2 Solaris NSS wrapper for winbind
5 Based on Luke Howard's ldap_nss module for Solaris
9 Copyright (C) 1997-2003 Luke Howard.
10 This file is part of the nss_ldap library.
12 The nss_ldap library is free software; you can redistribute it and/or
13 modify it under the terms of the GNU Lesser General Public License as
14 published by the Free Software Foundation; either version 3 of the
15 License, or (at your option) any later version.
17 The nss_ldap library is distributed in the hope that it will be useful,
18 but WITHOUT ANY WARRANTY; without even the implied warranty of
19 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
20 Library General Public License for more details.
22 You should have received a copy of the GNU Lesser General Public
23 License along with the nss_ldap library; see the file COPYING.LIB. If not,
24 see <http://www.gnu.org/licenses/>.
29 #include "winbind_client.h"
31 #include <sys/types.h>
32 #include <sys/param.h>
38 #include <sys/syslog.h>
41 #if defined(HAVE_NSS_COMMON_H) || defined(HPUX)
46 #define NSS_DEBUG(str) syslog(LOG_DEBUG, "nss_winbind: %s", str);
48 #define NSS_DEBUG(str) ;
51 #define NSS_ARGS(args) ((nss_XbyY_args_t *)args)
56 * HP-UX 11 has no definiton of the nss_groupsbymem structure. This
57 * definition is taken from the nss_ldap project at:
58 * http://www.padl.com/OSS/nss_ldap.html
61 struct nss_groupsbymem {
66 int (*str2ent)(const char *instr, int instr_len, void *ent,
67 char *buffer, int buflen);
68 nss_status_t (*process_cstr)(const char *instr, int instr_len,
69 struct nss_groupsbymem *);
75 #define make_pwent_str(dest, src) \
77 if((dest = get_static(buffer, buflen, strlen(src)+1)) == NULL) \
80 NSS_DEBUG("ERANGE error"); \
81 return NSS_STATUS_TRYAGAIN; \
86 static NSS_STATUS _nss_winbind_setpwent_solwrap (nss_backend_t* be, void* args)
88 NSS_DEBUG("_nss_winbind_setpwent_solwrap");
89 return _nss_winbind_setpwent();
93 _nss_winbind_endpwent_solwrap (nss_backend_t * be, void *args)
95 NSS_DEBUG("_nss_winbind_endpwent_solwrap");
96 return _nss_winbind_endpwent();
100 _nss_winbind_getpwent_solwrap (nss_backend_t* be, void *args)
103 char* buffer = NSS_ARGS(args)->buf.buffer;
104 int buflen = NSS_ARGS(args)->buf.buflen;
105 struct passwd* result = (struct passwd*) NSS_ARGS(args)->buf.result;
106 int* errnop = &NSS_ARGS(args)->erange;
109 ret = _nss_winbind_getpwent_r(result, buffer,
112 if(ret == NSS_STATUS_SUCCESS)
114 snprintf(logmsg, 79, "_nss_winbind_getpwent_solwrap: Returning user: %s\n",
117 NSS_ARGS(args)->returnval = (void*) result;
119 snprintf(logmsg, 79, "_nss_winbind_getpwent_solwrap: Returning error: %d.\n",ret);
127 _nss_winbind_getpwnam_solwrap (nss_backend_t* be, void* args)
130 struct passwd* result = (struct passwd*) NSS_ARGS(args)->buf.result;
132 NSS_DEBUG("_nss_winbind_getpwnam_solwrap");
134 ret = _nss_winbind_getpwnam_r (NSS_ARGS(args)->key.name,
136 NSS_ARGS(args)->buf.buffer,
137 NSS_ARGS(args)->buf.buflen,
138 &NSS_ARGS(args)->erange);
139 if(ret == NSS_STATUS_SUCCESS)
140 NSS_ARGS(args)->returnval = (void*) result;
146 _nss_winbind_getpwuid_solwrap(nss_backend_t* be, void* args)
149 struct passwd* result = (struct passwd*) NSS_ARGS(args)->buf.result;
151 NSS_DEBUG("_nss_winbind_getpwuid_solwrap");
152 ret = _nss_winbind_getpwuid_r (NSS_ARGS(args)->key.uid,
154 NSS_ARGS(args)->buf.buffer,
155 NSS_ARGS(args)->buf.buflen,
156 &NSS_ARGS(args)->erange);
