search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Chris will be pleased to know that mkproto.awk no longer runs on the
[Samba.git] / source / pipentlsa.c
blobef0f1b3a129808b90e71fd55c4f5c64a3635e9ef
1 /*
2 Unix SMB/Netbios implementation.
3 Version 1.9.
4 Pipe SMB reply routines
5 Copyright (C) Andrew Tridgell 1992-1997,
6 Copyright (C) Luke Kenneth Casson Leighton 1996-1997.
7 Copyright (C) Paul Ashton 1997.
8
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
13
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
18
19 You should have received a copy of the GNU General Public License
20 along with this program; if not, write to the Free Software
21 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 */
23 /*
24 This file handles reply_ calls on named pipes that the server
25 makes to handle specific protocols
26 */
27
28
29 #include "includes.h"
30 #include "trans2.h"
31 #include "nterr.h"
32
33 extern int DEBUGLEVEL;
34
35 #ifdef NTDOMAIN
36
37 /***************************************************************************
38 lsa_reply_open_policy
39 ***************************************************************************/
40 static int lsa_reply_open_policy(char *q, char *base)
41 {
42 int i;
43 LSA_R_OPEN_POL r_o;
44
45 /* set up the LSA QUERY INFO response */
46 bzero(&(r_o.pol.data), POL_HND_SIZE);
47 for (i = 4; i < POL_HND_SIZE; i++)
48 {
49 r_o.pol.data[i] = i;
50 }
51 r_o.status = 0x0;
52
53 /* store the response in the SMB stream */
54 q = lsa_io_r_open_pol(False, &r_o, q, base, 4, 0);
55
56 /* return length of SMB data stored */
57 return PTR_DIFF(q, base);
58 }
59
60 /***************************************************************************
61 make_dom_query
62 ***************************************************************************/
63 static void make_dom_query(DOM_QUERY *d_q, char *dom_name, char *dom_sid)
64 {
65 int domlen = strlen(dom_name);
66
67 d_q->uni_dom_max_len = domlen * 2;
68 d_q->uni_dom_str_len = domlen * 2;
69
70 d_q->buffer_dom_name = 4; /* domain buffer pointer */
71 d_q->buffer_dom_sid = 2; /* domain sid pointer */
72
73 /* this string is supposed to be character short */
74 make_unistr2(&(d_q->uni_domain_name), dom_name, domlen);
75
76 make_dom_sid(&(d_q->dom_sid), dom_sid);
77 }
78
79 /***************************************************************************
80 lsa_reply_query_info
81 ***************************************************************************/
82 static int lsa_reply_query_info(LSA_Q_QUERY_INFO *q_q, char *q, char *base,
83 char *dom_name, char *dom_sid)
84 {
85 LSA_R_QUERY_INFO r_q;
86
87 /* set up the LSA QUERY INFO response */
88
89 r_q.undoc_buffer = 0x22000000; /* bizarre */
90 r_q.info_class = q_q->info_class;
91
92 make_dom_query(&r_q.dom.id5, dom_name, dom_sid);
93
94 r_q.status = 0x0;
95
96 /* store the response in the SMB stream */
97 q = lsa_io_r_query(False, &r_q, q, base, 4, 0);
98
99 /* return length of SMB data stored */
100 return PTR_DIFF(q, base);
101 }
102
103 /***************************************************************************
104 make_dom_ref
105
106 pretty much hard-coded choice of "other" sids, unfortunately...
