2 * Unix SMB/CIFS implementation.
3 * RPC Pipe client / server routines
4 * Copyright (C) Andrew Tridgell 1992-2000,
5 * Copyright (C) Jean François Micouleau 1998-2001.
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 2 of the License, or
10 * (at your option) any later version.
12 * This program is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, write to the Free Software
19 * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
23 #include "lib/samba3/samba3.h"
24 #include "lib/tdb/include/tdbutil.h"
25 #include "system/filesys.h"
26 #include "libcli/security/security.h"
28 #define DATABASE_VERSION_V1 1 /* native byte format. */
29 #define DATABASE_VERSION_V2 2 /* le format. */
31 #define GROUP_PREFIX "UNIXGROUP/"
33 /* Alias memberships are stored reverse, as memberships. The performance
34 * critical operation is to determine the aliases a SID is member of, not
35 * listing alias members. So we store a list of alias SIDs a SID is member of
36 * hanging of the member as key.
38 #define MEMBEROF_PREFIX "MEMBEROF/"
40 /****************************************************************************
41 Open the group mapping tdb.
42 ****************************************************************************/
43 NTSTATUS samba3_read_grouptdb(const char *file, TALLOC_CTX *ctx, struct samba3_groupdb *db)
46 TDB_DATA kbuf, dbuf, newkey;
50 tdb = tdb_open(file, 0, TDB_DEFAULT, O_RDONLY, 0600);
52 DEBUG(0,("Failed to open group mapping database\n"));
53 return NT_STATUS_UNSUCCESSFUL;
56 /* Cope with byte-reversed older versions of the db. */
57 vers_id = tdb_fetch_int32(tdb, "INFO/version");
58 if ((vers_id == DATABASE_VERSION_V1) || (IREV(vers_id) == DATABASE_VERSION_V1)) {
59 /* Written on a bigendian machine with old fetch_int code. Save as le. */
60 vers_id = DATABASE_VERSION_V2;
63 if (vers_id != DATABASE_VERSION_V2) {
64 DEBUG(0, ("Group database version mismatch: %d\n", vers_id));
65 return NT_STATUS_UNSUCCESSFUL;
68 db->groupmappings = NULL;
69 db->groupmap_count = 0;
73 for (kbuf = tdb_firstkey(tdb);
75 newkey = tdb_nextkey(tdb, kbuf), safe_free(kbuf.dptr), kbuf=newkey) {
76 struct samba3_groupmapping map;
77 const char *k = (const char *)kbuf.dptr;
79 if (strncmp(k, GROUP_PREFIX, strlen(GROUP_PREFIX)) == 0)
81 dbuf = tdb_fetch(tdb, kbuf);
87 map.sid = dom_sid_parse_talloc(ctx, k+strlen(GROUP_PREFIX));
89 ret = tdb_unpack(tdb, (char *)dbuf.dptr, dbuf.dsize, "dd",
90 &map.gid, &map.sid_name_use);
93 DEBUG(3,("enum_group_mapping: tdb_unpack failure\n"));
97 map.nt_name = talloc_strdup(ctx, (const char *)(dbuf.dptr+ret));
98 map.comment = talloc_strdup(ctx, (const char *)(dbuf.dptr+ret+strlen(map.nt_name)));
100 db->groupmappings = talloc_realloc(ctx, db->groupmappings, struct samba3_groupmapping, db->groupmap_count+1);
102 if (!db->groupmappings)
103 return NT_STATUS_NO_MEMORY;
105 db->groupmappings[db->groupmap_count] = map;
107 db->groupmap_count++;
108 } else if (strncmp(k, MEMBEROF_PREFIX, strlen(MEMBEROF_PREFIX)) == 0)
110 struct samba3_alias alias;
111 const char **member_strlist;
114 dbuf = tdb_fetch(tdb, kbuf);
118 alias.sid = dom_sid_parse_talloc(ctx, k+strlen(MEMBEROF_PREFIX));
119 alias.member_count = 0;
120 alias.members = NULL;
122 member_strlist = str_list_make_shell(ctx, (const char *)dbuf.dptr, " ");
124 for (i = 0; member_strlist[i]; i++) {
125 alias.members = talloc_realloc(ctx, alias.members, struct dom_sid *, alias.member_count+1);
126 alias.members[alias.member_count] = dom_sid_parse_talloc(ctx, member_strlist[i]);
127 alias.member_count++;
130 talloc_free(member_strlist);
132 db->aliases = talloc_realloc(ctx, db->aliases, struct samba3_alias, db->alias_count+1);
133 db->aliases[db->alias_count] = alias;