3 * Unix SMB/Netbios implementation.
5 * RPC Pipe client / server routines
6 * Copyright (C) Andrew Tridgell 1992-1997,
7 * Copyright (C) Luke Kenneth Casson Leighton 1996-1997,
8 * Copyright (C) Paul Ashton 1997.
10 * This program is free software; you can redistribute it and/or modify
11 * it under the terms of the GNU General Public License as published by
12 * the Free Software Foundation; either version 2 of the License, or
13 * (at your option) any later version.
15 * This program is distributed in the hope that it will be useful,
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 * GNU General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, write to the Free Software
22 * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
29 extern int DEBUGLEVEL;
31 extern fstring global_sam_name;
32 extern pstring global_myname;
33 extern DOM_SID global_sam_sid;
34 extern DOM_SID global_sid_S_1_1;
35 extern DOM_SID global_sid_S_1_5_20;
37 /*******************************************************************
38 This next function should be replaced with something that
39 dynamically returns the correct user info..... JRA.
40 ********************************************************************/
42 static BOOL get_sampwd_entries(SAM_USER_INFO_21 *pw_buf,
44 int *total_entries, int *num_entries,
49 struct sam_passwd *pwd = NULL;
54 if (pw_buf == NULL) return False;
56 vp = startsmbpwent(False);
59 DEBUG(0, ("get_sampwd_entries: Unable to open SMB password database.\n"));
63 while (((pwd = getsam21pwent(vp)) != NULL) && (*num_entries) < max_num_entries)
69 /* skip the requested number of entries.
70 not very efficient, but hey...
72 if (acb_mask == 0 || IS_BITS_SET_SOME(pwd->acct_ctrl, acb_mask))
79 user_name_len = strlen(pwd->nt_name);
80 make_unistr2(&(pw_buf[(*num_entries)].uni_user_name), pwd->nt_name, user_name_len);
81 make_uni_hdr(&(pw_buf[(*num_entries)].hdr_user_name), user_name_len,
83 pw_buf[(*num_entries)].user_rid = pwd->user_rid;
84 bzero( pw_buf[(*num_entries)].nt_pwd , 16);
86 /* Now check if the NT compatible password is available. */
87 if (pwd->smb_nt_passwd != NULL)
89 memcpy( pw_buf[(*num_entries)].nt_pwd , pwd->smb_nt_passwd, 16);
92 pw_buf[(*num_entries)].acb_info = (uint16)pwd->acct_ctrl;
94 DEBUG(5, ("entry idx: %d user %s, rid 0x%x, acb %x",
95 (*num_entries), pwd->nt_name,
96 pwd->user_rid, pwd->acct_ctrl));
98 if (acb_mask == 0 || IS_BITS_SET_SOME(pwd->acct_ctrl, acb_mask))
100 DEBUG(5,(" acb_mask %x accepts\n", acb_mask));
105 DEBUG(5,(" acb_mask %x rejects\n", acb_mask));
113 return (*num_entries) > 0;
116 /*******************************************************************
118 ********************************************************************/
119 static void samr_reply_close_hnd(SAMR_Q_CLOSE_HND *q_u,
122 SAMR_R_CLOSE_HND r_u;
124 /* set up the SAMR unknown_1 response */
125 bzero(r_u.pol.data, POL_HND_SIZE);
127 /* close the policy handle */
128 if (close_lsa_policy_hnd(&(q_u->pol)))
134 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_INVALID;
137 DEBUG(5,("samr_reply_close_hnd: %d\n", __LINE__));
139 /* store the response in the SMB stream */
140 samr_io_r_close_hnd("", &r_u, rdata, 0);
142 DEBUG(5,("samr_reply_close_hnd: %d\n", __LINE__));
146 /*******************************************************************
148 ********************************************************************/
149 static void api_samr_close_hnd( uint16 vuid, prs_struct *data, prs_struct *rdata)
151 SAMR_Q_CLOSE_HND q_u;
152 samr_io_q_close_hnd("", &q_u, data, 0);
153 samr_reply_close_hnd(&q_u, rdata);
157 /*******************************************************************
158 samr_reply_open_domain
159 ********************************************************************/
160 static void samr_reply_open_domain(SAMR_Q_OPEN_DOMAIN *q_u,
163 SAMR_R_OPEN_DOMAIN r_u;
164 BOOL pol_open = False;
