search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
r10455: merging privilege fix from SAMBA_3_0
[Samba.git] / source / lib / privileges.c
blob760a33670a7b42cf40f48228fc568dd3fdf275c8
1 /*
2 Unix SMB/CIFS implementation.
3 Privileges handling functions
4 Copyright (C) Jean François Micouleau 1998-2001
5 Copyright (C) Simo Sorce 2002-2003
6 Copyright (C) Gerald (Jerry) Carter 2005
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 2 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program; if not, write to the Free Software
20 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
21 */
22
23
24 #include "includes.h"
25
26 #define PRIVPREFIX "PRIV_"
27
28 static const SE_PRIV se_priv_all = SE_ALL_PRIVS;
29 static const SE_PRIV se_priv_end = SE_END;
30
31 /* Define variables for all privileges so we can use the
32 SE_PRIV* in the various se_priv_XXX() functions */
33
34 const SE_PRIV se_priv_none = SE_NONE;
35 const SE_PRIV se_machine_account = SE_MACHINE_ACCOUNT;
36 const SE_PRIV se_print_operator = SE_PRINT_OPERATOR;
37 const SE_PRIV se_add_users = SE_ADD_USERS;
38 const SE_PRIV se_disk_operators = SE_DISK_OPERATOR;
39 const SE_PRIV se_remote_shutdown = SE_REMOTE_SHUTDOWN;
40 const SE_PRIV se_restore = SE_RESTORE;
41
42 /********************************************************************
43 This is a list of privileges reported by a WIndows 2000 SP4 AD DC
44 just for reference purposes (and I know the LUID is not guaranteed
45 across reboots):
46
47 SeCreateTokenPrivilege Create a token object ( 0x0, 0x2 )
48 SeAssignPrimaryTokenPrivilege Replace a process level token ( 0x0, 0x3 )
49 SeLockMemoryPrivilege Lock pages in memory ( 0x0, 0x4 )
50 SeIncreaseQuotaPrivilege Increase quotas ( 0x0, 0x5 )
51 SeMachineAccountPrivilege Add workstations to domain ( 0x0, 0x6 )
52 SeTcbPrivilege Act as part of the operating system ( 0x0, 0x7 )
53 SeSecurityPrivilege Manage auditing and security log ( 0x0, 0x8 )
54 SeTakeOwnershipPrivilege Take ownership of files or other objects ( 0x0, 0x9 )
55 SeLoadDriverPrivilege Load and unload device drivers ( 0x0, 0xa )
56 SeSystemProfilePrivilege Profile system performance ( 0x0, 0xb )
57 SeSystemtimePrivilege Change the system time ( 0x0, 0xc )
58 SeProfileSingleProcessPrivilege Profile single process ( 0x0, 0xd )
59 SeIncreaseBasePriorityPrivilege Increase scheduling priority ( 0x0, 0xe )
60 SeCreatePagefilePrivilege Create a pagefile ( 0x0, 0xf )
61 SeCreatePermanentPrivilege Create permanent shared objects ( 0x0, 0x10 )
62 SeBackupPrivilege Back up files and directories ( 0x0, 0x11 )
63 SeRestorePrivilege Restore files and directories ( 0x0, 0x12 )
64 SeShutdownPrivilege Shut down the system ( 0x0, 0x13 )
65 SeDebugPrivilege Debug programs ( 0x0, 0x14 )
66 SeAuditPrivilege Generate security audits ( 0x0, 0x15 )
67 SeSystemEnvironmentPrivilege Modify firmware environment values ( 0x0, 0x16 )
68 SeChangeNotifyPrivilege Bypass traverse checking ( 0x0, 0x17 )
69 SeRemoteShutdownPrivilege Force shutdown from a remote system ( 0x0, 0x18 )
70 SeUndockPrivilege Remove computer from docking station ( 0x0, 0x19 )
71 SeSyncAgentPrivilege Synchronize directory service data ( 0x0, 0x1a )
72 SeEnableDelegationPrivilege Enable computer and user accounts to be trusted for delegation ( 0x0, 0x1b )
73 SeManageVolumePrivilege Perform volume maintenance tasks ( 0x0, 0x1c )
74 SeImpersonatePrivilege Impersonate a client after authentication ( 0x0, 0x1d )
75 SeCreateGlobalPrivilege Create global objects ( 0x0, 0x1e )
76
77 ********************************************************************/
78
79 /* we have to define the LUID here due to a horrible check by printmig.exe
80 that requires the SeBackupPrivilege match what is in Windows. So match
81 those that we implement and start Samba privileges at 0x1001 */
82
83 PRIVS privs[] = {
84 #if 0 /* usrmgr will display these twice if you include them. We don't
85 use them but we'll keep the bitmasks reserved in privileges.h anyways */
86
