2 Unix SMB/CIFS implementation.
4 provide hooks into smbd C calls from ejs scripts
6 Copyright (C) Jelmer Vernooij 2005
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 #include "scripting/ejs/smbcalls.h"
24 #include "lib/appweb/ejs/ejs.h"
25 #include "lib/samba3/samba3.h"
26 #include "libcli/security/security.h"
27 #include "librpc/gen_ndr/ndr_misc.h"
30 static struct MprVar mprRegistry(struct samba3_regdb *reg)
32 struct MprVar mpv = mprObject("registry"), ks, vs, k, v;
35 ks = mprArray("array");
37 for (i = 0; i < reg->key_count; i++) {
38 k = mprObject("regkey");
40 mprSetVar(&k, "name", mprString(reg->keys[i].name));
42 vs = mprArray("array");
44 for (j = 0; j < reg->keys[i].value_count; j++) {
45 v = mprObject("regval");
47 mprSetVar(&v, "name", mprString(reg->keys[i].values[j].name));
48 mprSetVar(&v, "type", mprCreateIntegerVar(reg->keys[i].values[j].type));
49 mprSetVar(&v, "data", mprDataBlob(reg->keys[i].values[j].data));
51 mprAddArray(&vs, j, v);
54 mprSetVar(&k, "values", vs);
56 mprAddArray(&ks, i, k);
60 mprSetVar(&ks, "length", mprCreateIntegerVar(i));
63 mprSetVar(&mpv, "keys", ks);
68 static struct MprVar mprPolicy(struct samba3_policy *pol)
70 struct MprVar mpv = mprObject("policy");
72 mprSetVar(&mpv, "min_password_length", mprCreateIntegerVar(pol->min_password_length));
73 mprSetVar(&mpv, "password_history", mprCreateIntegerVar(pol->password_history));
74 mprSetVar(&mpv, "user_must_logon_to_change_password", mprCreateIntegerVar(pol->user_must_logon_to_change_password));
75 mprSetVar(&mpv, "maximum_password_age", mprCreateIntegerVar(pol->maximum_password_age));
76 mprSetVar(&mpv, "minimum_password_age", mprCreateIntegerVar(pol->minimum_password_age));
77 mprSetVar(&mpv, "lockout_duration", mprCreateIntegerVar(pol->lockout_duration));
78 mprSetVar(&mpv, "reset_count_minutes", mprCreateIntegerVar(pol->reset_count_minutes));
79 mprSetVar(&mpv, "bad_lockout_minutes", mprCreateIntegerVar(pol->bad_lockout_minutes));
80 mprSetVar(&mpv, "disconnect_time", mprCreateIntegerVar(pol->disconnect_time));
81 mprSetVar(&mpv, "refuse_machine_password_change", mprCreateIntegerVar(pol->refuse_machine_password_change));
86 static struct MprVar mprIdmapDb(struct samba3_idmapdb *db)
88 struct MprVar mpv = mprObject("idmapdb"), mps, mp;
91 mprSetVar(&mpv, "user_hwm", mprCreateIntegerVar(db->user_hwm));
92 mprSetVar(&mpv, "group_hwm", mprCreateIntegerVar(db->group_hwm));
94 mps = mprArray("array");
96 for (i = 0; i < db->mapping_count; i++) {
98 mp = mprObject("idmap");
100 mprSetVar(&mp, "IDMAP_GROUP", mprCreateIntegerVar(IDMAP_GROUP));
101 mprSetVar(&mp, "IDMAP_USER", mprCreateIntegerVar(IDMAP_USER));
102 mprSetVar(&mp, "type", mprCreateIntegerVar(db->mappings[i].type));
103 mprSetVar(&mp, "unix_id", mprCreateIntegerVar(db->mappings[i].unix_id));
105 tmp = dom_sid_string(NULL, db->mappings[i].sid);
106 mprSetVar(&mp, "sid", mprString(tmp));
109 mprAddArray(&mps, i, mp);
113 mprSetVar(&mpv, "length", mprCreateIntegerVar(i));
117 mprSetVar(&mpv, "mappings", mps);
122 static struct MprVar mprGroupMappings(struct samba3_groupdb *db)
