2000-12-03 05:18:14 +03:00
/*
2002-01-30 09:08:46 +03:00
Unix SMB / CIFS implementation .
2000-12-03 05:18:14 +03:00
client security descriptor functions
Copyright ( C ) Andrew Tridgell 2000
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-09 23:25:36 +04:00
the Free Software Foundation ; either version 3 of the License , or
2000-12-03 05:18:14 +03:00
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
2007-07-10 04:52:41 +04:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
2000-12-03 05:18:14 +03:00
*/
# include "includes.h"
/****************************************************************************
query the security descriptor for a open file
2001-07-05 12:24:03 +04:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
SEC_DESC * cli_query_secdesc ( struct cli_state * cli , int fnum ,
TALLOC_CTX * mem_ctx )
2000-12-03 05:18:14 +03:00
{
char param [ 8 ] ;
char * rparam = NULL , * rdata = NULL ;
2003-08-15 05:42:30 +04:00
unsigned int rparam_count = 0 , rdata_count = 0 ;
2000-12-03 05:18:14 +03:00
prs_struct pd ;
2007-10-19 04:40:25 +04:00
bool pd_initialized = False ;
2000-12-03 05:18:14 +03:00
SEC_DESC * psd = NULL ;
2001-07-05 12:24:03 +04:00
SIVAL ( param , 0 , fnum ) ;
2003-10-23 17:45:48 +04:00
SIVAL ( param , 4 , 0x7 ) ;
2000-12-03 05:18:14 +03:00
if ( ! cli_send_nt_trans ( cli ,
NT_TRANSACT_QUERY_SECURITY_DESC ,
0 ,
NULL , 0 , 0 ,
param , 8 , 4 ,
NULL , 0 , 0x10000 ) ) {
DEBUG ( 1 , ( " Failed to send NT_TRANSACT_QUERY_SECURITY_DESC \n " ) ) ;
2000-12-15 04:02:11 +03:00
goto cleanup ;
2000-12-03 05:18:14 +03:00
}
if ( ! cli_receive_nt_trans ( cli ,
& rparam , & rparam_count ,
& rdata , & rdata_count ) ) {
DEBUG ( 1 , ( " Failed to recv NT_TRANSACT_QUERY_SECURITY_DESC \n " ) ) ;
2000-12-15 04:02:11 +03:00
goto cleanup ;
2000-12-03 05:18:14 +03:00
}
2004-10-07 07:55:39 +04:00
if ( cli_is_error ( cli ) )
goto cleanup ;
2005-01-22 04:22:39 +03:00
if ( ! prs_init ( & pd , rdata_count , mem_ctx , UNMARSHALL ) ) {
goto cleanup ;
}
pd_initialized = True ;
2003-02-15 01:55:46 +03:00
prs_copy_data_in ( & pd , rdata , rdata_count ) ;
prs_set_offset ( & pd , 0 ) ;
2000-12-03 05:18:14 +03:00
if ( ! sec_io_desc ( " sd data " , & psd , & pd , 1 ) ) {
DEBUG ( 1 , ( " Failed to parse secdesc \n " ) ) ;
2000-12-15 04:02:11 +03:00
goto cleanup ;
2000-12-03 05:18:14 +03:00
}
2000-12-15 04:02:11 +03:00
cleanup :
2001-09-17 07:33:37 +04:00
SAFE_FREE ( rparam ) ;
SAFE_FREE ( rdata ) ;
2000-12-15 04:02:11 +03:00
2005-01-22 04:22:39 +03:00
if ( pd_initialized )
prs_mem_free ( & pd ) ;
2000-12-15 04:02:11 +03:00
return psd ;
2000-12-03 05:18:14 +03:00
}
2000-12-03 10:36:15 +03:00
