2 Unix SMB/CIFS implementation.
3 client security descriptor functions
4 Copyright (C) Andrew Tridgell 2000
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
21 #include "libsmb/libsmb.h"
22 #include "../libcli/security/secdesc.h"
24 /****************************************************************************
25 query the security descriptor for a open file
26 ****************************************************************************/
27 struct security_descriptor *cli_query_secdesc_old(struct cli_state *cli, uint16_t fnum,
32 uint32_t rdata_count=0;
33 struct security_descriptor *psd = NULL;
36 SIVAL(param, 0, fnum);
39 status = cli_trans(talloc_tos(), cli, SMBnttrans,
40 NULL, -1, /* name, fid */
41 NT_TRANSACT_QUERY_SECURITY_DESC, 0, /* function, flags */
42 NULL, 0, 0, /* setup, length, max */
43 param, 8, 4, /* param, length, max */
44 NULL, 0, 0x10000, /* data, length, max */
45 NULL, /* recv_flags2 */
46 NULL, 0, NULL, /* rsetup, length */
48 &rdata, 0, &rdata_count);
50 if (!NT_STATUS_IS_OK(status)) {
51 DEBUG(1, ("NT_TRANSACT_QUERY_SECURITY_DESC failed: %s\n",
56 status = unmarshall_sec_desc(mem_ctx, (uint8 *)rdata, rdata_count,
59 if (!NT_STATUS_IS_OK(status)) {
60 DEBUG(10, ("unmarshall_sec_desc failed: %s\n",
72 NTSTATUS cli_query_secdesc(struct cli_state *cli, uint16_t fnum,
73 TALLOC_CTX *mem_ctx, struct security_descriptor **sd)
77 uint32_t rdata_count=0;
79 struct security_descriptor *lsd;
81 SIVAL(param, 0, fnum);
84 status = cli_trans(talloc_tos(), cli, SMBnttrans,
85 NULL, -1, /* name, fid */
86 NT_TRANSACT_QUERY_SECURITY_DESC, 0, /* function, flags */
87 NULL, 0, 0, /* setup, length, max */
88 param, 8, 4, /* param, length, max */
89 NULL, 0, 0x10000, /* data, length, max */
90 NULL, /* recv_flags2 */
91 NULL, 0, NULL, /* rsetup, length */
93 &rdata, 0, &rdata_count);
95 if (!NT_STATUS_IS_OK(status)) {
96 DEBUG(1, ("NT_TRANSACT_QUERY_SECURITY_DESC failed: %s\n",
101 status = unmarshall_sec_desc(mem_ctx, (uint8 *)rdata, rdata_count,
103 if (!NT_STATUS_IS_OK(status)) {
104 DEBUG(10, ("unmarshall_sec_desc failed: %s\n",
122 /****************************************************************************
123 set the security descriptor for a open file
124 ****************************************************************************/
125 NTSTATUS cli_set_secdesc(struct cli_state *cli, uint16_t fnum,
126 struct security_descriptor *sd)
134 status = marshall_sec_desc(talloc_tos(), sd, &data, &len);
135 if (!NT_STATUS_IS_OK(status)) {
136 DEBUG(10, ("marshall_sec_desc failed: %s\n",
141 SIVAL(param, 0, fnum);
144 sec_info |= SECINFO_DACL;
146 sec_info |= SECINFO_OWNER;
148 sec_info |= SECINFO_GROUP;
149 SSVAL(param, 4, sec_info);
151 status = cli_trans(talloc_tos(), cli, SMBnttrans,
152 NULL, -1, /* name, fid */
153 NT_TRANSACT_SET_SECURITY_DESC, 0,
154 NULL, 0, 0, /* setup */
155 param, 8, 0, /* param */
156 data, len, 0, /* data */
157 NULL, /* recv_flags2 */
158 NULL, 0, NULL, /* rsetup */
159 NULL, 0, NULL, /* rparam */
160 NULL, 0, NULL); /* rdata */
162 if (!NT_STATUS_IS_OK(status)) {
163 DEBUG(1, ("Failed to send NT_TRANSACT_SET_SECURITY_DESC: %s\n",