root/source3/winbindd/winbindd_async.c

/* [<][>][^][v][top][bottom][index][help] */

DEFINITIONS

This source file includes following definitions.
  1. do_async_recv
  2. do_async
  3. do_async_domain
  4. lookupsid_recv2
  5. lookupsid_recv
  6. winbindd_lookupsid_async
  7. winbindd_dual_lookupsid
  8. lookupname_recv2
  9. lookupname_recv
  10. winbindd_lookupname_async
  11. winbindd_dual_lookupname
  12. listent_recv
  13. winbindd_listent_async
  14. winbindd_dual_list_users
  15. winbindd_dual_list_groups
  16. print_sidlist
  17. parse_sidlist
  18. parse_ridlist
  19. winbindd_dual_lookuprids
  20. getsidaliases_recv
  21. winbindd_getsidaliases_async
  22. winbindd_gettoken_async
  23. gettoken_recvdomgroups
  24. gettoken_recvaliases
  25. query_user_recv
  26. query_user_async

   1 /* 
   2    Unix SMB/CIFS implementation.
   3 
   4    Async helpers for blocking functions
   5 
   6    Copyright (C) Volker Lendecke 2005
   7    Copyright (C) Gerald Carter 2006
   8 
   9    The helpers always consist of three functions: 
  10 
  11    * A request setup function that takes the necessary parameters together
  12      with a continuation function that is to be called upon completion
  13 
  14    * A private continuation function that is internal only. This is to be
  15      called by the lower-level functions in do_async(). Its only task is to
  16      properly call the continuation function named above.
  17 
  18    * A worker function that is called inside the appropriate child process.
  19 
  20    This program is free software; you can redistribute it and/or modify
  21    it under the terms of the GNU General Public License as published by
  22    the Free Software Foundation; either version 3 of the License, or
  23    (at your option) any later version.
  24 
  25    This program is distributed in the hope that it will be useful,
  26    but WITHOUT ANY WARRANTY; without even the implied warranty of
  27    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  28    GNU General Public License for more details.
  29 
  30    You should have received a copy of the GNU General Public License
  31    along with this program.  If not, see <http://www.gnu.org/licenses/>.
  32 */
  33 
  34 #include "includes.h"
  35 #include "winbindd.h"
  36 
  37 #undef DBGC_CLASS
  38 #define DBGC_CLASS DBGC_WINBIND
  39 
  40 struct do_async_state {
  41         TALLOC_CTX *mem_ctx;
  42         struct winbindd_request request;
  43         struct winbindd_response response;
  44         void (*cont)(TALLOC_CTX *mem_ctx,
  45                      bool success,
  46                      struct winbindd_response *response,
  47                      void *c, void *private_data);
  48         void *c, *private_data;
  49 };
  50 
  51 static void do_async_recv(void *private_data, bool success)
     /* [<][>][^][v][top][bottom][index][help] */
  52 {
  53         struct do_async_state *state =
  54                 talloc_get_type_abort(private_data, struct do_async_state);
  55 
  56         state->cont(state->mem_ctx, success, &state->response,
  57                     state->c, state->private_data);
  58 }
  59 
  60 void do_async(TALLOC_CTX *mem_ctx, struct winbindd_child *child,
     /* [<][>][^][v][top][bottom][index][help] */
  61               const struct winbindd_request *request,
  62               void (*cont)(TALLOC_CTX *mem_ctx, bool success,
  63                            struct winbindd_response *response,
  64                            void *c, void *private_data),
  65               void *c, void *private_data)
  66 {
  67         struct do_async_state *state;
  68 
  69         state = TALLOC_ZERO_P(mem_ctx, struct do_async_state);
  70         if (state == NULL) {
  71                 DEBUG(0, ("talloc failed\n"));
  72                 cont(mem_ctx, False, NULL, c, private_data);
  73                 return;
  74         }
  75 
  76         state->mem_ctx = mem_ctx;
  77         state->request = *request;
  78         state->request.length = sizeof(state->request);
  79         state->cont = cont;
  80         state->c = c;
  81         state->private_data = private_data;
  82 
  83         async_request(mem_ctx, child, &state->request,
  84                       &state->response, do_async_recv, state);
  85 }
  86 
  87 static void do_async_domain(TALLOC_CTX *mem_ctx, struct winbindd_domain *domain,
     /* [<][>][^][v][top][bottom][index][help] */
  88                             const struct winbindd_request *request,
  89                             void (*cont)(TALLOC_CTX *mem_ctx, bool success,
  90                                          struct winbindd_response *response,
  91                                          void *c, void *private_data),
  92                             void *c, void *private_data)
  93 {
  94         struct do_async_state *state;
  95 
  96         state = TALLOC_ZERO_P(mem_ctx, struct do_async_state);
  97         if (state == NULL) {
  98                 DEBUG(0, ("talloc failed\n"));
  99                 cont(mem_ctx, False, NULL, c, private_data);
 100                 return;
 101         }
 102 
 103         state->mem_ctx = mem_ctx;
 104         state->request = *request;
 105         state->request.length = sizeof(state->request);
 106         state->cont = cont;
 107         state->c = c;
 108         state->private_data = private_data;
 109 
 110         async_domain_request(mem_ctx, domain, &state->request,
 111                              &state->response, do_async_recv, state);
 112 }
 113 
 114 struct lookupsid_state {
 115         DOM_SID sid;    
 116         void *caller_private_data;
 117 };
