4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
22 * Copyright (c) 2001, 2010, Oracle and/or its affiliates. All rights reserved.
23 * Copyright 2012 Milan Jurik. All rights reserved.
29 * Utility to add /etc files into LDAP.
30 * Can also be used to dump entries from a ldap container in /etc format.
37 #include <sys/param.h>
39 #include <sys/types.h>
40 #include <sys/socket.h>
41 #include <netinet/in.h>
42 #include <arpa/inet.h>
48 #include <nss_dbdefs.h>
50 #include <rpc/rpcent.h>
55 #include <sys/systeminfo.h>
56 #include "ns_internal.h"
57 #include "ldapaddent.h"
58 #include "standalone.h"
63 static struct ttypelist_t
{
64 char *ttype
; /* type tag */
65 int (*genent
)(char *, int(*)());
66 /* routine to turn line into ldap entries */
67 void (*dump
)(ns_ldap_result_t
*);
68 /* routine to print ldap containers */
69 int (*filedbmline
)(); /* routine to turn file line into dbm line */
70 char *objclass
; /* Objectclass for the servicetype */
71 char *sortattr
; /* Sort attr for enumeration */
74 char parse_err_msg
[PARSE_ERR_MSG_LEN
];
75 int continue_onerror
= 0; /* do not exit on error */
77 static int get_basedn(char *service
, char **basedn
);
78 static int check_ipaddr(char *addr
, char **newaddr
);
79 static int check_projname(char *addr
);
84 extern char *__nis_quote_key(const char *, char *, int);
86 static char *inputbasedn
= NULL
;
87 static char *databasetype
= NULL
;
88 static int exit_val
= 0;
89 static unsigned nent_add
= 0;
90 static FILE *etcf
= 0;
91 static ns_cred_t authority
;
95 perr(ns_ldap_error_t
*e
)
98 (void) fprintf(stderr
, "%d: %s\n",
99 e
->status
, e
->message
);
104 ascii_to_int(char *str
)
109 if (c
== NULL
|| *c
== '\0')
117 for (i
= 0; i
< strlen(c
); i
++)
125 * Internet network address interpretation routine.
126 * The library routines call this routine to interpret
130 encode_network(const char *cp
)
136 in_addr_t parts
[4], *pp
= parts
;
142 if (*++cp
== 'x' || *cp
== 'X')
147 while ((c
= *cp
) != '\0') {
149 if ((c
- '0') >= base
)
151 val
= (val
* base
) + (c
- '0');
155 if (base
== 16 && isxdigit(c
)) {
156 val
= (val
<< 4) + (c
+ 10 - (islower(c
) ? 'a' : 'A'));
164 return ((in_addr_t
)-1);
168 if (*cp
&& !isspace(*cp
))
169 return ((in_addr_t
)-1);
173 return ((in_addr_t
)-1);
174 for (val
= 0, i
= 0; i
< n
; i
++) {
176 val
|= parts
[i
] & 0xff;
178 for (/* no init */; i
< 4; i
++)
184 replace_tab2space(char *str
)
188 while ((str
) && (str
[i
])) {
196 blankline(char *line
)
200 for (p
= line
; *p
; p
++)
201 if (*p
!= ' ' && *p
!= '\t')
207 * check whether the token <tok> is a triplet,
208 * i. e. <tok> := (<hostname>,<username>,<domainname>)
209 * where <hostname>, <username>, <domainname> are IA5String
210 * <tok> supposes to contain NO spaces and start with '('
213 is_triplet(char *tok
)
216 return (strchr(++tok
, '(') == NULL
&& /* no more '(' */
217 (s
= strchr(tok
, ')')) != NULL
&& /* find ')' */
218 !*++s
&& /* ')' ends token */
219 (tok
= strchr(tok
, ',')) != NULL
&& /* host up to ',' */
220 (tok
= strchr(++tok
, ',')) != NULL
&& /* user up to ',' */
221 strchr(++tok
, ',') == NULL
); /* no more ',' */
225 line_buf_expand(struct line_buf
*line
)
227 line
->alloc
+= BUFSIZ
;
228 line
->str
= (char *)realloc(line
->str
, line
->alloc
);
230 if (line
->str
== NULL
) {
231 (void) fprintf(stderr
,
232 gettext("line_buf_expand: out of memory\n"));
238 line_buf_init(struct line_buf
*line
)
240 (void) memset((char *)line
, 0, sizeof (*line
));
241 line_buf_expand(line
);
245 __s_add_attr(ns_ldap_entry_t
*e
, char *attrname
, char *value
)
250 a
= (ns_ldap_attr_t
*)calloc(1, sizeof (ns_ldap_attr_t
));
252 return (NS_LDAP_MEMORY
);
253 a
->attrname
= strdup(attrname
);
254 if (a
->attrname
== NULL
) {
256 return (NS_LDAP_MEMORY
);
258 a
->attrvalue
= (char **)calloc(1, sizeof (char **));
259 if (a
->attrvalue
== NULL
) {
262 return (NS_LDAP_MEMORY
);
265 a
->attrvalue
[0] = NULL
;
271 return (NS_LDAP_MEMORY
);
274 e
->attr_pair
[e
->attr_count
] = a
;
276 return (NS_LDAP_SUCCESS
);
280 __s_add_attrlist(ns_ldap_entry_t
*e
, char *attrname
, char **argv
)
287 a
= (ns_ldap_attr_t
*)calloc(1, sizeof (ns_ldap_attr_t
));
289 return (NS_LDAP_MEMORY
);
290 a
->attrname
= strdup(attrname
);
291 if (a
->attrname
== NULL
) {
293 return (NS_LDAP_MEMORY
);
296 for (i
= 0, av
= argv
; *av
!= NULL
; av
++, i
++)
299 a
->attrvalue
= (char **)calloc(i
, sizeof (char **));
301 if (a
->attrvalue
== NULL
) {
304 return (NS_LDAP_MEMORY
);
307 for (j
= 0; j
< i
; j
++) {
313 return (NS_LDAP_MEMORY
);
317 e
->attr_pair
[e
->attr_count
] = a
;
319 return (NS_LDAP_SUCCESS
);
322 static ns_ldap_entry_t
*
323 __s_mk_entry(char **objclass
, int max_attr
)
326 e
= (ns_ldap_entry_t
*)calloc(1, sizeof (ns_ldap_entry_t
));
329 e
->attr_pair
= (ns_ldap_attr_t
**)calloc(max_attr
+1,
330 sizeof (ns_ldap_attr_t
*));
331 if (e
->attr_pair
== NULL
) {
336 if (__s_add_attrlist(e
, "objectClass", objclass
) != NS_LDAP_SUCCESS
) {
345 ldap_freeEntry(ns_ldap_entry_t
*ep
)
352 if (ep
->attr_pair
== NULL
) {
356 for (j
= 0; j
< ep
->attr_count
; j
++) {
357 if (ep
->attr_pair
[j
] == NULL
)
359 free(ep
->attr_pair
[j
]->attrname
);
360 if (ep
->attr_pair
[j
]->attrvalue
) {
361 for (k
= 0; (k
< ep
->attr_pair
[j
]->value_count
) &&
362 (ep
->attr_pair
[j
]->attrvalue
[k
]); k
++) {
363 free(ep
->attr_pair
[j
]->attrvalue
[k
]);
365 free(ep
->attr_pair
[j
]->attrvalue
);
367 free(ep
->attr_pair
[j
]);
374 addentry(void *entry
, int mod
)
377 ns_ldap_error_t
*eres
= NULL
;
381 /* adds entry into the LDAP tree */
383 result
= __ns_ldap_addTypedEntry(databasetype
, inputbasedn
,
384 entry
, 0, &authority
, NS_LDAP_FOLLOWREF
| NS_LDAP_KEEP_CONN
,
387 result
= __ns_ldap_addTypedEntry(databasetype
, inputbasedn
,
388 entry
, 1, &authority
, NS_LDAP_FOLLOWREF
| NS_LDAP_KEEP_CONN
,
391 * Return 0 on success
392 * LDAP_ALREADY_EXISTS if entry exists already
393 * 1 for all other non-fatal errors.
394 * Exit on fatal errors.
397 case NS_LDAP_SUCCESS
:
402 case NS_LDAP_OP_FAILED
:
403 (void) fprintf(stderr
, gettext("operation failed.\n"));
407 case NS_LDAP_INVALID_PARAM
:
408 (void) fprintf(stderr
,
409 gettext("invalid parameter(s) passed.\n"));
413 case NS_LDAP_NOTFOUND
:
414 (void) fprintf(stderr
, gettext("entry not found.\n"));
419 (void) fprintf(stderr
,
420 gettext("internal memory allocation error.\n"));
425 (void) fprintf(stderr
,
426 gettext("LDAP Configuration problem.\n"));
431 case NS_LDAP_PARTIAL
:
432 (void) fprintf(stderr
,
433 gettext("partial result returned\n"));
438 case NS_LDAP_INTERNAL
:
439 if (eres
->status
== LDAP_ALREADY_EXISTS
||
440 eres
->status
== LDAP_NO_SUCH_OBJECT
)
442 else if (eres
->status
== LDAP_INSUFFICIENT_ACCESS
) {
443 (void) fprintf(stderr
,
444 gettext("The user does not have permission"
445 " to add/modify entries\n"));
456 (void) __ns_ldap_freeError(&eres
);
462 * Display usage message to STDERR.
468 (void) fprintf(stderr
, "%s\n", msg
);
470 (void) fprintf(stderr
, gettext(
471 "usage: ldapaddent [-cpv] [-a authenticationMethod] [-b baseDN]\n"
472 "-D bindDN [-w bindPassword] [-j passwdFile] [-f filename]\n"
475 "usage: ldapaddent [-cpv] -asasl/GSSAPI [-b baseDN] [-f filename]\n"
478 "usage: ldapaddent -d [-v] [-a authenticationMethod] [-D bindDN]\n"
479 "[-w bindPassword] [-j passwdFile] database\n"
481 "usage: ldapaddent [-cpv] -h LDAP_server[:serverPort] [-M domainName]\n"
482 "[-N profileName] [-P certifPath] [-a authenticationMethod]\n"
483 "[-b baseDN] -D bindDN [-w bindPassword] [-f filename]\n"
484 "[-j passwdFile] database\n"
486 "usage: ldapaddent [-cpv] -h LDAP_server[:serverPort] [-M domainName]\n"
487 "[-N profileName] [-P certifPath] -asasl/GSSAPI [-b baseDN]\n"
488 "[-f filename] database\n"
490 "usage: ldapaddent -d [-v] -h LDAP_server[:serverPort]"
492 "[-N profileName] [-P certifPath] [-a authenticationMethod]\n"
493 "[-b baseDN] -D bindDN [-w bindPassword] [-j passwdFile]\n"
499 * Determine if the given string is an IP address (IPv4 or IPv6).
500 * If so, it's converted to the preferred form (rfc2373) and
501 * *newaddr will point to the new address.
503 * Returns -2 : inet_ntop error
504 * -1 : not an IP address
505 * 0 : unsupported IP address (future use)
510 check_ipaddr(char *addr
, char **newaddr
) {
511 ipaddr_t addr_ipv4
= 0;
512 in6_addr_t addr_ipv6
;
515 if (inet_pton(AF_INET6
, addr
, &addr_ipv6
) == 1) {
519 /* Convert IPv4-mapped IPv6 address to IPv4 */
520 if (IN6_IS_ADDR_V4MAPPED(&addr_ipv6
) ||
521 IN6_IS_ADDR_V4COMPAT(&addr_ipv6
)) {
522 IN6_V4MAPPED_TO_IPADDR(&addr_ipv6
, addr_ipv4
);
523 if ((*newaddr
= calloc(1, INET_ADDRSTRLEN
)) == NULL
) {
524 (void) fprintf(stderr
,
525 gettext("out of memory\n"));
528 if (inet_ntop(AF_INET
, &addr_ipv4
, *newaddr
,
535 /* Processing general IPv6 addresses */
536 if ((*newaddr
= calloc(1, INET6_ADDRSTRLEN
)) == NULL
) {
537 (void) fprintf(stderr
, gettext("out of memory\n"));
540 if (inet_ntop(AF_INET6
, &addr_ipv6
, *newaddr
, INET6_ADDRSTRLEN
))
546 /* Processing IPv4 addresses of the type d.d.d.d. */
547 if (inet_pton(AF_INET
, addr
, &addr_ipv4
) == 1) {
550 if ((*newaddr
= calloc(1, INET_ADDRSTRLEN
)) == NULL
) {
551 (void) fprintf(stderr
, gettext("out of memory\n"));
554 if (inet_ntop(AF_INET
, &addr_ipv4
, *newaddr
, INET_ADDRSTRLEN
))
560 /* Processing IPv4 addresses d.d.d , d.d and d */
561 if (inet_addr(addr
) != (in_addr_t
)-1) {
564 if ((*newaddr
= strdup(addr
)) == NULL
) {
565 (void) fprintf(stderr
, gettext("out of memory\n"));
575 * Verifies that project name meets the restrictions defined by project(4).
