2011-01-28 10:55:58 +01:00
/*
* Samba Unix / Linux SMB client library
*
* Copyright ( C ) Gregor Beck 2011
*
* This program is free software ; you can redistribute it and / or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation ; either version 3 of the License , or
* ( at your option ) any later version .
*
* This program is distributed in the hope that it will be useful ,
* but WITHOUT ANY WARRANTY ; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
* GNU General Public License for more details .
*
* You should have received a copy of the GNU General Public License
* along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
/**
* @ brief Check the idmap database .
* @ author Gregor Beck < gb @ sernet . de >
* @ date Mar 2011
*/
# include "net_idmap_check.h"
# include "includes.h"
# include "system/filesys.h"
2011-07-07 17:42:08 +02:00
# include "dbwrap/dbwrap.h"
2011-07-06 16:40:21 +02:00
# include "dbwrap/dbwrap_open.h"
2011-08-16 16:20:14 +02:00
# include "dbwrap/dbwrap_rbt.h"
2011-01-28 10:55:58 +01:00
# include "net.h"
# include "../libcli/security/dom_sid.h"
# include "cbuf.h"
# include "srprs.h"
2011-05-05 11:25:29 +02:00
# include "util_tdb.h"
2011-08-18 14:13:28 +02:00
# include "interact.h"
2011-01-28 10:55:58 +01:00
static int traverse_commit ( struct db_record * diff_rec , void * data ) ;
static int traverse_check ( struct db_record * rec , void * data ) ;
/* TDB_DATA *******************************************************************/
static char * print_data ( TALLOC_CTX * mem_ctx , TDB_DATA d ) ;
static TDB_DATA parse_data ( TALLOC_CTX * mem_ctx , const char * * ptr ) ;
/* record *********************************************************************/
enum DT {
DT_INV = 0 ,
DT_SID , DT_UID , DT_GID ,
2011-04-08 14:53:25 +02:00
DT_HWM , DT_VER , DT_SEQ ,
2011-01-28 10:55:58 +01:00
} ;
struct record {
enum DT key_type , val_type ;
TDB_DATA key , val ;
struct dom_sid sid ;
long unsigned id ;
} ;
static struct record * parse_record ( TALLOC_CTX * ctx , TDB_DATA key , TDB_DATA val ) ;
static struct record * reverse_record ( struct record * rec ) ;
static bool is_invalid ( const struct record * r ) {
return ( r - > key_type = = DT_INV ) | | ( r - > val_type = = DT_INV ) ;
}
static bool is_map ( const struct record * r ) {
return ( r - > key_type = = DT_SID )
| | ( r - > key_type = = DT_UID ) | | ( r - > key_type = = DT_GID ) ;
}
/* action *********************************************************************/
typedef struct check_action {
2014-02-26 20:16:26 +01:00
void ( * fmt ) ( struct check_action * a ,
struct record * r ,
TDB_DATA * v ) ;
2011-01-28 10:55:58 +01:00
const char * name ;
const char * prompt ;
const char * answers ;
char auto_action ;
char default_action ;
bool verbose ;
} check_action ;
struct check_actions {
check_action invalid_record ;
check_action missing_reverse ;
check_action invalid_mapping ;
check_action invalid_edit ;
check_action record_exists ;
check_action no_version ;
check_action wrong_version ;
check_action invalid_hwm ;
check_action commit ;
check_action valid_mapping ;
check_action valid_other ;
check_action invalid_diff ;
} ;
2014-02-26 20:16:26 +01:00
static void invalid_mapping_fmt ( struct check_action * a ,
struct record * r ,
TDB_DATA * v )
{
d_printf ( " %1$s: %2$s -> %3$s \n (%4$s <- %3$s) \n " ,
a - > name ,
print_data ( r , r - > key ) ,
print_data ( r , r - > val ) ,
( v ? print_data ( r , * v ) : " " ) ) ;
}
static void record_exists_fmt ( struct check_action * a ,
struct record * r ,
TDB_DATA * v )
{
d_printf ( " %1$s: %2$s \n -%4$s \n +%3$s \n " ,
a - > name ,
print_data ( r , r - > key ) ,
