1998-03-11 21:11:04 +00:00
/*
Unix SMB / Netbios implementation .
Version 1.9 .
NT Domain Authentication SMB / MSRPC client
Copyright ( C ) Andrew Tridgell 1994 - 1997
Copyright ( C ) Luke Kenneth Casson Leighton 1996 - 1997
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 2 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program ; if not , write to the Free Software
Foundation , Inc . , 675 Mass Ave , Cambridge , MA 0213 9 , USA .
*/
# ifdef SYSLOG
# undef SYSLOG
# endif
# include "includes.h"
# include "nterr.h"
extern int DEBUGLEVEL ;
1999-03-19 21:20:19 +00:00
/****************************************************************************
do a SAMR create domain user
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
BOOL create_samr_domain_user ( struct cli_state * cli , uint16 fnum ,
POLICY_HND * pol_open_domain ,
const char * acct_name , uint16 acb_info ,
uint32 * rid )
{
POLICY_HND pol_open_user ;
BOOL ret = True ;
if ( pol_open_domain = = NULL | | acct_name = = NULL ) return False ;
/* send create user */
if ( ! samr_create_dom_user ( cli , fnum ,
pol_open_domain ,
acct_name , acb_info , 0xe005000b ,
& pol_open_user , rid ) )
{
return False ;
}
DEBUG ( 5 , ( " create_samr_domain_user: name: %s rid 0x%x \n " ,
acct_name , * rid ) ) ;
return samr_close ( cli , fnum , & pol_open_user ) & & ret ;
}
1998-12-03 20:50:33 +00:00
/****************************************************************************
1998-12-03 22:20:30 +00:00
do a SAMR create domain alias
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL create_samr_domain_alias ( struct cli_state * cli , uint16 fnum ,
1998-12-03 22:20:30 +00:00
POLICY_HND * pol_open_domain ,
const char * acct_name , const char * acct_desc ,
uint32 * rid )
{
POLICY_HND pol_open_alias ;
ALIAS_INFO_CTR ctr ;
1998-12-04 16:30:00 +00:00
BOOL ret = True ;
1998-12-03 22:20:30 +00:00
if ( pol_open_domain = = NULL | | acct_name = = NULL | | acct_desc = = NULL ) return False ;
/* send create alias */
1998-12-07 20:23:41 +00:00
if ( ! samr_create_dom_alias ( cli , fnum ,
1998-12-03 22:20:30 +00:00
pol_open_domain ,
acct_name ,
& pol_open_alias , rid ) )
{
return False ;
}
DEBUG ( 5 , ( " create_samr_domain_alias: name: %s rid 0x%x \n " ,
acct_name , * rid ) ) ;
ctr . switch_value1 = 3 ;
make_samr_alias_info3 ( & ctr . alias . info3 , acct_desc ) ;
/* send set alias info */
1998-12-07 20:23:41 +00:00
if ( ! samr_set_aliasinfo ( cli , fnum ,
1998-12-03 22:20:30 +00:00
& pol_open_alias ,
& ctr ) )
{
DEBUG ( 5 , ( " create_samr_domain_alias: error in samr_set_aliasinfo \n " ) ) ;
1998-12-04 16:30:00 +00:00
ret = False ;
1998-12-03 22:20:30 +00:00
}
1998-12-07 20:23:41 +00:00
return samr_close ( cli , fnum , & pol_open_alias ) & & ret ;
1998-12-03 22:20:30 +00:00
}
/****************************************************************************
do a SAMR create domain group
1998-12-03 20:50:33 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL create_samr_domain_group ( struct cli_state * cli , uint16 fnum ,
1998-12-03 20:50:33 +00:00
POLICY_HND * pol_open_domain ,
const char * acct_name , const char * acct_desc ,
uint32 * rid )
{
POLICY_HND pol_open_group ;
GROUP_INFO_CTR ctr ;
1998-12-04 16:30:00 +00:00
BOOL ret = True ;
1998-12-03 20:50:33 +00:00
if ( pol_open_domain = = NULL | | acct_name = = NULL | | acct_desc = = NULL ) return False ;
/* send create group*/
1998-12-07 20:23:41 +00:00
if ( ! samr_create_dom_group ( cli , fnum ,
1998-12-03 20:50:33 +00:00
pol_open_domain ,
acct_name ,
& pol_open_group , rid ) )
{
return False ;
}
DEBUG ( 5 , ( " create_samr_domain_group: name: %s rid 0x%x \n " ,
acct_name , * rid ) ) ;
ctr . switch_value1 = 4 ;
ctr . switch_value2 = 4 ;
make_samr_group_info4 ( & ctr . group . info4 , acct_desc ) ;
/* send user groups query */
1998-12-07 20:23:41 +00:00
if ( ! samr_set_groupinfo ( cli , fnum ,
1998-12-03 20:50:33 +00:00
& pol_open_group ,
& ctr ) )
{
DEBUG ( 5 , ( " create_samr_domain_group: error in samr_set_groupinfo \n " ) ) ;
1998-12-04 16:30:00 +00:00
ret = False ;
1998-12-03 20:50:33 +00:00
}
1998-12-07 20:23:41 +00:00
return samr_close ( cli , fnum , & pol_open_group ) & & ret ;
1998-12-03 20:50:33 +00:00
}
1998-03-11 21:11:04 +00:00
/****************************************************************************
do a SAMR query user groups
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL get_samr_query_usergroups ( struct cli_state * cli , uint16 fnum ,
1998-03-11 21:11:04 +00:00
POLICY_HND * pol_open_domain , uint32 user_rid ,
uint32 * num_groups , DOM_GID * gid )
{
POLICY_HND pol_open_user ;
1998-12-04 16:30:00 +00:00
BOOL ret = True ;
1998-03-11 21:11:04 +00:00
if ( pol_open_domain = = NULL | | num_groups = = NULL | | gid = = NULL ) return False ;
/* send open domain (on user sid) */
1998-12-07 20:23:41 +00:00
if ( ! samr_open_user ( cli , fnum ,
1998-03-11 21:11:04 +00:00
pol_open_domain ,
0x02011b , user_rid ,
& pol_open_user ) )
{
return False ;
}
/* send user groups query */
1998-12-07 20:23:41 +00:00
if ( ! samr_query_usergroups ( cli , fnum ,
1998-03-11 21:11:04 +00:00
& pol_open_user ,
num_groups , gid ) )
{
1998-12-03 20:50:33 +00:00
DEBUG ( 5 , ( " samr_query_usergroups: error in query user groups \n " ) ) ;
1998-12-04 16:30:00 +00:00
ret = False ;
}
1998-12-07 20:23:41 +00:00
return samr_close ( cli , fnum , & pol_open_user ) & & ret ;
1998-12-04 16:30:00 +00:00
}
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
/****************************************************************************
do a SAMR delete group
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL delete_samr_dom_group ( struct cli_state * cli , uint16 fnum ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
POLICY_HND * pol_open_domain ,
uint32 group_rid )
{
POLICY_HND pol_open_group ;
if ( pol_open_domain = = NULL ) return False ;
/* send open domain (on group rid) */
1998-12-07 20:23:41 +00:00
if ( ! samr_open_group ( cli , fnum , pol_open_domain ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
0x00000010 , group_rid ,
& pol_open_group ) )
{
return False ;
}
/* send group delete */
1998-12-07 20:23:41 +00:00
if ( ! samr_delete_dom_group ( cli , fnum , & pol_open_group ) )
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
{
DEBUG ( 5 , ( " delete_samr_dom_group: error in delete domain group \n " ) ) ;
1998-12-07 20:23:41 +00:00
samr_close ( cli , fnum , & pol_open_group ) ;
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
return False ;
}
return True ;
}
1998-12-04 16:30:00 +00:00
/****************************************************************************
do a SAMR query group members
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL get_samr_query_groupmem ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * pol_open_domain ,
uint32 group_rid , uint32 * num_mem ,
uint32 * rid , uint32 * attr )
{
POLICY_HND pol_open_group ;
BOOL ret = True ;
if ( pol_open_domain = = NULL | | num_mem = = NULL | | rid = = NULL | | attr = = NULL ) return False ;
/* send open domain (on group sid) */
1998-12-07 20:23:41 +00:00
if ( ! samr_open_group ( cli , fnum , pol_open_domain ,
1998-12-04 22:00:39 +00:00
0x00000010 , group_rid ,
1998-12-04 16:30:00 +00:00
& pol_open_group ) )
{
return False ;
1998-03-11 21:11:04 +00:00
}
1998-12-04 16:30:00 +00:00
/* send group info query */
1998-12-07 20:23:41 +00:00
if ( ! samr_query_groupmem ( cli , fnum , & pol_open_group , num_mem , rid , attr ) )
1998-12-04 16:30:00 +00:00
{
DEBUG ( 5 , ( " samr_query_group: error in query group members \n " ) ) ;
ret = False ;
}
1998-12-07 20:23:41 +00:00
return samr_close ( cli , fnum , & pol_open_group ) & & ret ;
1998-12-04 16:30:00 +00:00
}
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
/****************************************************************************
do a SAMR delete alias
