1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
samba-mirror/source4/cldap_server/rootdse.c

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

184 lines
5.0 KiB
C
Raw Normal View History

/*
Unix SMB/CIFS implementation.
CLDAP server - rootdse handling
Copyright (C) Stefan Metzmacher 2006
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#include "includes.h"
#include <tevent.h>
#include <ldb.h>
#include <ldb_errors.h>
#include "samba/service_task.h"
#include "cldap_server/cldap_server.h"
#include "librpc/gen_ndr/ndr_misc.h"
#include "dsdb/samdb/samdb.h"
#include "ldb_wrap.h"
static void cldapd_rootdse_fill(struct cldapd_server *cldapd,
TALLOC_CTX *mem_ctx,
struct ldap_SearchRequest *search,
struct ldap_SearchResEntry **response,
struct ldap_Result *result)
{
struct ldap_SearchResEntry *ent = NULL;
struct ldb_result *res = NULL;
struct ldb_request *lreq;
const char **attrs = NULL;
const char *errstr = NULL;
int ret = LDAP_SUCCESS, ldb_ret;
if (search->num_attributes >= 1) {
size_t i;
attrs = talloc_array(mem_ctx, const char *, search->num_attributes+1);
if (attrs == NULL) goto nomem;
for (i=0; i < search->num_attributes; i++) {
attrs[i] = search->attributes[i];
}
attrs[i] = NULL;
}
res = talloc_zero(mem_ctx, struct ldb_result);
if (res == NULL) goto nomem;
2008-09-12 02:38:40 +04:00
ldb_ret = ldb_build_search_req_ex(&lreq, cldapd->samctx, mem_ctx,
NULL, LDB_SCOPE_BASE,
2008-09-12 02:38:40 +04:00
search->tree, attrs,
NULL,
res, ldb_search_default_callback,
NULL);
2008-09-12 02:38:40 +04:00
if (ldb_ret != LDB_SUCCESS) {
goto reply;
}
/* Copy the timeout from the incoming call */
ldb_set_timeout(cldapd->samctx, lreq, search->timelimit);
ldb_ret = ldb_request(cldapd->samctx, lreq);
if (ldb_ret != LDB_SUCCESS) {
goto reply;
}
ldb_ret = ldb_wait(lreq->handle, LDB_WAIT_ALL);
if (ldb_ret != LDB_SUCCESS) {
goto reply;
}
if (res->count > 1) {
errstr = "Internal error: to much replies";
ldb_ret = LDB_ERR_OTHER;
goto reply;
} else if (res->count == 1) {
int j;
ent = talloc(mem_ctx, struct ldap_SearchResEntry);
if (ent == NULL) goto nomem;
ent->dn = ldb_dn_alloc_linearized(ent, res->msgs[0]->dn);
if (ent->dn == NULL) goto nomem;
ent->num_attributes = 0;
ent->attributes = NULL;
if (res->msgs[0]->num_elements == 0) {
goto reply;
}
ent->num_attributes = res->msgs[0]->num_elements;
ent->attributes = talloc_array(ent, struct ldb_message_element,
ent->num_attributes);
if (ent->attributes == NULL) goto nomem;
for (j=0; j < ent->num_attributes; j++) {
ent->attributes[j].name = talloc_steal(ent->attributes,
res->msgs[0]->elements[j].name);
ent->attributes[j].num_values = 0;
ent->attributes[j].values = NULL;
if (search->attributesonly && (res->msgs[0]->elements[j].num_values == 0)) {
continue;
}
ent->attributes[j].num_values = res->msgs[0]->elements[j].num_values;
ent->attributes[j].values = res->msgs[0]->elements[j].values;
talloc_steal(ent->attributes, res->msgs[0]->elements[j].values);
}
}
reply:
if (ret != LDAP_SUCCESS) {
/* nothing ... */
} else if (ldb_ret == LDB_SUCCESS) {
ret = LDAP_SUCCESS;
errstr = NULL;
} else {
ret = ldb_ret;
errstr = ldb_errstring(cldapd->samctx);
}
goto done;
nomem:
talloc_free(ent);
ret = LDAP_OPERATIONS_ERROR;
errstr = "No memory";
done:
*response = ent;
result->resultcode = ret;
result->errormessage = (errstr?talloc_strdup(mem_ctx, errstr):NULL);
}
/*
handle incoming cldap requests
*/
void cldapd_rootdse_request(struct cldap_socket *cldap,
struct cldapd_server *cldapd,
TALLOC_CTX *tmp_ctx,
uint32_t message_id,
struct ldap_SearchRequest *search,
struct tsocket_address *src)
{
NTSTATUS status;
struct cldap_reply reply;
struct ldap_Result result;
ZERO_STRUCT(result);
reply.messageid = message_id;
reply.dest = src;
reply.response = NULL;
reply.result = &result;
/* Note: The remoteAddress should rather be set on a ldb request.
* We can set this savely on the context here,
* since cldapd_rootdse_fill operates synchronously. */
ldb_set_opaque(cldapd->samctx, "remoteAddress", src);
cldapd_rootdse_fill(cldapd, tmp_ctx, search, &reply.response,
reply.result);
/*
* We clear this after cldapd_rootdse_fill as this is shared ldb
* and if it was not cleared the audit logging would report changes
* made by internal processes as coming from the last cldap requester
*/
ldb_set_opaque(cldapd->samctx, "remoteAddress", NULL);
status = cldap_reply_send(cldap, &reply);
if (!NT_STATUS_IS_OK(status)) {
DEBUG(2,("cldap rootdse query failed '%s' - %s\n",
ldb_filter_from_tree(tmp_ctx, search->tree), nt_errstr(status)));
}
return;
}