print_data ( r , r - > val ) ,
( v ? print_data ( r , * v ) : " " ) ) ;
}
static void valid_mapping_fmt ( struct check_action * a ,
struct record * r ,
TDB_DATA * v )
{
d_printf ( " %1$s: %2$s <-> %3$s \n " ,
a - > name ,
print_data ( r , r - > key ) ,
print_data ( r , r - > val ) ) ;
}
2011-01-28 10:55:58 +01:00
static struct check_actions
check_actions_init ( const struct check_options * opts ) {
struct check_actions ret = {
. invalid_record = ( check_action ) {
. name = " Invalid record " ,
. prompt = " [e]dit/[d]elete/[D]elete all "
" /[s]kip/[S]kip all " ,
. answers = " eds " ,
. default_action = ' e ' ,
. verbose = true ,
} ,
. missing_reverse = ( check_action ) {
. name = " Missing reverse mapping for " ,
. prompt = " [f]ix/[F]ix all/[e]dit/[d]elete/[D]elete all "
" /[s]kip/[S]kip all " ,
. answers = " feds " ,
. default_action = ' f ' ,
. verbose = true ,
} ,
. invalid_mapping = ( check_action ) {
2014-02-26 20:16:26 +01:00
. fmt = invalid_mapping_fmt ,
2011-01-28 10:55:58 +01:00
. name = " Invalid mapping " ,
. prompt = " [e]dit/[d]elete/[D]elete all "
" /[s]kip/[S]kip all " ,
. answers = " eds " ,
. default_action = ' d ' ,
. verbose = true ,
} ,
. invalid_edit = ( check_action ) {
. name = " Invalid record " ,
. prompt = " [e]dit/[d]elete/[D]elete all "
" /[s]kip/[S]kip all " ,
. answers = " eds " ,
. default_action = ' e ' ,
. verbose = true ,
} ,
. record_exists = ( check_action ) {
2014-02-26 20:16:26 +01:00
. fmt = record_exists_fmt ,
2011-01-28 10:55:58 +01:00
. name = " Record exists " ,
. prompt = " [o]verwrite/[O]verwrite all/[e]dit "
" /[d]elete/[D]elete all/[s]kip/[S]kip all " ,
. answers = " oeds " ,
. default_action = ' o ' ,
. verbose = true ,
} ,
. no_version = ( check_action ) {
. prompt = " [f]ix/[s]kip/[a]bort " ,
. answers = " fsa " ,
. default_action = ' f ' ,
} ,
. wrong_version = ( check_action ) {
. prompt = " [f]ix/[s]kip/[a]bort " ,
. answers = " fsa " ,
. default_action = ' a ' ,
} ,
. invalid_hwm = ( check_action ) {
. prompt = " [f]ix/[s]kip " ,
. answers = " fs " ,
. default_action = ' f ' ,
} ,
. commit = ( check_action ) {
. prompt = " [c]ommit/[l]ist/[s]kip " ,
. answers = " cls " ,
. default_action = ' l ' ,
. verbose = true ,
} ,
. valid_mapping = ( check_action ) {
2014-02-26 20:16:26 +01:00
. fmt = valid_mapping_fmt ,
2011-01-28 10:55:58 +01:00
. name = " Mapping " ,
. auto_action = ' s ' ,
. verbose = opts - > verbose ,
} ,
. valid_other = ( check_action ) {
. name = " Other " ,
. auto_action = ' s ' ,
. verbose = opts - > verbose ,
} ,
. invalid_diff = ( check_action ) {
. prompt = " [s]kip/[S]kip all/[c]ommit/[C]ommit all "
" /[a]bort " ,
. answers = " sca " ,
. default_action = ' s ' ,
} ,
} ;
if ( ! opts - > repair ) {
ret . invalid_record . auto_action = ' s ' ;
ret . missing_reverse . auto_action = ' s ' ;
ret . invalid_mapping . auto_action = ' s ' ;
ret . no_version . auto_action = ' s ' ;
ret . wrong_version . auto_action = ' s ' ;
ret . invalid_hwm . auto_action = ' s ' ;
ret . commit . auto_action = ' s ' ;
}
if ( opts - > automatic ) {
ret . invalid_record . auto_action = ' d ' ; /* delete */
ret . missing_reverse . auto_action = ' f ' ; /* fix */
ret . invalid_mapping . auto_action = ' d ' ; /* delete */
ret . no_version . auto_action = ' f ' ; /* fix */
ret . wrong_version . auto_action = ' a ' ; /* abort */
ret . invalid_hwm . auto_action = ' f ' ; /* fix */
ret . commit . auto_action = ' c ' ; /* commit */
ret . invalid_diff . auto_action = ' a ' ; /* abort */
if ( opts - > force ) {
ret . wrong_version . auto_action = ' f ' ; /* fix */
ret . invalid_diff . auto_action = ' c ' ; /* commit */
