search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Merge branch 'master' of git://git.samba.org/samba
[Samba/ita.git] / librpc / idl / drsuapi.idl
blob9010efc23c902c82d42d1a0b78dd5c4fef204bfd
1 #include "idl_types.h"
2
3 import "security.idl", "misc.idl", "lsa.idl", "samr.idl";
4
5 [
6 uuid("e3514235-4b06-11d1-ab04-00c04fc2dcd2"),
7 version(4.0),
8 endpoint("ncacn_np:[\\pipe\\lsass]","ncacn_np:[\\pipe\\protected_storage]", "ncacn_ip_tcp:", "ncalrpc:"),
9 authservice("ldap"),
10 helpstring("Active Directory Replication"),
11 helper("../librpc/ndr/ndr_drsuapi.h"),
12 pointer_default(unique)
13 ]
14 interface drsuapi
15 {
16 typedef bitmap samr_GroupAttrs samr_GroupAttrs;
17
18 /* see MS-DRSR section 5.39 */
19 typedef [public,bitmap32bit] bitmap {
20 DRSUAPI_DRS_ASYNC_OP = 0x00000001,
21 DRSUAPI_DRS_GETCHG_CHECK = 0x00000002,
22 DRSUAPI_DRS_UPDATE_NOTIFICATION = 0x00000002,
23 DRSUAPI_DRS_ADD_REF = 0x00000004,
24 DRSUAPI_DRS_SYNC_ALL = 0x00000008,
25 DRSUAPI_DRS_DEL_REF = 0x00000008,
26 DRSUAPI_DRS_WRIT_REP = 0x00000010,
27 DRSUAPI_DRS_INIT_SYNC = 0x00000020,
28 DRSUAPI_DRS_PER_SYNC = 0x00000040,
29 DRSUAPI_DRS_MAIL_REP = 0x00000080,
30 DRSUAPI_DRS_ASYNC_REP = 0x00000100,
31 DRSUAPI_DRS_IGNORE_ERROR = 0x00000100,
32 DRSUAPI_DRS_TWOWAY_SYNC = 0x00000200,
33 DRSUAPI_DRS_CRITICAL_ONLY = 0x00000400,
34 DRSUAPI_DRS_GET_ANC = 0x00000800,
35 DRSUAPI_DRS_GET_NC_SIZE = 0x00001000,
36 DRSUAPI_DRS_LOCAL_ONLY = 0x00001000,
37 DRSUAPI_DRS_NONGC_RO_REP = 0x00002000,
38 DRSUAPI_DRS_SYNC_BYNAME = 0x00004000,
39 DRSUAPI_DRS_REF_OK = 0x00004000,
40 DRSUAPI_DRS_FULL_SYNC_NOW = 0x00008000,
41 DRSUAPI_DRS_NO_SOURCE = 0x00008000,
42 DRSUAPI_DRS_FULL_SYNC_IN_PROGRESS = 0x00010000,
43 DRSUAPI_DRS_FULL_SYNC_PACKET = 0x00020000,
44 DRSUAPI_DRS_SYNC_REQUEUE = 0x00040000,
45 DRSUAPI_DRS_SYNC_URGENT = 0x00080000,
46 DRSUAPI_DRS_REF_GCSPN = 0x00100000,
47 DRSUAPI_DRS_NO_DISCARD = 0x00100000,
48 DRSUAPI_DRS_NEVER_SYNCED = 0x00200000,
49 DRSUAPI_DRS_SPECIAL_SECRET_PROCESSING = 0x00400000,
50 DRSUAPI_DRS_INIT_SYNC_NOW = 0x00800000,
51 DRSUAPI_DRS_PREEMPTED = 0x01000000,
52 DRSUAPI_DRS_SYNC_FORCED = 0x02000000,
53 DRSUAPI_DRS_DISABLE_AUTO_SYNC = 0x04000000,
54 DRSUAPI_DRS_DISABLE_PERIODIC_SYNC = 0x08000000,
55 DRSUAPI_DRS_USE_COMPRESSION = 0x10000000,
56 DRSUAPI_DRS_NEVER_NOTIFY = 0x20000000,
57 DRSUAPI_DRS_SYNC_PAS = 0x40000000,
58 DRSUAPI_DRS_GET_ALL_GROUP_MEMBERSHIP = 0x80000000
59 } drsuapi_DrsOptions;
60
61 /*****************/
62 /* Function 0x00 */
63 typedef [bitmap32bit] bitmap {
64 DRSUAPI_SUPPORTED_EXTENSION_BASE = 0x00000001,
65 DRSUAPI_SUPPORTED_EXTENSION_ASYNC_REPLICATION = 0x00000002,
66 DRSUAPI_SUPPORTED_EXTENSION_REMOVEAPI = 0x00000004,
67 DRSUAPI_SUPPORTED_EXTENSION_MOVEREQ_V2 = 0x00000008,
68 DRSUAPI_SUPPORTED_EXTENSION_GETCHG_COMPRESS = 0x00000010,
69 DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V1 = 0x00000020,
70 DRSUAPI_SUPPORTED_EXTENSION_RESTORE_USN_OPTIMIZATION = 0x00000040,
71 DRSUAPI_SUPPORTED_EXTENSION_ADDENTRY = 0x00000080,
72 DRSUAPI_SUPPORTED_EXTENSION_KCC_EXECUTE = 0x00000100,
73 DRSUAPI_SUPPORTED_EXTENSION_ADDENTRY_V2 = 0x00000200,
74 DRSUAPI_SUPPORTED_EXTENSION_LINKED_VALUE_REPLICATION = 0x00000400,
75 DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V2 = 0x00000800,
76 DRSUAPI_SUPPORTED_EXTENSION_INSTANCE_TYPE_NOT_REQ_ON_MOD= 0x00001000,
77 DRSUAPI_SUPPORTED_EXTENSION_CRYPTO_BIND = 0x00002000,
78 DRSUAPI_SUPPORTED_EXTENSION_GET_REPL_INFO = 0x00004000,
79 DRSUAPI_SUPPORTED_EXTENSION_STRONG_ENCRYPTION = 0x00008000,
80 DRSUAPI_SUPPORTED_EXTENSION_DCINFO_V01 = 0x00010000,
81 DRSUAPI_SUPPORTED_EXTENSION_TRANSITIVE_MEMBERSHIP = 0x00020000,
82 DRSUAPI_SUPPORTED_EXTENSION_ADD_SID_HISTORY = 0x00040000,
83 DRSUAPI_SUPPORTED_EXTENSION_POST_BETA3 = 0x00080000,
84 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V5 = 0x00100000,
85 DRSUAPI_SUPPORTED_EXTENSION_GET_MEMBERSHIPS2 = 0x00200000,
86 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V6 = 0x00400000,
87 DRSUAPI_SUPPORTED_EXTENSION_NONDOMAIN_NCS = 0x00800000,
88 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V8 = 0x01000000,
89 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V5 = 0x02000000,
90 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V6 = 0x04000000,
91 /*
92 * the following 3 have the same value
93 * repadmin.exe /bind says that
94 */
95 DRSUAPI_SUPPORTED_EXTENSION_ADDENTRYREPLY_V3 = 0x08000000,
96 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREPLY_V7 = 0x08000000,
97 DRSUAPI_SUPPORTED_EXTENSION_VERIFY_OBJECT = 0x08000000,
98 DRSUAPI_SUPPORTED_EXTENSION_XPRESS_COMPRESS = 0x10000000,
99 DRSUAPI_SUPPORTED_EXTENSION_GETCHGREQ_V10 = 0x20000000,
100 DRSUAPI_SUPPORTED_EXTENSION_RESERVED_PART2 = 0x40000000,
101 DRSUAPI_SUPPORTED_EXTENSION_RESERVED_PART3 = 0x80000000
102 } drsuapi_SupportedExtensions;
103
104 typedef [bitmap32bit] bitmap {
105 DRSUAPI_SUPPORTED_EXTENSION_ADAM = 0x00000001,
106 DRSUAPI_SUPPORTED_EXTENSION_LH_BETA2 = 0x00000002,
107 DRSUAPI_SUPPORTED_EXTENSION_RECYCLE_BIN = 0x00000004
108 } drsuapi_SupportedExtensionsExt;
109
110 /* this is used by w2k */
111 typedef struct {
112 drsuapi_SupportedExtensions supported_extensions;
113 GUID site_guid;
114 uint32 pid;
115 } drsuapi_DsBindInfo24;
116
117 /* this is used by w2k3 */
118 typedef struct {
119 drsuapi_SupportedExtensions supported_extensions;
120 GUID site_guid;
121 uint32 pid;
122 uint32 repl_epoch;
123 } drsuapi_DsBindInfo28;
124
125 /* this is used by w2k8 */
126 typedef struct {
127 drsuapi_SupportedExtensions supported_extensions;
128 GUID site_guid;
129 uint32 pid;
130 uint32 repl_epoch;
131 drsuapi_SupportedExtensionsExt supported_extensions_ext;
132 GUID config_dn_guid;
133 } drsuapi_DsBindInfo48;
134
135 typedef struct {
136 [flag(NDR_REMAINING)] DATA_BLOB info;
137 } drsuapi_DsBindInfoFallBack;
138
139 typedef [nodiscriminant] union {
140 [case(24)][subcontext(4)] drsuapi_DsBindInfo24 info24;
141 [case(28)][subcontext(4)] drsuapi_DsBindInfo28 info28;
142 [case(48)][subcontext(4)] drsuapi_DsBindInfo48 info48;
143 [default][subcontext(4)] drsuapi_DsBindInfoFallBack FallBack;
144 } drsuapi_DsBindInfo;
145
146 /* the drsuapi_DsBindInfoCtr was this before
147 * typedef [flag(NDR_PAHEX)] struct {
148 * [range(1,10000)] uint32 length;
149 * [size_is(length)] uint8 data[];
150 * } drsuapi_DsBindInfo;
151 *
152 * but we don't want the caller to manually decode this blob,
153 * so we're doing it here
154 */
155
156 typedef struct {
157 [range(1,10000)] uint32 length;
158 [switch_is(length)] drsuapi_DsBindInfo info;
159 } drsuapi_DsBindInfoCtr;
160
161 /* this is a magic guid you need to pass to DsBind to make drsuapi_DsWriteAccountSpn() work
162 *
163 * maybe the bind_guid could also be the invocation_id see drsuapi_DsReplicaConnection04
164 */
165 const char *DRSUAPI_DS_BIND_GUID = "e24d201a-4fd6-11d1-a3da-0000f875ae0d";
166 /*
167 * this magic guid are needed to fetch the whole tree with drsuapi_DsGetNCChanges()
168 * as administrator and this values are also used in the destination_dsa_guid field
169 * of drsuapi_DsGetNCChangesReq5/8 and the source_dsa_guid is zero.