168 /* find the connection policy handle. */
169 if (r_u.status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->connect_pol)) == -1))
171 r_u.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
174 /* get a (unique) handle. open a policy on it. */
175 if (r_u.status == 0x0 && !(pol_open = open_lsa_policy_hnd(&(r_u.domain_pol))))
177 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
180 /* associate the domain SID with the (unique) handle. */
181 if (r_u.status == 0x0 && !set_lsa_policy_samr_sid(&(r_u.domain_pol), &(q_u->dom_sid.sid)))
183 /* oh, whoops. don't know what error message to return, here */
184 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
187 if (r_u.status != 0 && pol_open)
189 close_lsa_policy_hnd(&(r_u.domain_pol));
192 DEBUG(5,("samr_open_domain: %d\n", __LINE__));
194 /* store the response in the SMB stream */
195 samr_io_r_open_domain("", &r_u, rdata, 0);
197 DEBUG(5,("samr_open_domain: %d\n", __LINE__));
201 /*******************************************************************
203 ********************************************************************/
204 static void api_samr_open_domain( uint16 vuid, prs_struct *data, prs_struct *rdata)
206 SAMR_Q_OPEN_DOMAIN q_u;
207 samr_io_q_open_domain("", &q_u, data, 0);
208 samr_reply_open_domain(&q_u, rdata);
212 /*******************************************************************
213 samr_reply_unknown_2c
214 ********************************************************************/
215 static void samr_reply_unknown_2c(SAMR_Q_UNKNOWN_2C *q_u,
218 SAMR_R_UNKNOWN_2C r_u;
221 /* find the policy handle. open a policy on it. */
222 if (status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->user_pol)) == -1))
224 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
227 /* find the user's rid */
228 if ((status == 0x0) && (get_lsa_policy_samr_rid(&(q_u->user_pol)) == 0xffffffff))
230 status = 0xC0000000 | NT_STATUS_OBJECT_TYPE_MISMATCH;
233 make_samr_r_unknown_2c(&r_u, status);
235 DEBUG(5,("samr_unknown_2c: %d\n", __LINE__));
237 /* store the response in the SMB stream */
238 samr_io_r_unknown_2c("", &r_u, rdata, 0);
240 DEBUG(5,("samr_unknown_2c: %d\n", __LINE__));
244 /*******************************************************************
246 ********************************************************************/
247 static void api_samr_unknown_2c( uint16 vuid, prs_struct *data, prs_struct *rdata)
249 SAMR_Q_UNKNOWN_2C q_u;
250 samr_io_q_unknown_2c("", &q_u, data, 0);
251 samr_reply_unknown_2c(&q_u, rdata);
255 /*******************************************************************
257 ********************************************************************/
258 static void samr_reply_unknown_3(SAMR_Q_UNKNOWN_3 *q_u,
261 SAMR_R_UNKNOWN_3 r_u;
262 DOM_SID3 sid[MAX_SAM_SIDS];
268 /* find the policy handle. open a policy on it. */
269 if (status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->user_pol)) == -1))
271 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
274 /* find the user's rid */
275 if (status == 0x0 && (rid = get_lsa_policy_samr_rid(&(q_u->user_pol))) == 0xffffffff)
277 status = 0xC0000000 | NT_STATUS_OBJECT_TYPE_MISMATCH;
284 usr_sid = global_sam_sid;
286 SMB_ASSERT_ARRAY(usr_sid.sub_auths, usr_sid.num_auths+1);
291 sid_append_rid(&usr_sid, rid);
293 /* maybe need another 1 or 2 (S-1-5-0x20-0x220 and S-1-5-20-0x224) */
294 /* these two are DOMAIN_ADMIN and DOMAIN_ACCT_OP group RIDs */
295 make_dom_sid3(&(sid[0]), 0x035b, 0x0002, &global_sid_S_1_1);
296 make_dom_sid3(&(sid[1]), 0x0044, 0x0002, &usr_sid);
299 make_samr_r_unknown_3(&r_u,
301 0x00000014, 0x0002, 0x0070,
304 DEBUG(5,("samr_unknown_3: %d\n", __LINE__));
306 /* store the response in the SMB stream */
307 samr_io_r_unknown_3("", &r_u, rdata, 0);
309 DEBUG(5,("samr_unknown_3: %d\n", __LINE__));
313 /*******************************************************************