/****************************************************************************
set the security descriptor for a open file
2001-07-05 12:24:03 +04:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-10-19 04:40:25 +04:00
bool cli_set_secdesc ( struct cli_state * cli , int fnum , SEC_DESC * sd )
2000-12-03 10:36:15 +03:00
{
char param [ 8 ] ;
char * rparam = NULL , * rdata = NULL ;
2003-08-15 05:42:30 +04:00
unsigned int rparam_count = 0 , rdata_count = 0 ;
2003-05-10 06:05:24 +04:00
uint32 sec_info = 0 ;
2001-04-22 06:54:04 +04:00
TALLOC_CTX * mem_ctx ;
2000-12-03 10:36:15 +03:00
prs_struct pd ;
2007-10-19 04:40:25 +04:00
bool ret = False ;
2000-12-03 10:36:15 +03:00
2002-12-20 23:21:31 +03:00
if ( ( mem_ctx = talloc_init ( " cli_set_secdesc " ) ) = = NULL ) {
2000-12-03 10:36:15 +03:00
DEBUG ( 0 , ( " talloc_init failed. \n " ) ) ;
2000-12-15 04:02:11 +03:00
goto cleanup ;
2000-12-03 10:36:15 +03:00
}
2001-03-10 02:48:58 +03:00
prs_init ( & pd , 0 , mem_ctx , MARSHALL ) ;
2000-12-03 10:36:15 +03:00
prs_give_memory ( & pd , NULL , 0 , True ) ;
if ( ! sec_io_desc ( " sd data " , & sd , & pd , 1 ) ) {
DEBUG ( 1 , ( " Failed to marshall secdesc \n " ) ) ;
2000-12-15 04:02:11 +03:00
goto cleanup ;
2000-12-03 10:36:15 +03:00
}
2001-07-05 12:24:03 +04:00
SIVAL ( param , 0 , fnum ) ;
2003-05-10 06:05:24 +04:00
2006-09-21 02:23:12 +04:00
if ( sd - > dacl )
2003-05-10 06:05:24 +04:00
sec_info | = DACL_SECURITY_INFORMATION ;
2006-09-21 02:23:12 +04:00
if ( sd - > owner_sid )
2003-05-10 06:05:24 +04:00
sec_info | = OWNER_SECURITY_INFORMATION ;
2006-09-21 02:23:12 +04:00
if ( sd - > group_sid )
2003-05-10 06:05:24 +04:00
sec_info | = GROUP_SECURITY_INFORMATION ;
SSVAL ( param , 4 , sec_info ) ;
2000-12-03 10:36:15 +03:00
if ( ! cli_send_nt_trans ( cli ,
NT_TRANSACT_SET_SECURITY_DESC ,
0 ,
NULL , 0 , 0 ,
param , 8 , 0 ,
2003-02-15 01:55:46 +03:00
prs_data_p ( & pd ) , prs_offset ( & pd ) , 0 ) ) {
2000-12-03 10:36:15 +03:00
DEBUG ( 1 , ( " Failed to send NT_TRANSACT_SET_SECURITY_DESC \n " ) ) ;
2000-12-15 04:02:11 +03:00
goto cleanup ;
2000-12-03 10:36:15 +03:00
}
if ( ! cli_receive_nt_trans ( cli ,
& rparam , & rparam_count ,
& rdata , & rdata_count ) ) {
2000-12-03 14:04:45 +03:00
DEBUG ( 1 , ( " NT_TRANSACT_SET_SECURITY_DESC failed \n " ) ) ;
2000-12-15 04:02:11 +03:00
goto cleanup ;
2000-12-03 10:36:15 +03:00
}
2000-12-15 04:02:11 +03:00
ret = True ;
cleanup :
2001-09-17 07:33:37 +04:00
SAFE_FREE ( rparam ) ;
SAFE_FREE ( rdata ) ;
2000-12-03 10:36:15 +03:00
2001-04-22 06:54:04 +04:00
talloc_destroy ( mem_ctx ) ;
prs_mem_free ( & pd ) ;
2000-12-15 04:02:11 +03:00
return ret ;
2000-12-03 10:36:15 +03:00
}