157 if(ret == NSS_STATUS_SUCCESS)
158 NSS_ARGS(args)->returnval = (void*) result;
163 static NSS_STATUS _nss_winbind_passwd_destr (nss_backend_t * be, void *args)
166 NSS_DEBUG("_nss_winbind_passwd_destr");
167 return NSS_STATUS_SUCCESS;
170 static nss_backend_op_t passwd_ops[] =
172 _nss_winbind_passwd_destr,
173 _nss_winbind_endpwent_solwrap, /* NSS_DBOP_ENDENT */
174 _nss_winbind_setpwent_solwrap, /* NSS_DBOP_SETENT */
175 _nss_winbind_getpwent_solwrap, /* NSS_DBOP_GETENT */
176 _nss_winbind_getpwnam_solwrap, /* NSS_DBOP_PASSWD_BYNAME */
177 _nss_winbind_getpwuid_solwrap /* NSS_DBOP_PASSWD_BYUID */
181 _nss_winbind_passwd_constr (const char* db_name,
182 const char* src_name,
183 const char* cfg_args)
187 if(!(be = SMB_MALLOC_P(nss_backend_t)) )
190 be->ops = passwd_ops;
191 be->n_ops = sizeof(passwd_ops) / sizeof(nss_backend_op_t);
193 NSS_DEBUG("Initialized nss_winbind passwd backend");
197 /*****************************************************************
198 GROUP database backend
199 *****************************************************************/
201 static NSS_STATUS _nss_winbind_setgrent_solwrap (nss_backend_t* be, void* args)
203 NSS_DEBUG("_nss_winbind_setgrent_solwrap");
204 return _nss_winbind_setgrent();
208 _nss_winbind_endgrent_solwrap (nss_backend_t * be, void *args)
210 NSS_DEBUG("_nss_winbind_endgrent_solwrap");
211 return _nss_winbind_endgrent();
215 _nss_winbind_getgrent_solwrap(nss_backend_t* be, void* args)
218 char* buffer = NSS_ARGS(args)->buf.buffer;
219 int buflen = NSS_ARGS(args)->buf.buflen;
220 struct group* result = (struct group*) NSS_ARGS(args)->buf.result;
221 int* errnop = &NSS_ARGS(args)->erange;
224 ret = _nss_winbind_getgrent_r(result, buffer,
227 if(ret == NSS_STATUS_SUCCESS)
229 snprintf(logmsg, 79, "_nss_winbind_getgrent_solwrap: Returning group: %s\n", result->gr_name);
231 NSS_ARGS(args)->returnval = (void*) result;
233 snprintf(logmsg, 79, "_nss_winbind_getgrent_solwrap: Returning error: %d.\n", ret);
242 _nss_winbind_getgrnam_solwrap(nss_backend_t* be, void* args)
245 struct group* result = (struct group*) NSS_ARGS(args)->buf.result;
247 NSS_DEBUG("_nss_winbind_getgrnam_solwrap");
248 ret = _nss_winbind_getgrnam_r(NSS_ARGS(args)->key.name,
250 NSS_ARGS(args)->buf.buffer,
251 NSS_ARGS(args)->buf.buflen,
252 &NSS_ARGS(args)->erange);
254 if(ret == NSS_STATUS_SUCCESS)
255 NSS_ARGS(args)->returnval = (void*) result;
261 _nss_winbind_getgrgid_solwrap(nss_backend_t* be, void* args)
264 struct group* result = (struct group*) NSS_ARGS(args)->buf.result;
266 NSS_DEBUG("_nss_winbind_getgrgid_solwrap");
267 ret = _nss_winbind_getgrgid_r (NSS_ARGS(args)->key.gid,
269 NSS_ARGS(args)->buf.buffer,
270 NSS_ARGS(args)->buf.buflen,
271 &NSS_ARGS(args)->erange);
273 if(ret == NSS_STATUS_SUCCESS)
274 NSS_ARGS(args)->returnval = (void*) result;
280 _nss_winbind_getgroupsbymember_solwrap(nss_backend_t* be, void* args)
283 struct nss_groupsbymem *gmem = (struct nss_groupsbymem *)args;
285 NSS_DEBUG("_nss_winbind_getgroupsbymember");
287 _nss_winbind_initgroups_dyn(gmem->username,
288 gmem->gid_array[0], /* Primary Group */
296 * If the maximum number of gids have been found, return
297 * SUCCESS so the switch engine will stop searching. Otherwise
298 * return NOTFOUND so nsswitch will continue to get groups
299 * from the remaining database backends specified in the
300 * nsswitch.conf file.