170 */
171 const char *DRSUAPI_DS_BIND_GUID_W2K = "6abec3d1-3054-41c8-a362-5a0c5b7d5d71";
172 const char *DRSUAPI_DS_BIND_GUID_W2K3 = "6afab99c-6e26-464a-975f-f58f105218bc";
173
174 [public] WERROR drsuapi_DsBind(
175 [in,unique] GUID *bind_guid,
176 [in,out,unique] drsuapi_DsBindInfoCtr *bind_info,
177 [out] policy_handle *bind_handle
178 );
179
180 /*****************/
181 /* Function 0x01 */
182 WERROR drsuapi_DsUnbind(
183 [in,out] policy_handle *bind_handle
184 );
185
186 /*****************/
187 /* Function 0x02 */
188 typedef [public,gensize] struct {
189 [value(ndr_size_drsuapi_DsReplicaObjectIdentifier(r, ndr->flags)-4)] uint32 __ndr_size;
190 [value(ndr_size_dom_sid28(&sid, ndr->flags))] uint32 __ndr_size_sid;
191 GUID guid;
192 dom_sid28 sid;
193 [value(strlen_m(dn))] uint32 __ndr_size_dn;
194 [charset(UTF16),size_is(__ndr_size_dn+1)] uint16 dn[];
195 } drsuapi_DsReplicaObjectIdentifier;
196
197 typedef struct {
198 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
199 GUID source_dsa_guid;
200 astring *source_dsa_dns; /* Source DSA dns_name in <guid>._msdcs.<domain_dns> form */
201 drsuapi_DrsOptions options;
202 } drsuapi_DsReplicaSyncRequest1;
203
204 typedef [switch_type(uint32)] union {
205 [case(1)] drsuapi_DsReplicaSyncRequest1 req1;
206 } drsuapi_DsReplicaSyncRequest;
207
208 WERROR drsuapi_DsReplicaSync(
209 [in] policy_handle *bind_handle,
210 [in] uint32 level,
211 [in,switch_is(level)] drsuapi_DsReplicaSyncRequest *req
212 );
213
214 /*****************/
215 /* Function 0x03 */
216 typedef [public] struct {
217 hyper tmp_highest_usn; /* updated after each object update */
218 hyper reserved_usn;
219 hyper highest_usn; /* updated after a full replication cycle */
220 } drsuapi_DsReplicaHighWaterMark;
221
222 typedef [public] struct {
223 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
224 hyper highest_usn; /* updated after a full replication cycle */
225 } drsuapi_DsReplicaCursor;
226
227 typedef struct {
228 [value(1)] uint32 version;
229 [value(0)] uint32 reserved1;
230 [range(0,0x100000)] uint32 count;
231 [value(0)] uint32 reserved2;
232 [size_is(count)] drsuapi_DsReplicaCursor cursors[];
233 } drsuapi_DsReplicaCursorCtrEx;
234
235 typedef [flag(NDR_PAHEX),v1_enum] enum {
236 DRSUAPI_EXOP_NONE = 0x00000000,
237 DRSUAPI_EXOP_FSMO_REQ_ROLE = 0x00000001,
238 DRSUAPI_EXOP_FSMO_RID_ALLOC = 0x00000002,
239 DRSUAPI_EXOP_FSMO_RID_REQ_ROLE = 0x00000003,
240 DRSUAPI_EXOP_FSMO_REQ_PDC = 0x00000004,
241 DRSUAPI_EXOP_FSMO_ABANDON_ROLE = 0x00000005,
242 DRSUAPI_EXOP_REPL_OBJ = 0x00000006,
243 DRSUAPI_EXOP_REPL_SECRET = 0x00000007
244 } drsuapi_DsExtendedOperation;
245
246 typedef [flag(NDR_PAHEX),v1_enum] enum {
247 DRSUAPI_EXOP_ERR_NONE = 0x00000000,
248 DRSUAPI_EXOP_ERR_SUCCESS = 0x00000001,
249 DRSUAPI_EXOP_ERR_UNKNOWN_OP = 0x00000002,
250 DRSUAPI_EXOP_ERR_FSMO_NOT_OWNER = 0x00000003,
251 DRSUAPI_EXOP_ERR_UPDATE_ERR = 0x00000004,
252 DRSUAPI_EXOP_ERR_EXCEPTION = 0x00000005,
253 DRSUAPI_EXOP_ERR_UNKNOWN_CALLER = 0x00000006,
254 DRSUAPI_EXOP_ERR_RID_ALLOC = 0x00000007,
255 DRSUAPI_EXOP_ERR_FSMO_OWNER_DELETED = 0x00000008,
256 DRSUAPI_EXOP_ERR_FMSO_PENDING_OP = 0x00000009,
257 DRSUAPI_EXOP_ERR_MISMATCH = 0x0000000A,
258 DRSUAPI_EXOP_ERR_COULDNT_CONTACT = 0x0000000B,
259 DRSUAPI_EXOP_ERR_FSMO_REFUSING_ROLES = 0x0000000C,
260 DRSUAPI_EXOP_ERR_DIR_ERROR = 0x0000000D,
261 DRSUAPI_EXOP_ERR_FSMO_MISSING_SETTINGS = 0x0000000E,
262 DRSUAPI_EXOP_ERR_ACCESS_DENIED = 0x0000000F,
263 DRSUAPI_EXOP_ERR_PARAM_ERROR = 0x00000010
264 } drsuapi_DsExtendedError;
265
266 typedef struct {
267 GUID destination_dsa_guid;
268 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
269 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
270 drsuapi_DsReplicaHighWaterMark highwatermark;
271 drsuapi_DsReplicaCursorCtrEx *uptodateness_vector;
272 drsuapi_DrsOptions replica_flags;
273 uint32 max_object_count; /* w2k3 uses min(133,max(100,max_object_count)) */
274 uint32 max_ndr_size; /* w2k3 seems to ignore this */
275 drsuapi_DsExtendedOperation extended_op;
276 hyper fsmo_info;
277 } drsuapi_DsGetNCChangesRequest5;
278
279 /*
280 * In DRSUAPI all attributes with syntax 2.5.5.2
281 * are identified by uint32 values
282 *
283 * the following table shows the mapping used between the two representations
284 * e.g. - objectClass 'nTDSDSA' has governsID: 1.2.840.113556.1.5.7000.47
285 * and a UINT32-ID of '0x0017002F'.
286 * - so the OID 1.2.840.113556.1.5.7000.47 is splitted into a
287 * OID-prefix: 1.2.840.113556.1.5.7000
288 * and a value: 47 => 0x2F
289 * - the mapping table gives a UINT32-prefix: 0x00170000
290 * - and the UINT32-ID is 0x0017002F = 0x00170000 | 0x2F
291 *
292 * This prefix mapping table is replied in the drsuapi_DsReplicaOIDMapping_Ctr
293 * array. The following are the default mappings of w2k3
294 *
295 * OID-prefix => UINT32-Id prefix
296 *
297 * 2.5.4.* => 0x00000000 (standard attributes RFC2256 core.schema)
298 * 2.5.6.* => 0x00010000 (standard object classes RFC2256 core.schema)
299 * 1.2.840.113556.1.2.* => 0x00020000
300 * 1.2.840.113556.1.3.* => 0x00030000
301 * 2.5.5.* => 0x00080000 (attributeSyntax OID's)
302 * 1.2.840.113556.1.4.* => 0x00090000
303 * 1.2.840.113556.1.5.* => 0x000A0000
304 * 2.16.840.1.113730.3.* => 0x00140000
305 * 0.9.2342.19200300.100.1.* => 0x00150000
306 * 2.16.840.1.113730.3.1.* => 0x00160000
307 * 1.2.840.113556.1.5.7000.* => 0x00170000
308 * 2.5.21.* => 0x00180000 (attrs for SubSchema)
309 * 2.5.18.* => 0x00190000 (createTimeStamp,modifyTimeStamp, SubSchema)
310 * 2.5.20.* => 0x001A0000
311 * 1.3.6.1.4.1.1466.101.119.* => 0x001B0000 (dynamicObject, entryTTL)
312 * 2.16.840.1.113730.3.2.* => 0x001C0000
313 * 1.3.6.1.4.1.250.1.* => 0x001D0000
314 * 1.2.840.113549.1.9.* => 0x001E0000 (unstructuredAddress,unstructuredName)
315 * 0.9.2342.19200300.100.4.* => 0x001F0000
316 *
317 * Here's a list of used 'attributeSyntax' OID's
318 *
319 * 2.5.5.1 => Object(DS-DN) string
320 * struct drsuapi_DsObjectIdentifier3
321 *
322 * 2.5.5.2 => OID-string
323 * => all values are represented as uint32 values in drsuapi
324 * => governsID, attributeID and attributeSyntax returned as OID-Strings in LDAP
325 * => mayContain, mustContain and all other attributes with 2.5.5.2 syntax
326 * are returned as attribute names
327 *
328 * 2.5.5.4 => String(Teletex) case-insensitive string with teletex charset
329 *
330 * 2.5.5.5 => String(IA5) case-sensitive string
331 *
332 * 2.5.5.6 => String(Numeric)
333 * => eg. internationalISDNNumber
334 *
335 * 2.5.5.7 => Object(DN-Binary) B:<byte count>:<bytes>:<object DN>
336 * => e.g. wellKnownObjects
337 *
338 * 2.5.5.8 => BOOL
339 *
340 * 2.5.5.9 => int32
341 *
342 * 2.5.5.10 => DATA_BLOB
343 * => struct GUID
344 *
345 * 2.5.5.11 => LDAP timestring
346 * => NTTIME_1sec
347 *
348 * 2.5.5.12 => String(Unicode) case-insensitive string
349 * => 'standard strings'
350 *
351 * 2.5.5.13 => Object(Presentation-Address) string
352 * => used in objectClass applicationEntity
353 *
354 * 2.5.5.14 => Object(DN-String) S:<char count>:<string>:<object DN>
355 * => not used
356 *
357 * 2.5.5.15 => ntSecurityDescriptor
358 *
359 * 2.5.5.16 => int64
360 *
361 * 2.5.5.17 => dom_sid
362 */
363 typedef [noprint] struct {
364 [range(0,10000)] uint32 length;
365 [size_is(length)] uint8 *binary_oid; /* partial-binary-OID encoded with asn1_write_partial_OID_String() */
366 } drsuapi_DsReplicaOID;
367
368 typedef struct {
369 uint32 id_prefix;
370 drsuapi_DsReplicaOID oid;
371 } drsuapi_DsReplicaOIDMapping;
372
373 typedef [public] struct {
374 [range(0,0x100000)] uint32 num_mappings;
375 [size_is(num_mappings)] drsuapi_DsReplicaOIDMapping *mappings;
376 } drsuapi_DsReplicaOIDMapping_Ctr;
377
378 typedef [flag(NDR_PAHEX),v1_enum] enum {
379 DRSUAPI_OBJECTCLASS_top = 0x00010000,
380 DRSUAPI_OBJECTCLASS_classSchema = 0x0003000d,
381 DRSUAPI_OBJECTCLASS_attributeSchema = 0x0003000e
382 } drsuapi_DsObjectClassId;
383
384 typedef [flag(NDR_PAHEX),v1_enum,public] enum {
385 DRSUAPI_ATTRIBUTE_objectClass = 0x00000000,
386 DRSUAPI_ATTRIBUTE_cn = 0x00000003,
387 DRSUAPI_ATTRIBUTE_ou = 0x0000000b,
388 DRSUAPI_ATTRIBUTE_description = 0x0000000d,
389 DRSUAPI_ATTRIBUTE_member = 0x0000001f,
390 DRSUAPI_ATTRIBUTE_instanceType = 0x00020001,
391 DRSUAPI_ATTRIBUTE_whenCreated = 0x00020002,
392 DRSUAPI_ATTRIBUTE_possSuperiors = 0x00020008,
393 DRSUAPI_ATTRIBUTE_displayName = 0x0002000d,
394 DRSUAPI_ATTRIBUTE_hasMasterNCs = 0x0002000e,