578 check_projname(char *addr
)
581 if (addr
== NULL
|| *addr
== '\0')
584 for (i
= 0; i
< strlen(addr
); i
++) {
585 if (!isalpha(addr
[i
]) &&
597 genent_hosts(char *line
, int (*cback
)())
602 char *cname
, *pref_addr
;
603 int ctr
= 0, retval
= 1;
604 int rc
= GENENT_OK
, af
;
610 * don't clobber our argument
612 if (strlen(line
) >= sizeof (buf
)) {
613 (void) strlcpy(parse_err_msg
, gettext("line too long"),
615 return (GENENT_PARSEERR
);
617 (void) strcpy(buf
, line
);
622 (void) memset((char *)ecol
, 0, sizeof (ecol
));
626 * All leading spaces will be deleted from the comment
628 ecol
[3].ec_value
.ec_value_val
= "";
629 ecol
[3].ec_value
.ec_value_len
= 0;
630 comment
= t
= strchr(buf
, '#');
634 } while (*comment
!= '\0' && isspace(*comment
));
635 if (*comment
!= '\0') {
637 ecol
[3].ec_value
.ec_value_val
= strdup(comment
);
638 ecol
[3].ec_value
.ec_value_len
= strlen(comment
)+1;
647 if ((t
= strtok(buf
, " \t")) == 0) {
648 (void) strlcpy(parse_err_msg
, gettext("no host"),
650 return (GENENT_PARSEERR
);
653 af
= check_ipaddr(t
, &pref_addr
);
655 (void) strlcpy(parse_err_msg
, gettext("Internal error"),
657 } else if (af
== -1) {
658 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
659 gettext("Invalid IP address: %s"), t
);
660 } else if (flags
& F_VERBOSE
) {
661 if ((strncasecmp(t
, pref_addr
, strlen(t
))) != 0) {
662 (void) fprintf(stdout
,
663 gettext("IP address %s converted to %s\n"),
669 (void) fprintf(stderr
, "%s\n", parse_err_msg
);
670 if (continue_onerror
== 0)
671 return (GENENT_CBERR
);
676 ecol
[2].ec_value
.ec_value_val
= pref_addr
;
677 ecol
[2].ec_value
.ec_value_len
= strlen(pref_addr
)+1;
682 if ((t
= strtok(NULL
, " \t")) == 0) {
683 (void) strlcpy(parse_err_msg
, gettext("no cname"),
685 return (GENENT_PARSEERR
);
687 ecol
[0].ec_value
.ec_value_val
= t
;
688 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
693 if ((data
.h_addr_list
= (char **)calloc(2, sizeof (char **))) == NULL
) {
694 (void) fprintf(stderr
, gettext("out of memory\n"));
697 data
.h_addr_list
[0] = strdup(ecol
[2].ec_value
.ec_value_val
);
698 data
.h_addr_list
[1] = NULL
;
701 data
.h_name
= strdup(ecol
[0].ec_value
.ec_value_val
);
707 data
.h_aliases
= NULL
;
711 * don't clobber comment in canonical entry
714 /* This call to AddEntry may move out of the loop */
715 /* This is because we have to call the function just once */
716 if (t
!= cname
&& strcasecmp(t
, cname
) == 0)
718 if (strcasecmp(t
, ecol
[0].ec_value
.ec_value_val
) == 0)
721 ecol
[1].ec_value
.ec_value_val
= t
;
722 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
725 alias
= strdup(ecol
[1].ec_value
.ec_value_val
);
726 if ((data
.h_aliases
= reallocarray(data
.h_aliases
, ctr
,
727 sizeof (char **))) == NULL
) {
728 (void) fprintf(stderr
, gettext("out of memory\n"));
731 data
.h_aliases
[ctr
-1] = alias
;
732 } while (t
= strtok(NULL
, " \t"));
735 * End the list of all the aliases by NULL
736 * If there is some comment, it will be stored as the last entry
737 * in the list of the host aliases
739 if ((data
.h_aliases
= reallocarray(data
.h_aliases
,
740 ecol
[3].ec_value
.ec_value_len
!= 0 ? ctr
+ 2 : ctr
+ 1,
741 sizeof (char **))) == NULL
) {
742 (void) fprintf(stderr
, gettext("out of memory\n"));
746 if (ecol
[3].ec_value
.ec_value_len
!= 0) {
747 data
.h_aliases
[ctr
++] = ecol
[3].ec_value
.ec_value_val
;
749 data
.h_aliases
[ctr
] = NULL
;
751 if (flags
& F_VERBOSE
)
752 (void) fprintf(stdout
,
753 gettext("Adding entry : cn=%s+ipHostNumber=%s\n"),
754 data
.h_name
, data
.h_addr_list
[0]);
756 retval
= (*cback
)(&data
, 0);
758 if (ecol
[3].ec_value
.ec_value_len
!= 0) {
759 free(ecol
[3].ec_value
.ec_value_val
);
762 if (retval
== LDAP_ALREADY_EXISTS
) {
763 if (continue_onerror
)
764 (void) fprintf(stderr
,
765 gettext("Entry: cn=%s+ipHostNumber=%s "
766 "already Exists -skipping it\n"),
767 data
.h_name
, data
.h_addr_list
[0]);
770 (void) fprintf(stderr
,
771 gettext("Entry: cn=%s+ipHostNumber=%s"
772 " already Exists\n"),
773 data
.h_name
, data
.h_addr_list
[0]);
779 free(data
.h_aliases
);
780 free(data
.h_addr_list
);
788 dump_hosts(ns_ldap_result_t
*res
)
790 ns_ldap_attr_t
*attrptr
= NULL
,
792 *iphostnumber
= NULL
,
795 char *name
; /* host name */
797 if (res
== NULL
|| res
->entry
== NULL
)
799 for (i
= 0; i
< res
->entry
->attr_count
; i
++) {
800 attrptr
= res
->entry
->attr_pair
[i
];
801 if (strcasecmp(attrptr
->attrname
, "cn") == 0)
803 else if (strcasecmp(attrptr
->attrname
, "iphostnumber") == 0)
804 iphostnumber
= attrptr
;
805 else if (strcasecmp(attrptr
->attrname
, "description") == 0) {
810 if (cn
== NULL
|| cn
->attrvalue
== NULL
|| cn
->attrvalue
[0] == NULL
||
811 iphostnumber
== NULL
|| iphostnumber
->attrvalue
== NULL
||
812 iphostnumber
->attrvalue
[0] == NULL
)
815 if ((name
= __s_api_get_canonical_name(res
->entry
, cn
, 1)) == NULL
)
818 /* ip host/ipnode number */
819 if (strlen(iphostnumber
->attrvalue
[0]) <= INET_ADDRSTRLEN
)
820 /* IPV4 or IPV6 but <= NET_ADDRSTRLEN */
821 (void) fprintf(stdout
, "%-18s", iphostnumber
->attrvalue
[0]);
824 (void) fprintf(stdout
, "%-48s", iphostnumber
->attrvalue
[0]);
826 /* host/ipnode name */
827 (void) fprintf(stdout
, "%s ", name
);
830 for (j
= 0; j
< cn
->value_count
; j
++) {
831 if (cn
->attrvalue
[j
]) {
832 if (strcasecmp(name
, cn
->attrvalue
[j
]) == 0)
835 (void) fprintf(stdout
, "%s ", cn
->attrvalue
[j
]);
840 if (desc
!= NULL
&& desc
->attrvalue
!= NULL
&&
841 desc
->attrvalue
[0] != NULL
) {
842 (void) fprintf(stdout
, "#%s", desc
->attrvalue
[0]);
846 (void) fprintf(stdout
, "\n");
854 genent_rpc(char *line
, int (*cback
)())
868 * don't clobber our argument
870 if (strlen(line
) >= sizeof (buf
)) {
871 (void) strlcpy(parse_err_msg
, gettext("line too long"),
873 return (GENENT_PARSEERR
);
875 (void) strcpy(buf
, line
);
880 (void) memset((char *)ecol
, 0, sizeof (ecol
));
885 t
= strchr(buf
, '#');
888 ecol
[3].ec_value
.ec_value_val
= t
;
889 ecol
[3].ec_value
.ec_value_len
= strlen(t
)+1;
891 ecol
[3].ec_value
.ec_value_val
= 0;
892 ecol
[3].ec_value
.ec_value_len
= 0;
898 if ((t
= strtok(buf
, " \t")) == 0) {
899 (void) strlcpy(parse_err_msg
, gettext("no number"),
901 return (GENENT_PARSEERR
);
903 ecol
[0].ec_value
.ec_value_val
= t
;
904 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
910 if ((t
= strtok(NULL
, " \t")) == 0) {
911 (void) strlcpy(parse_err_msg
, gettext("no number"),
913 return (GENENT_PARSEERR
);
915 ecol
[2].ec_value
.ec_value_val
= t
;
916 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
923 data
.r_name
= strdup(ecol
[0].ec_value
.ec_value_val
);
924 if (ecol
[2].ec_value
.ec_value_val
!= NULL
&&
925 ecol
[2].ec_value
.ec_value_val
[0] != '\0') {
927 data
.r_number
= ascii_to_int(ecol
[2].ec_value
.ec_value_val
);
928 if (data
.r_number
== -1) {
929 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
930 gettext("invalid program number: %s"),
931 ecol
[2].ec_value
.ec_value_val
);
932 return (GENENT_PARSEERR
);
941 data
.r_aliases
= NULL
;
945 * don't clobber comment in canonical entry
947 if (t
!= cname
&& strcasecmp(t
, cname
) == 0)
949 if (strcasecmp(t
, ecol
[0].ec_value
.ec_value_val
) == 0)
952 ecol
[1].ec_value
.ec_value_val
= t
;
953 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
956 alias
= strdup(ecol
[1].ec_value
.ec_value_val
);
957 if ((data
.r_aliases
= reallocarray(data
.r_aliases
, ctr
,
958 sizeof (char **))) == NULL
) {
959 (void) fprintf(stderr
, gettext("out of memory\n"));
962 data
.r_aliases
[ctr
-1] = alias
;
966 * only put comment in canonical entry
968 ecol
[3].ec_value
.ec_value_val
= 0;
969 ecol
[3].ec_value
.ec_value_len
= 0;
971 } while (t
= strtok(NULL
, " \t"));
973 /* End the list of all the aliases by NULL */
974 if ((data
.r_aliases
= reallocarray(data
.r_aliases
, ctr
+ 1,
975 sizeof (char **))) == NULL
) {
976 (void) fprintf(stderr
, gettext("out of memory\n"));
979 data
.r_aliases
[ctr
] = NULL
;
981 if (flags
& F_VERBOSE
)
982 (void) fprintf(stdout
,
983 gettext("Adding entry : %s\n"), data
.r_name
);
985 retval
= (*cback
)(&data
, 0);
987 if (retval
== LDAP_ALREADY_EXISTS
) {
988 if (continue_onerror
)
989 (void) fprintf(stderr
,
990 gettext("Entry: %s - already Exists,"
991 " skipping it.\n"), data
.r_name
);
994 (void) fprintf(stderr
,
995 gettext("Entry: %s - already Exists\n"),
1002 free(data
.r_aliases
);
1010 dump_rpc(ns_ldap_result_t
*res
)
1012 ns_ldap_attr_t
*attrptr
= NULL
, *cn
= NULL
, *rpcnumber
= NULL
;
1014 char *name
; /* rpc name */
1016 if (res
== NULL
|| res
->entry
== NULL
)
1018 for (i
= 0; i
< res
->entry
->attr_count
; i
++) {
1019 attrptr
= res
->entry
->attr_pair
[i
];
1020 if (strcasecmp(attrptr
->attrname
, "cn") == 0)
1022 else if (strcasecmp(attrptr
->attrname
, "oncRpcNumber") == 0)
1023 rpcnumber
= attrptr
;
1026 if (cn
== NULL
|| cn
->attrvalue
== NULL
|| cn
->attrvalue
[0] == NULL
||
1027 rpcnumber
== NULL
|| rpcnumber
->attrvalue
== NULL
||
1028 rpcnumber
->attrvalue
[0] == NULL
)
1031 if ((name
= __s_api_get_canonical_name(res
->entry
, cn
, 1)) == NULL
)
1035 if (strlen(name
) < 8)
1036 (void) fprintf(stdout
, "%s\t\t", name
);
1038 (void) fprintf(stdout
, "%s\t", name
);
1041 (void) fprintf(stdout
, "%-8s", rpcnumber
->attrvalue
[0]);
1045 for (j
= 0; j
< cn
->value_count
; j
++) {
1046 if (cn
->attrvalue
[j
]) {
1047 if (strcasecmp(name
, cn
->attrvalue
[j
]) == 0)
1050 (void) fprintf(stdout
, "%s ", cn
->attrvalue
[j
]);
1055 (void) fprintf(stdout
, "\n");
1065 genent_protocols(char *line
, int (*cback
)())
1072 struct protoent data
;
1079 * don't clobber our argument
1081 if (strlen(line
) >= sizeof (buf
)) {
1082 (void) strlcpy(parse_err_msg
, gettext("line too long"),
1084 return (GENENT_PARSEERR
);
1086 (void) strcpy(buf
, line
);
1091 (void) memset((char *)ecol
, 0, sizeof (ecol
));
1096 t
= strchr(buf
, '#');
1099 ecol
[3].ec_value
.ec_value_val
= t
;
1100 ecol
[3].ec_value
.ec_value_len
= strlen(t
)+1;
1102 ecol
[3].ec_value
.ec_value_val
= 0;
1103 ecol
[3].ec_value
.ec_value_len
= 0;
1109 if ((t
= strtok(buf
, " \t")) == 0) {
1110 (void) strlcpy(parse_err_msg
, gettext("no number"),
1112 return (GENENT_PARSEERR
);
1114 ecol
[0].ec_value
.ec_value_val
= t
;
1115 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
1121 if ((t
= strtok(NULL
, " \t")) == 0) {
1122 (void) strlcpy(parse_err_msg
, gettext("no number"),
1124 return (GENENT_PARSEERR
);
1126 ecol
[2].ec_value
.ec_value_val
= t
;
1127 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
1133 data
.p_name
= strdup(ecol
[0].ec_value
.ec_value_val
);
1135 if (ecol
[2].ec_value
.ec_value_val
!= NULL
&&
1136 ecol
[2].ec_value
.ec_value_val
[0] != '\0') {
1138 data
.p_proto
= ascii_to_int(ecol
[2].ec_value
.ec_value_val
);
1139 if (data
.p_proto
== -1) {
1140 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
1141 gettext("invalid protocol number: %s"),
1142 ecol
[2].ec_value
.ec_value_val
);
1143 return (GENENT_PARSEERR
);
1153 data
.p_aliases
= NULL
;
1157 * don't clobber comment in canonical entry
1159 if (t
!= cname
&& strcasecmp(t
, cname
) == 0)
1161 if (strcasecmp(t
, ecol
[0].ec_value
.ec_value_val
) == 0)
1164 ecol
[1].ec_value
.ec_value_val
= t
;
1165 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
1168 alias
= strdup(ecol
[1].ec_value
.ec_value_val
);
1169 if ((data
.p_aliases
= reallocarray(data
.p_aliases
, ctr
,
1170 sizeof (char **))) == NULL
) {
1171 (void) fprintf(stderr
, gettext("out of memory\n"));
1174 data
.p_aliases
[ctr
-1] = alias
;
1177 * only put comment in canonical entry
1179 ecol
[3].ec_value
.ec_value_val
= 0;
1180 ecol
[3].ec_value
.ec_value_len
= 0;
1182 } while (t
= strtok(NULL
, " \t"));
1184 /* End the list of all the aliases by NULL */
1185 if ((data
.p_aliases
= reallocarray(data
.p_aliases
, ctr
+ 1,
1186 sizeof (char **))) == NULL
) {
1187 (void) fprintf(stderr
, gettext("out of memory\n"));
1190 data
.p_aliases
[ctr
] = NULL
;
1192 if (flags
& F_VERBOSE
)
1193 (void) fprintf(stdout
,
1194 gettext("Adding entry : %s\n"), data
.p_name
);
1196 retval
= (*cback
)(&data
, 0);
1198 if (retval
== LDAP_ALREADY_EXISTS
) {
1199 if (continue_onerror
)
1200 (void) fprintf(stderr
,
1201 gettext("Entry: %s - already Exists,"
1202 " skipping it.\n"), data
.p_name
);
1205 (void) fprintf(stderr
,
1206 gettext("Entry: %s - already Exists\n"),
1213 free(data
.p_aliases
);
1220 dump_protocols(ns_ldap_result_t
*res
)
1222 ns_ldap_attr_t
*attrptr
= NULL
, *cn
= NULL
, *protocolnumber
= NULL
;
1226 if (res
== NULL
|| res
->entry
== NULL
)
1228 for (i
= 0; i
< res
->entry
->attr_count
; i
++) {
1229 attrptr
= res
->entry
->attr_pair
[i
];
1230 if (strcasecmp(attrptr
->attrname
, "cn") == 0)
1232 else if (strcasecmp(attrptr
->attrname
, "ipProtocolNumber")
1234 protocolnumber
= attrptr
;
1237 if (cn
== NULL
|| cn
->attrvalue
== NULL
|| cn
->attrvalue
[0] == NULL
||
1238 protocolnumber
== NULL
|| protocolnumber
->attrvalue
== NULL
||
1239 protocolnumber
->attrvalue
[0] == NULL
)
1242 if ((name
= __s_api_get_canonical_name(res
->entry
, cn
, 1)) == NULL
)
1246 if (strlen(name
) < 8)
1247 (void) fprintf(stdout
, "%s\t\t", name
);
1249 (void) fprintf(stdout
, "%s\t", name
);
1251 /* protocol number */
1252 (void) fprintf(stdout
, "%-16s", protocolnumber
->attrvalue
[0]);
1255 for (j
= 0; j
< cn
->value_count
; j
++) {
1256 if (cn
->attrvalue
[j
]) {
1257 if (strcasecmp(name
, cn
->attrvalue
[j
]) == 0) {
1258 if (cn
->value_count
> 1)
1259 /* Do not replicate */
1262 * Replicate name in uppercase as an aliase
1264 for (cp
= cn
->attrvalue
[j
]; *cp
; cp
++)
1267 (void) fprintf(stdout
, "%s ", cn
->attrvalue
[j
]);
1272 (void) fprintf(stdout
, "\n");
1286 genent_networks(char *line
, int (*cback
)())
1301 * don't clobber our argument
1303 if (strlen(line
) >= sizeof (buf
)) {
1304 (void) strlcpy(parse_err_msg
, gettext("line too long"),
1306 return (GENENT_PARSEERR
);
1308 (void) strcpy(buf
, line
);
1313 (void) memset((char *)ecol
, 0, sizeof (ecol
));
1318 t
= strchr(buf
, '#');
1321 ecol
[3].ec_value
.ec_value_val
= t
;
1322 ecol
[3].ec_value
.ec_value_len
= strlen(t
)+1;
1324 ecol
[3].ec_value
.ec_value_val
= 0;
1325 ecol
[3].ec_value
.ec_value_len
= 0;
1331 if ((t
= strtok(buf
, " \t")) == 0) {
1332 (void) strlcpy(parse_err_msg
, gettext("no number"),
1334 return (GENENT_PARSEERR
);
1336 ecol
[0].ec_value
.ec_value_val
= t
;
1337 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
1343 if ((t
= strtok(NULL
, " \t")) == 0) {
1344 (void) strlcpy(parse_err_msg
, gettext("no number"),
1346 return (GENENT_PARSEERR
);
1348 ecol
[2].ec_value
.ec_value_val
= t
;
1349 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
1356 data
.n_name
= strdup(ecol
[0].ec_value
.ec_value_val
);
1358 * data.n_net is an unsigned field,
1359 * assign -1 to it, make no sense.
