2 * Unix SMB/CIFS implementation.
3 * SMB parameters and setup
4 * Copyright (C) Andrew Tridgell 1992-1998
5 * Copyright (C) Simo Sorce 2000-2003
6 * Copyright (C) Gerald Carter 2000
7 * Copyright (C) Jeremy Allison 2001
8 * Copyright (C) Andrew Bartlett 2002
9 * Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2005
11 * This program is free software; you can redistribute it and/or modify it under
12 * the terms of the GNU General Public License as published by the Free
13 * Software Foundation; either version 2 of the License, or (at your option)
16 * This program is distributed in the hope that it will be useful, but WITHOUT
17 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
18 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
21 * You should have received a copy of the GNU General Public License along with
22 * this program; if not, write to the Free Software Foundation, Inc., 675
23 * Mass Ave, Cambridge, MA 02139, USA.
28 #if 0 /* when made a module use this */
30 static int tdbsam_debug_level
= DBGC_ALL
;
32 #define DBGC_CLASS tdbsam_debug_level
37 #define DBGC_CLASS DBGC_PASSDB
41 #define TDBSAM_VERSION 2 /* Most recent TDBSAM version */
42 #define TDBSAM_VERSION_STRING "INFO/version"
43 #define PASSDB_FILE_NAME "passdb.tdb"
44 #define USERPREFIX "USER_"
45 #define RIDPREFIX "RID_"
46 #define PRIVPREFIX "PRIV_"
47 #define tdbsamver_t int32
49 struct tdbsam_privates
{
50 TDB_CONTEXT
*passwd_tdb
;
52 /* retrive-once info */
53 const char *tdbsam_location
;
57 struct pwent_list
*prev
, *next
;
60 static struct pwent_list
*tdbsam_pwent_list
;
64 * Convert old TDBSAM to the latest version.
65 * @param pdb_tdb A pointer to the opened TDBSAM file which must be converted.
66 * This file must be opened with read/write access.
67 * @param from Current version of the TDBSAM file.
68 * @return True if the conversion has been successful, false otherwise.
71 static BOOL
tdbsam_convert(TDB_CONTEXT
*pdb_tdb
, tdbsamver_t from
)
73 const char * vstring
= TDBSAM_VERSION_STRING
;
74 SAM_ACCOUNT
*user
= NULL
;
75 const char *prefix
= USERPREFIX
;
76 TDB_DATA data
, key
, old_key
;
80 if (pdb_tdb
== NULL
) {
81 DEBUG(0,("tdbsam_convert: Bad TDB Context pointer.\n"));
85 /* handle a Samba upgrade */
86 tdb_lock_bystring(pdb_tdb
, vstring
, 0);
88 if (!NT_STATUS_IS_OK(pdb_init_sam(&user
))) {
89 DEBUG(0,("tdbsam_convert: cannot initialized a SAM_ACCOUNT.\n"));
93 /* Enumerate all records and convert them */
94 key
= tdb_firstkey(pdb_tdb
);
98 /* skip all non-USER entries (eg. RIDs) */
99 while ((key
.dsize
!= 0) && (strncmp(key
.dptr
, prefix
, strlen (prefix
)))) {
101 /* increment to next in line */
102 key
= tdb_nextkey(pdb_tdb
, key
);
103 SAFE_FREE(old_key
.dptr
);
108 /* read from tdbsam */
109 data
= tdb_fetch(pdb_tdb
, key
);
111 DEBUG(0,("tdbsam_convert: database entry not found: %s.\n",key
.dptr
));
115 if (!NT_STATUS_IS_OK(pdb_reset_sam(user
))) {
116 DEBUG(0,("tdbsam_convert: cannot reset SAM_ACCOUNT.\n"));
