to do guesswork.
*****************************************************************/
+#define LN_CHECK_TALLOC(var, memctx) do { \
+ if (var == NULL) { \
+ DEBUG(0, ("talloc failed\n")); \
+ TALLOC_FREE(memctx); \
+ return false; \
+ } \
+} while(0)
+
bool lookup_name(TALLOC_CTX *mem_ctx,
const char *full_name, int flags,
const char **ret_domain, const char **ret_name,
DOM_SID *ret_sid, enum lsa_SidType *ret_type)
{
+ char *domain, *name;
+ bool res;
char *p;
- const char *tmp;
- const char *domain = NULL;
- const char *name = NULL;
- uint32 rid;
- DOM_SID sid;
- enum lsa_SidType type;
- TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
-
- if (tmp_ctx == NULL) {
- DEBUG(0, ("talloc_new failed\n"));
- return false;
- }
p = strchr_m(full_name, '\\');
if (p != NULL) {
- domain = talloc_strndup(tmp_ctx, full_name,
+ domain = talloc_strndup(mem_ctx, full_name,
PTR_DIFF(p, full_name));
- name = talloc_strdup(tmp_ctx, p+1);
+ name = talloc_strdup(mem_ctx, p+1);
} else {
- domain = talloc_strdup(tmp_ctx, "");
- name = talloc_strdup(tmp_ctx, full_name);
+ domain = NULL;
+ name = talloc_strdup(mem_ctx, full_name);
}
- if ((domain == NULL) || (name == NULL)) {
+ if (((p != NULL) && (domain == NULL)) || (name == NULL)) {
DEBUG(0, ("talloc failed\n"));
- TALLOC_FREE(tmp_ctx);
return false;
}
- DEBUG(10,("lookup_name: %s => %s (domain), %s (name)\n",
- full_name, domain, name));
+ DEBUG(10,("lookup_domain_name: %s => %s (domain), %s (name)\n",
+ full_name, domain, name));
+
+ res = lookup_domain_name(mem_ctx, domain, name, flags,
+ ret_domain, ret_name, ret_sid, ret_type);
+
+ talloc_free(domain);
+ talloc_free(name);
+
+ return res;
+}
+
+bool lookup_domain_name(TALLOC_CTX *mem_ctx,
+ const char *domain, const char *name, int flags,
+ const char **ret_domain, const char **ret_name,
+ DOM_SID *ret_sid, enum lsa_SidType *ret_type)
+{
+ const char *tmp;
+ const char *domain_new = NULL;
+ uint32 rid;
+ DOM_SID sid;
+ enum lsa_SidType type;
+ TALLOC_CTX *tmp_ctx;
+
+ tmp_ctx = talloc_new(mem_ctx);
+ if (tmp_ctx == NULL) {
+ DEBUG(0, ("talloc_new failed\n"));
+ return false;
+ }
+
+ if (!domain) domain = talloc_strdup(tmp_ctx, "");
+ LN_CHECK_TALLOC(domain, tmp_ctx);
+
DEBUG(10, ("lookup_name: flags = 0x0%x\n", flags));
if ((flags & LOOKUP_NAME_DOMAIN) &&
}
/* Try the explicit winbind lookup first, don't let it guess the
- * domain yet at this point yet. This comes later. */