87 {SE_NETWORK_LOGON, "SeNetworkLogonRight", "Access this computer from network", { 0x0, 0x0 }},
88 {SE_INTERACTIVE_LOGON, "SeInteractiveLogonRight", "Log on locally", { 0x0, 0x0 }},
89 {SE_BATCH_LOGON, "SeBatchLogonRight", "Log on as a batch job", { 0x0, 0x0 }},
90 {SE_SERVICE_LOGON, "SeServiceLogonRight", "Log on as a service", { 0x0, 0x0 }},
91 #endif
92 {SE_MACHINE_ACCOUNT, "SeMachineAccountPrivilege", "Add machines to domain", { 0x0, 0x0006 }},
93 {SE_TAKE_OWNERSHIP, "SeTakeOwnershipPrivilege", "Take ownership of files or other objects",{ 0x0, 0x0009 }},
94 {SE_BACKUP, "SeBackupPrivilege", "Back up files and directories", { 0x0, 0x0011 }},
95 {SE_RESTORE, "SeRestorePrivilege", "Restore files and directories", { 0x0, 0x0012 }},
96 {SE_REMOTE_SHUTDOWN, "SeRemoteShutdownPrivilege", "Force shutdown from a remote system", { 0x0, 0x0018 }},
97
98 {SE_PRINT_OPERATOR, "SePrintOperatorPrivilege", "Manage printers", { 0x0, 0x1001 }},
99 {SE_ADD_USERS, "SeAddUsersPrivilege", "Add users and groups to the domain", { 0x0, 0x1002 }},
100 {SE_DISK_OPERATOR, "SeDiskOperatorPrivilege", "Manage disk shares", { 0x0, 0x1003 }},
101
102 {SE_END, "", "", { 0x0, 0x0 }}
103 };
104
105 typedef struct {
106 int count;
107 DOM_SID *list;
108 } SID_LIST;
109
110 typedef struct {
111 SE_PRIV privilege;
112 SID_LIST sids;
113 } PRIV_SID_LIST;
114
115 /***************************************************************************
116 copy an SE_PRIV structure
117 ****************************************************************************/
118
119 BOOL se_priv_copy( SE_PRIV *dst, const SE_PRIV *src )
120 {
121 if ( !dst || !src )
122 return False;
123
124 memcpy( dst, src, sizeof(SE_PRIV) );
125
126 return True;
127 }
128
129 /***************************************************************************
130 combine 2 SE_PRIV structures and store the resulting set in mew_mask
131 ****************************************************************************/
132
133 void se_priv_add( SE_PRIV *mask, const SE_PRIV *addpriv )
134 {
135 int i;
136
137 for ( i=0; i<SE_PRIV_MASKSIZE; i++ ) {
138 mask->mask[i] |= addpriv->mask[i];
139 }
140 }
141
142 /***************************************************************************
143 remove one SE_PRIV sytucture from another and store the resulting set
144 in mew_mask
145 ****************************************************************************/
146
147 void se_priv_remove( SE_PRIV *mask, const SE_PRIV *removepriv )
148 {
149 int i;
150
151 for ( i=0; i<SE_PRIV_MASKSIZE; i++ ) {
152 mask->mask[i] &= ~removepriv->mask[i];
153 }
154 }
155
156 /***************************************************************************
157 invert a given SE_PRIV and store the set in new_mask
158 ****************************************************************************/
159
160 static void se_priv_invert( SE_PRIV *new_mask, const SE_PRIV *mask )
161 {
162 SE_PRIV allprivs;
163
164 se_priv_copy( &allprivs, &se_priv_all );
165 se_priv_remove( &allprivs, mask );
166 se_priv_copy( new_mask, &allprivs );
167 }
168
169 /***************************************************************************
170 check if 2 SE_PRIV structure are equal
171 ****************************************************************************/
172
173 static BOOL se_priv_equal( const SE_PRIV *mask1, const SE_PRIV *mask2 )
174 {
175 return ( memcmp(mask1, mask2, sizeof(SE_PRIV)) == 0 );
176 }
177
178 /***************************************************************************
179 check if a SE_PRIV has any assigned privileges
180 ****************************************************************************/
181
182 static BOOL se_priv_empty( const SE_PRIV *mask )
183 {
184 SE_PRIV p1;
185 int i;
186
187 se_priv_copy( &p1, mask );
188
189 for ( i=0; i<SE_PRIV_MASKSIZE; i++ ) {
190 p1.mask[i] &= se_priv_all.mask[i];
191 }
192
193 return se_priv_equal( &p1, &se_priv_none );
194 }
195
196 /*********************************************************************