117 SAFE_FREE(data
.dptr
);
121 /* unpack the buffer from the former format */
122 DEBUG(10,("tdbsam_convert: Try unpacking a record with (key:%s) (version:%d)\n", key
.dptr
, from
));
125 ret
= init_sam_from_buffer_v0(user
, (uint8
*)data
.dptr
, data
.dsize
);
128 ret
= init_sam_from_buffer_v1(user
, (uint8
*)data
.dptr
, data
.dsize
);
131 ret
= init_sam_from_buffer_v2(user
, (uint8
*)data
.dptr
, data
.dsize
);
134 /* unknown tdbsam version */
138 DEBUG(0,("tdbsam_convert: Bad SAM_ACCOUNT entry returned from TDB (key:%s) (version:%d)\n", key
.dptr
, from
));
139 SAFE_FREE(data
.dptr
);
143 /* We're finished with the old data. */
144 SAFE_FREE(data
.dptr
);
146 /* pack from the buffer into the new format */
147 DEBUG(10,("tdbsam_convert: Try packing a record (key:%s) (version:%d)\n", key
.dptr
, from
));
148 if ((data
.dsize
=init_buffer_from_sam (&buf
, user
, False
)) == -1) {
149 DEBUG(0,("tdbsam_convert: cannot pack the SAM_ACCOUNT into the new format\n"));
150 SAFE_FREE(data
.dptr
);
153 data
.dptr
= (char *)buf
;
155 /* Store the buffer inside the TDBSAM */
156 if (tdb_store(pdb_tdb
, key
, data
, TDB_MODIFY
) != TDB_SUCCESS
) {
157 DEBUG(0,("tdbsam_convert: cannot store the SAM_ACCOUNT (key:%s) in new format\n",key
.dptr
));
158 SAFE_FREE(data
.dptr
);
162 SAFE_FREE(data
.dptr
);
164 /* increment to next in line */
166 key
= tdb_nextkey(pdb_tdb
, key
);
167 SAFE_FREE(old_key
.dptr
);
174 /* upgrade finished */
175 tdb_store_int32(pdb_tdb
, vstring
, TDBSAM_VERSION
);
176 tdb_unlock_bystring(pdb_tdb
, vstring
);
182 * Open the TDB passwd database, check version and convert it if needed.
183 * @param name filename of the tdbsam file.
184 * @param open_flags file access mode.
185 * @return a TDB_CONTEXT handle on the tdbsam file.
188 static TDB_CONTEXT
* tdbsam_tdbopen (const char *name
, int open_flags
)
190 TDB_CONTEXT
*pdb_tdb
;
193 /* Try to open tdb passwd */
194 if (!(pdb_tdb
= tdb_open_log(name
, 0, TDB_DEFAULT
,
195 open_flags
, 0600))) {
196 DEBUG(0, ("Unable to open/create TDB passwd\n"));
200 /* Check the version */
201 version
= (tdbsamver_t
) tdb_fetch_int32(pdb_tdb
,
202 TDBSAM_VERSION_STRING
);
204 version
= 0; /* Version not found, assume version 0 */
206 /* Compare the version */
207 if (version
> TDBSAM_VERSION
) {
208 /* Version more recent than the latest known */
209 DEBUG(0, ("TDBSAM version unknown: %d\n", version
));
213 else if (version
< TDBSAM_VERSION
) {
214 /* Older version, must be converted */
215 DEBUG(1, ("TDBSAM version too old (%d), trying to convert it.\n", version
));
217 /* Reopen the pdb file with read-write access if needed */
218 if (!(open_flags
& O_RDWR
)) {
219 DEBUG(10, ("tdbsam_tdbopen: TDB file opened with read only access, reopen it with read-write access.\n"));
221 pdb_tdb
= tdb_open_log(name
, 0, TDB_DEFAULT
, (open_flags
& 07777770) | O_RDWR
, 0600);
225 if (!tdbsam_convert(pdb_tdb
, version
)){
226 DEBUG(0, ("tdbsam_tdbopen: Error when trying to convert tdbsam: %s\n",name