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL delete_samr_dom_alias ( struct cli_state * cli , uint16 fnum ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
POLICY_HND * pol_open_domain ,
uint32 alias_rid )
{
POLICY_HND pol_open_alias ;
if ( pol_open_domain = = NULL ) return False ;
/* send open domain (on alias rid) */
1998-12-07 20:23:41 +00:00
if ( ! samr_open_alias ( cli , fnum , pol_open_domain ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
0x000f001f , alias_rid , & pol_open_alias ) )
{
return False ;
}
/* send alias delete */
1998-12-07 20:23:41 +00:00
if ( ! samr_delete_dom_alias ( cli , fnum , & pol_open_alias ) )
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
{
DEBUG ( 5 , ( " delete_samr_dom_alias: error in delete domain alias \n " ) ) ;
1998-12-07 20:23:41 +00:00
samr_close ( cli , fnum , & pol_open_alias ) ;
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
return False ;
}
return True ;
}
1998-12-04 16:30:00 +00:00
/****************************************************************************
do a SAMR query alias members
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL get_samr_query_aliasmem ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * pol_open_domain ,
uint32 alias_rid , uint32 * num_mem , DOM_SID2 * sid )
{
POLICY_HND pol_open_alias ;
BOOL ret = True ;
if ( pol_open_domain = = NULL | | num_mem = = NULL | | sid = = NULL ) return False ;
/* send open domain (on alias sid) */
1998-12-07 20:23:41 +00:00
if ( ! samr_open_alias ( cli , fnum , pol_open_domain ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
0x000f001f , alias_rid ,
1998-12-04 16:30:00 +00:00
& pol_open_alias ) )
{
return False ;
}
/* send alias info query */
1998-12-07 20:23:41 +00:00
if ( ! samr_query_aliasmem ( cli , fnum , & pol_open_alias , num_mem , sid ) )
1998-12-04 16:30:00 +00:00
{
DEBUG ( 5 , ( " samr_query_alias: error in query alias members \n " ) ) ;
ret = False ;
}
1998-12-07 20:23:41 +00:00
return samr_close ( cli , fnum , & pol_open_alias ) & & ret ;
1998-03-11 21:11:04 +00:00
}
/****************************************************************************
do a SAMR query user info
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL get_samr_query_userinfo ( struct cli_state * cli , uint16 fnum ,
1998-03-11 21:11:04 +00:00
POLICY_HND * pol_open_domain ,
uint32 info_level ,
uint32 user_rid , SAM_USER_INFO_21 * usr )
{
POLICY_HND pol_open_user ;
1998-12-04 16:30:00 +00:00
BOOL ret = True ;
1998-03-11 21:11:04 +00:00
if ( pol_open_domain = = NULL | | usr = = NULL ) return False ;
bzero ( usr , sizeof ( * usr ) ) ;
/* send open domain (on user sid) */
1998-12-07 20:23:41 +00:00
if ( ! samr_open_user ( cli , fnum ,
1998-03-11 21:11:04 +00:00
pol_open_domain ,
0x02011b , user_rid ,
& pol_open_user ) )
{
return False ;
}
/* send user info query */
1998-12-07 20:23:41 +00:00
if ( ! samr_query_userinfo ( cli , fnum ,
1998-03-11 21:11:04 +00:00
& pol_open_user ,
info_level , ( void * ) usr ) )
{
1998-12-03 20:50:33 +00:00
DEBUG ( 5 , ( " samr_query_userinfo: error in query user info, level 0x%x \n " ,
1998-03-11 21:11:04 +00:00
info_level ) ) ;
1998-12-04 16:30:00 +00:00
ret = False ;
}
1998-12-07 20:23:41 +00:00
return samr_close ( cli , fnum , & pol_open_user ) & & ret ;
1998-12-04 16:30:00 +00:00
}
/****************************************************************************
do a SAMR query group info
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL get_samr_query_groupinfo ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * pol_open_domain ,
uint32 info_level ,
uint32 group_rid , GROUP_INFO_CTR * ctr )
{
POLICY_HND pol_open_group ;
BOOL ret = True ;
if ( pol_open_domain = = NULL | | ctr = = NULL ) return False ;
bzero ( ctr , sizeof ( * ctr ) ) ;
/* send open domain (on group sid) */
1998-12-07 20:23:41 +00:00
if ( ! samr_open_group ( cli , fnum ,
1998-12-04 16:30:00 +00:00
pol_open_domain ,
1998-12-04 22:00:39 +00:00
0x00000010 , group_rid , & pol_open_group ) )
1998-12-04 16:30:00 +00:00
{
return False ;
}
/* send group info query */
1998-12-07 20:23:41 +00:00
if ( ! samr_query_groupinfo ( cli , fnum ,
1998-12-04 16:30:00 +00:00
& pol_open_group ,
info_level , ctr ) )
{
DEBUG ( 5 , ( " samr_query_groupinfo: error in query group info, level 0x%x \n " ,
info_level ) ) ;
ret = False ;
1998-03-11 21:11:04 +00:00
}
1998-12-07 20:23:41 +00:00
return samr_close ( cli , fnum , & pol_open_group ) & & ret ;
1998-03-11 21:11:04 +00:00
}
1998-10-09 23:31:50 +00:00
/****************************************************************************
do a SAMR change user password command
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_chgpasswd_user ( struct cli_state * cli , uint16 fnum ,
1998-10-09 23:31:50 +00:00
char * srv_name , char * user_name ,
1998-10-21 16:58:34 +00:00
char nt_newpass [ 516 ] , uchar nt_oldhash [ 16 ] ,
char lm_newpass [ 516 ] , uchar lm_oldhash [ 16 ] )
1998-10-09 23:31:50 +00:00
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_CHGPASSWD_USER q_e ;
BOOL valid_pwc = False ;
/* create and send a MSRPC command with api SAMR_CHGPASSWD_USER */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Change User Password. server:%s username:%s \n " ,
srv_name , user_name ) ) ;
make_samr_q_chgpasswd_user ( & q_e , srv_name , user_name ,
nt_newpass , nt_oldhash ,
lm_newpass , lm_oldhash ) ;
/* turn parameters into data stream */
samr_io_q_chgpasswd_user ( " " , & q_e , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_CHGPASSWD_USER , & data , & rdata ) )
1998-10-09 23:31:50 +00:00
{
SAMR_R_CHGPASSWD_USER r_e ;
BOOL p ;
samr_io_r_chgpasswd_user ( " " , & r_e , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_e . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_CHGPASSWD_USER: %s \n " , get_nt_error_msg ( r_e . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pwc = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pwc ;
}
1999-02-24 01:52:30 +00:00
1998-10-09 19:05:19 +00:00
/****************************************************************************
do a SAMR unknown 0x38 command
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_unknown_38 ( struct cli_state * cli , uint16 fnum , char * srv_name )
1998-10-09 19:05:19 +00:00
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_UNKNOWN_38 q_e ;
BOOL valid_un8 = False ;
/* create and send a MSRPC command with api SAMR_ENUM_DOM_USERS */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Unknown 38 server:%s \n " , srv_name ) ) ;
make_samr_q_unknown_38 ( & q_e , srv_name ) ;
/* turn parameters into data stream */
samr_io_q_unknown_38 ( " " , & q_e , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_UNKNOWN_38 , & data , & rdata ) )
1998-10-09 19:05:19 +00:00
{
SAMR_R_UNKNOWN_38 r_e ;
BOOL p ;
samr_io_r_unknown_38 ( " " , & r_e , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
1998-10-15 05:47:29 +00:00
#if 0
1998-10-09 19:05:19 +00:00
if ( p & & r_e . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_UNKNOWN_38: %s \n " , get_nt_error_msg ( r_e . status ) ) ) ;
p = False ;
}
1998-10-15 05:47:29 +00:00
# endif
1998-10-09 19:05:19 +00:00
if ( p )
{
valid_un8 = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_un8 ;
}
1998-03-11 21:11:04 +00:00
/****************************************************************************
do a SAMR unknown 0x8 command
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_dom_info ( struct cli_state * cli , uint16 fnum ,
1999-08-29 16:36:21 +00:00
POLICY_HND * domain_pol , uint16 switch_value ,
SAM_UNK_CTR * ctr )
1998-03-11 21:11:04 +00:00
{
prs_struct data ;
prs_struct rdata ;
1998-10-21 22:36:26 +00:00
SAMR_Q_QUERY_DOMAIN_INFO q_e ;
1998-10-08 23:57:46 +00:00
BOOL valid_un8 = False ;
1998-03-11 21:11:04 +00:00
1998-12-03 20:50:33 +00:00
DEBUG ( 4 , ( " SAMR Unknown 8 switch:%d \n " , switch_value ) ) ;