 118 
 119 
 120 static void lookupsid_recv2(TALLOC_CTX *mem_ctx, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 121                            struct winbindd_response *response,
 122                            void *c, void *private_data)
 123 {
 124         void (*cont)(void *priv, bool succ, const char *dom_name,
 125                      const char *name, enum lsa_SidType type) =
 126                 (void (*)(void *, bool, const char *, const char *,
 127                           enum lsa_SidType))c;
 128         struct lookupsid_state *s = talloc_get_type_abort(private_data, 
 129                                                           struct lookupsid_state);
 130 
 131         if (!success) {
 132                 DEBUG(5, ("Could not trigger lookupsid\n"));
 133                 cont(s->caller_private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
 134                 return;
 135         }
 136 
 137         if (response->result != WINBINDD_OK) {
 138                 DEBUG(5, ("lookupsid (forest root) returned an error\n"));              
 139                 cont(s->caller_private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
 140                 return;
 141         }
 142 
 143         cont(s->caller_private_data, True, response->data.name.dom_name,
 144              response->data.name.name,
 145              (enum lsa_SidType)response->data.name.type);
 146 }
 147 
 148 static void lookupsid_recv(TALLOC_CTX *mem_ctx, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 149                            struct winbindd_response *response,
 150                            void *c, void *private_data)
 151 {
 152         void (*cont)(void *priv, bool succ, const char *dom_name,
 153                      const char *name, enum lsa_SidType type) =
 154                 (void (*)(void *, bool, const char *, const char *,
 155                           enum lsa_SidType))c;
 156         struct lookupsid_state *s = talloc_get_type_abort(private_data, 
 157                                                           struct lookupsid_state);
 158 
 159         if (!success) {
 160                 DEBUG(5, ("Could not trigger lookupsid\n"));
 161                 cont(s->caller_private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
 162                 return;
 163         }
 164 
 165         if (response->result != WINBINDD_OK) {
 166                 /* Try again using the forest root */
 167                 struct winbindd_domain *root_domain = find_root_domain();
 168                 struct winbindd_request request;
 169 
 170                 if ( !root_domain ) {
 171                         DEBUG(5,("lookupsid_recv: unable to determine forest root\n"));
 172                         cont(s->caller_private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
 173                         return;
 174                 }
 175 
 176                 ZERO_STRUCT(request);
 177                 request.cmd = WINBINDD_LOOKUPSID;
 178                 sid_to_fstring(request.data.sid, &s->sid);
 179 
 180                 do_async_domain(mem_ctx, root_domain, &request, lookupsid_recv2,
 181                                 (void *)cont, s);
 182 
 183                 return;
 184         }
 185 
 186         cont(s->caller_private_data, True, response->data.name.dom_name,
 187              response->data.name.name,
 188              (enum lsa_SidType)response->data.name.type);
 189 }
 190 
 191 void winbindd_lookupsid_async(TALLOC_CTX *mem_ctx, const DOM_SID *sid,
     /* [<][>][^][v][top][bottom][index][help] */
 192                               void (*cont)(void *private_data, bool success,
 193                                            const char *dom_name,
 194                                            const char *name,
 195                                            enum lsa_SidType type),
 196                               void *private_data)
 197 {
 198         struct winbindd_domain *domain;
 199         struct winbindd_request request;
 200         struct lookupsid_state *s;      
 201 
 202         domain = find_lookup_domain_from_sid(sid);
 203         if (domain == NULL) {
 204                 DEBUG(5, ("Could not find domain for sid %s\n",
 205                           sid_string_dbg(sid)));
 206                 cont(private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
 207                 return;
 208         }
 209 
 210         ZERO_STRUCT(request);
 211         request.cmd = WINBINDD_LOOKUPSID;
 212         sid_to_fstring(request.data.sid, sid);
 213 
 214         if ( (s = TALLOC_ZERO_P(mem_ctx, struct lookupsid_state)) == NULL ) {
 215                 DEBUG(0, ("winbindd_lookupsid_async: talloc failed\n"));
 216                 cont(private_data, False, NULL, NULL, SID_NAME_UNKNOWN);
 217                 return;
 218         }
 219 
 220         sid_copy( &s->sid, sid );       
 221         s->caller_private_data = private_data;  
 222 
 223         do_async_domain(mem_ctx, domain, &request, lookupsid_recv,
 224                         (void *)cont, s);
 225 }
 226 
 227 enum winbindd_result winbindd_dual_lookupsid(struct winbindd_domain *domain,
     /* [<][>][^][v][top][bottom][index][help] */
 228                                              struct winbindd_cli_state *state)
 229 {
 230         enum lsa_SidType type;
 231         DOM_SID sid;
 232         char *name;
 233         char *dom_name;
 234 
 235         /* Ensure null termination */
 236         state->request.data.sid[sizeof(state->request.data.sid)-1]='\0';
 237 
 238         DEBUG(3, ("[%5lu]: lookupsid %s\n", (unsigned long)state->pid, 
