OPENAFS-SA-2016-001 group creation by foreign users

author Benjamin Kaduk <kaduk@mit.edu>

Thu, 10 Mar 2016 01:30:20 +0000 (19:30 -0600)

committer Benjamin Kaduk <kaduk@mit.edu>

Wed, 16 Mar 2016 04:03:33 +0000 (00:03 -0400)
author Benjamin Kaduk <kaduk@mit.edu>
Thu, 10 Mar 2016 01:30:20 +0000 (19:30 -0600)
committer Benjamin Kaduk <kaduk@mit.edu>
Wed, 16 Mar 2016 04:03:33 +0000 (00:03 -0400)
diff --git a/src/ptserver/ptprocs.c b/src/ptserver/ptprocs.c

index ae1a562..f9f48fc 100644 (file)
--- a/src/ptserver/ptprocs.c
+++ b/src/ptserver/ptprocs.c
@@ -345,13 +345,19 @@ newEntry(struct rx_call *call, char aname[], afs_int32 flag, afs_int32 oid,
      * automatic id assignment.
      */
     code = WhoIsThisWithName(call, tt, cid, cname);
-    if (code != 2) {           /* 2 specifies that this is a foreign cell request */
-       if (code)
-           ABORT_WITH(tt, PRPERM);
-       admin = IsAMemberOf(tt, *cid, SYSADMINID);
-    } else {
-       admin = ((!restricted && !strcmp(aname, cname))) || IsAMemberOf(tt, *cid, SYSADMINID);
-       oid = *cid = SYSADMINID;
+    if (code && code != 2)
+       ABORT_WITH(tt, PRPERM);
+    admin = IsAMemberOf(tt, *cid, SYSADMINID);
+    if (code == 2 /* foreign cell request */) {
+       if (!restricted && (strcmp(aname, cname) == 0)) {
+           /* can't autoregister while providing an owner id */
+           if (oid != 0)
+               ABORT_WITH(tt, PRPERM);
+
+           admin = 1;
+           oid = SYSADMINID;
+           *cid = SYSADMINID;
+       }
     }
     if (!CreateOK(tt, *cid, oid, flag, admin))
        ABORT_WITH(tt, PRPERM);
author	Benjamin Kaduk <kaduk@mit.edu>
	Thu, 10 Mar 2016 01:30:20 +0000 (19:30 -0600)
committer	Benjamin Kaduk <kaduk@mit.edu>
	Wed, 16 Mar 2016 04:03:33 +0000 (00:03 -0400)