124 struct MprVar mpv = mprArray("array"), g;
127 for (i = 0; i < db->groupmap_count; i++) {
129 g = mprObject("group");
131 mprSetVar(&g, "gid", mprCreateIntegerVar(db->groupmappings[i].gid));
133 tmp = dom_sid_string(NULL, db->groupmappings[i].sid);
134 mprSetVar(&g, "sid", mprString(tmp));
137 mprSetVar(&g, "sid_name_use", mprCreateIntegerVar(db->groupmappings[i].sid_name_use));
138 mprSetVar(&g, "nt_name", mprString(db->groupmappings[i].nt_name));
139 mprSetVar(&g, "comment", mprString(db->groupmappings[i].comment));
141 mprAddArray(&mpv, i, g);
145 mprSetVar(&mpv, "length", mprCreateIntegerVar(i));
152 static struct MprVar mprAliases(struct samba3_groupdb *db)
154 struct MprVar mpv = mprObject("array"), a, am;
157 for (i = 0; i < db->alias_count; i++) {
159 a = mprObject("alias");
161 tmp = dom_sid_string(NULL, db->aliases[i].sid);
162 mprSetVar(&a, "sid", mprString(tmp));
165 am = mprArray("array");
167 for (j = 0; j < db->aliases[i].member_count; j++) {
168 tmp = dom_sid_string(NULL, db->aliases[i].members[j]);
169 mprAddArray(&am, j, mprString(tmp));
173 mprSetVar(&a, "members", am);
177 mprSetVar(&mpv, "length", mprCreateIntegerVar(i));
183 static struct MprVar mprDomainSecrets(struct samba3_domainsecrets *ds)
185 struct MprVar v, e = mprObject("domainsecrets");
189 mprSetVar(&e, "name", mprString(ds->name));
191 tmp = dom_sid_string(NULL, &ds->sid);
192 mprSetVar(&e, "sid", mprString(tmp));
195 tmp = GUID_string(NULL, &ds->guid);
196 mprSetVar(&e, "guid", mprString(tmp));
199 mprSetVar(&e, "plaintext_pw", mprString(ds->plaintext_pw));
201 mprSetVar(&e, "last_change_time", mprCreateIntegerVar(ds->last_change_time));
202 mprSetVar(&e, "sec_channel_type", mprCreateIntegerVar(ds->sec_channel_type));
204 v = mprObject("hash_pw");
206 blob.data = ds->hash_pw.hash;
208 mprSetVar(&v, "hash", mprDataBlob(blob));
210 mprSetVar(&v, "mod_time", mprCreateIntegerVar(ds->hash_pw.mod_time));
212 mprSetVar(&e, "hash_pw", v);
217 static struct MprVar mprSecrets(struct samba3_secrets *sec)
219 struct MprVar mpv = mprObject("samba3_secrets"), es, e;
222 es = mprArray("array");
224 for (i = 0; i < sec->ldappw_count; i++) {
225 e = mprObject("ldappw");
227 mprSetVar(&e, "dn", mprString(sec->ldappws[i].dn));
228 mprSetVar(&e, "password", mprString(sec->ldappws[i].password));
230 mprAddArray(&es, i, e);
233 mprSetVar(&mpv, "ldappws", es);
235 es = mprArray("array");
237 for (i = 0; i < sec->domain_count; i++) {
238 mprAddArray(&es, i, mprDomainSecrets(&sec->domains[i]));
242 mprSetVar(&es, "length", mprCreateIntegerVar(i));
245 mprSetVar(&mpv, "domains", es);
247 es = mprArray("trusted_domains");
249 for (i = 0; i < sec->trusted_domain_count; i++) {
253 e = mprObject("trusted_domain");
255 ns = mprArray("array");
257 for (j = 0; j < sec->trusted_domains[i].uni_name_len; j++) {
258 mprAddArray(&ns, j, mprString(sec->trusted_domains[i].uni_name[j]));
261 mprSetVar(&e, "uni_name", ns);
263 mprSetVar(&e, "pass", mprString(sec->trusted_domains[i].pass));
264 mprSetVar(&e, "mod_time", mprCreateIntegerVar(sec->trusted_domains[i].mod_time));