if ( domain_pol = = NULL ) return False ;
1998-03-11 21:11:04 +00:00
/* create and send a MSRPC command with api SAMR_ENUM_DOM_USERS */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
1998-10-21 22:36:26 +00:00
make_samr_q_query_dom_info ( & q_e , domain_pol , switch_value ) ;
1998-03-11 21:11:04 +00:00
/* turn parameters into data stream */
1998-10-21 22:36:26 +00:00
samr_io_q_query_dom_info ( " " , & q_e , & data , 0 ) ;
1998-03-11 21:11:04 +00:00
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_QUERY_DOMAIN_INFO , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
1998-10-21 22:36:26 +00:00
SAMR_R_QUERY_DOMAIN_INFO r_e ;
1998-03-11 21:11:04 +00:00
BOOL p ;
1999-08-29 16:36:21 +00:00
r_e . ctr = ctr ;
1998-10-21 22:36:26 +00:00
samr_io_r_query_dom_info ( " " , & r_e , & rdata , 0 ) ;
1998-03-11 21:11:04 +00:00
p = rdata . offset ! = 0 ;
if ( p & & r_e . status ! = 0 )
{
/* report error code */
1998-10-21 22:36:26 +00:00
DEBUG ( 0 , ( " SAMR_R_QUERY_DOMAIN_INFO: %s \n " , get_nt_error_msg ( r_e . status ) ) ) ;
1998-03-11 21:11:04 +00:00
p = False ;
}
if ( p )
{
valid_un8 = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_un8 ;
}
1998-12-04 16:30:00 +00:00
/****************************************************************************
do a SAMR enumerate groups
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_enum_dom_groups ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * pol , uint32 size ,
struct acct_info * * sam ,
int * num_sam_groups )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_ENUM_DOM_GROUPS q_e ;
BOOL valid_pol = False ;
DEBUG ( 4 , ( " SAMR Enum SAM DB max size:%x \n " , size ) ) ;
if ( pol = = NULL | | num_sam_groups = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_ENUM_DOM_GROUPS */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
1999-02-24 01:52:30 +00:00
make_samr_q_enum_dom_groups ( & q_e , pol , size ) ;
1998-12-04 16:30:00 +00:00
/* turn parameters into data stream */
samr_io_q_enum_dom_groups ( " " , & q_e , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_ENUM_DOM_GROUPS , & data , & rdata ) )
1998-12-04 16:30:00 +00:00
{
SAMR_R_ENUM_DOM_GROUPS r_e ;
BOOL p ;
samr_io_r_enum_dom_groups ( " " , & r_e , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_e . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_ENUM_DOM_GROUPS: %s \n " , get_nt_error_msg ( r_e . status ) ) ) ;
p = False ;
}
if ( p )
{
int i ;
int name_idx = 0 ;
* num_sam_groups = r_e . num_entries2 ;
if ( * num_sam_groups > MAX_SAM_ENTRIES )
{
* num_sam_groups = MAX_SAM_ENTRIES ;
1999-02-24 01:52:30 +00:00
DEBUG ( 2 , ( " samr_enum_dom_groups: sam group entries limited to %d \n " ,
1998-12-04 16:30:00 +00:00
* num_sam_groups ) ) ;
}
* sam = ( struct acct_info * ) malloc ( sizeof ( struct acct_info ) * ( * num_sam_groups ) ) ;
if ( ( * sam ) = = NULL )
{
* num_sam_groups = 0 ;
}
for ( i = 0 ; i < * num_sam_groups ; i + + )
{
1999-02-24 01:52:30 +00:00
( * sam ) [ i ] . rid = r_e . sam [ i ] . rid ;
1998-12-04 16:30:00 +00:00
( * sam ) [ i ] . acct_name [ 0 ] = 0 ;
( * sam ) [ i ] . acct_desc [ 0 ] = 0 ;
1999-02-24 01:52:30 +00:00
if ( r_e . sam [ i ] . hdr_name . buffer )
1998-12-04 16:30:00 +00:00
{
1999-02-24 01:52:30 +00:00
unistr2_to_ascii ( ( * sam ) [ i ] . acct_name , & r_e . uni_grp_name [ name_idx ] , sizeof ( ( * sam ) [ i ] . acct_name ) - 1 ) ;
1998-12-04 16:30:00 +00:00
name_idx + + ;
}
1999-02-24 01:52:30 +00:00
DEBUG ( 5 , ( " samr_enum_dom_groups: idx: %4d rid: %8x acct: %s \n " ,
i , ( * sam ) [ i ] . rid , ( * sam ) [ i ] . acct_name ) ) ;
1998-12-04 16:30:00 +00:00
}
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
/****************************************************************************
do a SAMR enumerate aliases
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_enum_dom_aliases ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * pol , uint32 size ,
struct acct_info * * sam ,
int * num_sam_aliases )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_ENUM_DOM_ALIASES q_e ;
BOOL valid_pol = False ;
DEBUG ( 4 , ( " SAMR Enum SAM DB max size:%x \n " , size ) ) ;
if ( pol = = NULL | | num_sam_aliases = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_ENUM_DOM_ALIASES */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
make_samr_q_enum_dom_aliases ( & q_e , pol , size ) ;
/* turn parameters into data stream */
samr_io_q_enum_dom_aliases ( " " , & q_e , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_ENUM_DOM_ALIASES , & data , & rdata ) )
1998-12-04 16:30:00 +00:00
{
SAMR_R_ENUM_DOM_ALIASES r_e ;
BOOL p ;
samr_io_r_enum_dom_aliases ( " " , & r_e , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_e . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_ENUM_DOM_ALIASES: %s \n " , get_nt_error_msg ( r_e . status ) ) ) ;
p = False ;
}
if ( p )
{
int i ;
int name_idx = 0 ;
* num_sam_aliases = r_e . num_entries2 ;
if ( * num_sam_aliases > MAX_SAM_ENTRIES )
{
* num_sam_aliases = MAX_SAM_ENTRIES ;
DEBUG ( 2 , ( " samr_enum_dom_aliases: sam user entries limited to %d \n " ,
* num_sam_aliases ) ) ;
}
* sam = ( struct acct_info * ) malloc ( sizeof ( struct acct_info ) * ( * num_sam_aliases ) ) ;
if ( ( * sam ) = = NULL )
{
* num_sam_aliases = 0 ;
}
for ( i = 0 ; i < * num_sam_aliases ; i + + )
{
( * sam ) [ i ] . rid = r_e . sam [ i ] . rid ;
( * sam ) [ i ] . acct_name [ 0 ] = 0 ;
( * sam ) [ i ] . acct_desc [ 0 ] = 0 ;
if ( r_e . sam [ i ] . hdr_name . buffer )
{
1999-02-15 05:33:30 +00:00
unistr2_to_ascii ( ( * sam ) [ i ] . acct_name , & r_e . uni_grp_name [ name_idx ] , sizeof ( ( * sam ) [ i ] . acct_name ) - 1 ) ;
1998-12-04 16:30:00 +00:00
name_idx + + ;
}
DEBUG ( 5 , ( " samr_enum_dom_aliases: idx: %4d rid: %8x acct: %s \n " ,
i , ( * sam ) [ i ] . rid , ( * sam ) [ i ] . acct_name ) ) ;
}
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1998-03-11 21:11:04 +00:00
/****************************************************************************
do a SAMR enumerate users
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_enum_dom_users ( struct cli_state * cli , uint16 fnum ,
1999-01-29 21:22:08 +00:00
POLICY_HND * pol , uint32 start_idx ,
1998-03-11 21:11:04 +00:00
uint16 acb_mask , uint16 unk_1 , uint32 size ,
1998-09-25 23:14:20 +00:00
struct acct_info * * sam ,
1998-03-11 21:11:04 +00:00
int * num_sam_users )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_ENUM_DOM_USERS q_e ;
1998-12-03 20:50:33 +00:00
BOOL valid_pol = False ;
DEBUG ( 4 , ( " SAMR Enum SAM DB max size:%x \n " , size ) ) ;
if ( pol = = NULL | | num_sam_users = = NULL ) return False ;
1998-03-11 21:11:04 +00:00
/* create and send a MSRPC command with api SAMR_ENUM_DOM_USERS */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
1999-01-29 21:22:08 +00:00
make_samr_q_enum_dom_users ( & q_e , pol , start_idx , acb_mask , unk_1 , size ) ;
1998-03-11 21:11:04 +00:00
/* turn parameters into data stream */
samr_io_q_enum_dom_users ( " " , & q_e , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_ENUM_DOM_USERS , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
SAMR_R_ENUM_DOM_USERS r_e ;
BOOL p ;
samr_io_r_enum_dom_users ( " " , & r_e , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_e . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_ENUM_DOM_USERS: %s \n " , get_nt_error_msg ( r_e . status ) ) ) ;
p = False ;
}
if ( p )
{
int i ;
int name_idx = 0 ;
* num_sam_users = r_e . num_entries2 ;
1998-09-25 23:14:20 +00:00
* sam = ( struct acct_info * ) malloc ( sizeof ( struct acct_info ) * ( * num_sam_users ) ) ;
if ( ( * sam ) = = NULL )
{
* num_sam_users = 0 ;
}
1998-03-11 21:11:04 +00:00
for ( i = 0 ; i < * num_sam_users ; i + + )
{
1998-12-04 16:30:00 +00:00
( * sam ) [ i ] . rid = r_e . sam [ i ] . rid ;
( * sam ) [ i ] . acct_name [ 0 ] = 0 ;
( * sam ) [ i ] . acct_desc [ 0 ] = 0 ;