}
}
if ( opts - > test ) {
ret . invalid_diff . auto_action = ' c ' ; /* commit */
/* ret.commit.auto_action = 'c';*/ /* commit */
}
return ret ;
}
static char get_action ( struct check_action * a , struct record * r , TDB_DATA * v ) {
char ret ;
if ( a - > verbose & & ( r ! = NULL ) ) {
if ( ! a - > fmt ) {
d_printf ( " %s: %s " , a - > name , print_data ( r , r - > key ) ) ;
if ( is_map ( r ) ) {
d_printf ( " -> %s \n " , print_data ( r , r - > val ) ) ;
2011-04-08 14:49:43 +02:00
} else if ( r - > key_type = = DT_HWM | |
r - > key_type = = DT_VER | |
r - > key_type = = DT_SEQ )
{
2011-01-28 10:55:58 +01:00
d_printf ( " : %ld \n " , r - > id ) ;
2011-04-08 14:49:43 +02:00
} else {
d_printf ( " \n " ) ;
2011-01-28 10:55:58 +01:00
}
} else {
2014-02-26 20:16:26 +01:00
a - > fmt ( a , r , v ) ;
2011-01-28 10:55:58 +01:00
}
}
if ( a - > auto_action ! = ' \0 ' ) {
return a - > auto_action ;
}
ret = interact_prompt ( a - > prompt , a - > answers , a - > default_action ) ;
if ( isupper ( ret ) ) {
ret = tolower ( ret ) ;
a - > auto_action = ret ;
}
a - > default_action = ret ;
return ret ;
}
/* *************************************************************************/
typedef struct {
TDB_DATA oval , nval ;
} TDB_DATA_diff ;
static TDB_DATA pack_diff ( TDB_DATA_diff * diff ) {
return ( TDB_DATA ) {
2011-04-07 16:54:12 +02:00
. dptr = ( uint8_t * ) diff ,
2011-01-28 10:55:58 +01:00
. dsize = sizeof ( TDB_DATA_diff ) ,
} ;
}
static TDB_DATA_diff unpack_diff ( TDB_DATA data ) {
assert ( data . dsize = = sizeof ( TDB_DATA_diff ) ) ;
return * ( TDB_DATA_diff * ) data . dptr ;
}
# define DEBUG_DIFF(LEV,MEM,MSG,KEY,OLD,NEW) \
DEBUG ( LEV , ( " %s: %s \n " , MSG , print_data ( MEM , KEY ) ) ) ; \
2011-11-07 09:59:37 +01:00
if ( ! tdb_data_is_empty ( OLD ) ) { \
2011-01-28 10:55:58 +01:00
DEBUGADD ( LEV , ( " -%s \n " , print_data ( MEM , OLD ) ) ) ; \
} \
2011-11-07 09:59:37 +01:00
if ( ! tdb_data_is_empty ( NEW ) ) { \
2011-01-28 10:55:58 +01:00
DEBUGADD ( LEV , ( " +%s \n " , print_data ( MEM , NEW ) ) ) ; \
}
struct check_ctx {
int oflags ;
char * name ;
bool transaction ;
struct db_context * db ;
struct db_context * diff ;
struct check_actions action ;
uint32_t uid_hwm ;
uint32_t gid_hwm ;
unsigned n_invalid_record ;
unsigned n_missing_reverse ;
unsigned n_invalid_mappping ;
unsigned n_map ;
unsigned n_other ;
unsigned n_diff ;
struct check_options opts ;
} ;
static void adjust_hwm ( struct check_ctx * ctx , const struct record * r ) ;
static int add_record ( struct check_ctx * ctx , TDB_DATA key , TDB_DATA value )
{
NTSTATUS status ;
TDB_DATA_diff diff ;
TALLOC_CTX * mem = talloc_new ( ctx - > diff ) ;
2011-08-24 15:27:00 +02:00
TDB_DATA recvalue ;
struct db_record * rec = dbwrap_fetch_locked ( ctx - > diff , mem , key ) ;
2011-01-28 10:55:58 +01:00
if ( rec = = NULL ) {
return - 1 ;
2011-08-24 15:27:00 +02:00
}
recvalue = dbwrap_record_get_value ( rec ) ;
if ( recvalue . dptr = = 0 ) { /* first entry */
2011-08-24 13:08:13 +02:00
status = dbwrap_fetch ( ctx - > db , ctx - > diff , key , & diff . oval ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
diff . oval = tdb_null ;
}
2011-01-28 10:55:58 +01:00
} else {
2011-08-24 15:27:00 +02:00
diff = unpack_diff ( recvalue ) ;
2011-01-28 10:55:58 +01:00
talloc_free ( diff . nval . dptr ) ;
}
2013-01-10 11:09:09 +01:00
diff . nval = tdb_data_talloc_copy ( ctx - > diff , value ) ;
2011-01-28 10:55:58 +01:00
DEBUG_DIFF ( 2 , mem , " TDB DIFF " , key , diff . oval , diff . nval ) ;
2011-08-24 15:27:00 +02:00
status = dbwrap_record_store ( rec , pack_diff ( & diff ) , 0 ) ;
2011-01-28 10:55:58 +01:00