+ * domain at this point yet. This comes later. */
if ((domain[0] != '\0') &&
(flags & ~(LOOKUP_NAME_DOMAIN|LOOKUP_NAME_ISOLATED)) &&
/* 1. well-known names */
if ((flags & LOOKUP_NAME_WKN) &&
- lookup_wellknown_name(tmp_ctx, name, &sid, &domain))
+ lookup_wellknown_name(tmp_ctx, name, &sid, &domain_new))
{
type = SID_NAME_WKN_GRP;
+ LN_CHECK_TALLOC(domain_new, tmp_ctx);
goto ok;
}
goto ok;
}
- /* 6. Builtin aliases */
+ /* 6. Builtin aliases */
if ((flags & LOOKUP_NAME_BUILTIN) &&
lookup_builtin_name(name, &rid))
{
- domain = talloc_strdup(tmp_ctx, builtin_domain_name());
+ domain_new = talloc_strdup(tmp_ctx, builtin_domain_name());
+ LN_CHECK_TALLOC(domain_new, tmp_ctx);
sid_copy(&sid, &global_sid_Builtin);
sid_append_rid(&sid, rid);
type = SID_NAME_ALIAS;
if ((flags & LOOKUP_NAME_DOMAIN) &&
lookup_global_sam_name(name, flags, &rid, &type))
{
- domain = talloc_strdup(tmp_ctx, get_global_sam_name());
+ domain_new = talloc_strdup(tmp_ctx, get_global_sam_name());
+ LN_CHECK_TALLOC(domain_new, tmp_ctx);
sid_copy(&sid, get_global_sam_sid());
sid_append_rid(&sid, rid);
goto ok;
if (!IS_DC &&
(winbind_lookup_name(lp_workgroup(), name, &sid, &type))) {
- domain = talloc_strdup(tmp_ctx, lp_workgroup());
+ domain_new = talloc_strdup(tmp_ctx, lp_workgroup());
+ LN_CHECK_TALLOC(domain_new, tmp_ctx);
goto ok;
}
DOM_SID dom_sid;
uint32 tmp_rid;
enum lsa_SidType domain_type;
-
+
if (type == SID_NAME_DOMAIN) {
/* Swap name and type */
tmp = name; name = domain; domain = tmp;
TALLOC_FREE(tmp_ctx);
return false;
}
+ LN_CHECK_TALLOC(domain_new, tmp_ctx);
goto ok;
}
Unmapped users and unmapped groups */
if (!(flags & LOOKUP_NAME_EXPLICIT) && lookup_unix_user_name(name, &sid)) {
- domain = talloc_strdup(tmp_ctx, unix_users_domain_name());
+ domain_new = talloc_strdup(tmp_ctx, unix_users_domain_name());
+ LN_CHECK_TALLOC(domain_new, tmp_ctx);
type = SID_NAME_USER;
goto ok;
}
if (!(flags & LOOKUP_NAME_EXPLICIT) && lookup_unix_group_name(name, &sid)) {
- domain = talloc_strdup(tmp_ctx, unix_groups_domain_name());
+ domain_new = talloc_strdup(tmp_ctx, unix_groups_domain_name());
+ LN_CHECK_TALLOC(domain_new, tmp_ctx);
type = SID_NAME_DOM_GRP;
goto ok;
}
return false;
ok:
- if ((domain == NULL) || (name == NULL)) {
- DEBUG(0, ("talloc failed\n"));
- TALLOC_FREE(tmp_ctx);
- return false;
- }
-
/*
* Hand over the results to the talloc context we've been given.
