2001-05-07 09:03:40 +04:00
/*
2002-01-30 09:08:46 +03:00
Unix SMB / CIFS implementation .
2001-05-07 09:03:40 +04:00
Winbind daemon - sid related functions
Copyright ( C ) Tim Potter 2000
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-09 23:25:36 +04:00
the Free Software Foundation ; either version 3 of the License , or
2001-05-07 09:03:40 +04:00
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
2007-07-10 04:52:41 +04:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
2001-05-07 09:03:40 +04:00
*/
2003-11-12 04:51:10 +03:00
# include "includes.h"
2001-05-07 09:03:40 +04:00
# include "winbindd.h"
2002-07-15 14:35:28 +04:00
# undef DBGC_CLASS
# define DBGC_CLASS DBGC_WINBIND
2001-05-07 09:03:40 +04:00
/* Convert a string */
2005-06-25 00:25:18 +04:00
static void lookupsid_recv ( void * private_data , BOOL success ,
2005-06-09 02:10:34 +04:00
const char * dom_name , const char * name ,
2006-09-08 18:28:06 +04:00
enum lsa_SidType type ) ;
2005-06-09 02:10:34 +04:00
2005-06-20 17:42:29 +04:00
void winbindd_lookupsid ( struct winbindd_cli_state * state )
2001-05-07 09:03:40 +04:00
{
2004-04-07 16:43:44 +04:00
DOM_SID sid ;
2001-05-07 09:03:40 +04:00
2002-08-17 21:00:51 +04:00
/* Ensure null termination */
state - > request . data . sid [ sizeof ( state - > request . data . sid ) - 1 ] = ' \0 ' ;
2003-07-22 08:31:20 +04:00
DEBUG ( 3 , ( " [%5lu]: lookupsid %s \n " , ( unsigned long ) state - > pid ,
2001-05-07 09:03:40 +04:00
state - > request . data . sid ) ) ;
2002-03-20 03:56:36 +03:00
if ( ! string_to_sid ( & sid , state - > request . data . sid ) ) {
DEBUG ( 5 , ( " %s not a SID \n " , state - > request . data . sid ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
return ;
2002-03-20 03:56:36 +03:00
}
2001-05-07 09:03:40 +04:00
2005-06-09 02:10:34 +04:00
winbindd_lookupsid_async ( state - > mem_ctx , & sid , lookupsid_recv , state ) ;
}
2001-05-07 09:03:40 +04:00
2005-06-25 00:25:18 +04:00
static void lookupsid_recv ( void * private_data , BOOL success ,
2005-06-09 02:10:34 +04:00
const char * dom_name , const char * name ,
2006-09-08 18:28:06 +04:00
enum lsa_SidType type )
2005-06-09 02:10:34 +04:00
{
struct winbindd_cli_state * state =
2005-06-25 00:25:18 +04:00
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
2005-06-09 02:10:34 +04:00
if ( ! success ) {
DEBUG ( 5 , ( " lookupsid returned an error \n " ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
2005-06-09 02:10:34 +04:00
return ;
2001-05-07 09:03:40 +04:00
}
2002-01-26 12:55:38 +03:00
fstrcpy ( state - > response . data . name . dom_name , dom_name ) ;
fstrcpy ( state - > response . data . name . name , name ) ;
2001-05-07 09:03:40 +04:00
state - > response . data . name . type = type ;
2005-06-20 17:42:29 +04:00
request_ok ( state ) ;
2001-05-07 09:03:40 +04:00
}
2003-01-15 20:39:47 +03:00
/**
* Look up the SID for a qualified name .
