 void winbindd_setpwent(struct winbindd_cli_state *state)
553 {
554 if (winbindd_setpwent_internal(state)) {
555 request_ok(state);
556 } else {
557 request_error(state);
558 }
559 }
560
561 /* Close file pointer to ntdom passwd database */
562
563 void winbindd_endpwent(struct winbindd_cli_state *state)
564 {
565 DEBUG(3, ("[%5lu]: endpwent\n", (unsigned long)state->pid));
566
567 free_getent_state(state->getpwent_state);
568 state->getpwent_initialized = False;
569 state->getpwent_state = NULL;
570 request_ok(state);
571 }
572
573 /* Get partial list of domain users for a domain. We fill in the sam_entries,
574 and num_sam_entries fields with domain user information. The dispinfo_ndx
575 field is incremented to the index of the next user to fetch. Return True if
576 some users were returned, False otherwise. */
577
578 static bool get_sam_user_entries(struct getent_state *ent, TALLOC_CTX *mem_ctx)
579 {
580 NTSTATUS status;
581 uint32 num_entries;
582 WINBIND_USERINFO *info;
583 struct getpwent_user *name_list = NULL;
584 struct winbindd_domain *domain;
585 struct winbindd_methods *methods;
586 unsigned int i;
587
588 if (ent->num_sam_entries)
589 return False;
590
591 if (!(domain = find_domain_from_name(ent->domain_name))) {
592 DEBUG(3, ("no such domain %s in get_sam_user_entries\n",
593 ent->domain_name));
594 return False;
595 }
596
597 methods = domain->methods;
598
599 /* Free any existing user info */
600
601 SAFE_FREE(ent->sam_entries);
602 ent->num_sam_entries = 0;
603
604 /* Call query_user_list to get a list of usernames and user rids */
605
606 num_entries = 0;
607
608 status = methods->query_user_list(domain, mem_ctx, &num_entries,
609 &info);
610
611 if (!NT_STATUS_IS_OK(status)) {
612 DEBUG(10,("get_sam_user_entries: query_user_list failed with %s\n",
613 nt_errstr(status) ));
614 return False;
615 }
616
617 if (num_entries) {
618 name_list = SMB_REALLOC_ARRAY(name_list, struct getpwent_user, ent->num_sam_entries + num_entries);
619
620 if (!name_list) {
621 DEBUG(0,("get_sam_user_entries realloc failed.\n"));
622 return False;
623 }
624 }
625
626 for (i = 0; i < num_entries; i++) {
627 /* Store account name and gecos */
628 if (!info[i].acct_name) {
629 fstrcpy(name_list[ent->num_sam_entries + i].name, "");
630 } else {
631 fstrcpy(name_list[ent->num_sam_entries + i].name,
632 info[i].acct_name);
633 }
634 if (!info[i].full_name) {
635 fstrcpy(name_list[ent->num_sam_entries + i].gecos, "");
636 } else {
637 fstrcpy(name_list[ent->num_sam_entries + i].gecos,
638 info[i].full_name);
639 }
640 if (!info[i].homedir) {
641 fstrcpy(name_list[ent->num_sam_entries + i].homedir, "");
642 } else {
643 fstrcpy(name_list[ent->num_sam_entries + i].homedir,
644 info[i].homedir);
645 }
646 if (!info[i].shell) {
647 fstrcpy(name_list[ent->num_sam_entries + i].shell, "");
648 } else {
649 fstrcpy(name_list[ent->num_sam_entries + i].shell,
650 info[i].shell);
651 }
652
653
654 /* User and group ids */
655 sid_copy(&name_list[ent->num_sam_entries+i].user_sid,
656 &info[i].user_sid);
657 sid_copy(&name_list[ent->num_sam_entries+i].group_sid,
658 &info[i].group_sid);
659 }
660
661 ent->num_sam_entries += num_entries;
662
663 /* Fill in remaining fields */
664
665 ent->sam_entries = name_list;
666 ent->sam_entry_index = 0;
667 return ent->num_sam_entries > 0;
668 }
669
670 /* Fetch next passwd entry from ntdom database */
671
672 #define MAX_GETPWENT_USERS 500
673
674 void winbindd_getpwent(struct winbindd_cli_state *state)
675 {
676 struct getent_state *ent;
677 struct winbindd_pw *user_list;
678 int num_users, user_list_ndx;
679
680 DEBUG(3, ("[%5lu]: getpwent\n", (unsigned long)state->pid));
681
682 /* Check user has enabled this */
683
684 if (!lp_winbind_enum_users()) {
685 request_error(state);
686 return;
687 }
688
689 /* Allocate space for returning a chunk of users */
690
691 num_users = MIN(MAX_GETPWENT_USERS, state->request.data.num_entries);
692
693 if (num_users == 0) {
694 request_error(state);
695 return;
696 }
697
698 if ((state->response.extra_data.data = SMB_MALLOC_ARRAY(struct winbindd_pw, num_users)) == NULL) {
699 request_error(state);
700 return;
701 }
702
703 memset(state->response.extra_data.data, 0, num_users *
704 sizeof(struct winbindd_pw));
705
706 user_list = (struct winbindd_pw *)state->response.extra_data.data;
707
708 if (!state->getpwent_initialized)
709 winbindd_setpwent_internal(state);
710
711 if (!(ent = state->getpwent_state)) {
712 request_error(state);
713 return;
714 }
715
716 /* Start sending back users */
717
718 for (user_list_ndx = 0; user_list_ndx < num_users; ) {
719 struct getpwent_user *name_list = NULL;
720 uint32 result;
721
722 /* Do we need to fetch another chunk of users? */
723
724 if (ent->num_sam_entries == ent->sam_entry_index) {
725
726 while(ent &&
727 !get_sam_user_entries(ent, state->mem_ctx)) {
728 struct getent_state *next_ent;
729
730 /* Free state information for this domain */
731
732 SAFE_FREE(ent->sam_entries);
733
734 next_ent = ent->next;
735 DLIST_REMOVE(state->getpwent_state, ent);
736
737 SAFE_FREE(ent);
738 ent = next_ent;
739 }
740
741 /* No more domains */
742
743 if (!ent)
744 break;
745 }
746
747 name_list = (struct getpwent_user *)ent->sam_entries;
748
749 /* Lookup user info */
750
751 result = winbindd_fill_pwent(
752 ent->domain_name,
753 name_list[ent->sam_entry_index].name,
754 &name_list[ent->sam_entry_index].user_sid,
755 &name_list[ent->sam_entry_index].group_sid,
756 name_list[ent->sam_entry_index].gecos,
757 name_list[ent->sam_entry_index].homedir,
758 name_list[ent->sam_entry_index].shell,
759 &user_list[user_list_ndx]);
760
761 /* Add user to return list */
762
763 if (result) {
764
765 user_list_ndx++;
766 state->response.data.num_entries++;
767 state->response.length +=
768 sizeof(struct winbindd_pw);
769
770 } else
771 DEBUG(1, ("could not lookup domain user %s\n",
772 name_list[ent->sam_entry_index].name));
773
774 ent->sam_entry_index++;
775
776 }
777
778 /* Out of domains */
779
780 if (user_list_ndx > 0)
781 request_ok(state);
782 else
783 request_error(state);
784 }
785
786 /* List domain users without mapping to unix ids */
787 void winbindd_list_users(struct winbindd_cli_state *state)
788 {
789 winbindd_list_ent(state, LIST_USERS);
790 }
WIP