1998-03-11 21:11:04 +00:00
if ( r_e . sam [ i ] . hdr_name . buffer )
{
1999-02-15 05:33:30 +00:00
unistr2_to_ascii ( ( * sam ) [ i ] . acct_name , & r_e . uni_acct_name [ name_idx ] , sizeof ( ( * sam ) [ i ] . acct_name ) - 1 ) ;
1998-03-11 21:11:04 +00:00
name_idx + + ;
}
1998-12-03 20:50:33 +00:00
DEBUG ( 5 , ( " samr_enum_dom_users: idx: %4d rid: %8x acct: %s \n " ,
1998-12-04 16:30:00 +00:00
i , ( * sam ) [ i ] . rid , ( * sam ) [ i ] . acct_name ) ) ;
1998-03-11 21:11:04 +00:00
}
valid_pol = True ;
}
1999-03-23 20:43:44 +00:00
if ( r_e . sam ! = NULL )
{
free ( r_e . sam ) ;
}
if ( r_e . uni_acct_name ! = NULL )
{
free ( r_e . uni_acct_name ) ;
}
1998-03-11 21:11:04 +00:00
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
/****************************************************************************
do a SAMR Connect
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_connect ( struct cli_state * cli , uint16 fnum ,
1998-03-11 21:11:04 +00:00
char * srv_name , uint32 unknown_0 ,
POLICY_HND * connect_pol )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_CONNECT q_o ;
1998-12-03 20:50:33 +00:00
BOOL valid_pol = False ;
1998-03-11 21:11:04 +00:00
DEBUG ( 4 , ( " SAMR Open Policy server:%s undoc value:%x \n " ,
srv_name , unknown_0 ) ) ;
1998-09-25 23:14:20 +00:00
if ( srv_name = = NULL | | connect_pol = = NULL ) return False ;
1998-03-11 21:11:04 +00:00
1998-12-03 20:50:33 +00:00
/* create and send a MSRPC command with api SAMR_CONNECT */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
1998-03-11 21:11:04 +00:00
/* store the parameters */
make_samr_q_connect ( & q_o , srv_name , unknown_0 ) ;
/* turn parameters into data stream */
samr_io_q_connect ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_CONNECT , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
SAMR_R_CONNECT r_o ;
BOOL p ;
samr_io_r_connect ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_CONNECT: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
memcpy ( connect_pol , & r_o . connect_pol , sizeof ( r_o . connect_pol ) ) ;
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
/****************************************************************************
do a SAMR Open User
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_open_user ( struct cli_state * cli , uint16 fnum ,
1998-03-11 21:11:04 +00:00
POLICY_HND * pol , uint32 unk_0 , uint32 rid ,
POLICY_HND * user_pol )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_OPEN_USER q_o ;
1998-12-03 20:50:33 +00:00
BOOL valid_pol = False ;
1998-03-11 21:11:04 +00:00
DEBUG ( 4 , ( " SAMR Open User. unk_0: %08x RID:%x \n " ,
unk_0 , rid ) ) ;
1998-09-25 23:14:20 +00:00
if ( pol = = NULL | | user_pol = = NULL ) return False ;
1998-03-11 21:11:04 +00:00
1998-12-03 20:50:33 +00:00
/* create and send a MSRPC command with api SAMR_OPEN_USER */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
1998-03-11 21:11:04 +00:00
/* store the parameters */
make_samr_q_open_user ( & q_o , pol , unk_0 , rid ) ;
/* turn parameters into data stream */
samr_io_q_open_user ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_OPEN_USER , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
SAMR_R_OPEN_USER r_o ;
BOOL p ;
samr_io_r_open_user ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_OPEN_USER: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
memcpy ( user_pol , & r_o . user_pol , sizeof ( r_o . user_pol ) ) ;
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1998-12-03 22:20:30 +00:00
/****************************************************************************
do a SAMR Open Alias
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_open_alias ( struct cli_state * cli , uint16 fnum ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
POLICY_HND * domain_pol ,
uint32 flags , uint32 rid ,
1998-12-03 22:20:30 +00:00
POLICY_HND * alias_pol )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_OPEN_ALIAS q_o ;
BOOL valid_pol = False ;
DEBUG ( 4 , ( " SAMR Open Alias. RID:%x \n " , rid ) ) ;
if ( alias_pol = = NULL | | domain_pol = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_OPEN_ALIAS */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
make_samr_q_open_alias ( & q_o , domain_pol , flags , rid ) ;
1998-12-03 22:20:30 +00:00
/* turn parameters into data stream */
samr_io_q_open_alias ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_OPEN_ALIAS , & data , & rdata ) )
1998-12-03 22:20:30 +00:00
{
SAMR_R_OPEN_ALIAS r_o ;
BOOL p ;
samr_io_r_open_alias ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_OPEN_ALIAS: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
memcpy ( alias_pol , & r_o . pol , sizeof ( r_o . pol ) ) ;
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
/****************************************************************************
do a SAMR Delete Alias Member
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_del_aliasmem ( struct cli_state * cli , uint16 fnum ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
POLICY_HND * alias_pol , DOM_SID * sid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_DEL_ALIASMEM q_o ;
BOOL valid_pol = False ;
if ( alias_pol = = NULL | | sid = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_DEL_ALIASMEM */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Delete Alias Member. \n " ) ) ;
/* store the parameters */
make_samr_q_del_aliasmem ( & q_o , alias_pol , sid ) ;
/* turn parameters into data stream */
samr_io_q_del_aliasmem ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_DEL_ALIASMEM , & data , & rdata ) )
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
{
SAMR_R_DEL_ALIASMEM r_o ;
BOOL p ;
samr_io_r_del_aliasmem ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_DEL_ALIASMEM: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1998-12-04 16:30:00 +00:00
/****************************************************************************
do a SAMR Add Alias Member
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_add_aliasmem ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * alias_pol , DOM_SID * sid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_ADD_ALIASMEM q_o ;
BOOL valid_pol = False ;
if ( alias_pol = = NULL | | sid = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_ADD_ALIASMEM */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Add Alias Member. \n " ) ) ;
/* store the parameters */
make_samr_q_add_aliasmem ( & q_o , alias_pol , sid ) ;
/* turn parameters into data stream */
samr_io_q_add_aliasmem ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_ADD_ALIASMEM , & data , & rdata ) )
1998-12-04 16:30:00 +00:00
{
SAMR_R_ADD_ALIASMEM r_o ;
BOOL p ;
samr_io_r_add_aliasmem ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_ADD_ALIASMEM: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
/****************************************************************************
do a SAMR Delete Domain Alias
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_delete_dom_alias ( struct cli_state * cli , uint16 fnum ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
POLICY_HND * alias_pol )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_DELETE_DOM_ALIAS q_o ;
BOOL valid_pol = False ;
if ( alias_pol = = NULL ) return False ;
/* delete and send a MSRPC command with api SAMR_DELETE_DOM_ALIAS */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Delete Domain Alias. \n " ) ) ;
/* store the parameters */
make_samr_q_delete_dom_alias ( & q_o , alias_pol ) ;
/* turn parameters into data stream */
samr_io_q_delete_dom_alias ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_DELETE_DOM_ALIAS , & data , & rdata ) )
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
{
SAMR_R_DELETE_DOM_ALIAS r_o ;
BOOL p ;