1360 * Use enet here to avoid lint warning.
1362 enet
= encode_network(ecol
[2].ec_value
.ec_value_val
);
1364 if (enet
== -1 && continue_onerror
== 0) {
1365 (void) fprintf(stderr
, gettext("Invalid network number\n"));
1366 if (continue_onerror
== 0)
1367 return (GENENT_CBERR
);
1375 data
.n_aliases
= NULL
;
1379 * don't clobber comment in canonical entry
1381 if (t
!= cname
&& strcasecmp(t
, cname
) == 0)
1383 if (strcasecmp(t
, ecol
[0].ec_value
.ec_value_val
) == 0)
1386 ecol
[1].ec_value
.ec_value_val
= t
;
1387 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
1390 alias
= strdup(ecol
[1].ec_value
.ec_value_val
);
1391 if ((data
.n_aliases
= reallocarray(data
.n_aliases
, ctr
,
1392 sizeof (char **))) == NULL
) {
1393 (void) fprintf(stderr
, gettext("out of memory\n"));
1396 data
.n_aliases
[ctr
-1] = alias
;
1399 * only put comment in canonical entry
1401 ecol
[3].ec_value
.ec_value_val
= 0;
1402 ecol
[3].ec_value
.ec_value_len
= 0;
1404 } while (t
= strtok(NULL
, " \t"));
1406 /* End the list of all the aliases by NULL */
1407 if ((data
.n_aliases
= reallocarray(data
.n_aliases
, ctr
+ 1,
1408 sizeof (char **))) == NULL
) {
1409 (void) fprintf(stderr
, gettext("out of memory\n"));
1412 data
.n_aliases
[ctr
] = NULL
;
1414 if (flags
& F_VERBOSE
)
1415 (void) fprintf(stdout
,
1416 gettext("Adding entry : %s\n"), data
.n_name
);
1418 retval
= (*cback
)(&data
, 0);
1420 if (retval
== LDAP_ALREADY_EXISTS
) {
1421 if (continue_onerror
)
1422 (void) fprintf(stderr
,
1423 gettext("Entry: %s - already Exists,"
1424 " skipping it.\n"), data
.n_name
);
1427 (void) fprintf(stderr
,
1428 gettext("Entry: %s - already Exists\n"),
1435 free(data
.n_aliases
);
1442 dump_networks(ns_ldap_result_t
*res
)
1444 ns_ldap_attr_t
*attrptr
= NULL
, *cn
= NULL
, *networknumber
= NULL
;
1448 if (res
== NULL
|| res
->entry
== NULL
)
1450 for (i
= 0; i
< res
->entry
->attr_count
; i
++) {
1451 attrptr
= res
->entry
->attr_pair
[i
];
1452 if (strcasecmp(attrptr
->attrname
, "cn") == 0)
1454 else if (strcasecmp(attrptr
->attrname
, "ipNetworkNumber")
1456 networknumber
= attrptr
;
1459 if (cn
== NULL
|| cn
->attrvalue
== NULL
|| cn
->attrvalue
[0] == NULL
||
1460 networknumber
== NULL
|| networknumber
->attrvalue
== NULL
||
1461 networknumber
->attrvalue
[0] == NULL
)
1465 * cn can be a MUST attribute(RFC 2307) or MAY attribute(2307bis).
1466 * If the canonical name can not be found (2307bis), use the 1st
1467 * value as the official name.
1471 if ((name
= __s_api_get_canonical_name(res
->entry
, cn
, 1)) == NULL
)
1472 name
= cn
->attrvalue
[0];
1474 if (strlen(name
) < 8)
1475 (void) fprintf(stdout
, "%s\t\t", name
);
1477 (void) fprintf(stdout
, "%s\t", name
);
1479 /* network number */
1480 (void) fprintf(stdout
, "%-16s", networknumber
->attrvalue
[0]);
1483 for (j
= 0; j
< cn
->value_count
; j
++) {
1484 if (cn
->attrvalue
[j
]) {
1485 if (strcasecmp(name
, cn
->attrvalue
[j
]) == 0)
1488 (void) fprintf(stdout
, "%s ", cn
->attrvalue
[j
]);
1493 (void) fprintf(stdout
, "\n");
1506 genent_services(char *line
, int (*cback
)())
1513 struct servent data
;
1520 * don't clobber our argument
1522 if (strlen(line
) >= sizeof (buf
)) {
1523 (void) strlcpy(parse_err_msg
, gettext("line too long"),
1525 return (GENENT_PARSEERR
);
1527 (void) strcpy(buf
, line
);
1532 (void) memset((char *)ecol
, 0, sizeof (ecol
));
1537 t
= strchr(buf
, '#');
1540 ecol
[4].ec_value
.ec_value_val
= t
;
1541 ecol
[4].ec_value
.ec_value_len
= strlen(t
)+1;
1543 ecol
[4].ec_value
.ec_value_val
= 0;
1544 ecol
[4].ec_value
.ec_value_len
= 0;
1550 if ((t
= strtok(buf
, " \t")) == 0) {
1551 (void) strlcpy(parse_err_msg
, gettext("no port"),
1553 return (GENENT_PARSEERR
);
1555 ecol
[0].ec_value
.ec_value_val
= t
;
1556 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
1562 if ((t
= strtok(NULL
, " \t")) == 0) {
1563 (void) strlcpy(parse_err_msg
, gettext("no protocol"),
1565 return (GENENT_PARSEERR
);
1567 if ((p
= strchr(t
, '/')) == 0) {
1568 (void) strlcpy(parse_err_msg
, gettext("bad port/proto"),
1570 return (GENENT_PARSEERR
);
1573 ecol
[3].ec_value
.ec_value_val
= t
;
1574 ecol
[3].ec_value
.ec_value_len
= strlen(t
)+1;
1579 ecol
[2].ec_value
.ec_value_val
= p
;
1580 ecol
[2].ec_value
.ec_value_len
= strlen(p
)+1;
1587 data
.s_name
= strdup(ecol
[0].ec_value
.ec_value_val
);
1588 data
.s_proto
= strdup(ecol
[2].ec_value
.ec_value_val
);
1590 if (ecol
[3].ec_value
.ec_value_val
!= NULL
&&
1591 ecol
[3].ec_value
.ec_value_val
[0] != '\0') {
1593 data
.s_port
= ascii_to_int(ecol
[3].ec_value
.ec_value_val
);
1594 if (data
.s_port
== -1) {
1595 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
1596 gettext("invalid port number: %s"),
1597 ecol
[3].ec_value
.ec_value_val
);
1598 return (GENENT_PARSEERR
);
1607 data
.s_aliases
= NULL
;
1611 * don't clobber comment in canonical entry
1613 if (t
!= cname
&& strcasecmp(t
, cname
) == 0)
1615 if (strcasecmp(t
, ecol
[0].ec_value
.ec_value_val
) == 0)
1618 ecol
[1].ec_value
.ec_value_val
= t
;
1619 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
1622 alias
= strdup(ecol
[1].ec_value
.ec_value_val
);
1623 if ((data
.s_aliases
= (char **)reallocarray(data
.s_aliases
,
1624 ctr
, sizeof (char **))) == NULL
) {
1625 (void) fprintf(stderr
, gettext("out of memory\n"));
1628 data
.s_aliases
[ctr
-1] = alias
;
1631 * only put comment in canonical entry
1633 ecol
[4].ec_value
.ec_value_val
= 0;
1634 ecol
[4].ec_value
.ec_value_len
= 0;
1636 } while (t
= strtok(NULL
, " \t"));
1638 /* End the list of all the aliases by NULL */
1639 if ((data
.s_aliases
= reallocarray(data
.s_aliases
, ctr
+ 1,
1640 sizeof (char **))) == NULL
) {
1641 (void) fprintf(stderr
, gettext("out of memory\n"));
1644 data
.s_aliases
[ctr
] = NULL
;
1646 if (flags
& F_VERBOSE
)
1647 (void) fprintf(stdout
,
1648 gettext("Adding entry : %s\n"), line
);
1650 retval
= (*cback
)(&data
, 0);
1652 if (retval
== LDAP_ALREADY_EXISTS
) {
1653 if (continue_onerror
)
1654 (void) fprintf(stderr
, gettext(
1655 "Entry: cn=%s+ipServiceProtocol=%s"
1656 " already Exists, skipping it.\n"),
1657 data
.s_name
, data
.s_proto
);
1660 (void) fprintf(stderr
,
1661 gettext("Entry: cn=%s+ipServiceProtocol=%s"
1662 " - already Exists\n"),
1663 data
.s_name
, data
.s_proto
);
1670 free(data
.s_aliases
);
1678 dump_services(ns_ldap_result_t
*res
)
1680 ns_ldap_attr_t
*attrptr
= NULL
, *cn
= NULL
, *port
= NULL
;
1681 ns_ldap_attr_t
*protocol
= NULL
;
1683 char *name
; /* service name */
1686 * cn can have multiple values.(service name and its aliases)
1687 * In order to support RFC 2307, section 5.5, ipserviceprotocol can
1688 * have multiple values too.
1689 * The output format should look like
1691 * test 2345/udp mytest
1692 * test 2345/tcp mytest
1694 if (res
== NULL
|| res
->entry
== NULL
)
1696 for (i
= 0; i
< res
->entry
->attr_count
; i
++) {
1697 attrptr
= res
->entry
->attr_pair
[i
];
1698 if (strcasecmp(attrptr
->attrname
, "cn") == 0)
1700 else if (strcasecmp(attrptr
->attrname
, "ipServicePort") == 0)
1702 else if (strcasecmp(attrptr
->attrname
,
1703 "ipServiceProtocol") == 0)
1707 if (cn
== NULL
|| cn
->attrvalue
== NULL
|| cn
->attrvalue
[0] == NULL
||
1708 port
== NULL
|| port
->attrvalue
== NULL
||
1709 port
->attrvalue
[0] == NULL
|| protocol
== NULL
||
1710 protocol
->attrvalue
== NULL
|| protocol
->attrvalue
[0] == NULL
)
1713 if ((name
= __s_api_get_canonical_name(res
->entry
, cn
, 1)) == NULL
)
1715 for (i
= 0; i
< protocol
->value_count
; i
++) {
1716 if (protocol
->attrvalue
[i
] == NULL
)
1719 (void) fprintf(stdout
, "%-16s", name
);
1721 /* port & protocol */
1722 (void) fprintf(stdout
, "%s/%s%n", port
->attrvalue
[0],
1723 protocol
->attrvalue
[i
], &len
);
1726 (void) fprintf(stdout
, "\t\t");
1728 (void) fprintf(stdout
, "\t");
1731 for (j
= 0; j
< cn
->value_count
; j
++) {
1732 if (cn
->attrvalue
[j
]) {
1733 if (strcasecmp(name
, cn
->attrvalue
[j
]) == 0)
1734 /* skip service name */
1736 (void) fprintf(stdout
, "%s ", cn
->attrvalue
[j
]);
1741 (void) fprintf(stdout
, "\n");
1751 genent_group(char *line
, int (*cback
)())
1763 * don't clobber our argument
1765 if (strlen(line
) >= sizeof (buf
)) {
1766 (void) strlcpy(parse_err_msg
, gettext("line too long"),
1768 return (GENENT_PARSEERR
);
1770 (void) strcpy(buf
, line
);
1773 /* ignore empty entries */
1780 (void) memset((char *)ecol
, 0, sizeof (ecol
));
1785 if ((s
= strchr(t
, ':')) == 0) {
1786 (void) strlcpy(parse_err_msg
, gettext("no passwd"),
1788 return (GENENT_PARSEERR
);
1791 ecol
[0].ec_value
.ec_value_val
= t
;
1792 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
1798 if ((s
= strchr(t
, ':')) == 0) {
1799 (void) strlcpy(parse_err_msg
, gettext("no gid"),
1801 return (GENENT_PARSEERR
);
1804 ecol
[1].ec_value
.ec_value_val
= t
;
1805 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
1812 if ((s
= strchr(t
, ':')) == 0 || s
== t
) {
1813 (void) strlcpy(parse_err_msg
, gettext("no members"),
1815 return (GENENT_PARSEERR
);
1818 ecol
[2].ec_value
.ec_value_val
= t
;
1819 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
1825 ecol
[3].ec_value
.ec_value_val
= t
;
1826 ecol
[3].ec_value
.ec_value_len
= strlen(t
)+1;
1832 data
.gr_name
= strdup(ecol
[0].ec_value
.ec_value_val
);
1833 data
.gr_passwd
= strdup(ecol
[1].ec_value
.ec_value_val
);
1834 if (ecol
[2].ec_value
.ec_value_val
!= NULL
&&
1835 ecol
[2].ec_value
.ec_value_val
[0] != '\0') {
1837 data
.gr_gid
= ascii_to_int(ecol
[2].ec_value
.ec_value_val
);
1838 if (data
.gr_gid
== (uid_t
)-1) {
1839 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
1840 gettext("invalid group id: %s"),
1841 ecol
[2].ec_value
.ec_value_val
);
1842 return (GENENT_PARSEERR
);
1845 data
.gr_gid
= (uid_t
)-1;
1849 /* Compute maximum amount of members */
1851 while (s
= strchr(s
, ',')) {
1856 /* Allocate memory for all members */
1857 data
.gr_mem
= calloc(ctr
+ 2, sizeof (char **));
1858 if (data
.gr_mem
== NULL
) {
1859 (void) fprintf(stderr
, gettext("out of memory\n"));
1864 while (s
= strchr(t
, ',')) {
1867 ecol
[3].ec_value
.ec_value_val
= t
;
1869 /* Send to server only non empty member names */
1870 if (strlen(ecol
[3].ec_value
.ec_value_val
) != 0)
1871 data
.gr_mem
[ctr
++] = ecol
[3].ec_value
.ec_value_val
;
1874 /* Send to server only non empty member names */
1876 data
.gr_mem
[ctr
++] = t
;
1878 /* Array of members completed, finished by NULL, see calloc() */
1880 if (flags
& F_VERBOSE
)
1881 (void) fprintf(stdout
,
1882 gettext("Adding entry : %s\n"), data
.gr_name
);
1884 retval
= (*cback
)(&data
, 0);
1886 if (retval
== LDAP_ALREADY_EXISTS
) {
1887 if (continue_onerror
)
1888 (void) fprintf(stderr
,
1889 gettext("Entry: %s - already Exists,"
