search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
updated header to 1.9.18alpha6
[Samba/ekacnet.git] / source / pipenetlog.c
blob664488b16daffc9308ac7fdc451d3c037e97afec
1 /*
2 Unix SMB/Netbios implementation.
3 Version 1.9.
4 Pipe SMB reply routines
5 Copyright (C) Andrew Tridgell 1992-1997,
6 Copyright (C) Luke Kenneth Casson Leighton 1996-1997.
7 Copyright (C) Paul Ashton 1997.
8
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
13
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
18
19 You should have received a copy of the GNU General Public License
20 along with this program; if not, write to the Free Software
21 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 */
23 /*
24 This file handles reply_ calls on named pipes that the server
25 makes to handle specific protocols
26 */
27
28
29 #include "includes.h"
30 #include "trans2.h"
31 #include "nterr.h"
32
33 extern int DEBUGLEVEL;
34
35 extern BOOL sam_logon_in_ssb;
36 extern pstring samlogon_user;
37
38 #ifdef NTDOMAIN
39
40 static void make_lsa_r_req_chal(LSA_R_REQ_CHAL *r_c,
41 DOM_CHAL *srv_chal, int status)
42 {
43 DEBUG(6,("make_lsa_r_req_chal: %d\n", __LINE__));
44 memcpy(r_c->srv_chal.data, srv_chal->data, sizeof(srv_chal->data));
45 r_c->status = status;
46 }
47
48 static int lsa_reply_req_chal(LSA_Q_REQ_CHAL *q_c, char *q, char *base,
49 DOM_CHAL *srv_chal, uint32 srv_time)
50 {
51 LSA_R_REQ_CHAL r_c;
52
53 DEBUG(6,("lsa_reply_req_chal: %d\n", __LINE__));
54
55 /* set up the LSA REQUEST CHALLENGE response */
56 make_lsa_r_req_chal(&r_c, srv_chal, srv_time);
57
58 /* store the response in the SMB stream */
59 q = lsa_io_r_req_chal(False, &r_c, q, base, 4, 0);
60
61 DEBUG(6,("lsa_reply_req_chal: %d\n", __LINE__));
62
63 /* return length of SMB data stored */
64 return PTR_DIFF(q, base);
65 }
66
67 static void make_lsa_r_auth_2(LSA_R_AUTH_2 *r_a,
68 DOM_CHAL *resp_cred, NEG_FLAGS *flgs, int status)
69 {
70 memcpy( r_a->srv_chal.data, resp_cred->data, sizeof(resp_cred->data));
71 memcpy(&(r_a->srv_flgs) , flgs , sizeof(r_a->srv_flgs));
72 r_a->status = status;
73 }
74
75 static int lsa_reply_auth_2(LSA_Q_AUTH_2 *q_a, char *q, char *base,
76 DOM_CHAL *resp_cred, int status)
77 {
78 LSA_R_AUTH_2 r_a;
79
80 /* set up the LSA AUTH 2 response */
81
82 make_lsa_r_auth_2(&r_a, resp_cred, &(q_a->clnt_flgs), status);
83
84 /* store the response in the SMB stream */
85 q = lsa_io_r_auth_2(False, &r_a, q, base, 4, 0);
86
87 /* return length of SMB data stored */
88 return PTR_DIFF(q, base);
89 }
90
91 static void make_lsa_r_srv_pwset(LSA_R_SRV_PWSET *r_s,
92 DOM_CRED *srv_cred, int status)
93 {
94 DEBUG(5,("make_lsa_r_srv_pwset: %d\n", __LINE__));
95
96 memcpy(&(r_s->srv_cred), srv_cred, sizeof(r_s->srv_cred));
97 r_s->status = status;
98
99 DEBUG(5,("make_lsa_r_srv_pwset: %d\n", __LINE__));
100 }
101
102 static int lsa_reply_srv_pwset(LSA_Q_SRV_PWSET *q_s, char *q, char *base,
103 DOM_CRED *srv_cred, int status)
104 {
105 LSA_R_SRV_PWSET r_s;
106
107 DEBUG(5,("lsa_srv_pwset: %d\n", __LINE__));
108
109 /* set up the LSA Server Password Set response */
110 make_lsa_r_srv_pwset(&r_s, srv_cred, status);
111
112 /* store the response in the SMB stream */
113 q = lsa_io_r_srv_pwset(False, &r_s, q, base, 4, 0);
114
115 DEBUG(5,("lsa_srv_pwset: %d\n", __LINE__));
116