197 Lookup the SE_PRIV value for a privilege name
198 *********************************************************************/
199
200 BOOL se_priv_from_name( const char *name, SE_PRIV *mask )
201 {
202 int i;
203
204 for ( i=0; !se_priv_equal(&privs[i].se_priv, &se_priv_end); i++ ) {
205 if ( strequal( privs[i].name, name ) ) {
206 se_priv_copy( mask, &privs[i].se_priv );
207 return True;
208 }
209 }
210
211 return False;
212 }
213
214 /***************************************************************************
215 dump an SE_PRIV structure to the log files
216 ****************************************************************************/
217
218 void dump_se_priv( int dbg_cl, int dbg_lvl, const SE_PRIV *mask )
219 {
220 int i;
221
222 DEBUGADDC( dbg_cl, dbg_lvl,("SE_PRIV "));
223
224 for ( i=0; i<SE_PRIV_MASKSIZE; i++ ) {
225 DEBUGADDC( dbg_cl, dbg_lvl,(" 0x%x", mask->mask[i] ));
226 }
227
228 DEBUGADDC( dbg_cl, dbg_lvl, ("\n"));
229 }
230
231 /***************************************************************************
232 Retrieve the privilege mask (set) for a given SID
233 ****************************************************************************/
234
235 static BOOL get_privileges( const DOM_SID *sid, SE_PRIV *mask )
236 {
237 TDB_CONTEXT *tdb = get_account_pol_tdb();
238 fstring keystr;
239 TDB_DATA key, data;
240
241 /* Fail if the admin has not enable privileges */
242
243 if ( !lp_enable_privileges() ) {
244 return False;
245 }
246
247 if ( !tdb )
248 return False;
249
250 /* PRIV_<SID> (NULL terminated) as the key */
251
252 fstr_sprintf( keystr, "%s%s", PRIVPREFIX, sid_string_static(sid) );
253 key.dptr = keystr;
254 key.dsize = strlen(keystr) + 1;
255
256 data = tdb_fetch( tdb, key );
257
258 if ( !data.dptr ) {
259 DEBUG(3,("get_privileges: No privileges assigned to SID [%s]\n",
260 sid_string_static(sid)));
261 return False;
262 }
263
264 SMB_ASSERT( data.dsize == sizeof( SE_PRIV ) );
265
266 se_priv_copy( mask, (SE_PRIV*)data.dptr );
267 SAFE_FREE(data.dptr);
268
269 return True;
270 }
271
272 /***************************************************************************
273 Store the privilege mask (set) for a given SID
274 ****************************************************************************/
275
276 static BOOL set_privileges( const DOM_SID *sid, SE_PRIV *mask )
277 {
278 TDB_CONTEXT *tdb = get_account_pol_tdb();
279 fstring keystr;
280 TDB_DATA key, data;
281
282 if ( !lp_enable_privileges() )
283 return False;
284
285 if ( !tdb )
286 return False;
287
288 if ( !sid || (sid->num_auths == 0) ) {
289 DEBUG(0,("set_privileges: Refusing to store empty SID!\n"));
290 return False;
291 }
292
293 /* PRIV_<SID> (NULL terminated) as the key */
294
295 fstr_sprintf( keystr, "%s%s", PRIVPREFIX, sid_string_static(sid) );
296 key.dptr = keystr;
297 key.dsize = strlen(keystr) + 1;
298
299 /* no packing. static size structure, just write it out */
300
301 data.dptr = (char*)mask;
302 data.dsize = sizeof(SE_PRIV);
303
304 return ( tdb_store(tdb, key, data, TDB_REPLACE) != -1 );
305 }
306
307 /****************************************************************************
308 check if the privilege is in the privilege list
309 ****************************************************************************/
310
311 static BOOL is_privilege_assigned( SE_PRIV *privileges, const SE_PRIV *check )
312 {
313 SE_PRIV p1, p2;
314
315 if ( !privileges || !check )
316 return False;
317
318 /* everyone has privileges if you aren't checking for any */
319
320 if ( se_priv_empty( check ) ) {
321 DEBUG(1,("is_privilege_assigned: no privileges in check_mask!\n"));
322 return True;
323 }
324
325 se_priv_copy( &p1, check );
326
327 /* invert the SE_PRIV we want to check for and remove that from the
328 original set. If we are left with the SE_PRIV we are checking
329 for then return True */
330
331 se_priv_invert( &p1, check );
332 se_priv_copy( &p2, privileges );
333 se_priv_remove( &p2, &p1 );
334
