summaryrefslogtreecommitdiff
path: root/source3
diff options
context:
space:
mode:
authorTim Potter <tpot@samba.org>2003-04-09 03:51:52 +0000
committerTim Potter <tpot@samba.org>2003-04-09 03:51:52 +0000
commit117b2d78f030df2ad16d4c399d122e60556cce00 (patch)
tree403fe74134403c658b288babf11b0e65773f8680 /source3
parent667e6d8279844e8a27b315fa900d1bbfbe874926 (diff)
downloadsamba-117b2d78f030df2ad16d4c399d122e60556cce00.tar.gz
samba-117b2d78f030df2ad16d4c399d122e60556cce00.tar.bz2
samba-117b2d78f030df2ad16d4c399d122e60556cce00.zip
Winbind client for AIX. Written by Steve Roylance.
(This used to be commit e37d025e6724196925c43c8ce558064ed5c072c5)
Diffstat (limited to 'source3')
-rw-r--r--source3/nsswitch/winbind_nss_aix.c411
1 files changed, 411 insertions, 0 deletions
diff --git a/source3/nsswitch/winbind_nss_aix.c b/source3/nsswitch/winbind_nss_aix.c
index e69de29bb2..ba5332bf98 100644
--- a/source3/nsswitch/winbind_nss_aix.c
+++ b/source3/nsswitch/winbind_nss_aix.c
@@ -0,0 +1,411 @@
+/*
+ Unix SMB/CIFS implementation.
+
+ AIX loadable authentication mmodule, providing identification
+ routines against Samba winbind/Windows NT Domain
+
+ Copyright (C) Tim Potter 2003
+ Copyright (C) Steve Roylance 2003
+
+ This library is free software; you can redistribute it and/or
+ modify it under the terms of the GNU Library General Public
+ License as published by the Free Software Foundation; either
+ version 2 of the License, or (at your option) any later version.
+
+ This library is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ Library General Public License for more details.
+
+ You should have received a copy of the GNU Library General Public
+ License along with this library; if not, write to the
+ Free Software Foundation, Inc., 59 Temple Place - Suite 330,
+ Boston, MA 02111-1307, USA.
+*/
+
+#include <stdlib.h>
+#include <string.h>
+#include <usersec.h>
+#include <errno.h>
+
+#include "winbind_client.h"
+
+#define MAX_GETPWENT_USERS 250
+#define MAX_GETGRENT_USERS 250
+/* #define WB_AIX_DEBUG */
+
+static struct passwd *fill_pwent(struct winbindd_pw *pw)
+{
+ struct passwd *result;
+
+ if (!(result = malloc(sizeof(struct passwd))))
+ goto out;
+
+ ZERO_STRUCTP(result);
+
+ /* User name */
+
+ if ((result->pw_name = malloc(strlen(pw->pw_name) + 1)) == NULL)
+ goto out;
+
+ strcpy(result->pw_name, pw->pw_name);
+
+ /* Password */
+
+ if ((result->pw_passwd = malloc(strlen(pw->pw_passwd) + 1)) == NULL)
+ goto out;
+
+ strcpy(result->pw_passwd, pw->pw_passwd);
+
+ /* [ug]id */
+
+ result->pw_uid = pw->pw_uid;
+ result->pw_gid = pw->pw_gid;
+
+ /* GECOS */
+
+ if ((result->pw_gecos = malloc(strlen(pw->pw_gecos) + 1)) == NULL)
+ goto out;
+
+ strcpy(result->pw_gecos, pw->pw_gecos);
+
+ /* Home directory */
+
+ if ((result->pw_dir = malloc(strlen(pw->pw_dir) + 1)) == NULL)
+ goto out;
+
+ strcpy(result->pw_dir, pw->pw_dir);
+
+ /* Logon shell */
+
+ if ((result->pw_shell = malloc(strlen(pw->pw_shell) + 1)) == NULL)
+ goto out;
+
+ strcpy(result->pw_shell, pw->pw_shell);
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - returning filled pwent %s, %d\n", result->pw_name, result->pw_uid);
+#endif
+ return result;
+
+ /* A memory allocation failed, undo succesfull allocations and
+ return NULL */
+
+out:
+ SAFE_FREE(result->pw_dir);
+ SAFE_FREE(result->pw_gecos);
+ SAFE_FREE(result->pw_passwd);
+ SAFE_FREE(result->pw_name);
+ SAFE_FREE(result);
+
+ return NULL;
+}
+