315 ********************************************************************/
316 static void api_samr_unknown_3( uint16 vuid, prs_struct *data, prs_struct *rdata)
318 SAMR_Q_UNKNOWN_3 q_u;
319 samr_io_q_unknown_3("", &q_u, data, 0);
320 samr_reply_unknown_3(&q_u, rdata);
324 /*******************************************************************
325 samr_reply_enum_dom_users
326 ********************************************************************/
327 static void samr_reply_enum_dom_users(SAMR_Q_ENUM_DOM_USERS *q_u,
330 SAMR_R_ENUM_DOM_USERS r_e;
331 SAM_USER_INFO_21 pass[MAX_SAM_ENTRIES];
337 /* find the policy handle. open a policy on it. */
338 if (r_e.status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->pol)) == -1))
340 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
343 DEBUG(5,("samr_reply_enum_dom_users: %d\n", __LINE__));
346 get_sampwd_entries(pass, q_u->start_idx, &total_entries, &num_entries,
347 MAX_SAM_ENTRIES, q_u->acb_mask);
350 make_samr_r_enum_dom_users(&r_e,
351 q_u->start_idx + num_entries, num_entries,
354 /* store the response in the SMB stream */
355 samr_io_r_enum_dom_users("", &r_e, rdata, 0);
357 DEBUG(5,("samr_enum_dom_users: %d\n", __LINE__));
361 /*******************************************************************
362 api_samr_enum_dom_users
363 ********************************************************************/
364 static void api_samr_enum_dom_users( uint16 vuid, prs_struct *data, prs_struct *rdata)
366 SAMR_Q_ENUM_DOM_USERS q_e;
367 samr_io_q_enum_dom_users("", &q_e, data, 0);
368 samr_reply_enum_dom_users(&q_e, rdata);
372 /*******************************************************************
373 samr_reply_add_groupmem
374 ********************************************************************/
375 static void samr_reply_add_groupmem(SAMR_Q_ADD_GROUPMEM *q_u,
378 SAMR_R_ADD_GROUPMEM r_e;
381 fstring group_sid_str;
385 /* find the policy handle. open a policy on it. */
386 if (r_e.status == 0x0 && !get_lsa_policy_samr_sid(&q_u->pol, &group_sid))
388 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
392 sid_to_string(group_sid_str, &group_sid);
393 sid_split_rid(&group_sid, &group_rid);
396 if (r_e.status == 0x0)
398 DEBUG(10,("sid is %s\n", group_sid_str));
400 if (sid_equal(&group_sid, &global_sam_sid))
402 DEBUG(10,("lookup on Domain SID\n"));
405 r_e.status = add_group_member(group_rid, q_u->rid) ? 0x0 : (0xC0000000 | NT_STATUS_ACCESS_DENIED);
410 r_e.status = 0xC0000000 | NT_STATUS_NO_SUCH_GROUP;
414 /* store the response in the SMB stream */
415 samr_io_r_add_groupmem("", &r_e, rdata, 0);
417 DEBUG(5,("samr_add_groupmem: %d\n", __LINE__));
420 /*******************************************************************
421 api_samr_add_groupmem
422 ********************************************************************/
423 static void api_samr_add_groupmem( uint16 vuid, prs_struct *data, prs_struct *rdata)
425 SAMR_Q_ADD_GROUPMEM q_e;
426 samr_io_q_add_groupmem("", &q_e, data, 0);
427 samr_reply_add_groupmem(&q_e, rdata);
430 /*******************************************************************
431 samr_reply_del_groupmem
432 ********************************************************************/
433 static void samr_reply_del_groupmem(SAMR_Q_DEL_GROUPMEM *q_u,
436 SAMR_R_DEL_GROUPMEM r_e;
439 fstring group_sid_str;
443 /* find the policy handle. open a policy on it. */
444 if (r_e.status == 0x0 && !get_lsa_policy_samr_sid(&q_u->pol, &group_sid))
446 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
450 sid_to_string(group_sid_str, &group_sid);
451 sid_split_rid(&group_sid, &group_rid);
454 if (r_e.status == 0x0)
456 DEBUG(10,("sid is %s\n", group_sid_str));
458 if (sid_equal(&group_sid, &global_sam_sid))
460 DEBUG(10,("lookup on Domain SID\n"));
463 r_e.status = del_group_member(group_rid, q_u->rid) ? 0x0 : (0xC0000000 | NT_STATUS_ACCESS_DENIED);
468 r_e.status = 0xC0000000 | NT_STATUS_NO_SUCH_GROUP;