107
108 ***************************************************************************/
109 static void make_dom_ref(DOM_R_REF *ref,
110 char *dom_name, char *dom_sid,
111 char *other_sid1, char *other_sid2, char *other_sid3)
112 {
113 int len_dom_name = strlen(dom_name);
114 int len_other_sid1 = strlen(other_sid1);
115 int len_other_sid2 = strlen(other_sid2);
116 int len_other_sid3 = strlen(other_sid3);
117
118 ref->undoc_buffer = 1;
119 ref->num_ref_doms_1 = 4;
120 ref->buffer_dom_name = 1;
121 ref->max_entries = 32;
122 ref->num_ref_doms_2 = 4;
123
124 make_uni_hdr2(&(ref->hdr_dom_name ), len_dom_name , len_dom_name , 0);
125 make_uni_hdr2(&(ref->hdr_ref_dom[0]), len_other_sid1, len_other_sid1, 0);
126 make_uni_hdr2(&(ref->hdr_ref_dom[1]), len_other_sid2, len_other_sid2, 0);
127 make_uni_hdr2(&(ref->hdr_ref_dom[2]), len_other_sid3, len_other_sid3, 0);
128
129 if (dom_name != NULL)
130 {
131 make_unistr(&(ref->uni_dom_name), dom_name);
132 }
133
134 make_dom_sid(&(ref->ref_dom[0]), dom_sid );
135 make_dom_sid(&(ref->ref_dom[1]), other_sid1);
136 make_dom_sid(&(ref->ref_dom[2]), other_sid2);
137 make_dom_sid(&(ref->ref_dom[3]), other_sid3);
138 }
139
140 /***************************************************************************
141 make_reply_lookup_rids
142 ***************************************************************************/
143 static void make_reply_lookup_rids(LSA_R_LOOKUP_RIDS *r_l,
144 int num_entries, uint32 dom_rids[MAX_LOOKUP_SIDS],
145 char *dom_name, char *dom_sid,
146 char *other_sid1, char *other_sid2, char *other_sid3)
147 {
148 int i;
149
150 make_dom_ref(&(r_l->dom_ref), dom_name, dom_sid,
151 other_sid1, other_sid2, other_sid3);
152
153 r_l->num_entries = num_entries;
154 r_l->undoc_buffer = 1;
155 r_l->num_entries2 = num_entries;
156
157 for (i = 0; i < num_entries; i++)
158 {
159 make_dom_rid2(&(r_l->dom_rid[i]), dom_rids[i]);
160 }
161
162 r_l->num_entries3 = num_entries;
163 }
164
165 /***************************************************************************
166 make_reply_lookup_sids
167 ***************************************************************************/
168 static void make_reply_lookup_sids(LSA_R_LOOKUP_SIDS *r_l,
169 int num_entries, fstring dom_sids[MAX_LOOKUP_SIDS],
170 char *dom_name, char *dom_sid,
171 char *other_sid1, char *other_sid2, char *other_sid3)
172 {
173 int i;
174
175 make_dom_ref(&(r_l->dom_ref), dom_name, dom_sid,
176 other_sid1, other_sid2, other_sid3);
177
178 r_l->num_entries = num_entries;
179 r_l->undoc_buffer = 1;
180 r_l->num_entries2 = num_entries;
181
182 for (i = 0; i < num_entries; i++)
183 {
184 make_dom_sid2(&(r_l->dom_sid[i]), dom_sids[i]);
185 }
186
187 r_l->num_entries3 = num_entries;
188 }
189
190 /***************************************************************************
191 lsa_reply_lookup_sids
192 ***************************************************************************/
193 static int lsa_reply_lookup_sids(char *q, char *base,
194 int num_entries, fstring dom_sids[MAX_LOOKUP_SIDS],
195 char *dom_name, char *dom_sid,
196 char *other_sid1, char *other_sid2, char *other_sid3)
197 {
198 LSA_R_LOOKUP_SIDS r_l;
199
200 /* set up the LSA Lookup SIDs response */
201 make_reply_lookup_sids(&r_l, num_entries, dom_sids,
202 dom_name, dom_sid, other_sid1, other_sid2, other_sid3);
203 r_l.status = 0x0;
204
205 /* store the response in the SMB stream */
206 q = lsa_io_r_lookup_sids(False, &r_l, q, base, 4, 0);
207
208 /* return length of SMB data stored */
209 return PTR_DIFF(q, base);
210 }
211
212 /***************************************************************************