117 /* return length of SMB data stored */
118 return PTR_DIFF(q, base);
119 }
120
121 static void make_lsa_user_info(LSA_USER_INFO *usr,
122
123 NTTIME *logon_time,
124 NTTIME *logoff_time,
125 NTTIME *kickoff_time,
126 NTTIME *pass_last_set_time,
127 NTTIME *pass_can_change_time,
128 NTTIME *pass_must_change_time,
129
130 char *user_name,
131 char *full_name,
132 char *logon_script,
133 char *profile_path,
134 char *home_dir,
135 char *dir_drive,
136
137 uint16 logon_count,
138 uint16 bad_pw_count,
139
140 uint32 user_id,
141 uint32 group_id,
142 uint32 num_groups,
143 DOM_GID *gids,
144 uint32 user_flgs,
145
146 char sess_key[16],
147
148 char *logon_srv,
149 char *logon_dom,
150
151 char *dom_sid,
152 char *other_sids) /* space-delimited set of SIDs */
153 {
154 /* only cope with one "other" sid, right now. */
155 /* need to count the number of space-delimited sids */
156 int i;
157 int num_other_sids = 0;
158
159 int len_user_name = strlen(user_name );
160 int len_full_name = strlen(full_name );
161 int len_logon_script = strlen(logon_script);
162 int len_profile_path = strlen(profile_path);
163 int len_home_dir = strlen(home_dir );
164 int len_dir_drive = strlen(dir_drive );
165
166 int len_logon_srv = strlen(logon_srv);
167 int len_logon_dom = strlen(logon_dom);
168
169 usr->ptr_user_info = 1; /* yes, we're bothering to put USER_INFO data here */
170
171 usr->logon_time = *logon_time;
172 usr->logoff_time = *logoff_time;
173 usr->kickoff_time = *kickoff_time;
174 usr->pass_last_set_time = *pass_last_set_time;
175 usr->pass_can_change_time = *pass_can_change_time;
176 usr->pass_must_change_time = *pass_must_change_time;
177
178 make_uni_hdr(&(usr->hdr_user_name ), len_user_name , len_user_name , 4);
179 make_uni_hdr(&(usr->hdr_full_name ), len_full_name , len_full_name , 4);
180 make_uni_hdr(&(usr->hdr_logon_script), len_logon_script, len_logon_script, 4);
181 make_uni_hdr(&(usr->hdr_profile_path), len_profile_path, len_profile_path, 4);
182 make_uni_hdr(&(usr->hdr_home_dir ), len_home_dir , len_home_dir , 4);
183 make_uni_hdr(&(usr->hdr_dir_drive ), len_dir_drive , len_dir_drive , 4);
184
185 usr->logon_count = logon_count;
186 usr->bad_pw_count = bad_pw_count;
187
188 usr->user_id = user_id;
189 usr->group_id = group_id;
190 usr->num_groups = num_groups;
191 usr->buffer_groups = 1; /* indicates fill in groups, below, even if there are none */
192 usr->user_flgs = user_flgs;
193
194 if (sess_key != NULL)
195 {
196 memcpy(usr->user_sess_key, sess_key, sizeof(usr->user_sess_key));
197 }
198 else
199 {
200 bzero(usr->user_sess_key, sizeof(usr->user_sess_key));
201 }
202
203 make_uni_hdr(&(usr->hdr_logon_srv), len_logon_srv, len_logon_srv, 4);
204 make_uni_hdr(&(usr->hdr_logon_dom), len_logon_dom, len_logon_dom, 4);
205
206 usr->buffer_dom_id = dom_sid ? 1 : 0; /* yes, we're bothering to put a domain SID in */
207
208 bzero(usr->padding, sizeof(usr->padding));
209
210 num_other_sids = make_dom_sids(other_sids, usr->other_sids, LSA_MAX_SIDS);
211
212 usr->num_other_sids = num_other_sids;
213 usr->buffer_other_sids = num_other_sids != 0 ? 1 : 0;
214
215 make_unistr2(&(usr->uni_user_name ), user_name , len_user_name );
216 make_unistr2(&(usr->uni_full_name ), full_name , len_full_name );
217 make_unistr2(&(usr->uni_logon_script), logon_script, len_logon_script);
