2 Unix SMB/CIFS implementation.
3 Net_sam_logon info3 helpers
4 Copyright (C) Alexander Bokovoy 2002.
5 Copyright (C) Andrew Bartlett 2002.
6 Copyright (C) Gerald Carter 2003.
7 Copyright (C) Tim Potter 2003.
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 3 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program. If not, see <http://www.gnu.org/licenses/>.
25 #define NETSAMLOGON_TDB "netsamlogon_cache.tdb"
27 static TDB_CONTEXT
*netsamlogon_tdb
= NULL
;
29 /***********************************************************************
31 ***********************************************************************/
33 bool netsamlogon_cache_init(void)
35 if (!netsamlogon_tdb
) {
36 netsamlogon_tdb
= tdb_open_log(lock_path(NETSAMLOGON_TDB
), 0,
37 TDB_DEFAULT
, O_RDWR
| O_CREAT
, 0600);
40 return (netsamlogon_tdb
!= NULL
);
44 /***********************************************************************
45 Shutdown samlogon_cache database
46 ***********************************************************************/
48 bool netsamlogon_cache_shutdown(void)
51 return (tdb_close(netsamlogon_tdb
) == 0);
56 /***********************************************************************
57 Clear cache getpwnam and getgroups entries from the winbindd cache
58 ***********************************************************************/
59 void netsamlogon_clear_cached_user(TDB_CONTEXT
*tdb
, NET_USER_INFO_3
*user
)
63 fstring key_str
, sid_string
;
65 /* We may need to call this function from smbd which will not have
66 winbindd_cache.tdb open. Open the tdb if a NULL is passed. */
69 tdb
= tdb_open_log(lock_path("winbindd_cache.tdb"),
70 WINBINDD_CACHE_TDB_DEFAULT_HASH_SIZE
,
71 TDB_DEFAULT
, O_RDWR
, 0600);
73 DEBUG(5, ("netsamlogon_clear_cached_user: failed to open cache\n"));
79 sid_copy(&sid
, &user
->dom_sid
.sid
);
80 sid_append_rid(&sid
, user
->user_rid
);
82 /* Clear U/SID cache entry */
84 fstr_sprintf(key_str
, "U/%s", sid_to_string(sid_string
, &sid
));
86 DEBUG(10, ("netsamlogon_clear_cached_user: clearing %s\n", key_str
));
88 tdb_delete(tdb
, string_tdb_data(key_str
));
90 /* Clear UG/SID cache entry */
92 fstr_sprintf(key_str
, "UG/%s", sid_to_string(sid_string
, &sid
));
94 DEBUG(10, ("netsamlogon_clear_cached_user: clearing %s\n", key_str
));
96 tdb_delete(tdb
, string_tdb_data(key_str
));
102 /***********************************************************************
103 Store a NET_USER_INFO_3 structure in a tdb for later user
104 username should be in UTF-8 format
105 ***********************************************************************/
107 bool netsamlogon_cache_store( const char *username
, NET_USER_INFO_3
*user
)
114 time_t t
= time(NULL
);
118 if (!netsamlogon_cache_init()) {
119 DEBUG(0,("netsamlogon_cache_store: cannot open %s for write!\n", NETSAMLOGON_TDB
));
123 sid_copy( &user_sid
, &user
->dom_sid
.sid
);
124 sid_append_rid( &user_sid
, user
->user_rid
);
126 /* Prepare key as DOMAIN-SID/USER-RID string */
127 slprintf(keystr
, sizeof(keystr
), "%s", sid_string_static(&user_sid
));
129 DEBUG(10,("netsamlogon_cache_store: SID [%s]\n", keystr
));
131 /* only Samba fills in the username, not sure why NT doesn't */
132 /* so we fill it in since winbindd_getpwnam() makes use of it */
134 if ( !user
->uni_user_name
.buffer
) {
135 init_unistr2( &user
->uni_user_name
, username
, UNI_STR_TERMINATE
);
136 init_uni_hdr( &user
->hdr_user_name
, &user
->uni_user_name
);
141 if ( !(mem_ctx
= TALLOC_P( NULL
, int )) ) {
142 DEBUG(0,("netsamlogon_cache_store: talloc() failed!\n"));
146 prs_init( &ps
, RPC_MAX_PDU_FRAG_LEN
, mem_ctx
, MARSHALL
);
149 uint32 ts
= (uint32
)t
;
150 if ( !prs_uint32( "timestamp", &ps
, 0, &ts
) )
154 if ( net_io_user_info3("", user
, &ps
, 0, 3, 0) )
156 data
.dsize
= prs_offset( &ps
);
157 data
.dptr
= (uint8
*)prs_data_p( &ps
);
159 if (tdb_store_bystring(netsamlogon_tdb
, keystr
, data
, TDB_REPLACE
) != -1)
165 TALLOC_FREE( mem_ctx
);
170 /***********************************************************************
171 Retrieves a NET_USER_INFO_3 structure from a tdb. Caller must
172 free the user_info struct (malloc()'d memory)
173 ***********************************************************************/
175 NET_USER_INFO_3
* netsamlogon_cache_get( TALLOC_CTX
*mem_ctx
, const DOM_SID
*user_sid
)
177 NET_USER_INFO_3
*user
= NULL
;
183 if (!netsamlogon_cache_init()) {
184 DEBUG(0,("netsamlogon_cache_get: cannot open %s for write!\n", NETSAMLOGON_TDB
));
188 /* Prepare key as DOMAIN-SID/USER-RID string */
189 slprintf(keystr
, sizeof(keystr
), "%s", sid_string_static(user_sid
));
190 DEBUG(10,("netsamlogon_cache_get: SID [%s]\n", keystr
));
191 data
= tdb_fetch_bystring( netsamlogon_tdb
, keystr
);
195 user
= TALLOC_ZERO_P(mem_ctx
, NET_USER_INFO_3
);
200 prs_init( &ps
, 0, mem_ctx
, UNMARSHALL
);
201 prs_give_memory( &ps
, (char *)data
.dptr
, data
.dsize
, True
);
203 if ( !prs_uint32( "timestamp", &ps
, 0, &t
) ) {
209 if ( !net_io_user_info3("", user
, &ps
, 0, 3, 0) ) {
215 #if 0 /* The netsamlogon cache needs to hang around. Something about
216 this feels wrong, but it is the only way we can get all of the
217 groups. The old universal groups cache didn't expire either.
220 time_t now
= time(NULL
);
223 /* is the entry expired? */
226 if ( (time_diff
< 0 ) || (time_diff
> lp_winbind_cache_time()) ) {
227 DEBUG(10,("netsamlogon_cache_get: cache entry expired \n"));
228 tdb_delete( netsamlogon_tdb
, key
);
237 bool netsamlogon_cache_have(const DOM_SID
*user_sid
)
239 TALLOC_CTX
*mem_ctx
= talloc_init("netsamlogon_cache_have");
240 NET_USER_INFO_3
*user
= NULL
;
246 user
= netsamlogon_cache_get(mem_ctx
, user_sid
);
248 result
= (user
!= NULL
);
250 talloc_destroy(mem_ctx
);