s4:auth Move struct auth_usersupplied_info to a common location
authorAndrew Bartlett <abartlet@samba.org>
Tue, 4 May 2010 06:44:08 +0000 (16:44 +1000)
committerAndrew Bartlett <abartlet@samba.org>
Sat, 14 Aug 2010 01:58:13 +0000 (11:58 +1000)
This also changes the calling convention slightly - we should always
allocate this with talloc_zero() to allow some elements to be
optional.  Some elements may only make sense in Samba3, which I hope
will use this common structure.

Andrew Bartlett

auth/common_auth.h [new file with mode: 0644]
source4/auth/auth.h
source4/auth/ntlm/auth_simple.c
source4/auth/ntlm/auth_util.c
source4/auth/ntlmssp/ntlmssp_server.c
source4/rpc_server/netlogon/dcerpc_netlogon.c
source4/smb_server/smb/sesssetup.c

diff --git a/auth/common_auth.h b/auth/common_auth.h
new file mode 100644 (file)
index 0000000..5bade69
--- /dev/null
@@ -0,0 +1,63 @@
+/*
+   Unix SMB/CIFS implementation.
+   Standardised Authentication types
+   Copyright (C) Andrew Bartlett 2001-2010
+
+   This program is free software; you can redistribute it and/or modify
+   it under the terms of the GNU General Public License as published by
+   the Free Software Foundation; either version 3 of the License, or
+   (at your option) any later version.
+
+   This program is distributed in the hope that it will be useful,
+   but WITHOUT ANY WARRANTY; without even the implied warranty of
+   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+   GNU General Public License for more details.
+
+   You should have received a copy of the GNU General Public License
+   along with this program.  If not, see <http://www.gnu.org/licenses/>.
+*/
+
+#include "librpc/gen_ndr/krb5pac.h"
+
+#define USER_INFO_CASE_INSENSITIVE_USERNAME 0x01 /* username may be in any case */
+#define USER_INFO_CASE_INSENSITIVE_PASSWORD 0x02 /* password may be in any case */
+#define USER_INFO_DONT_CHECK_UNIX_ACCOUNT   0x04 /* don't check unix account status */
+#define USER_INFO_INTERACTIVE_LOGON         0x08 /* don't check unix account status */
+
+enum auth_password_state {
+       AUTH_PASSWORD_RESPONSE,
+       AUTH_PASSWORD_HASH,
+       AUTH_PASSWORD_PLAIN
+};
+
+struct auth_usersupplied_info
+{
+       const char *workstation_name;
+       const struct tsocket_address *remote_host;
+
+       uint32_t logon_parameters;
+
+       bool mapped_state;
+       bool was_mapped;
+       /* the values the client gives us */
+       struct {
+               const char *account_name;
+               const char *domain_name;
+       } client, mapped;
+
+       enum auth_password_state password_state;
+
+       struct {
+               struct {
+                       DATA_BLOB lanman;
+                       DATA_BLOB nt;
+               } response;
+               struct {
+                       struct samr_Password *lanman;
+                       struct samr_Password *nt;
+               } hash;
+
+               char *plaintext;
+       } password;
+       uint32_t flags;
+};
index 9ce338c8aefda56d3f9dca93c95a90e7070235cc..ce583c871cdbd30f32aa595054928381a1ead329 100644 (file)
@@ -22,6 +22,7 @@
 #define _SAMBA_AUTH_H
 
 #include "librpc/gen_ndr/ndr_krb5pac.h"
 #define _SAMBA_AUTH_H
 
 #include "librpc/gen_ndr/ndr_krb5pac.h"
+#include "../auth/common_auth.h"
 
 extern const char *krbtgt_attrs[];
 extern const char *server_attrs[];
 
 extern const char *krbtgt_attrs[];
 extern const char *server_attrs[];
@@ -43,52 +44,10 @@ struct loadparm_context;
 /* version 0 - till samba4 is stable - metze */
 #define AUTH_INTERFACE_VERSION 0
 
 /* version 0 - till samba4 is stable - metze */
 #define AUTH_INTERFACE_VERSION 0
 
