2000-12-03 02:18:14 +00:00
/*
2002-01-30 06:08:46 +00:00
Unix SMB / CIFS implementation .
2000-12-03 02:18:14 +00:00
client security descriptor functions
Copyright ( C ) Andrew Tridgell 2000
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-09 19:25:36 +00:00
the Free Software Foundation ; either version 3 of the License , or
2000-12-03 02:18:14 +00:00
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
2007-07-10 00:52:41 +00:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
2000-12-03 02:18:14 +00:00
*/
# include "includes.h"
/****************************************************************************
query the security descriptor for a open file
2001-07-05 08:24:03 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
SEC_DESC * cli_query_secdesc ( struct cli_state * cli , int fnum ,
TALLOC_CTX * mem_ctx )
2000-12-03 02:18:14 +00:00
{
2008-09-09 15:03:51 +02:00
uint8_t param [ 8 ] ;
uint8_t * rparam = NULL , * rdata = NULL ;
2003-08-15 01:42:30 +00:00
unsigned int rparam_count = 0 , rdata_count = 0 ;
2000-12-03 02:18:14 +00:00
SEC_DESC * psd = NULL ;
2007-12-29 22:47:03 +01:00
NTSTATUS status ;
2000-12-03 02:18:14 +00:00
2001-07-05 08:24:03 +00:00
SIVAL ( param , 0 , fnum ) ;
2003-10-23 13:45:48 +00:00
SIVAL ( param , 4 , 0x7 ) ;
2000-12-03 02:18:14 +00:00
2008-09-09 15:03:51 +02:00
status = cli_trans ( talloc_tos ( ) , cli , SMBnttrans ,
NULL , - 1 , /* name, fid */
NT_TRANSACT_QUERY_SECURITY_DESC , 0 , /* function, flags */
NULL , 0 , 0 , /* setup, length, max */
param , 8 , 4 , /* param, length, max */
NULL , 0 , 0x10000 , /* data, length, max */
NULL , NULL , /* rsetup, length */
& rparam , & rparam_count ,
& rdata , & rdata_count ) ;
2000-12-03 02:18:14 +00:00
2008-09-09 15:03:51 +02:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 1 , ( " NT_TRANSACT_QUERY_SECURITY_DESC failed: %s \n " ,
nt_errstr ( status ) ) ) ;
2000-12-15 01:02:11 +00:00
goto cleanup ;
2000-12-03 02:18:14 +00:00
}
2007-12-29 22:47:03 +01:00
status = unmarshall_sec_desc ( mem_ctx , ( uint8 * ) rdata , rdata_count ,
& psd ) ;
2000-12-03 02:18:14 +00:00
2007-12-29 22:47:03 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 10 , ( " unmarshall_sec_desc failed: %s \n " ,
nt_errstr ( status ) ) ) ;
2000-12-15 01:02:11 +00:00
goto cleanup ;
2000-12-03 02:18:14 +00:00
}
2000-12-15 01:02:11 +00:00
cleanup :
2008-09-09 15:03:51 +02:00
TALLOC_FREE ( rparam ) ;
TALLOC_FREE ( rdata ) ;
2000-12-15 01:02:11 +00:00
return psd ;
2000-12-03 02:18:14 +00:00
}
2000-12-03 07:36:15 +00:00
/****************************************************************************
set the security descriptor for a open file
2001-07-05 08:24:03 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-10-18 17:40:25 -07:00
bool cli_set_secdesc ( struct cli_state * cli , int fnum , SEC_DESC * sd )
2000-12-03 07:36:15 +00:00
{
char param [ 8 ] ;
char * rparam = NULL , * rdata = NULL ;
2003-08-15 01:42:30 +00:00
unsigned int rparam_count = 0 , rdata_count = 0 ;
2003-05-10 02:05:24 +00:00
uint32 sec_info = 0 ;
2007-12-29 22:47:03 +01:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2007-10-18 17:40:25 -07:00
bool ret = False ;
2007-12-29 22:47:03 +01:00
uint8 * data ;
size_t len ;
NTSTATUS status ;
status = marshall_sec_desc ( talloc_tos ( ) , sd , & data , & len ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 10 , ( " marshall_sec_desc failed: %s \n " ,
nt_errstr ( status ) ) ) ;
2000-12-15 01:02:11 +00:00
goto cleanup ;
2000-12-03 07:36:15 +00:00
}
2001-07-05 08:24:03 +00:00
SIVAL ( param , 0 , fnum ) ;
2003-05-10 02:05:24 +00:00
2006-09-20 22:23:12 +00:00
if ( sd - > dacl )
2003-05-10 02:05:24 +00:00
sec_info | = DACL_SECURITY_INFORMATION ;
2006-09-20 22:23:12 +00:00
if ( sd - > owner_sid )
2003-05-10 02:05:24 +00:00
sec_info | = OWNER_SECURITY_INFORMATION ;
2006-09-20 22:23:12 +00:00
if ( sd - > group_sid )
2003-05-10 02:05:24 +00:00
sec_info | = GROUP_SECURITY_INFORMATION ;
SSVAL ( param , 4 , sec_info ) ;
2000-12-03 07:36:15 +00:00
if ( ! cli_send_nt_trans ( cli ,
NT_TRANSACT_SET_SECURITY_DESC ,
0 ,
NULL , 0 , 0 ,
param , 8 , 0 ,
2007-12-29 22:47:03 +01:00
( char * ) data , len , 0 ) ) {
2000-12-03 07:36:15 +00:00
DEBUG ( 1 , ( " Failed to send NT_TRANSACT_SET_SECURITY_DESC \n " ) ) ;
2000-12-15 01:02:11 +00:00
goto cleanup ;
2000-12-03 07:36:15 +00:00
}
if ( ! cli_receive_nt_trans ( cli ,
& rparam , & rparam_count ,
& rdata , & rdata_count ) ) {
2000-12-03 11:04:45 +00:00
DEBUG ( 1 , ( " NT_TRANSACT_SET_SECURITY_DESC failed \n " ) ) ;
2000-12-15 01:02:11 +00:00
goto cleanup ;
2000-12-03 07:36:15 +00:00
}
2000-12-15 01:02:11 +00:00
ret = True ;
cleanup :
2001-09-17 03:33:37 +00:00
SAFE_FREE ( rparam ) ;
SAFE_FREE ( rdata ) ;
2000-12-03 07:36:15 +00:00
2007-12-29 22:47:03 +01:00
TALLOC_FREE ( frame ) ;
2001-04-22 02:54:04 +00:00
2000-12-15 01:02:11 +00:00
return ret ;
2000-12-03 07:36:15 +00:00
}