* */
2005-06-09 02:10:34 +04:00
2005-06-25 00:25:18 +04:00
static void lookupname_recv ( void * private_data , BOOL success ,
2006-09-08 18:28:06 +04:00
const DOM_SID * sid , enum lsa_SidType type ) ;
2005-06-09 02:10:34 +04:00
2005-06-20 17:42:29 +04:00
void winbindd_lookupname ( struct winbindd_cli_state * state )
2001-05-07 09:03:40 +04:00
{
2002-01-26 12:55:38 +03:00
char * name_domain , * name_user ;
2003-11-19 11:11:14 +03:00
char * p ;
2002-03-22 08:43:08 +03:00
2002-08-17 21:00:51 +04:00
/* Ensure null termination */
2005-12-16 03:01:15 +03:00
state - > request . data . name . dom_name [ sizeof ( state - > request . data . name . dom_name ) - 1 ] = ' \0 ' ;
2002-08-17 21:00:51 +04:00
/* Ensure null termination */
2005-12-16 03:01:15 +03:00
state - > request . data . name . name [ sizeof ( state - > request . data . name . name ) - 1 ] = ' \0 ' ;
2002-08-17 21:00:51 +04:00
2003-11-19 11:11:14 +03:00
/* cope with the name being a fully qualified name */
p = strstr ( state - > request . data . name . name , lp_winbind_separator ( ) ) ;
if ( p ) {
* p = 0 ;
name_domain = state - > request . data . name . name ;
name_user = p + 1 ;
} else {
name_domain = state - > request . data . name . dom_name ;
name_user = state - > request . data . name . name ;
}
2001-05-07 09:03:40 +04:00
2003-11-19 11:11:14 +03:00
DEBUG ( 3 , ( " [%5lu]: lookupname %s%s%s \n " , ( unsigned long ) state - > pid ,
name_domain , lp_winbind_separator ( ) , name_user ) ) ;
2001-05-07 09:03:40 +04:00
2005-06-09 02:10:34 +04:00
winbindd_lookupname_async ( state - > mem_ctx , name_domain , name_user ,
2007-05-30 23:47:35 +04:00
lookupname_recv , WINBINDD_LOOKUPNAME ,
state ) ;
2005-06-09 02:10:34 +04:00
}
2001-05-07 09:03:40 +04:00
2005-06-25 00:25:18 +04:00
static void lookupname_recv ( void * private_data , BOOL success ,
2006-09-08 18:28:06 +04:00
const DOM_SID * sid , enum lsa_SidType type )
2005-06-09 02:10:34 +04:00
{
struct winbindd_cli_state * state =
2005-06-25 00:25:18 +04:00
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
2005-06-09 02:10:34 +04:00
if ( ! success ) {
DEBUG ( 5 , ( " lookupname returned an error \n " ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
2005-06-09 02:10:34 +04:00
return ;
2001-05-07 09:03:40 +04:00
}
2005-06-09 02:10:34 +04:00
sid_to_string ( state - > response . data . sid . sid , sid ) ;
2001-05-07 09:03:40 +04:00
state - > response . data . sid . type = type ;
2005-06-20 17:42:29 +04:00
request_ok ( state ) ;
2005-06-09 02:10:34 +04:00
return ;
}
2001-05-07 09:03:40 +04:00
2006-07-11 22:01:26 +04:00
void winbindd_lookuprids ( struct winbindd_cli_state * state )
{
struct winbindd_domain * domain ;
DOM_SID domain_sid ;
/* Ensure null termination */
state - > request . data . sid [ sizeof ( state - > request . data . sid ) - 1 ] = ' \0 ' ;
DEBUG ( 10 , ( " lookup_rids: %s \n " , state - > request . data . sid ) ) ;
if ( ! string_to_sid ( & domain_sid , state - > request . data . sid ) ) {
DEBUG ( 5 , ( " Could not convert %s to SID \n " ,
state - > request . data . sid ) ) ;
