idmap/idmapd/directory_provider_builtin.c

1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown/*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * CDDL HEADER START
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown *
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * The contents of this file are subject to the terms of the
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * Common Development and Distribution License (the "License").
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * You may not use this file except in compliance with the License.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown *
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * or http://www.opensolaris.org/os/licensing.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * See the License for the specific language governing permissions
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * and limitations under the License.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown *
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * When distributing Covered Code, include this CDDL HEADER in each
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * If applicable, add the following below this CDDL HEADER, with the
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * fields enclosed by brackets "[]" replaced with your own identifying
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * information: Portions Copyright [yyyy] [name of copyright owner]
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown *
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * CDDL HEADER END
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown/*
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh * Copyright (c) 2009, 2010, Oracle and/or its affiliates. All rights reserved.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown/*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * Retrieve directory information for built-in users and groups
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <stdio.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <limits.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <sys/idmap.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <sys/param.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <string.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <stdlib.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <netdb.h>
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh#include <libuutil.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <note.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include "idmapd.h"
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include "directory.h"
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include "directory_private.h"
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include <rpcsvc/idmap_prot.h>
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include "directory_server_impl.h"
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown#include "sidutil.h"
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownstatic directory_error_t sid_dav(directory_values_rpc *lvals,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    const wksids_table_t *wksid);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownstatic directory_error_t directory_provider_builtin_populate(
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    directory_entry_rpc *pent, const wksids_table_t *wksid,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    idmap_utf8str_list *attrs);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown/*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * Retrieve information by name.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * Called indirectly through the directory_provider_static structure.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownstatic
1fcced4c370617db71610fecffd5451a5894ca5eJordan Browndirectory_error_t
1fcced4c370617db71610fecffd5451a5894ca5eJordan Browndirectory_provider_builtin_get(
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    directory_entry_rpc *del,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    idmap_utf8str_list *ids,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    idmap_utf8str types,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    idmap_utf8str_list *attrs)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown{
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    int i;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    for (i = 0; i < ids->idmap_utf8str_list_len; i++) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        const wksids_table_t *wksid;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        directory_error_t de;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        int type;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        /*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * Extract the type for this particular ID.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * Advance to the next type, if it's there, else keep
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * using this type until we run out of IDs.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        type = *types;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        if (*(types+1) != '\0')
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            types++;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        /*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * If this entry has already been handled, one way or another,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * skip it.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        if (del[i].status != DIRECTORY_NOT_FOUND)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            continue;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        char *id = ids->idmap_utf8str_list_val[i];
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        /*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * End-to-end error injection point.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * NEEDSWORK:  should probably eliminate this for production
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         */
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        if (uu_streq(id, " DEBUG BUILTIN ERROR ")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            directory_entry_set_error(&del[i],
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                directory_error("Directory_provider_builtin.debug",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                "Directory_provider_builtin:  artificial error",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                NULL));
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            continue;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        if (type == DIRECTORY_ID_SID[0])
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            wksid = find_wk_by_sid(id);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        else {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            int idmap_id_type;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            if (type == DIRECTORY_ID_NAME[0])
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                idmap_id_type = IDMAP_POSIXID;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            else if (type == DIRECTORY_ID_USER[0])
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                idmap_id_type = IDMAP_UID;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            else if (type == DIRECTORY_ID_GROUP[0])
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                idmap_id_type = IDMAP_GID;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            else {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                directory_entry_set_error(&del[i],
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    directory_error("invalid_arg.id_type",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    "Invalid ID type \"%1\"",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    types, NULL));
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                continue;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            int id_len = strlen(id);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            char name[id_len + 1];
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            char domain[id_len + 1];
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            split_name(name, domain, id);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            wksid = find_wksid_by_name(name, domain, idmap_id_type);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        if (wksid == NULL)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            continue;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        de = directory_provider_builtin_populate(&del[i], wksid, attrs);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        if (de != NULL) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            directory_entry_set_error(&del[i], de);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            de = NULL;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    return (NULL);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown}
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown/*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * Given a well-known name entry and a list of attributes that were
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * requested, populate the structure to return to the caller.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownstatic
1fcced4c370617db71610fecffd5451a5894ca5eJordan Browndirectory_error_t
1fcced4c370617db71610fecffd5451a5894ca5eJordan Browndirectory_provider_builtin_populate(
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    directory_entry_rpc *pent,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    const wksids_table_t *wksid,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    idmap_utf8str_list *attrs)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown{
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    int j;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    directory_values_rpc *llvals;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    int nattrs;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    nattrs = attrs->idmap_utf8str_list_len;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    llvals = calloc(nattrs, sizeof (directory_values_rpc));
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    if (llvals == NULL)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        goto nomem;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    pent->status = DIRECTORY_FOUND;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    pent->directory_entry_rpc_u.attrs.attrs_val = llvals;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    pent->directory_entry_rpc_u.attrs.attrs_len = nattrs;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    for (j = 0; j < nattrs; j++) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        directory_values_rpc *val;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        char *a;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        directory_error_t de;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        /*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * We're going to refer to these a lot, so make a shorthand