218 make_unistr2(&(usr->uni_profile_path), profile_path, len_profile_path);
219 make_unistr2(&(usr->uni_home_dir ), home_dir , len_home_dir );
220 make_unistr2(&(usr->uni_dir_drive ), dir_drive , len_dir_drive );
221
222 usr->num_groups2 = num_groups;
223 for (i = 0; i < num_groups; i++)
224 {
225 usr->gids[i] = gids[i];
226 }
227
228 make_unistr2(&(usr->uni_logon_srv), logon_srv, len_logon_srv);
229 make_unistr2(&(usr->uni_logon_dom), logon_dom, len_logon_dom);
230
231 make_dom_sid(&(usr->dom_sid), dom_sid);
232 /* "other" sids are set up above */
233 }
234
235
236 static int lsa_reply_sam_logon(LSA_Q_SAM_LOGON *q_s, char *q, char *base,
237 DOM_CRED *srv_cred, LSA_USER_INFO *user_info)
238 {
239 LSA_R_SAM_LOGON r_s;
240
241 /* XXXX maybe we want to say 'no', reject the client's credentials */
242 r_s.buffer_creds = 1; /* yes, we have valid server credentials */
243 memcpy(&(r_s.srv_creds), srv_cred, sizeof(r_s.srv_creds));
244
245 /* store the user information, if there is any. */
246 r_s.user = user_info;
247 if (user_info != NULL && user_info->ptr_user_info != 0)
248 {
249 r_s.switch_value = 3; /* indicates type of validation user info */
250 r_s.status = 0;
251 }
252 else
253 {
254 r_s.switch_value = 0; /* don't know what this value is supposed to be */
255 r_s.status = 0xC000000|NT_STATUS_NO_SUCH_USER;
256 }
257
258 r_s.auth_resp = 1; /* authoritative response */
259
260 /* store the response in the SMB stream */
261 q = lsa_io_r_sam_logon(False, &r_s, q, base, 4, 0);
262
263 /* return length of SMB data stored */
264 return PTR_DIFF(q, base);
265 }
266
267
268 static int lsa_reply_sam_logoff(LSA_Q_SAM_LOGOFF *q_s, char *q, char *base,
269 DOM_CRED *srv_cred,
270 uint32 status)
271 {
272 LSA_R_SAM_LOGOFF r_s;
273
274 /* XXXX maybe we want to say 'no', reject the client's credentials */
275 r_s.buffer_creds = 1; /* yes, we have valid server credentials */
276 memcpy(&(r_s.srv_creds), srv_cred, sizeof(r_s.srv_creds));
277
278 r_s.status = status;
279
280 /* store the response in the SMB stream */
281 q = lsa_io_r_sam_logoff(False, &r_s, q, base, 4, 0);
282
283 /* return length of SMB data stored */
284 return PTR_DIFF(q, base);
285 }
286
287 /****************************************************************************
288 gets a machine password entry
289 ****************************************************************************/
290 BOOL get_md4pw(char *md4pw, char *mach_acct)
291 {
292 struct smb_passwd *smb_pass;
293
294 become_root(True);
295 smb_pass = get_smbpwnam(mach_acct);
296 unbecome_root(True);
297
298 if (smb_pass != NULL)
299 {
300 memcpy(md4pw, smb_pass->smb_nt_passwd, 16);
301 dump_data(5, md4pw, 16);
302
303 return True;
304 }
305 else
306 {
307 /* No such machine account. Should error out here, but we'll
308 print and carry on */
309 DEBUG(1,("No account in domain for %s\n", mach_acct));
310 return False;
311 }
312 }
313
314 static void api_lsa_req_chal( int cnum, uint16 vuid,
315 user_struct *vuser,
316 char *param, char *data,
317 char **rdata, int *rdata_len )
318 {
319 LSA_Q_REQ_CHAL q_r;
320
321 fstring mach_acct;
322
323 /* grab the challenge... */
324 lsa_io_q_req_chal(True, &q_r, data + 0x18, data, 4, 0);
325
326 fstrcpy(mach_acct, unistrn2(q_r.uni_logon_clnt.buffer,
327 q_r.uni_logon_clnt.uni_str_len));