213 lsa_reply_lookup_rids
214 ***************************************************************************/
215 static int lsa_reply_lookup_rids(char *q, char *base,
216 int num_entries, uint32 dom_rids[MAX_LOOKUP_SIDS],
217 char *dom_name, char *dom_sid,
218 char *other_sid1, char *other_sid2, char *other_sid3)
219 {
220 LSA_R_LOOKUP_RIDS r_l;
221
222 /* set up the LSA Lookup RIDs response */
223 make_reply_lookup_rids(&r_l, num_entries, dom_rids,
224 dom_name, dom_sid, other_sid1, other_sid2, other_sid3);
225 r_l.status = 0x0;
226
227 /* store the response in the SMB stream */
228 q = lsa_io_r_lookup_rids(False, &r_l, q, base, 4, 0);
229
230 /* return length of SMB data stored */
231 return PTR_DIFF(q, base);
232 }
233
234 /***************************************************************************
235 api_lsa_open_policy
236 ***************************************************************************/
237 static void api_lsa_open_policy( char *param, char *data,
238 char **rdata, int *rdata_len )
239 {
240 LSA_Q_OPEN_POL q_o;
241
242 /* grab the server, object attributes and desired access flag...*/
243 lsa_io_q_open_pol(True, &q_o, data + 0x18, data, 4, 0);
244
245 /* lkclXXXX having decoded it, ignore all fields in the open policy! */
246
247 /* return a 20 byte policy handle */
248 *rdata_len = lsa_reply_open_policy(*rdata + 0x18, *rdata);
249 }
250
251 /***************************************************************************
252 api_lsa_query_info
253 ***************************************************************************/
254 static void api_lsa_query_info( char *param, char *data,
255 char **rdata, int *rdata_len )
256 {
257 LSA_Q_QUERY_INFO q_i;
258 pstring dom_name;
259 pstring dom_sid;
260
261 /* grab the info class and policy handle */
262 lsa_io_q_query(True, &q_i, data + 0x18, data, 4, 0);
263
264 pstrcpy(dom_name, lp_workgroup());
265 pstrcpy(dom_sid , lp_domain_sid());
266
267 /* construct reply. return status is always 0x0 */
268 *rdata_len = lsa_reply_query_info(&q_i, *rdata + 0x18, *rdata,
269 dom_name, dom_sid);
270 }
271
272 /***************************************************************************
273 api_lsa_lookup_sids
274 ***************************************************************************/
275 static void api_lsa_lookup_sids( char *param, char *data,
276 char **rdata, int *rdata_len )
277 {
278 int i;
279 LSA_Q_LOOKUP_SIDS q_l;
280 pstring dom_name;
281 pstring dom_sid;
282 fstring dom_sids[MAX_LOOKUP_SIDS];
283
284 /* grab the info class and policy handle */
285 lsa_io_q_lookup_sids(True, &q_l, data + 0x18, data, 4, 0);
286
287 pstrcpy(dom_name, lp_workgroup());
288 pstrcpy(dom_sid , lp_domain_sid());
289
290 /* convert received SIDs to strings, so we can do them. */
291 for (i = 0; i < q_l.num_entries; i++)
292 {
293 fstrcpy(dom_sids[i], dom_sid_to_string(&(q_l.dom_sids[i])));
294 }
295
296 /* construct reply. return status is always 0x0 */
297 *rdata_len = lsa_reply_lookup_sids(*rdata + 0x18, *rdata,
298 q_l.num_entries, dom_sids, /* text-converted SIDs */
299 dom_name, dom_sid, /* domain name, domain SID */
300 "S-1-1", "S-1-3", "S-1-5"); /* the three other SIDs */
301 }
302
303 /***************************************************************************
304 api_lsa_lookup_names
305 ***************************************************************************/
306 static void api_lsa_lookup_names( char *param, char *data,
307 char **rdata, int *rdata_len )
308 {
309 int i;
310 LSA_Q_LOOKUP_RIDS q_l;
311 pstring dom_name;
312 pstring dom_sid;
313 uint32 dom_rids[MAX_LOOKUP_SIDS];