 239                   state->request.data.sid));
 240 
 241         /* Lookup sid from PDC using lsa_lookup_sids() */
 242 
 243         if (!string_to_sid(&sid, state->request.data.sid)) {
 244                 DEBUG(5, ("%s not a SID\n", state->request.data.sid));
 245                 return WINBINDD_ERROR;
 246         }
 247 
 248         /* Lookup the sid */
 249 
 250         if (!winbindd_lookup_name_by_sid(state->mem_ctx, domain, &sid, 
 251                                          &dom_name, &name, &type)) 
 252         {
 253                 TALLOC_FREE(dom_name);
 254                 TALLOC_FREE(name);
 255                 return WINBINDD_ERROR;
 256         }
 257 
 258         fstrcpy(state->response.data.name.dom_name, dom_name);
 259         fstrcpy(state->response.data.name.name, name);
 260         state->response.data.name.type = type;
 261 
 262         TALLOC_FREE(dom_name);
 263         TALLOC_FREE(name);
 264         return WINBINDD_OK;
 265 }
 266 
 267 /********************************************************************
 268  This is the second callback after contacting the forest root
 269 ********************************************************************/
 270 
 271 struct lookupname_state {
 272         char *dom_name;
 273         char *name;
 274         void *caller_private_data;
 275 };
 276 
 277 
 278 static void lookupname_recv2(TALLOC_CTX *mem_ctx, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 279                             struct winbindd_response *response,
 280                             void *c, void *private_data)
 281 {
 282         void (*cont)(void *priv, bool succ, const DOM_SID *sid,
 283                      enum lsa_SidType type) =
 284                 (void (*)(void *, bool, const DOM_SID *, enum lsa_SidType))c;
 285         DOM_SID sid;
 286         struct lookupname_state *s = talloc_get_type_abort( private_data,
 287                                                             struct lookupname_state );
 288 
 289         if (!success) {
 290                 DEBUG(5, ("Could not trigger lookup_name\n"));
 291                 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
 292                 return;
 293         }
 294 
 295         if (response->result != WINBINDD_OK) {
 296                 DEBUG(5, ("lookup_name returned an error\n"));
 297                 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
 298                 return;
 299         }
 300 
 301         if (!string_to_sid(&sid, response->data.sid.sid)) {
 302                 DEBUG(0, ("Could not convert string %s to sid\n",
 303                           response->data.sid.sid));
 304                 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
 305                 return;
 306         }
 307 
 308         cont(s->caller_private_data, True, &sid,
 309              (enum lsa_SidType)response->data.sid.type);
 310 }
 311 
 312 /********************************************************************
 313  This is the first callback after contacting our own domain
 314 ********************************************************************/
 315 
 316 static void lookupname_recv(TALLOC_CTX *mem_ctx, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 317                             struct winbindd_response *response,
 318                             void *c, void *private_data)
 319 {
 320         void (*cont)(void *priv, bool succ, const DOM_SID *sid,
 321                      enum lsa_SidType type) =
 322                 (void (*)(void *, bool, const DOM_SID *, enum lsa_SidType))c;
 323         DOM_SID sid;
 324         struct lookupname_state *s = talloc_get_type_abort( private_data,
 325                                                             struct lookupname_state );  
 326 
 327         if (!success) {
 328                 DEBUG(5, ("lookupname_recv: lookup_name() failed!\n"));
 329                 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
 330                 return;
 331         }
 332 
 333         if (response->result != WINBINDD_OK) {
 334                 /* Try again using the forest root */
 335                 struct winbindd_domain *root_domain = find_root_domain();
 336                 struct winbindd_request request;
 337 
 338                 if ( !root_domain ) {
 339                         DEBUG(5,("lookupname_recv: unable to determine forest root\n"));
 340                         cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
 341                         return;
 342                 }
 343 
 344                 ZERO_STRUCT(request);
 345                 request.cmd = WINBINDD_LOOKUPNAME;
 346 
 347                 fstrcpy( request.data.name.dom_name, s->dom_name );
 348                 fstrcpy( request.data.name.name, s->name );
 349 
 350                 do_async_domain(mem_ctx, root_domain, &request, lookupname_recv2,
 351                                 (void *)cont, s);
 352 
 353                 return;
 354         }
 355 
 356         if (!string_to_sid(&sid, response->data.sid.sid)) {
 357                 DEBUG(0, ("Could not convert string %s to sid\n",
 358                           response->data.sid.sid));
 359                 cont(s->caller_private_data, False, NULL, SID_NAME_UNKNOWN);
 360                 return;
 361         }
 362 
 363         cont(s->caller_private_data, True, &sid,
 364              (enum lsa_SidType)response->data.sid.type);
 365 }
 366 
 367 /********************************************************************
 368  The lookup name call first contacts a DC in its own domain
 369  and fallbacks to contact a DC if the forest in our domain doesn't
 370  know the name.
