Cache the user & channel acces in session
Instead of querying the user & channel access for every time
cache the same during session creation, and use it for
enforcements.
Tested-by:
Verified that RMCP+ session establishment works as expected
including INSUFFICIENT_PRIVILEGE error.
Change-Id: Ib5a05bd07cc9aabf2625a18090fd905d93489b24
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
diff --git a/command/session_cmds.cpp b/command/session_cmds.cpp
index 3b9fa0e..8606ce5 100644
--- a/command/session_cmds.cpp
+++ b/command/session_cmds.cpp
@@ -5,9 +5,6 @@
#include <ipmid/api.h>
-#include <user_channel/channel_layer.hpp>
-#include <user_channel/user_layer.hpp>
-
namespace command
{
@@ -39,31 +36,16 @@
response->completionCode = IPMI_CC_EXCEEDS_USER_PRIV;
return outPayload;
}
-
- uint8_t userId = ipmi::ipmiUserGetUserId(session->userName);
- if (userId == ipmi::invalidUserId)
- {
- response->completionCode = IPMI_CC_UNSPECIFIED_ERROR;
- return outPayload;
- }
- ipmi::PrivAccess userAccess{};
- ipmi::ChannelAccess chAccess{};
- if ((ipmi::ipmiUserGetPrivilegeAccess(userId, session->chNum, userAccess) !=
- IPMI_CC_OK) ||
- (ipmi::getChannelAccessData(session->chNum, chAccess) != IPMI_CC_OK))
- {
- response->completionCode = IPMI_CC_INVALID_PRIV_LEVEL;
- return outPayload;
- }
// Use the minimum privilege of user or channel
uint8_t minPriv = 0;
- if (chAccess.privLimit < userAccess.privilege)
+ if (session->sessionChannelAccess.privLimit <
+ session->sessionUserPrivAccess.privilege)
{
- minPriv = chAccess.privLimit;
+ minPriv = session->sessionChannelAccess.privLimit;
}
else
{
- minPriv = userAccess.privilege;
+ minPriv = session->sessionUserPrivAccess.privilege;
}
if (reqPrivilegeLevel > minPriv)
{