+static BOOL next_token(char **ptr,char *buff,char *sep, size_t bufsize)
+{
+ char *s;
+ BOOL quoted;
+ size_t len=1;
+
+ if (!ptr) return(False);
+
+ s = *ptr;
+
+ /* default to simple separators */
+ if (!sep) sep = " \t\n\r";
+
+ /* find the first non sep char */
+ while (*s && strchr(sep,*s)) s++;
+
+ /* nothing left? */
+ if (! *s) return(False);
+
+ /* copy over the token */
+ for (quoted = False; len < bufsize && *s && (quoted || !strchr(sep,*s)); s++) {
+ if (*s == '\"') {
+ quoted = !quoted;
+ } else {
+ len++;
+ *buff++ = *s;
+ }
+ }
+
+ *ptr = (*s) ? s+1 : s;
+ *buff = 0;
+
+ return(True);
+}
+
+static struct group *fill_grent(struct winbindd_gr *gr, char *gr_mem)
+{
+ fstring name;
+ int i;
+ char *tst;
+ struct group *result;
+
+ if (!(result = malloc(sizeof(struct group))))
+ goto out;
+
+ ZERO_STRUCTP(result);
+
+ /* Group name */
+
+ if ((result->gr_name = malloc(strlen(gr->gr_name) + 1)) == NULL)
+ goto out;
+
+ strcpy(result->gr_name, gr->gr_name);
+
+ /* Password */
+
+ if ((result->gr_passwd = malloc(strlen(gr->gr_passwd) + 1)) == NULL)
+ goto out;
+
+ strcpy(result->gr_passwd, gr->gr_passwd);
+
+ /* gid */
+
+ result->gr_gid = gr->gr_gid;
+
+ /* Group membership */
+
+ if ((gr->num_gr_mem < 0) || !gr_mem) {
+ gr->num_gr_mem = 0;
+ }
+
+ if (gr->num_gr_mem == 0) {
+
+ /* Group is empty */
+
+ *(result->gr_mem) = NULL;
+ return result;
+ }
+
+ if ((tst = malloc(((gr->num_gr_mem + 1) * sizeof(char *)))) == NULL)
+ goto out;
+
+ result->gr_mem = (char **)tst;
+
+ /* Start looking at extra data */
+
+ i = 0;
+
+ while(next_token((char **)&gr_mem, name, ",", sizeof(fstring))) {
+
+ /* Allocate space for member */
+
+ if (((result->gr_mem)[i] =
+ malloc(strlen(name) + 1)) == NULL) {
+ for ( i -= 1; i >= 0; i--)
+ SAFE_FREE((result->gr_mem)[i]);
+ goto out;
+
+ }
+
+ strcpy((result->gr_mem)[i], name);
+ i++;
+ }
+
+ /* Terminate list */
+
+ (result->gr_mem)[i] = NULL;
+
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - returning filled grent %s, %d\n", result->gr_name, result->gr_gid);
+#endif
+ return result;
+
+ /* A memory allocation failed, undo succesfull allocations and
+ return NULL */
+
+out:
+ SAFE_FREE(tst);
+ SAFE_FREE(result->gr_passwd);
+ SAFE_FREE(result->gr_name);
+ SAFE_FREE(result);
+
+ return NULL;
+}
+
+
+
+static struct group *
+wb_aix_getgrgid (gid_t gid)
+{
+/* take a group id and return a filled struct group */
+
+ struct winbindd_response response;
+ struct winbindd_request request;
+
+ ZERO_STRUCT(response);
+ ZERO_STRUCT(request);
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - getgrid for %d\n", gid);
+#endif
+
+ request.data.gid = gid;
+
+ if (winbindd_request(WINBINDD_GETGRGID, &request, &response)
+ == NSS_STATUS_SUCCESS) {
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - returned from winbind_request\n");
+#endif
+ return fill_grent(&response.data.gr, response.extra_data);
+ }
+
+ return NULL;
+}
+
+static struct group *
+wb_aix_getgrnam (const char *name)
+{
+/* take a group name and return a filled struct group */
+
+ struct winbindd_response response;
+ struct winbindd_request request;
+
+ ZERO_STRUCT(response);
+ ZERO_STRUCT(request);
+
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - getgrnam for %s\n", name);
+#endif
+
+ strncpy(request.data.groupname, name,
+ sizeof(request.data.groupname));
+ request.data.groupname
+ [sizeof(request.data.groupname) - 1] = '\0';
+
+