328
329 strcat(mach_acct, "$");
330
331 DEBUG(6,("q_r.clnt_chal.data: %lx %lx\n",
332 q_r.clnt_chal.data[0], q_r.clnt_chal.data[1]));
333
334 if (get_md4pw(vuser->dc.md4pw, mach_acct))
335 {
336 /* copy the client credentials */
337 memcpy(vuser->dc.clnt_chal.data , q_r.clnt_chal.data, sizeof(q_r.clnt_chal.data));
338 memcpy(vuser->dc.clnt_cred.challenge.data, q_r.clnt_chal.data, sizeof(q_r.clnt_chal.data));
339
340 /* create a server challenge for the client */
341 /* PAXX: set these to random values. */
342 /* lkcl: paul, you mentioned that it doesn't really matter much */
343 vuser->dc.srv_chal.data[0] = 0x11111111;
344 vuser->dc.srv_chal.data[1] = 0x11111111;
345 vuser->dc.srv_cred.challenge.data[0] = vuser->dc.srv_chal.data[0];
346 vuser->dc.srv_cred.challenge.data[1] = vuser->dc.srv_chal.data[1];
347
348 /* from client / server challenges and md4 password, generate sess key */
349 cred_session_key(&(vuser->dc.clnt_chal), &(vuser->dc.srv_chal),
350 vuser->dc.md4pw, vuser->dc.sess_key);
351 }
352
353 /* construct reply. return status is always 0x0 */
354 *rdata_len = lsa_reply_req_chal(&q_r, *rdata + 0x18, *rdata,
355 &(vuser->dc.srv_chal), 0);
356
357 }
358
359 static void api_lsa_auth_2( user_struct *vuser,
360 char *param, char *data,
361 char **rdata, int *rdata_len )
362 {
363 LSA_Q_AUTH_2 q_a;
364
365 DOM_CHAL srv_cred;
366 UTIME srv_time;
367
368 srv_time.time = 0;
369
370 /* grab the challenge... */
371 lsa_io_q_auth_2(True, &q_a, data + 0x18, data, 4, 0);
372
373 /* check that the client credentials are valid */
374 cred_assert(&(q_a.clnt_chal), vuser->dc.sess_key,
375 &(vuser->dc.clnt_cred.challenge), srv_time);
376
377 /* create server challenge for inclusion in the reply */
378 cred_create(vuser->dc.sess_key, &(vuser->dc.srv_cred.challenge), srv_time, &srv_cred);
379
380 /* copy the received client credentials for use next time */
381 memcpy(vuser->dc.clnt_cred.challenge.data, &(q_a.clnt_chal.data), sizeof(q_a.clnt_chal.data));
382 memcpy(vuser->dc.srv_cred .challenge.data, &(q_a.clnt_chal.data), sizeof(q_a.clnt_chal.data));
383
384 /* construct reply. */
385 *rdata_len = lsa_reply_auth_2(&q_a, *rdata + 0x18, *rdata,
386 &srv_cred, 0x0);
387 }
388
389
390 static void api_lsa_srv_pwset( user_struct *vuser,
391 char *param, char *data,
392 char **rdata, int *rdata_len )
393 {
394 LSA_Q_SRV_PWSET q_a;
395
396 DOM_CRED srv_cred;
397
398 /* grab the challenge and encrypted password ... */
399 lsa_io_q_srv_pwset(True, &q_a, data + 0x18, data, 4, 0);
400
401 /* checks and updates credentials. creates reply credentials */
402 deal_with_creds(vuser->dc.sess_key, &(vuser->dc.clnt_cred),
403 &(q_a.clnt_id.cred), &srv_cred);
404 memcpy(&(vuser->dc.srv_cred), &(vuser->dc.clnt_cred), sizeof(vuser->dc.clnt_cred));
405
406 DEBUG(5,("api_lsa_srv_pwset: %d\n", __LINE__));
407
408 /* construct reply. always indicate failure. nt keeps going... */
409 *rdata_len = lsa_reply_srv_pwset(&q_a, *rdata + 0x18, *rdata,
410 &srv_cred,
411 NT_STATUS_WRONG_PASSWORD|0xC0000000);
412 }
413
414
415 static void api_lsa_sam_logoff( user_struct *vuser,
416 char *param, char *data,
417 char **rdata, int *rdata_len )
418 {
419 LSA_Q_SAM_LOGOFF q_l;
420 DOM_ID_INFO_1 id1;
421
422 DOM_CRED srv_cred;
423
424 /* the DOM_ID_INFO_1 structure is a bit big. plus we might want to