*/
if (ret_domain != NULL) {
char *tmp_dom;
- if (!(tmp_dom = talloc_strdup(mem_ctx, domain))) {
- DEBUG(0, ("talloc failed\n"));
- TALLOC_FREE(tmp_ctx);
- return false;
+
+ if (domain_new) {
+ tmp_dom = talloc_steal(mem_ctx, (char *)domain_new);
+ } else {
+ tmp_dom = talloc_strdup(mem_ctx, domain);
}
+ LN_CHECK_TALLOC(tmp_dom, tmp_ctx);
+
strupper_m(tmp_dom);
*ret_domain = tmp_dom;
}
const char **ret_domain, const char **ret_name,
DOM_SID *ret_sid, enum lsa_SidType *ret_type)
{
- char *qualified_name;
- const char *p;
-
- /* NB. No winbindd_separator here as lookup_name needs \\' */
- if ((p = strchr_m(full_name, *lp_winbind_separator())) != NULL) {
-
- /* The name is already qualified with a domain. */
-
- if (*lp_winbind_separator() != '\\') {
- char *tmp;
+ char *p;
- /* lookup_name() needs '\\' as a separator */
+ p = strchr_m(full_name, *lp_winbind_separator());
+ if (p != NULL) {
+ char *name;
+ bool res;
- tmp = talloc_strdup(mem_ctx, full_name);
- if (!tmp) {
- return false;
- }
- tmp[p - full_name] = '\\';
- full_name = tmp;
+ name = talloc_strdup(mem_ctx, full_name);
+ if (!name) {
+ DEBUG(0, ("Out of memory!\n"));
+ return false;
}
+ name[PTR_DIFF(p, full_name)] = '\\';
- return lookup_name(mem_ctx, full_name, flags,
- ret_domain, ret_name,
- ret_sid, ret_type);
+ res = lookup_name(mem_ctx, name, flags,
+ ret_domain, ret_name,
+ ret_sid, ret_type);
+ talloc_free(name);
+ return res;
}
/* Try with our own SAM name. */
- qualified_name = talloc_asprintf(mem_ctx, "%s\\%s",
- get_global_sam_name(),
- full_name );
- if (!qualified_name) {
- return false;
- }
-
- if (lookup_name(mem_ctx, qualified_name, flags,
- ret_domain, ret_name,
- ret_sid, ret_type)) {
+ if (lookup_domain_name(mem_ctx,
+ get_global_sam_name(), full_name, flags,
+ ret_domain, ret_name, ret_sid, ret_type)) {
return true;
}
-
+
/* Finally try with "Unix Users" or "Unix Group" */
- qualified_name = talloc_asprintf(mem_ctx, "%s\\%s",
+ return lookup_domain_name(mem_ctx,
flags & LOOKUP_NAME_GROUP ?
unix_groups_domain_name() :
unix_users_domain_name(),
- full_name );
- if (!qualified_name) {
- return false;
- }
+ full_name, flags,
+ ret_domain, ret_name, ret_sid, ret_type);
- return lookup_name(mem_ctx, qualified_name, flags,
- ret_domain, ret_name,
- ret_sid, ret_type);
}
static bool wb_lookup_rids(TALLOC_CTX *mem_ctx,
DOM_SID *sid,
enum lsa_SidType *type)
{
- const char *fullname;
uint32 flags = LOOKUP_NAME_ALL;
+ bool res;
switch ( original_cmd ) {
case WINBINDD_LOOKUPNAME:
DEBUG(10,("winbindd_passdb: limiting name_to_sid() to explicit mappings\n"));
break;
}
-
- if (domain_name && domain_name[0] && strchr_m(name, '\\') == NULL) {
- fullname = talloc_asprintf(mem_ctx, "%s\\%s",
- domain_name, name);
- if (fullname == NULL) {
- return NT_STATUS_NO_MEMORY;
- }
+
+ DEBUG(10, ("looking up name [%s\\%s] (domain\\name) \n",
+ domain_name?domain_name:"(NULL)", name));
+
+ if (strchr_m(name, '\\')) {
+ res = lookup_name(mem_ctx, name, flags, NULL, NULL, sid, type);
} else {
- fullname = name;
+ res = lookup_domain_name(mem_ctx, domain_name, name, flags,
+ NULL, NULL, sid, type);
}
- DEBUG(10, ("Finding fullname %s\n", fullname));
-
- if ( !lookup_name( mem_ctx, fullname, flags, NULL, NULL, sid, type ) ) {
+ if (!res) {
return NT_STATUS_NONE_MAPPED;
}
- DEBUG(10, ("name_to_sid for %s returned %s (%s)\n",
- fullname,
+ DEBUG(10, ("name_to_sid for [%s\\%s] returned %s (%s)\n",
+ domain_name?domain_name:"(NULL)", name,
sid_string_dbg(sid),
sid_type_lookup((uint32)*type)));
-
+
return NT_STATUS_OK;
}