395 DRSUAPI_ATTRIBUTE_subClassOf = 0x00020015,
396 DRSUAPI_ATTRIBUTE_governsID = 0x00020016,
397 DRSUAPI_ATTRIBUTE_mustContain = 0x00020018,
398 DRSUAPI_ATTRIBUTE_mayContain = 0x00020019,
399 DRSUAPI_ATTRIBUTE_rDNAttId = 0x0002001A,
400 DRSUAPI_ATTRIBUTE_attributeID = 0x0002001e,
401 DRSUAPI_ATTRIBUTE_attributeSyntax = 0x00020020,
402 DRSUAPI_ATTRIBUTE_isSingleValued = 0x00020021,
403 DRSUAPI_ATTRIBUTE_rangeLower = 0x00020022,
404 DRSUAPI_ATTRIBUTE_rangeUpper = 0x00020023,
405 DRSUAPI_ATTRIBUTE_dMDLocation = 0x00020024,
406 DRSUAPI_ATTRIBUTE_isDeleted = 0x00020030,
407 DRSUAPI_ATTRIBUTE_objectVersion = 0x0002004c,
408 DRSUAPI_ATTRIBUTE_invocationId = 0x00020073,
409 DRSUAPI_ATTRIBUTE_showInAdvancedViewOnly = 0x000200a9,
410 DRSUAPI_ATTRIBUTE_adminDisplayName = 0x000200c2,
411 DRSUAPI_ATTRIBUTE_adminDescription = 0x000200e2,
412 DRSUAPI_ATTRIBUTE_oMSyntax = 0x000200e7,
413 DRSUAPI_ATTRIBUTE_ntSecurityDescriptor = 0x00020119,
414 DRSUAPI_ATTRIBUTE_searchFlags = 0x0002014e,
415 DRSUAPI_ATTRIBUTE_auxiliaryClass = 0x0002015f,
416 DRSUAPI_ATTRIBUTE_lDAPDisplayName = 0x000201cc,
417 DRSUAPI_ATTRIBUTE_name = 0x00090001,
418 DRSUAPI_ATTRIBUTE_userAccountControl = 0x00090008,
419 DRSUAPI_ATTRIBUTE_codePage = 0x00090010,
420 DRSUAPI_ATTRIBUTE_countryCode = 0x00090019,
421 DRSUAPI_ATTRIBUTE_currentValue = 0x0009001b,
422 DRSUAPI_ATTRIBUTE_homeDirectory = 0x0009002c,
423 DRSUAPI_ATTRIBUTE_homeDrive = 0x0009002d,
424 DRSUAPI_ATTRIBUTE_dBCSPwd = 0x00090037,/* lmPwdHash */
425 DRSUAPI_ATTRIBUTE_scriptPath = 0x0009003e,
426 DRSUAPI_ATTRIBUTE_logonHours = 0x00090040,
427 DRSUAPI_ATTRIBUTE_userWorkstations = 0x00090056,
428 DRSUAPI_ATTRIBUTE_unicodePwd = 0x0009005a,/* ntPwdHash */
429 DRSUAPI_ATTRIBUTE_ntPwdHistory = 0x0009005e,
430 DRSUAPI_ATTRIBUTE_pwdLastSet = 0x00090060,
431 DRSUAPI_ATTRIBUTE_primaryGroupID = 0x00090062,
432 DRSUAPI_ATTRIBUTE_priorValue = 0x00090064,
433 DRSUAPI_ATTRIBUTE_supplementalCredentials = 0x0009007d,
434 DRSUAPI_ATTRIBUTE_trustAuthIncoming = 0x00090081,
435 DRSUAPI_ATTRIBUTE_trustAuthOutgoing = 0x00090087,
436 DRSUAPI_ATTRIBUTE_profilePath = 0x0009008b,
437 DRSUAPI_ATTRIBUTE_objectSid = 0x00090092,
438 DRSUAPI_ATTRIBUTE_schemaIDGUID = 0x00090094,
439 DRSUAPI_ATTRIBUTE_comment = 0x0009009C,/* User-Comment */
440 DRSUAPI_ATTRIBUTE_accountExpires = 0x0009009f,
441 DRSUAPI_ATTRIBUTE_lmPwdHistory = 0x000900a0,
442 DRSUAPI_ATTRIBUTE_systemPossSuperiors = 0x000900c3,
443 DRSUAPI_ATTRIBUTE_systemMayContain = 0x000900c4,
444 DRSUAPI_ATTRIBUTE_systemMustContain = 0x000900c5,
445 DRSUAPI_ATTRIBUTE_systemAuxiliaryClass = 0x000900c6,
446 DRSUAPI_ATTRIBUTE_sAMAccountName = 0x000900dd,
447 DRSUAPI_ATTRIBUTE_sAMAccountType = 0x0009012e,
448 DRSUAPI_ATTRIBUTE_options = 0x00090133,
449 DRSUAPI_ATTRIBUTE_fSMORoleOwner = 0x00090171,
450 DRSUAPI_ATTRIBUTE_systemFlags = 0x00090177,
451 DRSUAPI_ATTRIBUTE_serverReference = 0x00090203,
452 DRSUAPI_ATTRIBUTE_serverReferenceBL = 0x00090204,
453 DRSUAPI_ATTRIBUTE_initialAuthIncoming = 0x0009021b,
454 DRSUAPI_ATTRIBUTE_initialAuthOutgoing = 0x0009021c,
455 DRSUAPI_ATTRIBUTE_wellKnownObjects = 0x0009026a,
456 DRSUAPI_ATTRIBUTE_dNSHostName = 0x0009026b,
457 DRSUAPI_ATTRIBUTE_isMemberOfPartialAttributeSet = 0x0009027f,
458 DRSUAPI_ATTRIBUTE_userPrincipalName = 0x00090290,
459 DRSUAPI_ATTRIBUTE_groupType = 0x000902ee,
460 DRSUAPI_ATTRIBUTE_servicePrincipalName = 0x00090303,
461 DRSUAPI_ATTRIBUTE_lastKnownParent = 0x0009030d,
462 DRSUAPI_ATTRIBUTE_objectCategory = 0x0009030e,
463 DRSUAPI_ATTRIBUTE_gPLink = 0x0009037b,
464 DRSUAPI_ATTRIBUTE_transportAddressAttribute = 0x0009037f,
465 DRSUAPI_ATTRIBUTE_msDS_Behavior_Version = 0x000905b3,
466 DRSUAPI_ATTRIBUTE_msDS_KeyVersionNumber = 0x000906f6,
467 DRSUAPI_ATTRIBUTE_msDS_HasDomainNCs = 0x0009071c,
468 DRSUAPI_ATTRIBUTE_msDS_hasMasterNCs = 0x0009072c,
469 DRSUAPI_ATTRIBUTE_isRecycled = 0x0009080a,
470 DRSUAPI_ATTRIBUTE_NONE = 0xFFFFFFFF
471 } drsuapi_DsAttributeId;
472
473 typedef struct {
474 [value(1)] uint32 version;
475 [value(0)] uint32 reserved1;
476 [range(1,0x100000)] uint32 num_attids;
477 [size_is(num_attids)] drsuapi_DsAttributeId attids[];
478 } drsuapi_DsPartialAttributeSet;
479
480 typedef struct {
481 GUID destination_dsa_guid;
482 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
483 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
484 drsuapi_DsReplicaHighWaterMark highwatermark;
485 drsuapi_DsReplicaCursorCtrEx *uptodateness_vector;
486 drsuapi_DrsOptions replica_flags;
487 uint32 max_object_count; /* w2k3 uses min(133,max(100,max_object_count)) */
488 uint32 max_ndr_size; /* w2k3 seems to ignore this */
489 drsuapi_DsExtendedOperation extended_op;
490 hyper fsmo_info;
491 drsuapi_DsPartialAttributeSet *partial_attribute_set;
492 drsuapi_DsPartialAttributeSet *partial_attribute_set_ex;
493 drsuapi_DsReplicaOIDMapping_Ctr mapping_ctr;
494 } drsuapi_DsGetNCChangesRequest8;
495
496 typedef struct {
497 GUID destination_dsa_guid;
498 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
499 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
500 drsuapi_DsReplicaHighWaterMark highwatermark;
501 drsuapi_DsReplicaCursorCtrEx *uptodateness_vector;
502 drsuapi_DrsOptions replica_flags;
503 uint32 max_object_count; /* w2k3 uses min(133,max(100,max_object_count)) */
504 uint32 max_ndr_size; /* w2k3 seems to ignore this */
505 drsuapi_DsExtendedOperation extended_op;
506 hyper fsmo_info;
507 drsuapi_DsPartialAttributeSet *partial_attribute_set;
508 drsuapi_DsPartialAttributeSet *partial_attribute_set_ex;
509 drsuapi_DsReplicaOIDMapping_Ctr mapping_ctr;
510 uint32 more_flags;
511 } drsuapi_DsGetNCChangesRequest10;
512
513 typedef [switch_type(uint32)] union {
514 [case(5)] drsuapi_DsGetNCChangesRequest5 req5;
515 [case(8)] drsuapi_DsGetNCChangesRequest8 req8;
516 [case(10)] drsuapi_DsGetNCChangesRequest10 req10;
517 } drsuapi_DsGetNCChangesRequest;
518
519 typedef [public] struct {
520 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
521 hyper highest_usn; /* updated after a full replication cycle */
522 NTTIME last_sync_success;
523 } drsuapi_DsReplicaCursor2;
524
525 typedef struct {
526 [value(2)] uint32 version;
527 [value(0)] uint32 reserved1;
528 [range(0,0x100000)] uint32 count;
529 [value(0)] uint32 reserved2;
530 [size_is(count)] drsuapi_DsReplicaCursor2 cursors[];
531 } drsuapi_DsReplicaCursor2CtrEx;
532
533 /* Generic DATA_BLOB values */
534 typedef struct {
535 [range(0,10485760),value(ndr_size_DATA_BLOB(0,blob,0))] uint32 __ndr_size;
536 DATA_BLOB *blob;
537 } drsuapi_DsAttributeValue;
538
539 typedef struct {
540 [range(0,10485760)] uint32 num_values;
541 [size_is(num_values)] drsuapi_DsAttributeValue *values;
542 } drsuapi_DsAttributeValueCtr;
543
544 /* DN String values */
545 typedef [public,gensize] struct {
546 [value(ndr_size_drsuapi_DsReplicaObjectIdentifier3(r, ndr->flags))] uint32 __ndr_size;
547 [value(ndr_size_dom_sid28(&sid,ndr->flags))] uint32 __ndr_size_sid;
548 GUID guid;
549 dom_sid28 sid;
550 [value(strlen_m(dn))] uint32 __ndr_size_dn;
551 [charset(UTF16)] uint16 dn[__ndr_size_dn+1];
552 } drsuapi_DsReplicaObjectIdentifier3;
553
554 typedef [public] struct {
555 [value(ndr_size_drsuapi_DsReplicaObjectIdentifier3Binary_without_Binary(r, ndr->flags))] uint32 __ndr_size;
556 [value(ndr_size_dom_sid28(&sid,ndr->flags))] uint32 __ndr_size_sid;
557 GUID guid;
558 dom_sid28 sid;
559 [value(strlen_m(dn))] uint32 __ndr_size_dn;
560 [charset(UTF16)] uint16 dn[__ndr_size_dn+1];
561 [value(binary.length + 4)] uint32 __ndr_size_binary;
562 [flag(NDR_REMAINING)] DATA_BLOB binary;
563 } drsuapi_DsReplicaObjectIdentifier3Binary;
564
565 typedef [public,noprint] struct {
566 drsuapi_DsAttributeId attid;
567 drsuapi_DsAttributeValueCtr value_ctr;
568 } drsuapi_DsReplicaAttribute;
569
570 typedef struct {
571 [range(0,1048576)] uint32 num_attributes;
572 [size_is(num_attributes)] drsuapi_DsReplicaAttribute *attributes;
573 } drsuapi_DsReplicaAttributeCtr;
574
575 typedef [public] bitmap {
576 DRSUAPI_DS_REPLICA_OBJECT_FROM_MASTER = 0x00000001,
577 DRSUAPI_DS_REPLICA_OBJECT_DYNAMIC = 0x00000002,
578 DRSUAPI_DS_REPLICA_OBJECT_REMOTE_MODIFY = 0x00010000
579 } drsuapi_DsReplicaObjectFlags;
580
581 typedef [public] struct {
582 drsuapi_DsReplicaObjectIdentifier *identifier;
583 drsuapi_DsReplicaObjectFlags flags;
584 drsuapi_DsReplicaAttributeCtr attribute_ctr;
585 } drsuapi_DsReplicaObject;
586
587 typedef struct {
588 uint32 version;
589 NTTIME_1sec originating_change_time;