425 dynamically allocate it inside lsa_io_q_sam_logon, at some point */
426 q_l.sam_id.auth.id1 = &id1;
427
428 /* grab the challenge... */
429 lsa_io_q_sam_logoff(True, &q_l, data + 0x18, data, 4, 0);
430
431 /* checks and updates credentials. creates reply credentials */
432 deal_with_creds(vuser->dc.sess_key, &(vuser->dc.clnt_cred),
433 &(q_l.sam_id.client.cred), &srv_cred);
434 memcpy(&(vuser->dc.srv_cred), &(vuser->dc.clnt_cred), sizeof(vuser->dc.clnt_cred));
435
436 /* construct reply. always indicate success */
437 *rdata_len = lsa_reply_sam_logoff(&q_l, *rdata + 0x18, *rdata,
438 &srv_cred,
439 0x0);
440 }
441
442
443 static void api_lsa_sam_logon( user_struct *vuser,
444 char *param, char *data,
445 char **rdata, int *rdata_len )
446 {
447 LSA_Q_SAM_LOGON q_l;
448 DOM_ID_INFO_1 id1;
449 LSA_USER_INFO usr_info;
450
451 DOM_CRED srv_cred;
452
453 /* the DOM_ID_INFO_1 structure is a bit big. plus we might want to
454 dynamically allocate it inside lsa_io_q_sam_logon, at some point */
455 q_l.sam_id.auth.id1 = &id1;
456
457 lsa_io_q_sam_logon(True, &q_l, data + 0x18, data, 4, 0);
458
459 /* checks and updates credentials. creates reply credentials */
460 deal_with_creds(vuser->dc.sess_key, &(vuser->dc.clnt_cred),
461 &(q_l.sam_id.client.cred), &srv_cred);
462 memcpy(&(vuser->dc.srv_cred), &(vuser->dc.clnt_cred), sizeof(vuser->dc.clnt_cred));
463
464 usr_info.ptr_user_info = 0;
465
466 if (vuser != NULL)
467 {
468 DOM_GID gids[LSA_MAX_GROUPS];
469 int num_gids;
470 NTTIME dummy_time;
471 pstring logon_script;
472 pstring profile_path;
473 pstring home_dir;
474 pstring home_drive;
475 pstring my_name;
476 pstring my_workgroup;
477 pstring domain_groups;
478 pstring dom_sid;
479 pstring other_sids;
480 fstring tmp;
481 extern pstring myname;
482 uint32 r_uid;
483 uint32 r_gid;
484 UNISTR2 *uni_samlogon_user = &(q_l.sam_id.auth.id1->uni_user_name);
485
486 dummy_time.low = 0xffffffff;
487 dummy_time.high = 0x7fffffff;
488
489 get_myname(myname, NULL);
490
491 pstrcpy(samlogon_user, unistrn2(uni_samlogon_user->buffer,
492 uni_samlogon_user->uni_str_len));
493
494 DEBUG(3,("SAM Logon. Domain:[%s]. User:[%s]\n",
495 lp_workgroup(), samlogon_user));
496
497 /* hack to get standard_sub_basic() to use the sam logon username */
498 sam_logon_in_ssb = True;
499
500 pstrcpy(logon_script, lp_logon_script ());
501 pstrcpy(profile_path, lp_logon_path ());
502 pstrcpy(dom_sid , lp_domain_sid ());
503 pstrcpy(other_sids , lp_domain_other_sids());
504 pstrcpy(my_workgroup, lp_workgroup ());
505
506 pstrcpy(home_drive , lp_logon_drive ());
507 pstrcpy(home_dir , lp_logon_home ());
508
509 /* any additional groups this user is in. e.g power users */
510 pstrcpy(domain_groups, lp_domain_groups());
511
512 /* can only be a user or a guest. cannot be guest _and_ admin */
513 if (user_in_list(samlogon_user, lp_domain_guest_users()))
514 {
515 sprintf(tmp, " %ld/7 ", DOMAIN_GROUP_RID_GUESTS);
516 strcat(domain_groups, tmp);
517
518 DEBUG(3,("domain guest access %s granted\n", tmp));
519 }
520 else
521 {
522 sprintf(tmp, " %ld/7 ", DOMAIN_GROUP_RID_USERS);
523 strcat(domain_groups, tmp);
524
525 DEBUG(3,("domain user access %s granted\n", tmp));
526
527 if (user_in_list(samlogon_user, lp_domain_admin_users()))
528 {
529 sprintf(tmp, " %ld/7 ", DOMAIN_GROUP_RID_ADMINS);