335 return se_priv_equal( &p2, check );
336 }
337
338 /****************************************************************************
339 check if the privilege is in the privilege list
340 ****************************************************************************/
341
342 static BOOL is_any_privilege_assigned( SE_PRIV *privileges, const SE_PRIV *check )
343 {
344 SE_PRIV p1, p2;
345
346 if ( !privileges || !check )
347 return False;
348
349 /* everyone has privileges if you aren't checking for any */
350
351 if ( se_priv_empty( check ) ) {
352 DEBUG(1,("is_any_privilege_assigned: no privileges in check_mask!\n"));
353 return True;
354 }
355
356 se_priv_copy( &p1, check );
357
358 /* invert the SE_PRIV we want to check for and remove that from the
359 original set. If we are left with the SE_PRIV we are checking
360 for then return True */
361
362 se_priv_invert( &p1, check );
363 se_priv_copy( &p2, privileges );
364 se_priv_remove( &p2, &p1 );
365
366 /* see if we have any bits left */
367
368 return !se_priv_empty( &p2 );
369 }
370
371 /****************************************************************************
372 add a privilege to a privilege array
373 ****************************************************************************/
374
375 static BOOL privilege_set_add(PRIVILEGE_SET *priv_set, LUID_ATTR set)
376 {
377 LUID_ATTR *new_set;
378
379 /* we can allocate memory to add the new privilege */
380
381 new_set = TALLOC_REALLOC_ARRAY(priv_set->mem_ctx, priv_set->set, LUID_ATTR, priv_set->count + 1);
382 if ( !new_set ) {
383 DEBUG(0,("privilege_set_add: failed to allocate memory!\n"));
384 return False;
385 }
386
387 new_set[priv_set->count].luid.high = set.luid.high;
388 new_set[priv_set->count].luid.low = set.luid.low;
389 new_set[priv_set->count].attr = set.attr;
390
391 priv_set->count++;
392 priv_set->set = new_set;
393
394 return True;
395 }
396
397 /*********************************************************************
398 Generate the LUID_ATTR structure based on a bitmask
399 *********************************************************************/
400
401 LUID_ATTR get_privilege_luid( SE_PRIV *mask )
402 {
403 LUID_ATTR priv_luid;
404 int i;
405
406 priv_luid.attr = 0;
407 priv_luid.luid.high = 0;
408
409 for ( i=0; !se_priv_equal(&privs[i].se_priv, &se_priv_end); i++ ) {
410
411 if ( se_priv_equal( &privs[i].se_priv, mask ) ) {
412 priv_luid.luid = privs[i].luid;
413 break;
414 }
415 }
416
417 return priv_luid;
418 }
419
420 /*********************************************************************
421 Generate the LUID_ATTR structure based on a bitmask
422 *********************************************************************/
423
424 const char* get_privilege_dispname( const char *name )
425 {
426 int i;
427
428 for ( i=0; !se_priv_equal(&privs[i].se_priv, &se_priv_end); i++ ) {
429
430 if ( strequal( privs[i].name, name ) ) {
431 return privs[i].description;
432 }
433 }
434
435 return NULL;
436 }
437
438 /*********************************************************************
439 get a list of all privleges for all sids the in list
440 *********************************************************************/
441
442 BOOL get_privileges_for_sids(SE_PRIV *privileges, DOM_SID *slist, int scount)
443 {
444 SE_PRIV mask;
445 int i;
446 BOOL found = False;
447
448 se_priv_copy( privileges, &se_priv_none );
449
450 for ( i=0; i<scount; i++ ) {
451 /* don't add unless we actually have a privilege assigned */
452
453 if ( !get_privileges( &slist[i], &mask ) )
454 continue;
455
456 DEBUG(5,("get_privileges_for_sids: sid = %s\nPrivilege set:\n",
457 sid_string_static(&slist[i])));
458 dump_se_priv( DBGC_ALL, 5, &mask );
459
460 se_priv_add( privileges, &mask );
461 found = True;
462 }
463
464 return found;
465 }
466
467
468 /*********************************************************************
469 travseral functions for privilege_enumerate_accounts
470 *********************************************************************/