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * copy.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        a = attrs->idmap_utf8str_list_val[j];
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        val = &llvals[j];
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        /*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * Start by assuming no errors and that we don't have
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         * the information.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown         */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        val->found = FALSE;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        de = NULL;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        if (uu_strcaseeq(a, "uid")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            de = str_list_dav(val, &wksid->winname, 1);
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        } else if (uu_strcaseeq(a, "uidNumber")) {
9fb67ea305c66b6a297583b9b0db6796b0dfe497afshin salek ardakani - Sun Microsystems - Irvine United States            if (wksid->pid != IDMAP_SENTINEL_PID &&
9fb67ea305c66b6a297583b9b0db6796b0dfe497afshin salek ardakani - Sun Microsystems - Irvine United States                wksid->is_user) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                de = uint_list_dav(val, &wksid->pid, 1);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            }
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        } else if (uu_strcaseeq(a, "gidNumber")) {
9fb67ea305c66b6a297583b9b0db6796b0dfe497afshin salek ardakani - Sun Microsystems - Irvine United States            if (wksid->pid != IDMAP_SENTINEL_PID &&
9fb67ea305c66b6a297583b9b0db6796b0dfe497afshin salek ardakani - Sun Microsystems - Irvine United States                !wksid->is_user) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                de = uint_list_dav(val, &wksid->pid, 1);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            }
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        } else if (uu_strcaseeq(a, "displayName") ||
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh            uu_strcaseeq(a, "cn")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            de = str_list_dav(val, &wksid->winname, 1);
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        } else if (uu_strcaseeq(a, "distinguishedName")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            char *container;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            if (wksid->domain == NULL) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                container = "Users";
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            } else {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                container = "Builtin";
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            RDLOCK_CONFIG();
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            char *dn;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            (void) asprintf(&dn,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                "CN=%s,CN=%s,DC=%s",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                wksid->winname, container, _idmapdstate.hostname);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            UNLOCK_CONFIG();
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            const char *cdn = dn;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            de = str_list_dav(val, &cdn, 1);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            free(dn);
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        } else if (uu_strcaseeq(a, "objectClass")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            if (wksid->is_wuser) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                static const char *objectClasses[] = {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    "top",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    "person",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    "organizationalPerson",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    "user",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                };
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                de = str_list_dav(val, objectClasses,
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh                    UU_NELEM(objectClasses));
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            } else {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                static const char *objectClasses[] = {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    "top",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    "group",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                };
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                de = str_list_dav(val, objectClasses,
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh                    UU_NELEM(objectClasses));
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            }
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        } else if (uu_strcaseeq(a, "objectSid")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            de = sid_dav(val, wksid);
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        } else if (uu_strcaseeq(a, "x-sun-canonicalName")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            char *canon;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            if (wksid->domain == NULL) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                RDLOCK_CONFIG();
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                (void) asprintf(&canon, "%s@%s",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    wksid->winname, _idmapdstate.hostname);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                UNLOCK_CONFIG();
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh            } else if (uu_streq(wksid->domain, "")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                canon = strdup(wksid->winname);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            } else {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                (void) asprintf(&canon, "%s@%s",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                    wksid->winname, wksid->domain);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            if (canon == NULL)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown                goto nomem;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            const char *ccanon = canon;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            de = str_list_dav(val, &ccanon, 1);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            free(canon);
cb174861876aea6950a7ab4ce944aff84b1914cdjoyce mcintosh        } else if (uu_strcaseeq(a, "x-sun-provider")) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            const char *provider = "Builtin";
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            de = str_list_dav(val, &provider, 1);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        if (de != NULL)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            return (de);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    return (NULL);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownnomem:
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    return (directory_error("ENOMEM.users",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        "No memory allocating return value for user lookup", NULL));
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown}
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown/*
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * Given a well-known name structure, generate a binary-format SID.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * It's a bit perverse that we must take a text-format SID and turn it into
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * a binary-format SID, only to have the caller probably turn it back into
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown * text format, but SIDs are carried across LDAP in binary format.
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown */
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownstatic
1fcced4c370617db71610fecffd5451a5894ca5eJordan Browndirectory_error_t
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownsid_dav(directory_values_rpc *lvals, const wksids_table_t *wksid)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown{
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    char *text_sid;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    sid_t *sid;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    directory_error_t de;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    if (wksid->sidprefix == NULL) {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        RDLOCK_CONFIG();
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        (void) asprintf(&text_sid, "%s-%d",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            _idmapdstate.cfg->pgcfg.machine_sid,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            wksid->rid);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        UNLOCK_CONFIG();
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    } else {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        (void) asprintf(&text_sid, "%s-%d",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown            wksid->sidprefix, wksid->rid);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    }
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    if (text_sid == NULL)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        goto nomem;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    sid = sid_fromstr(text_sid);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    free(text_sid);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    if (sid == NULL)
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        goto nomem;
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    sid_to_le(sid);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    de = bin_list_dav(lvals, sid, 1, sid_len(sid));
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    sid_free(sid);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    return (de);
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownnomem:
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    return (directory_error("ENOMEM.sid_dav",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown        "No memory allocating SID for user lookup", NULL));
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown}
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brownstruct directory_provider_static directory_provider_builtin = {
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    "builtin",
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown    directory_provider_builtin_get,
1fcced4c370617db71610fecffd5451a5894ca5eJordan Brown};