request_error ( state ) ;
return ;
}
domain = find_lookup_domain_from_sid ( & domain_sid ) ;
if ( domain = = NULL ) {
DEBUG ( 10 , ( " Could not find domain for name %s \n " ,
state - > request . domain_name ) ) ;
request_error ( state ) ;
return ;
}
sendto_domain ( state , domain ) ;
}
2005-06-09 02:10:34 +04:00
static struct winbindd_child static_idmap_child ;
void init_idmap_child ( void )
{
setup_domain_child ( NULL , & static_idmap_child , " idmap " ) ;
}
struct winbindd_child * idmap_child ( void )
{
return & static_idmap_child ;
2001-05-07 09:03:40 +04:00
}
/* Convert a sid to a uid. We assume we only have one rid attached to the
sid . */
2006-12-12 17:52:13 +03:00
static void sid2uid_recv ( void * private_data , BOOL success , uid_t uid )
{
struct winbindd_cli_state * state =
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
if ( ! success ) {
DEBUG ( 5 , ( " Could not convert sid %s \n " ,
state - > request . data . sid ) ) ;
request_error ( state ) ;
return ;
}
state - > response . data . uid = uid ;
request_ok ( state ) ;
}
2005-06-09 02:10:34 +04:00
2007-04-22 01:29:31 +04:00
static void sid2uid_lookupsid_recv ( void * private_data , BOOL success ,
const char * domain_name ,
const char * name ,
enum lsa_SidType type )
{
struct winbindd_cli_state * state =
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
DOM_SID sid ;
if ( ! success ) {
DEBUG ( 5 , ( " sid2uid_lookupsid_recv Could not convert get sid type for %s \n " ,
state - > request . data . sid ) ) ;
request_error ( state ) ;
return ;
}
2007-04-22 13:32:14 +04:00
if ( ( type ! = SID_NAME_USER ) & & ( type ! = SID_NAME_COMPUTER ) ) {
2007-04-22 01:29:31 +04:00
DEBUG ( 5 , ( " sid2uid_lookupsid_recv: Sid %s is not a user or a computer. \n " ,
state - > request . data . sid ) ) ;
request_error ( state ) ;
return ;
}
if ( ! string_to_sid ( & sid , state - > request . data . sid ) ) {
DEBUG ( 1 , ( " sid2uid_lookupsid_recv: Could not get convert sid %s from string \n " ,
state - > request . data . sid ) ) ;
request_error ( state ) ;
return ;
}
/* always use the async interface (may block) */
winbindd_sid2uid_async ( state - > mem_ctx , & sid , sid2uid_recv , state ) ;
}
2005-06-20 17:42:29 +04:00
void winbindd_sid_to_uid ( struct winbindd_cli_state * state )
2001-05-07 09:03:40 +04:00
{
DOM_SID sid ;
2002-08-17 21:00:51 +04:00
/* Ensure null termination */
state - > request . data . sid [ sizeof ( state - > request . data . sid ) - 1 ] = ' \0 ' ;
2003-07-22 08:31:20 +04:00
DEBUG ( 3 , ( " [%5lu]: sid to uid %s \n " , ( unsigned long ) state - > pid ,
2001-05-07 09:03:40 +04:00
state - > request . data . sid ) ) ;
2005-06-09 02:10:34 +04:00
if ( ! string_to_sid ( & sid , state - > request . data . sid ) ) {
DEBUG ( 1 , ( " Could not get convert sid %s from string \n " ,
state - > request . data . sid ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
return ;
2003-11-07 17:39:47 +03:00
}
2005-06-09 02:10:34 +04:00
2007-04-22 01:29:31 +04:00
/* Validate the SID as a user. Hopefully this will hit cache.