302 return (gmem->numgids == gmem->maxgids ? NSS_STATUS_SUCCESS : NSS_STATUS_NOTFOUND);
306 _nss_winbind_group_destr (nss_backend_t* be, void* args)
309 NSS_DEBUG("_nss_winbind_group_destr");
310 return NSS_STATUS_SUCCESS;
313 static nss_backend_op_t group_ops[] =
315 _nss_winbind_group_destr,
316 _nss_winbind_endgrent_solwrap,
317 _nss_winbind_setgrent_solwrap,
318 _nss_winbind_getgrent_solwrap,
319 _nss_winbind_getgrnam_solwrap,
320 _nss_winbind_getgrgid_solwrap,
321 _nss_winbind_getgroupsbymember_solwrap
325 _nss_winbind_group_constr (const char* db_name,
326 const char* src_name,
327 const char* cfg_args)
331 if(!(be = SMB_MALLOC_P(nss_backend_t)) )
335 be->n_ops = sizeof(group_ops) / sizeof(nss_backend_op_t);
337 NSS_DEBUG("Initialized nss_winbind group backend");
341 /*****************************************************************
342 hosts and ipnodes backend
343 *****************************************************************/
344 #if defined(SUNOS5) /* not compatible with HP-UX */
346 /* this parser is shared between get*byname and get*byaddr, as key type
347 in request is stored in different locations, I had to provide the
348 address family as an argument, caller must free the winbind response. */
351 parse_response(int af, nss_XbyY_args_t* argp, struct winbindd_response *response)
353 struct hostent *he = (struct hostent *)argp->buf.result;
354 char *buffer = argp->buf.buffer;
355 int buflen = argp->buf.buflen;
361 struct in_addr *addrp;
362 #if defined(AF_INET6)
363 struct in6_addr *addrp6;
367 /* response is tab separated list of ip addresses with hostname
368 and newline at the end. so at first we will strip newline
369 then construct list of addresses for hostent.
