mirror of
https://github.com/samba-team/samba.git
synced 2025-01-14 19:24:43 +03:00
0d21e1e609
the pre-alpha "domain group" etc parameters have disappeared. - interactive debug detection - re-added mem_man (andrew's memory management, detects memory corruption) - american spellings of "initialise" replaced with english spelling of "initialise". - started on "lookup_name()" and "lookup_sid()" functions. proper ones. - moved lots of functions around. created some modules of commonly used code. e.g the password file locking code, which is used in groupfile.c and aliasfile.c and smbpass.c - moved RID_TYPE_MASK up another bit. this is really unfortunate, but there is no other "fast" way to identify users from groups from aliases. i do not believe that this code saves us anything (the multipliers) and puts us at a disadvantage (reduces the useable rid space). the designers of NT aren't silly: if they can get away with a user- interface-speed LsaLookupNames / LsaLookupSids, then so can we. i spoke with isaac at the cifs conference, the only time for example that they do a security context check is on file create. certainly not on individual file reads / writes, which would drastically hit their performance and ours, too. - renamed myworkgroup to global_sam_name, amongst other things, when used in the rpc code. there is also a global_member_name, as we are always responsible for a SAM database, the scope of which is limited by the role of the machine (e.g if a member of a workgroup, your SAM is for _local_ logins only, and its name is the name of your server. you even still have a SID. see LsaQueryInfoPolicy, levels 3 and 5). - updated functionality of groupname.c to be able to cope with names like DOMAIN\group and SERVER\alias. used this code to be able to do aliases as well as groups. this code may actually be better off being used in username mapping, too. - created a connect to serverlist function in clientgen.c and used it in password.c - initialisation in server.c depends on the role of the server. well, it does now. - rpctorture. smbtorture. EXERCISE EXTREME CAUTION.
-
290 lines
6.6 KiB
C
290 lines
6.6 KiB
C
/*
|
|
Unix SMB/Netbios implementation.
|
|
Version 1.9.
|
|
SMB parameters and setup
|
|
Copyright (C) Andrew Tridgell 1992-1997
|
|
Copyright (C) Luke Kenneth Casson Leighton 1996-1997
|
|
Copyright (C) Paul Ashton 1997
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 2 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program; if not, write to the Free Software
|
|
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
|
|
*/
|
|
|
|
#ifndef _RPC_MISC_H /* _RPC_MISC_H */
|
|
#define _RPC_MISC_H
|
|
|
|
|
|
#include "rpc_dce.h"
|
|
|
|
/* well-known RIDs - Relative IDs */
|
|
|
|
/* RIDs - Well-known users ... */
|
|
#define DOMAIN_USER_RID_ADMIN (0x000001F4L)
|
|
#define DOMAIN_USER_RID_GUEST (0x000001F5L)
|
|
|
|
/* RIDs - well-known groups ... */
|
|
#define DOMAIN_GROUP_RID_ADMINS (0x00000200L)
|
|
#define DOMAIN_GROUP_RID_USERS (0x00000201L)
|
|
#define DOMAIN_GROUP_RID_GUESTS (0x00000202L)
|
|
|
|
/* RIDs - well-known aliases ... */
|
|
#define BUILTIN_ALIAS_RID_ADMINS (0x00000220L)
|
|
#define BUILTIN_ALIAS_RID_USERS (0x00000221L)
|
|
#define BUILTIN_ALIAS_RID_GUESTS (0x00000222L)
|
|
#define BUILTIN_ALIAS_RID_POWER_USERS (0x00000223L)
|
|
|
|
#define BUILTIN_ALIAS_RID_ACCOUNT_OPS (0x00000224L)
|
|
#define BUILTIN_ALIAS_RID_SYSTEM_OPS (0x00000225L)
|
|
#define BUILTIN_ALIAS_RID_PRINT_OPS (0x00000226L)
|
|
#define BUILTIN_ALIAS_RID_BACKUP_OPS (0x00000227L)
|
|
|
|
#define BUILTIN_ALIAS_RID_REPLICATOR (0x00000228L)
|
|
|
|
/*
|
|
* Masks for mappings between unix uid and gid types and
|
|
* NT RIDS.