590 GUID originating_invocation_id;
591 hyper originating_usn;
592 } drsuapi_DsReplicaMetaData;
593
594 typedef [public] struct {
595 [range(0,1048576)] uint32 count;
596 [size_is(count)] drsuapi_DsReplicaMetaData meta_data[];
597 } drsuapi_DsReplicaMetaDataCtr;
598
599 typedef [public,noprint] struct {
600 drsuapi_DsReplicaObjectListItemEx *next_object;
601 drsuapi_DsReplicaObject object;
602 boolean32 is_nc_prefix;
603 GUID *parent_object_guid;
604 drsuapi_DsReplicaMetaDataCtr *meta_data_ctr;
605 } drsuapi_DsReplicaObjectListItemEx;
606
607 typedef [public,gensize] struct {
608 GUID source_dsa_guid; /* the 'objectGUID' field of the CN=NTDS Settings object */
609 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
610 drsuapi_DsReplicaObjectIdentifier *naming_context;
611 drsuapi_DsReplicaHighWaterMark old_highwatermark;
612 drsuapi_DsReplicaHighWaterMark new_highwatermark;
613 drsuapi_DsReplicaCursorCtrEx *uptodateness_vector;
614 drsuapi_DsReplicaOIDMapping_Ctr mapping_ctr;
615 drsuapi_DsExtendedError extended_ret; /* w2k sends the nc_object_count value here */
616 uint32 object_count;
617 /* this +55 is sometimes +56, so I don't know where this comes from... --metze */
618 [value(ndr_size_drsuapi_DsGetNCChangesCtr1(r,ndr->flags)+55)] uint32 __ndr_size;
619 drsuapi_DsReplicaObjectListItemEx *first_object;
620 boolean32 more_data;
621 } drsuapi_DsGetNCChangesCtr1;
622
623 /*
624 * if the DRSUAPI_DS_LINKED_ATTRIBUTE_FLAG_ACTIVE flag
625 * isn't there it means the value is deleted
626 */
627 typedef [public] bitmap {
628 DRSUAPI_DS_LINKED_ATTRIBUTE_FLAG_ACTIVE = 0x00000001
629 } drsuapi_DsLinkedAttributeFlags;
630
631 typedef [public] struct {
632 drsuapi_DsReplicaObjectIdentifier *identifier;
633 drsuapi_DsAttributeId attid;
634 drsuapi_DsAttributeValue value;
635 drsuapi_DsLinkedAttributeFlags flags;
636 NTTIME_1sec originating_add_time;
637 drsuapi_DsReplicaMetaData meta_data;
638 } drsuapi_DsReplicaLinkedAttribute;
639
640 /* [MS-DRSR] section 4.1.10.2.11 DRS_MSG_GETCHGREPLY_V6 */
641 typedef [public,gensize] struct {
642 GUID source_dsa_guid; /* the 'objectGUID' field of the CN=NTDS Settings object */
643 GUID source_dsa_invocation_id; /* the 'invocationId' field of the CN=NTDS Settings object */
644 drsuapi_DsReplicaObjectIdentifier *naming_context;
645 drsuapi_DsReplicaHighWaterMark old_highwatermark;
646 drsuapi_DsReplicaHighWaterMark new_highwatermark;
647 drsuapi_DsReplicaCursor2CtrEx *uptodateness_vector;
648 drsuapi_DsReplicaOIDMapping_Ctr mapping_ctr;
649 drsuapi_DsExtendedError extended_ret;
650 uint32 object_count;
651 /* this +55 is sometimes +56, so I don't know where this comes from... --metze */
652 [value(ndr_size_drsuapi_DsGetNCChangesCtr6(r,ndr->flags)+55)] uint32 __ndr_size;
653 drsuapi_DsReplicaObjectListItemEx *first_object;
654 boolean32 more_data;
655 uint32 nc_object_count; /* estimated amount of objects in the whole NC */
656 uint32 nc_linked_attributes_count; /* estimated amount of linked values in the whole NC */
657 [range(0,1048576)] uint32 linked_attributes_count;
658 [size_is(linked_attributes_count)] drsuapi_DsReplicaLinkedAttribute *linked_attributes;
659 WERROR drs_error;
660 } drsuapi_DsGetNCChangesCtr6;
661
662 typedef [public] struct {
663 [subcontext(0xFFFFFC01)] drsuapi_DsGetNCChangesCtr1 ctr1;
664 } drsuapi_DsGetNCChangesCtr1TS;
665
666 typedef [public] struct {
667 [subcontext(0xFFFFFC01)] drsuapi_DsGetNCChangesCtr6 ctr6;
668 } drsuapi_DsGetNCChangesCtr6TS;
669
670 typedef [nopush] struct {
671 uint32 decompressed_length;
672 uint32 compressed_length;
673 [subcontext(4),subcontext_size(compressed_length),
674 compression(NDR_COMPRESSION_MSZIP,compressed_length,decompressed_length)]
675 drsuapi_DsGetNCChangesCtr1TS *ts;
676 } drsuapi_DsGetNCChangesMSZIPCtr1;
677
678 typedef [nopush] struct {
679 uint32 decompressed_length;
680 uint32 compressed_length;
681 [subcontext(4),subcontext_size(compressed_length),
682 compression(NDR_COMPRESSION_MSZIP,compressed_length,decompressed_length)]
683 drsuapi_DsGetNCChangesCtr6TS *ts;
684 } drsuapi_DsGetNCChangesMSZIPCtr6;
685
686 typedef [nopush] struct {
687 uint32 decompressed_length;
688 uint32 compressed_length;
689 [subcontext(4),subcontext_size(compressed_length),
690 compression(NDR_COMPRESSION_XPRESS,compressed_length,decompressed_length)]
691 drsuapi_DsGetNCChangesCtr1TS *ts;
692 } drsuapi_DsGetNCChangesXPRESSCtr1;
693
694 typedef [nopush] struct {
695 uint32 decompressed_length;
696 uint32 compressed_length;
697 [subcontext(4),subcontext_size(compressed_length),
698 compression(NDR_COMPRESSION_XPRESS,compressed_length,decompressed_length)]
699 drsuapi_DsGetNCChangesCtr6TS *ts;
700 } drsuapi_DsGetNCChangesXPRESSCtr6;
701
702 typedef [enum16bit] enum {
703 DRSUAPI_COMPRESSION_TYPE_MSZIP = 2,
704 DRSUAPI_COMPRESSION_TYPE_XPRESS = 3
705 } drsuapi_DsGetNCChangesCompressionType;
706
707 typedef [nodiscriminant,flag(NDR_PAHEX)] union {
708 [case(1|(DRSUAPI_COMPRESSION_TYPE_MSZIP<<16))] drsuapi_DsGetNCChangesMSZIPCtr1 mszip1;
709 [case(6|(DRSUAPI_COMPRESSION_TYPE_MSZIP<<16))] drsuapi_DsGetNCChangesMSZIPCtr6 mszip6;
710 [case(1|(DRSUAPI_COMPRESSION_TYPE_XPRESS<<16))] drsuapi_DsGetNCChangesXPRESSCtr1 xpress1;
711 [case(6|(DRSUAPI_COMPRESSION_TYPE_XPRESS<<16))] drsuapi_DsGetNCChangesXPRESSCtr6 xpress6;
712 } drsuapi_DsGetNCChangesCompressedCtr;
713
714 typedef struct {
715 drsuapi_DsGetNCChangesMSZIPCtr1 mszip1;
716 } drsuapi_DsGetNCChangesCtr2;
717
718 typedef struct {
719 [range(0,6)] uint32 level;
720 [range(2,3)] drsuapi_DsGetNCChangesCompressionType type;
721 [switch_is(level | (type<<16))] drsuapi_DsGetNCChangesCompressedCtr ctr;
722 } drsuapi_DsGetNCChangesCtr7;
723
724 typedef [switch_type(uint32)] union {
725 [case(1)] drsuapi_DsGetNCChangesCtr1 ctr1;
726 [case(2)] drsuapi_DsGetNCChangesCtr2 ctr2;
727 [case(6)] drsuapi_DsGetNCChangesCtr6 ctr6;
728 [case(7)] drsuapi_DsGetNCChangesCtr7 ctr7;
729 } drsuapi_DsGetNCChangesCtr;
730
731 WERROR drsuapi_DsGetNCChanges(
732 [in] policy_handle *bind_handle,
733 [in] uint32 level,
734 [in,ref,switch_is(level)] drsuapi_DsGetNCChangesRequest *req,
735 [out,ref] uint32 *level_out,
736 [out,ref,switch_is(*level_out)] drsuapi_DsGetNCChangesCtr *ctr
737 );
738
739 /*****************/
740 /* Function 0x04 */
741 /* [MS-DRSR] 4.1.26 */
742
743 typedef struct {
744 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
745 [ref,charset(DOS),string] uint8 *dest_dsa_dns_name;
746 GUID dest_dsa_guid;
747 drsuapi_DrsOptions options;
748 } drsuapi_DsReplicaUpdateRefsRequest1;
749
750 typedef [switch_type(uint32)] union {
751 [case(1)] drsuapi_DsReplicaUpdateRefsRequest1 req1;
752 } drsuapi_DsReplicaUpdateRefsRequest;
753
754 WERROR drsuapi_DsReplicaUpdateRefs(
755 [in] policy_handle *bind_handle,
756 [in] uint32 level,
757 [in,switch_is(level)] drsuapi_DsReplicaUpdateRefsRequest req
758 );
759
760 /*****************/
761 /* Function 0x05 */
762
763 typedef struct {
764 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
765 [charset(UTF16),string] uint16 *source_dsa_address;
766 uint8 schedule[84];
767 drsuapi_DrsOptions options;
768 } drsuapi_DsReplicaAddRequest1;
769
770 typedef struct {
771 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
772 drsuapi_DsReplicaObjectIdentifier *source_dsa_dn;
773 drsuapi_DsReplicaObjectIdentifier *transport_dn;
774 [charset(UTF16),string] uint16 *source_dsa_address;
775 uint8 schedule[84];
776 drsuapi_DrsOptions options;
777 } drsuapi_DsReplicaAddRequest2;
778
779 typedef [switch_type(uint32)] union {
780 [case(1)] drsuapi_DsReplicaAddRequest1 req1;
781 [case(2)] drsuapi_DsReplicaAddRequest2 req2;
782 } drsuapi_DsReplicaAddRequest;
783
784 WERROR drsuapi_DsReplicaAdd(
785 [in] policy_handle *bind_handle,
786 [in] uint32 level,
787 [in,switch_is(level)] drsuapi_DsReplicaAddRequest req
788 );
789
790
791 /*****************/
792 /* Function 0x06 */
793 typedef struct {
794 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
795 [charset(UTF16),string] uint16 *source_dsa_address;
796 drsuapi_DrsOptions options;
797 } drsuapi_DsReplicaDelRequest1;
798
799 typedef [switch_type(uint32)] union {
800 [case(1)] drsuapi_DsReplicaDelRequest1 req1;
801 } drsuapi_DsReplicaDelRequest;
802
803 WERROR drsuapi_DsReplicaDel(
804 [in] policy_handle *bind_handle,
805 [in] uint32 level,
806 [in,switch_is(level)] drsuapi_DsReplicaDelRequest req
807 );
808
809 /*****************/
810 /* Function 0x07 */
811
