source: vendor/current/source3/passdb/pdb_nds.c@ 414

/* 
   Unix SMB/CIFS mplementation.
   NDS LDAP helper functions for SAMBA
   Copyright (C) Vince Brimhall                 2004-2005
    
   This program is free software; you can redistribute it and/or modify
   it under the terms of the GNU General Public License as published by
   the Free Software Foundation; either version 3 of the License, or
   (at your option) any later version.
   
   This program is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
   GNU General Public License for more details.
   
   You should have received a copy of the GNU General Public License
   along with this program.  If not, see <http://www.gnu.org/licenses/>.
   
*/

#include "includes.h"

#include <lber.h>
#include <ldap.h>
#include <wchar.h>

#include "smbldap.h"

#define NMASLDAP_GET_LOGIN_CONFIG_REQUEST       "2.16.840.1.113719.1.39.42.100.3"
#define NMASLDAP_GET_LOGIN_CONFIG_RESPONSE      "2.16.840.1.113719.1.39.42.100.4"
#define NMASLDAP_SET_PASSWORD_REQUEST           "2.16.840.1.113719.1.39.42.100.11"
#define NMASLDAP_SET_PASSWORD_RESPONSE          "2.16.840.1.113719.1.39.42.100.12"
#define NMASLDAP_GET_PASSWORD_REQUEST           "2.16.840.1.113719.1.39.42.100.13"
#define NMASLDAP_GET_PASSWORD_RESPONSE          "2.16.840.1.113719.1.39.42.100.14"

#define NMAS_LDAP_EXT_VERSION                           1

/**********************************************************************
 Take the request BER value and input data items and BER encodes the
 data into the BER value
**********************************************************************/

static int berEncodePasswordData(
        struct berval **requestBV,
        const char    *objectDN,
        const char    *password,
        const char    *password2)
{
        int err = 0, rc=0;
        BerElement *requestBer = NULL;

        const char    * utf8ObjPtr = NULL;
        int     utf8ObjSize = 0;
        const char    * utf8PwdPtr = NULL;
        int     utf8PwdSize = 0;
        const char    * utf8Pwd2Ptr = NULL;
        int     utf8Pwd2Size = 0;


        /* Convert objectDN and tag strings from Unicode to UTF-8 */
        utf8ObjSize = strlen(objectDN)+1;
        utf8ObjPtr = objectDN;

        if (password != NULL)
        {
                utf8PwdSize = strlen(password)+1;
                utf8PwdPtr = password;
        }

        if (password2 != NULL)
        {
                utf8Pwd2Size = strlen(password2)+1;
                utf8Pwd2Ptr = password2;
        }

        /* Allocate a BerElement for the request parameters. */
        if((requestBer = ber_alloc()) == NULL)
        {
                err = LDAP_ENCODING_ERROR;
                goto Cleanup;
        }

        if (password != NULL && password2 != NULL)
        {
                /* BER encode the NMAS Version, the objectDN, and the password */
                rc = ber_printf(requestBer, "{iooo}", NMAS_LDAP_EXT_VERSION, utf8ObjPtr, utf8ObjSize, utf8PwdPtr, utf8PwdSize, utf8Pwd2Ptr, utf8Pwd2Size);
        }
        else if (password != NULL)
        {
                /* BER encode the NMAS Version, the objectDN, and the password */
                rc = ber_printf(requestBer, "{ioo}", NMAS_LDAP_EXT_VERSION, utf8ObjPtr, utf8ObjSize, utf8PwdPtr, utf8PwdSize);
        }
        else
        {
                /* BER encode the NMAS Version and the objectDN */
                rc = ber_printf(requestBer, "{io}", NMAS_LDAP_EXT_VERSION, utf8ObjPtr, utf8ObjSize);
        }

        if (rc < 0)
        {
                err = LDAP_ENCODING_ERROR;
                goto Cleanup;
        }
        else
        {
                err = 0;
        }

        /* Convert the BER we just built to a berval that we'll send with the extended request. */
        if(ber_flatten(requestBer, requestBV) == LBER_ERROR)
        {
                err = LDAP_ENCODING_ERROR;
                goto Cleanup;
        }

Cleanup:

        if(requestBer)
        {
                ber_free(requestBer, 1);
        }

        return err;
}

/**********************************************************************
 Take the request BER value and input data items and BER encodes the
 data into the BER value
**********************************************************************/

static int berEncodeLoginData(
        struct berval **requestBV,
        char     *objectDN,
        unsigned int  methodIDLen,
        unsigned int *methodID,
        char     *tag,
        size_t   putDataLen,
        void     *putData)
{
        int err = 0;
        BerElement *requestBer = NULL;

        unsigned int i;
        unsigned int elemCnt = methodIDLen / sizeof(unsigned int);

        char    *utf8ObjPtr=NULL;
        int     utf8ObjSize = 0;

        char    *utf8TagPtr = NULL;
        int     utf8TagSize = 0;

        utf8ObjPtr = objectDN;
        utf8ObjSize = strlen(utf8ObjPtr)+1;

        utf8TagPtr = tag;
        utf8TagSize = strlen(utf8TagPtr)+1;

        /* Allocate a BerElement for the request parameters. */
        if((requestBer = ber_alloc()) == NULL)
        {
                err = LDAP_ENCODING_ERROR;
                goto Cleanup;
        }

        /* BER encode the NMAS Version and the objectDN */
        err = (ber_printf(requestBer, "{io", NMAS_LDAP_EXT_VERSION, utf8ObjPtr, utf8ObjSize) < 0) ? LDAP_ENCODING_ERROR : 0;

        /* BER encode the MethodID Length and value */
        if (!err)
        {
                err = (ber_printf(requestBer, "{i{", methodIDLen) < 0) ? LDAP_ENCODING_ERROR : 0;