472 /* store the response in the SMB stream */
473 samr_io_r_del_groupmem("", &r_e, rdata, 0);
475 DEBUG(5,("samr_del_groupmem: %d\n", __LINE__));
478 /*******************************************************************
479 api_samr_del_groupmem
480 ********************************************************************/
481 static void api_samr_del_groupmem( uint16 vuid, prs_struct *data, prs_struct *rdata)
483 SAMR_Q_DEL_GROUPMEM q_e;
484 samr_io_q_del_groupmem("", &q_e, data, 0);
485 samr_reply_del_groupmem(&q_e, rdata);
488 /*******************************************************************
489 samr_reply_add_aliasmem
490 ********************************************************************/
491 static void samr_reply_add_aliasmem(SAMR_Q_ADD_ALIASMEM *q_u,
494 SAMR_R_ADD_ALIASMEM r_e;
497 fstring alias_sid_str;
501 /* find the policy handle. open a policy on it. */
502 if (r_e.status == 0x0 && !get_lsa_policy_samr_sid(&q_u->alias_pol, &alias_sid))
504 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
508 sid_to_string(alias_sid_str, &alias_sid);
509 sid_split_rid(&alias_sid, &alias_rid);
512 if (r_e.status == 0x0)
514 DEBUG(10,("sid is %s\n", alias_sid_str));
516 if (sid_equal(&alias_sid, &global_sam_sid))
518 DEBUG(10,("add member on Domain SID\n"));
521 r_e.status = add_alias_member(alias_rid, &q_u->sid.sid) ? 0x0 : (0xC0000000 | NT_STATUS_ACCESS_DENIED);
524 else if (sid_equal(&alias_sid, &global_sid_S_1_5_20))
526 DEBUG(10,("add member on BUILTIN SID\n"));
529 r_e.status = add_builtin_member(alias_rid, &q_u->sid.sid) ? 0x0 : (0xC0000000 | NT_STATUS_ACCESS_DENIED);
534 r_e.status = 0xC0000000 | NT_STATUS_NO_SUCH_ALIAS;
538 /* store the response in the SMB stream */
539 samr_io_r_add_aliasmem("", &r_e, rdata, 0);
541 DEBUG(5,("samr_add_aliasmem: %d\n", __LINE__));
544 /*******************************************************************
545 api_samr_add_aliasmem
546 ********************************************************************/
547 static void api_samr_add_aliasmem( uint16 vuid, prs_struct *data, prs_struct *rdata)
549 SAMR_Q_ADD_ALIASMEM q_e;
550 samr_io_q_add_aliasmem("", &q_e, data, 0);
551 samr_reply_add_aliasmem(&q_e, rdata);
554 /*******************************************************************
555 samr_reply_del_aliasmem
556 ********************************************************************/
557 static void samr_reply_del_aliasmem(SAMR_Q_DEL_ALIASMEM *q_u,
560 SAMR_R_DEL_ALIASMEM r_e;
563 fstring alias_sid_str;
567 /* find the policy handle. open a policy on it. */
568 if (r_e.status == 0x0 && !get_lsa_policy_samr_sid(&q_u->alias_pol, &alias_sid))
570 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
574 sid_to_string(alias_sid_str, &alias_sid);
575 sid_split_rid(&alias_sid, &alias_rid);
578 if (r_e.status == 0x0)
580 DEBUG(10,("sid is %s\n", alias_sid_str));
582 if (sid_equal(&alias_sid, &global_sam_sid))
584 DEBUG(10,("del member on Domain SID\n"));
587 r_e.status = del_alias_member(alias_rid, &q_u->sid.sid) ? 0x0 : (0xC0000000 | NT_STATUS_ACCESS_DENIED);
590 else if (sid_equal(&alias_sid, &global_sid_S_1_5_20))
592 DEBUG(10,("del member on BUILTIN SID\n"));
595 r_e.status = del_builtin_member(alias_rid, &q_u->sid.sid) ? 0x0 : (0xC0000000 | NT_STATUS_ACCESS_DENIED);
600 r_e.status = 0xC0000000 | NT_STATUS_NO_SUCH_ALIAS;
604 /* store the response in the SMB stream */
605 samr_io_r_del_aliasmem("", &r_e, rdata, 0);
607 DEBUG(5,("samr_del_aliasmem: %d\n", __LINE__));
610 /*******************************************************************
611 api_samr_del_aliasmem
612 ********************************************************************/
613 static void api_samr_del_aliasmem( uint16 vuid, prs_struct *data, prs_struct *rdata)
615 SAMR_Q_DEL_ALIASMEM q_e;
616 samr_io_q_del_aliasmem("", &q_e, data, 0);
617 samr_reply_del_aliasmem(&q_e, rdata);
620 /*******************************************************************