Needed to prevent DoS by exhausting the uid allocation
range from random SIDs . */
winbindd_lookupsid_async ( state - > mem_ctx , & sid , sid2uid_lookupsid_recv , state ) ;
2005-06-09 02:10:34 +04:00
}
2004-09-15 12:55:01 +04:00
2006-12-12 17:52:13 +03:00
/* Convert a sid to a gid. We assume we only have one rid attached to the
sid . */
static void sid2gid_recv ( void * private_data , BOOL success , gid_t gid )
2005-06-09 02:10:34 +04:00
{
struct winbindd_cli_state * state =
2005-06-25 00:25:18 +04:00
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
2005-06-09 02:10:34 +04:00
if ( ! success ) {
DEBUG ( 5 , ( " Could not convert sid %s \n " ,
state - > request . data . sid ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
2005-06-09 02:10:34 +04:00
return ;
2001-05-07 09:03:40 +04:00
}
2006-12-12 17:52:13 +03:00
state - > response . data . gid = gid ;
2005-06-20 17:42:29 +04:00
request_ok ( state ) ;
2001-05-07 09:03:40 +04:00
}
2007-04-22 01:29:31 +04:00
static void sid2gid_lookupsid_recv ( void * private_data , BOOL success ,
const char * domain_name ,
const char * name ,
enum lsa_SidType type )
{
struct winbindd_cli_state * state =
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
DOM_SID sid ;
if ( ! success ) {
2007-05-02 01:22:55 +04:00
DEBUG ( 5 , ( " sid2gid_lookupsid_recv: Could not get sid type for %s \n " ,
2007-04-22 01:29:31 +04:00
state - > request . data . sid ) ) ;
request_error ( state ) ;
return ;
}
2007-04-22 13:32:14 +04:00
if ( ( type ! = SID_NAME_DOM_GRP ) & &
( type ! = SID_NAME_ALIAS ) & &
2007-04-22 01:29:31 +04:00
( type ! = SID_NAME_WKN_GRP ) )
{
DEBUG ( 5 , ( " sid2gid_lookupsid_recv: Sid %s is not a group. \n " ,
state - > request . data . sid ) ) ;
request_error ( state ) ;
return ;
}
if ( ! string_to_sid ( & sid , state - > request . data . sid ) ) {
DEBUG ( 1 , ( " sid2gid_lookupsid_recv: Could not get convert sid %s from string \n " ,
state - > request . data . sid ) ) ;
request_error ( state ) ;
return ;
}
/* always use the async interface (may block) */
winbindd_sid2gid_async ( state - > mem_ctx , & sid , sid2gid_recv , state ) ;
}
2005-06-20 17:42:29 +04:00
void winbindd_sid_to_gid ( struct winbindd_cli_state * state )
2001-05-07 09:03:40 +04:00
{
DOM_SID sid ;
2002-08-17 21:00:51 +04:00
/* Ensure null termination */
state - > request . data . sid [ sizeof ( state - > request . data . sid ) - 1 ] = ' \0 ' ;
2005-06-09 02:10:34 +04:00
DEBUG ( 3 , ( " [%5lu]: sid to gid %s \n " , ( unsigned long ) state - > pid ,
2001-05-07 09:03:40 +04:00
state - > request . data . sid ) ) ;
2005-06-09 02:10:34 +04:00
if ( ! string_to_sid ( & sid , state - > request . data . sid ) ) {
DEBUG ( 1 , ( " Could not get convert sid %s from string \n " ,
state - > request . data . sid ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
return ;
2003-11-07 17:39:47 +03:00
}
2005-06-09 02:10:34 +04:00
2007-04-22 01:29:31 +04:00
/* Validate the SID as a group. Hopefully this will hit cache.