1890 " skipping it.\n"), data
.gr_name
);
1893 (void) fprintf(stderr
,
1894 gettext("Entry: %s - already Exists\n"),
1901 free(data
.gr_passwd
);
1908 dump_group(ns_ldap_result_t
*res
)
1910 char **value
= NULL
;
1914 value
= __ns_ldap_getAttr(res
->entry
, "cn");
1915 if (value
&& value
[0])
1916 (void) fprintf(stdout
, "%s:", value
[0]);
1917 value
= __ns_ldap_getAttr(res
->entry
, "userPassword");
1918 if (value
== NULL
|| value
[0] == NULL
)
1919 (void) fprintf(stdout
, "*:");
1921 (void) strcpy(pnam
, value
[0]);
1922 if (strncasecmp(value
[0], "{crypt}", 7) == 0)
1923 (void) fprintf(stdout
, "%s:", (pnam
+7));
1925 (void) fprintf(stdout
, "*:");
1927 value
= __ns_ldap_getAttr(res
->entry
, "gidNumber");
1928 if (value
&& value
[0])
1929 (void) fprintf(stdout
, "%s:", value
[0]);
1931 value
= __ns_ldap_getAttr(res
->entry
, "memberUid");
1932 if (value
!= NULL
&& value
[0] != NULL
) {
1933 while (value
[attr_count
] != NULL
) {
1934 if (value
[attr_count
+1] == NULL
)
1935 (void) fprintf(stdout
, "%s", value
[attr_count
]);
1937 (void) fprintf(stdout
, "%s,",
1941 (void) fprintf(stdout
, "\n");
1944 (void) fprintf(stdout
, "\n");
1956 genent_ethers(char *line
, int (*cback
)())
1962 struct _ns_ethers data
;
1966 * don't clobber our argument
1968 if (strlen(line
) >= sizeof (buf
)) {
1969 (void) strlcpy(parse_err_msg
, gettext("line too long"),
1971 return (GENENT_PARSEERR
);
1973 (void) strcpy(buf
, line
);
1978 (void) memset((char *)ecol
, 0, sizeof (ecol
));
1983 t
= strchr(buf
, '#');
1986 ecol
[2].ec_value
.ec_value_val
= t
;
1987 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
1989 ecol
[2].ec_value
.ec_value_val
= 0;
1990 ecol
[2].ec_value
.ec_value_len
= 0;
1996 if ((t
= strtok(buf
, " \t")) == 0) {
1997 (void) strlcpy(parse_err_msg
, gettext("no name"),
1999 return (GENENT_PARSEERR
);
2001 ecol
[0].ec_value
.ec_value_val
= t
;
2002 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
2007 if ((t
= strtok(NULL
, " \t")) == 0) {
2008 (void) strlcpy(parse_err_msg
,
2009 gettext("no white space allowed in name"),
2011 return (GENENT_PARSEERR
);
2013 ecol
[1].ec_value
.ec_value_val
= t
;
2014 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
2021 data
.ether
= strdup(ecol
[0].ec_value
.ec_value_val
);
2022 data
.name
= strdup(ecol
[1].ec_value
.ec_value_val
);
2025 if (flags
& F_VERBOSE
)
2026 (void) fprintf(stdout
,
2027 gettext("Adding entry : %s\n"), data
.name
);
2029 retval
= (*cback
)(&data
, 0);
2031 if (retval
== LDAP_ALREADY_EXISTS
) {
2032 if (continue_onerror
)
2033 (void) fprintf(stderr
,
2034 gettext("Entry: %s - already Exists,"
2035 " skipping it.\n"), data
.name
);
2038 (void) fprintf(stderr
,
2039 gettext("Entry: %s - already Exists\n"),
2053 dump_ethers(ns_ldap_result_t
*res
)
2055 char **value
= NULL
;
2057 value
= __ns_ldap_getAttr(res
->entry
, "macAddress");
2058 if (value
&& value
[0])
2059 (void) fprintf(stdout
, "%s", value
[0]);
2062 value
= __ns_ldap_getAttr(res
->entry
, "cn");
2063 if (value
&& value
[0])
2064 (void) fprintf(stdout
, " %s\n", value
[0]);
2068 genent_aliases(char *line
, int (*cback
)())
2077 struct _ns_alias data
;
2082 * don't clobber our argument
2084 if (strlen(line
) >= sizeof (buf
)) {
2085 (void) strlcpy(parse_err_msg
, gettext("line too long"),
2087 return (GENENT_PARSEERR
);
2090 (void) strcpy(buf
, line
);
2092 if ((t
= strchr(buf
, ':')) == 0) {
2093 (void) strlcpy(parse_err_msg
, gettext("no alias name"),
2095 return (GENENT_PARSEERR
);
2099 if ((++t
)[0] == '\0') {
2100 (void) strlcpy(parse_err_msg
, gettext("no alias value"),
2102 return (GENENT_PARSEERR
);
2109 data
.alias
= strdup(cname
);
2111 (void) fprintf(stderr
, gettext("out of memory\n"));
2116 t
= strtok(aliases
, ",");
2122 if ((alias
== NULL
) ||
2123 ((data
.member
= reallocarray(data
.member
, ctr
+ 1,
2124 sizeof (char **))) == NULL
)) {
2125 (void) fprintf(stderr
, gettext("out of memory\n"));
2128 data
.member
[ctr
-1] = alias
;
2130 } while (t
= strtok(NULL
, ","));
2132 data
.member
[ctr
] = NULL
;
2134 if (flags
& F_VERBOSE
)
2135 (void) fprintf(stdout
,
2136 gettext("Adding entry : %s\n"), data
.alias
);
2138 retval
= (*cback
)(&data
, 0);
2140 if (retval
== LDAP_ALREADY_EXISTS
) {
2141 if (continue_onerror
)
2142 (void) fprintf(stderr
,
2143 gettext("Entry: %s - already Exists,"
2144 " skipping it.\n"), data
.alias
);
2147 (void) fprintf(stderr
,
2148 gettext("Entry: %s - already Exists\n"),
2156 while (data
.member
[i
])
2157 free(data
.member
[i
++]);
2165 dump_aliases(ns_ldap_result_t
*res
)
2168 char **value
= NULL
;
2171 value
= __ns_ldap_getAttr(res
->entry
, "mail");
2172 if (value
&& value
[0])
2173 (void) fprintf(stdout
, "%s:", value
[0]);
2174 value
= __ns_ldap_getAttr(res
->entry
, "mgrpRFC822MailMember");
2176 while (value
[attr_count
] != NULL
) {
2177 (void) fprintf(stdout
, "%s,", value
[attr_count
]);
2180 (void) fprintf(stdout
, "\n");
2188 static char *h_errno2str(int h_errno
);
2191 genent_publickey(char *line
, int (*cback
)())
2193 char buf
[BUFSIZ
+1], tmpbuf
[BUFSIZ
+1], cname
[BUFSIZ
+1];
2194 char *t
, *p
, *tmppubkey
, *tmpprivkey
;
2196 int buflen
, uid
, retval
= 1, errnum
= 0;
2198 char auth_type
[BUFSIZ
+1], *dot
;
2201 struct _ns_pubkey data
;
2204 struct in6_addr in6
;
2205 char abuf
[INET6_ADDRSTRLEN
];
2208 * don't clobber our argument
2210 if (strlen(line
) >= sizeof (buf
)) {
2211 (void) strlcpy(parse_err_msg
, gettext("line too long"),
2213 return (GENENT_PARSEERR
);
2215 (void) strcpy(buf
, line
);
2220 (void) memset((char *)ecol
, 0, sizeof (ecol
));
2222 if ((t
= strtok(buf
, " \t")) == 0) {
2223 (void) strlcpy(parse_err_msg
, gettext("no cname"),
2225 return (GENENT_PARSEERR
);
2229 * Special case: /etc/publickey usually has an entry
2230 * for principal "nobody". We skip it.
2232 if (strcmp(t
, "nobody") == 0)
2238 if (strncmp(t
, "unix.", 5)) {
2239 (void) strlcpy(parse_err_msg
, gettext("bad cname"),
2241 return (GENENT_PARSEERR
);
2243 (void) strcpy(tmpbuf
, &(t
[5]));
2244 if ((p
= strchr(tmpbuf
, '@')) == 0) {
2245 (void) strlcpy(parse_err_msg
, gettext("bad cname"),
2247 return (GENENT_PARSEERR
);
2250 if (isdigit(*tmpbuf
)) {
2254 * don't generate entries for uids without passwd entries
2256 if ((pwd
= getpwuid(uid
)) == 0) {
2257 (void) fprintf(stderr
,
2258 gettext("can't map uid %d to username, skipping\n"),
2262 (void) strcpy(cname
, pwd
->pw_name
);
2263 data
.hostcred
= NS_HOSTCRED_FALSE
;
2265 if ((hp
= getipnodebyname(tmpbuf
, AF_INET6
,
2266 AI_ALL
| AI_V4MAPPED
, &errnum
)) == NULL
) {
2267 (void) fprintf(stderr
,
2268 gettext("can't map hostname %s to hostaddress, "
2269 "errnum %d %s skipping\n"), tmpbuf
, errnum
,
2270 h_errno2str(errnum
));
2273 (void) memcpy((char *)&in6
.s6_addr
, hp
->h_addr_list
[0],
2275 if (IN6_IS_ADDR_V4MAPPED(&in6
) ||
2276 IN6_IS_ADDR_V4COMPAT(&in6
)) {
2277 IN6_V4MAPPED_TO_INADDR(&in6
, &in
);
2278 if (inet_ntop(AF_INET
, (const void *)&in
, abuf
,
2279 INET6_ADDRSTRLEN
) == NULL
) {
2280 (void) fprintf(stderr
,
2281 gettext("can't convert IPV4 address of"
2282 " hostname %s to string, "
2283 "skipping\n"), tmpbuf
);
2287 if (inet_ntop(AF_INET6
, (const void *)&in6
, abuf
,
2288 INET6_ADDRSTRLEN
) == NULL
) {
2289 (void) fprintf(stderr
,
2290 gettext("can't convert IPV6 address of"
2291 " hostname %s to string, "
2292 "skipping\n"), tmpbuf
);
2296 data
.hostcred
= NS_HOSTCRED_TRUE
;
2298 * tmpbuf could be an alias, use hp->h_name instead.
2299 * hp->h_name is in FQDN format, so extract 1st field.
2301 if ((dot
= strchr(hp
->h_name
, '.')) != NULL
)
2303 (void) snprintf(cname
, sizeof (cname
),
2304 "%s+ipHostNumber=%s", hp
->h_name
, abuf
);
2309 ecol
[0].ec_value
.ec_value_val
= cname
;
2310 ecol
[0].ec_value
.ec_value_len
= strlen(cname
)+1;
2313 * public_data (col 1)
2315 if ((t
= strtok(NULL
, " \t")) == 0) {
2316 (void) strlcpy(parse_err_msg
, gettext("no private_data"),
2318 return (GENENT_PARSEERR
);
2320 if ((p
= strchr(t
, ':')) == 0) {
2321 (void) strlcpy(parse_err_msg
, gettext("bad public_data"),
2323 return (GENENT_PARSEERR
);
2326 ecol
[1].ec_value
.ec_value_val
= t
;
2327 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
2328 keylen
= (strlen(t
) / 2) * 8;
2331 * private_data (col 2) and algtype extraction
2336 if (!(t
= strchr(t
, ':'))) {
2337 (void) fprintf(stderr
,
2338 gettext("WARNING: No algorithm type data found "
2339 "in publickey file, assuming 0\n"));
2346 ecol
[2].ec_value
.ec_value_val
= p
;
2347 ecol
[2].ec_value
.ec_value_len
= strlen(p
)+1;
2352 if (AUTH_DES_KEY(keylen
, algtype
))
2354 * {DES} and {DH192-0} means same thing.
2355 * However, nisplus uses "DES" and ldap uses "DH192-0"
2357 * See newkey(8), __nis_mechalias2authtype() which is
2358 * called by __nis_keyalg2authtype() and getkey_ldap_g()
2360 (void) strlcpy(auth_type
, "DH192-0", BUFSIZ
+1);
2361 else if (!(__nis_keyalg2authtype(keylen
, algtype
, auth_type
,
2363 (void) fprintf(stderr
,
2364 gettext("Could not convert algorithm type to "
2365 "corresponding auth type string\n"));
2366 return (GENENT_ERR
);
2372 data
.name
= strdup(ecol
[0].ec_value
.ec_value_val
);
2373 if (data
.name
== NULL
) {
2374 (void) fprintf(stderr
, gettext("out of memory\n"));
2378 buflen
= sizeof (auth_type
) + strlen(ecol
[1].ec_value
.ec_value_val
) + 3;
2379 if ((tmppubkey
= (char *)malloc(buflen
)) == NULL
) {
2380 (void) fprintf(stderr
, gettext("out of memory\n"));
2383 (void) snprintf(tmppubkey
, buflen
, "{%s}%s", auth_type
,
2384 ecol
[1].ec_value
.ec_value_val
);
2385 data
.pubkey
= tmppubkey
;
2387 buflen
= sizeof (auth_type
) + strlen(ecol
[2].ec_value
.ec_value_val
) + 3;
2388 if ((tmpprivkey
= (char *)malloc(buflen
)) == NULL
) {
2389 (void) fprintf(stderr
, gettext("out of memory\n"));
2393 (void) snprintf(tmpprivkey
, buflen
, "{%s}%s", auth_type
,
2394 ecol
[2].ec_value
.ec_value_val
);
2395 data
.privkey
= tmpprivkey
;
2397 retval
= (*cback
)(&data
, 1);
2398 if (retval
!= NS_LDAP_SUCCESS
) {
2399 if (retval
== LDAP_NO_SUCH_OBJECT
) {
2400 if (data
.hostcred
== NS_HOSTCRED_TRUE
)
2401 (void) fprintf(stdout
,
2402 gettext("Cannot add publickey entry"" (%s),"
2403 " add host entry first\n"),
2406 (void) fprintf(stdout
,
2407 gettext("Cannot add publickey entry (%s), "
2408 "add passwd entry first\n"),
2411 if (continue_onerror
== 0)
2412 return (GENENT_CBERR
);
2422 dump_publickey(ns_ldap_result_t
*res
, char *container
)
2424 char **value
= NULL
;
2426 char domainname
[BUFSIZ
];
2427 char *pubptr
, *prvptr
;
2432 if (sysinfo(SI_SRPC_DOMAIN
, domainname
, BUFSIZ
) < 0) {
2433 (void) fprintf(stderr
,
2434 gettext("could not obtain domainname\n"));
2439 * Retrieve all the attributes, but don't print
2440 * until we have all the required ones.