));
230 DEBUG(1, ("TDBSAM converted successfully.\n"));
233 /* Reopen the pdb file as it must be */
234 if (!(open_flags
& O_RDWR
)) {
236 pdb_tdb
= tdb_open_log(name
, 0, TDB_DEFAULT
, open_flags
, 0600);
243 /*****************************************************************************
244 Utility functions to close the tdb sam database
245 ****************************************************************************/
247 static void tdbsam_tdbclose ( struct tdbsam_privates
*state
)
252 if ( state
->passwd_tdb
) {
253 tdb_close( state
->passwd_tdb
);
254 state
->passwd_tdb
= NULL
;
261 /****************************************************************************
262 creates a list of user keys
263 ****************************************************************************/
265 static int tdbsam_traverse_setpwent(TDB_CONTEXT
*t
, TDB_DATA key
, TDB_DATA data
, void *state
)
267 const char *prefix
= USERPREFIX
;
268 int prefixlen
= strlen (prefix
);
269 struct pwent_list
*ptr
;
271 if ( strncmp(key
.dptr
, prefix
, prefixlen
) == 0 ) {
272 if ( !(ptr
=SMB_MALLOC_P(struct pwent_list
)) ) {
273 DEBUG(0,("tdbsam_traverse_setpwent: Failed to malloc new entry for list\n"));
275 /* just return 0 and let the traversal continue */
280 /* save a copy of the key */
282 ptr
->key
.dptr
= memdup( key
.dptr
, key
.dsize
);
283 ptr
->key
.dsize
= key
.dsize
;
285 DLIST_ADD( tdbsam_pwent_list
, ptr
);
293 /***************************************************************
294 Open the TDB passwd database for SAM account enumeration.
295 Save a list of user keys for iteration.
296 ****************************************************************/
298 static NTSTATUS
tdbsam_setsampwent(struct pdb_methods
*my_methods
, BOOL update
, uint16 acb_mask
)
300 uint32 flags
= update
? (O_RDWR
|O_CREAT
) : O_RDONLY
;
302 struct tdbsam_privates
*tdb_state
= (struct tdbsam_privates
*)my_methods
->private_data
;
304 if ( !(tdb_state
->passwd_tdb
= tdbsam_tdbopen(tdb_state
->tdbsam_location
, flags
)) )
305 return NT_STATUS_UNSUCCESSFUL
;
307 tdb_traverse( tdb_state
->passwd_tdb
, tdbsam_traverse_setpwent
, NULL
);
313 /***************************************************************
314 End enumeration of the TDB passwd list.
315 ****************************************************************/
317 static void tdbsam_endsampwent(struct pdb_methods
*my_methods
)
319 struct tdbsam_privates
*tdb_state
= (struct tdbsam_privates
*)my_methods
->private_data
;
320 struct pwent_list
*ptr
, *ptr_next
;
322 tdbsam_tdbclose( tdb_state
);
324 /* clear out any remaining entries in the list */
326 for ( ptr
=tdbsam_pwent_list
; ptr
; ptr
= ptr_next
) {
327 ptr_next
= ptr
->next
;
328 DLIST_REMOVE( tdbsam_pwent_list
, ptr
);
329 SAFE_FREE( ptr
->key
.dptr
);
333 DEBUG(7, ("endtdbpwent: closed sam database.\n"));
336 /*****************************************************************
337 Get one SAM_ACCOUNT from the TDB (next in line)