Needed to prevent DoS by exhausting the uid allocation
range from random SIDs . */
winbindd_lookupsid_async ( state - > mem_ctx , & sid , sid2gid_lookupsid_recv , state ) ;
2005-06-09 02:10:34 +04:00
}
2004-09-15 12:55:01 +04:00
2006-12-12 17:52:13 +03:00
static void sids2xids_recv ( void * private_data , BOOL success , void * data , int len )
2005-06-09 02:10:34 +04:00
{
struct winbindd_cli_state * state =
2005-06-25 00:25:18 +04:00
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
2005-06-09 02:10:34 +04:00
if ( ! success ) {
2006-12-12 17:52:13 +03:00
DEBUG ( 5 , ( " Could not convert sids to xids \n " ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
2005-06-09 02:10:34 +04:00
return ;
2001-05-07 09:03:40 +04:00
}
2004-09-15 12:55:01 +04:00
2006-12-12 17:52:13 +03:00
state - > response . extra_data . data = data ;
state - > response . length = sizeof ( state - > response ) + len ;
2005-06-20 17:42:29 +04:00
request_ok ( state ) ;
2001-05-07 09:03:40 +04:00
}
2006-12-12 17:52:13 +03:00
void winbindd_sids_to_unixids ( struct winbindd_cli_state * state )
2001-05-07 09:03:40 +04:00
{
2006-12-12 17:52:13 +03:00
DEBUG ( 3 , ( " [%5lu]: sids to xids \n " , ( unsigned long ) state - > pid ) ) ;
2001-05-07 09:03:40 +04:00
2006-12-12 17:52:13 +03:00
winbindd_sids2xids_async ( state - > mem_ctx ,
state - > request . extra_data . data ,
state - > request . extra_len ,
sids2xids_recv , state ) ;
2006-08-08 19:33:09 +04:00
}
2006-12-12 17:52:13 +03:00
static void set_mapping_recv ( void * private_data , BOOL success )
2006-08-08 19:33:09 +04:00
{
2006-08-18 18:05:25 +04:00
struct winbindd_cli_state * state =
2006-12-12 17:52:13 +03:00
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
2006-08-08 19:33:09 +04:00
2006-12-12 17:52:13 +03:00
if ( ! success ) {
DEBUG ( 5 , ( " Could not set sid mapping \n " ) ) ;
request_error ( state ) ;
2006-08-08 19:33:09 +04:00
return ;
}
2006-12-12 17:52:13 +03:00
request_ok ( state ) ;
}
2006-08-08 19:33:09 +04:00
2006-12-12 17:52:13 +03:00
void winbindd_set_mapping ( struct winbindd_cli_state * state )
{
struct id_map map ;
DOM_SID sid ;
2001-05-07 09:03:40 +04:00
2006-12-12 17:52:13 +03:00
DEBUG ( 3 , ( " [%5lu]: set id map \n " , ( unsigned long ) state - > pid ) ) ;
2001-05-07 09:03:40 +04:00
2006-12-12 17:52:13 +03:00
if ( ! state - > privileged ) {
DEBUG ( 0 , ( " Only root is allowed to set mappings! \n " ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
return ;
2005-06-09 02:10:34 +04:00
}
2006-12-12 17:52:13 +03:00
if ( ! string_to_sid ( & sid , state - > request . data . dual_idmapset . sid ) ) {
DEBUG ( 1 , ( " Could not get convert sid %s from string \n " ,
state - > request . data . sid ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
return ;
2005-06-09 02:10:34 +04:00
}
2006-12-12 17:52:13 +03:00
map . sid = & sid ;
map . xid . id = state - > request . data . dual_idmapset . id ;
map . xid . type = state - > request . data . dual_idmapset . type ;
2005-06-09 02:10:34 +04:00
2006-12-12 17:52:13 +03:00
winbindd_set_mapping_async ( state - > mem_ctx , & map ,
set_mapping_recv , state ) ;
2005-06-09 02:10:34 +04:00
}
2006-12-12 17:52:13 +03:00
static void set_hwm_recv ( void * private_data , BOOL success )
2005-06-09 02:10:34 +04:00
{