talloc_free ( mem ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " could not store record %s \n " , nt_errstr ( status ) ) ) ;
return - 1 ;
}
ctx - > n_diff + + ;
return 0 ;
}
static int del_record ( struct check_ctx * ctx , TDB_DATA key ) {
return add_record ( ctx , key , tdb_null ) ;
}
static TDB_DATA
fetch_record ( struct check_ctx * ctx , TALLOC_CTX * mem_ctx , TDB_DATA key )
{
TDB_DATA tmp ;
2011-08-24 15:27:00 +02:00
NTSTATUS status ;
2011-01-28 10:55:58 +01:00
2011-08-24 15:27:00 +02:00
status = dbwrap_fetch ( ctx - > diff , mem_ctx , key , & tmp ) ;
2011-11-04 10:55:47 +01:00
if ( NT_STATUS_IS_OK ( status ) ) {
2011-01-28 10:55:58 +01:00
TDB_DATA_diff diff = unpack_diff ( tmp ) ;
2013-01-10 11:09:09 +01:00
TDB_DATA ret = tdb_data_talloc_copy ( mem_ctx , diff . nval ) ;
2011-01-28 10:55:58 +01:00
talloc_free ( tmp . dptr ) ;
return ret ;
}
2011-08-24 15:27:00 +02:00
status = dbwrap_fetch ( ctx - > db , mem_ctx , key , & tmp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
2011-01-28 10:55:58 +01:00
return tdb_null ;
}
return tmp ;
}
static void edit_record ( struct record * r ) {
TALLOC_CTX * mem = talloc_new ( r ) ;
cbuf * ost = cbuf_new ( mem ) ;
const char * str ;
struct record * nr ;
TDB_DATA key ;
TDB_DATA val ;
cbuf_printf ( ost , " %s %s \n " ,
print_data ( mem , r - > key ) , print_data ( mem , r - > val ) ) ;
str = interact_edit ( mem , cbuf_gets ( ost , 0 ) ) ;
key = parse_data ( mem , & str ) ;
val = parse_data ( mem , & str ) ;
nr = parse_record ( talloc_parent ( r ) , key , val ) ;
if ( nr ! = NULL ) {
* r = * nr ;
}
talloc_free ( mem ) ;
}
static bool check_version ( struct check_ctx * ctx ) {
static const char * key = " IDMAP_VERSION " ;
uint32_t version ;
2011-10-06 21:07:27 +02:00
NTSTATUS status ;
2011-01-28 10:55:58 +01:00
char action = ' s ' ;
struct check_actions * act = & ctx - > action ;
2011-10-06 21:07:27 +02:00
2012-06-14 20:39:27 +02:00
status = dbwrap_fetch_uint32_bystring ( ctx - > db , key , & version ) ;
2011-10-06 21:07:27 +02:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2011-01-28 10:55:58 +01:00
d_printf ( " No version number, assume 2 \n " ) ;
action = get_action ( & act - > no_version , NULL , NULL ) ;
} else if ( version ! = 2 ) {
d_printf ( " Wrong version number %d, should be 2 \n " , version ) ;
action = get_action ( & act - > wrong_version , NULL , NULL ) ;
}
switch ( action ) {
case ' s ' :
break ;
case ' f ' :
SIVAL ( & version , 0 , 2 ) ;
add_record ( ctx , string_term_tdb_data ( key ) ,
2011-04-07 16:54:12 +02:00
make_tdb_data ( ( uint8_t * ) & version , sizeof ( uint32_t ) ) ) ;
2011-01-28 10:55:58 +01:00
break ;
case ' a ' :
return false ;
default :
assert ( false ) ;
}
return true ;
}
static void check_hwm ( struct check_ctx * ctx , const char * key , uint32_t target ) {
uint32_t hwm ;
char action = ' s ' ;
2011-10-06 21:07:27 +02:00
NTSTATUS status ;
2011-01-28 10:55:58 +01:00
struct check_actions * act = & ctx - > action ;
2011-10-06 21:07:27 +02:00
2012-06-14 20:39:27 +02:00
status = dbwrap_fetch_uint32_bystring ( ctx - > db , key , & hwm ) ;
2011-10-06 21:07:27 +02:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2011-01-28 10:55:58 +01:00
d_printf ( " No %s should be %d \n " , key , target ) ;
action = get_action ( & act - > invalid_hwm , NULL , NULL ) ;
} else if ( target < hwm ) {
d_printf ( " Invalid %s %d: should be %d \n " , key , hwm , target ) ;
action = get_action ( & act - > invalid_hwm , NULL , NULL ) ;
}
if ( action = = ' f ' ) {
SIVAL ( & hwm , 0 , target ) ;
add_record ( ctx , string_term_tdb_data ( key ) ,
2011-04-07 16:54:12 +02:00