471
472 static int priv_traverse_fn(TDB_CONTEXT *t, TDB_DATA key, TDB_DATA data, void *state)
473 {
474 PRIV_SID_LIST *priv = state;
475 int prefixlen = strlen(PRIVPREFIX);
476 DOM_SID sid;
477 fstring sid_string;
478
479 /* easy check first */
480
481 if ( data.dsize != sizeof(SE_PRIV) )
482 return 0;
483
484 /* check we have a PRIV_+SID entry */
485
486 if ( strncmp(key.dptr, PRIVPREFIX, prefixlen) != 0)
487 return 0;
488
489 /* check to see if we are looking for a particular privilege */
490
491 if ( !se_priv_equal(&priv->privilege, &se_priv_none) ) {
492 SE_PRIV mask;
493
494 se_priv_copy( &mask, (SE_PRIV*)data.dptr );
495
496 /* if the SID does not have the specified privilege
497 then just return */
498
499 if ( !is_privilege_assigned( &mask, &priv->privilege) )
500 return 0;
501 }
502
503 fstrcpy( sid_string, &key.dptr[strlen(PRIVPREFIX)] );
504
505 /* this is a last ditch safety check to preventing returning
506 and invalid SID (i've somehow run into this on development branches) */
507
508 if ( strcmp( "S-0-0", sid_string ) == 0 )
509 return 0;
510
511 if ( !string_to_sid(&sid, sid_string) ) {
512 DEBUG(0,("travsersal_fn_enum__acct: Could not convert SID [%s]\n",
513 sid_string));
514 return 0;
515 }
516
517 add_sid_to_array( NULL, &sid, &priv->sids.list, &priv->sids.count );
518
519 return 0;
520 }
521
522 /*********************************************************************
523 Retreive list of privileged SIDs (for _lsa_enumerate_accounts()
524 *********************************************************************/
525
526 NTSTATUS privilege_enumerate_accounts(DOM_SID **sids, int *num_sids)
527 {
528 TDB_CONTEXT *tdb = get_account_pol_tdb();
529 PRIV_SID_LIST priv;
530
531 ZERO_STRUCT(priv);
532
533 se_priv_copy( &priv.privilege, &se_priv_none );
534
535 tdb_traverse( tdb, priv_traverse_fn, &priv);
536
537 /* give the memory away; caller will free */
538
539 *sids = priv.sids.list;
540 *num_sids = priv.sids.count;
541
542 return NT_STATUS_OK;
543 }
544
545 /***************************************************************************
546 Add privilege to sid
547 ****************************************************************************/
548
549 BOOL grant_privilege(const DOM_SID *sid, const SE_PRIV *priv_mask)
550 {
551 SE_PRIV old_mask, new_mask;
552
553 ZERO_STRUCT( old_mask );
554 ZERO_STRUCT( new_mask );
555
556 if ( get_privileges( sid, &old_mask ) )
557 se_priv_copy( &new_mask, &old_mask );
558 else
559 se_priv_copy( &new_mask, &se_priv_none );
560
561 se_priv_add( &new_mask, priv_mask );
562
563 DEBUG(10,("grant_privilege: %s\n", sid_string_static(sid)));
564
565 DEBUGADD( 10, ("original privilege mask:\n"));
566 dump_se_priv( DBGC_ALL, 10, &old_mask );
567
568 DEBUGADD( 10, ("new privilege mask:\n"));
569 dump_se_priv( DBGC_ALL, 10, &new_mask );
570
571 return set_privileges( sid, &new_mask );
572 }
573
574 /*********************************************************************
575 Add a privilege based on its name
576 *********************************************************************/
577
578 BOOL grant_privilege_by_name(DOM_SID *sid, const char *name)
579 {
580 int i;
581
582 for ( i=0; !se_priv_equal(&privs[i].se_priv, &se_priv_end); i++ ) {
583 if ( strequal(privs[i].name, name) ) {
584 return grant_privilege( sid, &privs[i].se_priv );
585 }
586 }
587
588 DEBUG(3, ("grant_privilege_by_name: No Such Privilege Found (%s)\n", name));
589
590 return False;
591 }
592
593 /***************************************************************************
594 Remove privilege from sid
595 ****************************************************************************/
596
597 BOOL revoke_privilege(const DOM_SID *sid, const SE_PRIV *priv_mask)
598 {
599 SE_PRIV mask;
600
601 /* if the user has no privileges, then we can't revoke any */
602
603 if ( !get_privileges( sid, &mask ) )
604 return True;
605
606 DEBUG(10,("revoke_privilege: %s\n", sid_string_static(sid)));
607