338 *****************************************************************/
340 static NTSTATUS
tdbsam_getsampwent(struct pdb_methods
*my_methods
, SAM_ACCOUNT
*user
)
342 NTSTATUS nt_status
= NT_STATUS_UNSUCCESSFUL
;
343 struct tdbsam_privates
*tdb_state
= (struct tdbsam_privates
*)my_methods
->private_data
;
345 struct pwent_list
*pkey
;
348 DEBUG(0,("tdbsam_getsampwent: SAM_ACCOUNT is NULL.\n"));
352 if ( !tdbsam_pwent_list
) {
353 DEBUG(4,("tdbsam_getsampwent: end of list\n"));
354 tdbsam_tdbclose( tdb_state
);
358 if ( !tdb_state
->passwd_tdb
) {
359 if ( !(tdb_state
->passwd_tdb
= tdbsam_tdbopen(tdb_state
->tdbsam_location
, O_RDONLY
)) )
363 /* pull the next entry */
365 pkey
= tdbsam_pwent_list
;
366 DLIST_REMOVE( tdbsam_pwent_list
, pkey
);
368 data
= tdb_fetch(tdb_state
->passwd_tdb
, pkey
->key
);
370 SAFE_FREE( pkey
->key
.dptr
);
374 DEBUG(5,("pdb_getsampwent: database entry not found. Was the user deleted?\n"));
378 if (!init_sam_from_buffer(user
, (unsigned char *)data
.dptr
, data
.dsize
)) {
379 DEBUG(0,("pdb_getsampwent: Bad SAM_ACCOUNT entry returned from TDB!\n"));
382 SAFE_FREE( data
.dptr
);
388 /******************************************************************
389 Lookup a name in the SAM TDB
390 ******************************************************************/
392 static NTSTATUS
tdbsam_getsampwnam (struct pdb_methods
*my_methods
, SAM_ACCOUNT
*user
, const char *sname
)
394 NTSTATUS nt_status
= NT_STATUS_UNSUCCESSFUL
;
395 struct tdbsam_privates
*tdb_state
= (struct tdbsam_privates
*)my_methods
->private_data
;
396 TDB_CONTEXT
*pwd_tdb
;
402 DEBUG(0,("pdb_getsampwnam: SAM_ACCOUNT is NULL.\n"));
406 /* Data is stored in all lower-case */
407 fstrcpy(name
, sname
);
411 slprintf(keystr
, sizeof(keystr
)-1, "%s%s", USERPREFIX
, name
);
413 key
.dsize
= strlen(keystr
) + 1;
415 /* open the accounts TDB */
416 if (!(pwd_tdb
= tdbsam_tdbopen(tdb_state
->tdbsam_location
, O_RDONLY
))) {
418 if (errno
== ENOENT
) {
420 * TDB file doesn't exist, so try to create new one. This is useful to avoid
421 * confusing error msg when adding user account first time
423 if (!(pwd_tdb
= tdbsam_tdbopen(tdb_state
->tdbsam_location
, O_CREAT
))) {
424 DEBUG(0, ("pdb_getsampwnam: TDB passwd (%s) did not exist. File successfully created.\n",
425 tdb_state
->tdbsam_location
));
427 DEBUG(0, ("pdb_getsampwnam: TDB passwd (%s) does not exist. Couldn't create new one. Error was: %s\n",
428 tdb_state
->tdbsam_location
, strerror(errno
)));
431 /* requested user isn't there anyway */
432 nt_status
= NT_STATUS_NO_SUCH_USER
;
435 DEBUG(0, ("pdb_getsampwnam: Unable to open TDB passwd (%s)!\n", tdb_state
->tdbsam_location
));
440 data
= tdb_fetch(pwd_tdb
, key
);
442 DEBUG(5,("pdb_getsampwnam (TDB): error fetching database.\n"));
443 DEBUGADD(5, (" Error: %s\n", tdb_errorstr(pwd_tdb
)));
444 DEBUGADD(5, (" Key: %s\n", keystr
));
449 /* unpack the buffer */
450 if (!init_sam_from_buffer(user
, (unsigned char *)data
.dptr
, data
.dsize
