diff options
author | Andreas Schneider <asn@samba.org> | 2011-01-04 09:52:57 +0100 |
---|---|---|
committer | Andreas Schneider <asn@cryptomilk.org> | 2011-02-02 12:44:20 +0100 |
commit | 612060d677ac64de1b9261beb2d98496cec2ab46 (patch) | |
tree | cb86c35ca942395f35c18023d6e660fae7b2a320 | |
parent | 31779662b728fa6cefd21df742273fd31d8d8dfb (diff) | |
download | samba-612060d677ac64de1b9261beb2d98496cec2ab46.tar.gz samba-612060d677ac64de1b9261beb2d98496cec2ab46.tar.bz2 samba-612060d677ac64de1b9261beb2d98496cec2ab46.zip |
s3-rpc_server: Only allow registering endpoints on priviledged pipes.
-rw-r--r-- | source3/rpc_server/srv_epmapper.c | 25 |
1 files changed, 21 insertions, 4 deletions
diff --git a/source3/rpc_server/srv_epmapper.c b/source3/rpc_server/srv_epmapper.c index b21b17a927..0ec50a430d 100644 --- a/source3/rpc_server/srv_epmapper.c +++ b/source3/rpc_server/srv_epmapper.c @@ -20,6 +20,7 @@ */ #include "includes.h" +#include "../libcli/security/security.h" #include "librpc/gen_ndr/ndr_epmapper.h" #include "librpc/gen_ndr/srv_epmapper.h" @@ -202,6 +203,16 @@ static uint32_t build_ep_list(TALLOC_CTX *mem_ctx, return total; } +static bool is_priviledged_pipe(struct auth_serversupplied_info *info) { + /* If the user is not root, or has the system token, fail */ + if ((info->utok.uid != sec_initial_uid()) && + !security_token_is_system(info->ptok)) { + return false; + } + + return true; +} + /* * epm_Insert * @@ -215,6 +226,11 @@ error_status_t _epm_Insert(struct pipes_struct *p, NTSTATUS status; uint32_t i; + /* If this is not a priviledged users, return */ + if (!is_priviledged_pipe(p->server_info)) { + return EPMAPPER_STATUS_CANT_PERFORM_OP; + } + tmp_ctx = talloc_stackframe(); if (tmp_ctx == NULL) { return EPMAPPER_STATUS_NO_MEMORY; @@ -223,8 +239,6 @@ error_status_t _epm_Insert(struct pipes_struct *p, DEBUG(3, ("_epm_Insert: Trying to add %u new entries.\n", r->in.num_ents)); - /* TODO Check if we have a priviledged pipe/handle */ - for (i = 0; i < r->in.num_ents; i++) { struct dcerpc_binding *b = NULL; struct dcesrv_endpoint *ep; @@ -328,13 +342,16 @@ error_status_t _epm_Delete(struct pipes_struct *p, DEBUG(3, ("_epm_Delete: Trying to delete %u entries.\n", r->in.num_ents)); + /* If this is not a priviledged users, return */ + if (!is_priviledged_pipe(p->server_info)) { + return EPMAPPER_STATUS_CANT_PERFORM_OP; + } + tmp_ctx = talloc_stackframe(); if (tmp_ctx == NULL) { return EPMAPPER_STATUS_NO_MEMORY; } - /* TODO Check if we have a priviledged pipe/handle */ - for (i = 0; i < r->in.num_ents; i++) { struct dcerpc_binding *b = NULL; struct dcesrv_endpoint *ep; |