make_tdb_data ( ( uint8_t * ) & hwm , sizeof ( uint32_t ) ) ) ;
2011-01-28 10:55:58 +01:00
}
}
int traverse_check ( struct db_record * rec , void * data ) {
struct check_ctx * ctx = ( struct check_ctx * ) data ;
struct check_actions * act = & ctx - > action ;
TALLOC_CTX * mem = talloc_new ( ctx - > diff ) ;
2011-08-24 15:27:00 +02:00
TDB_DATA key ;
TDB_DATA value ;
struct record * r ;
2011-01-28 10:55:58 +01:00
char action = ' s ' ;
2011-08-24 15:27:00 +02:00
key = dbwrap_record_get_key ( rec ) ;
value = dbwrap_record_get_value ( rec ) ;
r = parse_record ( mem , key , value ) ;
2011-01-28 10:55:58 +01:00
if ( is_invalid ( r ) ) {
action = get_action ( & act - > invalid_record , r , NULL ) ;
ctx - > n_invalid_record + + ;
} else if ( is_map ( r ) ) {
TDB_DATA back = fetch_record ( ctx , mem , r - > val ) ;
if ( back . dptr = = NULL ) {
action = get_action ( & act - > missing_reverse , r , NULL ) ;
ctx - > n_missing_reverse + + ;
} else if ( ! tdb_data_equal ( r - > key , back ) ) {
action = get_action ( & act - > invalid_mapping , r , & back ) ;
ctx - > n_invalid_mappping + + ;
} else {
if ( r - > key_type = = DT_SID ) {
action = get_action ( & act - > valid_mapping , r , NULL ) ;
ctx - > n_map + + ;
} else {
action = get_action ( & act - > valid_mapping , NULL ,
NULL ) ;
}
}
adjust_hwm ( ctx , r ) ;
} else {
action = get_action ( & act - > valid_other , r , NULL ) ;
ctx - > n_other + + ;
}
while ( action ) {
switch ( action ) {
case ' s ' : /* skip */
break ;
case ' d ' : /* delete */
2011-08-24 15:27:00 +02:00
del_record ( ctx , key ) ;
2011-01-28 10:55:58 +01:00
break ;
case ' f ' : /* add reverse mapping */
2011-08-24 15:27:00 +02:00
add_record ( ctx , value , key ) ;
2011-01-28 10:55:58 +01:00
break ;
case ' e ' : /* edit */
edit_record ( r ) ;
action = ' o ' ;
if ( is_invalid ( r ) ) {
action = get_action ( & act - > invalid_edit , r , NULL ) ;
continue ;
}
2011-08-24 15:27:00 +02:00
if ( ! tdb_data_equal ( key , r - > key ) ) {
2011-01-28 10:55:58 +01:00
TDB_DATA oval = fetch_record ( ctx , mem , r - > key ) ;
2011-11-07 09:59:37 +01:00
if ( ! tdb_data_is_empty ( oval ) & &
2011-01-28 10:55:58 +01:00
! tdb_data_equal ( oval , r - > val ) )
{
action = get_action ( & act - > record_exists ,
r , & oval ) ;
if ( action ! = ' o ' ) {
continue ;
}
}
}
if ( is_map ( r ) ) {
TDB_DATA okey = fetch_record ( ctx , mem , r - > val ) ;
2011-11-07 09:59:37 +01:00
if ( ! tdb_data_is_empty ( okey ) & &
2011-01-28 10:55:58 +01:00
! tdb_data_equal ( okey , r - > key ) )
{
action = get_action ( & act - > record_exists ,
reverse_record ( r ) ,
& okey ) ;
}
}
continue ;
case ' o ' : /* overwrite */
adjust_hwm ( ctx , r ) ;
2011-08-24 15:27:00 +02:00
if ( ! tdb_data_equal ( key , r - > key ) ) {
del_record ( ctx , key ) ;
2011-01-28 10:55:58 +01:00
}
add_record ( ctx , r - > key , r - > val ) ;
if ( is_map ( r ) ) {
add_record ( ctx , r - > val , r - > key ) ;
}
}
action = ' \0 ' ;
} ;
talloc_free ( mem ) ;
return 0 ;
}
/******************************************************************************/
void adjust_hwm ( struct check_ctx * ctx , const struct record * r ) {
enum DT type = ( r - > key_type = = DT_SID ) ? r - > val_type : r - > key_type ;
if ( type = = DT_UID ) {
ctx - > uid_hwm = MAX ( ctx - > uid_hwm , r - > id ) ;
} else if ( type = = DT_GID ) {
ctx - > gid_hwm = MAX ( ctx - > gid_hwm , r - > id ) ;
}
}
static bool is_cstr ( TDB_DATA str ) {
2011-11-07 09:59:37 +01:00
return ! tdb_data_is_empty ( str ) & & str . dptr [ str . dsize - 1 ] = = ' \0 ' ;
2011-01-28 10:55:58 +01:00
}
static bool parse_sid ( TDB_DATA str , enum DT * type , struct dom_sid * sid ) {
struct dom_sid tmp ;