2443 if (strcmp(container
, "passwd") == 0)
2444 value
= __ns_ldap_getAttr(res
->entry
, "uidNumber");
2446 value
= __ns_ldap_getAttr(res
->entry
, "cn");
2448 if (value
&& value
[0])
2449 (void) snprintf(buf
, sizeof (buf
), "unix.%s@%s",
2450 value
[0], domainname
);
2454 value
= __ns_ldap_getAttr(res
->entry
, "nisPublickey");
2455 if (value
!= NULL
&& value
[0] != NULL
) {
2456 if ((pubptr
= strchr(value
[0], '}')) == NULL
)
2460 value
= __ns_ldap_getAttr(res
->entry
, "nisSecretkey");
2461 if (value
!= NULL
&& value
[0] != NULL
)
2462 if ((prvptr
= strchr(value
[0], '}')) == NULL
)
2465 /* print the attributes, algorithm type is always 0 */
2466 (void) fprintf(stdout
, "%s %s:%s:0\n", buf
, ++pubptr
, ++prvptr
);
2476 genent_netmasks(char *line
, int (*cback
)())
2483 struct _ns_netmasks data
;
2487 * don't clobber our argument
2489 if (strlen(line
) >= sizeof (buf
)) {
2490 (void) strlcpy(parse_err_msg
, gettext("line too long"),
2492 return (GENENT_PARSEERR
);
2494 (void) strcpy(buf
, line
);
2499 (void) memset((char *)ecol
, 0, sizeof (ecol
));
2504 t
= strchr(buf
, '#');
2507 ecol
[2].ec_value
.ec_value_val
= t
;
2508 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
2510 ecol
[2].ec_value
.ec_value_val
= 0;
2511 ecol
[2].ec_value
.ec_value_len
= 0;
2517 if ((t
= strtok(buf
, " \t")) == 0) {
2518 (void) strlcpy(parse_err_msg
, gettext("no mask"),
2520 return (GENENT_PARSEERR
);
2522 ecol
[0].ec_value
.ec_value_val
= t
;
2523 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
2528 if ((t
= strtok(NULL
, " \t")) == 0) {
2529 (void) strlcpy(parse_err_msg
, gettext("no mask"),
2531 return (GENENT_PARSEERR
);
2533 ecol
[1].ec_value
.ec_value_val
= t
;
2534 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
2537 data
.netnumber
= ecol
[0].ec_value
.ec_value_val
;
2538 data
.netmask
= ecol
[1].ec_value
.ec_value_val
;
2540 if (flags
& F_VERBOSE
)
2541 (void) fprintf(stdout
,
2542 gettext("Adding entry : %s\n"), data
.netnumber
);
2544 retval
= (*cback
)(&data
, 1);
2545 if (retval
!= NS_LDAP_SUCCESS
) {
2546 if (retval
== LDAP_NO_SUCH_OBJECT
)
2547 (void) fprintf(stdout
,
2548 gettext("Cannot add netmask entry (%s), "
2549 "add network entry first\n"), data
.netnumber
);
2550 if (continue_onerror
== 0)
2551 return (GENENT_CBERR
);
2558 dump_netmasks(ns_ldap_result_t
*res
)
2560 char **value
= NULL
;
2562 value
= __ns_ldap_getAttr(res
->entry
, "ipNetworkNumber");
2563 if (value
&& value
[0])
2564 (void) fprintf(stdout
, "%s", value
[0]);
2565 value
= __ns_ldap_getAttr(res
->entry
, "ipNetmaskNumber");
2566 if (value
&& value
[0])
2567 (void) fprintf(stdout
, " %s\n", value
[0]);
2573 * column data format is:
2574 * col 0: netgroup name (or cname)
2575 * col 1: netgroup member, if this is a triplet
2576 * col 2: netgroup member, if not a triplet
2581 genent_netgroup(char *line
, int (*cback
)())
2583 char buf
[BIGBUF
+1]; /* netgroup entries tend to be big */
2587 char *netg_tmp
= NULL
, *triplet_tmp
= NULL
;
2588 int netgcount
= 0, tripletcount
= 0, retval
= 1, i
;
2589 struct _ns_netgroups data
;
2592 /* don't clobber our argument */
2593 if (strlen(line
) >= sizeof (buf
)) {
2594 (void) strlcpy(parse_err_msg
, gettext("line too long"),
2596 return (GENENT_PARSEERR
);
2598 (void) strcpy(buf
, line
);
2600 /* clear column data */
2601 (void) memset((char *)ecol
, 0, sizeof (ecol
));
2604 * process 1st minimal entry, to validate that there is no
2606 * start with comment(col 3)
2608 t
= strchr(buf
, '#');
2611 ecol
[3].ec_value
.ec_value_val
= t
;
2612 ecol
[3].ec_value
.ec_value_len
= strlen(t
)+1;
2614 ecol
[3].ec_value
.ec_value_val
= "";
2615 ecol
[3].ec_value
.ec_value_len
= 0;
2618 ecol
[1].ec_value
.ec_value_val
= NULL
;
2619 ecol
[2].ec_value
.ec_value_val
= NULL
;
2622 if ((t
= strtok(buf
, " \t")) == 0) {
2623 (void) strlcpy(parse_err_msg
, gettext("no cname"),
2625 return (GENENT_PARSEERR
);
2628 ecol
[0].ec_value
.ec_value_val
= t
;
2629 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
2632 /* addr(col 1 and 2) */
2633 if ((t
= strtok(NULL
, " \t")) == 0) {
2634 (void) strlcpy(parse_err_msg
,
2635 gettext("no members for netgroup"), PARSE_ERR_MSG_LEN
);
2636 return (GENENT_PARSEERR
);
2640 /* if token starts with '(' it must be a valid triplet */
2641 if (is_triplet(t
)) {
2642 ecol
[1].ec_value
.ec_value_val
= t
;
2643 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
2645 (void) strlcpy(parse_err_msg
,
2646 gettext("invalid triplet"), PARSE_ERR_MSG_LEN
);
2647 return (GENENT_PARSEERR
);
2650 ecol
[2].ec_value
.ec_value_val
= t
;
2651 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
2656 * start by clearing entry data
2658 (void) memset((struct _ns_netgroups
*)&data
, 0, sizeof (data
));
2660 data
.name
= strdup(ecol
[0].ec_value
.ec_value_val
);
2662 if (ecol
[1].ec_value
.ec_value_val
!= NULL
) {
2663 if ((data
.triplet
= calloc(1, sizeof (char **))) == NULL
) {
2664 (void) fprintf(stderr
,
2665 gettext("out of memory\n"));
2668 data
.triplet
[tripletcount
++] =
2669 strdup(ecol
[1].ec_value
.ec_value_val
);
2670 } else if (ecol
[2].ec_value
.ec_value_val
!= NULL
) {
2671 if ((data
.netgroup
= calloc(1, sizeof (char **)))
2673 (void) fprintf(stderr
,
2674 gettext("out of memory\n"));
2677 data
.netgroup
[netgcount
++] =
2678 strdup(ecol
[2].ec_value
.ec_value_val
);
2682 * we now have a valid entry (at least 1 netgroup name and
2683 * 1 netgroup member), proceed with the rest of the line
2685 while (rc
== GENENT_OK
&& (t
= strtok(NULL
, " \t"))) {
2687 /* if next token is equal to netgroup name, ignore */
2688 if (t
!= cname
&& strcasecmp(t
, cname
) == 0)
2690 if (strcasecmp(t
, ecol
[0].ec_value
.ec_value_val
) == 0)
2694 if (is_triplet(t
)) {
2695 /* skip a triplet if it is added already */
2696 for (i
= 0; i
< tripletcount
&&
2697 strcmp(t
, data
.triplet
[i
]); i
++)
2699 if (i
< tripletcount
)
2703 triplet_tmp
= strdup(t
);
2704 if ((data
.triplet
= reallocarray(data
.triplet
,
2705 tripletcount
, sizeof (char **))) == NULL
) {
2706 (void) fprintf(stderr
,
2707 gettext("out of memory\n"));
2710 data
.triplet
[tripletcount
-1] = triplet_tmp
;
2712 (void) strlcpy(parse_err_msg
,
2713 gettext("invalid triplet"),
2715 rc
= GENENT_PARSEERR
;
2718 /* skip a netgroup if it is added already */
2719 for (i
= 0; i
< netgcount
&&
2720 strcmp(t
, data
.netgroup
[i
]); i
++)
2726 netg_tmp
= strdup(t
);
2727 if ((data
.netgroup
= reallocarray(data
.netgroup
,
2728 netgcount
, sizeof (char **))) == NULL
) {
2729 (void) fprintf(stderr
,
2730 gettext("out of memory\n"));
2733 data
.netgroup
[netgcount
-1] = netg_tmp
;
2737 /* End the list with NULL */
2738 if ((data
.triplet
= reallocarray(data
.triplet
, tripletcount
+ 1,
2739 sizeof (char **))) == NULL
) {
2740 (void) fprintf(stderr
, gettext("out of memory\n"));
2743 data
.triplet
[tripletcount
] = NULL
;
2744 if ((data
.netgroup
= reallocarray(data
.netgroup
, netgcount
+ 1,
2745 sizeof (char **))) == NULL
) {
2746 (void) fprintf(stderr
, gettext("out of memory\n"));
2749 data
.netgroup
[netgcount
] = NULL
;
2751 if (rc
== GENENT_OK
) {
2752 if (flags
& F_VERBOSE
)
2753 (void) fprintf(stdout
,
2754 gettext("Adding entry : %s\n"), data
.name
);
2756 retval
= (*cback
)(&data
, 0);
2758 if (retval
== LDAP_ALREADY_EXISTS
) {
2759 if (continue_onerror
)
2760 (void) fprintf(stderr
, gettext(
2761 "Entry: %s - already Exists,"
2762 " skipping it.\n"), data
.name
);
2765 (void) fprintf(stderr
,
2766 gettext("Entry: %s - already Exists\n"),
2773 /* release memory allocated by strdup() */
2774 for (i
= 0; i
< tripletcount
; i
++) {
2775 free(data
.triplet
[i
]);
2777 for (i
= 0; i
< netgcount
; i
++) {
2778 free(data
.netgroup
[i
]);
2783 free(data
.netgroup
);
2789 dump_netgroup(ns_ldap_result_t
*res
)
2791 char **value
= NULL
;
2794 value
= __ns_ldap_getAttr(res
->entry
, "cn");
2795 if ((value
!= NULL
) && (value
[0] != NULL
))
2796 (void) fprintf(stdout
, "%s", value
[0]);
2799 value
= __ns_ldap_getAttr(res
->entry
, "nisNetgroupTriple");
2801 while (value
[attr_count
] != NULL
) {
2802 (void) fprintf(stdout
, " %s", value
[attr_count
]);
2806 value
= __ns_ldap_getAttr(res
->entry
, "memberNisNetgroup");
2808 while (value
[attr_count
] != NULL
) {
2809 (void) fprintf(stdout
, " %s", value
[attr_count
]);
2812 (void) fprintf(stdout
, "\n");
2817 genent_automount(char *line
, int (*cback
)())
2822 struct _ns_automount data
;
2827 * don't clobber our argument
2829 if (strlen(line
) >= sizeof (buf
)) {
2830 (void) strlcpy(parse_err_msg
, gettext("line too long"),
2832 return (GENENT_PARSEERR
);
2835 /* replace every tabspace with single space */
2836 replace_tab2space(line
);
2837 (void) strcpy(buf
, line
);
2842 (void) memset((char *)ecol
, 0, sizeof (ecol
));
2851 if ((s
= strchr(t
, ' ')) == 0) {
2852 return (GENENT_PARSEERR
);
2856 ecol
[0].ec_value
.ec_value_val
= t
;
2857 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
2867 ecol
[1].ec_value
.ec_value_val
= t
;
2868 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
2870 data
.mapname
= strdup(databasetype
);
2871 data
.key
= strdup(ecol
[0].ec_value
.ec_value_val
);
2872 data
.value
= strdup(ecol
[1].ec_value
.ec_value_val
);
2874 if (flags
& F_VERBOSE
)
2875 (void) fprintf(stdout
,
2876 gettext("Adding entry : %s\n"), data
.key
);
2878 retval
= (*cback
)(&data
, 0);
2880 if (retval
== LDAP_ALREADY_EXISTS
) {
2881 if (continue_onerror
)
2882 (void) fprintf(stderr
,
2883 gettext("Entry: %s - already Exists,"
2884 " skipping it.\n"), data
.key
);
2887 (void) fprintf(stderr
,
2888 gettext("Entry: %s - already Exists\n"),
2901 dump_automount(ns_ldap_result_t
*res
)
2903 char **value
= NULL
;
2908 value
= __ns_ldap_getAttr(res
->entry
, "automountKey");
2909 if (value
!= NULL
) {
2910 (void) fprintf(stdout
, "%s", value
[0]);
2911 value
= __ns_ldap_getAttr(res
->entry
, "automountInformation");
2913 (void) fprintf(stdout
, " %s\n", value
[0]);
2915 (void) fprintf(stdout
, "\n");
2926 genent_passwd(char *line
, int (*cback
)())
2939 * don't clobber our argument
2941 if (strlen(line
) >= sizeof (buf
)) {
2942 (void) strlcpy(parse_err_msg
, gettext("line too long"),
2944 return (GENENT_PARSEERR
);
2946 (void) strcpy(buf
, line
);
2949 /* ignore empty entries */
2956 (void) memset((char *)ecol
, 0, sizeof (ecol
));
2961 if ((s
= strchr(t
, ':')) == 0) {
2962 (void) strlcpy(parse_err_msg
, gettext("no password"),
2964 return (GENENT_PARSEERR
);
2967 ecol
[0].ec_value
.ec_value_val
= t
;
2968 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
2974 if ((s
= strchr(t
, ':')) == 0) {
2975 (void) strlcpy(parse_err_msg
, gettext("no uid"),
2977 return (GENENT_PARSEERR
);
2981 ecol
[1].ec_value
.ec_value_val
= t
;
2982 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
2989 if ((s
= strchr(t
, ':')) == 0 || s
== t
) {
2990 (void) strlcpy(parse_err_msg
, gettext("no gid"),
2992 return (GENENT_PARSEERR
);
2995 ecol
[2].ec_value
.ec_value_val
= t
;
2996 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
3002 if ((s
= strchr(t
, ':')) == 0 || s
== t
) {
3003 (void) strlcpy(parse_err_msg
, gettext("no gcos"),
3005 return (GENENT_PARSEERR
);
3008 ecol
[3].ec_value
.ec_value_val
= t
;
3009 ecol
[3].ec_value
.ec_value_len
= strlen(t
)+1;
3015 if ((s
= strchr(t
, ':')) == 0) {
3016 (void) strlcpy(parse_err_msg
, gettext("no home"),
3018 return (GENENT_PARSEERR
);
3021 ecol
[4].ec_value
.ec_value_val
= t
;
3022 ecol
[4].ec_value
.ec_value_len
= strlen(t
)+1;
3028 if ((s
= strchr(t
, ':')) == 0) {
3029 (void) strlcpy(parse_err_msg
, gettext("no shell"),
3031 return (GENENT_PARSEERR
);
3034 ecol
[5].ec_value
.ec_value_val
= t
;
3035 ecol
[5].ec_value
.ec_value_len
= strlen(t
)+1;
3041 ecol
[6].ec_value
.ec_value_val
= t
;
3042 ecol
[6].ec_value
.ec_value_len
= strlen(t
)+1;
3047 data
.pw_name
= strdup(ecol
[0].ec_value
.ec_value_val
);
3049 if (flags
& F_PASSWD
) {
3050 /* Add {crypt} before passwd entry */
3051 (void) snprintf(pname
, sizeof (pname
), "{crypt}%s",
3052 ecol
[1].ec_value
.ec_value_val
);
3053 data
.pw_passwd
= strdup(pname
);
3056 data
.pw_passwd
= NULL
;
3058 if (ecol
[2].ec_value
.ec_value_val
!= NULL
&&
3059 ecol
[2].ec_value
.ec_value_val
[0] != '\0') {
3060 data
.pw_uid
= ascii_to_int(ecol
[2].ec_value
.ec_value_val
);
3061 if (data
.pw_uid
== (uid_t
)-1) {
3062 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3063 gettext("invalid uid : %s"),
3064 ecol
[2].ec_value
.ec_value_val
);
3065 return (GENENT_PARSEERR
);
3068 data
.pw_uid
= (uid_t
)-1;
3070 if (ecol
[3].ec_value
.ec_value_val
!= NULL
&&
3071 ecol
[3].ec_value
.ec_value_val
[0] != '\0') {
3073 data
.pw_gid
= ascii_to_int(ecol
[3].ec_value
.ec_value_val
);
3074 if (data
.pw_gid
== (uid_t
)-1) {
3075 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3076 gettext("invalid gid : %s"),
3077 ecol
[3].ec_value
.ec_value_val
);
3078 return (GENENT_PARSEERR
);
3081 data
.pw_gid
= (uid_t
)-1;
3084 data
.pw_comment
= NULL
;
3085 data
.pw_gecos
= strdup(ecol
[4].ec_value
.ec_value_val
);
3086 data
.pw_dir
= strdup(ecol
[5].ec_value
.ec_value_val
);
3087 data
.pw_shell
= strdup(ecol
[6].ec_value
.ec_value_val
);
3089 if (flags
& F_VERBOSE
)
3090 (void) fprintf(stdout
,
3091 gettext("Adding entry : %s\n"), data
.pw_name
);
3093 retval
= (*cback
)(&data
, 0);
3095 if (retval
== LDAP_ALREADY_EXISTS
) {
3096 if (continue_onerror
)
3097 (void) fprintf(stderr
,
3098 gettext("Entry: %s - already Exists,"
3099 " skipping it.\n"), data
.pw_name
);
3102 (void) fprintf(stderr
,
3103 gettext("Entry: %s - already Exists\n"),
3110 free(data
.pw_gecos
);
3112 free(data
.pw_shell
);
3118 dump_passwd(ns_ldap_result_t
*res
)
3120 char **value
= NULL
;
3122 value
= __ns_ldap_getAttr(res
->entry
, "uid");
3126 (void) fprintf(stdout
, "%s:", value
[0]);
3127 value
= __ns_ldap_getAttr(res
->entry
, "userPassword");
3130 * Don't print the encrypted password, Use x to
3131 * indicate it is in the shadow database.