)) {
451 DEBUG(0,("pdb_getsampwent: Bad SAM_ACCOUNT entry returned from TDB!\n"));
452 SAFE_FREE(data
.dptr
);
456 SAFE_FREE(data
.dptr
);
458 /* no further use for database, close it now */
464 /***************************************************************************
466 **************************************************************************/
468 static NTSTATUS
tdbsam_getsampwrid (struct pdb_methods
*my_methods
, SAM_ACCOUNT
*user
, uint32 rid
)
470 NTSTATUS nt_status
= NT_STATUS_UNSUCCESSFUL
;
471 struct tdbsam_privates
*tdb_state
= (struct tdbsam_privates
*)my_methods
->private_data
;
472 TDB_CONTEXT
*pwd_tdb
;
478 DEBUG(0,("pdb_getsampwrid: SAM_ACCOUNT is NULL.\n"));
483 slprintf(keystr
, sizeof(keystr
)-1, "%s%.8x", RIDPREFIX
, rid
);
485 key
.dsize
= strlen (keystr
) + 1;
487 /* open the accounts TDB */
488 if (!(pwd_tdb
= tdbsam_tdbopen(tdb_state
->tdbsam_location
, O_RDONLY
))) {
489 DEBUG(0, ("pdb_getsampwrid: Unable to open TDB rid database!\n"));
494 data
= tdb_fetch (pwd_tdb
, key
);
496 DEBUG(5,("pdb_getsampwrid (TDB): error looking up RID %d by key %s.\n", rid
, keystr
));
497 DEBUGADD(5, (" Error: %s\n", tdb_errorstr(pwd_tdb
)));
503 fstrcpy(name
, data
.dptr
);
504 SAFE_FREE(data
.dptr
);
508 return tdbsam_getsampwnam (my_methods
, user
, name
);
511 static NTSTATUS
tdbsam_getsampwsid(struct pdb_methods
*my_methods
, SAM_ACCOUNT
* user
, const DOM_SID
*sid
)
514 if (!sid_peek_check_rid(get_global_sam_sid(), sid
, &rid
))
515 return NT_STATUS_UNSUCCESSFUL
;
516 return tdbsam_getsampwrid(my_methods
, user
, rid
);
519 static BOOL
tdb_delete_samacct_only(TDB_CONTEXT
*pwd_tdb
,
520 struct pdb_methods
*my_methods
,
521 SAM_ACCOUNT
*sam_pass
)
527 fstrcpy(name
, pdb_get_username(sam_pass
));
530 /* set the search key */
531 slprintf(keystr
, sizeof(keystr
)-1, "%s%s", USERPREFIX
, name
);
533 key
.dsize
= strlen (keystr
) + 1;
535 /* it's outaa here! 8^) */
536 if (tdb_delete(pwd_tdb
, key
) != TDB_SUCCESS
) {
537 DEBUG(5, ("Error deleting entry from tdb passwd database!\n"));
538 DEBUGADD(5, (" Error: %s\n", tdb_errorstr(pwd_tdb
)));
545 /***************************************************************************
547 ****************************************************************************/
549 static NTSTATUS
tdbsam_delete_sam_account(struct pdb_methods
*my_methods
, SAM_ACCOUNT
*sam_pass
)
551 NTSTATUS nt_status
= NT_STATUS_UNSUCCESSFUL
;
552 struct tdbsam_privates
*tdb_state
= (struct tdbsam_privates
*)my_methods
->private_data
;
553 TDB_CONTEXT
*pwd_tdb
;
559 fstrcpy(name
, pdb_get_username(sam_pass
));
563 if (!(pwd_tdb
= tdbsam_tdbopen(tdb_state
->tdbsam_location
, O_RDWR
))) {
564 DEBUG(0, ("Unable to open TDB passwd!"));
568 /* set the search key */
569 slprintf(keystr
, sizeof(keystr
)-1, "%s%s", USERPREFIX
, name
);
571 key
.dsize
= strlen (keystr
) + 1;
573 rid
= pdb_get_user_rid(sam_pass
);
575 /* it's outaa here! 8^) */
576 if (tdb_delete(pwd_tdb
, key
) != TDB_SUCCESS
) {
