summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorPavel Březina <pbrezina@redhat.com>2011-11-29 11:44:16 +0100
committerPavel Březina <pbrezina@redhat.com>2011-12-16 13:59:31 +0100
commit8d931c768c99f05ae3b1ff57e2fc5b670d996c33 (patch)
treefb72fa27ab39832d1af2e75c676fcc03efe7b45f
parentd1949c51f1e33ebd2e2171ec8ff4c823aa5fa600 (diff)
downloadsssd_unused-8d931c768c99f05ae3b1ff57e2fc5b670d996c33.tar.gz
sssd_unused-8d931c768c99f05ae3b1ff57e2fc5b670d996c33.tar.xz
sssd_unused-8d931c768c99f05ae3b1ff57e2fc5b670d996c33.zip
SUDO Integration - pseudo client for testingsudo-with-nss
-rw-r--r--Makefile.am15
-rw-r--r--src/sss_client/sudo_testcli/sudo_testcli.c167
2 files changed, 182 insertions, 0 deletions
diff --git a/Makefile.am b/Makefile.am
index da1a9ef8..ed959911 100644
--- a/Makefile.am
+++ b/Makefile.am
@@ -559,6 +559,18 @@ sss_debuglevel_LDADD = \
libsss_util.la \
$(TOOLS_LIBS)
+if BUILD_SUDO
+sss_sudo_cli_SOURCES = \
+ src/sss_client/sudo_testcli/sudo_testcli.c \
+ src/sss_client/sudo/sss_sudo_response.c \
+ src/sss_client/sudo/sss_sudo.c \
+ src/sss_client/sudo/sss_sudo.h \
+ src/sss_client/sudo/sss_sudo_private.h \
+ src/sss_client/common.c \
+ src/sss_client/sss_cli.h
+sss_sudo_cli_CFLAGS = $(AM_CFLAGS)
+endif
+
#################
# Feature Tests #
#################
@@ -811,6 +823,9 @@ stress_tests_LDADD = \
libsss_test_common.la
noinst_PROGRAMS = pam_test_client
+if BUILD_SUDO
+noinst_PROGRAMS += sss_sudo_cli
+endif
pam_test_client_SOURCES = src/sss_client/pam_test_client.c
pam_test_client_LDFLAGS = -lpam -lpam_misc
diff --git a/src/sss_client/sudo_testcli/sudo_testcli.c b/src/sss_client/sudo_testcli/sudo_testcli.c
new file mode 100644
index 00000000..e7da035e
--- /dev/null
+++ b/src/sss_client/sudo_testcli/sudo_testcli.c
@@ -0,0 +1,167 @@
+/*
+ Authors:
+ Pavel Březina <pbrezina@redhat.com>
+
+ Copyright (C) 2011 Red Hat
+
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 3 of the License, or
+ (at your option) any later version.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with this program. If not, see <http://www.gnu.org/licenses/>.
+*/
+
+#include <stdlib.h>
+#include <stdio.h>
+#include <errno.h>
+#include <string.h>
+#include <talloc.h>
+
+#include "sss_client/sss_cli.h"
+#include "sss_client/sudo/sss_sudo.h"
+#include "sss_client/sudo/sss_sudo_private.h"
+
+#ifndef EOK
+#define EOK 0
+#endif
+
+int create_query(const char *username, char **_query, int *_query_len);
+void print_sss_result(struct sss_result *result);
+
+int main(int argc, char **argv)
+{
+ struct sss_cli_req_data request;
+ const char *username = NULL;
+ char *query = NULL;
+ int query_len = 0;
+ int errnop = 0;
+ int ret = 0;
+ uint8_t *reply_buf = NULL;
+ char *reply_buf_char = NULL;
+ size_t reply_len;
+ int i = 0;
+ struct sss_result *result = NULL;
+ uint32_t error = 0;
+
+ if (argc != 2) {
+ fprintf(stderr, "Usage: sss_sudo_cli username\n");
+ goto fail;
+ }
+
+ username = argv[1];
+
+ /* create query */
+
+ ret = create_query(username, &query, &query_len);
+ if (ret != EOK) {
+ fprintf(stderr, "Unable to create query: %s\n", strerror(ret));
+ goto fail;
+ }
+
+ request.len = query_len;
+ request.data = (const void*)query;
+
+ /* send query and recieve response */
+
+ errnop = 0;
+ ret = sss_sudo_make_request(SSS_SUDO_GET_SUDORULES, &request, &reply_buf,
+ &reply_len, &errnop);
+ if (errnop != EOK) {
+ fprintf(stderr, "Unable to contact SSSD responder: %s\n", strerror(errnop));
+ goto fail;
+ }
+
+ reply_buf_char = (char*)reply_buf;
+ if (reply_len > 0) {
+ printf("Reply length: %d\n", (int)reply_len);
+ printf("Reply data:\n");
+ for (i = 0; i < reply_len; i++) {
+ if (reply_buf_char[i] == '\0') {
+ printf("\\0");
+ } else {
+ printf("%c", reply_buf_char[i]);
+ }
+ }
+ printf("\n");
+ } else {
+ printf("No reply received!\n");
+ }
+
+ /* get sss_result - it will send new query to responder */
+
+ ret = sss_sudo_get_result(username, &error, &result);
+ if (ret != EOK) {
+ fprintf(stderr, "Usss_sudo_get_result() failed: %s\n", strerror(ret));
+ goto fail;
+ }
+
+ printf("\n=== Printing response data ===\n");
+ printf("Response code: %d\n\n", error);
+ if (error == SSS_SUDO_ERROR_OK) {
+ print_sss_result(result);
+ }
+
+
+ sss_sudo_free_result(result);
+ free(query);
+ return 0;
+
+fail:
+ sss_sudo_free_result(result);
+ free(query);
+ return 1;
+}
+
+int create_query(const char *username, char **_query, int *_query_len)
+{
+ char *data = NULL;
+ int data_len = strlen(username) + 1;
+
+ if (data_len <= 0) {
+ return EINVAL;
+ }
+
+ data = (char*)malloc(data_len * sizeof(char));
+ if (data == NULL) {
+ return ENOMEM;
+ }
+
+ memcpy(data, username, data_len);
+
+ *_query = data;
+ *_query_len = data_len;
+
+ return EOK;
+}
+
+void print_sss_result(struct sss_result *result)
+{
+ struct sss_rule *rule = NULL;
+ struct sss_attr *attr = NULL;
+ int i = 0;
+ int j = 0;
+ int k = 0;
+
+ printf("Number of rules: %d\n", result->num_rules);
+
+ for (i = 0; i < result->num_rules; i++) {
+ rule = &result->rules[i];
+ printf("=== Rule %d has %d attributes\n", i, rule->num_attrs);
+ for (j = 0; j < rule->num_attrs; j++) {
+ attr = &rule->attrs[j];
+ printf(" === Attribute named %s has %d values:\n", attr->name,
+ attr->num_values);
+
+ for (k = 0; k < attr->num_values; k++) {
+ printf(" %s\n", attr->values[k]);
+ }
+ }
+ }
+}