 371 ********************************************************************/
 372 
 373 void winbindd_lookupname_async(TALLOC_CTX *mem_ctx,
     /* [<][>][^][v][top][bottom][index][help] */
 374                                const char *dom_name, const char *name,
 375                                void (*cont)(void *private_data, bool success,
 376                                             const DOM_SID *sid,
 377                                             enum lsa_SidType type),
 378                                enum winbindd_cmd orig_cmd,
 379                                void *private_data)
 380 {
 381         struct winbindd_request request;
 382         struct winbindd_domain *domain;
 383         struct lookupname_state *s;
 384 
 385         if ( (domain = find_lookup_domain_from_name(dom_name)) == NULL ) {
 386                 DEBUG(5, ("Could not find domain for name '%s'\n", dom_name));
 387                 cont(private_data, False, NULL, SID_NAME_UNKNOWN);
 388                 return;
 389         }
 390 
 391         ZERO_STRUCT(request);
 392         request.cmd = WINBINDD_LOOKUPNAME;
 393         request.original_cmd = orig_cmd;
 394         fstrcpy(request.data.name.dom_name, dom_name);
 395         fstrcpy(request.data.name.name, name);
 396 
 397         if ( (s = TALLOC_ZERO_P(mem_ctx, struct lookupname_state)) == NULL ) {
 398                 DEBUG(0, ("winbindd_lookupname_async: talloc failed\n"));
 399                 cont(private_data, False, NULL, SID_NAME_UNKNOWN);
 400                 return;
 401         }
 402 
 403         s->dom_name = talloc_strdup( s, dom_name );
 404         s->name     = talloc_strdup( s, name );
 405         if (!s->dom_name || !s->name) {
 406                 cont(private_data, False, NULL, SID_NAME_UNKNOWN);
 407                 return;
 408         }
 409 
 410         s->caller_private_data = private_data;
 411 
 412         do_async_domain(mem_ctx, domain, &request, lookupname_recv,
 413                         (void *)cont, s);
 414 }
 415 
 416 enum winbindd_result winbindd_dual_lookupname(struct winbindd_domain *domain,
     /* [<][>][^][v][top][bottom][index][help] */
 417                                               struct winbindd_cli_state *state)
 418 {
 419         enum lsa_SidType type;
 420         char *name_domain, *name_user;
 421         DOM_SID sid;
 422         char *p;
 423 
 424         /* Ensure null termination */
 425         state->request.data.name.dom_name[sizeof(state->request.data.name.dom_name)-1]='\0';
 426 
 427         /* Ensure null termination */
 428         state->request.data.name.name[sizeof(state->request.data.name.name)-1]='\0';
 429 
 430         /* cope with the name being a fully qualified name */
 431         p = strstr(state->request.data.name.name, lp_winbind_separator());
 432         if (p) {
 433                 *p = 0;
 434                 name_domain = state->request.data.name.name;
 435                 name_user = p+1;
 436         } else {
 437                 name_domain = state->request.data.name.dom_name;
 438                 name_user = state->request.data.name.name;
 439         }
 440 
 441         DEBUG(3, ("[%5lu]: lookupname %s%s%s\n", (unsigned long)state->pid,
 442                   name_domain, lp_winbind_separator(), name_user));
 443 
 444         /* Lookup name from DC using lsa_lookup_names() */
 445         if (!winbindd_lookup_sid_by_name(state->mem_ctx, state->request.original_cmd, domain, name_domain,
 446                                          name_user, &sid, &type)) {
 447                 return WINBINDD_ERROR;
 448         }
 449 
 450         sid_to_fstring(state->response.data.sid.sid, &sid);
 451         state->response.data.sid.type = type;
 452 
 453         return WINBINDD_OK;
 454 }
 455 
 456 /* This is the first callback after enumerating users/groups from a domain */
 457 static void listent_recv(TALLOC_CTX *mem_ctx, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 458                             struct winbindd_response *response,
 459                             void *c, void *private_data)
 460 {
 461         void (*cont)(void *priv, bool succ, fstring dom_name, char *data) =
 462                 (void (*)(void *, bool, fstring, char*))c;
 463 
 464         if (!success || response->result != WINBINDD_OK) {
 465                 DEBUG(5, ("list_ent() failed!\n"));
 466                 cont(private_data, False, response->data.name.dom_name, NULL);
 467                 return;
 468         }
 469 
 470         cont(private_data, True, response->data.name.dom_name,
 471              (char *)response->extra_data.data);
 472 
 473         SAFE_FREE(response->extra_data.data);
 474 }
 475 
 476 /* Request the name of all users/groups in a single domain */
 477 void winbindd_listent_async(TALLOC_CTX *mem_ctx,
     /* [<][>][^][v][top][bottom][index][help] */
 478                                struct winbindd_domain *domain,
 479                                void (*cont)(void *private_data, bool success,
 480                                      fstring dom_name, char* extra_data),
 481                                void *private_data, enum ent_type type)
 482 {
 483         struct winbindd_request request;
 484 
 485         ZERO_STRUCT(request);
 486         if (type == LIST_USERS)
 487                 request.cmd = WINBINDD_LIST_USERS;
 488         else if (type == LIST_GROUPS)
 489                 request.cmd = WINBINDD_LIST_GROUPS;
 490 
 491         do_async_domain(mem_ctx, domain, &request, listent_recv,
 492                         (void *)cont, private_data);
 493 }
 494 
 495 enum winbindd_result winbindd_dual_list_users(struct winbindd_domain *domain,
     /* [<][>][^][v][top][bottom][index][help] */
 496                                               struct winbindd_cli_state *state)
 497 {
 498         WINBIND_USERINFO *info;
 499         NTSTATUS status;
 500         struct winbindd_methods *methods;
 501         uint32 num_entries = 0;
 502         char *extra_data = NULL;
 503         uint32_t extra_data_len = 0, i;
 504 
 505         /* Must copy domain into response first for debugging in parent */
 506         fstrcpy(state->response.data.name.dom_name, domain->name);
 507 
 508         /* Query user info */
 509         methods = domain->methods;
 510         status = methods->query_user_list(domain, state->mem_ctx, 
 511                                           &num_entries, &info);
 512 
 513         if (!NT_STATUS_IS_OK(status))
 514                 return WINBINDD_ERROR;
 515 
 516         if (num_entries == 0)
 517                 return WINBINDD_OK;
 518 
 519         /* Allocate some memory for extra data.  Note that we limit
 520            account names to sizeof(fstring) = 256 characters.           
