2011-03-22 23:23:17 +01:00
/*
2006-02-03 22:19:41 +00:00
Unix SMB / CIFS implementation .
Translate unix - defined names to SIDs and vice versa
Copyright ( C ) Volker Lendecke 2005
2009-10-04 16:52:08 +02:00
2006-02-03 22:19:41 +00:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-09 19:25:36 +00:00
the Free Software Foundation ; either version 3 of the License , or
2006-02-03 22:19:41 +00:00
( at your option ) any later version .
2009-10-04 16:52:08 +02:00
2006-02-03 22:19:41 +00:00
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
2009-10-04 16:52:08 +02:00
2006-02-03 22:19:41 +00:00
You should have received a copy of the GNU General Public License
2007-07-10 00:52:41 +00:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
2006-02-03 22:19:41 +00:00
*/
# include "includes.h"
2011-02-25 17:14:22 +01:00
# include "system/passwd.h"
2010-10-12 15:27:50 +11:00
# include "../libcli/security/security.h"
2011-03-02 16:06:32 +01:00
# include "../lib/util/util_pw.h"
2006-02-03 22:19:41 +00:00
2010-05-21 11:25:01 +10:00
bool sid_check_is_unix_users ( const struct dom_sid * sid )
2006-02-03 22:19:41 +00:00
{
2010-08-26 15:48:50 +02:00
return dom_sid_equal ( sid , & global_sid_Unix_Users ) ;
2006-02-03 22:19:41 +00:00
}
2010-05-21 11:25:01 +10:00
bool sid_check_is_in_unix_users ( const struct dom_sid * sid )
2006-02-03 22:19:41 +00:00
{
2010-05-21 11:25:01 +10:00
struct dom_sid dom_sid ;
2006-02-03 22:19:41 +00:00
sid_copy ( & dom_sid , sid ) ;
2011-03-10 16:19:17 +01:00
sid_split_rid ( & dom_sid , NULL ) ;
2009-10-04 16:52:08 +02:00
2006-02-03 22:19:41 +00:00
return sid_check_is_unix_users ( & dom_sid ) ;
}
2010-07-11 17:30:53 +02:00
void uid_to_unix_users_sid ( uid_t uid , struct dom_sid * sid )
2006-07-07 18:53:19 +00:00
{
2010-07-11 17:30:53 +02:00
/*
* This can never fail , we know that global_sid_Unix_Users is
* short enough for a domain sid .
*/
sid_compose ( sid , & global_sid_Unix_Users , uid ) ;
2006-07-07 18:53:19 +00:00
}
2010-07-11 17:30:53 +02:00
void gid_to_unix_groups_sid ( gid_t gid , struct dom_sid * sid )
2006-08-21 20:04:01 +00:00
{
2010-07-11 17:30:53 +02:00
/*
* This can never fail , we know that global_sid_Unix_Groups is
* short enough for a domain sid .
*/
sid_compose ( sid , & global_sid_Unix_Groups , gid ) ;
2006-08-21 20:04:01 +00:00
}
2006-02-03 22:19:41 +00:00
const char * unix_users_domain_name ( void )
{
return " Unix User " ;
}
2010-05-21 11:25:01 +10:00
bool lookup_unix_user_name ( const char * name , struct dom_sid * sid )
2006-02-03 22:19:41 +00:00
{
struct passwd * pwd ;
2010-01-10 17:39:27 +01:00
bool ret ;
2006-02-03 22:19:41 +00:00
2010-10-20 08:16:23 -07:00
pwd = Get_Pwnam_alloc ( talloc_tos ( ) , name ) ;
2006-02-03 22:19:41 +00:00
if ( pwd = = NULL ) {
return False ;
}
2010-01-10 17:39:27 +01:00
/*
* For 64 - bit uid ' s we have enough space in the whole SID ,
* should they become necessary
*/
ret = sid_compose ( sid , & global_sid_Unix_Users , pwd - > pw_uid ) ;
2006-02-20 17:59:58 +00:00
TALLOC_FREE ( pwd ) ;
2010-01-10 17:39:27 +01:00
return ret ;
2006-02-03 22:19:41 +00:00
}
2010-05-21 11:25:01 +10:00
bool sid_check_is_unix_groups ( const struct dom_sid * sid )
2006-02-03 22:19:41 +00:00
{
2010-08-26 15:48:50 +02:00
return dom_sid_equal ( sid , & global_sid_Unix_Groups ) ;
2006-02-03 22:19:41 +00:00
}
2010-05-21 11:25:01 +10:00
bool sid_check_is_in_unix_groups ( const struct dom_sid * sid )
2006-02-03 22:19:41 +00:00
{
2010-05-21 11:25:01 +10:00
struct dom_sid dom_sid ;
2006-02-03 22:19:41 +00:00
sid_copy ( & dom_sid , sid ) ;
2011-03-10 16:19:17 +01:00
sid_split_rid ( & dom_sid , NULL ) ;
2009-10-04 16:52:08 +02:00
2006-02-03 22:19:41 +00:00
return sid_check_is_unix_groups ( & dom_sid ) ;
}
const char * unix_groups_domain_name ( void )
{
return " Unix Group " ;
}
2010-05-21 11:25:01 +10:00
bool lookup_unix_group_name ( const char * name , struct dom_sid * sid )
2006-02-03 22:19:41 +00:00
{
struct group * grp ;
2008-07-24 11:56:49 -07:00
grp = sys_getgrnam ( name ) ;
2006-02-03 22:19:41 +00:00
if ( grp = = NULL ) {
return False ;
}
2010-01-10 17:39:27 +01:00
/*
* For 64 - bit gid ' s we have enough space in the whole SID ,
* should they become necessary
*/
return sid_compose ( sid , & global_sid_Unix_Groups , grp - > gr_gid ) ;
2006-02-03 22:19:41 +00:00
}