|
|
*/
|
|
|
|
/* Take the bottom bits. */
|
|
#define RID_TYPE_MASK 2
|
|
#define RID_MULTIPLIER 4
|
|
|
|
/* The three common types. */
|
|
#define RID_TYPE_USER 0
|
|
#define RID_TYPE_GROUP 1
|
|
#define RID_TYPE_ALIAS 2
|
|
|
|
/* ENUM_HND */
|
|
typedef struct enum_hnd_info
|
|
{
|
|
uint32 ptr_hnd; /* pointer to enumeration handle */
|
|
uint32 handle; /* enumeration handle */
|
|
|
|
} ENUM_HND;
|
|
|
|
/* LOOKUP_LEVEL - switch value */
|
|
typedef struct lookup_level_info
|
|
{
|
|
uint16 value;
|
|
|
|
} LOOKUP_LEVEL;
|
|
|
|
/* DOM_SID2 - security id */
|
|
typedef struct sid_info_2
|
|
{
|
|
uint32 num_auths; /* length, bytes, including length of len :-) */
|
|
|
|
DOM_SID sid;
|
|
|
|
} DOM_SID2;
|
|
|
|
/* STRHDR - string header */
|
|
typedef struct header_info
|
|
{
|
|
uint16 str_str_len;
|
|
uint16 str_max_len;
|
|
uint32 buffer; /* non-zero */
|
|
|
|
} STRHDR;
|
|
|
|
/* UNIHDR - unicode string header */
|
|
typedef struct unihdr_info
|
|
{
|
|
uint16 uni_str_len;
|
|
uint16 uni_max_len;
|
|
uint32 buffer; /* usually has a value of 4 */
|
|
|
|
} UNIHDR;
|
|
|
|
/* UNIHDR2 - unicode string header and undocumented buffer */
|
|
typedef struct unihdr2_info
|
|
{
|
|
UNIHDR unihdr;
|
|
uint32 buffer; /* 32 bit buffer pointer */
|
|
|
|
} UNIHDR2;
|
|
|
|
/* clueless as to what maximum length should be */
|
|
#define MAX_UNISTRLEN 256
|
|
#define MAX_STRINGLEN 256
|
|
#define MAX_BUFFERLEN 512
|
|
|
|
/* UNISTR - unicode string size and buffer */
|
|
typedef struct unistr_info
|
|
{
|
|
uint16 buffer[MAX_UNISTRLEN]; /* unicode characters. ***MUST*** be null-terminated */
|
|
|
|
} UNISTR;
|
|
|
|
/* BUFHDR - buffer header */
|
|
typedef struct bufhdr_info
|
|
{
|
|
uint32 buf_max_len;
|
|
uint32 buf_len;
|
|
|
|
} BUFHDR;
|
|
|
|
/* BUFFER2 - unicode string, size (in uint8 ascii chars) and buffer */
|
|
/* pathetic. some stupid team of \PIPE\winreg writers got the concept */
|
|
/* of a unicode string different from the other \PIPE\ writers */
|
|
typedef struct buffer2_info
|
|
{
|
|
uint32 buf_max_len;
|
|
uint32 undoc;
|
|
uint32 buf_len;
|
|
uint16 buffer[MAX_UNISTRLEN]; /* unicode characters. **NOT** necessarily null-terminated */
|
|
|
|
} BUFFER2;
|
|
|
|
/* BUFFER3 */
|
|
typedef struct buffer3_info
|
|
{
|
|
uint32 buf_max_len;
|
|
uint8 buffer[MAX_BUFFERLEN]; /* data */
|
|
uint32 buf_len;
|
|
|
|
} BUFFER3;
|
|
|
|
/* UNISTR2 - unicode string size (in uint16 unicode chars) and buffer */
|
|
typedef struct unistr2_info
|
|
{
|
|
uint32 uni_max_len;
|
|
uint32 undoc;
|
|
uint32 uni_str_len;
|
|
uint16 buffer[MAX_UNISTRLEN]; /* unicode characters. **NOT** necessarily null-terminated */
|
|
|
|
} UNISTR2;
|
|
|
|
/* STRING2 - string size (in uint8 chars) and buffer */