812 typedef struct {
813 [ref] drsuapi_DsReplicaObjectIdentifier *naming_context;
814 GUID source_dra;
815 [charset(UTF16),string] uint16 *source_dra_address;
816 uint8 schedule[84];
817 uint32 replica_flags;
818 uint32 modify_fields;
819 drsuapi_DrsOptions options;
820 } drsuapi_DsReplicaModRequest1;
821
822 typedef [switch_type(uint32)] union {
823 [case(1)] drsuapi_DsReplicaModRequest1 req1;
824 } drsuapi_DsReplicaModRequest;
825
826 WERROR drsuapi_DsReplicaMod(
827 [in] policy_handle *bind_handle,
828 [in] uint32 level,
829 [in,switch_is(level)] drsuapi_DsReplicaModRequest req
830 );
831
832 /*****************/
833 /* Function 0x08 */
834 [todo] WERROR DRSUAPI_VERIFY_NAMES();
835
836 /*****************/
837 /* Function 0x09 */
838
839 /* how are type 4 and 7 different from 2 and 3 ? */
840 typedef [v1_enum] enum {
841 DRSUAPI_DS_MEMBERSHIP_TYPE_UNIVERSAL_AND_DOMAIN_GROUPS = 1,
842 DRSUAPI_DS_MEMBERSHIP_TYPE_DOMAIN_LOCAL_GROUPS = 2,
843 DRSUAPI_DS_MEMBERSHIP_TYPE_DOMAIN_GROUPS = 3,
844 DRSUAPI_DS_MEMBERSHIP_TYPE_DOMAIN_LOCAL_GROUPS2 = 4,
845 DRSUAPI_DS_MEMBERSHIP_TYPE_UNIVERSAL_GROUPS = 5,
846 DRSUAPI_DS_MEMBERSHIP_TYPE_GROUPMEMBERS = 6,
847 DRSUAPI_DS_MEMBERSHIP_TYPE_DOMAIN_GROUPS2 = 7
848 } drsuapi_DsMembershipType;
849
850 typedef struct {
851 NTSTATUS status;
852 [range(0,10000)] uint32 num_memberships;
853 [range(0,10000)] uint32 num_sids;
854 [size_is(num_memberships)] drsuapi_DsReplicaObjectIdentifier **info_array;
855 [size_is(num_memberships)] samr_GroupAttrs *group_attrs;
856 [size_is(num_sids)] dom_sid28 **sids;
857 } drsuapi_DsGetMembershipsCtr1;
858
859 typedef [switch_type(uint32)] union {
860 [case(1)] drsuapi_DsGetMembershipsCtr1 ctr1;
861 } drsuapi_DsGetMembershipsCtr;
862
863 const int DRSUAPI_DS_MEMBERSHIP_FLAG_GROUP_ATTR = 0x1;
864
865 typedef struct {
866 [range(1,10000)] uint32 count;
867 [size_is(count)] drsuapi_DsReplicaObjectIdentifier **info_array;
868 uint32 flags;
869 [range(1,7)] drsuapi_DsMembershipType type;
870 drsuapi_DsReplicaObjectIdentifier *domain;
871 } drsuapi_DsGetMembershipsRequest1;
872
873 typedef [switch_type(uint32)] union {
874 [case(1)] drsuapi_DsGetMembershipsRequest1 req1;
875 } drsuapi_DsGetMembershipsRequest;
876
877 WERROR drsuapi_DsGetMemberships(
878 [in] policy_handle *bind_handle,
879 [in] uint32 level,
880 [in,ref] [switch_is(level)] drsuapi_DsGetMembershipsRequest *req,
881 [out,ref] uint32 *level_out,
882 [out,ref] [switch_is(*level_out)] drsuapi_DsGetMembershipsCtr *ctr
883 );
884
885 /*****************/
886 /* Function 0x0a */
887 [todo] WERROR DRSUAPI_INTER_DOMAIN_MOVE();
888
889 /*****************/
890 /* Function 0x0b */
891 typedef [bitmap32bit] bitmap {
892 DRSUAPI_NT4_CHANGELOG_GET_CHANGELOG = 0x00000001,
893 DRSUAPI_NT4_CHANGELOG_GET_SERIAL_NUMBERS = 0x00000002
894 } drsuapi_DsGetNT4ChangeLogFlags;
895
896 typedef struct {
897 drsuapi_DsGetNT4ChangeLogFlags flags;
898 uint32 preferred_maximum_length;
899 [range(0,0x00A00000)] uint32 restart_length;
900 [size_is(restart_length)] uint8 *restart_data;
901 } drsuapi_DsGetNT4ChangeLogRequest1;
902
903 typedef [switch_type(uint32)] union {
904 [case(1)] drsuapi_DsGetNT4ChangeLogRequest1 req1;
905 } drsuapi_DsGetNT4ChangeLogRequest;
906
907 typedef struct {
908 [range(0,0x00A00000)] uint32 restart_length;
909 [range(0,0x00A00000)] uint32 log_length;
910 hyper sam_serial_number;
911 NTTIME sam_creation_time;
912 hyper builtin_serial_number;
913 NTTIME builtin_creation_time;
914 hyper lsa_serial_number;
915 NTTIME lsa_creation_time;
916 NTSTATUS status;
917 [size_is(restart_length)] uint8 *restart_data;
918 [size_is(log_length)] uint8 *log_data;
919 } drsuapi_DsGetNT4ChangeLogInfo1;
920
921 typedef [switch_type(uint32)] union {
922 [case(1)] drsuapi_DsGetNT4ChangeLogInfo1 info1;
923 } drsuapi_DsGetNT4ChangeLogInfo;
924
925 WERROR drsuapi_DsGetNT4ChangeLog(
926 [in] policy_handle *bind_handle,
927 [in] uint32 level,
928 [in,ref] [switch_is(level)] drsuapi_DsGetNT4ChangeLogRequest *req,
929 [out,ref] uint32 *level_out,
930 [out,ref] [switch_is(*level_out)] drsuapi_DsGetNT4ChangeLogInfo *info
931 );
932
933 /*****************/
934 /* Function 0x0c */
935 typedef [v1_enum] enum {
936 DRSUAPI_DS_NAME_STATUS_OK = 0,
937 DRSUAPI_DS_NAME_STATUS_RESOLVE_ERROR = 1,
938 DRSUAPI_DS_NAME_STATUS_NOT_FOUND = 2,
939 DRSUAPI_DS_NAME_STATUS_NOT_UNIQUE = 3,
940 DRSUAPI_DS_NAME_STATUS_NO_MAPPING = 4,
941 DRSUAPI_DS_NAME_STATUS_DOMAIN_ONLY = 5,
942 DRSUAPI_DS_NAME_STATUS_NO_SYNTACTICAL_MAPPING = 6,
943 DRSUAPI_DS_NAME_STATUS_TRUST_REFERRAL = 7
944 } drsuapi_DsNameStatus;
945
946 typedef [v1_enum] enum {
947 DRSUAPI_DS_NAME_FLAG_NO_FLAGS = 0x0,
948 DRSUAPI_DS_NAME_FLAG_SYNTACTICAL_ONLY = 0x1,
949 DRSUAPI_DS_NAME_FLAG_EVAL_AT_DC = 0x2,
950 DRSUAPI_DS_NAME_FLAG_GCVERIFY = 0x4,
951 DRSUAPI_DS_NAME_FLAG_TRUST_REFERRAL = 0x8
952 } drsuapi_DsNameFlags;
953
954 typedef [v1_enum] enum {
955 DRSUAPI_DS_NAME_FORMAT_UNKNOWN = 0,
956 DRSUAPI_DS_NAME_FORMAT_FQDN_1779 = 1,
957 DRSUAPI_DS_NAME_FORMAT_NT4_ACCOUNT = 2,
958 DRSUAPI_DS_NAME_FORMAT_DISPLAY = 3,
959 DRSUAPI_DS_NAME_FORMAT_GUID = 6,
960 DRSUAPI_DS_NAME_FORMAT_CANONICAL = 7,
961 DRSUAPI_DS_NAME_FORMAT_USER_PRINCIPAL = 8,
962 DRSUAPI_DS_NAME_FORMAT_CANONICAL_EX = 9,
963 DRSUAPI_DS_NAME_FORMAT_SERVICE_PRINCIPAL = 10,
964 DRSUAPI_DS_NAME_FORMAT_SID_OR_SID_HISTORY = 11,
965 DRSUAPI_DS_NAME_FORMAT_DNS_DOMAIN = 12
966 } drsuapi_DsNameFormat;
967
968 typedef struct {
969 [string,charset(UTF16)] uint16 *str;
970 } drsuapi_DsNameString;
971
972 typedef struct {
973 uint32 codepage; /* 0x000004e4 - 1252 is german codepage*/
974 uint32 language; /* 0x00000407 - german language ID*/
975 drsuapi_DsNameFlags format_flags;
976 drsuapi_DsNameFormat format_offered;
977 drsuapi_DsNameFormat format_desired;
978 [range(1,10000)] uint32 count;
979 [size_is(count)] drsuapi_DsNameString *names;
980 } drsuapi_DsNameRequest1;
981
982 typedef [switch_type(uint32)] union {
983 [case(1)] drsuapi_DsNameRequest1 req1;
984 } drsuapi_DsNameRequest;
985
986 typedef struct {
987 drsuapi_DsNameStatus status;
988 [charset(UTF16),string] uint16 *dns_domain_name;
989 [charset(UTF16),string] uint16 *result_name;
990 } drsuapi_DsNameInfo1;
991
992 typedef struct {
993 uint32 count;
994 [size_is(count)] drsuapi_DsNameInfo1 *array;
995 } drsuapi_DsNameCtr1;
996
997 typedef [switch_type(uint32)] union {
998 [case(1)] drsuapi_DsNameCtr1 *ctr1;
999 } drsuapi_DsNameCtr;
1000
1001 WERROR drsuapi_DsCrackNames(
1002 [in] policy_handle *bind_handle,
1003 [in] uint32 level,
1004 [in,ref,switch_is(level)] drsuapi_DsNameRequest *req,
1005 [out,ref] uint32 *level_out,
1006 [out,ref,switch_is(*level_out)] drsuapi_DsNameCtr *ctr
1007 );
1008
1009 /*****************/
1010 /* Function 0x0d */
1011 typedef [v1_enum] enum {
1012 DRSUAPI_DS_SPN_OPERATION_ADD = 0,
1013 DRSUAPI_DS_SPN_OPERATION_REPLACE= 1,
1014 DRSUAPI_DS_SPN_OPERATION_DELETE = 2
1015 } drsuapi_DsSpnOperation;
1016
1017 typedef struct {
1018 drsuapi_DsSpnOperation operation;
1019 uint32 unknown1;
1020 [charset(UTF16),string] uint16 *object_dn;
1021 [range(0,10000)] uint32 count;
1022 [size_is(count)] drsuapi_DsNameString *spn_names;
1023 } drsuapi_DsWriteAccountSpnRequest1;
1024
1025 typedef [switch_type(uint32)] union {
1026 [case(1)] drsuapi_DsWriteAccountSpnRequest1 req1;
1027 } drsuapi_DsWriteAccountSpnRequest;
1028
1029 typedef struct {
1030 WERROR status;
1031 } drsuapi_DsWriteAccountSpnResult1;
1032
1033 typedef [switch_type(uint32)] union {
1034 [case(1)] drsuapi_DsWriteAccountSpnResult1 res1;
1035 } drsuapi_DsWriteAccountSpnResult;
1036
1037 WERROR drsuapi_DsWriteAccountSpn(
1038 [in] policy_handle *bind_handle,
1039 [in] uint32 level,
1040 [in,ref,switch_is(level)] drsuapi_DsWriteAccountSpnRequest *req,
1041 [out,ref] uint32 *level_out,
1042 [out,ref,switch_is(*level_out)] drsuapi_DsWriteAccountSpnResult *res
1043 );
1044
1045 /*****************/
1046 /* Function 0x0e */
1047 typedef struct {
1048 [charset(UTF16),string] uint16 *server_dn;
1049 [charset(UTF16),string] uint16 *domain_dn;
1050 boolean32 commit;
1051 } drsuapi_DsRemoveDSServerRequest1;
1052
1053 typedef [switch_type(uint32)] union {
1054 [case(1)] drsuapi_DsRemoveDSServerRequest1 req1;
1055 } drsuapi_DsRemoveDSServerRequest;
1056
1057 typedef struct {
1058 boolean32 last_dc_in_domain;
1059 } drsuapi_DsRemoveDSServerResult1;
1060
1061 typedef [switch_type(uint32)] union {
1062 [case(1)] drsuapi_DsRemoveDSServerResult1 res1;
1063 } drsuapi_DsRemoveDSServerResult;