530 strcat(domain_groups, tmp);
531
532 DEBUG(3,("domain admin access %s granted\n", tmp));
533 }
534 }
535
536 num_gids = make_dom_gids(domain_groups, gids);
537
538 sam_logon_in_ssb = False;
539
540 pstrcpy(my_name , myname );
541 strupper(my_name);
542
543 if (name_to_rid(samlogon_user, &r_uid, &r_gid))
544 {
545 make_lsa_user_info(&usr_info,
546
547 &dummy_time, /* logon_time */
548 &dummy_time, /* logoff_time */
549 &dummy_time, /* kickoff_time */
550 &dummy_time, /* pass_last_set_time */
551 &dummy_time, /* pass_can_change_time */
552 &dummy_time, /* pass_must_change_time */
553
554 samlogon_user, /* user_name */
555 vuser->real_name, /* full_name */
556 logon_script, /* logon_script */
557 profile_path, /* profile_path */
558 home_dir, /* home_dir */
559 home_drive, /* dir_drive */
560
561 0, /* logon_count */
562 0, /* bad_pw_count */
563
564 r_uid, /* RID user_id */
565 r_gid, /* RID group_id */
566 num_gids, /* uint32 num_groups */
567 gids, /* DOM_GID *gids */
568 0x20, /* uint32 user_flgs */
569
570 NULL, /* char sess_key[16] */
571
572 my_name , /* char *logon_srv */
573 my_workgroup, /* char *logon_dom */
574
575 dom_sid, /* char *dom_sid */
576 other_sids); /* char *other_sids */
577 }
578 }
579
580 *rdata_len = lsa_reply_sam_logon(&q_l, *rdata + 0x18, *rdata,
581 &srv_cred, &usr_info);
582 }
583
584
585 BOOL api_netlogrpcTNP(int cnum,int uid, char *param,char *data,
586 int mdrcnt,int mprcnt,
587 char **rdata,char **rparam,
588 int *rdata_len,int *rparam_len)
589 {
590 user_struct *vuser;
591
592 RPC_HDR hdr;
593
594 if (data == NULL)
595 {
596 DEBUG(2,("api_netlogrpcTNP: NULL data received\n"));
597 return False;
598 }
599
600 smb_io_rpc_hdr(True, &hdr, data, data, 4, 0);
601
602 if (hdr.pkt_type == RPC_BIND) /* RPC BIND */
603 {
604 DEBUG(4,("netlogon rpc bind %x\n",hdr.pkt_type));
605 LsarpcTNP1(data,rdata,rdata_len);
606 return True;
607 }
608
609 DEBUG(4,("netlogon TransactNamedPipe op %x\n",hdr.opnum));
610
611 if ((vuser = get_valid_user_struct(uid)) == NULL) return False;
612
613 DEBUG(3,("Username of UID %d is %s\n", vuser->uid, vuser->name));
614
615 switch (hdr.opnum)
616 {
617 case LSA_REQCHAL:
618 {
619 DEBUG(3,("LSA_REQCHAL\n"));
620 api_lsa_req_chal(cnum, uid, vuser, param, data, rdata, rdata_len);
621 create_rpc_reply(hdr.call_id, *rdata, *rdata_len);
622 break;
623 }
624
625 case LSA_AUTH2:
626 {
627 DEBUG(3,("LSA_AUTH2\n"));
628 api_lsa_auth_2(vuser, param, data, rdata, rdata_len);
629 create_rpc_reply(hdr.call_id, *rdata, *rdata_len);
630 break;
631 }
632
633 case LSA_SRVPWSET:
634 {
635 DEBUG(3,("LSA_SRVPWSET\n"));
636 api_lsa_srv_pwset(vuser, param, data, rdata, rdata_len);
637 create_rpc_reply(hdr.call_id, *rdata, *rdata_len);
638 break;
639 }
640
641 case LSA_SAMLOGON:
642 {
643 DEBUG(3,("LSA_SAMLOGON\n"));
644 api_lsa_sam_logon(vuser, param, data, rdata, rdata_len);
645 create_rpc_reply(hdr.call_id, *rdata, *rdata_len);
646 break;
647 }
648
649 case LSA_SAMLOGOFF:
650 {
651 DEBUG(3,("LSA_SAMLOGOFF\n"));
652 api_lsa_sam_logoff(vuser, param, data, rdata, rdata_len);
653 create_rpc_reply(hdr.call_id, *rdata, *rdata_len);
654 break;
655 }
656
657 default:
658 {
659 DEBUG(4, ("**** netlogon, unknown code: %lx\n", hdr.opnum));
660 break;
661 }
662 }
663
664 return True;
665 }
666
667 #endif /* NTDOMAIN */