 521            +1 for the ',' between group names */
 522         extra_data = (char *)SMB_REALLOC(extra_data, 
 523                 (sizeof(fstring) + 1) * num_entries);
 524 
 525         if (!extra_data) {
 526                 DEBUG(0,("failed to enlarge buffer!\n"));
 527                 return WINBINDD_ERROR;
 528         }
 529 
 530         /* Pack user list into extra data fields */
 531         for (i = 0; i < num_entries; i++) {
 532                 fstring acct_name, name;
 533 
 534                 if (info[i].acct_name == NULL)
 535                         fstrcpy(acct_name, "");
 536                 else
 537                         fstrcpy(acct_name, info[i].acct_name);
 538 
 539                 fill_domain_username(name, domain->name, acct_name, True);
 540                 /* Append to extra data */
 541                 memcpy(&extra_data[extra_data_len], name, strlen(name));
 542                 extra_data_len += strlen(name);
 543                 extra_data[extra_data_len++] = ',';
 544         }   
 545 
 546         /* Assign extra_data fields in response structure */
 547         if (extra_data) {
 548                 /* remove trailing ',' */
 549                 extra_data[extra_data_len - 1] = '\0';
 550                 state->response.extra_data.data = extra_data;
 551                 state->response.length += extra_data_len;
 552         }
 553 
 554         return WINBINDD_OK;
 555 }
 556 
 557 enum winbindd_result winbindd_dual_list_groups(struct winbindd_domain *domain,
     /* [<][>][^][v][top][bottom][index][help] */
 558                                                struct winbindd_cli_state *state)
 559 {
 560         struct getent_state groups;
 561         char *extra_data = NULL;
 562         uint32_t extra_data_len = 0, i;
 563 
 564         ZERO_STRUCT(groups);
 565 
 566         /* Must copy domain into response first for debugging in parent */
 567         fstrcpy(state->response.data.name.dom_name, domain->name);
 568         fstrcpy(groups.domain_name, domain->name);
 569 
 570         /* Get list of sam groups */
 571         if (!get_sam_group_entries(&groups)) {
 572                 /* this domain is empty or in an error state */
 573                 return WINBINDD_ERROR;
 574         }
 575 
 576         /* Allocate some memory for extra data.  Note that we limit
 577            account names to sizeof(fstring) = 256 characters.
 578            +1 for the ',' between group names */
 579         extra_data = (char *)SMB_REALLOC(extra_data,
 580                 (sizeof(fstring) + 1) * groups.num_sam_entries);
 581 
 582         if (!extra_data) {
 583                 DEBUG(0,("failed to enlarge buffer!\n"));
 584                 SAFE_FREE(groups.sam_entries);
 585                 return WINBINDD_ERROR;
 586         }
 587 
 588         /* Pack group list into extra data fields */
 589         for (i = 0; i < groups.num_sam_entries; i++) {
 590                 char *group_name = ((struct acct_info *)
 591                                     groups.sam_entries)[i].acct_name;
 592                 fstring name;
 593 
 594                 fill_domain_username(name, domain->name, group_name, True);
 595                 /* Append to extra data */
 596                 memcpy(&extra_data[extra_data_len], name, strlen(name));
 597                 extra_data_len += strlen(name);
 598                 extra_data[extra_data_len++] = ',';
 599         }
 600 
 601         SAFE_FREE(groups.sam_entries);
 602 
 603         /* Assign extra_data fields in response structure */
 604         if (extra_data) {
 605                 /* remove trailing ',' */
 606                 extra_data[extra_data_len - 1] = '\0';
 607                 state->response.extra_data.data = extra_data;
 608                 state->response.length += extra_data_len;
 609         }
 610 
 611         return WINBINDD_OK;
 612 }
 613 
 614 bool print_sidlist(TALLOC_CTX *mem_ctx, const DOM_SID *sids,
     /* [<][>][^][v][top][bottom][index][help] */
 615                    size_t num_sids, char **result, ssize_t *len)
 616 {
 617         size_t i;
 618         size_t buflen = 0;
 619 
 620         *len = 0;
 621         *result = NULL;
 622         for (i=0; i<num_sids; i++) {
 623                 fstring tmp;
 624                 sprintf_append(mem_ctx, result, len, &buflen,
 625                                "%s\n", sid_to_fstring(tmp, &sids[i]));
 626         }
 627 
 628         if ((num_sids != 0) && (*result == NULL)) {
 629                 return False;
 630         }
 631 
 632         return True;
 633 }
 634 
 635 bool parse_sidlist(TALLOC_CTX *mem_ctx, char *sidstr,
     /* [<][>][^][v][top][bottom][index][help] */
 636                    DOM_SID **sids, size_t *num_sids)
 637 {
 638         char *p, *q;
 639 
 640         p = sidstr;
 641         if (p == NULL)
 642                 return False;
 643 
 644         while (p[0] != '\0') {
 645                 DOM_SID sid;
 646                 q = strchr(p, '\n');
 647                 if (q == NULL) {
 648                         DEBUG(0, ("Got invalid sidstr: %s\n", p));
 649                         return False;
 650                 }
 651                 *q = '\0';
 652                 q += 1;
 653                 if (!string_to_sid(&sid, p)) {
 654                         DEBUG(0, ("Could not parse sid %s\n", p));
 655                         return False;
 656                 }
 657                 if (!NT_STATUS_IS_OK(add_sid_to_array(mem_ctx, &sid, sids,