-#define USER_INFO_CASE_INSENSITIVE_USERNAME 0x01 /* username may be in any case */
-#define USER_INFO_CASE_INSENSITIVE_PASSWORD 0x02 /* password may be in any case */
-#define USER_INFO_DONT_CHECK_UNIX_ACCOUNT   0x04 /* don't check unix account status */
-#define USER_INFO_INTERACTIVE_LOGON         0x08 /* don't check unix account status */
-
 #define AUTH_SESSION_INFO_DEFAULT_GROUPS 0x01 /* Add the user to the default world and network groups */
 #define AUTH_SESSION_INFO_AUTHENTICATED  0x02 /* Add the user to the 'authenticated users' group */
 #define AUTH_SESSION_INFO_ENTERPRISE_DC  0x04 /* Add the user to the 'enterprise DC' group */
 
 #define AUTH_SESSION_INFO_DEFAULT_GROUPS 0x01 /* Add the user to the default world and network groups */
 #define AUTH_SESSION_INFO_AUTHENTICATED  0x02 /* Add the user to the 'authenticated users' group */
 #define AUTH_SESSION_INFO_ENTERPRISE_DC  0x04 /* Add the user to the 'enterprise DC' group */
 
-enum auth_password_state {
-       AUTH_PASSWORD_RESPONSE,
-       AUTH_PASSWORD_HASH,
-       AUTH_PASSWORD_PLAIN
-};
-
-struct auth_usersupplied_info
-{
-       const char *workstation_name;
-       const struct tsocket_address *remote_host;
-
-       uint32_t logon_parameters;
-
-       bool mapped_state;
-       /* the values the client gives us */
-       struct {
-               const char *account_name;
-               const char *domain_name;
-       } client, mapped;
-
-       enum auth_password_state password_state;
-
-       union {
-               struct {
-                       DATA_BLOB lanman;
-                       DATA_BLOB nt;
-               } response;
-               struct {
-                       struct samr_Password *lanman;
-                       struct samr_Password *nt;
-               } hash;
-
-               char *plaintext;
-       } password;
-       uint32_t flags;
-};
-
 struct auth_serversupplied_info
 {
        struct dom_sid *account_sid;
 struct auth_serversupplied_info
 {
        struct dom_sid *account_sid;
index 9c8f7f64acf3e6fa97519d7476889f193d172b86..65a08cd92b7ff3348af7dc2b81102949fc81f771 100644 (file)
@@ -56,7 +56,7 @@ _PUBLIC_ NTSTATUS authenticate_username_pw(TALLOC_CTX *mem_ctx,
                return nt_status;
        }
 
                return nt_status;
        }
 
-       user_info = talloc(tmp_ctx, struct auth_usersupplied_info);
+       user_info = talloc_zero(tmp_ctx, struct auth_usersupplied_info);
        if (!user_info) {
                talloc_free(tmp_ctx);
                return NT_STATUS_NO_MEMORY;
        if (!user_info) {
                talloc_free(tmp_ctx);
                return NT_STATUS_NO_MEMORY;
index 7da68a248b707297fba0115b6c86e39bcb08d880..605cd980c6c25251310308977a55dab5ae6fed28 100644 (file)
@@ -74,7 +74,7 @@ NTSTATUS map_user_info(TALLOC_CTX *mem_ctx,
                domain = default_domain;
        }
 
                domain = default_domain;
        }
 
-       *user_info_mapped = talloc(mem_ctx, struct auth_usersupplied_info);
+       *user_info_mapped = talloc_zero(mem_ctx, struct auth_usersupplied_info);
        if (!*user_info_mapped) {
                return NT_STATUS_NO_MEMORY;
        }
        if (!*user_info_mapped) {
                return NT_STATUS_NO_MEMORY;
        }
@@ -124,7 +124,7 @@ NTSTATUS encrypt_user_info(TALLOC_CTX *mem_ctx, struct auth_context *auth_contex
                {
                        uint8_t chal[8];
                        DATA_BLOB chall_blob;
                {
                        uint8_t chal[8];
                        DATA_BLOB chall_blob;
-                       user_info_temp = talloc(mem_ctx, struct auth_usersupplied_info);
+                       user_info_temp = talloc_zero(mem_ctx, struct auth_usersupplied_info);
                        if (!user_info_temp) {
                                return NT_STATUS_NO_MEMORY;
                        }
                        if (!user_info_temp) {
                                return NT_STATUS_NO_MEMORY;
                        }
@@ -190,7 +190,7 @@ NTSTATUS encrypt_user_info(TALLOC_CTX *mem_ctx, struct auth_context *auth_contex
                        struct samr_Password lanman;
                        struct samr_Password nt;
                        