1064
1065 WERROR drsuapi_DsRemoveDSServer(
1066 [in] policy_handle *bind_handle,
1067 [in] uint32 level,
1068 [in,ref,switch_is(level)] drsuapi_DsRemoveDSServerRequest *req,
1069 [out,ref] uint32 *level_out,
1070 [out,ref,switch_is(*level_out)] drsuapi_DsRemoveDSServerResult *res
1071 );
1072
1073 /*****************/
1074 /* Function 0x0f */
1075 [todo] WERROR DRSUAPI_REMOVE_DS_DOMAIN();
1076
1077 /*****************/
1078 /* Function 0x10 */
1079 typedef struct {
1080 [charset(UTF16),string] uint16 *domain_name; /* netbios or dns */
1081 int32 level; /* specifies the switch level for the request */
1082 } drsuapi_DsGetDCInfoRequest1;
1083
1084 typedef [switch_type(int32)] union {
1085 [case(1)] drsuapi_DsGetDCInfoRequest1 req1;
1086 } drsuapi_DsGetDCInfoRequest;
1087
1088 typedef struct {
1089 [charset(UTF16),string] uint16 *netbios_name;
1090 [charset(UTF16),string] uint16 *dns_name;
1091 [charset(UTF16),string] uint16 *site_name;
1092 [charset(UTF16),string] uint16 *computer_dn;
1093 [charset(UTF16),string] uint16 *server_dn;
1094 uint32 is_pdc;
1095 uint32 is_enabled;
1096 } drsuapi_DsGetDCInfo1;
1097
1098 typedef struct {
1099 [range(0,10000)] uint32 count;
1100 [size_is(count)] drsuapi_DsGetDCInfo1 *array;
1101 } drsuapi_DsGetDCInfoCtr1;
1102
1103 typedef struct {
1104 [charset(UTF16),string] uint16 *netbios_name;
1105 [charset(UTF16),string] uint16 *dns_name;
1106 [charset(UTF16),string] uint16 *site_name;
1107 [charset(UTF16),string] uint16 *site_dn;
1108 [charset(UTF16),string] uint16 *computer_dn;
1109 [charset(UTF16),string] uint16 *server_dn;
1110 [charset(UTF16),string] uint16 *ntds_dn;
1111 uint32 is_pdc;
1112 uint32 is_enabled;
1113 uint32 is_gc;
1114 GUID site_guid;
1115 GUID computer_guid;
1116 GUID server_guid;
1117 GUID ntds_guid;
1118 } drsuapi_DsGetDCInfo2;
1119
1120 typedef struct {
1121 [range(0,10000)] uint32 count;
1122 [size_is(count)] drsuapi_DsGetDCInfo2 *array;
1123 } drsuapi_DsGetDCInfoCtr2;
1124
1125 typedef struct {
1126 [charset(UTF16),string] uint16 *netbios_name;
1127 [charset(UTF16),string] uint16 *dns_name;
1128 [charset(UTF16),string] uint16 *site_name;
1129 [charset(UTF16),string] uint16 *site_dn;
1130 [charset(UTF16),string] uint16 *computer_dn;
1131 [charset(UTF16),string] uint16 *server_dn;
1132 [charset(UTF16),string] uint16 *ntds_dn;
1133 uint32 is_pdc;
1134 uint32 is_enabled;
1135 uint32 is_gc;
1136 uint32 is_rodc;
1137 GUID site_guid;
1138 GUID computer_guid;
1139 GUID server_guid;
1140 GUID ntds_guid;
1141 } drsuapi_DsGetDCInfo3;
1142
1143 typedef struct {
1144 [range(0,10000)] uint32 count;
1145 [size_is(count)] drsuapi_DsGetDCInfo3 *array;
1146 } drsuapi_DsGetDCInfoCtr3;
1147
1148 /*
1149 * this represents an active connection to the
1150 * Directory System Agent (DSA)
1151 * this can be via LDAP or DRSUAPI
1152 */
1153 typedef struct {
1154 [flag(NDR_BIG_ENDIAN)] ipv4address client_ip_address;
1155 uint32 unknown2;
1156 uint32 connection_time; /* in seconds */
1157 uint32 unknown4;
1158 uint32 unknown5;
1159 uint32 unknown6;
1160 /*
1161 * client_account can be the following:
1162 * "W2K3\Administrator"
1163 * "Administrator@W2K3"
1164 * "cn=Administrator,cn=Users,DC=w2k3,DC=vmnet1,DC=vm,DC=base"
1165 * ""
1166 * or NULL
1167 */
1168 [charset(UTF16),string] uint16 *client_account;
1169 } drsuapi_DsGetDCConnection01;
1170
1171 typedef struct {
1172 [range(0,10000)] uint32 count;
1173 [size_is(count)] drsuapi_DsGetDCConnection01 *array;
1174 } drsuapi_DsGetDCConnectionCtr01;
1175
1176 typedef [v1_enum] enum {
1177 DRSUAPI_DC_INFO_CTR_1 = 1,
1178 DRSUAPI_DC_INFO_CTR_2 = 2,
1179 DRSUAPI_DC_INFO_CTR_3 = 3,
1180 DRSUAPI_DC_CONNECTION_CTR_01 = -1
1181 } drsuapi_DsGetDCInfoCtrLevels;
1182
1183 typedef [switch_type(int32)] union {
1184 [case(DRSUAPI_DC_INFO_CTR_1)] drsuapi_DsGetDCInfoCtr1 ctr1;
1185 [case(DRSUAPI_DC_INFO_CTR_2)] drsuapi_DsGetDCInfoCtr2 ctr2;
1186 [case(DRSUAPI_DC_INFO_CTR_3)] drsuapi_DsGetDCInfoCtr3 ctr3;
1187 [case(DRSUAPI_DC_CONNECTION_CTR_01)] drsuapi_DsGetDCConnectionCtr01 ctr01;
1188 } drsuapi_DsGetDCInfoCtr;
1189
1190 WERROR drsuapi_DsGetDomainControllerInfo(
1191 [in] policy_handle *bind_handle,
1192 [in] int32 level,
1193 [in,ref,switch_is(level)] drsuapi_DsGetDCInfoRequest *req,
1194 [out,ref] int32 *level_out,
1195 [out,ref,switch_is(*level_out)] drsuapi_DsGetDCInfoCtr *ctr
1196 );
1197
1198 /*****************/
1199 /* Function 0x11 */
1200 typedef [public,noprint] struct {
1201 drsuapi_DsReplicaObjectListItem *next_object;
1202 drsuapi_DsReplicaObject object;
1203 } drsuapi_DsReplicaObjectListItem;
1204
1205 /*
1206 * The DsAddEntry() call which creates a nTDSDSA object,
1207 * also adds a servicePrincipalName in the following form
1208 * to the computer account of the new domain controller
1209 * referenced by the "serverReferenece" attribute.
1210 *
1211 * E3514235-4B06-11D1-AB04-00C04FC2DCD2/<new-ntdsdsa-object-guid-as-string>/<domain-dns-name>
1212 *
1213 * also note that the "serverReference" isn't added to the new object!
1214 */
1215 const char *DRSUAPI_NTDSDSA_KRB5_SERVICE_GUID = "E3514235-4B06-11D1-AB04-00C04FC2DCD2";
1216
1217 /* Error codes to classify an error that occurs
1218 * during a search for, or the update of,
1219 * a directory object */
1220 typedef [v1_enum] enum {
1221 DRSUAPI_DIRERR_OK = 0,
1222 DRSUAPI_DIRERR_ATTRIBUTE = 1,
1223 DRSUAPI_DIRERR_NAME = 2,
1224 DRSUAPI_DIRERR_REFERRAL = 3,
1225 DRSUAPI_DIRERR_SECURITY = 4,
1226 DRSUAPI_DIRERR_SERVICE = 5,
1227 DRSUAPI_DIRERR_UPDATE = 6,
1228 DRSUAPI_DIRERR_SYSTEM = 7
1229 } drsuapi_DsAddEntry_DirErr;
1230
1231 /*
1232 * Ref: DRS_MSG_ADDENTRYREQ_V2, [MS-DRSR]: 4.1.1.1.3
1233 */
1234 typedef struct {
1235 drsuapi_DsReplicaObjectListItem first_object;
1236 } drsuapi_DsAddEntryRequest2;
1237
1238 /* Buffer type is actually more
1239 * like a semi Flags
1240 * Ref: DRS_SecBuffer, [MS-DRSR]: 5.41 */
1241 typedef [v1_enum,noprint] enum {
1242 DRSUAPI_SECBUFFER_EMPTY = 0x00000000,
1243 DRSUAPI_SECBUFFER_DATA = 0x00000001,
1244 DRSUAPI_SECBUFFER_TOKEN = 0x00000002,
1245 DRSUAPI_SECBUFFER_PKG_PARAMS = 0x00000003,
1246 DRSUAPI_SECBUFFER_MISSING = 0x00000004,
1247 DRSUAPI_SECBUFFER_EXTRA = 0x00000005,
1248 DRSUAPI_SECBUFFER_STREAM_TRAILER = 0x00000006,
1249 DRSUAPI_SECBUFFER_STREAM_HEADER = 0x00000007,
1250 DRSUAPI_SECBUFFER_READONLY = 0x80000000
1251 } drsuapi_SecBufferType;
1252
1253 typedef struct {
1254 [range(0,10000)] uint32 buf_size;
1255 drsuapi_SecBufferType buf_type;
1256 [size_is(buf_size)] uint8 *buffer;
1257 } drsuapi_SecBuffer;
1258
1259 typedef struct {
1260 [value(0)] uint32 version;
1261 [range(0,10000)] uint32 buff_count;
1262 [size_is(buff_count)] drsuapi_SecBuffer *buffers;
1263 } drsuapi_SecBufferDesc;
1264
1265 /*
1266 * Ref: DRS_MSG_ADDENTRYREQ_V3, [MS-DRSR]: 4.1.1.1.4
1267 */
1268 typedef struct {
1269 drsuapi_DsReplicaObjectListItem first_object;
1270 drsuapi_SecBufferDesc *client_creds;
1271 } drsuapi_DsAddEntryRequest3;
1272
1273 typedef [switch_type(uint32)] union {
1274 [case(2)] drsuapi_DsAddEntryRequest2 req2;
1275 [case(3)] drsuapi_DsAddEntryRequest3 req3;
1276 } drsuapi_DsAddEntryRequest;
1277
1278 /* Generic extended error info
1279 * commonly used in most places
1280 * where rich error info is returned */
1281 typedef struct {
1282 uint32 dsid; /* implementation-specific diagnostic code */
1283 WERROR extended_err; /* 0, STATUS code, or Windows error code */
1284 uint32 extended_data; /* implementation-specific diagnostic code */
1285 uint16 problem; /* 0 or PROBLEM error code */
1286 } drsuapi_DsAddEntryErrorInfoX;
1287
1288 /* Attribute errors
1289 * Ref: ATRERR_DRS_WIRE_V1, [MS-DRSR]: 4.1.1.1.11 */
1290 typedef struct {
1291 uint32 dsid;
1292 WERROR extended_err;
1293 uint32 extended_data;
1294 uint16 problem;
1295 drsuapi_DsAttributeId attid;
1296 boolean32 is_val_returned;
1297 drsuapi_DsAttributeValue attr_val;
1298 } drsuapi_DsAddEntry_AttrErr_V1;
1299
1300 typedef [noprint] struct {
1301 drsuapi_DsAddEntry_AttrErrListItem_V1 *next;
1302 drsuapi_DsAddEntry_AttrErr_V1 err_data;
1303 } drsuapi_DsAddEntry_AttrErrListItem_V1;
1304
1305 typedef struct {
1306 drsuapi_DsReplicaObjectIdentifier *id;
1307 uint32 count;
1308 drsuapi_DsAddEntry_AttrErrListItem_V1 first;
1309 } drsuapi_DsAddEntryErrorInfo_Attr_V1;
1310
1311 /* Name resolution error
1312 * Ref: NAMERR_DRS_WIRE_V1, [MS-DRSR]: 4.1.1.1.14 */
1313 typedef struct {
1314 uint32 dsid;
1315 WERROR extended_err;
1316 uint32 extended_data;