2006-12-12 17:52:13 +03:00
struct winbindd_cli_state * state =
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
2005-06-09 02:10:34 +04:00
if ( ! success ) {
2006-12-12 17:52:13 +03:00
DEBUG ( 5 , ( " Could not set sid mapping \n " ) ) ;
request_error ( state ) ;
2005-06-09 02:10:34 +04:00
return ;
}
2006-12-12 17:52:13 +03:00
request_ok ( state ) ;
2005-06-09 02:10:34 +04:00
}
2006-12-12 17:52:13 +03:00
void winbindd_set_hwm ( struct winbindd_cli_state * state )
2005-06-09 02:10:34 +04:00
{
2006-12-12 17:52:13 +03:00
struct unixid xid ;
DEBUG ( 3 , ( " [%5lu]: set hwm \n " , ( unsigned long ) state - > pid ) ) ;
2005-06-09 02:10:34 +04:00
2006-12-12 17:52:13 +03:00
if ( ! state - > privileged ) {
DEBUG ( 0 , ( " Only root is allowed to set mappings! \n " ) ) ;
request_error ( state ) ;
2005-06-09 02:10:34 +04:00
return ;
}
2006-12-12 17:52:13 +03:00
xid . id = state - > request . data . dual_idmapset . id ;
xid . type = state - > request . data . dual_idmapset . type ;
2005-06-09 02:10:34 +04:00
2006-12-12 17:52:13 +03:00
winbindd_set_hwm_async ( state - > mem_ctx , & xid , set_hwm_recv , state ) ;
2005-06-09 02:10:34 +04:00
}
2006-12-12 17:52:13 +03:00
/* Convert a uid to a sid */
2006-08-08 19:33:09 +04:00
2006-12-12 17:52:13 +03:00
static void uid2sid_recv ( void * private_data , BOOL success , const char * sid )
2001-05-07 09:03:40 +04:00
{
2006-12-12 17:52:13 +03:00
struct winbindd_cli_state * state =
( struct winbindd_cli_state * ) private_data ;
2005-06-09 02:10:34 +04:00
2006-12-12 17:52:13 +03:00
if ( success ) {
DEBUG ( 10 , ( " uid2sid: uid %lu has sid %s \n " ,
( unsigned long ) ( state - > request . data . uid ) , sid ) ) ;
fstrcpy ( state - > response . data . sid . sid , sid ) ;
state - > response . data . sid . type = SID_NAME_USER ;
request_ok ( state ) ;
2005-06-20 17:42:29 +04:00
return ;
2003-11-07 17:39:47 +03:00
}
2001-05-07 09:03:40 +04:00
2006-12-12 17:52:13 +03:00
request_error ( state ) ;
return ;
}
2005-06-09 02:10:34 +04:00
2006-12-12 17:52:13 +03:00
void winbindd_uid_to_sid ( struct winbindd_cli_state * state )
{
DEBUG ( 3 , ( " [%5lu]: uid to sid %lu \n " , ( unsigned long ) state - > pid ,
( unsigned long ) state - > request . data . uid ) ) ;
2005-06-09 02:10:34 +04:00
2006-12-12 17:52:13 +03:00
/* always go via the async interface (may block) */
winbindd_uid2sid_async ( state - > mem_ctx , state - > request . data . uid , uid2sid_recv , state ) ;
2006-08-08 19:33:09 +04:00
}
2006-12-12 17:52:13 +03:00
/* Convert a gid to a sid */
2006-08-08 19:33:09 +04:00
static void gid2sid_recv ( void * private_data , BOOL success , const char * sid )
{
2006-08-18 18:05:25 +04:00
struct winbindd_cli_state * state =
( struct winbindd_cli_state * ) private_data ;
2006-08-08 19:33:09 +04:00
if ( success ) {
DEBUG ( 10 , ( " gid2sid: gid %lu has sid %s \n " ,
( unsigned long ) ( state - > request . data . gid ) , sid ) ) ;
fstrcpy ( state - > response . data . sid . sid , sid ) ;
state - > response . data . sid . type = SID_NAME_DOM_GRP ;
request_ok ( state ) ;
return ;
}
2006-12-12 17:52:13 +03:00
request_error ( state ) ;
return ;
2005-06-09 02:10:34 +04:00
}
2006-12-12 17:52:13 +03:00
void winbindd_gid_to_sid ( struct winbindd_cli_state * state )
2005-06-09 02:10:34 +04:00
{