577 DEBUG(5, ("Error deleting entry from tdb passwd database!\n"));
578 DEBUGADD(5, (" Error: %s\n", tdb_errorstr(pwd_tdb
)));
583 /* delete also the RID key */
585 /* set the search key */
586 slprintf(keystr
, sizeof(keystr
)-1, "%s%.8x", RIDPREFIX
, rid
);
588 key
.dsize
= strlen (keystr
) + 1;
590 /* it's outaa here! 8^) */
591 if (tdb_delete(pwd_tdb
, key
) != TDB_SUCCESS
) {
592 DEBUG(5, ("Error deleting entry from tdb rid database!\n"));
593 DEBUGADD(5, (" Error: %s\n", tdb_errorstr(pwd_tdb
)));
604 /***************************************************************************
605 Update the TDB SAM account record only
606 ****************************************************************************/
607 static BOOL
tdb_update_samacct_only(TDB_CONTEXT
*pwd_tdb
,
608 struct pdb_methods
*my_methods
,
609 SAM_ACCOUNT
* newpwd
, int flag
)
617 /* copy the SAM_ACCOUNT struct into a BYTE buffer for storage */
618 if ((data
.dsize
=init_buffer_from_sam (&buf
, newpwd
, False
)) == -1) {
619 DEBUG(0,("tdb_update_sam: ERROR - Unable to copy SAM_ACCOUNT info BYTE buffer!\n"));
623 data
.dptr
= (char *)buf
;
625 fstrcpy(name
, pdb_get_username(newpwd
));
628 DEBUG(5, ("Storing %saccount %s with RID %d\n",
629 flag
== TDB_INSERT
? "(new) " : "", name
,
630 pdb_get_user_rid(newpwd
)));
632 /* setup the USER index key */
633 slprintf(keystr
, sizeof(keystr
)-1, "%s%s", USERPREFIX
, name
);
635 key
.dsize
= strlen(keystr
) + 1;
637 /* add the account */
638 if (tdb_store(pwd_tdb
, key
, data
, flag
) != TDB_SUCCESS
) {
639 DEBUG(0, ("Unable to modify passwd TDB!"));
640 DEBUGADD(0, (" Error: %s", tdb_errorstr(pwd_tdb
)));
641 DEBUGADD(0, (" occured while storing the main record (%s)\n",
654 /***************************************************************************
655 Update the TDB SAM RID record only
656 ****************************************************************************/
657 static BOOL
tdb_update_ridrec_only(TDB_CONTEXT
*pwd_tdb
,
658 struct pdb_methods
*my_methods
,
659 SAM_ACCOUNT
* newpwd
, int flag
)
665 fstrcpy(name
, pdb_get_username(newpwd
));
669 data
.dsize
= strlen(name
) + 1;
672 /* setup the RID index key */
673 slprintf(keystr
, sizeof(keystr
)-1, "%s%.8x", RIDPREFIX
,
674 pdb_get_user_rid(newpwd
));
676 key
.dsize
= strlen (keystr
) + 1;
678 /* add the reference */
679 if (tdb_store(pwd_tdb
, key
, data
, flag
) != TDB_SUCCESS
) {
680 DEBUG(0, ("Unable to modify TDB passwd !"));
681 DEBUGADD(0, (" Error: %s\n", tdb_errorstr(pwd_tdb
)));
682 DEBUGADD(0, (" occured while storing the RID index (%s)\n", keystr
));
690 /***************************************************************************
692 ****************************************************************************/
694 static BOOL
tdb_update_sam(struct pdb_methods
*my_methods
, SAM_ACCOUNT
* newpwd
, int flag
)
696 struct tdbsam_privates
*tdb_state
= (struct tdbsam_privates
*)my_methods
->private_data
;
697 TDB_CONTEXT
*pwd_tdb
= NULL
;