 658                                                       num_sids)))
 659                 {
 660                         return False;
 661                 }
 662                 p = q;
 663         }
 664         return True;
 665 }
 666 
 667 static bool parse_ridlist(TALLOC_CTX *mem_ctx, char *ridstr,
     /* [<][>][^][v][top][bottom][index][help] */
 668                           uint32 **rids, size_t *num_rids)
 669 {
 670         char *p;
 671 
 672         p = ridstr;
 673         if (p == NULL)
 674                 return False;
 675 
 676         while (p[0] != '\0') {
 677                 uint32 rid;
 678                 char *q;
 679                 rid = strtoul(p, &q, 10);
 680                 if (*q != '\n') {
 681                         DEBUG(0, ("Got invalid ridstr: %s\n", p));
 682                         return False;
 683                 }
 684                 p = q+1;
 685                 ADD_TO_ARRAY(mem_ctx, uint32, rid, rids, num_rids);
 686         }
 687         return True;
 688 }
 689 
 690 enum winbindd_result winbindd_dual_lookuprids(struct winbindd_domain *domain,
     /* [<][>][^][v][top][bottom][index][help] */
 691                                               struct winbindd_cli_state *state)
 692 {
 693         uint32 *rids = NULL;
 694         size_t i, buflen, num_rids = 0;
 695         ssize_t len;
 696         DOM_SID domain_sid;
 697         char *domain_name;
 698         char **names;
 699         enum lsa_SidType *types;
 700         NTSTATUS status;
 701         char *result;
 702 
 703         DEBUG(10, ("Looking up RIDs for domain %s (%s)\n",
 704                    state->request.domain_name,
 705                    state->request.data.sid));
 706 
 707         if (!parse_ridlist(state->mem_ctx, state->request.extra_data.data,
 708                            &rids, &num_rids)) {
 709                 DEBUG(5, ("Could not parse ridlist\n"));
 710                 return WINBINDD_ERROR;
 711         }
 712 
 713         if (!string_to_sid(&domain_sid, state->request.data.sid)) {
 714                 DEBUG(5, ("Could not parse domain sid %s\n",
 715                           state->request.data.sid));
 716                 return WINBINDD_ERROR;
 717         }
 718 
 719         status = domain->methods->rids_to_names(domain, state->mem_ctx,
 720                                                 &domain_sid, rids, num_rids,
 721                                                 &domain_name,
 722                                                 &names, &types);
 723 
 724         if (!NT_STATUS_IS_OK(status) &&
 725             !NT_STATUS_EQUAL(status, STATUS_SOME_UNMAPPED)) {
 726                 return WINBINDD_ERROR;
 727         }
 728 
 729         len = 0;
 730         buflen = 0;
 731         result = NULL;
 732 
 733         for (i=0; i<num_rids; i++) {
 734                 sprintf_append(state->mem_ctx, &result, &len, &buflen,
 735                                "%d %s\n", types[i], names[i]);
 736         }
 737 
 738         fstrcpy(state->response.data.domain_name, domain_name);
 739 
 740         if (result != NULL) {
 741                 state->response.extra_data.data = SMB_STRDUP(result);
 742                 if (!state->response.extra_data.data) {
 743                         return WINBINDD_ERROR;
 744                 }
 745                 state->response.length += len+1;
 746         }
 747 
 748         return WINBINDD_OK;
 749 }
 750 
 751 static void getsidaliases_recv(TALLOC_CTX *mem_ctx, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 752                                struct winbindd_response *response,
 753                                void *c, void *private_data)
 754 {
 755         void (*cont)(void *priv, bool succ,
 756                      DOM_SID *aliases, size_t num_aliases) =
 757                 (void (*)(void *, bool, DOM_SID *, size_t))c;
 758         char *aliases_str;
 759         DOM_SID *sids = NULL;
 760         size_t num_sids = 0;
 761 
 762         if (!success) {
 763                 DEBUG(5, ("Could not trigger getsidaliases\n"));
 764                 cont(private_data, success, NULL, 0);
 765                 return;
 766         }
 767 
 768         if (response->result != WINBINDD_OK) {
 769                 DEBUG(5, ("getsidaliases returned an error\n"));
 770                 cont(private_data, False, NULL, 0);
 771                 return;
 772         }
 773 
 774         aliases_str = (char *)response->extra_data.data;
 775 
 776         if (aliases_str == NULL) {
 777                 DEBUG(10, ("getsidaliases return 0 SIDs\n"));
 778                 cont(private_data, True, NULL, 0);
 779                 return;
 780         }
 781 
 782         if (!parse_sidlist(mem_ctx, aliases_str, &sids, &num_sids)) {
 783                 DEBUG(0, ("Could not parse sids\n"));
 784                 cont(private_data, False, NULL, 0);
 785                 return;
 786         }
 787 
 788         SAFE_FREE(response->extra_data.data);
 789 
 790         cont(private_data, True, sids, num_sids);
 791 }
 792 
 793 void winbindd_getsidaliases_async(struct winbindd_domain *domain,
     /* [<][>][^][v][top][bottom][index][help] */
 794                                   TALLOC_CTX *mem_ctx,
 795                                   const DOM_SID *sids, size_t num_sids,
 796                                   void (*cont)(void *private_data,
 797                                                bool success,
