2N/A/*
2N/A * CDDL HEADER START
2N/A *
2N/A * The contents of this file are subject to the terms of the
2N/A * Common Development and Distribution License (the "License").
2N/A * You may not use this file except in compliance with the License.
2N/A *
2N/A * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
2N/A * or http://www.opensolaris.org/os/licensing.
2N/A * See the License for the specific language governing permissions
2N/A * and limitations under the License.
2N/A *
2N/A * When distributing Covered Code, include this CDDL HEADER in each
2N/A * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
2N/A * If applicable, add the following below this CDDL HEADER, with the
2N/A * fields enclosed by brackets "[]" replaced with your own identifying
2N/A * information: Portions Copyright [yyyy] [name of copyright owner]
2N/A *
2N/A * CDDL HEADER END
2N/A */
2N/A/*
2N/A * Copyright (c) 1999, 2011, Oracle and/or its affiliates. All rights reserved.
2N/A */
2N/A
2N/A#ifndef _LDAP_COMMON_H
2N/A#define _LDAP_COMMON_H
2N/A
2N/A#ifdef __cplusplus
2N/Aextern "C" {
2N/A#endif
2N/A
2N/A#include <ctype.h>
2N/A#include <nss_dbdefs.h>
2N/A#include <stdlib.h>
2N/A#include <string.h>
2N/A#include <strings.h>
2N/A#include <signal.h>
2N/A#include <lber.h>
2N/A#include <ldap.h>
2N/A#include <pwd.h>
2N/A#include <sys/avl.h>
2N/A#include <stddef.h> /* offsetof */
2N/A#include "ns_sldap.h"
2N/A
2N/A#define _ALIASES "aliases"
2N/A#define _AUTOMOUNT "automount"
2N/A#define _AUTHATTR "auth_attr"
2N/A#define _AUUSER "audit_user"
2N/A#define _BOOTPARAMS "bootparams"
2N/A#define _DEFAULT "default"
2N/A#define _ETHERS "ethers"
2N/A#define _EXECATTR "exec_attr"
2N/A#define _GROUP "group"
2N/A#define _PROJECT "project"
2N/A#define _HOSTS "hosts"
2N/A#define _HOSTS6 "hosts"
2N/A#define _NETGROUP "netgroup"
2N/A#define _NETMASKS "netmasks"
2N/A#define _NETWORKS "networks"
2N/A#define _PASSWD "passwd"
2N/A#define _PRINTERS "printers"
2N/A#define _PROFATTR "prof_attr"
2N/A#define _PROTOCOLS "protocols"
2N/A#define _PUBLICKEY "publickey"
2N/A#define _RPC "rpc"
2N/A#define _SERVICES "services"
2N/A#define _SHADOW "shadow"
2N/A#define _USERATTR "user_attr"
2N/A#define _TNRHDB "tnrhdb"
2N/A#define _TNRHTP "tnrhtp"
2N/A
2N/A#define _F_GETPWNAM "(&(objectClass=posixAccount)(uid=%s))"
2N/A#define _F_GETPWNAM_SSD "(&(%%s)(uid=%s))"
2N/A
2N/A#define NSS_STR_PARSE_NO_ADDR (NSS_STR_PARSE_ERANGE + 100)
2N/A#define NSS_STR_PARSE_NO_RESULT (NSS_STR_PARSE_ERANGE + 101)
2N/A
2N/A#define DOTTEDSUBDOMAIN(string) \
2N/A ((string != NULL) && (strchr(string, '.') != NULL))
2N/A#define SEARCHFILTERLEN 256
2N/A
2N/A#define _NO_VALUE ""
2N/A
2N/A#define TEST_AND_ADJUST(len, buffer, buflen, label) \
2N/A /* Use '>=' to ensure there is at least one byte left for '\0' */ \
2N/A if (len >= buflen || len < 0) { \
2N/A nss_result = NSS_STR_PARSE_ERANGE; \
2N/A goto label; \
2N/A } \
2N/A /* Adjust pointer and available buffer length */ \
2N/A buffer += len; \
2N/A buflen -= len;
2N/A
2N/A/*
2N/A * We need to use UID_NOBODY and GID_NOBODY as strings. Therefore we use
2N/A * snprintf to convert [U|G]ID_NOBODY into a string. The target buffer
2N/A * size was chosen as 21 to allow the largest 64-bit number to be stored
2N/A * as string in it. Right now uid_t and gid_t are 32-bit so we don't
2N/A * really need 21 characters but it does allow for future expansion
2N/A * without having to modify this code.
2N/A */
2N/A#define NOBODY_STR_LEN 21
2N/A
2N/A/*
2N/A * nss_ldap may return DN of an ldap entry as optional data.
2N/A * NSS_LDAP_DN_TAG is used to tag such data.
2N/A */
2N/A#define NSS_LDAP_DN_TAG "#dn:"
2N/A#define NSS_LDAP_DN_TAG_LEN 4
2N/A
2N/A/*
2N/A * A generic list implemented as a AVL tree. Each AVL node has
2N/A * a key and a key length field.