1317 uint16 problem;
1318 drsuapi_DsReplicaObjectIdentifier *id_matched; /* The best match for the supplied object identity */
1319 } drsuapi_DsAddEntryErrorInfo_Name_V1;
1320
1321 /* Referral error
1322 * Ref: REFERR_DRS_WIRE_V1, [MS-DRSR]: 4.1.1.1.15 */
1323 typedef struct {
1324 [value(83)] uint8 name_res; /* Must be 'S' */
1325 [value(0)] uint8 unused_pad;
1326 [value(0)] uint16 next_rdn;
1327 } drsuapi_NameResOp_V1;
1328
1329 typedef [enum16bit] enum {
1330 DRSUAPI_CH_REFTYPE_SUPERIOR = 0x0000, /* referral to a superior DC */
1331 DRSUAPI_CH_REFTYPE_SUBORDINATE = 0x0001, /* referral to a subordinate DC */
1332 DRSUAPI_CH_REFTYPE_NSSR = 0x0002, /* Not used */
1333 DRSUAPI_CH_REFTYPE_CROSS = 0x0003 /* A referral to an external crossRef object */
1334 } drsuapi_DsAddEntry_RefType;
1335
1336 typedef [enum8bit] enum {
1337 DRSUAPI_SE_CHOICE_BASE_ONLY = 0x00,
1338 DRSUAPI_SE_CHOICE_IMMED_CHLDRN = 0x01,
1339 DRSUAPI_SE_CHOICE_WHOLE_SUBTREE = 0x02
1340 } drsuapi_DsAddEntry_ChoiceType;
1341
1342 /* list of network names of the DCs
1343 * to which the referral is directed */
1344 typedef struct {
1345 drsuapi_DsaAddressListItem_V1 *next;
1346 lsa_String *address;
1347 } drsuapi_DsaAddressListItem_V1;
1348
1349 typedef struct {
1350 drsuapi_DsReplicaObjectIdentifier *id_target; /* object to which the referral is directed */
1351 drsuapi_NameResOp_V1 op_state;
1352 [value(0)] uint16 rdn_alias;
1353 [value(0)] uint16 rdn_internal;
1354 drsuapi_DsAddEntry_RefType ref_type;
1355 uint16 addr_list_count;
1356 drsuapi_DsaAddressListItem_V1 *addr_list;
1357 drsuapi_DsAddEntry_RefErrListItem_V1 *next;
1358 boolean32 is_choice_set;
1359 drsuapi_DsAddEntry_ChoiceType choice;
1360 } drsuapi_DsAddEntry_RefErrListItem_V1;
1361
1362 typedef struct {
1363 uint32 dsid;
1364 WERROR extended_err;
1365 uint32 extended_data;
1366 drsuapi_DsAddEntry_RefErrListItem_V1 refer;
1367 } drsuapi_DsAddEntryErrorInfo_Referr_V1;
1368
1369 typedef [switch_type(uint32)] union {
1370 [case(1)] drsuapi_DsAddEntryErrorInfo_Attr_V1 attr_err;
1371 [case(2)] drsuapi_DsAddEntryErrorInfo_Name_V1 name_err;
1372 [case(3)] drsuapi_DsAddEntryErrorInfo_Referr_V1 referral_err;
1373 [case(4)] drsuapi_DsAddEntryErrorInfoX security_err;
1374 [case(5)] drsuapi_DsAddEntryErrorInfoX service_err;
1375 [case(6)] drsuapi_DsAddEntryErrorInfoX update_err;
1376 [case(7)] drsuapi_DsAddEntryErrorInfoX system_err;
1377 } drsuapi_DsAddEntryErrorInfo;
1378
1379 typedef struct {
1380 WERROR status;
1381 drsuapi_DsAddEntry_DirErr dir_err;
1382 [switch_is(dir_err)] drsuapi_DsAddEntryErrorInfo *info;
1383 } drsuapi_DsAddEntry_ErrData_V1;
1384
1385 typedef [switch_type(uint32)] union {
1386 [case(1)] drsuapi_DsAddEntry_ErrData_V1 v1;
1387 } drsuapi_DsAddEntry_ErrData;
1388
1389 typedef struct {
1390 GUID guid;
1391 dom_sid28 sid;
1392 } drsuapi_DsReplicaObjectIdentifier2;
1393
1394 typedef struct {
1395 drsuapi_DsReplicaObjectIdentifier *id;
1396 drsuapi_DsAddEntry_DirErr dir_err;
1397 uint32 dsid; /* implementation-specific diagnostic code */
1398 WERROR extended_err; /* 0, STATUS code, or Windows error code */
1399 uint32 extended_data; /* implementation-specific diagnostic code */
1400 uint16 problem; /* 0 or PROBLEM error code */
1401 [range(0,10000)] uint32 count;
1402 [size_is(count)] drsuapi_DsReplicaObjectIdentifier2 *objects;
1403 } drsuapi_DsAddEntryCtr2;
1404
1405 typedef struct {
1406 drsuapi_DsReplicaObjectIdentifier *id;
1407 uint32 err_ver; /* Must be 1 */
1408 [switch_is(err_ver)] drsuapi_DsAddEntry_ErrData *err_data;
1409 [range(0,10000)] uint32 count;
1410 [size_is(count)] drsuapi_DsReplicaObjectIdentifier2 *objects;
1411 } drsuapi_DsAddEntryCtr3;
1412
1413 typedef [switch_type(uint32)] union {
1414 [case(2)] drsuapi_DsAddEntryCtr2 ctr2;
1415 [case(3)] drsuapi_DsAddEntryCtr3 ctr3;
1416 } drsuapi_DsAddEntryCtr;
1417
1418 [public] WERROR drsuapi_DsAddEntry(
1419 [in] policy_handle *bind_handle,
1420 [in] uint32 level,
1421 [in,ref,switch_is(level)] drsuapi_DsAddEntryRequest *req,
1422 [out,ref] uint32 *level_out,
1423 [out,ref,switch_is(*level_out)] drsuapi_DsAddEntryCtr *ctr
1424 );
1425
1426 /*****************/
1427 /* Function 0x12 */
1428 typedef bitmap {
1429 DRSUAPI_DS_EXECUTE_KCC_ASYNCHRONOUS_OPERATION = 0x00000001,
1430 DRSUAPI_DS_EXECUTE_KCC_DAMPED = 0x00000002
1431 } drsuapi_DsExecuteKCCFlags;
1432
1433 typedef struct {
1434 uint32 taskID;
1435 drsuapi_DsExecuteKCCFlags flags;
1436 } drsuapi_DsExecuteKCC1;
1437
1438 typedef [switch_type(uint32)] union {
1439 [case(1)] drsuapi_DsExecuteKCC1 ctr1;
1440 } drsuapi_DsExecuteKCCRequest;
1441
1442 WERROR drsuapi_DsExecuteKCC(
1443 [in] policy_handle *bind_handle,
1444 [in] uint32 level,
1445 [in, ref, switch_is(level)] drsuapi_DsExecuteKCCRequest *req
1446 );
1447
1448 /*****************/
1449 /* Function 0x13 */
1450 typedef [v1_enum] enum {
1451 DRSUAPI_DS_REPLICA_GET_INFO = 1,
1452 DRSUAPI_DS_REPLICA_GET_INFO2 = 2
1453 } drsuapi_DsReplicaGetInfoLevel;
1454
1455 typedef [v1_enum] enum {
1456 DRSUAPI_DS_REPLICA_INFO_NEIGHBORS = 0,
1457 DRSUAPI_DS_REPLICA_INFO_CURSORS = 1,
1458 DRSUAPI_DS_REPLICA_INFO_OBJ_METADATA = 2,
1459 DRSUAPI_DS_REPLICA_INFO_KCC_DSA_CONNECT_FAILURES = 3,
1460 DRSUAPI_DS_REPLICA_INFO_KCC_DSA_LINK_FAILURES = 4,
1461 DRSUAPI_DS_REPLICA_INFO_PENDING_OPS = 5,
1462 DRSUAPI_DS_REPLICA_INFO_ATTRIBUTE_VALUE_METADATA = 6,
1463 DRSUAPI_DS_REPLICA_INFO_CURSORS2 = 7,
1464 DRSUAPI_DS_REPLICA_INFO_CURSORS3 = 8,
1465 DRSUAPI_DS_REPLICA_INFO_OBJ_METADATA2 = 9,
1466 DRSUAPI_DS_REPLICA_INFO_ATTRIBUTE_VALUE_METADATA2 = 10,
1467 DRSUAPI_DS_REPLICA_INFO_REPSTO = -2,
1468 DRSUAPI_DS_REPLICA_INFO_CLIENT_CONTEXTS = -4,
1469 DRSUAPI_DS_REPLICA_INFO_UPTODATE_VECTOR_V1 = -5,
1470 DRSUAPI_DS_REPLICA_INFO_SERVER_OUTGOING_CALLS = -6
1471 } drsuapi_DsReplicaInfoType;
1472
1473 typedef struct {
1474 drsuapi_DsReplicaInfoType info_type;
1475 [charset(UTF16),string] uint16 *object_dn;
1476 GUID source_dsa_guid;
1477 } drsuapi_DsReplicaGetInfoRequest1;
1478
1479 typedef struct {
1480 drsuapi_DsReplicaInfoType info_type;
1481 [charset(UTF16),string] uint16 *object_dn;
1482 GUID source_dsa_guid;
1483 uint32 flags;
1484 [charset(UTF16),string] uint16 *attribute_name;
1485 [charset(UTF16),string] uint16 *value_dn_str;
1486 uint32 enumeration_context;
1487 } drsuapi_DsReplicaGetInfoRequest2;
1488
1489 typedef [switch_type(drsuapi_DsReplicaGetInfoLevel)] union {
1490 [case(DRSUAPI_DS_REPLICA_GET_INFO)] drsuapi_DsReplicaGetInfoRequest1 req1;
1491 [case(DRSUAPI_DS_REPLICA_GET_INFO2)] drsuapi_DsReplicaGetInfoRequest2 req2;
1492 } drsuapi_DsReplicaGetInfoRequest;
1493
1494 typedef struct {
1495 [charset(UTF16),string] uint16 *naming_context_dn;
1496 [charset(UTF16),string] uint16 *source_dsa_obj_dn;
1497 [charset(UTF16),string] uint16 *source_dsa_address;
1498 [charset(UTF16),string] uint16 *transport_obj_dn;
1499 drsuapi_DrsOptions replica_flags;
1500 uint32 reserved;
1501 GUID naming_context_obj_guid;
1502 GUID source_dsa_obj_guid;
1503 GUID source_dsa_invocation_id;
1504 GUID transport_obj_guid;
1505 hyper tmp_highest_usn;
1506 hyper highest_usn;
1507 NTTIME last_success;
1508 NTTIME last_attempt;
1509 WERROR result_last_attempt;
1510 uint32 consecutive_sync_failures;
1511 } drsuapi_DsReplicaNeighbour;
1512
1513 typedef struct {
1514 uint32 count;
1515 uint32 reserved;
1516 [size_is(count)] drsuapi_DsReplicaNeighbour array[];
1517 } drsuapi_DsReplicaNeighbourCtr;
1518
1519 typedef struct {
1520 uint32 count;
1521 uint32 reserved;
1522 [size_is(count)] drsuapi_DsReplicaCursor array[];
1523 } drsuapi_DsReplicaCursorCtr;
1524
1525 typedef struct {
1526 [charset(UTF16),string] uint16 *attribute_name;
1527 uint32 version;
1528 NTTIME originating_change_time;
1529 GUID originating_invocation_id;
1530 hyper originating_usn;
1531 hyper local_usn;
1532 } drsuapi_DsReplicaObjMetaData;
1533
1534 typedef struct {
1535 uint32 count;
1536 uint32 reserved;
1537 [size_is(count)] drsuapi_DsReplicaObjMetaData array[];
1538 } drsuapi_DsReplicaObjMetaDataCtr;
1539
1540 typedef struct {
1541 [charset(UTF16),string] uint16 *dsa_obj_dn;
1542 GUID dsa_obj_guid;
1543 NTTIME first_failure;
1544 uint32 num_failures;
1545 WERROR last_result;
1546 } drsuapi_DsReplicaKccDsaFailure;
1547
1548 typedef struct {
1549 uint32 count;
1550 uint32 reserved;
1551 [size_is(count)] drsuapi_DsReplicaKccDsaFailure array[];
1552 } drsuapi_DsReplicaKccDsaFailuresCtr;
1553
1554 typedef enum {
1555 DRSUAPI_DS_REPLICA_OP_TYPE_SYNC = 0,