 798                                                const DOM_SID *aliases,
 799                                                size_t num_aliases),
 800                                   void *private_data)
 801 {
 802         struct winbindd_request request;
 803         char *sidstr = NULL;
 804         ssize_t len;
 805 
 806         if (num_sids == 0) {
 807                 cont(private_data, True, NULL, 0);
 808                 return;
 809         }
 810 
 811         if (!print_sidlist(mem_ctx, sids, num_sids, &sidstr, &len)) {
 812                 cont(private_data, False, NULL, 0);
 813                 return;
 814         }
 815 
 816         ZERO_STRUCT(request);
 817         request.cmd = WINBINDD_DUAL_GETSIDALIASES;
 818         request.extra_len = len;
 819         request.extra_data.data = sidstr;
 820 
 821         do_async_domain(mem_ctx, domain, &request, getsidaliases_recv,
 822                         (void *)cont, private_data);
 823 }
 824 
 825 struct gettoken_state {
 826         TALLOC_CTX *mem_ctx;
 827         DOM_SID user_sid;
 828         struct winbindd_domain *alias_domain;
 829         struct winbindd_domain *local_alias_domain;
 830         struct winbindd_domain *builtin_domain;
 831         DOM_SID *sids;
 832         size_t num_sids;
 833         void (*cont)(void *private_data, bool success, DOM_SID *sids, size_t num_sids);
 834         void *private_data;
 835 };
 836 
 837 static void gettoken_recvdomgroups(TALLOC_CTX *mem_ctx, bool success,
 838                                    struct winbindd_response *response,
 839                                    void *c, void *private_data);
 840 static void gettoken_recvaliases(void *private_data, bool success,
 841                                  const DOM_SID *aliases,
 842                                  size_t num_aliases);
 843 
 844 
 845 void winbindd_gettoken_async(TALLOC_CTX *mem_ctx, const DOM_SID *user_sid,
     /* [<][>][^][v][top][bottom][index][help] */
 846                              void (*cont)(void *private_data, bool success,
 847                                           DOM_SID *sids, size_t num_sids),
 848                              void *private_data)
 849 {
 850         struct winbindd_domain *domain;
 851         struct winbindd_request request;
 852         struct gettoken_state *state;
 853 
 854         state = TALLOC_ZERO_P(mem_ctx, struct gettoken_state);
 855         if (state == NULL) {
 856                 DEBUG(0, ("talloc failed\n"));
 857                 cont(private_data, False, NULL, 0);
 858                 return;
 859         }
 860 
 861         state->mem_ctx = mem_ctx;
 862         sid_copy(&state->user_sid, user_sid);
 863         state->alias_domain = find_our_domain();
 864         state->local_alias_domain = find_domain_from_name( get_global_sam_name() );
 865         state->builtin_domain = find_builtin_domain();
 866         state->cont = cont;
 867         state->private_data = private_data;
 868 
 869         domain = find_domain_from_sid_noinit(user_sid);
 870         if (domain == NULL) {
 871                 DEBUG(5, ("Could not find domain from SID %s\n",
 872                           sid_string_dbg(user_sid)));
 873                 cont(private_data, False, NULL, 0);
 874                 return;
 875         }
 876 
 877         ZERO_STRUCT(request);
 878         request.cmd = WINBINDD_GETUSERDOMGROUPS;
 879         sid_to_fstring(request.data.sid, user_sid);
 880 
 881         do_async_domain(mem_ctx, domain, &request, gettoken_recvdomgroups,
 882                         NULL, state);
 883 }
 884 
 885 static void gettoken_recvdomgroups(TALLOC_CTX *mem_ctx, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 886                                    struct winbindd_response *response,
 887                                    void *c, void *private_data)
 888 {
 889         struct gettoken_state *state =
 890                 talloc_get_type_abort(private_data, struct gettoken_state);
 891         char *sids_str;
 892 
 893         if (!success) {
 894                 DEBUG(10, ("Could not get domain groups\n"));
 895                 state->cont(state->private_data, False, NULL, 0);
 896                 return;
 897         }
 898 
 899         sids_str = (char *)response->extra_data.data;
 900 
 901         if (sids_str == NULL) {
 902                 /* This could be normal if we are dealing with a
 903                    local user and local groups */
 904 
 905                 if ( !sid_check_is_in_our_domain( &state->user_sid ) ) {
 906                         DEBUG(10, ("Received no domain groups\n"));
 907                         state->cont(state->private_data, True, NULL, 0);
 908                         return;
 909                 }
 910         }
 911 
 912         state->sids = NULL;
 913         state->num_sids = 0;
 914 
 915         if (!NT_STATUS_IS_OK(add_sid_to_array(mem_ctx, &state->user_sid,
 916                                               &state->sids, &state->num_sids)))
 917         {
 918                 DEBUG(0, ("Out of memory\n"));
 919                 state->cont(state->private_data, False, NULL, 0);
 920                 return;
 921         }
 922 
 923         if (sids_str && !parse_sidlist(mem_ctx, sids_str, &state->sids,
 924                            &state->num_sids)) {
 925                 DEBUG(0, ("Could not parse sids\n"));
 926                 state->cont(state->private_data, False, NULL, 0);