371 p = strchr(response->data.winsresp, '\n');
373 else {/* it must be broken */
374 argp->h_errno = NO_DATA;
375 return NSS_STATUS_UNAVAIL;
378 for(; p != response->data.winsresp; p--) {
379 if(*p == '\t') addrcount++;
382 if(addrcount == 0) {/* it must be broken */
383 argp->h_errno = NO_DATA;
384 return NSS_STATUS_UNAVAIL;
387 /* allocate space for addresses and h_addr_list */
389 if( he->h_addrtype == AF_INET) {
390 he->h_length = sizeof(struct in_addr);
391 addrp = (struct in_addr *)ROUND_DOWN(buffer + buflen,
392 sizeof(struct in_addr));
394 he->h_addr_list = (char **)ROUND_DOWN(addrp, sizeof (char*));
395 he->h_addr_list -= addrcount+1;
397 #if defined(AF_INET6)
399 he->h_length = sizeof(struct in6_addr);
400 addrp6 = (struct in6_addr *)ROUND_DOWN(buffer + buflen,
401 sizeof(struct in6_addr));
403 he->h_addr_list = (char **)ROUND_DOWN(addrp6, sizeof (char*));
404 he->h_addr_list -= addrcount+1;
408 /* buffer too small?! */
409 if((char *)he->h_addr_list < buffer ) {
411 return NSS_STR_PARSE_ERANGE;
414 data = response->data.winsresp;
415 for( i = 0; i < addrcount; i++) {
416 p = strchr(data, '\t');
417 if(p == NULL) break; /* just in case... */
419 *p = '\0'; /* terminate the string */
420 if(he->h_addrtype == AF_INET) {
421 he->h_addr_list[i] = (char *)&addrp[i];
422 if ((addrp[i].s_addr = inet_addr(data)) == -1) {
424 return NSS_STR_PARSE_ERANGE;
427 #if defined(AF_INET6)
429 he->h_addr_list[i] = (char *)&addrp6[i];
430 if (strchr(data, ':') != 0) {
431 if (inet_pton(AF_INET6, data, &addrp6[i]) != 1) {
433 return NSS_STR_PARSE_ERANGE;
437 if ((in4.s_addr = inet_addr(data)) == -1) {
439 return NSS_STR_PARSE_ERANGE;
441 IN6_INADDR_TO_V4MAPPED(&in4, &addrp6[i]);
448 he->h_addr_list[i] = (char *)NULL;
451 if(len > he->h_addr_list - (char**)argp->buf.buffer) {
453 return NSS_STR_PARSE_ERANGE;
456 /* this is a bit overkill to use _nss_netdb_aliases here since
457 there seems to be no aliases but it will create all data for us */
458 he->h_aliases = _nss_netdb_aliases(data, len, buffer,
459 ((char*) he->h_addr_list) - buffer);
460 if(he->h_aliases == NULL) {
462 ret = NSS_STR_PARSE_ERANGE;
464 he->h_name = he->h_aliases[0];
466 ret = NSS_STR_PARSE_SUCCESS;
469 argp->returnval = (void*)he;
474 _nss_winbind_ipnodes_getbyname(nss_backend_t* be, void *args)
476 nss_XbyY_args_t *argp = (nss_XbyY_args_t*) args;
477 struct winbindd_response response;
478 struct winbindd_request request;
482 ZERO_STRUCT(response);
483 ZERO_STRUCT(request);
485 /* I assume there that AI_ADDRCONFIG cases are handled in nss
486 frontend code, at least it seems done so in solaris...
488 we will give NO_DATA for pure IPv6; IPv4 will be returned for
489 AF_INET or for AF_INET6 and AI_ALL|AI_V4MAPPED we have to map
492 #if defined(AF_INET6)
493 #ifdef HAVE_NSS_XBYY_KEY_IPNODE
494 af = argp->key.ipnode.af_family;
495 if(af == AF_INET6 && argp->key.ipnode.flags == 0) {
496 argp->h_errno = NO_DATA;
497 return NSS_STATUS_UNAVAIL;
500 /* I'm not that sure if this is correct, but... */
505 strncpy(request.data.winsreq, argp->key.name, sizeof(request.data.winsreq) - 1);
506 request.data.winsreq[sizeof(request.data.winsreq) - 1] = '\0';
508 if( (ret = winbindd_request_response(WINBINDD_WINS_BYNAME, &request, &response))
509 == NSS_STATUS_SUCCESS ) {
510 ret = parse_response(af, argp, &response);