samr_io_r_delete_dom_alias ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_DELETE_DOM_ALIAS: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1999-03-19 21:20:19 +00:00
/****************************************************************************
do a SAMR Create Domain User
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
BOOL samr_create_dom_user ( struct cli_state * cli , uint16 fnum ,
POLICY_HND * domain_pol , const char * acct_name ,
uint32 unk_0 , uint32 unk_1 ,
POLICY_HND * user_pol , uint32 * rid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_CREATE_USER q_o ;
BOOL valid_pol = False ;
if ( user_pol = = NULL | | domain_pol = = NULL | | acct_name = = NULL | | rid = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_CREATE_USER */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Create Domain User. Name:%s \n " , acct_name ) ) ;
/* store the parameters */
make_samr_q_create_user ( & q_o , domain_pol , acct_name , unk_0 , unk_1 ) ;
/* turn parameters into data stream */
samr_io_q_create_user ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
if ( rpc_api_pipe_req ( cli , fnum , SAMR_CREATE_USER , & data , & rdata ) )
{
SAMR_R_CREATE_USER r_o ;
BOOL p ;
samr_io_r_create_user ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_CREATE_USER: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
memcpy ( user_pol , & r_o . user_pol , sizeof ( r_o . user_pol ) ) ;
* rid = r_o . user_rid ;
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1998-12-03 22:20:30 +00:00
/****************************************************************************
do a SAMR Create Domain Alias
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_create_dom_alias ( struct cli_state * cli , uint16 fnum ,
1998-12-03 22:20:30 +00:00
POLICY_HND * domain_pol , const char * acct_name ,
POLICY_HND * alias_pol , uint32 * rid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_CREATE_DOM_ALIAS q_o ;
BOOL valid_pol = False ;
if ( alias_pol = = NULL | | domain_pol = = NULL | | acct_name = = NULL | | rid = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_CREATE_DOM_ALIAS */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Create Domain Alias. Name:%s \n " , acct_name ) ) ;
/* store the parameters */
make_samr_q_create_dom_alias ( & q_o , domain_pol , acct_name ) ;
/* turn parameters into data stream */
samr_io_q_create_dom_alias ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_CREATE_DOM_ALIAS , & data , & rdata ) )
1998-12-03 22:20:30 +00:00
{
SAMR_R_CREATE_DOM_ALIAS r_o ;
BOOL p ;
samr_io_r_create_dom_alias ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_CREATE_DOM_ALIAS: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
memcpy ( alias_pol , & r_o . alias_pol , sizeof ( r_o . alias_pol ) ) ;
* rid = r_o . rid ;
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
/****************************************************************************
do a SAMR Set Alias Info
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_set_aliasinfo ( struct cli_state * cli , uint16 fnum ,
1998-12-03 22:20:30 +00:00
POLICY_HND * alias_pol , ALIAS_INFO_CTR * ctr )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_SET_ALIASINFO q_o ;
BOOL valid_pol = False ;
if ( alias_pol = = NULL | | ctr = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_SET_ALIASINFO */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Set Alias Info \n " ) ) ;
/* store the parameters */
make_samr_q_set_aliasinfo ( & q_o , alias_pol , ctr ) ;
/* turn parameters into data stream */
samr_io_q_set_aliasinfo ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_SET_ALIASINFO , & data , & rdata ) )
1998-12-03 22:20:30 +00:00
{
SAMR_R_SET_ALIASINFO r_o ;
BOOL p ;
samr_io_r_set_aliasinfo ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_SET_ALIASINFO: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1998-12-03 20:50:33 +00:00
/****************************************************************************
do a SAMR Open Group
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_open_group ( struct cli_state * cli , uint16 fnum ,
1998-12-04 22:00:39 +00:00
POLICY_HND * domain_pol ,
uint32 flags , uint32 rid ,
1998-12-03 20:50:33 +00:00
POLICY_HND * group_pol )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_OPEN_GROUP q_o ;
BOOL valid_pol = False ;
DEBUG ( 4 , ( " SAMR Open Group. RID:%x \n " , rid ) ) ;
if ( group_pol = = NULL | | domain_pol = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_OPEN_GROUP */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
1998-12-04 22:00:39 +00:00
make_samr_q_open_group ( & q_o , domain_pol , flags , rid ) ;
1998-12-03 20:50:33 +00:00
/* turn parameters into data stream */
samr_io_q_open_group ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_OPEN_GROUP , & data , & rdata ) )
1998-12-03 20:50:33 +00:00
{
SAMR_R_OPEN_GROUP r_o ;
BOOL p ;
samr_io_r_open_group ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_OPEN_GROUP: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
memcpy ( group_pol , & r_o . pol , sizeof ( r_o . pol ) ) ;
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
/****************************************************************************
do a SAMR Delete Group Member
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_del_groupmem ( struct cli_state * cli , uint16 fnum ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
POLICY_HND * group_pol , uint32 rid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_DEL_GROUPMEM q_o ;
BOOL valid_pol = False ;
if ( group_pol = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_DEL_GROUPMEM */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Delete Group Member. \n " ) ) ;
/* store the parameters */
make_samr_q_del_groupmem ( & q_o , group_pol , rid ) ;
/* turn parameters into data stream */
samr_io_q_del_groupmem ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_DEL_GROUPMEM , & data , & rdata ) )
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
{
SAMR_R_DEL_GROUPMEM r_o ;
BOOL p ;
samr_io_r_del_groupmem ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_DEL_GROUPMEM: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1998-12-04 16:30:00 +00:00
/****************************************************************************
do a SAMR Add Group Member
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_add_groupmem ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * group_pol , uint32 rid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_ADD_GROUPMEM q_o ;
BOOL valid_pol = False ;
if ( group_pol = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_ADD_GROUPMEM */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Add Group Member. \n " ) ) ;
/* store the parameters */
make_samr_q_add_groupmem ( & q_o , group_pol , rid ) ;
/* turn parameters into data stream */
samr_io_q_add_groupmem ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_ADD_GROUPMEM , & data , & rdata ) )
1998-12-04 16:30:00 +00:00
{
SAMR_R_ADD_GROUPMEM r_o ;
BOOL p ;
samr_io_r_add_groupmem ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_ADD_GROUPMEM: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
/****************************************************************************
do a SAMR Delete Domain Group
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_delete_dom_group ( struct cli_state * cli , uint16 fnum , POLICY_HND * group_pol )
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_DELETE_DOM_GROUP q_o ;
BOOL valid_pol = False ;
if ( group_pol = = NULL ) return False ;
/* delete and send a MSRPC command with api SAMR_DELETE_DOM_GROUP */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Delete Domain Group. \n " ) ) ;
/* store the parameters */
make_samr_q_delete_dom_group ( & q_o , group_pol ) ;
/* turn parameters into data stream */
samr_io_q_delete_dom_group ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_DELETE_DOM_GROUP , & data , & rdata ) )