const char * s = ( const char * ) str . dptr ;
if ( ( s [ 0 ] = = ' S ' ) & & string_to_sid ( & tmp , s ) ) {
* sid = tmp ;
* type = DT_SID ;
return true ;
}
return false ;
}
static bool parse_xid ( TDB_DATA str , enum DT * type , unsigned long * id ) {
char c , t ;
unsigned long tmp ;
if ( sscanf ( ( const char * ) str . dptr , " %cID %lu%c " , & c , & tmp , & t ) = = 2 ) {
if ( c = = ' U ' ) {
* id = tmp ;
* type = DT_UID ;
return true ;
} else if ( c = = ' G ' ) {
* id = tmp ;
* type = DT_GID ;
return true ;
}
}
return false ;
}
struct record *
parse_record ( TALLOC_CTX * mem_ctx , TDB_DATA key , TDB_DATA val )
{
struct record * ret = talloc_zero ( mem_ctx , struct record ) ;
if ( ret = = NULL ) {
DEBUG ( 0 , ( " Out of memory. \n " ) ) ;
return NULL ;
}
2013-01-10 11:09:09 +01:00
ret - > key = tdb_data_talloc_copy ( ret , key ) ;
ret - > val = tdb_data_talloc_copy ( ret , val ) ;
2011-01-28 10:55:58 +01:00
if ( ( ret - > key . dptr = = NULL & & key . dptr ! = NULL ) | |
( ret - > val . dptr = = NULL & & val . dptr ! = NULL ) )
{
talloc_free ( ret ) ;
DEBUG ( 0 , ( " Out of memory. \n " ) ) ;
return NULL ;
}
assert ( ( ret - > key_type = = DT_INV ) & & ( ret - > val_type = = DT_INV ) ) ;
if ( ! is_cstr ( key ) ) {
return ret ;
}
if ( parse_sid ( key , & ret - > key_type , & ret - > sid ) ) {
parse_xid ( val , & ret - > val_type , & ret - > id ) ;
} else if ( parse_xid ( key , & ret - > key_type , & ret - > id ) ) {
if ( is_cstr ( val ) ) {
parse_sid ( val , & ret - > val_type , & ret - > sid ) ;
}
} else if ( strcmp ( ( const char * ) key . dptr , " USER HWM " ) = = 0 ) {
ret - > key_type = DT_HWM ;
if ( val . dsize = = 4 ) {
ret - > id = IVAL ( val . dptr , 0 ) ;
ret - > val_type = DT_UID ;
}
} else if ( strcmp ( ( const char * ) key . dptr , " GROUP HWM " ) = = 0 ) {
ret - > key_type = DT_HWM ;
if ( val . dsize = = 4 ) {
ret - > id = IVAL ( val . dptr , 0 ) ;
ret - > val_type = DT_GID ;
}
} else if ( strcmp ( ( const char * ) key . dptr , " IDMAP_VERSION " ) = = 0 ) {
ret - > key_type = DT_VER ;
if ( val . dsize = = 4 ) {
ret - > id = IVAL ( val . dptr , 0 ) ;
ret - > val_type = DT_VER ;
}
2011-04-08 14:53:25 +02:00
} else if ( strcmp ( ( const char * ) key . dptr , " __db_sequence_number__ " ) = = 0 ) {
ret - > key_type = DT_SEQ ;
if ( val . dsize = = 8 ) {
ret - > id = * ( uint64_t * ) val . dptr ;
ret - > val_type = DT_SEQ ;
}
2011-01-28 10:55:58 +01:00
}
return ret ;
}
struct record * reverse_record ( struct record * in )
{
return parse_record ( talloc_parent ( in ) , in - > val , in - > key ) ;
}
/******************************************************************************/
char * print_data ( TALLOC_CTX * mem_ctx , TDB_DATA d )
{
2011-11-07 09:59:37 +01:00
if ( ! tdb_data_is_empty ( d ) ) {
2011-01-28 10:55:58 +01:00
char * ret = NULL ;
cbuf * ost = cbuf_new ( mem_ctx ) ;
int len = cbuf_print_quoted ( ost , ( const char * ) d . dptr , d . dsize ) ;
if ( len ! = - 1 ) {
cbuf_swapptr ( ost , & ret , 0 ) ;
talloc_steal ( mem_ctx , ret ) ;
}
talloc_free ( ost ) ;
return ret ;
}
return talloc_strdup ( mem_ctx , " <NULL> " ) ;
}
TDB_DATA parse_data ( TALLOC_CTX * mem_ctx , const char * * ptr ) {
cbuf * ost = cbuf_new ( mem_ctx ) ;
TDB_DATA ret = tdb_null ;
srprs_skipws ( ptr ) ;
if ( srprs_quoted ( ptr , ost ) ) {
ret . dsize = cbuf_getpos ( ost ) ;
2011-04-07 16:54:12 +02:00
ret . dptr = ( uint8_t * ) talloc_steal ( mem_ctx , cbuf_gets ( ost , 0 ) ) ;
2011-01-28 10:55:58 +01:00
}
talloc_free ( ost ) ;
return ret ;
}
static int traverse_print_diff ( struct db_record * rec , void * data ) {
struct check_ctx * ctx = ( struct check_ctx * ) data ;