513 winbindd_free_response(&response);
518 _nss_winbind_hosts_getbyname(nss_backend_t* be, void *args)
520 nss_XbyY_args_t *argp = (nss_XbyY_args_t*) args;
521 struct winbindd_response response;
522 struct winbindd_request request;
525 ZERO_STRUCT(response);
526 ZERO_STRUCT(request);
528 strncpy(request.data.winsreq, argp->key.name, sizeof(request.data.winsreq) - 1);
529 request.data.winsreq[sizeof(request.data.winsreq) - 1] = '\0';
531 if( (ret = winbindd_request_response(WINBINDD_WINS_BYNAME, &request, &response))
532 == NSS_STATUS_SUCCESS ) {
533 ret = parse_response(AF_INET, argp, &response);
536 winbindd_free_response(&response);
541 _nss_winbind_hosts_getbyaddr(nss_backend_t* be, void *args)
544 struct winbindd_response response;
545 struct winbindd_request request;
546 nss_XbyY_args_t *argp = (nss_XbyY_args_t *)args;
549 ZERO_STRUCT(response);
550 ZERO_STRUCT(request);
552 #if defined(AF_INET6)
553 /* winbindd currently does not resolve IPv6 */
554 if(argp->key.hostaddr.type == AF_INET6) {
555 argp->h_errno = NO_DATA;
556 return NSS_STATUS_UNAVAIL;
559 p = inet_ntop(argp->key.hostaddr.type, argp->key.hostaddr.addr,
560 request.data.winsreq, sizeof request.data.winsreq);
562 snprintf(request.data.winsreq, sizeof request.data.winsreq,
564 ((unsigned char *)argp->key.hostaddr.addr)[0],
565 ((unsigned char *)argp->key.hostaddr.addr)[1],
566 ((unsigned char *)argp->key.hostaddr.addr)[2],
567 ((unsigned char *)argp->key.hostaddr.addr)[3]);
570 ret = winbindd_request_response(WINBINDD_WINS_BYIP, &request, &response);
572 if( ret == NSS_STATUS_SUCCESS) {
573 parse_response(argp->key.hostaddr.type, argp, &response);
575 winbindd_free_response(&response);
579 /* winbind does not provide setent, getent, endent for wins */
581 _nss_winbind_common_endent(nss_backend_t* be, void *args)
583 return (NSS_STATUS_UNAVAIL);
587 _nss_winbind_common_setent(nss_backend_t* be, void *args)
589 return (NSS_STATUS_UNAVAIL);
593 _nss_winbind_common_getent(nss_backend_t* be, void *args)
595 return (NSS_STATUS_UNAVAIL);
598 static nss_backend_t*
599 _nss_winbind_common_constr (nss_backend_op_t ops[], int n_ops)
603 if(!(be = SMB_MALLOC_P(nss_backend_t)) )
613 _nss_winbind_common_destr (nss_backend_t* be, void* args)
616 return NSS_STATUS_SUCCESS;
619 static nss_backend_op_t ipnodes_ops[] = {
620 _nss_winbind_common_destr,
621 _nss_winbind_common_endent,
622 _nss_winbind_common_setent,
623 _nss_winbind_common_getent,
624 _nss_winbind_ipnodes_getbyname,
625 _nss_winbind_hosts_getbyaddr,
629 _nss_winbind_ipnodes_constr(dummy1, dummy2, dummy3)
630 const char *dummy1, *dummy2, *dummy3;
632 return (_nss_winbind_common_constr(ipnodes_ops,
633 sizeof (ipnodes_ops) / sizeof (ipnodes_ops[0])));
636 static nss_backend_op_t host_ops[] = {
637 _nss_winbind_common_destr,
638 _nss_winbind_common_endent,
639 _nss_winbind_common_setent,
640 _nss_winbind_common_getent,
641 _nss_winbind_hosts_getbyname,
642 _nss_winbind_hosts_getbyaddr,
646 _nss_winbind_hosts_constr(dummy1, dummy2, dummy3)
647 const char *dummy1, *dummy2, *dummy3;
649 return (_nss_winbind_common_constr(host_ops,
650 sizeof (host_ops) / sizeof (host_ops[0])));
653 #endif /* defined(SUNOS5) */
654 #endif /* defined(HAVE_NSS_COMMON_H) || defined(HPUX) */
git.samba.org / jra / samba / .git / blob