314 uint32 dummy_g_rid;
315
316 /* grab the info class and policy handle */
317 lsa_io_q_lookup_rids(True, &q_l, data + 0x18, data, 4, 0);
318
319 pstrcpy(dom_name, lp_workgroup());
320 pstrcpy(dom_sid , lp_domain_sid());
321
322 /* convert received RIDs to strings, so we can do them. */
323 for (i = 0; i < q_l.num_entries; i++)
324 {
325 char *user_name = unistr2(q_l.lookup_name[i].str.buffer);
326 if (!name_to_rid(user_name, &dom_rids[i], &dummy_g_rid))
327 {
328 /* WHOOPS! we should really do something about this... */
329 dom_rids[i] = 0;
330 }
331 }
332
333 /* construct reply. return status is always 0x0 */
334 *rdata_len = lsa_reply_lookup_rids(*rdata + 0x18, *rdata,
335 q_l.num_entries, dom_rids, /* text-converted SIDs */
336 dom_name, dom_sid, /* domain name, domain SID */
337 "S-1-1", "S-1-3", "S-1-5"); /* the three other SIDs */
338 }
339
340 /***************************************************************************
341 api_ntLsarpcTNP
342 ***************************************************************************/
343 BOOL api_ntLsarpcTNP(int cnum,int uid, char *param,char *data,
344 int mdrcnt,int mprcnt,
345 char **rdata,char **rparam,
346 int *rdata_len,int *rparam_len)
347 {
348 RPC_HDR_RR hdr;
349
350 if (data == NULL)
351 {
352 DEBUG(2,("api_ntLsarpcTNP: NULL data received\n"));
353 return False;
354 }
355
356 smb_io_rpc_hdr_rr(True, &hdr, data, data, 4, 0);
357
358 DEBUG(4,("lsarpc TransactNamedPipe op %x\n",hdr.opnum));
359
360 switch (hdr.opnum)
361 {
362 case LSA_OPENPOLICY:
363 {
364 DEBUG(3,("LSA_OPENPOLICY\n"));
365 api_lsa_open_policy(param, data, rdata, rdata_len);
366 create_rpc_reply(hdr.hdr.call_id, *rdata, *rdata_len);
367 break;
368 }
369
370 case LSA_QUERYINFOPOLICY:
371 {
372 DEBUG(3,("LSA_QUERYINFOPOLICY\n"));
373
374 api_lsa_query_info(param, data, rdata, rdata_len);
375 create_rpc_reply(hdr.hdr.call_id, *rdata, *rdata_len);
376 break;
377 }
378
379 case LSA_ENUMTRUSTDOM:
380 {
381 char *q = *rdata + 0x18;
382
383 DEBUG(3,("LSA_ENUMTRUSTDOM\n"));
384
385 initrpcreply(data, *rdata);
386
387 SIVAL(q, 0, 0); /* enumeration context */
388 SIVAL(q, 0, 4); /* entries read */
389 SIVAL(q, 0, 8); /* trust information */
390
391 q += 12;
392
393 endrpcreply(data, *rdata, q-*rdata, 0x8000001a, rdata_len);
394
395 break;
396 }
397
398 case LSA_CLOSE:
399 {
400 char *q;
401
402 DEBUG(3,("LSA_CLOSE\n"));
403
404 initrpcreply(data, *rdata);
405
406 q = *rdata + 0x18;
407
408 SIVAL(q, 0, 0); q += 4;
409 SIVAL(q, 0, 0); q += 4;
410 SIVAL(q, 0, 0); q += 4;
411 SIVAL(q, 0, 0); q += 4;
412 SIVAL(q, 0, 0); q += 4;
413
414 endrpcreply(data, *rdata, q-*rdata, 0, rdata_len);
415
416 break;
417 }
418
419 case LSA_OPENSECRET:
420 {
421 char *q = *rdata + 0x18;
422 DEBUG(3,("LSA_OPENSECRET\n"));
423
424 initrpcreply(data, *rdata);
425
426 SIVAL(q, 0, 0);
427 SIVAL(q, 0, 4);
428 SIVAL(q, 0, 8);
429 SIVAL(q, 0, 12);
430 SIVAL(q, 0, 16);
431
432 q += 20;
433
434 endrpcreply(data, *rdata, q-*rdata, 0xc000034, rdata_len);
435
436 break;
437 }
438
439 case LSA_LOOKUPSIDS:
440 {
441 DEBUG(3,("LSA_OPENSECRET\n"));
442 api_lsa_lookup_sids(param, data, rdata, rdata_len);
443 create_rpc_reply(hdr.hdr.call_id, *rdata, *rdata_len);
444 break;
445 }
446
447 case LSA_LOOKUPNAMES:
448 {
449 DEBUG(3,("LSA_LOOKUPNAMES\n"));
450 api_lsa_lookup_names(param, data, rdata, rdata_len);
451 create_rpc_reply(hdr.hdr.call_id, *rdata, *rdata_len);
452 break;
453 }
454
455 default:
456 {
457 DEBUG(4, ("NTLSARPC, unknown code: %lx\n", hdr.opnum));
458 break;
459 }
460 }
461 return True;
462 }
463
464 #endif /* NTDOMAIN */
Samba GIT mirror