1 files changed, 173 insertions, 0 deletions

diff --git a/server/providers/ldap_provider.c b/server/providers/ldap_provider.c
new file mode 100644
index 000000000..a6628f40a
--- /dev/null
+++ b/server/providers/ldap_provider.c
@@ -0,0 +1,173 @@
+/*
+   SSSD
+
+   Test LDAP Module
+
+   Copyright (C) Simo Sorce <ssorce@redhat.com>	2008
+
+   This program is free software; you can redistribute it and/or modify
+   it under the terms of the GNU General Public License as published by
+   the Free Software Foundation; either version 3 of the License, or
+   (at your option) any later version.
+
+   This program is distributed in the hope that it will be useful,
+   but WITHOUT ANY WARRANTY; without even the implied warranty of
+   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+   GNU General Public License for more details.
+
+   You should have received a copy of the GNU General Public License
+   along with this program.  If not, see <http://www.gnu.org/licenses/>.
+*/
+
+#include <nss.h>
+#include <errno.h>
+#include <pwd.h>
+#include <grp.h>
+#include "util/util.h"
+#include "providers/data_provider.h"
+
+struct ldap_nss_ops {
+    enum nss_status (*getpwnam_r)(const char *name, struct passwd *result,
+                                  char *buffer, size_t buflen, int *errnop);
+    enum nss_status (*getpwuid_r)(uid_t uid, struct passwd *result,
+                                  char *buffer, size_t buflen, int *errnop);
+    enum nss_status (*setpwent)(void);
+    enum nss_status (*getpwent_r)(struct passwd *result,
+                                  char *buffer, size_t buflen, int *errnop);
+    enum nss_status (*endpwent)(void);
+
+    enum nss_status (*getgrnam_r)(const char *name, struct group *result,
+                                  char *buffer, size_t buflen, int *errnop);
+    enum nss_status (*getgrgid_r)(gid_t gid, struct group *result,
+                                  char *buffer, size_t buflen, int *errnop);
+    enum nss_status (*setgrent)(void);
+    enum nss_status (*getgrent_r)(struct group *result,
+                                  char *buffer, size_t buflen, int *errnop);
+    enum nss_status (*endgrent)(void);
+    enum nss_status (*initgroups_dyn)(const char *user, gid_t group,
+                                      long int *start, long int *size,
+                                      gid_t **groups, long int limit,
+                                      int *errnop);
+};
+
+struct ldap_ctx {
+    struct ldap_nss_ops ops;
+};
+
+static int ldap_check_online(void *pvt_data, int *reply);
+
+struct dp_be_mod_ops ldap_mod_ops = {
+    .check_online = ldap_check_online
+};
+
+static int ldap_check_online(void *pvt_data, int *reply)
+{
+    *reply = MOD_ONLINE;
+    return EOK;
+}
+
+int sssm_ldap_init(TALLOC_CTX *bectx, struct dp_be_mod_ops **ops, void **pvt_data)
+{
+    struct ldap_ctx *ctx;
+    void *handle;
+    int ret;
+
+    ctx = talloc(bectx, struct ldap_ctx);
+    if (!ctx) {
+        return ENOMEM;
+    }
+
+    handle = dlopen("/usr/lib64/libnss_ldap.so.2", RTLD_NOW);
+    if (!handle) {
+        DEBUG(0, ("Unable to load libnss_ldap module with path, error: %s\n", dlerror()));
+        ret = ELIBACC;
+        goto done;
+    }
+
+    ctx->ops.getpwnam_r = dlsym(handle, "_nss_ldap_getpwnam_r");
+    if (!ctx->ops.getpwnam_r) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.getpwuid_r = dlsym(handle, "_nss_ldap_getpwuid_r");
+    if (!ctx->ops.getpwuid_r) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.setpwent = dlsym(handle, "_nss_ldap_setpwent");
+    if (!ctx->ops.setpwent) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.getpwent_r = dlsym(handle, "_nss_ldap_getpwent_r");
+    if (!ctx->ops.getpwent_r) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.endpwent = dlsym(handle, "_nss_ldap_endpwent");
+    if (!ctx->ops.endpwent) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.getgrnam_r = dlsym(handle, "_nss_ldap_getgrnam_r");
+    if (!ctx->ops.getgrnam_r) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.getgrgid_r = dlsym(handle, "_nss_ldap_getgrgid_r");
+    if (!ctx->ops.getgrgid_r) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.setgrent = dlsym(handle, "_nss_ldap_setgrent");
+    if (!ctx->ops.setgrent) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.getgrent_r = dlsym(handle, "_nss_ldap_getgrent_r");
+    if (!ctx->ops.getgrent_r) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.endgrent = dlsym(handle, "_nss_ldap_endgrent");
+    if (!ctx->ops.endgrent) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    ctx->ops.initgroups_dyn = dlsym(handle, "_nss_ldap_initgroups_dyn");
+    if (!ctx->ops.initgroups_dyn) {
+        DEBUG(0, ("Failed to load NSS fns, error: %s\n", dlerror()));
+        ret = ELIBBAD;
+        goto done;
+    }
+
+    *ops = &ldap_mod_ops;
+    *pvt_data = ctx;
+    ret = EOK;
+
+done:
+    if (ret != EOK) {
+        talloc_free(ctx);
+    }
+    return ret;
+}