mirror of
https://github.com/samba-team/samba.git
synced 2025-01-12 09:18:10 +03:00
b70009649a
in Samba4. This allows us to start winbindd by default, including in
'make test'.
This is via a new 'winbindd socket directory' parameter for utilities
linked against loadparm, as well as a --with-winbindd-socket-dir
option to configure (setting the default and the value for simple
clients).
I hope to add basic winbindd tests, to ensure continued correct
operation, but at least now I don't have to manually change my 'server
services' line.
The other problem with the hard-coded /tmp/.winbind is that RedHat has
moved this in Fedora (to /var/run I think). For this reason, this
functionality should probably be ported to Samba3 as well.
The default for Samba4 is PREFIX/var/run/winbind_pipe.
I have also re-added the paranoia checks from Samba3 for correct
permissions on the socket directory.
Andrew Bartlett
(This used to be commit 8866aa06ff
)
150 lines
4.0 KiB
C
150 lines
4.0 KiB
C
/*
|
|
Unix SMB/CIFS implementation.
|
|
Main winbindd server routines
|
|
|
|
Copyright (C) Stefan Metzmacher 2005
|
|
Copyright (C) Andrew Tridgell 2005
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 2 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program; if not, write to the Free Software
|
|
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
|
|
*/
|
|
|
|
#include "nsswitch/winbindd_nss.h"
|
|
|
|
|
|
|
|
#define WINBINDD_SAMBA3_SOCKET "pipe"
|
|
/* the privileged socket is in smbd_tmp_dir() */
|
|
#define WINBINDD_SAMBA3_PRIVILEGED_SOCKET "winbind_pipe"
|
|
|
|
/* this struct stores global data for the winbind task */
|
|
struct wbsrv_service {
|
|
struct task_server *task;
|
|
|
|
const struct dom_sid *primary_sid;
|
|
struct wbsrv_domain *domains;
|
|
};
|
|
|
|
struct wbsrv_samconn {
|
|
struct wbsrv_domain *domain;
|
|
void *private_data;
|
|
|
|
struct composite_context (*seqnum_send)(struct wbsrv_samconn *);
|
|
NTSTATUS (*seqnum_recv)(struct composite_context *, uint64_t *);
|
|
};
|
|
|
|
struct wb_dom_info {
|
|
const char *name;
|
|
const char *dns_name;
|
|
const struct dom_sid *sid;
|
|
|
|
const char *dc_name;
|
|
const char *dc_dns_name;
|
|
const char *dc_address;
|
|
};
|
|
|
|
struct wbsrv_domain {
|
|
struct wbsrv_domain *next, *prev;
|
|
|
|
struct wb_dom_info *info;
|
|
|
|
struct dcerpc_pipe *lsa_pipe;
|
|
struct policy_handle *lsa_policy;
|
|
uint8_t lsa_auth_type;
|
|
|
|
struct dcerpc_pipe *samr_pipe;
|
|
struct policy_handle *samr_handle;
|
|
struct policy_handle *domain_handle;
|
|
|
|
struct ldap_connection *ldap_conn;
|
|
|
|
struct dcerpc_pipe *netlogon_pipe;
|
|
struct cli_credentials *schannel_creds;
|
|
};
|
|
|
|
/*
|
|
state of a listen socket and it's protocol information
|
|
*/
|
|
struct wbsrv_listen_socket {
|
|
const char *socket_path;
|
|
struct wbsrv_service *service;
|
|
BOOL privileged;
|
|
};
|
|
|
|
/*
|
|
state of an open winbind connection
|
|
*/
|
|
struct wbsrv_connection {
|
|
/* stream connection we belong to */
|
|
struct stream_connection *conn;
|
|
|
|
/* the listening socket we belong to, it holds protocol hooks */
|
|
struct wbsrv_listen_socket *listen_socket;
|
|
|
|
/* storage for protocol specific data */
|
|
void *protocol_private_data;
|
|
|
|
/* how many calls are pending */
|
|
uint32_t pending_calls;
|
|
|
|
struct packet_context *packet;
|
|
};
|
|
|
|
#define WBSRV_SAMBA3_SET_STRING(dest, src) do { \
|
|
strncpy(dest, src, sizeof(dest)-1);\
|
|
} while(0)
|
|
|
|
/*
|
|
state of one request
|
|
|
|
NOTE about async replies:
|
|
if the backend wants to reply later:
|
|
|
|
- it should set the WBSRV_CALL_FLAGS_REPLY_ASYNC flag, and may set a
|
|
talloc_destructor on the this structure or on the private_data (if it's a
|
|
talloc child of this structure), so that wbsrv_terminate_connection
|
|
called by another call clean up the whole connection correct.
|
|
- When the backend is ready to reply it should call wbsrv_send_reply(call),
|
|
wbsrv_send_reply implies talloc_free(call), so the backend should use
|
|
talloc_reference(call), if it needs it later.
|
|
- If wbsrv_send_reply doesn't return NT_STATUS_OK, the backend function
|
|
should call, wbsrv_terminate_connection(call->wbconn, nt_errstr(status));
|
|
return;
|
|
|
|
*/
|
|
struct wbsrv_samba3_call {
|
|
#define WBSRV_CALL_FLAGS_REPLY_ASYNC 0x00000001
|
|
uint32_t flags;
|
|
|
|
/* the connection the call belongs to */
|
|
struct wbsrv_connection *wbconn;
|
|
|
|
/* the backend should use this event context */
|
|
struct event_context *event_ctx;
|
|
|
|
/* here the backend can store stuff like composite_context's ... */
|
|
void *private_data;
|
|
|
|
/* the request structure of the samba3 protocol */
|
|
struct winbindd_request request;
|
|
|
|
/* the response structure of the samba3 protocol*/
|
|
struct winbindd_response response;
|
|
};
|
|
|
|
struct netr_LMSessionKey;
|
|
struct netr_UserSessionKey;
|
|
|
|
#include "winbind/wb_proto.h"
|