608 DEBUGADD( 10, ("original privilege mask:\n"));
609 dump_se_priv( DBGC_ALL, 10, &mask );
610
611 se_priv_remove( &mask, priv_mask );
612
613 DEBUGADD( 10, ("new privilege mask:\n"));
614 dump_se_priv( DBGC_ALL, 10, &mask );
615
616 return set_privileges( sid, &mask );
617 }
618
619 /*********************************************************************
620 Revoke all privileges
621 *********************************************************************/
622
623 BOOL revoke_all_privileges( DOM_SID *sid )
624 {
625 return revoke_privilege( sid, &se_priv_all );
626 }
627
628 /*********************************************************************
629 Add a privilege based on its name
630 *********************************************************************/
631
632 BOOL revoke_privilege_by_name(DOM_SID *sid, const char *name)
633 {
634 int i;
635
636 for ( i=0; !se_priv_equal(&privs[i].se_priv, &se_priv_end); i++ ) {
637 if ( strequal(privs[i].name, name) ) {
638 return revoke_privilege( sid, &privs[i].se_priv );
639 }
640 }
641
642 DEBUG(3, ("revoke_privilege_by_name: No Such Privilege Found (%s)\n", name));
643
644 return False;
645 }
646
647 /***************************************************************************
648 Retrieve the SIDs assigned to a given privilege
649 ****************************************************************************/
650
651 NTSTATUS privilege_create_account(const DOM_SID *sid )
652 {
653 return ( grant_privilege(sid, &se_priv_none) ? NT_STATUS_OK : NT_STATUS_UNSUCCESSFUL);
654 }
655
656 /****************************************************************************
657 initialise a privilege list and set the talloc context
658 ****************************************************************************/
659
660 NTSTATUS privilege_set_init(PRIVILEGE_SET *priv_set)
661 {
662 TALLOC_CTX *mem_ctx;
663
664 ZERO_STRUCTP( priv_set );
665
666 mem_ctx = talloc_init("privilege set");
667 if ( !mem_ctx ) {
668 DEBUG(0,("privilege_set_init: failed to initialize talloc ctx!\n"));
669 return NT_STATUS_NO_MEMORY;
670 }
671
672 priv_set->mem_ctx = mem_ctx;
673
674 return NT_STATUS_OK;
675 }
676
677 /****************************************************************************
678 initialise a privilege list and with someone else's talloc context
679 ****************************************************************************/
680
681 NTSTATUS privilege_set_init_by_ctx(TALLOC_CTX *mem_ctx, PRIVILEGE_SET *priv_set)
682 {
683 ZERO_STRUCTP( priv_set );
684
685 priv_set->mem_ctx = mem_ctx;
686 priv_set->ext_ctx = True;
687
688 return NT_STATUS_OK;
689 }
690
691 /****************************************************************************
692 Free all memory used by a PRIVILEGE_SET
693 ****************************************************************************/
694
695 void privilege_set_free(PRIVILEGE_SET *priv_set)
696 {
697 if ( !priv_set )
698 return;
699
700 if ( !( priv_set->ext_ctx ) )
701 talloc_destroy( priv_set->mem_ctx );
702
703 ZERO_STRUCTP( priv_set );
704 }
705
706 /****************************************************************************
707 duplicate alloc luid_attr
708 ****************************************************************************/
709
710 NTSTATUS dup_luid_attr(TALLOC_CTX *mem_ctx, LUID_ATTR **new_la, LUID_ATTR *old_la, int count)
711 {
712 int i;
713
714 if ( !old_la )
715 return NT_STATUS_OK;
716
717 *new_la = TALLOC_ARRAY(mem_ctx, LUID_ATTR, count);
718 if ( !*new_la ) {
719 DEBUG(0,("dup_luid_attr: failed to alloc new LUID_ATTR array [%d]\n", count));
720 return NT_STATUS_NO_MEMORY;
721 }
722
723 for (i=0; i<count; i++) {
724 (*new_la)[i].luid.high = old_la[i].luid.high;
725 (*new_la)[i].luid.low = old_la[i].luid.low;
726 (*new_la)[i].attr = old_la[i].attr;
727 }
728
729 return NT_STATUS_OK;
730 }
731
732 /****************************************************************************
733 Does the user have the specified privilege ? We only deal with one privilege
734 at a time here.
