Arthur de Jong

strncpy(addr.sun_path,NSLCD_SOCKET,sizeof(addr.sun_path));

addr.sun_path[sizeof(addr.sun_path)-1]='\0';

/* connect to the socket */

{

(void)close(sock);

return NULL;

nss_ldap_so_LINK="\$(CCLD) \$(AM_CFLAGS) \$(CFLAGS) \$(nss_ldap_so_LDFLAGS) \$(LDFLAGS) -o \$@"

case "$target_os" in

solaris*)

then

nss_ldap_so_LINK="/usr/ccs/bin/ld -Bdirect -z nodelete -Bdynamic -M \$(srcdir)/exports.solaris -G -o \$@"

else

pam_ldap_so_LINK="\$(CCLD) \$(AM_CFLAGS) \$(CFLAGS) \$(pam_ldap_so_LDFLAGS) \$(LDFLAGS) -o \$@"

case "$target_os" in

solaris*)

then

pam_ldap_so_LINK="/usr/ccs/bin/ld -Bdirect -z nodelete -Bdynamic -M \$(srcdir)/pam_ldap.map -G -o \$@"

else

int ldc_restart;

/* set to a greater than 0 to enable handling of paged results with the specified size */

int ldc_pagesize;

SET *ldc_nss_initgroups_ignoreusers;

/* the search that should be performed to do autorisation checks */

char *ldc_pam_authz_search;

/* Perform an LDAP lookup to translate the DN into a uid.

This function either returns NULL or a strdup()ed string. */

/* transforms the DN info a uid doing an LDAP lookup if needed */

MUST_USE char *dn2uid(MYLDAP_SESSION *session,const char *dn,char *buf,size_t buflen);

int rc;

int sd=-1;

struct timeval tv;

/* if the connection is still there (ie. ldap_unbind() wasn't

called) then we can return the cached connection */

if (session->ld!=NULL)

/* log the call */

log_log(LOG_DEBUG,"myldap_search(base=\"%s\", filter=\"%s\")",

base,filter);

/* allocate a new search entry */

search=myldap_search_new(session,base,scope,filter,attrs);

/* find a place in the session where we can register our search */

strncpy(addr.sun_path,NSLCD_SOCKET,sizeof(addr.sun_path));

addr.sun_path[sizeof(addr.sun_path)-1]='\0';

/* bind to the named socket */

{

log_log(LOG_ERR,"bind() to "NSLCD_SOCKET" failed: %s",

strerror(errno));

/* close the file descriptor on exit */

if (fcntl(sock,F_SETFD,FD_CLOEXEC)<0)

{

if (close(sock))

log_log(LOG_WARNING,"problem closing socket: %s",strerror(errno));

exit(EXIT_FAILURE);

static int try_bind(const char *userdn,const char *password)

{

MYLDAP_SESSION *session;

int rc;

/* set up a new connection */

session=myldap_create_session();

/* set up credentials for the session */

myldap_set_credentials(session,userdn,password);

/* perform search for own object (just to do any kind of search) */

/* close the session */

myldap_session_close(session);

/* handle the results */

const char *oldpassword,const char *newpassword)

{

MYLDAP_SESSION *session;

int rc;

/* set up a new connection */

session=myldap_create_session();

/* set up credentials for the session */

myldap_set_credentials(session,binddn,oldpassword);

/* perform search for own object (just to do any kind of search) */

{

/* if doing password modification as admin, don't pass old password along */

if ((nslcd_cfg->ldc_rootpwmoddn!=NULL)&&(strcmp(binddn,nslcd_cfg->ldc_rootpwmoddn)==0))

/* Perform an LDAP lookup to translate the DN into a uid.

This function either returns NULL or a strdup()ed string. */

{

MYLDAP_SEARCH *search;

MYLDAP_ENTRY *entry;

static const char *attrs[2];

int rc=LDAP_SUCCESS;

const char **values;

if (rcp==NULL)

rcp=&rc;

/* we have to look up the entry */

/* get uid (just use first one) */

values=myldap_get_values(entry,attmap_passwd_uid);

/* check the result for presence and validity */

myldap_search_close(search);

return uid;

}

}

pthread_mutex_unlock(&dn2uid_cache_mutex);

/* look up the uid using an LDAP query */

/* store the result in the cache */

pthread_mutex_lock(&dn2uid_cache_mutex);

if (cacheentry==NULL)

{

/* allocate a new entry in the cache */

cacheentry=(struct dn2uid_cache_entry *)malloc(sizeof(struct dn2uid_cache_entry));

if (cacheentry!=NULL)

dict_put(dn2uid_cache,dn,cacheentry);

}

/* update the cache entry */

if (cacheentry!=NULL)

{

cacheentry->timestamp=time(NULL);

}

pthread_mutex_unlock(&dn2uid_cache_mutex);

/* copy the result into the buffer */

}

MYLDAP_ENTRY *uid2entry(MYLDAP_SESSION *session,const char *uid)