                        struct samr_Password lanman;
                        struct samr_Password nt;
                        
-                       user_info_temp = talloc(mem_ctx, struct auth_usersupplied_info);
+                       user_info_temp = talloc_zero(mem_ctx, struct auth_usersupplied_info);
                        if (!user_info_temp) {
                                return NT_STATUS_NO_MEMORY;
                        }
                        if (!user_info_temp) {
                                return NT_STATUS_NO_MEMORY;
                        }
index 352f8754d6a0f7450d272728d108225c8595fb8b..6e3cf8a8ffff32eec82f9b56066e3375a6303aa9 100644 (file)
@@ -158,7 +158,7 @@ static NTSTATUS auth_ntlmssp_check_password(struct ntlmssp_state *ntlmssp_state,
        NTSTATUS nt_status;
        struct auth_usersupplied_info *user_info;
 
        NTSTATUS nt_status;
        struct auth_usersupplied_info *user_info;
 
-       user_info = talloc(ntlmssp_state, struct auth_usersupplied_info);
+       user_info = talloc_zero(ntlmssp_state, struct auth_usersupplied_info);
        if (!user_info) {
                return NT_STATUS_NO_MEMORY;
        }
        if (!user_info) {
                return NT_STATUS_NO_MEMORY;
        }
index 226a0640bb3a871823b7c0ea808d19cac0af2123..9d8195aaad4afdca99e685103005394a4cd7309c 100644 (file)
@@ -491,13 +491,9 @@ static NTSTATUS dcesrv_netr_LogonSamLogon_base(struct dcesrv_call_state *dce_cal
        struct netr_SamInfo3 *sam3;
        struct netr_SamInfo6 *sam6;
 
        struct netr_SamInfo3 *sam3;
        struct netr_SamInfo6 *sam6;
 
-       user_info = talloc(mem_ctx, struct auth_usersupplied_info);
+       user_info = talloc_zero(mem_ctx, struct auth_usersupplied_info);
        NT_STATUS_HAVE_NO_MEMORY(user_info);
 
        NT_STATUS_HAVE_NO_MEMORY(user_info);
 
-       user_info->flags = 0;
-       user_info->mapped_state = false;
-       user_info->remote_host = NULL;
-
        switch (r->in.logon_level) {
        case NetlogonInteractiveInformation:
        case NetlogonServiceInformation:
        switch (r->in.logon_level) {
        case NetlogonInteractiveInformation:
        case NetlogonServiceInformation:
index 7372347e9ae3b3e1d4fdb7a33aa818014418b3ed..419a8cbf795a2744e0ee96d04fa65b8f9f95b8ed 100644 (file)
@@ -144,7 +144,7 @@ static void sesssetup_old(struct smbsrv_request *req, union smb_sesssetup *sess)
                if (!remote_machine) goto nomem;
        }
 
                if (!remote_machine) goto nomem;
        }
 
-       user_info = talloc(req, struct auth_usersupplied_info);
+       user_info = talloc_zero(req, struct auth_usersupplied_info);
        if (!user_info) goto nomem;
        
        user_info->mapped_state = false;
        if (!user_info) goto nomem;
        
        user_info->mapped_state = false;
@@ -319,7 +319,7 @@ static void sesssetup_nt1(struct smbsrv_request *req, union smb_sesssetup *sess)
                if (!remote_machine) goto nomem;
        }
 
                if (!remote_machine) goto nomem;
        }
 
-       user_info = talloc(req, struct auth_usersupplied_info);
+       user_info = talloc_zero(req, struct auth_usersupplied_info);
        if (!user_info) goto nomem;
 
        user_info->mapped_state = false;
        if (!user_info) goto nomem;
 
        user_info->mapped_state = false;