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
{
SAMR_R_DELETE_DOM_GROUP r_o ;
BOOL p ;
samr_io_r_delete_dom_group ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_DELETE_DOM_GROUP: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1998-12-03 20:50:33 +00:00
/****************************************************************************
do a SAMR Create Domain Group
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_create_dom_group ( struct cli_state * cli , uint16 fnum ,
1998-12-03 20:50:33 +00:00
POLICY_HND * domain_pol , const char * acct_name ,
POLICY_HND * group_pol , uint32 * rid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_CREATE_DOM_GROUP q_o ;
BOOL valid_pol = False ;
if ( group_pol = = NULL | | domain_pol = = NULL | | acct_name = = NULL | | rid = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_CREATE_DOM_GROUP */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Create Domain Group. Name:%s \n " , acct_name ) ) ;
/* store the parameters */
make_samr_q_create_dom_group ( & q_o , domain_pol , acct_name ) ;
/* turn parameters into data stream */
samr_io_q_create_dom_group ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_CREATE_DOM_GROUP , & data , & rdata ) )
1998-12-03 20:50:33 +00:00
{
SAMR_R_CREATE_DOM_GROUP r_o ;
BOOL p ;
samr_io_r_create_dom_group ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_CREATE_DOM_GROUP: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
memcpy ( group_pol , & r_o . pol , sizeof ( r_o . pol ) ) ;
* rid = r_o . rid ;
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
/****************************************************************************
do a SAMR Set Group Info
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_set_groupinfo ( struct cli_state * cli , uint16 fnum ,
1998-12-03 20:50:33 +00:00
POLICY_HND * group_pol , GROUP_INFO_CTR * ctr )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_SET_GROUPINFO q_o ;
BOOL valid_pol = False ;
if ( group_pol = = NULL | | ctr = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_SET_GROUPINFO */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Set Group Info \n " ) ) ;
/* store the parameters */
make_samr_q_set_groupinfo ( & q_o , group_pol , ctr ) ;
/* turn parameters into data stream */
samr_io_q_set_groupinfo ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_SET_GROUPINFO , & data , & rdata ) )
1998-12-03 20:50:33 +00:00
{
SAMR_R_SET_GROUPINFO r_o ;
BOOL p ;
samr_io_r_set_groupinfo ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_SET_GROUPINFO: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1998-03-11 21:11:04 +00:00
/****************************************************************************
do a SAMR Open Domain
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_open_domain ( struct cli_state * cli , uint16 fnum ,
1999-03-19 21:20:19 +00:00
POLICY_HND * connect_pol , uint32 ace_perms ,
DOM_SID * sid ,
1998-03-11 21:11:04 +00:00
POLICY_HND * domain_pol )
{
1998-09-25 22:20:05 +00:00
pstring sid_str ;
1998-03-11 21:11:04 +00:00
prs_struct data ;
prs_struct rdata ;
SAMR_Q_OPEN_DOMAIN q_o ;
1998-09-25 23:14:20 +00:00
BOOL valid_pol = False ;
1998-03-11 21:11:04 +00:00
1999-03-19 21:20:19 +00:00
if ( DEBUGLVL ( 4 ) )
{
sid_to_string ( sid_str , sid ) ;
DEBUG ( 4 , ( " SAMR Open Domain. SID:%s Permissions:%x \n " ,
sid_str , ace_perms ) ) ;
}
1998-03-11 21:11:04 +00:00
1998-09-25 23:14:20 +00:00
if ( connect_pol = = NULL | | sid = = NULL | | domain_pol = = NULL ) return False ;
1998-03-11 21:11:04 +00:00
1998-12-03 20:50:33 +00:00
/* create and send a MSRPC command with api SAMR_OPEN_DOMAIN */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
1998-03-11 21:11:04 +00:00
/* store the parameters */
1999-03-19 21:20:19 +00:00
make_samr_q_open_domain ( & q_o , connect_pol , ace_perms , sid ) ;
1998-03-11 21:11:04 +00:00
/* turn parameters into data stream */
samr_io_q_open_domain ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_OPEN_DOMAIN , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
SAMR_R_OPEN_DOMAIN r_o ;
BOOL p ;
samr_io_r_open_domain ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_OPEN_DOMAIN: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
memcpy ( domain_pol , & r_o . domain_pol , sizeof ( r_o . domain_pol ) ) ;
valid_pol = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_pol ;
}
1999-02-24 01:52:30 +00:00
/****************************************************************************
do a SAMR Query Lookup Domain
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
BOOL samr_query_lookup_domain ( struct cli_state * cli , uint16 fnum ,
POLICY_HND * pol , const char * dom_name ,
DOM_SID * dom_sid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_LOOKUP_DOMAIN q_o ;
BOOL valid_query = False ;
if ( pol = = NULL | | dom_name = = NULL | | dom_sid = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_LOOKUP_DOMAIN */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Query Lookup Domain. \n " ) ) ;
/* store the parameters */
make_samr_q_lookup_domain ( & q_o , pol , dom_name ) ;
/* turn parameters into data stream */
samr_io_q_lookup_domain ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
if ( rpc_api_pipe_req ( cli , fnum , SAMR_LOOKUP_DOMAIN , & data , & rdata ) )
{
SAMR_R_LOOKUP_DOMAIN r_o ;
BOOL p ;
samr_io_r_lookup_domain ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_LOOKUP_DOMAIN: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p & & r_o . ptr_sid ! = 0 )
{
sid_copy ( dom_sid , & r_o . dom_sid . sid ) ;
valid_query = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_query ;
}
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
/****************************************************************************
do a SAMR Query Lookup Names
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_lookup_names ( struct cli_state * cli , uint16 fnum ,
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
POLICY_HND * pol , uint32 flags ,
uint32 num_names , const char * * names ,
uint32 * num_rids ,
uint32 rid [ MAX_LOOKUP_SIDS ] ,
uint32 type [ MAX_LOOKUP_SIDS ] )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_LOOKUP_NAMES q_o ;
BOOL valid_query = False ;
if ( pol = = NULL | | flags = = 0 | | num_names = = 0 | | names = = NULL | |
num_rids = = NULL | | rid = = NULL | | type = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_LOOKUP_NAMES */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
DEBUG ( 4 , ( " SAMR Query Lookup NAMES. \n " ) ) ;
/* store the parameters */
make_samr_q_lookup_names ( & q_o , pol , flags , num_names , names ) ;
/* turn parameters into data stream */
samr_io_q_lookup_names ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_LOOKUP_NAMES , & data , & rdata ) )
- lib/unix_sec_ctxt.c
attempt at taking lib/uid.c and getting a unix security context
change module that is independent of "cnums" and "snums".
a security context is needed for pipes, not just IPC$ or other
services.
- group database API
added add_group/alias_member, del_group/alias_member,
del_group/alias_entry functions. del_builtin_entry() is
deliberately set to NULL to cause an exception, you cannot
delete builtin aliases.
- parse_lsa.c srv_lsa.c
fixed lookup_names code, it was a load of trash and didn't do
anything.
- cmd_samr.c rpcclient.c srv_samr.c
added "deletegroup", "deletealias", "delaliasmem", "delgroupmem",
"addgroupmem", "addaliasmem", "createalias", "creategroup", to
both client and server code.
server code calls into unix stubs right now, which don't actually
do anything. the only instance where they are expected to do
anything is in appliance mode NOT even in the ldap code or anything.
client code modified to call samr_lookup_names() for group code
(because we can) and lsa_lookup_names() for alias code (because
we have to).