701 /* invalidate the existing TDB iterator if it is open */
703 if (tdb_state
->passwd_tdb
) {
704 tdb_close(tdb_state
->passwd_tdb
);
705 tdb_state
->passwd_tdb
= NULL
;
708 /* open the account TDB passwd*/
710 pwd_tdb
= tdbsam_tdbopen(tdb_state
->tdbsam_location
, O_RDWR
| O_CREAT
);
713 DEBUG(0, ("tdb_update_sam: Unable to open TDB passwd (%s)!\n",
714 tdb_state
->tdbsam_location
));
718 if (!pdb_get_group_rid(newpwd
)) {
719 DEBUG (0,("tdb_update_sam: Failing to store a SAM_ACCOUNT for [%s] without a primary group RID\n",
720 pdb_get_username(newpwd
)));
725 if ( !(user_rid
= pdb_get_user_rid(newpwd
)) ) {
726 DEBUG(0,("tdb_update_sam: SAM_ACCOUNT (%s) with no RID!\n", pdb_get_username(newpwd
)));
731 if (!tdb_update_samacct_only(pwd_tdb
, my_methods
, newpwd
, flag
) ||
732 !tdb_update_ridrec_only(pwd_tdb
, my_methods
, newpwd
, flag
)) {
744 /***************************************************************************
745 Modifies an existing SAM_ACCOUNT
746 ****************************************************************************/
748 static NTSTATUS
tdbsam_update_sam_account (struct pdb_methods
*my_methods
, SAM_ACCOUNT
*newpwd
)
750 if (tdb_update_sam(my_methods
, newpwd
, TDB_MODIFY
))
753 return NT_STATUS_UNSUCCESSFUL
;
756 /***************************************************************************
757 Adds an existing SAM_ACCOUNT
758 ****************************************************************************/
760 static NTSTATUS
tdbsam_add_sam_account (struct pdb_methods
*my_methods
, SAM_ACCOUNT
*newpwd
)
762 if (tdb_update_sam(my_methods
, newpwd
, TDB_INSERT
))
765 return NT_STATUS_UNSUCCESSFUL
;
768 /***************************************************************************
769 Renames a SAM_ACCOUNT
770 - check for the posix user/rename user script
771 - Add and lock the new user record
772 - rename the posix user
773 - rewrite the rid->username record
774 - delete the old user
775 - unlock the new user record
776 ***************************************************************************/
777 static NTSTATUS
tdbsam_rename_sam_account(struct pdb_methods
*my_methods
,
778 SAM_ACCOUNT
*old_acct
,
781 struct tdbsam_privates
*tdb_state
=
782 (struct tdbsam_privates
*)my_methods
->private_data
;
783 SAM_ACCOUNT
*new_acct
= NULL
;
784 pstring rename_script
;
785 TDB_CONTEXT
*pwd_tdb
= NULL
;
786 NTSTATUS ret
= NT_STATUS_UNSUCCESSFUL
;
787 BOOL interim_account
= False
;
789 if (!*(lp_renameuser_script()))
792 if (!pdb_copy_sam_account(old_acct
, &new_acct
) ||
793 !pdb_set_username(new_acct
, newname
, PDB_CHANGED
))
796 /* invalidate the existing TDB iterator if it is open */
798 if (tdb_state
->passwd_tdb
) {
799 tdb_close(tdb_state
->passwd_tdb
);
800 tdb_state
->passwd_tdb
= NULL
;
803 /* open the account TDB passwd */
805 pwd_tdb
= tdbsam_tdbopen(tdb_state
->tdbsam_location
, O_RDWR
| O_CREAT
);
808 DEBUG(0, ("tdb_update_sam: Unable to open TDB passwd (%s)!\n",
809 tdb_state
->tdbsam_location
));