266 tmp = dom_sid_string(NULL, &sec->trusted_domains[i].domain_sid);
267 mprSetVar(&e, "domains_sid", mprString(tmp));
270 mprAddArray(&es, i, e);
274 mprSetVar(&es, "length", mprCreateIntegerVar(i));
277 mprSetVar(&mpv, "trusted_domains", es);
279 es = mprArray("array");
281 for (i = 0; i < sec->afs_keyfile_count; i++) {
284 e = mprObject("afs_keyfile");
286 mprSetVar(&e, "cell", mprString(sec->afs_keyfiles[i].cell));
288 ks = mprArray("array");
290 for (j = 0; j < 8; j++) {
291 struct MprVar k = mprObject("entry");
294 mprSetVar(&k, "kvno", mprCreateIntegerVar(sec->afs_keyfiles[i].entry[j].kvno));
295 blob.data = (uint8_t*)sec->afs_keyfiles[i].entry[j].key;
297 mprSetVar(&k, "key", mprDataBlob(blob));
299 mprAddArray(&ks, j, k);
302 mprSetVar(&e, "entry", ks);
304 mprSetVar(&e, "nkeys", mprCreateIntegerVar(sec->afs_keyfiles[i].nkeys));
306 mprAddArray(&es, i, e);
310 mprSetVar(&es, "length", mprCreateIntegerVar(i));
313 mprSetVar(&mpv, "afs_keyfiles", es);
315 mprSetVar(&mpv, "ipc_cred", mprCredentials(sec->ipc_cred));
320 static struct MprVar mprShares(struct samba3 *samba3)
322 struct MprVar mpv = mprArray("array"), s;
325 for (i = 0; i < samba3->share_count; i++) {
326 s = mprObject("share");
328 mprSetVar(&s, "name", mprString(samba3->shares[i].name));
332 mprAddArray(&mpv, i, s);
336 mprSetVar(&mpv, "length", mprCreateIntegerVar(i));
342 static struct MprVar mprSamAccounts(struct samba3 *samba3)
344 struct MprVar mpv = mprArray("array"), m;
347 for (i = 0; i < samba3->samaccount_count; i++) {
348 struct samba3_samaccount *a = &samba3->samaccounts[i];
351 m = mprObject("samba3_samaccount");
353 mprSetVar(&m, "logon_time", mprCreateIntegerVar(a->logon_time));
354 mprSetVar(&m, "logoff_time", mprCreateIntegerVar(a->logoff_time));
355 mprSetVar(&m, "kickoff_time", mprCreateIntegerVar(a->kickoff_time));
356 mprSetVar(&m, "bad_password_time", mprCreateIntegerVar(a->bad_password_time));
357 mprSetVar(&m, "pass_last_set_time", mprCreateIntegerVar(a->pass_last_set_time));
358 mprSetVar(&m, "pass_can_change_time", mprCreateIntegerVar(a->pass_can_change_time));
359 mprSetVar(&m, "pass_must_change_time", mprCreateIntegerVar(a->pass_must_change_time));
360 mprSetVar(&m, "user_rid", mprCreateIntegerVar(a->user_rid));
361 mprSetVar(&m, "group_rid", mprCreateIntegerVar(a->group_rid));
362 mprSetVar(&m, "acct_ctrl", mprCreateIntegerVar(a->acct_ctrl));
363 mprSetVar(&m, "logon_divs", mprCreateIntegerVar(a->logon_divs));
364 mprSetVar(&m, "bad_password_count", mprCreateIntegerVar(a->bad_password_count));
365 mprSetVar(&m, "logon_count", mprCreateIntegerVar(a->logon_count));
366 mprSetVar(&m, "username", mprString(a->username));
367 mprSetVar(&m, "domain", mprString(a->domain));
368 mprSetVar(&m, "nt_username", mprString(a->nt_username));
369 mprSetVar(&m, "dir_drive", mprString(a->dir_drive));
370 mprSetVar(&m, "munged_dial", mprString(a->munged_dial));
371 mprSetVar(&m, "fullname", mprString(a->fullname));
372 mprSetVar(&m, "homedir", mprString(a->homedir));
373 mprSetVar(&m, "logon_script", mprString(a->logon_script));
