cache_req: add support for netgroups

Resolves:
https://fedorahosted.org/sssd/ticket/3151

Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>

1 files changed, 155 insertions, 0 deletions

diff --git a/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c b/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c
new file mode 100644
index 000000000..08c5a16fe
--- /dev/null
+++ b/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c
@@ -0,0 +1,155 @@
+/*
+    Authors:
+        Pavel Březina <pbrezina@redhat.com>
+
+    Copyright (C) 2016 Red Hat
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 3 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program.  If not, see <http://www.gnu.org/licenses/>.
+*/
+
+#include <talloc.h>
+#include <ldb.h>
+
+#include "db/sysdb.h"
+#include "util/util.h"
+#include "providers/data_provider.h"
+#include "responder/common/cache_req/cache_req_plugin.h"
+
+static errno_t
+cache_req_netgroup_by_name_prepare_domain_data(struct cache_req *cr,
+                                               struct cache_req_data *data,
+                                               struct sss_domain_info *domain)
+{
+    TALLOC_CTX *tmp_ctx;
+    const char *name;
+    errno_t ret;
+
+    if (data->name.name == NULL) {
+        DEBUG(SSSDBG_CRIT_FAILURE, "Bug: parsed name is NULL?\n");
+        return ERR_INTERNAL;
+    }
+
+    tmp_ctx = talloc_new(NULL);
+    if (tmp_ctx == NULL) {
+        return ENOMEM;
+    }
+
+    name = sss_get_cased_name(tmp_ctx, cr->data->name.name,
+                              domain->case_sensitive);
+    if (name == NULL) {
+        ret = ENOMEM;
+        goto done;
+    }
+
+    talloc_zfree(data->name.lookup);
+    data->name.lookup = talloc_steal(data, name);
+
+    ret = EOK;
+
+done:
+    talloc_free(tmp_ctx);
+    return ret;
+}
+
+static const char *
+cache_req_netgroup_by_name_create_debug_name(TALLOC_CTX *mem_ctx,
+                                             struct cache_req_data *data,
+                                             struct sss_domain_info *domain)
+{
+    return talloc_asprintf(mem_ctx, "%s@%s", data->name.lookup, domain->name);
+}
+
+static errno_t
+cache_req_netgroup_by_name_ncache_check(struct sss_nc_ctx *ncache,
+                                        struct sss_domain_info *domain,
+                                        struct cache_req_data *data)
+{
+    return sss_ncache_check_netgr(ncache, domain, data->name.lookup);
+}
+
+static errno_t
+cache_req_netgroup_by_name_ncache_add(struct sss_nc_ctx *ncache,
+                                      struct sss_domain_info *domain,
+                                      struct cache_req_data *data)
+{
+    return sss_ncache_set_netgr(ncache, false, domain, data->name.lookup);
+}
+
+static errno_t
+cache_req_netgroup_by_name_lookup(TALLOC_CTX *mem_ctx,
+                                  struct cache_req *cr,
+                                  struct cache_req_data *data,
+                                  struct sss_domain_info *domain,
+                                  struct ldb_result **_result)
+{
+    return sysdb_getnetgr(mem_ctx, domain, data->name.lookup, _result);
+}
+
+static errno_t
+cache_req_netgroup_by_name_dpreq_params(TALLOC_CTX *mem_ctx,
+                                        struct cache_req *cr,
+                                        struct ldb_result *result,
+                                        const char **_string,
+                                        uint32_t *_id,
+                                        const char **_flag)
+{
+    *_id = 0;
+    *_string = cr->data->name.lookup;
+    *_flag = NULL;
+
+    return EOK;
+}
+
+struct cache_req_plugin cache_req_netgroup_by_name = {
+    .name = "Netgroup by name",
+    .dp_type = SSS_DP_NETGR,
+    .attr_expiration = SYSDB_CACHE_EXPIRE,
+    .parse_name = true,
+    .bypass_cache = false,
+    .only_one_result = true,
+    .search_all_domains = false,
+    .require_enumeration = false,
+    .allow_missing_fqn = true,
+    .allow_switch_to_upn = false,
+    .upn_equivalent = CACHE_REQ_SENTINEL,
+    .get_next_domain_flags = 0,
+
+    .prepare_domain_data_fn = cache_req_netgroup_by_name_prepare_domain_data,
+    .create_debug_name_fn = cache_req_netgroup_by_name_create_debug_name,
+    .global_ncache_add_fn = NULL,
+    .ncache_check_fn = cache_req_netgroup_by_name_ncache_check,
+    .ncache_add_fn = cache_req_netgroup_by_name_ncache_add,
+    .lookup_fn = cache_req_netgroup_by_name_lookup,
+    .dpreq_params_fn = cache_req_netgroup_by_name_dpreq_params
+};
+
+struct tevent_req *
+cache_req_netgroup_by_name_send(TALLOC_CTX *mem_ctx,
+                                struct tevent_context *ev,
+                                struct resp_ctx *rctx,
+                                struct sss_nc_ctx *ncache,
+                                int cache_refresh_percent,
+                                const char *domain,
+                                const char *name)
+{
+    struct cache_req_data *data;
+
+    data = cache_req_data_name(mem_ctx, CACHE_REQ_NETGROUP_BY_NAME, name);
+    if (data == NULL) {
+        return NULL;
+    }
+
+    return cache_req_steal_data_and_send(mem_ctx, ev, rctx, ncache,
+                                         cache_refresh_percent, domain, data);
+}