813 /* add the new account and lock it */
814 if (!tdb_update_samacct_only(pwd_tdb
, my_methods
, new_acct
,
817 interim_account
= True
;
819 if (tdb_lock_bystring(pwd_tdb
, newname
, 30) == -1) {
823 /* rename the posix user */
824 pstrcpy(rename_script
, lp_renameuser_script());
826 if (*rename_script
) {
829 pstring_sub(rename_script
, "%unew", newname
);
830 pstring_sub(rename_script
, "%uold",
831 pdb_get_username(old_acct
));
832 rename_ret
= smbrun(rename_script
, NULL
);
834 DEBUG(rename_ret
? 0 : 3,("Running the command `%s' gave %d\n", rename_script
, rename_ret
));
842 /* rewrite the rid->username record */
843 if (!tdb_update_ridrec_only(pwd_tdb
, my_methods
, new_acct
, TDB_MODIFY
))
845 interim_account
= False
;
846 tdb_unlock_bystring(pwd_tdb
, newname
);
848 tdb_delete_samacct_only(pwd_tdb
, my_methods
, old_acct
);
855 if (interim_account
) {
856 tdb_unlock_bystring(pwd_tdb
, newname
);
857 tdb_delete_samacct_only(pwd_tdb
, my_methods
, new_acct
);
862 pdb_free_sam(&new_acct
);
867 static void free_private_data(void **vp
)
869 struct tdbsam_privates
**tdb_state
= (struct tdbsam_privates
**)vp
;
870 tdbsam_tdbclose(*tdb_state
);
873 /* No need to free any further, as it is talloc()ed */
880 * Init tdbsam backend
882 * @param pdb_context initialised passdb context
883 * @param pdb_method backend methods structure to be filled with function pointers
884 * @param location the backend tdb file location
886 * @return nt_status code
889 static NTSTATUS
pdb_init_tdbsam(PDB_CONTEXT
*pdb_context
, PDB_METHODS
**pdb_method
, const char *location
)
892 struct tdbsam_privates
*tdb_state
;
894 if (!NT_STATUS_IS_OK(nt_status
= make_pdb_methods(pdb_context
->mem_ctx
, pdb_method
))) {
898 (*pdb_method
)->name
= "tdbsam";
900 (*pdb_method
)->setsampwent
= tdbsam_setsampwent
;
901 (*pdb_method
)->endsampwent
= tdbsam_endsampwent
;
902 (*pdb_method
)->getsampwent
= tdbsam_getsampwent
;
903 (*pdb_method
)->getsampwnam
= tdbsam_getsampwnam
;
904 (*pdb_method
)->getsampwsid
= tdbsam_getsampwsid
;
905 (*pdb_method
)->add_sam_account
= tdbsam_add_sam_account
;
906 (*pdb_method
)->update_sam_account
= tdbsam_update_sam_account
;
907 (*pdb_method
)->delete_sam_account
= tdbsam_delete_sam_account
;
908 (*pdb_method
)->rename_sam_account
= tdbsam_rename_sam_account
;
910 tdb_state
= TALLOC_ZERO_P(pdb_context
->mem_ctx
, struct tdbsam_privates
);
913 DEBUG(0, ("talloc() failed for tdbsam private_data!\n"));
914 return NT_STATUS_NO_MEMORY
;
918 tdb_state
->tdbsam_location
= talloc_strdup(pdb_context
->mem_ctx
, location
);
921 get_private_directory(tdbfile
);
922 pstrcat(tdbfile
, "/");
923 pstrcat(tdbfile
, PASSDB_FILE_NAME
);
924 tdb_state
->tdbsam_location
= talloc_strdup(pdb_context
->mem_ctx
, tdbfile
);
927 (*pdb_method
)->private_data
= tdb_state
;
929 (*pdb_method
)->free_private_data
= free_private_data
;
934 NTSTATUS
pdb_tdbsam_init(void)
936 return smb_register_passdb(PASSDB_INTERFACE_VERSION
, "tdbsam", pdb_init_tdbsam
);