+ if (winbindd_request(WINBINDD_GETGRNAM, &request, &response)
+ == NSS_STATUS_SUCCESS) {
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - returned from winbind_request\n");
+#endif
+ return fill_grent(&response.data.gr, response.extra_data);
+ }
+ return NULL;
+}
+
+static char *
+wb_aix_getgrset (const char *user)
+{
+/* take a username and return a string containing a comma-separated list of
+ group id numbers to which the user belongs */
+
+ struct winbindd_response response;
+ struct winbindd_request request;
+
+ char *tmpbuf, *result;
+ int i, idx = 0;
+
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - getgrset for %s\n", user);
+#endif
+ strncpy(request.data.username, user,
+ sizeof(request.data.username) - 1);
+ request.data.username
+ [sizeof(request.data.username) - 1] = '\0';
+
+
+ if (winbindd_request(WINBINDD_GETGROUPS, &request, &response)
+ == NSS_STATUS_SUCCESS) {
+ int num_gids = response.data.num_entries;
+ gid_t *gid_list = (gid_t *)response.extra_data;
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - returned from winbind_request\n");
+#endif
+
+ /* allocate a space large enough to contruct the string */
+ if (!(tmpbuf = malloc(num_gids*12))) {
+ return NULL;
+ }
+ idx += sprintf(tmpbuf, "%d", gid_list[0]);
+ for (i = 1; i < num_gids; i++) {
+ tmpbuf[idx++] = ',';
+ idx += sprintf(tmpbuf+idx, "%d", gid_list[i]);
+ }
+ tmpbuf[idx] = '\0';
+ if (!(result = malloc(idx+1))) {
+ /* allocate a string the right size to return, but
+ if that fails may as well return our working buffer
+ because it contains the same thing */
+ return tmpbuf;
+ }
+ strcpy(result, tmpbuf);
+ SAFE_FREE(tmpbuf);
+ return result;
+ }
+ return NULL;
+}
+
+static struct passwd *
+wb_aix_getpwuid (uid_t uid)
+{
+/* take a uid and return a filled struct passwd */
+
+ struct winbindd_response response;
+ struct winbindd_request request;
+
+ ZERO_STRUCT(response);
+ ZERO_STRUCT(request);
+
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - getpwid for %d\n", uid);
+#endif
+
+ request.data.uid = uid;
+
+ if (winbindd_request(WINBINDD_GETPWUID, &request, &response)
+ == NSS_STATUS_SUCCESS) {
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - returned from winbind_request\n");
+#endif
+ return fill_pwent(&response.data.pw);
+ }
+ return NULL;
+}
+
+static struct passwd *
+wb_aix_getpwnam (const char *name)
+{
+/* take a username and return a filled struct passwd */
+
+ struct winbindd_response response;
+ struct winbindd_request request;
+
+ ZERO_STRUCT(response);
+ ZERO_STRUCT(request);
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - getpwnam for %s\n", name);
+#endif
+ strncpy(request.data.username, name,
+ sizeof(request.data.username) - 1);
+ request.data.username
+ [sizeof(request.data.username) - 1] = '\0';
+
+
+ if (winbindd_request(WINBINDD_GETPWNAM, &request, &response)
+ == NSS_STATUS_SUCCESS) {
+#ifdef WB_AIX_DEBUG
+ printf("wb_aix - returned from winbind_request\n");
+#endif
+ return fill_pwent(&response.data.pw);
+ }
+ return NULL;
+}
+
+int
+wb_aix_init (struct secmethod_table *methods)
+{
+ memset(methods, 0, sizeof(*methods));
+
+ /* identification methods, this is the minimum requried for a
+ working module */
+
+ methods->method_getgrgid = wb_aix_getgrgid;
+ methods->method_getgrnam = wb_aix_getgrnam;
+ methods->method_getgrset = wb_aix_getgrset;
+ methods->method_getpwnam = wb_aix_getpwnam;
+ methods->method_getpwuid = wb_aix_getpwuid;
+
+ return AUTH_SUCCESS;
+}