3133 (void) fprintf(stdout
, "x:");
3135 value
= __ns_ldap_getAttr(res
->entry
, "uidNumber");
3136 if (value
&& value
[0])
3137 (void) fprintf(stdout
, "%s:", value
[0]);
3138 value
= __ns_ldap_getAttr(res
->entry
, "gidNumber");
3139 if (value
&& value
[0])
3140 (void) fprintf(stdout
, "%s:", value
[0]);
3141 value
= __ns_ldap_getAttr(res
->entry
, "gecos");
3143 (void) fprintf(stdout
, ":");
3145 (void) fprintf(stdout
, "%s:", value
[0]);
3146 value
= __ns_ldap_getAttr(res
->entry
, "homeDirectory");
3148 (void) fprintf(stdout
, ":");
3150 (void) fprintf(stdout
, "%s:", value
[0]);
3151 value
= __ns_ldap_getAttr(res
->entry
, "loginShell");
3153 (void) fprintf(stdout
, "\n");
3155 (void) fprintf(stdout
, "%s\n", value
[0]);
3164 genent_shadow(char *line
, int (*cback
)())
3177 * don't clobber our argument
3179 if (strlen(line
) >= sizeof (buf
)) {
3180 (void) strlcpy(parse_err_msg
, gettext("line too long"),
3182 return (GENENT_PARSEERR
);
3184 (void) strcpy(buf
, line
);
3187 /* ignore empty entries */
3194 (void) memset((char *)ecol
, 0, sizeof (ecol
));
3199 if ((s
= strchr(t
, ':')) == 0) {
3200 (void) strlcpy(parse_err_msg
, gettext("no uid"),
3202 return (GENENT_PARSEERR
);
3205 ecol
[0].ec_value
.ec_value_val
= t
;
3206 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
3212 if ((s
= strchr(t
, ':')) == 0) {
3213 (void) strlcpy(parse_err_msg
, gettext("Improper format"),
3215 return (GENENT_PARSEERR
);
3219 ecol
[1].ec_value
.ec_value_val
= t
;
3220 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
3225 * shadow last change (col 2)
3227 if ((s
= strchr(t
, ':')) == 0) {
3228 (void) strlcpy(parse_err_msg
, gettext("Improper format"),
3230 return (GENENT_PARSEERR
);
3233 ecol
[2].ec_value
.ec_value_val
= t
;
3234 ecol
[2].ec_value
.ec_value_len
= strlen(t
)+1;
3238 * shadow min (col 3)
3240 if ((s
= strchr(t
, ':')) == 0) {
3241 (void) strlcpy(parse_err_msg
, gettext("Improper format"),
3243 return (GENENT_PARSEERR
);
3246 ecol
[3].ec_value
.ec_value_val
= t
;
3247 ecol
[3].ec_value
.ec_value_len
= strlen(t
)+1;
3251 * shadow max (col 4)
3253 if ((s
= strchr(t
, ':')) == 0) {
3254 (void) strlcpy(parse_err_msg
, gettext("Improper format"),
3256 return (GENENT_PARSEERR
);
3259 ecol
[4].ec_value
.ec_value_val
= t
;
3260 ecol
[4].ec_value
.ec_value_len
= strlen(t
)+1;
3264 * shadow warn (col 5)
3266 if ((s
= strchr(t
, ':')) == 0) {
3267 (void) strlcpy(parse_err_msg
, gettext("Improper format"),
3269 return (GENENT_PARSEERR
);
3272 ecol
[5].ec_value
.ec_value_val
= t
;
3273 ecol
[5].ec_value
.ec_value_len
= strlen(t
)+1;
3277 * shadow inactive (col 6)
3279 if ((s
= strchr(t
, ':')) != 0) {
3281 ecol
[6].ec_value
.ec_value_val
= t
;
3282 ecol
[6].ec_value
.ec_value_len
= strlen(t
)+1;
3287 * shadow expire (col 7)
3289 if ((s
= strchr(t
, ':')) != 0) {
3291 ecol
[7].ec_value
.ec_value_val
= t
;
3292 ecol
[7].ec_value
.ec_value_len
= strlen(t
)+1;
3298 ecol
[8].ec_value
.ec_value_val
= t
;
3299 ecol
[8].ec_value
.ec_value_len
= strlen(t
)+1;
3306 data
.sp_namp
= strdup(ecol
[0].ec_value
.ec_value_val
);
3308 if (ecol
[1].ec_value
.ec_value_val
!= NULL
&&
3309 ecol
[1].ec_value
.ec_value_val
[0] != '\0') {
3310 /* Add {crypt} before passwd entry */
3311 (void) snprintf(pname
, sizeof (pname
), "{crypt}%s",
3312 ecol
[1].ec_value
.ec_value_val
);
3313 data
.sp_pwdp
= strdup(pname
);
3316 * no password (e.g., deleted by "passwd -d"):
3317 * use the special value NS_LDAP_NO_UNIX_PASSWORD
3320 (void) snprintf(pname
, sizeof (pname
), "{crypt}%s",
3321 NS_LDAP_NO_UNIX_PASSWORD
);
3322 data
.sp_pwdp
= strdup(pname
);
3325 if (ecol
[2].ec_value
.ec_value_val
!= NULL
&&
3326 ecol
[2].ec_value
.ec_value_val
[0] != '\0') {
3328 data
.sp_lstchg
= ascii_to_int(ecol
[2].ec_value
.ec_value_val
);
3329 if (data
.sp_lstchg
< -1) {
3330 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3331 gettext("invalid last changed date: %s"),
3332 ecol
[2].ec_value
.ec_value_val
);
3333 return (GENENT_PARSEERR
);
3336 data
.sp_lstchg
= -1;
3338 if (ecol
[3].ec_value
.ec_value_val
!= NULL
&&
3339 ecol
[3].ec_value
.ec_value_val
[0] != '\0') {
3341 data
.sp_min
= ascii_to_int(ecol
[3].ec_value
.ec_value_val
);
3342 if (data
.sp_min
< -1) {
3343 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3344 gettext("invalid sp_min : %s"),
3345 ecol
[3].ec_value
.ec_value_val
);
3346 return (GENENT_PARSEERR
);
3351 if (ecol
[4].ec_value
.ec_value_val
!= NULL
&&
3352 ecol
[4].ec_value
.ec_value_val
[0] != '\0') {
3354 data
.sp_max
= ascii_to_int(ecol
[4].ec_value
.ec_value_val
);
3355 if (data
.sp_max
< -1) {
3356 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3357 gettext("invalid sp_max : %s"),
3358 ecol
[4].ec_value
.ec_value_val
);
3359 return (GENENT_PARSEERR
);
3364 if (ecol
[5].ec_value
.ec_value_val
!= NULL
&&
3365 ecol
[5].ec_value
.ec_value_val
[0] != '\0') {
3367 data
.sp_warn
= ascii_to_int(ecol
[5].ec_value
.ec_value_val
);
3368 if (data
.sp_warn
< -1) {
3369 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3370 gettext("invalid sp_warn : %s"),
3371 ecol
[5].ec_value
.ec_value_val
);
3372 return (GENENT_PARSEERR
);
3377 if (ecol
[6].ec_value
.ec_value_val
!= NULL
&&
3378 ecol
[6].ec_value
.ec_value_val
[0] != '\0') {
3380 data
.sp_inact
= ascii_to_int(ecol
[6].ec_value
.ec_value_val
);
3381 if (data
.sp_inact
< -1) {
3382 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3383 gettext("invalid sp_inact : %s"),
3384 ecol
[6].ec_value
.ec_value_val
);
3385 return (GENENT_PARSEERR
);
3390 if (ecol
[7].ec_value
.ec_value_val
!= NULL
&&
3391 ecol
[7].ec_value
.ec_value_val
[0] != '\0') {
3393 data
.sp_expire
= ascii_to_int(ecol
[7].ec_value
.ec_value_val
);
3394 if (data
.sp_expire
< -1) {
3395 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3396 gettext("invalid login expiry date : %s"),
3397 ecol
[7].ec_value
.ec_value_val
);
3398 return (GENENT_PARSEERR
);
3401 data
.sp_expire
= -1;
3403 if (ecol
[8].ec_value
.ec_value_val
!= NULL
&&
3404 ecol
[8].ec_value
.ec_value_val
[0] != '\0') {
3407 * data.sp_flag is an unsigned int,
3408 * assign -1 to it, make no sense.
3409 * Use spflag here to avoid lint warning.
3411 spflag
= ascii_to_int(ecol
[8].ec_value
.ec_value_val
);
3413 (void) snprintf(parse_err_msg
, sizeof (parse_err_msg
),
3414 gettext("invalid flag value: %s"),
3415 ecol
[8].ec_value
.ec_value_val
);
3416 return (GENENT_PARSEERR
);
3418 data
.sp_flag
= spflag
;
3422 if (flags
& F_VERBOSE
)
3423 (void) fprintf(stdout
,
3424 gettext("Adding entry : %s\n"), data
.sp_namp
);
3426 retval
= (*cback
)(&data
, 1);
3427 if (retval
!= NS_LDAP_SUCCESS
) {
3428 if (retval
== LDAP_NO_SUCH_OBJECT
)
3429 (void) fprintf(stdout
,
3430 gettext("Cannot add shadow entry (%s), "
3431 "add passwd entry first\n"), data
.sp_namp
);
3432 if (continue_onerror
== 0)
3433 return (GENENT_CBERR
);
3442 dump_shadow(ns_ldap_result_t
*res
)
3444 char **value
= NULL
;
3447 value
= __ns_ldap_getAttr(res
->entry
, "uid");
3451 (void) fprintf(stdout
, "%s:", value
[0]);
3452 value
= __ns_ldap_getAttr(res
->entry
, "userPassword");
3454 (void) fprintf(stdout
, "*:");
3456 (void) strcpy(pnam
, value
[0]);
3457 if (strncasecmp(value
[0], "{crypt}", 7) == 0) {
3458 if (strcmp(pnam
+ 7, NS_LDAP_NO_UNIX_PASSWORD
) == 0)
3459 (void) fprintf(stdout
, ":");
3461 (void) fprintf(stdout
, "%s:", (pnam
+7));
3463 (void) fprintf(stdout
, "*:");
3465 value
= __ns_ldap_getAttr(res
->entry
, "shadowLastChange");
3467 (void) fprintf(stdout
, ":");
3469 (void) fprintf(stdout
, "%s:", value
[0]);
3470 value
= __ns_ldap_getAttr(res
->entry
, "shadowMin");
3472 (void) fprintf(stdout
, ":");
3474 (void) fprintf(stdout
, "%s:", value
[0]);
3475 value
= __ns_ldap_getAttr(res
->entry
, "shadowMax");
3477 (void) fprintf(stdout
, ":");
3479 (void) fprintf(stdout
, "%s:", value
[0]);
3481 value
= __ns_ldap_getAttr(res
->entry
, "shadowWarning");
3483 (void) fprintf(stdout
, ":");
3485 (void) fprintf(stdout
, "%s:", value
[0]);
3487 value
= __ns_ldap_getAttr(res
->entry
, "shadowInactive");
3489 (void) fprintf(stdout
, ":");
3491 (void) fprintf(stdout
, "%s:", value
[0]);
3493 value
= __ns_ldap_getAttr(res
->entry
, "shadowExpire");
3495 (void) fprintf(stdout
, ":");
3497 (void) fprintf(stdout
, "%s:", value
[0]);
3499 value
= __ns_ldap_getAttr(res
->entry
, "shadowFlag");
3500 if (value
== NULL
|| value
[0] == NULL
|| strcmp(value
[0], "0") == 0)
3501 (void) fprintf(stdout
, "\n");
3503 (void) fprintf(stdout
, "%s\n", value
[0]);
3507 genent_bootparams(char *line
, int (*cback
)())
3512 int ctr
= 0, retval
= 1;
3514 struct _ns_bootp data
;
3519 * don't clobber our argument
3521 if (strlen(line
) >= sizeof (buf
)) {
3522 (void) strlcpy(parse_err_msg
, gettext("line too long"),
3524 return (GENENT_PARSEERR
);
3526 (void) strcpy(buf
, line
);
3531 (void) memset((char *)ecol
, 0, sizeof (ecol
));
3537 if ((t
= strtok(buf
, " \t")) == 0) {
3538 (void) strlcpy(parse_err_msg
, gettext("no cname"),
3540 return (GENENT_PARSEERR
);
3542 ecol
[0].ec_value
.ec_value_val
= t
;
3543 ecol
[0].ec_value
.ec_value_len
= strlen(t
)+1;
3548 data
.name
= strdup(ecol
[0].ec_value
.ec_value_val
);
3556 while (t
= strtok(NULL
, " \t")) {
3559 * don't clobber comment in canonical entry
3563 ecol
[1].ec_value
.ec_value_val
= t
;
3564 ecol
[1].ec_value
.ec_value_len
= strlen(t
)+1;
3567 parameter
= strdup(ecol
[1].ec_value
.ec_value_val
);
3568 if ((data
.param
= reallocarray(data
.param
, ctr
+ 1,
3569 sizeof (char **))) == NULL
) {
3570 (void) fprintf(stderr
, gettext("out of memory\n"));
3573 data
.param
[ctr
-1] = parameter
;
3578 /* End the list of all the aliases by NULL */
3579 if ((data
.param
= reallocarray(data
.param
, ctr
+ 1, sizeof(char **))) ==
3581 (void) fprintf(stderr
, gettext("out of memory\n"));
3584 data
.param
[ctr
] = NULL
;
3586 if (flags
& F_VERBOSE
)
3587 (void) fprintf(stdout
,
3588 gettext("Adding entry : %s\n"), data
.name
);
3590 retval
= (*cback
)(&data
, 0);
3592 if (retval
== LDAP_ALREADY_EXISTS
) {
3593 if (continue_onerror
)
3594 (void) fprintf(stderr
,
3595 gettext("Entry: %s - already Exists,"
3596 " skipping it.\n"), data
.name
);
3599 (void) fprintf(stderr
,
3600 gettext("Entry: %s - already Exists\n"),
3614 * Count number of tokens in string which has tokens separated by colons.