2006-12-12 17:52:13 +03:00
DEBUG ( 3 , ( " [%5lu]: gid to sid %lu \n " , ( unsigned long ) state - > pid ,
( unsigned long ) state - > request . data . gid ) ) ;
2005-06-09 02:10:34 +04:00
2006-12-12 17:52:13 +03:00
/* always use async calls (may block) */
winbindd_gid2sid_async ( state - > mem_ctx , state - > request . data . gid , gid2sid_recv , state ) ;
2001-05-07 09:03:40 +04:00
}
2004-04-07 16:43:44 +04:00
2006-02-04 01:19:41 +03:00
void winbindd_allocate_uid ( struct winbindd_cli_state * state )
2004-04-07 16:43:44 +04:00
{
if ( ! state - > privileged ) {
2006-02-04 01:19:41 +03:00
DEBUG ( 2 , ( " winbindd_allocate_uid: non-privileged access "
2004-04-07 16:43:44 +04:00
" denied! \n " ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
return ;
2004-04-07 16:43:44 +04:00
}
2005-06-20 17:42:29 +04:00
sendto_child ( state , idmap_child ( ) ) ;
2005-06-09 02:10:34 +04:00
}
2006-02-04 01:19:41 +03:00
enum winbindd_result winbindd_dual_allocate_uid ( struct winbindd_domain * domain ,
2005-06-09 02:10:34 +04:00
struct winbindd_cli_state * state )
{
2006-12-12 17:52:13 +03:00
struct unixid xid ;
2004-04-07 16:43:44 +04:00
2006-12-12 17:52:13 +03:00
if ( ! NT_STATUS_IS_OK ( idmap_allocate_uid ( & xid ) ) ) {
2004-04-07 16:43:44 +04:00
return WINBINDD_ERROR ;
2006-02-04 01:19:41 +03:00
}
2006-12-12 17:52:13 +03:00
state - > response . data . uid = xid . id ;
2004-04-07 16:43:44 +04:00
return WINBINDD_OK ;
}
2005-06-09 02:10:34 +04:00
2006-02-04 01:19:41 +03:00
void winbindd_allocate_gid ( struct winbindd_cli_state * state )
2005-06-09 02:10:34 +04:00
{
if ( ! state - > privileged ) {
2006-02-04 01:19:41 +03:00
DEBUG ( 2 , ( " winbindd_allocate_gid: non-privileged access "
2005-06-09 02:10:34 +04:00
" denied! \n " ) ) ;
2005-06-20 17:42:29 +04:00
request_error ( state ) ;
return ;
2005-06-09 02:10:34 +04:00
}
2005-06-20 17:42:29 +04:00
sendto_child ( state , idmap_child ( ) ) ;
2005-06-09 02:10:34 +04:00
}
2006-02-04 01:19:41 +03:00
enum winbindd_result winbindd_dual_allocate_gid ( struct winbindd_domain * domain ,
struct winbindd_cli_state * state )
2005-06-09 02:10:34 +04:00
{
2006-12-12 17:52:13 +03:00
struct unixid xid ;
2005-06-09 02:10:34 +04:00
2006-12-12 17:52:13 +03:00
if ( ! NT_STATUS_IS_OK ( idmap_allocate_gid ( & xid ) ) ) {
2005-06-09 02:10:34 +04:00
return WINBINDD_ERROR ;
2006-02-04 01:19:41 +03:00
}
2006-12-12 17:52:13 +03:00
state - > response . data . gid = xid . id ;
2005-06-09 02:10:34 +04:00
return WINBINDD_OK ;
}
2006-02-04 01:19:41 +03:00
2006-12-12 17:52:13 +03:00
static void dump_maps_recv ( void * private_data , BOOL success )
{
struct winbindd_cli_state * state =
talloc_get_type_abort ( private_data , struct winbindd_cli_state ) ;
if ( ! success ) {
DEBUG ( 5 , ( " Could not dump maps \n " ) ) ;
request_error ( state ) ;
return ;
}
request_ok ( state ) ;
}
void winbindd_dump_maps ( struct winbindd_cli_state * state )
{
if ( ! state - > privileged ) {
DEBUG ( 0 , ( " Only root is allowed to ask for an idmap dump! \n " ) ) ;
request_error ( state ) ;
return ;
}
DEBUG ( 3 , ( " [%5lu]: dump maps \n " , ( unsigned long ) state - > pid ) ) ;
winbindd_dump_maps_async ( state - > mem_ctx ,
state - > request . extra_data . data ,
state - > request . extra_len ,
dump_maps_recv , state ) ;
}