- srv_lookup.c
oops, lookup on unsplit name, we got lookup on DOMAIN, DOMAIN\name
instead of DOMAIN, name.
(This used to be commit b8175702ef61b8b37b078f38e81452c00a5e2986)
1998-12-07 17:23:48 +00:00
{
SAMR_R_LOOKUP_NAMES r_o ;
BOOL p ;
samr_io_r_lookup_names ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_LOOKUP_NAMES: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p )
{
if ( r_o . ptr_rids ! = 0 & & r_o . ptr_types ! = 0 & &
r_o . num_types1 = = r_o . num_rids1 )
{
int i ;
valid_query = True ;
* num_rids = r_o . num_rids1 ;
for ( i = 0 ; i < r_o . num_rids1 ; i + + )
{
rid [ i ] = r_o . rid [ i ] ;
}
for ( i = 0 ; i < r_o . num_types1 ; i + + )
{
type [ i ] = r_o . type [ i ] ;
}
}
else if ( r_o . ptr_rids = = 0 & & r_o . ptr_types = = 0 )
{
valid_query = True ;
* num_rids = 0 ;
}
else
{
p = False ;
}
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_query ;
}
1998-03-11 21:11:04 +00:00
/****************************************************************************
1998-12-04 16:30:00 +00:00
do a SAMR Query Lookup RIDS
1998-03-11 21:11:04 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_lookup_rids ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * pol , uint32 flags ,
uint32 num_rids , uint32 * rids ,
1998-12-02 22:48:00 +00:00
uint32 * num_names ,
fstring names [ MAX_LOOKUP_SIDS ] ,
uint32 type [ MAX_LOOKUP_SIDS ] )
1998-03-11 21:11:04 +00:00
{
prs_struct data ;
prs_struct rdata ;
1998-12-04 16:30:00 +00:00
SAMR_Q_LOOKUP_RIDS q_o ;
1998-12-02 22:48:00 +00:00
BOOL valid_query = False ;
1998-03-11 21:11:04 +00:00
1998-12-04 16:30:00 +00:00
if ( pol = = NULL | | flags = = 0 | | num_rids = = 0 | | rids = = NULL | |
1998-12-03 20:50:33 +00:00
num_names = = NULL | | names = = NULL | | type = = NULL ) return False ;
1998-12-04 16:30:00 +00:00
/* create and send a MSRPC command with api SAMR_LOOKUP_RIDS */
1998-03-11 21:11:04 +00:00
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
1998-12-04 16:30:00 +00:00
DEBUG ( 4 , ( " SAMR Query Lookup RIDs. \n " ) ) ;
1998-03-11 21:11:04 +00:00
/* store the parameters */
1998-12-04 16:30:00 +00:00
make_samr_q_lookup_rids ( & q_o , pol , flags , num_rids , rids ) ;
1998-03-11 21:11:04 +00:00
/* turn parameters into data stream */
1998-12-04 16:30:00 +00:00
samr_io_q_lookup_rids ( " " , & q_o , & data , 0 ) ;
1998-03-11 21:11:04 +00:00
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_LOOKUP_RIDS , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
1998-12-04 16:30:00 +00:00
SAMR_R_LOOKUP_RIDS r_o ;
1998-03-11 21:11:04 +00:00
BOOL p ;
1998-12-04 16:30:00 +00:00
samr_io_r_lookup_rids ( " " , & r_o , & rdata , 0 ) ;
1998-03-11 21:11:04 +00:00
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
1998-12-04 16:30:00 +00:00
DEBUG ( 0 , ( " SAMR_R_LOOKUP_RIDS: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
1998-03-11 21:11:04 +00:00
p = False ;
}
if ( p )
{
1998-12-02 22:48:00 +00:00
if ( r_o . ptr_names ! = 0 & & r_o . ptr_types ! = 0 & &
r_o . num_types1 = = r_o . num_names1 )
1998-03-11 21:11:04 +00:00
{
int i ;
valid_query = True ;
1998-12-02 22:48:00 +00:00
* num_names = r_o . num_names1 ;
1998-03-11 21:11:04 +00:00
1998-12-02 22:48:00 +00:00
for ( i = 0 ; i < r_o . num_names1 ; i + + )
1998-03-11 21:11:04 +00:00
{
1999-02-15 05:33:30 +00:00
unistr2_to_ascii ( names [ i ] , & r_o . uni_name [ i ] , sizeof ( fstring ) - 1 ) ;
1998-03-11 21:11:04 +00:00
}
1998-12-02 22:48:00 +00:00
for ( i = 0 ; i < r_o . num_types1 ; i + + )
1998-03-11 21:11:04 +00:00
{
1998-12-02 22:48:00 +00:00
type [ i ] = r_o . type [ i ] ;
1998-03-11 21:11:04 +00:00
}
}
1998-12-02 22:48:00 +00:00
else if ( r_o . ptr_names = = 0 & & r_o . ptr_types = = 0 )
1998-03-11 21:11:04 +00:00
{
valid_query = True ;
1998-12-02 22:48:00 +00:00
* num_names = 0 ;
1998-03-11 21:11:04 +00:00
}
else
{
p = False ;
}
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_query ;
}
1998-12-04 16:30:00 +00:00
/****************************************************************************
do a SAMR Query Alias Members
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_aliasmem ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * alias_pol ,
uint32 * num_mem , DOM_SID2 * sid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_QUERY_ALIASMEM q_o ;
BOOL valid_query = False ;
DEBUG ( 4 , ( " SAMR Query Alias Members. \n " ) ) ;
if ( alias_pol = = NULL | | sid = = NULL | | num_mem = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_QUERY_ALIASMEM */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
make_samr_q_query_aliasmem ( & q_o , alias_pol ) ;
/* turn parameters into data stream */
samr_io_q_query_aliasmem ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_QUERY_ALIASMEM , & data , & rdata ) )
1998-12-04 16:30:00 +00:00
{
SAMR_R_QUERY_ALIASMEM r_o ;
BOOL p ;
/* get user info */
r_o . sid = sid ;
samr_io_r_query_aliasmem ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_QUERY_ALIASMEM: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p & & r_o . ptr ! = 0 )
{
valid_query = True ;
* num_mem = r_o . num_sids ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_query ;
}
1998-11-29 20:03:33 +00:00
/****************************************************************************
do a SAMR Query User Aliases
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_useraliases ( struct cli_state * cli , uint16 fnum ,
1998-11-29 20:03:33 +00:00
POLICY_HND * pol , DOM_SID * sid ,
uint32 * num_aliases , uint32 * rid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_QUERY_USERALIASES q_o ;
BOOL valid_query = False ;
1998-12-03 20:50:33 +00:00
DEBUG ( 4 , ( " SAMR Query User Aliases. \n " ) ) ;
if ( pol = = NULL | | sid = = NULL | | rid = = NULL | | num_aliases = = 0 ) return False ;
1998-11-29 20:03:33 +00:00
/* create and send a MSRPC command with api SAMR_QUERY_USERALIASES */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
make_samr_q_query_useraliases ( & q_o , pol , sid ) ;
/* turn parameters into data stream */
samr_io_q_query_useraliases ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_QUERY_USERALIASES , & data , & rdata ) )
1998-11-29 20:03:33 +00:00
{
SAMR_R_QUERY_USERALIASES r_o ;
BOOL p ;
/* get user info */
r_o . rid = rid ;
samr_io_r_query_useraliases ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_QUERY_USERALIASES: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p & & r_o . ptr ! = 0 )
{
valid_query = True ;
* num_aliases = r_o . num_entries ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_query ;
}
1998-12-04 16:30:00 +00:00
/****************************************************************************
do a SAMR Query Group Members
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_groupmem ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * group_pol ,
uint32 * num_mem , uint32 * rid , uint32 * attr )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_QUERY_GROUPMEM q_o ;
BOOL valid_query = False ;
DEBUG ( 4 , ( " SAMR Query Group Members. \n " ) ) ;
if ( group_pol = = NULL | | rid = = NULL | | attr = = NULL | | num_mem = = NULL ) return False ;