 927                 return;
 928         }
 929 
 930         SAFE_FREE(response->extra_data.data);
 931 
 932         if (state->alias_domain == NULL) {
 933                 DEBUG(10, ("Don't expand domain local groups\n"));
 934                 state->cont(state->private_data, True, state->sids,
 935                             state->num_sids);
 936                 return;
 937         }
 938 
 939         winbindd_getsidaliases_async(state->alias_domain, mem_ctx,
 940                                      state->sids, state->num_sids,
 941                                      gettoken_recvaliases, state);
 942 }
 943 
 944 static void gettoken_recvaliases(void *private_data, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 945                                  const DOM_SID *aliases,
 946                                  size_t num_aliases)
 947 {
 948         struct gettoken_state *state = (struct gettoken_state *)private_data;
 949         size_t i;
 950 
 951         if (!success) {
 952                 DEBUG(10, ("Could not receive domain local groups\n"));
 953                 state->cont(state->private_data, False, NULL, 0);
 954                 return;
 955         }
 956 
 957         for (i=0; i<num_aliases; i++) {
 958                 if (!NT_STATUS_IS_OK(add_sid_to_array(state->mem_ctx,
 959                                                       &aliases[i],
 960                                                       &state->sids,
 961                                                       &state->num_sids)))
 962                 {
 963                         DEBUG(0, ("Out of memory\n"));
 964                         state->cont(state->private_data, False, NULL, 0);
 965                         return;
 966                 }
 967         }
 968 
 969         if (state->local_alias_domain != NULL) {
 970                 struct winbindd_domain *local_domain = state->local_alias_domain;
 971                 DEBUG(10, ("Expanding our own local groups\n"));
 972                 state->local_alias_domain = NULL;
 973                 winbindd_getsidaliases_async(local_domain, state->mem_ctx,
 974                                              state->sids, state->num_sids,
 975                                              gettoken_recvaliases, state);
 976                 return;
 977         }
 978 
 979         if (state->builtin_domain != NULL) {
 980                 struct winbindd_domain *builtin_domain = state->builtin_domain;
 981                 DEBUG(10, ("Expanding our own BUILTIN groups\n"));
 982                 state->builtin_domain = NULL;
 983                 winbindd_getsidaliases_async(builtin_domain, state->mem_ctx,
 984                                              state->sids, state->num_sids,
 985                                              gettoken_recvaliases, state);
 986                 return;
 987         }
 988 
 989         state->cont(state->private_data, True, state->sids, state->num_sids);
 990 }
 991 
 992 static void query_user_recv(TALLOC_CTX *mem_ctx, bool success,
     /* [<][>][^][v][top][bottom][index][help] */
 993                             struct winbindd_response *response,
 994                             void *c, void *private_data)
 995 {
 996         void (*cont)(void *priv, bool succ, const char *acct_name,
 997                      const char *full_name, const char *homedir, 
 998                      const char *shell, uint32 gid, uint32 group_rid) =
 999                 (void (*)(void *, bool, const char *, const char *,
1000                           const char *, const char *, uint32, uint32))c;
1001 
1002         if (!success) {
1003                 DEBUG(5, ("Could not trigger query_user\n"));
1004                 cont(private_data, False, NULL, NULL, NULL, NULL, -1, -1);
1005                 return;
1006         }
1007 
1008         if (response->result != WINBINDD_OK) {
1009                 DEBUG(5, ("query_user returned an error\n"));
1010                 cont(private_data, False, NULL, NULL, NULL, NULL, -1, -1);
1011                 return;
1012         }
1013 
1014         cont(private_data, True, response->data.user_info.acct_name,
1015              response->data.user_info.full_name,
1016              response->data.user_info.homedir,
1017              response->data.user_info.shell,
1018              response->data.user_info.primary_gid,
1019              response->data.user_info.group_rid);
1020 }
1021 
1022 void query_user_async(TALLOC_CTX *mem_ctx, struct winbindd_domain *domain,
     /* [<][>][^][v][top][bottom][index][help] */
1023                       const DOM_SID *sid,
1024                       void (*cont)(void *private_data, bool success,
1025                                    const char *acct_name,
1026                                    const char *full_name,
1027                                    const char *homedir,
1028                                    const char *shell,
1029                                    gid_t gid,
1030                                    uint32 group_rid),
1031                       void *private_data)
1032 {
1033         struct winbindd_request request;
1034         ZERO_STRUCT(request);
1035         request.cmd = WINBINDD_DUAL_USERINFO;
1036         sid_to_fstring(request.data.sid, sid);
1037         do_async_domain(mem_ctx, domain, &request, query_user_recv,
1038                         (void *)cont, private_data);
1039 }

/* [<][>][^][v][top][bottom][index][help] */