2N/A */
2N/Atypedef avl_tree_t _nss_ldap_list_t;
2N/Atypedef struct _nss_ldap_list_entry {
2N/A avl_node_t avl_link; /* libavl requirement */
2N/A char *key;
2N/A size_t keylen;
2N/A} _nss_ldap_list_entry_t;
2N/A
2N/Atypedef enum {
2N/A NSS_LDAP_LIST_SUCCESS = 0,
2N/A NSS_LDAP_LIST_MEMORY = 1,
2N/A NSS_LDAP_LIST_EXISTED = 2,
2N/A NSS_LDAP_LIST_NOKEY = 3,
2N/A NSS_LDAP_LIST_NOLIST = 4,
2N/A NSS_LDAP_LIST_ERANGE = 5
2N/A} nss_ldap_list_rc_t;
2N/A
2N/A/* nss_ldap's own nscd caches have the following states */
2N/Atypedef enum {
2N/A NSS_LDAP_CACHE_UNINITED = 0,
2N/A NSS_LDAP_CACHE_NOTNSCD = 1,
2N/A NSS_LDAP_CACHE_INITED = 2,
2N/A NSS_LDAP_CACHE_FAILED = 3
2N/A} nss_ldap_cache_state_t;
2N/A
2N/A/*
2N/A * Superset the nss_backend_t abstract data type. This ADT has
2N/A * been extended to include ldap associated data structures.
2N/A */
2N/A
2N/Atypedef struct ldap_backend *ldap_backend_ptr;
2N/Atypedef nss_status_t (*ldap_backend_op_t)(ldap_backend_ptr, void *);
2N/Atypedef int (*fnf)(ldap_backend_ptr be, nss_XbyY_args_t *argp);
2N/A
2N/Atypedef enum {
2N/A NSS_LDAP_DB_NONE = 0,
2N/A NSS_LDAP_DB_PUBLICKEY = 1,
2N/A NSS_LDAP_DB_ETHERS = 2
2N/A} nss_ldap_db_type_t;
2N/A
2N/Astruct ldap_backend {
2N/A ldap_backend_op_t *ops;
2N/A nss_dbop_t nops;
2N/A char *tablename;
2N/A void *enumcookie;
2N/A char *filter;
2N/A char *sortattr;
2N/A int setcalled;
2N/A const char **attrs;
2N/A ns_ldap_result_t *result;
2N/A const char **extra_info_attr;
2N/A ns_ldap_entry_t *extra_info;
2N/A fnf ldapobj2str;
2N/A void *netgroup_cookie;
2N/A void *services_cookie;
2N/A char *toglue;
2N/A char *buffer;
2N/A int buflen;
2N/A nss_ldap_db_type_t db_type;
2N/A boolean_t have_dn;
2N/A};
2N/A
2N/Aextern nss_status_t _nss_ldap_destr(ldap_backend_ptr be, void *a);
2N/Aextern nss_status_t _nss_ldap_endent(ldap_backend_ptr be, void *a);
2N/Aextern nss_status_t _nss_ldap_setent(ldap_backend_ptr be, void *a);
2N/Aextern nss_status_t _nss_ldap_getent(ldap_backend_ptr be, void *a);
2N/Anss_backend_t *_nss_ldap_constr(ldap_backend_op_t ops[], int nops,
2N/A char *tablename, const char **attrs, fnf ldapobj2str);
2N/Aextern nss_status_t _nss_ldap_nocb_lookup(ldap_backend_ptr be,
2N/A nss_XbyY_args_t *argp, char *database,
2N/A char *searchfilter, char *domain,
2N/A int (*init_filter_cb)(
2N/A const ns_ldap_search_desc_t *desc,
2N/A char **realfilter, const void *userdata),
2N/A const void *userdata);
2N/Aextern nss_status_t _nss_ldap_lookup(ldap_backend_ptr be,
2N/A nss_XbyY_args_t *argp, char *database,
2N/A char *searchfilter, char *domain,
2N/A int (*init_filter_cb)(
2N/A const ns_ldap_search_desc_t *desc,
2N/A char **realfilter, const void *userdata),
2N/A const void *userdata);
2N/Aextern void _clean_ldap_backend(ldap_backend_ptr be);
2N/A
2N/Aextern ns_ldap_attr_t *getattr(ns_ldap_result_t *result, int i);
2N/Aextern const char *_strip_quotes(char *ipaddress);
2N/Aextern int propersubdomain(char *domain, char *subdomain);
2N/Aextern int chophostdomain(char *string, char *host, char *domain);
2N/Aextern char *_get_domain_name(char *cdn);
2N/Aextern int _merge_SSD_filter(const ns_ldap_search_desc_t *desc,
2N/A char **realfilter, const void *userdata);
2N/Aextern int _ldap_filter_name(char *filter_name, const char *name,
2N/A int filter_name_size);
2N/A
2N/Aextern void _nss_services_cookie_free(void **cookieP);
2N/Aextern nss_status_t switch_err(int rc, ns_ldap_error_t *error);
2N/A
2N/Aextern nss_ldap_list_rc_t nss_ldap_list_add(_nss_ldap_list_t **list,
2N/A const char *key);
2N/Aextern void nss_ldap_list_free(_nss_ldap_list_t **list);
2N/Aextern nss_ldap_list_rc_t nss_ldap_list_dump(_nss_ldap_list_t **list,
2N/A char **buffer, int *buflen);
2N/Aextern ns_ldap_server_type_t _nss_ldap_get_server_type(ns_ldap_entry_t *entry,
2N/A char **server_type);
2N/A
2N/A#ifdef DEBUG
2N/Aextern int printresult(ns_ldap_result_t *result);
2N/A#endif /* DEBUG */
2N/A
2N/A#ifdef __cplusplus
2N/A}
2N/A#endif
2N/A
2N/A#endif /* _LDAP_COMMON_H */