735 *****************************************************************************/
736
737 BOOL user_has_privileges(NT_USER_TOKEN *token, const SE_PRIV *privilege)
738 {
739 if ( !token )
740 return False;
741
742 return is_privilege_assigned( &token->privileges, privilege );
743 }
744
745 /****************************************************************************
746 Does the user have any of the specified privileges ? We only deal with one privilege
747 at a time here.
748 *****************************************************************************/
749
750 BOOL user_has_any_privilege(NT_USER_TOKEN *token, const SE_PRIV *privilege)
751 {
752 if ( !token )
753 return False;
754
755 return is_any_privilege_assigned( &token->privileges, privilege );
756 }
757
758 /****************************************************************************
759 Convert a LUID to a named string
760 ****************************************************************************/
761
762 char* luid_to_privilege_name(const LUID *set)
763 {
764 static fstring name;
765 int i;
766
767 if (set->high != 0)
768 return NULL;
769
770 for ( i=0; !se_priv_equal(&privs[i].se_priv, &se_priv_end); i++ ) {
771 if ( set->low == privs[i].luid.low ) {
772 fstrcpy( name, privs[i].name );
773 return name;
774 }
775 }
776
777 return NULL;
778 }
779
780 /*******************************************************************
781 return the number of elements in the privlege array
782 *******************************************************************/
783
784 int count_all_privileges( void )
785 {
786 static int count;
787
788 if ( count )
789 return count;
790
791 /* loop over the array and count it */
792 for ( count=0; !se_priv_equal(&privs[count].se_priv, &se_priv_end); count++ ) ;
793
794 return count;
795 }
796
797 /*******************************************************************
798 *******************************************************************/
799
800 BOOL se_priv_to_privilege_set( PRIVILEGE_SET *set, SE_PRIV *mask )
801 {
802 int i;
803 uint32 num_privs = count_all_privileges();
804 LUID_ATTR luid;
805
806 luid.attr = 0;
807 luid.luid.high = 0;
808
809 for ( i=0; i<num_privs; i++ ) {
810 if ( !is_privilege_assigned(mask, &privs[i].se_priv) )
811 continue;
812
813 luid.luid = privs[i].luid;
814
815 if ( !privilege_set_add( set, luid ) )
816 return False;
817 }
818
819 return True;
820 }
821
822 /*******************************************************************
823 *******************************************************************/
824
825 static BOOL luid_to_se_priv( LUID *luid, SE_PRIV *mask )
826 {
827 int i;
828 uint32 num_privs = count_all_privileges();
829
830 for ( i=0; i<num_privs; i++ ) {
831 if ( luid->low == privs[i].luid.low ) {
832 se_priv_copy( mask, &privs[i].se_priv );
833 return True;
834 }
835 }
836
837 return False;
838 }
839
840 /*******************************************************************
841 *******************************************************************/
842
843 BOOL privilege_set_to_se_priv( SE_PRIV *mask, PRIVILEGE_SET *privset )
844 {
845 int i;
846
847 ZERO_STRUCTP( mask );
848
849 for ( i=0; i<privset->count; i++ ) {
850 SE_PRIV r;
851
852 /* sanity check for invalid privilege. we really
853 only care about the low 32 bits */
854
855 if ( privset->set[i].luid.high != 0 )
856 return False;
857
858 if ( luid_to_se_priv( &privset->set[i].luid, &r ) )
859 se_priv_add( mask, &r );
860 }
861
862 return True;
863 }
864
865 /*******************************************************************
866 *******************************************************************/
867
868 BOOL is_privileged_sid( DOM_SID *sid )
869 {
870 SE_PRIV mask;
871
872 return get_privileges( sid, &mask );
873 }
Samba GIT mirror