3616 * NULL or "" - 0 tokens
3618 * "foo:bar" - 2 tokens
3619 * ":bar" - 2 tokens, first empty
3620 * "::" - 3 tokens, all empty
3623 count_tokens(char *string
, char delim
)
3628 if (string
== NULL
|| *string
== '\0')
3631 /* Count delimiters */
3632 while ((s
= strchr(s
, delim
)) != NULL
&& *s
!= '\0') {
3641 genent_project(char *line
, int (*cback
)())
3646 int rc
= GENENT_OK
, retval
;
3648 struct project data
;
3650 (void) memset(&data
, 0, sizeof (struct project
));
3653 * don't clobber our argument
3655 if (strlen(line
) >= sizeof (buf
)) {
3656 (void) strlcpy(parse_err_msg
, gettext("line too long"),
3658 return (GENENT_PARSEERR
);
3661 if (count_tokens(line
, ':') != 6) {
3662 (void) strlcpy(parse_err_msg
, gettext("Improper format"),
3664 return (GENENT_PARSEERR
);
3667 (void) strcpy(buf
, line
);
3669 s
= strsep(&b
, ":");
3674 if (check_projname(s
) != 0) {
3675 (void) strlcpy(parse_err_msg
,
3676 gettext("invalid project name"),
3678 return (GENENT_PARSEERR
);
3680 data
.pj_name
= strdup(s
);
3687 char *endptr
= NULL
;
3688 int projid
= strtoul(s
, &endptr
, 10);
3690 if (*s
== '\0' || strlen(endptr
) != 0 || projid
< 0 ||
3691 projid
> MAXPROJID
) {
3692 (void) strlcpy(parse_err_msg
,
3693 gettext("invalid project id"),
3695 return (GENENT_PARSEERR
);
3697 data
.pj_projid
= projid
;
3702 /* Project description */
3705 data
.pj_comment
= strdup(s
);
3714 char *usrlist
= strdup(s
);
3716 int usr_count
= count_tokens(usrlist
, ',');
3717 char *u
= strsep(&usrlist
, ",");
3719 if (usr_count
== 0) {
3724 /* +1 to NULL-terminate the array */
3725 data
.pj_users
= (char **)calloc(usr_count
+ 1,
3729 data
.pj_users
[i
++] = strdup(u
);
3730 u
= strsep(&usrlist
, ",");
3737 /* Project groups */
3743 char *grouplist
= strdup(s
);
3745 int grp_count
= count_tokens(grouplist
, ',');
3746 char *g
= strsep(&grouplist
, ",");
3748 if (grp_count
== 0) {
3753 /* +1 to NULL-terminate the array */
3754 data
.pj_groups
= (char **)calloc(grp_count
+ 1,
3758 data
.pj_groups
[i
++] = strdup(g
);
3759 g
= strsep(&grouplist
, ",");
3769 data
.pj_attr
= strdup(s
);
3775 s
= strsep(&b
, ":");
3779 if (flags
& F_VERBOSE
)
3780 (void) fprintf(stdout
,
3781 gettext("Adding entry : %s\n"), data
.pj_name
);
3783 retval
= (*cback
)(&data
, 0);
3785 if (retval
== LDAP_ALREADY_EXISTS
) {
3786 if (continue_onerror
)
3787 (void) fprintf(stderr
,
3788 gettext("Entry: %s - already Exists,"
3789 " skipping it.\n"), data
.pj_name
);
3792 (void) fprintf(stderr
,
3793 gettext("Entry: %s - already Exists\n"),
3802 if (data
.pj_users
!= NULL
) {
3803 for (index
= 0; data
.pj_users
[index
] != NULL
; index
++)
3804 free(data
.pj_users
[index
]);
3805 free(data
.pj_users
);
3807 if (data
.pj_groups
!= NULL
) {
3808 for (index
= 0; data
.pj_groups
[index
] != NULL
; index
++)
3809 free(data
.pj_groups
[index
]);
3810 free(data
.pj_groups
);
3817 dump_project(ns_ldap_result_t
*res
)
3819 char **value
= NULL
;
3820 char *endptr
= NULL
;
3823 if (res
== NULL
|| res
->entry
== NULL
)
3826 /* Sanity checking */
3827 value
= __ns_ldap_getAttr(res
->entry
, "SolarisProjectID");
3829 if (value
[0] == NULL
)
3832 projid
= strtoul(value
[0], &endptr
, 10);
3833 if (*value
[0] == '\0' || strlen(endptr
) != 0 || projid
< 0 ||
3837 value
= __ns_ldap_getAttr(res
->entry
, "SolarisProjectName");
3838 if (value
&& value
[0] && check_projname(value
[0]) == 0)
3839 (void) fprintf(stdout
, "%s:", value
[0]);
3843 (void) fprintf(stdout
, "%d:", projid
);
3845 value
= __ns_ldap_getAttr(res
->entry
, "description");
3846 if (value
&& value
[0])
3847 (void) fprintf(stdout
, "%s:", value
[0]);
3849 (void) fprintf(stdout
, ":");
3851 value
= __ns_ldap_getAttr(res
->entry
, "memberUid");
3854 for (i
= 0; value
[i
] != NULL
; i
++)
3855 if (value
[i
+1] != NULL
)
3856 (void) fprintf(stdout
, "%s,", value
[i
]);
3858 (void) fprintf(stdout
, "%s:", value
[i
]);
3860 (void) fprintf(stdout
, ":");
3863 value
= __ns_ldap_getAttr(res
->entry
, "memberGid");
3866 for (i
= 0; value
[i
] != NULL
; i
++)
3867 if (value
[i
+1] != NULL
)
3868 (void) fprintf(stdout
, "%s,", value
[i
]);
3870 (void) fprintf(stdout
, "%s:", value
[i
]);
3872 (void) fprintf(stdout
, ":");
3875 value
= __ns_ldap_getAttr(res
->entry
, "SolarisProjectAttr");
3876 if (value
&& value
[0])
3877 (void) fprintf(stdout
, "%s\n", value
[0]);
3879 (void) fprintf(stdout
, "\n");
3884 dump_bootparams(ns_ldap_result_t
*res
)
3886 char **value
= NULL
;
3889 value
= __ns_ldap_getAttr(res
->entry
, "cn");
3890 if (value
[0] != NULL
)
3891 (void) fprintf(stdout
, "%s", value
[0]);
3892 value
= __ns_ldap_getAttr(res
->entry
, "bootParameter");
3894 while (value
[attr_count
] != NULL
) {
3895 (void) fprintf(stdout
, "\t%s", value
[attr_count
]);
3898 (void) fprintf(stdout
, "\n");
3904 fget_line_at(struct line_buf
*line
, int n
, FILE *fp
)
3914 if (line
->len
>= line
->alloc
)
3915 line_buf_expand(line
);
3916 line
->str
[line
->len
++] = c
;
3922 /* Null Terminate */
3923 if (line
->len
>= line
->alloc
)
3924 line_buf_expand(line
);
3925 line
->str
[line
->len
++] = 0;
3927 /* if no characters are read, return NULL to indicate EOF */
3928 if (line
->str
[0] == '\0')
3935 * return a line from the file, discarding comments and blank lines
3938 filedbmline_comment(struct line_buf
*line
, FILE *etcf
, int *lineno
,
3939 struct file_loc
*loc
)
3943 loc
->offset
= ftell(etcf
);
3945 if (fget_line_at(line
, len
, etcf
) == 0)
3951 len
= strlen(line
->str
);
3953 line
->str
[0] != '#' &&
3954 line
->str
[len
-2] == '\\' && line
->str
[len
-1] == '\n') {
3955 line
->str
[len
-2] = 0;
3957 continue; /* append next line at end */
3960 if (line
->str
[len
-1] == '\n') {
3961 line
->str
[len
-1] = 0;
3966 * Skip lines where '#' is the first non-blank character.
3968 for (i
= 0; i
< len
; i
++) {
3969 if (line
->str
[i
] == '#') {
3970 line
->str
[i
] = '\0';
3974 if (line
->str
[i
] != ' ' && line
->str
[i
] != '\t')
3979 * A line with one or more white space characters followed
3980 * by a comment will now be blank. The special case of a
3981 * line with '#' in the first byte will have len == 0.
3983 if (len
> 0 && !blankline(line
->str
))
3987 loc
->offset
= ftell(etcf
);
3995 * return a line from the file, discarding comments, blanks, and '+' lines
3998 filedbmline_plus(struct line_buf
*line
, FILE *etcf
, int *lineno
,
3999 struct file_loc
*loc
)
4003 loc
->offset
= ftell(etcf
);
4005 if (fget_line_at(line
, len
, etcf
) == 0)
4011 len
= strlen(line
->str
);
4012 if (line
->str
[len
-1] == '\n') {
4013 line
->str
[len
-1] = 0;
4017 if (!blankline(line
->str
) &&
4018 line
->str
[0] != '+' && line
->str
[0] != '-' &&
4019 line
->str
[0] != '#')
4023 loc
->offset
= ftell(etcf
);
4031 /* Populating the ttypelist structure */
4033 static struct ttypelist_t ttypelist
[] = {
4034 { NS_LDAP_TYPE_HOSTS
, genent_hosts
, dump_hosts
,
4035 filedbmline_comment
, "iphost", "cn" },
4036 { NS_LDAP_TYPE_IPNODES
, genent_hosts
, dump_hosts
,
4037 filedbmline_comment
, "iphost", "cn" },
4038 { NS_LDAP_TYPE_RPC
, genent_rpc
, dump_rpc
,
4039 filedbmline_comment
, "oncrpc", "cn" },
4040 { NS_LDAP_TYPE_PROTOCOLS
, genent_protocols
, dump_protocols
,
4041 filedbmline_comment
, "ipprotocol", "cn" },
4042 { NS_LDAP_TYPE_NETWORKS
, genent_networks
, dump_networks
,
4043 filedbmline_comment
, "ipnetwork", "ipnetworknumber" },
4044 { NS_LDAP_TYPE_SERVICES
, genent_services
, dump_services
,
4045 filedbmline_comment
, "ipservice", "cn" },
4046 { NS_LDAP_TYPE_GROUP
, genent_group
, dump_group
,
4047 filedbmline_plus
, "posixgroup", "gidnumber" },
4048 { NS_LDAP_TYPE_NETMASKS
, genent_netmasks
, dump_netmasks
,
4049 filedbmline_comment
, "ipnetwork", "ipnetworknumber"},
4050 { NS_LDAP_TYPE_ETHERS
, genent_ethers
, dump_ethers
,
4051 filedbmline_comment
, "ieee802Device", "cn" },
4052 { NS_LDAP_TYPE_NETGROUP
, genent_netgroup
, dump_netgroup
,
4053 filedbmline_comment
, "nisnetgroup", "cn" },
4054 { NS_LDAP_TYPE_BOOTPARAMS
, genent_bootparams
, dump_bootparams
,
4055 filedbmline_comment
, "bootableDevice", "cn" },
4056 { NS_LDAP_TYPE_PUBLICKEY
, genent_publickey
, NULL
/* dump_publickey */,
4057 filedbmline_comment
, "niskeyobject", "cn" },
4058 { NS_LDAP_TYPE_PASSWD
, genent_passwd
, dump_passwd
,
4059 filedbmline_plus
, "posixaccount", "uid" },
4060 { NS_LDAP_TYPE_SHADOW
, genent_shadow
, dump_shadow
,
4061 filedbmline_plus
, "shadowaccount", "uid" },
4062 { NS_LDAP_TYPE_ALIASES
, genent_aliases
, dump_aliases
,
4063 filedbmline_plus
, "mailGroup", "cn" },
4064 { NS_LDAP_TYPE_AUTOMOUNT
, genent_automount
, dump_automount
,
4065 filedbmline_comment
, "automount", "automountKey" },
4066 { NS_LDAP_TYPE_USERATTR
, genent_user_attr
, dump_user_attr
,
4067 filedbmline_comment
, "SolarisUserAttr", "uid" },
4068 { NS_LDAP_TYPE_PROFILE
, genent_prof_attr
, dump_prof_attr
,
4069 filedbmline_comment
, "SolarisProfAttr", "cn" },
4070 { NS_LDAP_TYPE_EXECATTR
, genent_exec_attr
, dump_exec_attr
,
4071 filedbmline_comment
, "SolarisExecAttr", "cn" },
4072 { NS_LDAP_TYPE_AUTHATTR
, genent_auth_attr
, dump_auth_attr
,
4073 filedbmline_comment
, "SolarisAuthAttr", "cn" },
4074 { NS_LDAP_TYPE_PROJECT
, genent_project
, dump_project
,
4075 filedbmline_comment
, "SolarisProject", "SolarisProjectName" },
4076 { 0, 0, 0, 0, 0, 0 }
4082 static int lineno
= 0;
4087 struct line_buf line
;
4088 struct file_loc loc
;
4090 /* Initializing the Line Buffer */
4091 line_buf_init(&line
);
4093 /* Loop through all the lines in the file */
4094 while (tt
->filedbmline(&line
, etcf
, &lineno
, &loc
)) {
4095 switch ((*(tt
->genent
))(line
.str
, addentry
)) {
4098 case GENENT_PARSEERR
:
4099 (void) fprintf(stderr
,
4100 gettext("parse error: %s (line %d)\n"),
4101 parse_err_msg
, lineno
);
4105 (void) fprintf(stderr
,
4106 gettext("Error while adding line: %s\n"),
4112 (void) fprintf(stderr
,
4113 gettext("Internal Error while adding line: %s\n"),
4124 dumptable(char *service
)
4127 ns_ldap_result_t
*eres
= NULL
;
4128 ns_ldap_error_t
*err
= NULL
;
4129 int rc
= 0, success
= 0;
4130 char filter
[BUFSIZ
];
4132 void *cookie
= NULL
;
4134 /* set the appropriate filter */
4135 if (strcmp(tt
->ttype
, NS_LDAP_TYPE_PROFILE
) == 0) {
4137 * prof_attr entries are SolarisProfAttr
4138 * without AUXILIARY SolarisExecAttr
4140 (void) snprintf(filter
, sizeof (filter
),
4141 "(&(objectclass=%s)(!(objectclass=SolarisExecAttr)))",
4144 (void) snprintf(filter
, sizeof (filter
),
4145 "(objectclass=%s)", tt
->objclass
);
4148 if (flags
& F_VERBOSE
)
4149 (void) fprintf(stdout
, gettext("FILTER = %s\n"), filter
);
4151 /* Pass cred only if supplied. Cred is not always needed for dump */
4152 if (authority
.cred
.unix_cred
.userID
== NULL
||
4153 authority
.cred
.unix_cred
.passwd
== NULL
)
4154 rc
= __ns_ldap_firstEntry(service
, filter
, tt
->sortattr
, NULL
,
4155 NULL
, NULL
, NS_LDAP_HARD
, &cookie
, &eres
, &err
, NULL
);
4157 rc
= __ns_ldap_firstEntry(service
, filter
, tt
->sortattr
, NULL
,
4158 NULL
, &authority
, NS_LDAP_HARD
, &cookie
, &eres
, &err
, NULL
);
4161 case NS_LDAP_SUCCESS
:
4165 if (strcmp(databasetype
, "publickey") == 0)
4166 dump_publickey(eres
, service
);
4168 (*(tt
->dump
))(eres
);
4171 (void) fprintf(stderr
, gettext("No entries found.\n"));
4174 case NS_LDAP_OP_FAILED
:
4176 (void) fprintf(stderr
, gettext("operation failed.\n"));
4179 case NS_LDAP_INVALID_PARAM
:
4181 (void) fprintf(stderr
,
4182 gettext("invalid parameter(s) passed.\n"));
4185 case NS_LDAP_NOTFOUND