2011-08-24 15:27:00 +02:00
TDB_DATA key ;
TDB_DATA value ;
TDB_DATA_diff diff ;
2011-01-28 10:55:58 +01:00
TALLOC_CTX * mem = talloc_new ( ctx - > diff ) ;
2011-08-24 15:27:00 +02:00
key = dbwrap_record_get_key ( rec ) ;
value = dbwrap_record_get_value ( rec ) ;
diff = unpack_diff ( value ) ;
2011-01-28 10:55:58 +01:00
DEBUG_DIFF ( 0 , mem , " DIFF " , key , diff . oval , diff . nval ) ;
talloc_free ( mem ) ;
return 0 ;
}
static int traverse_commit ( struct db_record * diff_rec , void * data ) {
struct check_ctx * ctx = ( struct check_ctx * ) data ;
2011-08-24 15:27:00 +02:00
TDB_DATA key ;
TDB_DATA diff_value ;
TDB_DATA_diff diff ;
TDB_DATA value ;
2011-01-28 10:55:58 +01:00
TALLOC_CTX * mem = talloc_new ( ctx - > diff ) ;
int ret = - 1 ;
NTSTATUS status ;
struct check_actions * act = & ctx - > action ;
2011-08-24 15:27:00 +02:00
struct db_record * rec ;
key = dbwrap_record_get_key ( diff_rec ) ;
diff_value = dbwrap_record_get_value ( diff_rec ) ;
diff = unpack_diff ( diff_value ) ;
2011-01-28 10:55:58 +01:00
2011-08-24 15:27:00 +02:00
rec = dbwrap_fetch_locked ( ctx - > db , mem , key ) ;
2011-01-28 10:55:58 +01:00
if ( rec = = NULL ) {
goto done ;
2011-08-24 15:27:00 +02:00
}
value = dbwrap_record_get_value ( rec ) ;
2011-01-28 10:55:58 +01:00
2011-08-24 15:27:00 +02:00
if ( ! tdb_data_equal ( value , diff . oval ) ) {
2011-01-28 10:55:58 +01:00
char action ;
d_printf ( " Warning: record has changed: %s \n "
" expected: %s got %s \n " , print_data ( mem , key ) ,
print_data ( mem , diff . oval ) ,
2011-08-24 15:27:00 +02:00
print_data ( mem , value ) ) ;
2011-01-28 10:55:58 +01:00
action = get_action ( & act - > invalid_diff , NULL , NULL ) ;
if ( action = = ' s ' ) {
ret = 0 ;
goto done ;
} else if ( action = = ' a ' ) {
goto done ;
}
}
DEBUG_DIFF ( 0 , mem , " Commit " , key , diff . oval , diff . nval ) ;
2011-11-07 09:59:37 +01:00
if ( tdb_data_is_empty ( diff . nval ) ) {
2011-08-24 15:27:00 +02:00
status = dbwrap_record_delete ( rec ) ;
2011-01-28 10:55:58 +01:00
} else {
2011-08-24 15:27:00 +02:00
status = dbwrap_record_store ( rec , diff . nval , 0 ) ;
2011-01-28 10:55:58 +01:00
}
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " could not store record %s \n " , nt_errstr ( status ) ) ) ;
if ( ! ctx - > opts . force ) {
goto done ;
}
}
ret = 0 ;
done :
talloc_free ( mem ) ;
return ret ;
}
static struct check_ctx *
check_init ( TALLOC_CTX * mem_ctx , const struct check_options * o )
{
struct check_ctx * ctx = talloc_zero ( mem_ctx , struct check_ctx ) ;
if ( ctx = = NULL ) {
DEBUG ( 0 , ( _ ( " No memory \n " ) ) ) ;
return NULL ;
}
ctx - > diff = db_open_rbt ( ctx ) ;
if ( ctx - > diff = = NULL ) {
talloc_free ( ctx ) ;
DEBUG ( 0 , ( _ ( " No memory \n " ) ) ) ;
return NULL ;
}
ctx - > action = check_actions_init ( o ) ;
ctx - > opts = * o ;
return ctx ;
}
static bool check_open_db ( struct check_ctx * ctx , const char * name , int oflags )
{
if ( name = = NULL ) {
d_fprintf ( stderr , _ ( " Error: name == NULL in check_open_db(). \n " ) ) ;
return false ;
}
if ( ctx - > db ! = NULL ) {
if ( ( ctx - > oflags = = oflags ) & & ( strcmp ( ctx - > name , name ) ) ) {
return true ;
} else {
TALLOC_FREE ( ctx - > db ) ;
}
}
2012-01-06 17:19:54 +01:00
ctx - > db = db_open ( ctx , name , 0 , TDB_DEFAULT , oflags , 0 ,
2014-01-27 14:49:12 +01:00
DBWRAP_LOCK_ORDER_1 , DBWRAP_FLAG_NONE ) ;
2011-01-28 10:55:58 +01:00
if ( ctx - > db = = NULL ) {
d_fprintf ( stderr ,
_ ( " Could not open idmap db (%s) for writing: %s \n " ) ,
name , strerror ( errno ) ) ;
return false ;
}
if ( ctx - > name ! = name ) {
TALLOC_FREE ( ctx - > name ) ;