1556 DRSUAPI_DS_REPLICA_OP_TYPE_ADD = 1,
1557 DRSUAPI_DS_REPLICA_OP_TYPE_DELETE = 2,
1558 DRSUAPI_DS_REPLICA_OP_TYPE_MODIFY = 3,
1559 DRSUAPI_DS_REPLICA_OP_TYPE_UPDATE_REFS = 4
1560 } drsuapi_DsReplicaOpType;
1561
1562 typedef struct {
1563 NTTIME operation_start;
1564 uint32 serial_num; /* unique till reboot */
1565 uint32 priority;
1566 drsuapi_DsReplicaOpType operation_type;
1567 drsuapi_DrsOptions options;
1568 [charset(UTF16),string] uint16 *nc_dn;
1569 [charset(UTF16),string] uint16 *remote_dsa_obj_dn;
1570 [charset(UTF16),string] uint16 *remote_dsa_address;
1571 GUID nc_obj_guid;
1572 GUID remote_dsa_obj_guid;
1573 } drsuapi_DsReplicaOp;
1574
1575 typedef struct {
1576 NTTIME time;
1577 uint32 count;
1578 [size_is(count)] drsuapi_DsReplicaOp array[];
1579 } drsuapi_DsReplicaOpCtr;
1580
1581 typedef struct {
1582 [charset(UTF16),string] uint16 *attribute_name;
1583 [charset(UTF16),string] uint16 *object_dn;
1584 [value(ndr_size_DATA_BLOB(0,binary,0))] uint32 __ndr_size_binary;
1585 DATA_BLOB *binary;
1586 NTTIME deleted;
1587 NTTIME created;
1588 uint32 version;
1589 NTTIME originating_change_time;
1590 GUID originating_invocation_id;
1591 hyper originating_usn;
1592 hyper local_usn;
1593 } drsuapi_DsReplicaAttrValMetaData;
1594
1595 typedef struct {
1596 uint32 count;
1597 uint32 enumeration_context;
1598 [size_is(count)] drsuapi_DsReplicaAttrValMetaData array[];
1599 } drsuapi_DsReplicaAttrValMetaDataCtr;
1600
1601 typedef struct {
1602 uint32 count;
1603 uint32 enumeration_context;
1604 [size_is(count)] drsuapi_DsReplicaCursor2 array[];
1605 } drsuapi_DsReplicaCursor2Ctr;
1606
1607 typedef struct {
1608 GUID source_dsa_invocation_id;
1609 hyper highest_usn;
1610 NTTIME last_sync_success;
1611 [charset(UTF16),string] uint16 *source_dsa_obj_dn;
1612 } drsuapi_DsReplicaCursor3;
1613
1614 typedef struct {
1615 uint32 count;
1616 uint32 enumeration_context;
1617 [size_is(count)] drsuapi_DsReplicaCursor3 array[];
1618 } drsuapi_DsReplicaCursor3Ctr;
1619
1620 typedef struct {
1621 [charset(UTF16),string] uint16 *attribute_name;
1622 uint32 version;
1623 NTTIME originating_change_time;
1624 GUID originating_invocation_id;
1625 hyper originating_usn;
1626 hyper local_usn;
1627 [charset(UTF16),string] uint16 *originating_dsa_dn;
1628 } drsuapi_DsReplicaObjMetaData2;
1629
1630 typedef struct {
1631 uint32 count;
1632 uint32 enumeration_context;
1633 [size_is(count)] drsuapi_DsReplicaObjMetaData2 array[];
1634 } drsuapi_DsReplicaObjMetaData2Ctr;
1635
1636 typedef struct {
1637 [charset(UTF16),string] uint16 *attribute_name;
1638 [charset(UTF16),string] uint16 *object_dn;
1639 [value(ndr_size_DATA_BLOB(0,binary,0))] uint32 __ndr_size_binary;
1640 DATA_BLOB *binary;
1641 NTTIME deleted;
1642 NTTIME created;
1643 uint32 version;
1644 NTTIME originating_change_time;
1645 GUID originating_invocation_id;
1646 hyper originating_usn;
1647 hyper local_usn;
1648 [charset(UTF16),string] uint16 *originating_dsa_dn;
1649 } drsuapi_DsReplicaAttrValMetaData2;
1650
1651 typedef struct {
1652 uint32 count;
1653 uint32 enumeration_context;
1654 [size_is(count)] drsuapi_DsReplicaAttrValMetaData2 array[];
1655 } drsuapi_DsReplicaAttrValMetaData2Ctr;
1656
1657 typedef struct {
1658 hyper u1; /* session number? */
1659 uint32 u2;
1660 uint32 u3;
1661 GUID bind_guid;
1662 NTTIME_1sec bind_time;
1663 [flag(NDR_BIG_ENDIAN)] ipv4address client_ip_address;
1664 uint32 u5; /* this is the same value the client used as pid in the DsBindInfoX struct */
1665 } drsuapi_DsReplicaConnection04;
1666
1667 typedef struct {
1668 [range(0,10000)] uint32 count;
1669 uint32 reserved;
1670 [size_is(count)] drsuapi_DsReplicaConnection04 array[];
1671 } drsuapi_DsReplicaConnection04Ctr;
1672
1673 typedef struct {
1674 [charset(UTF16),string] uint16 *str1;
1675 uint32 u1;
1676 uint32 u2;
1677 uint32 u3;
1678 uint32 u4;
1679 uint32 u5;
1680 hyper u6;
1681 uint32 u7;
1682 } drsuapi_DsReplica06;
1683
1684 typedef struct {
1685 [range(0,256)] uint32 count;
1686 uint32 reserved;
1687 [size_is(count)] drsuapi_DsReplica06 array[];
1688 } drsuapi_DsReplica06Ctr;
1689
1690 typedef [switch_type(drsuapi_DsReplicaInfoType)] union {
1691 [case(DRSUAPI_DS_REPLICA_INFO_NEIGHBORS)] drsuapi_DsReplicaNeighbourCtr *neighbours;
1692 [case(DRSUAPI_DS_REPLICA_INFO_CURSORS)] drsuapi_DsReplicaCursorCtr *cursors;
1693 [case(DRSUAPI_DS_REPLICA_INFO_OBJ_METADATA)] drsuapi_DsReplicaObjMetaDataCtr *objmetadata;
1694 [case(DRSUAPI_DS_REPLICA_INFO_KCC_DSA_CONNECT_FAILURES)] drsuapi_DsReplicaKccDsaFailuresCtr *connectfailures;
1695 [case(DRSUAPI_DS_REPLICA_INFO_KCC_DSA_LINK_FAILURES)] drsuapi_DsReplicaKccDsaFailuresCtr *linkfailures;
1696 [case(DRSUAPI_DS_REPLICA_INFO_PENDING_OPS)] drsuapi_DsReplicaOpCtr *pendingops;
1697 [case(DRSUAPI_DS_REPLICA_INFO_ATTRIBUTE_VALUE_METADATA)] drsuapi_DsReplicaAttrValMetaDataCtr *attrvalmetadata;
1698 [case(DRSUAPI_DS_REPLICA_INFO_CURSORS2)] drsuapi_DsReplicaCursor2Ctr *cursors2;
1699 [case(DRSUAPI_DS_REPLICA_INFO_CURSORS3)] drsuapi_DsReplicaCursor3Ctr *cursors3;
1700 [case(DRSUAPI_DS_REPLICA_INFO_OBJ_METADATA2)] drsuapi_DsReplicaObjMetaData2Ctr *objmetadata2;
1701 [case(DRSUAPI_DS_REPLICA_INFO_ATTRIBUTE_VALUE_METADATA2)] drsuapi_DsReplicaAttrValMetaData2Ctr *attrvalmetadata2;
1702 [case(DRSUAPI_DS_REPLICA_INFO_REPSTO)] drsuapi_DsReplicaNeighbourCtr *repsto;
1703 [case(DRSUAPI_DS_REPLICA_INFO_CLIENT_CONTEXTS)] drsuapi_DsReplicaConnection04Ctr *clientctx;
1704 [case(DRSUAPI_DS_REPLICA_INFO_UPTODATE_VECTOR_V1)] drsuapi_DsReplicaCursorCtrEx *udv1;
1705 [case(DRSUAPI_DS_REPLICA_INFO_SERVER_OUTGOING_CALLS)] drsuapi_DsReplica06Ctr *srvoutgoingcalls;
1706 } drsuapi_DsReplicaInfo;
1707
1708 WERROR drsuapi_DsReplicaGetInfo(
1709 [in] policy_handle *bind_handle,
1710 [in] drsuapi_DsReplicaGetInfoLevel level,
1711 [in,ref,switch_is(level)] drsuapi_DsReplicaGetInfoRequest *req,
1712 [out,ref] drsuapi_DsReplicaInfoType *info_type,
1713 [out,ref,switch_is(*info_type)] drsuapi_DsReplicaInfo *info
1714 );
1715
1716 /*****************/
1717 /* Function 0x14 */
1718 [todo] WERROR DRSUAPI_ADD_SID_HISTORY();
1719
1720 /*****************/
1721 /* Function 0x15 */
1722
1723 typedef struct {
1724 [range(0,10000)] uint32 num_entries;
1725 [size_is(num_entries)] drsuapi_DsGetMembershipsCtr1 **ctrl_array;
1726 } drsuapi_DsGetMemberships2Ctr1;
1727
1728 typedef [switch_type(uint32)] union {
1729 [case(1)] drsuapi_DsGetMembershipsCtr1 ctr1;
1730 } drsuapi_DsGetMemberships2Ctr;
1731
1732 typedef struct {
1733 [range(1,10000)] uint32 num_req;
1734 [size_is(num_req)] drsuapi_DsGetMembershipsRequest1 **req_array;
1735 } drsuapi_DsGetMemberships2Request1;
1736
1737 typedef [switch_type(uint32)] union {
1738 [case(1)] drsuapi_DsGetMemberships2Request1 req1;
1739 } drsuapi_DsGetMemberships2Request;
1740
1741 WERROR drsuapi_DsGetMemberships2(
1742 [in] policy_handle *bind_handle,
1743 [in] uint32 level,
1744 [in,ref] [switch_is(level)] drsuapi_DsGetMemberships2Request *req,
1745 [out,ref] uint32 *level_out,
1746 [out,ref] [switch_is(*level_out)] drsuapi_DsGetMemberships2Ctr *ctr
1747 );
1748
1749 /*****************/
1750 /* Function 0x16 */
1751 [todo] WERROR DRSUAPI_REPLICA_VERIFY_OBJECTS();
1752
1753 /*****************/
1754 /* Function 0x17 */
1755 [todo] WERROR DRSUAPI_GET_OBJECT_EXISTENCE();
1756
1757 /*****************/
1758 /* Function 0x18 */
1759 typedef struct {
1760 WERROR error_code;
1761 uint32 site_cost;
1762 } drsuapi_DsSiteCostInfo;
1763
1764 typedef struct {
1765 [range(0,10000)] uint32 num_info;
1766 [size_is(num_info)] drsuapi_DsSiteCostInfo *info;
1767 [value(0)] uint32 flags_reserved;
1768 } drsuapi_QuerySitesByCostCtr1;
1769
1770 typedef [switch_type(uint32)] union {
1771 [case(1)] drsuapi_QuerySitesByCostCtr1 ctr1;
1772 } drsuapi_QuerySitesByCostCtr;
1773
1774 typedef struct {
1775 [charset(UTF16),string] uint16 *site_from;
1776 [range(1,10000)] uint32 num_req;
1777 [size_is(num_req)] [charset(UTF16),string] uint16 **site_to;
1778 uint32 flags;
1779 } drsuapi_QuerySitesByCostRequest1;
1780
1781 typedef [switch_type(uint32)] union {
1782 [case(1)] drsuapi_QuerySitesByCostRequest1 req1;
1783 } drsuapi_QuerySitesByCostRequest;
1784
1785 WERROR drsuapi_QuerySitesByCost(
1786 [in] policy_handle *bind_handle,
1787 [in] uint32 level,
1788 [in,ref] [switch_is(level)] drsuapi_QuerySitesByCostRequest *req,
1789 [out,ref] uint32 *level_out,
1790 [out,ref] [switch_is(*level_out)] drsuapi_QuerySitesByCostCtr *ctr
1791 );
1792 }