:
4187 (void) fprintf(stderr
, gettext("entry not found.\n"));
4190 case NS_LDAP_MEMORY
:
4192 (void) fprintf(stderr
,
4193 gettext("internal memory allocation error.\n"));
4196 case NS_LDAP_CONFIG
:
4198 (void) fprintf(stderr
,
4199 gettext("LDAP Configuration problem.\n"));
4203 case NS_LDAP_PARTIAL
:
4205 (void) fprintf(stderr
,
4206 gettext("partial result returned\n"));
4210 case NS_LDAP_INTERNAL
:
4212 (void) fprintf(stderr
,
4213 gettext("internal LDAP error occured.\n"));
4219 (void) __ns_ldap_freeResult(&eres
);
4225 rc
= __ns_ldap_nextEntry(cookie
, &eres
, &err
);
4226 if (rc
!= NS_LDAP_SUCCESS
|| eres
== NULL
) {
4231 /* Print the result */
4233 if (strcmp(databasetype
, "publickey") == 0)
4234 dump_publickey(eres
, service
);
4236 (*(tt
->dump
))(eres
);
4237 (void) __ns_ldap_freeResult(&eres
);
4245 main(int argc
, char **argv
)
4248 ns_standalone_conf_t standalone_cfg
= standaloneDefaults
;
4254 char *ttype
, *authmech
= 0, *etcfile
= 0;
4255 /* Temporary password variable */
4256 char ps
[LDAP_MAXNAMELEN
];
4257 char filter
[BUFSIZ
];
4258 void **paramVal
= NULL
;
4260 ns_auth_t
**authpp
= NULL
;
4261 ns_auth_t
*authp
= NULL
;
4262 ns_ldap_error_t
*errorp
= NULL
;
4263 ns_ldap_result_t
*resultp
;
4268 (void) setlocale(LC_ALL
, "");
4269 (void) textdomain(TEXT_DOMAIN
);
4271 openlog("ldapaddent", LOG_PID
, LOG_USER
);
4274 authority
.cred
.unix_cred
.passwd
= NULL
;
4275 authority
.cred
.unix_cred
.userID
= NULL
;
4276 authority
.auth
.type
= NS_LDAP_AUTH_SIMPLE
;
4278 while ((c
= getopt(argc
, argv
, "cdh:N:M:vpf:D:w:j:b:a:P:r:")) != EOF
) {
4283 "no other option should be specified"));
4287 continue_onerror
= 1;
4296 standalone_cfg
.type
= NS_LDAP_SERVER
;
4297 standalone_cfg
.SA_DOMAIN
= optarg
;
4300 standalone_cfg
.type
= NS_LDAP_SERVER
;
4301 if (separatePort(optarg
,
4302 &standalone_cfg
.SA_SERVER
,
4303 &standalone_cfg
.SA_PORT
) > 0) {
4308 standalone_cfg
.type
= NS_LDAP_SERVER
;
4309 authority
.hostcertpath
= optarg
;
4312 standalone_cfg
.type
= NS_LDAP_SERVER
;
4313 standalone_cfg
.SA_PROFILE_NAME
= optarg
;
4319 authority
.cred
.unix_cred
.userID
= strdup(optarg
);
4322 if (authority
.cred
.unix_cred
.passwd
) {
4323 (void) fprintf(stderr
,
4324 gettext("Warning: The -w option is mutually"
4325 " exclusive of -j. -w is ignored.\n"));
4329 if (optarg
!= NULL
&&
4330 optarg
[0] == '-' && optarg
[1] == '\0') {
4331 /* Ask for a password later */
4335 authority
.cred
.unix_cred
.passwd
= strdup(optarg
);
4338 if (authority
.cred
.unix_cred
.passwd
!= NULL
) {
4339 (void) fprintf(stderr
,
4340 gettext("The -w option is mutually "
4341 "exclusive of -j. -w is ignored.\n"));
4342 free(authority
.cred
.unix_cred
.passwd
);
4344 authority
.cred
.unix_cred
.passwd
= readPwd(optarg
);
4345 if (authority
.cred
.unix_cred
.passwd
== NULL
) {
4350 inputbasedn
= strdup(optarg
);
4353 authmech
= strdup(optarg
);
4356 usage(gettext("Invalid option"));
4360 if (standalone_cfg
.type
== NS_LDAP_SERVER
&&
4361 standalone_cfg
.SA_SERVER
== NULL
) {
4362 (void) fprintf(stderr
,
4363 gettext("Please specify an LDAP server you want "
4364 "to connect to. \n"));
4368 if (authmech
!= NULL
) {
4369 if (__ns_ldap_initAuth(authmech
, &authority
.auth
, &errorp
) !=
4372 (void) fprintf(stderr
, "%s", errorp
->message
);
4373 (void) __ns_ldap_freeError(&errorp
);
4379 if (authority
.auth
.saslmech
!= NS_LDAP_SASL_GSSAPI
&&
4380 authority
.cred
.unix_cred
.userID
== NULL
&&
4382 /* This is not an optional parameter. Exit */
4383 (void) fprintf(stderr
,
4384 gettext("DN must be specified unless SASL/GSSAPI is used."
4385 " Use option -D.\n"));
4389 if (authority
.auth
.saslmech
!= NS_LDAP_SASL_GSSAPI
&&
4390 authority
.cred
.unix_cred
.passwd
== NULL
&&
4392 standalone_cfg
.type
!= NS_CACHEMGR
&&
4393 authority
.cred
.unix_cred
.userID
!= NULL
)) {
4394 /* If password is not specified, then prompt user for it. */
4395 password
= getpassphrase("Enter password:");
4396 (void) strcpy(ps
, password
);
4397 authority
.cred
.unix_cred
.passwd
= strdup(ps
);
4400 standalone_cfg
.SA_AUTH
= authmech
== NULL
? NULL
: &authority
.auth
;
4401 standalone_cfg
.SA_CERT_PATH
= authority
.hostcertpath
;
4402 standalone_cfg
.SA_BIND_DN
= authority
.cred
.unix_cred
.userID
;
4403 standalone_cfg
.SA_BIND_PWD
= authority
.cred
.unix_cred
.passwd
;
4405 if (__ns_ldap_initStandalone(&standalone_cfg
,
4406 &errorp
) != NS_LDAP_SUCCESS
) {
4408 (void) fprintf(stderr
, "%s", errorp
->message
);
4413 if (authmech
== NULL
) {
4414 ldaprc
= __ns_ldap_getParam(NS_LDAP_AUTH_P
, (void ***)&authpp
,
4416 if (ldaprc
!= NS_LDAP_SUCCESS
||
4417 (authpp
== NULL
&& op
!= OP_DUMP
)) {
4418 (void) fprintf(stderr
,
4419 gettext("No legal authentication method "
4421 (void) fprintf(stderr
,
4422 gettext("Provide a legal authentication method "
4423 "using -a option\n"));
4427 /* Use the first authentication method which is not none */
4428 for (app
= authpp
; *app
; app
++) {
4430 if (authp
->type
!= NS_LDAP_AUTH_NONE
) {
4432 authority
.auth
.type
= authp
->type
;
4433 authority
.auth
.tlstype
= authp
->tlstype
;
4434 authority
.auth
.saslmech
= authp
->saslmech
;
4435 authority
.auth
.saslopt
= authp
->saslopt
;
4439 if (authstried
== 0 && op
!= OP_DUMP
) {
4440 (void) fprintf(stderr
,
4441 gettext("No legal authentication method configured."
4442 "\nProvide a legal authentication method using "
4446 if (authority
.auth
.saslmech
== NS_LDAP_SASL_GSSAPI
&&
4447 authority
.cred
.unix_cred
.passwd
!= NULL
&&
4448 authority
.cred
.unix_cred
.userID
!= NULL
) {
4450 * -a is not specified and the auth method sasl/GSSAPI
4451 * is defined in the configuration of the ldap profile.
4452 * Even -D and -w is provided it's not valid usage.
4453 * Drop them on the floor.
4456 (void) fprintf(stderr
,
4457 gettext("The default authentication is "
4459 "The bind DN and password will be ignored.\n"));
4460 authority
.cred
.unix_cred
.passwd
= NULL
;
4461 authority
.cred
.unix_cred
.userID
= NULL
;
4465 ttype
= argv
[optind
++];
4467 if (ttype
== NULL
) {
4468 usage(gettext("No database type specified"));
4472 if (strncasecmp(ttype
, "automount", 9) == 0) {
4473 (void) fprintf(stderr
,
4474 gettext("automount is not a valid service for ldapaddent.\n"
4475 "Please use auto_*.\n"
4476 "e.g. auto_home, auto_ws etc.\n "));
4480 for (tt
= ttypelist
; tt
->ttype
; tt
++) {
4481 if (strcmp(tt
->ttype
, ttype
) == 0)
4483 if (strcmp(tt
->ttype
, NS_LDAP_TYPE_AUTOMOUNT
) == 0 &&
4484 strncmp(ttype
, NS_LDAP_TYPE_AUTOMOUNT
,
4485 sizeof (NS_LDAP_TYPE_AUTOMOUNT
) - 1) == 0)
4489 if (tt
->ttype
== 0) {
4490 (void) fprintf(stderr
,
4491 gettext("database %s not supported;"
4492 " supported databases are:\n"), ttype
);
4493 for (tt
= ttypelist
; tt
->ttype
; tt
++)
4494 (void) fprintf(stderr
, gettext("\t%s\n"), tt
->ttype
);
4498 if (flags
& F_VERBOSE
)
4499 (void) fprintf(stdout
, gettext("SERVICE = %s\n"), tt
->ttype
);
4501 databasetype
= ttype
;
4503 if (strcmp(tt
->ttype
, NS_LDAP_TYPE_AUTOMOUNT
) == 0) {
4506 rc
= __ns_ldap_getParam(NS_LDAP_FILE_VERSION_P
, ¶mVal
,
4508 if (paramVal
&& *paramVal
&&
4509 strcasecmp(*paramVal
, NS_LDAP_VERSION_1
) == 0)
4512 (void) __ns_ldap_freeParam(¶mVal
);
4514 (void) __ns_ldap_freeError(&errorp
);
4517 /* Check if the container exists in first place */
4518 (void) strcpy(&filter
[0], "(objectclass=*)");
4520 rc
= __ns_ldap_list(databasetype
, filter
, NULL
, (const char **)NULL
,
4521 NULL
, NS_LDAP_SCOPE_BASE
, &resultp
, &errorp
, NULL
, NULL
);
4523 /* create a container for auto_* if it does not exist already */
4524 if ((rc
== NS_LDAP_NOTFOUND
) && (op
== OP_ADD
) &&
4525 (strcmp(tt
->ttype
, NS_LDAP_TYPE_AUTOMOUNT
) == 0)) {
4526 static char *oclist
[] = {NULL
, "top", NULL
};
4528 oclist
[0] = "nisMap";
4530 oclist
[0] = "automountMap";
4531 e
= __s_mk_entry(oclist
, 3);
4533 (void) fprintf(stderr
,
4534 gettext("internal memory allocation error.\n"));
4538 version1
? "nisMapName" : "automountMapName",
4539 databasetype
) != NS_LDAP_SUCCESS
) {
4540 (void) fprintf(stderr
,
4541 gettext("internal memory allocation error.\n"));
4546 if (inputbasedn
== NULL
) {
4547 if (get_basedn(databasetype
, &inputbasedn
) !=
4549 (void) fprintf(stderr
,
4550 gettext("Could not obtain basedn\n"));
4555 if (__ns_ldap_addEntry(databasetype
, inputbasedn
, e
,
4556 &authority
, flag
, &errorp
) != NS_LDAP_SUCCESS
) {
4557 (void) fprintf(stderr
,
4558 gettext("Could not create container for %s\n"),
4562 } else if (strcmp(databasetype
, "publickey") != 0) {
4563 if (rc
== NS_LDAP_NOTFOUND
) {
4564 (void) fprintf(stderr
,
4565 gettext("Container %s does not exist\n"),
4571 if (op
== OP_DUMP
) {
4572 if (strcmp(databasetype
, "publickey") == 0) {
4574 dumptable("passwd");
4576 dumptable(databasetype
);
4582 if ((etcf
= fopen(etcfile
, "r")) == 0) {
4583 (void) fprintf(stderr
,
4584 gettext("can't open file %s\n"), etcfile
);
4594 (void) fprintf(stdout
, gettext("%d entries added\n"), nent_add
);
4597 __ns_ldap_cancelStandalone();
4598 /* exit() -> return for make lint */
4604 * This is called when service == auto_*.
4605 * It calls __ns_ldap_getSearchDescriptors
4606 * to generate the dn from SSD's base dn.
4607 * If there is no SSD available,
4608 * default base dn will be used
4609 * Only the first baseDN in the SSD is used
4612 static int get_basedn(char *service
, char **basedn
) {
4613 int rc
= NS_LDAP_SUCCESS
;
4615 ns_ldap_search_desc_t
**desc
= NULL
;
4616 ns_ldap_error_t
*errp
= NULL
;
4617 void **paramVal
= NULL
;
4618 int prepend_automountmapname
= FALSE
;
4621 * Get auto_* SSD first
4624 if ((rc
= __ns_ldap_getSearchDescriptors(
4625 (const char *) service
,
4626 &desc
, &errp
)) == NS_LDAP_SUCCESS
&&
4629 if (desc
[0] != NULL
&& desc
[0]->basedn
!= NULL
) {
4630 dn
= strdup(desc
[0]->basedn
);
4632 (void) __ns_ldap_freeSearchDescriptors
4634 return (NS_LDAP_MEMORY
);
4640 if (desc
) (void) __ns_ldap_freeSearchDescriptors(&desc
);
4641 if (errp
) (void) __ns_ldap_freeError(&errp
);
4644 * If no dn is duplicated from auto_* SSD, try automount SSD
4647 if ((rc
= __ns_ldap_getSearchDescriptors(
4648 "automount", &desc
, &errp
))
4649 == NS_LDAP_SUCCESS
&& desc
!= NULL
) {
4651 if (desc
[0] != NULL
&& desc
[0]->basedn
!= NULL
) {
4652 dn
= strdup(desc
[0]->basedn
);
4654 (void) __ns_ldap_freeSearchDescriptors
4656 return (NS_LDAP_MEMORY
);
4658 prepend_automountmapname
= TRUE
;
4662 if (desc
) (void) __ns_ldap_freeSearchDescriptors(&desc
);
4663 if (errp
) (void) __ns_ldap_freeError(&errp
);
4667 * If no dn is duplicated from auto_* or automount SSD,
4672 if ((rc
= __ns_ldap_getParam(NS_LDAP_SEARCH_BASEDN_P
,
4673 ¶mVal
, &errp
)) == NS_LDAP_SUCCESS
) {
4674 dn
= strdup((char *)paramVal
[0]);
4676 (void) __ns_ldap_freeParam(¶mVal
);
4677 return (NS_LDAP_MEMORY
);
4679 prepend_automountmapname
= TRUE
;
4681 if (paramVal
) (void) __ns_ldap_freeParam(¶mVal
);
4682 if (errp
) (void) __ns_ldap_freeError(&errp
);
4687 return (NS_LDAP_OP_FAILED
);
4690 * If dn is duplicated from
4691 * automount SSD basedn or
4693 * then prepend automountMapName=auto_xxx
4695 if (prepend_automountmapname
)
4696 rc
= __s_api_prepend_automountmapname_to_dn(
4697 service
, &dn
, &errp
);
4699 if (rc
!= NS_LDAP_SUCCESS
) {
4700 (void) __ns_ldap_freeError(&errp
);
4707 return (NS_LDAP_SUCCESS
);
4711 h_errno2str(int h_errno
) {
4713 case HOST_NOT_FOUND
:
4714 return ("HOST_NOT_FOUND");
4716 return ("TRY_AGAIN");
4718 return ("NO_RECOVERY");
4724 return ("UNKNOWN_ERROR");