|
|
typedef struct string2_info
|
|
{
|
|
uint32 str_max_len;
|
|
uint32 undoc;
|
|
uint32 str_str_len;
|
|
uint8 buffer[MAX_STRINGLEN]; /* uint8 characters. **NOT** necessarily null-terminated */
|
|
|
|
} STRING2;
|
|
|
|
/* UNISTR3 - XXXX not sure about this structure */
|
|
typedef struct unistr3_info
|
|
{
|
|
uint32 uni_str_len;
|
|
UNISTR str;
|
|
|
|
} UNISTR3;
|
|
|
|
|
|
/* DOM_RID2 - domain RID structure for ntlsa pipe */
|
|
typedef struct domrid2_info
|
|
{
|
|
uint32 type; /* value is 5 */
|
|
uint32 undoc; /* value is non-zero */
|
|
uint32 rid;
|
|
uint32 rid_idx; /* don't know what this is */
|
|
|
|
} DOM_RID2;
|
|
|
|
/* DOM_RID3 - domain RID structure for samr pipe */
|
|
typedef struct domrid3_info
|
|
{
|
|
uint32 rid; /* domain-relative (to a SID) id */
|
|
uint32 type1; /* value is 0x1 */
|
|
uint32 ptr_type; /* undocumented pointer */
|
|
uint32 type2; /* value is 0x1 */
|
|
|
|
} DOM_RID3;
|
|
|
|
/* DOM_RID4 - rid + user attributes */
|
|
typedef struct domrid4_info
|
|
{
|
|
uint32 unknown;
|
|
uint16 attr;
|
|
uint32 rid; /* user RID */
|
|
|
|
} DOM_RID4;
|
|
|
|
/* DOM_CLNT_SRV - client / server names */
|
|
typedef struct clnt_srv_info
|
|
{
|
|
uint32 undoc_buffer; /* undocumented 32 bit buffer pointer */
|
|
UNISTR2 uni_logon_srv; /* logon server name */
|
|
uint32 undoc_buffer2; /* undocumented 32 bit buffer pointer */
|
|
UNISTR2 uni_comp_name; /* client machine name */
|
|
|
|
} DOM_CLNT_SRV;
|
|
|
|
/* DOM_LOG_INFO - login info */
|
|
typedef struct log_info
|
|
{
|
|
uint32 undoc_buffer; /* undocumented 32 bit buffer pointer */
|
|
UNISTR2 uni_logon_srv; /* logon server name */
|
|
UNISTR2 uni_acct_name; /* account name */
|
|
uint16 sec_chan; /* secure channel type */
|
|
UNISTR2 uni_comp_name; /* client machine name */
|
|
|
|
} DOM_LOG_INFO;
|
|
|
|
/* DOM_CLNT_INFO - client info */
|
|
typedef struct clnt_info
|
|
{
|
|
DOM_LOG_INFO login;
|
|
DOM_CRED cred;
|
|
|
|
} DOM_CLNT_INFO;
|
|
|
|
/* DOM_CLNT_INFO2 - client info */
|
|
typedef struct clnt_info2
|
|
{
|
|
DOM_CLNT_SRV login;
|
|
uint32 ptr_cred;
|
|
DOM_CRED cred;
|
|
|
|
} DOM_CLNT_INFO2;
|
|
|
|
/* DOM_LOGON_ID - logon id */
|
|
typedef struct logon_info
|
|
{
|
|
uint32 low;
|
|
uint32 high;
|
|
|
|
} DOM_LOGON_ID;
|
|
|
|
/* OWF INFO */
|
|
typedef struct owf_info
|
|
{
|
|
uint8 data[16];
|
|
|
|
} OWF_INFO;
|
|
|
|
|
|
/* DOM_GID - group id + user attributes */
|
|
typedef struct gid_info
|
|
{
|
|
uint32 g_rid; /* a group RID */
|
|
uint32 attr;
|
|
|
|
} DOM_GID;
|
|
|
|
#define POL_HND_SIZE 20
|
|
|
|
/* POLICY_HND */
|
|
typedef struct lsa_policy_info
|
|
{
|
|
uint8 data[POL_HND_SIZE]; /* policy handle */
|
|
|
|
} POLICY_HND;
|
|
|
|
#endif /* _RPC_MISC_H */
|
|
|