This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
- the Free Software Foundation; either version 2 of the License, or
+ the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
- along with this program; if not, write to the Free Software
- Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
-#include "includes.h"
-#include "Python.h"
-
#include "python/py_common.h"
/* Return a tuple of (error code, error string) from a WERROR */
if (initialised)
return;
+ load_case_tables();
+
/* Load configuration file */
- if (!lp_load(dyn_CONFIGFILE, True, False, False))
+ if (!lp_load(dyn_CONFIGFILE, True, False, False, True))
fprintf(stderr, "Can't load %s\n", dyn_CONFIGFILE);
/* Misc other stuff */
load_interfaces();
-
+ init_names();
+
initialised = True;
}
char *logfilename = NULL;
static char *kwlist[] = {"interactive", "logfilename", NULL};
- if (!PyArg_ParseTupleAndKeywords(args, kw, "|is", kwlist,
- &interactive, &logfilename))
+ if (!PyArg_ParseTupleAndKeywords(
+ args, kw, "|is", kwlist, &interactive, &logfilename))
return NULL;
if (interactive && logfilename) {
return Py_None;
}
-struct cli_state *open_pipe_creds(char *system_name, PyObject *creds,
- cli_pipe_fn *connect_fn,
- struct cli_state *cli)
-{
- struct ntuser_creds nt_creds;
-
- if (!cli) {
- cli = (struct cli_state *)malloc(sizeof(struct cli_state));
- if (!cli)
- return NULL;
- }
-
- ZERO_STRUCTP(cli);
+/* Parse credentials from a python dictionary. The dictionary can
+ only have the keys "username", "domain" and "password". Return
+ True for valid credentials in which case the username, domain and
+ password are set to pointers to their values from the dicationary.
+ If returns False, the errstr is set to point at some mallocated
+ memory describing the error. */
- /* Extract credentials from the python dictionary and initialise
- the ntuser_creds struct from them. */
+BOOL py_parse_creds(PyObject *creds, char **username, char **domain,
+ char **password, char **errstr)
+{
+ /* Initialise anonymous credentials */
- ZERO_STRUCT(nt_creds);
- nt_creds.pwd.null_pwd = True;
+ *username = "";
+ *domain = "";
+ *password = "";
if (creds && PyDict_Size(creds) > 0) {
- char *username, *password, *domain;
PyObject *username_obj, *password_obj, *domain_obj;
+ PyObject *key, *value;
+ int i;
- /* Check credentials passed are valid. This means the
- username, domain and password keys must exist and be
- string objects. */
+ /* Check for presence of required fields */
username_obj = PyDict_GetItemString(creds, "username");
domain_obj = PyDict_GetItemString(creds, "domain");
password_obj = PyDict_GetItemString(creds, "password");
- if (!username_obj || !domain_obj || !password_obj) {
- error:
+ if (!username_obj) {
+ *errstr = SMB_STRDUP("no username field in credential");
+ return False;
+ }
+
+ if (!domain_obj) {
+ *errstr = SMB_STRDUP("no domain field in credential");
+ return False;
+ }
- /* TODO: Either pass in the exception for the
- module calling open_pipe_creds() or have a
- global samba python module exception. */
+ if (!password_obj) {
+ *errstr = SMB_STRDUP("no password field in credential");
+ return False;
+ }
- PyErr_SetString(PyExc_RuntimeError,
- "invalid credentials");
- return NULL;
+ /* Check type of required fields */
+
+ if (!PyString_Check(username_obj)) {
+ *errstr = SMB_STRDUP("username field is not string type");
+ return False;
}
- if (!PyString_Check(username_obj) ||
- !PyString_Check(domain_obj) ||
- !PyString_Check(password_obj))
- goto error;
+ if (!PyString_Check(domain_obj)) {
+ *errstr = SMB_STRDUP("domain field is not string type");
+ return False;
+ }
- username = PyString_AsString(username_obj);
- domain = PyString_AsString(domain_obj);
- password = PyString_AsString(password_obj);
+ if (!PyString_Check(password_obj)) {
+ *errstr = SMB_STRDUP("password field is not string type");
+ return False;
+ }
- if (!username || !domain || !password)
- goto error;
+ /* Look for any extra fields */
- /* Initialise nt_creds structure with passed creds */
+ i = 0;
- fstrcpy(nt_creds.user_name, username);
- fstrcpy(nt_creds.domain, domain);
+ while (PyDict_Next(creds, &i, &key, &value)) {
+ if (strcmp(PyString_AsString(key), "domain") != 0 &&
+ strcmp(PyString_AsString(key), "username") != 0 &&
+ strcmp(PyString_AsString(key), "password") != 0) {
+ asprintf(errstr,
+ "creds contain extra field '%s'",
+ PyString_AsString(key));
+ return False;
+ }
+ }
- if (lp_encrypted_passwords())
- pwd_make_lm_nt_16(&nt_creds.pwd, password);
- else
- pwd_set_cleartext(&nt_creds.pwd, password);
+ /* Assign values */
- nt_creds.pwd.null_pwd = False;
+ *username = PyString_AsString(username_obj);
+ *domain = PyString_AsString(domain_obj);
+ *password = PyString_AsString(password_obj);
}
- /* Now try to connect */
+ *errstr = NULL;
- if (!connect_fn(cli, system_name, &nt_creds)) {
- if (cli) {
- NTSTATUS error = cli_nt_error(cli);
+ return True;
+}
- /* Raise an exception if something went wrong.
- FIXME: This should be a more appropriate
- exception than PyExc_RuntimeError */
+/* Return a cli_state to a RPC pipe on the given server. Use the
+ credentials passed if not NULL. If an error occurs errstr is set to a
+ string describing the error and NULL is returned. If set, errstr must
+ be freed by calling free(). */
- if (!NT_STATUS_IS_OK(error))
- PyErr_SetObject(PyExc_RuntimeError,
- py_ntstatus_tuple(error));
- else
- PyErr_SetString(PyExc_RuntimeError,
- "error connecting to pipe");
- }
-
+struct cli_state *open_pipe_creds(char *server, PyObject *creds,
+ int pipe_idx, char **errstr)
+{
+ char *username, *password, *domain;
+ struct cli_state *cli;
+ struct rpc_pipe_client *pipe_hnd;
+ NTSTATUS result;
+
+ /* Extract credentials from the python dictionary */
+
+ if (!py_parse_creds(creds, &username, &domain, &password, errstr))
+ return NULL;
+
+ /* Now try to connect */
+
+ result = cli_full_connection(
+ &cli, NULL, server, NULL, 0, "IPC$", "IPC",
+ username, domain, password, 0, Undefined, NULL);
+
+ if (!NT_STATUS_IS_OK(result)) {
+ *errstr = SMB_STRDUP("error connecting to IPC$ pipe");
return NULL;
}
+ pipe_hnd = cli_rpc_pipe_open_noauth(cli, pipe_idx, &result);
+ if (!pipe_hnd) {
+ cli_shutdown(cli);
+ asprintf(errstr, "error opening pipe index %d", pipe_idx);
+ return NULL;
+ }
+
+ *errstr = NULL;
+
return cli;
}
+
+/* Return true if a dictionary contains a "level" key with an integer
+ value. Set the value if so. */
+
+BOOL get_level_value(PyObject *dict, uint32 *level)
+{
+ PyObject *obj;
+
+ if (!(obj = PyDict_GetItemString(dict, "level")) ||
+ !PyInt_Check(obj))
+ return False;
+
+ if (level)
+ *level = PyInt_AsLong(obj);
+
+ return True;
+}
git.samba.org / samba.git / blobdiff