ctx - > name = talloc_strdup ( ctx , name ) ;
}
ctx - > oflags = oflags ;
return true ;
}
static bool check_do_checks ( struct check_ctx * ctx )
{
NTSTATUS status ;
if ( ! check_version ( ctx ) ) {
return false ;
}
2011-08-17 09:51:12 +02:00
status = dbwrap_traverse ( ctx - > db , traverse_check , ctx , NULL ) ;
2011-01-28 10:55:58 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " failed to traverse %s \n " , ctx - > name ) ) ;
return false ;
}
check_hwm ( ctx , " USER HWM " , ctx - > uid_hwm + 1 ) ;
check_hwm ( ctx , " GROUP HWM " , ctx - > gid_hwm + 1 ) ;
return true ;
}
static void check_summary ( const struct check_ctx * ctx )
{
d_printf ( " uid hwm: %d \n gid hwm: %d \n " , ctx - > uid_hwm , ctx - > gid_hwm ) ;
d_printf ( " mappings: %d \n other: %d \n " , ctx - > n_map , ctx - > n_other ) ;
d_printf ( " invalid records: %d \n missing links: %d \n invalid links: %d \n " ,
ctx - > n_invalid_record , ctx - > n_missing_reverse ,
ctx - > n_invalid_mappping ) ;
d_printf ( " %u changes: \n " , ctx - > n_diff ) ;
}
static bool check_transaction_start ( struct check_ctx * ctx ) {
2011-08-24 15:27:00 +02:00
return ( dbwrap_transaction_start ( ctx - > db ) = = 0 ) ;
2011-01-28 10:55:58 +01:00
}
static bool check_transaction_commit ( struct check_ctx * ctx ) {
2011-08-24 15:27:00 +02:00
return ( dbwrap_transaction_commit ( ctx - > db ) = = 0 ) ;
2011-01-28 10:55:58 +01:00
}
static bool check_transaction_cancel ( struct check_ctx * ctx ) {
2011-08-24 15:27:00 +02:00
return ( dbwrap_transaction_cancel ( ctx - > db ) = = 0 ) ;
2011-01-28 10:55:58 +01:00
}
static void check_diff_list ( struct check_ctx * ctx ) {
2011-08-17 09:51:12 +02:00
NTSTATUS status = dbwrap_traverse ( ctx - > diff , traverse_print_diff , ctx , NULL ) ;
2011-01-28 10:55:58 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " failed to traverse diff \n " ) ) ;
}
}
static bool check_commit ( struct check_ctx * ctx )
{
struct check_actions * act = & ctx - > action ;
char action ;
NTSTATUS status = NT_STATUS_OK ;
check_summary ( ctx ) ;
if ( ctx - > n_diff = = 0 ) {
return true ;
}
while ( ( action = get_action ( & act - > commit , NULL , NULL ) ) = = ' l ' ) {
check_diff_list ( ctx ) ;
}
if ( action = = ' s ' ) {
return true ;
}
assert ( action = = ' c ' ) ;
if ( ! check_open_db ( ctx , ctx - > name , O_RDWR ) ) {
return false ;
}
if ( ! check_transaction_start ( ctx ) ) {
return false ;
}
2011-08-17 09:51:12 +02:00
status = dbwrap_traverse ( ctx - > diff , traverse_commit , ctx , NULL ) ;
2011-01-28 10:55:58 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
check_transaction_cancel ( ctx ) ;
return false ;
}
2011-10-08 07:21:49 +02:00
if ( ctx - > opts . test ) { /*get_action? */
2011-01-28 10:55:58 +01:00
return check_transaction_cancel ( ctx ) ;
} else {
return check_transaction_commit ( ctx ) ;
}
}
int net_idmap_check_db ( const char * db , const struct check_options * o )
{
int ret = - 1 ;
TALLOC_CTX * mem_ctx = talloc_stackframe ( ) ;
struct check_ctx * ctx = check_init ( mem_ctx , o ) ;
if ( ! o - > automatic & & ! isatty ( STDIN_FILENO ) ) {
DEBUG ( 0 , ( " Interactive use needs tty, use --auto \n " ) ) ;
goto done ;
}
if ( o - > lock ) {
if ( check_open_db ( ctx , db , O_RDWR )
& & check_transaction_start ( ctx ) )
{
if ( check_do_checks ( ctx )
& & check_commit ( ctx )
& & check_transaction_commit ( ctx ) )
{
ret = 0 ;
} else {
check_transaction_cancel ( ctx ) ;
}
}
} else {
if ( check_open_db ( ctx , db , O_RDONLY )
& & check_do_checks ( ctx )
& & check_commit ( ctx ) )
{
ret = 0 ;
}
}
done :
talloc_free ( mem_ctx ) ;
return ret ;
}
/*Local Variables:*/
/*mode: c*/
/*End:*/