374 mprSetVar(&m, "profile_path", mprString(a->profile_path));
375 mprSetVar(&m, "acct_desc", mprString(a->acct_desc));
376 mprSetVar(&m, "workstations", mprString(a->workstations));
378 blob.data = a->lm_pw.hash;
379 mprSetVar(&m, "lm_pw", mprDataBlob(blob));
380 blob.data = a->nt_pw.hash;
381 mprSetVar(&m, "nt_pw", mprDataBlob(blob));
383 mprAddArray(&mpv, i, m);
387 mprSetVar(&mpv, "length", mprCreateIntegerVar(i));
393 static struct MprVar mprWinsEntries(struct samba3 *samba3)
395 struct MprVar mpv = mprArray("array");
398 for (i = 0; i < samba3->winsdb_count; i++) {
399 struct MprVar w = mprObject("wins_entry"), ips;
401 mprSetVar(&w, "name", mprString(samba3->winsdb_entries[i].name));
402 mprSetVar(&w, "nb_flags", mprCreateIntegerVar(samba3->winsdb_entries[i].nb_flags));
403 mprSetVar(&w, "type", mprCreateIntegerVar(samba3->winsdb_entries[i].type));
404 mprSetVar(&w, "ttl", mprCreateIntegerVar(samba3->winsdb_entries[i].ttl));
406 ips = mprObject("array");
408 for (j = 0; j < samba3->winsdb_entries[i].ip_count; j++) {
410 addr = sys_inet_ntoa(samba3->winsdb_entries[i].ips[j]);
411 mprAddArray(&ips, j, mprString(addr));
414 mprSetVar(&w, "ips", ips);
416 mprAddArray(&mpv, i, w);
420 mprSetVar(&mpv, "length", mprCreateIntegerVar(i));
426 static int ejs_find_domainsecrets(MprVarHandle eid, int argc, struct MprVar **argv)
428 struct samba3 *samba3 = NULL;
429 struct samba3_domainsecrets *sec;
432 ejsSetErrorMsg(eid, "find_domainsecrets invalid arguments");
436 samba3 = mprGetThisPtr(eid, "samba3");
438 sec = samba3_find_domainsecrets(samba3, mprToString(argv[0]));
441 mpr_Return(eid, mprCreateUndefinedVar());
443 mpr_Return(eid, mprDomainSecrets(sec));
450 initialise samba3 ejs subsystem
452 samba3 = samba3_read(libdir,smbconf)
454 static int ejs_samba3_read(MprVarHandle eid, int argc, struct MprVar **argv)
456 struct MprVar mpv = mprObject("samba3");
457 struct samba3 *samba3;
461 ejsSetErrorMsg(eid, "samba3_read invalid arguments");
465 status = samba3_read(mprToString(argv[0]), mprToString(argv[1]), mprMemCtx(), &samba3);
467 if (NT_STATUS_IS_ERR(status)) {
468 ejsSetErrorMsg(eid, "samba3_read: error");
474 mprSetPtrChild(&mpv, "samba3", samba3);
475 mprSetVar(&mpv, "winsentries", mprWinsEntries(samba3));
476 mprSetVar(&mpv, "samaccounts", mprSamAccounts(samba3));
477 mprSetVar(&mpv, "shares", mprShares(samba3));
478 mprSetVar(&mpv, "secrets", mprSecrets(&samba3->secrets));
479 mprSetVar(&mpv, "groupmappings", mprGroupMappings(&samba3->group));
480 mprSetVar(&mpv, "aliases", mprAliases(&samba3->group));
481 mprSetVar(&mpv, "idmapdb", mprIdmapDb(&samba3->idmap));
482 mprSetVar(&mpv, "policy", mprPolicy(&samba3->policy));
483 mprSetVar(&mpv, "registry", mprRegistry(&samba3->registry));
484 mprSetVar(&mpv, "configuration", mprParam(samba3->configuration));
485 mprSetCFunction(&mpv, "find_domainsecrets", ejs_find_domainsecrets);
487 mpr_Return(eid, mpv);
494 setup C functions that be called from ejs
496 NTSTATUS smb_setup_ejs_samba3(void)
498 ejsDefineCFunction(-1, "samba3_read", ejs_samba3_read, NULL, MPR_VAR_SCRIPT_HANDLE);