/* create and send a MSRPC command with api SAMR_QUERY_GROUPMEM */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
make_samr_q_query_groupmem ( & q_o , group_pol ) ;
/* turn parameters into data stream */
samr_io_q_query_groupmem ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_QUERY_GROUPMEM , & data , & rdata ) )
1998-12-04 16:30:00 +00:00
{
SAMR_R_QUERY_GROUPMEM r_o ;
BOOL p ;
/* get user info */
r_o . rid = rid ;
r_o . attr = attr ;
samr_io_r_query_groupmem ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_QUERY_GROUPMEM: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p & & r_o . ptr ! = 0 & &
r_o . ptr_rids ! = 0 & & r_o . ptr_attrs ! = 0 & &
r_o . num_rids = = r_o . num_attrs )
{
valid_query = True ;
* num_mem = r_o . num_rids ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_query ;
}
1998-03-11 21:11:04 +00:00
/****************************************************************************
do a SAMR Query User Groups
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_usergroups ( struct cli_state * cli , uint16 fnum ,
1998-03-11 21:11:04 +00:00
POLICY_HND * pol , uint32 * num_groups , DOM_GID * gid )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_QUERY_USERGROUPS q_o ;
1998-11-29 20:03:33 +00:00
BOOL valid_query = False ;
1998-03-11 21:11:04 +00:00
1998-12-03 20:50:33 +00:00
DEBUG ( 4 , ( " SAMR Query User Groups. \n " ) ) ;
if ( pol = = NULL | | gid = = NULL | | num_groups = = 0 ) return False ;
1998-03-11 21:11:04 +00:00
/* create and send a MSRPC command with api SAMR_QUERY_USERGROUPS */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
make_samr_q_query_usergroups ( & q_o , pol ) ;
/* turn parameters into data stream */
samr_io_q_query_usergroups ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_QUERY_USERGROUPS , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
SAMR_R_QUERY_USERGROUPS r_o ;
BOOL p ;
/* get user info */
r_o . gid = gid ;
samr_io_r_query_usergroups ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_QUERY_USERGROUPS: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p & & r_o . ptr_0 ! = 0 )
{
valid_query = True ;
* num_groups = r_o . num_entries ;
}
}
prs_mem_free ( & data ) ;
1998-12-04 16:30:00 +00:00
prs_mem_free ( & rdata ) ;
return valid_query ;
}
/****************************************************************************
do a SAMR Query Group Info
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_groupinfo ( struct cli_state * cli , uint16 fnum ,
1998-12-04 16:30:00 +00:00
POLICY_HND * pol ,
uint16 switch_value , GROUP_INFO_CTR * ctr )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_QUERY_GROUPINFO q_o ;
BOOL valid_query = False ;
DEBUG ( 4 , ( " SAMR Query Group Info. level: %d \n " , switch_value ) ) ;
if ( pol = = NULL | | ctr = = NULL | | switch_value = = 0 ) return False ;
/* create and send a MSRPC command with api SAMR_QUERY_GROUPINFO */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
make_samr_q_query_groupinfo ( & q_o , pol , switch_value ) ;
/* turn parameters into data stream */
samr_io_q_query_groupinfo ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_QUERY_GROUPINFO , & data , & rdata ) )
1998-12-04 16:30:00 +00:00
{
SAMR_R_QUERY_GROUPINFO r_o ;
BOOL p ;
/* get user info */
r_o . ctr = ctr ;
samr_io_r_query_groupinfo ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_QUERY_GROUPINFO: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p & & r_o . ctr - > switch_value1 ! = switch_value )
{
DEBUG ( 0 , ( " SAMR_R_QUERY_GROUPINFO: received incorrect level %d \n " ,
r_o . ctr - > switch_value1 ) ) ;
}
if ( p & & r_o . ptr ! = 0 )
{
valid_query = True ;
}
}
prs_mem_free ( & data ) ;
1998-03-11 21:11:04 +00:00
prs_mem_free ( & rdata ) ;
return valid_query ;
}
/****************************************************************************
do a SAMR Query User Info
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_query_userinfo ( struct cli_state * cli , uint16 fnum ,
1998-03-11 21:11:04 +00:00
POLICY_HND * pol , uint16 switch_value , void * usr )
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_QUERY_USERINFO q_o ;
1998-12-03 20:50:33 +00:00
BOOL valid_query = False ;
DEBUG ( 4 , ( " SAMR Query User Info. level: %d \n " , switch_value ) ) ;
if ( pol = = NULL | | usr = = NULL | | switch_value = = 0 ) return False ;
1998-03-11 21:11:04 +00:00
/* create and send a MSRPC command with api SAMR_QUERY_USERINFO */
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
/* store the parameters */
make_samr_q_query_userinfo ( & q_o , pol , switch_value ) ;
/* turn parameters into data stream */
samr_io_q_query_userinfo ( " " , & q_o , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_QUERY_USERINFO , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
SAMR_R_QUERY_USERINFO r_o ;
BOOL p ;
/* get user info */
r_o . info . id = usr ;
samr_io_r_query_userinfo ( " " , & r_o , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_o . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_R_QUERY_USERINFO: %s \n " , get_nt_error_msg ( r_o . status ) ) ) ;
p = False ;
}
if ( p & & r_o . switch_value ! = switch_value )
{
DEBUG ( 0 , ( " SAMR_R_QUERY_USERINFO: received incorrect level %d \n " ,
r_o . switch_value ) ) ;
}
if ( p & & r_o . ptr ! = 0 )
{
valid_query = True ;
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_query ;
}
/****************************************************************************
do a SAMR Close
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
1998-12-07 20:23:41 +00:00
BOOL samr_close ( struct cli_state * cli , uint16 fnum , POLICY_HND * hnd )
1998-03-11 21:11:04 +00:00
{
prs_struct data ;
prs_struct rdata ;
SAMR_Q_CLOSE_HND q_c ;
1998-12-03 20:50:33 +00:00
BOOL valid_close = False ;
1998-03-11 21:11:04 +00:00
1998-12-03 20:50:33 +00:00
DEBUG ( 4 , ( " SAMR Close \n " ) ) ;
1998-03-11 21:11:04 +00:00
if ( hnd = = NULL ) return False ;
1998-12-03 20:50:33 +00:00
prs_init ( & data , 1024 , 4 , SAFETY_MARGIN , False ) ;
prs_init ( & rdata , 0 , 4 , SAFETY_MARGIN , True ) ;
1998-03-11 21:11:04 +00:00
1998-12-03 20:50:33 +00:00
/* create and send a MSRPC command with api SAMR_CLOSE_HND */
1998-03-11 21:11:04 +00:00
/* store the parameters */
make_samr_q_close_hnd ( & q_c , hnd ) ;
/* turn parameters into data stream */
samr_io_q_close_hnd ( " " , & q_c , & data , 0 ) ;
/* send the data on \PIPE\ */
1998-12-07 20:23:41 +00:00
if ( rpc_api_pipe_req ( cli , fnum , SAMR_CLOSE_HND , & data , & rdata ) )
1998-03-11 21:11:04 +00:00
{
SAMR_R_CLOSE_HND r_c ;
BOOL p ;
samr_io_r_close_hnd ( " " , & r_c , & rdata , 0 ) ;
p = rdata . offset ! = 0 ;
if ( p & & r_c . status ! = 0 )
{
/* report error code */
DEBUG ( 0 , ( " SAMR_CLOSE_HND: %s \n " , get_nt_error_msg ( r_c . status ) ) ) ;
p = False ;
}
if ( p )
{
/* check that the returned policy handle is all zeros */
int i ;
valid_close = True ;
for ( i = 0 ; i < sizeof ( r_c . pol . data ) ; i + + )
{
if ( r_c . pol . data [ i ] ! = 0 )
{
valid_close = False ;
break ;
}
}
if ( ! valid_close )
{
DEBUG ( 0 , ( " SAMR_CLOSE_HND: non-zero handle returned \n " ) ) ;
}
}
}
prs_mem_free ( & data ) ;
prs_mem_free ( & rdata ) ;
return valid_close ;
}