621 samr_reply_enum_dom_groups
622 ********************************************************************/
623 static void samr_reply_enum_dom_groups(SAMR_Q_ENUM_DOM_GROUPS *q_u,
626 SAMR_R_ENUM_DOM_GROUPS r_e;
627 DOMAIN_GRP *grps = NULL;
635 /* find the policy handle. open a policy on it. */
636 if (r_e.status == 0x0 && !get_lsa_policy_samr_sid(&q_u->pol, &sid))
638 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
641 sid_to_string(sid_str, &sid);
643 DEBUG(5,("samr_reply_enum_dom_groups: sid %s\n", sid_str));
645 if (sid_equal(&sid, &global_sam_sid))
650 ret = enumdomgroups(&grps, &num_entries);
654 r_e.status = 0xC0000000 | NT_STATUS_NO_MEMORY;
658 if (r_e.status == 0x0)
660 make_samr_r_enum_dom_groups(&r_e, num_entries, grps, r_e.status);
663 /* store the response in the SMB stream */
664 samr_io_r_enum_dom_groups("", &r_e, rdata, 0);
671 DEBUG(5,("samr_enum_dom_groups: %d\n", __LINE__));
674 /*******************************************************************
675 api_samr_enum_dom_aliases
676 ********************************************************************/
677 static void api_samr_enum_dom_groups( uint16 vuid, prs_struct *data, prs_struct *rdata)
679 SAMR_Q_ENUM_DOM_GROUPS q_e;
681 /* grab the samr open */
682 samr_io_q_enum_dom_groups("", &q_e, data, 0);
684 /* construct reply. */
685 samr_reply_enum_dom_groups(&q_e, rdata);
689 /*******************************************************************
690 samr_reply_enum_dom_aliases
691 ********************************************************************/
692 static void samr_reply_enum_dom_aliases(SAMR_Q_ENUM_DOM_ALIASES *q_u,
695 SAMR_R_ENUM_DOM_ALIASES r_e;
696 LOCAL_GRP *alss = NULL;
704 /* find the policy handle. open a policy on it. */
705 if (r_e.status == 0x0 && !get_lsa_policy_samr_sid(&q_u->pol, &sid))
707 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
710 sid_to_string(sid_str, &sid);
712 DEBUG(5,("samr_reply_enum_dom_aliases: sid %s\n", sid_str));
714 /* well-known aliases */
715 if (sid_equal(&sid, &global_sid_S_1_5_20))
718 /* builtin aliases */
721 ret = enumdombuiltins(&alss, &num_entries);
725 r_e.status = 0xC0000000 | NT_STATUS_NO_MEMORY;
728 else if (sid_equal(&sid, &global_sam_sid))
734 ret = enumdomaliases(&alss, &num_entries);
738 r_e.status = 0xC0000000 | NT_STATUS_NO_MEMORY;
742 if (r_e.status == 0x0)
744 make_samr_r_enum_dom_aliases(&r_e, num_entries, alss, r_e.status);
747 /* store the response in the SMB stream */
748 samr_io_r_enum_dom_aliases("", &r_e, rdata, 0);
755 DEBUG(5,("samr_enum_dom_aliases: %d\n", __LINE__));
759 /*******************************************************************
760 api_samr_enum_dom_aliases
761 ********************************************************************/
762 static void api_samr_enum_dom_aliases( uint16 vuid, prs_struct *data, prs_struct *rdata)
764 SAMR_Q_ENUM_DOM_ALIASES q_e;
766 /* grab the samr open */
767 samr_io_q_enum_dom_aliases("", &q_e, data, 0);
769 /* construct reply. */
770 samr_reply_enum_dom_aliases(&q_e, rdata);
774 /*******************************************************************
775 samr_reply_query_dispinfo
776 ********************************************************************/
777 static void samr_reply_query_dispinfo(SAMR_Q_QUERY_DISPINFO *q_u,
780 SAMR_R_QUERY_DISPINFO r_e;
781 SAM_DISPINFO_CTR ctr;
782 SAM_USER_INFO_21 pass[MAX_SAM_ENTRIES];
783 DOMAIN_GRP *grps = NULL;
784 DOMAIN_GRP *sam_grps = NULL;
785 uint32 data_size = 0;
787 uint16 acb_mask = ACB_NORMAL;
788 int num_sam_entries = 0;
792 DEBUG(5,("samr_reply_query_dispinfo: %d\n", __LINE__));
794 /* find the policy handle. open a policy on it. */
795 if (find_lsa_policy_by_hnd(&(q_u->domain_pol)) == -1)
797 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
798 DEBUG(5,("samr_reply_query_dispinfo: invalid handle\n"));
805 /* Get what we need from the password database */
806 switch (q_u->switch_level)
810 acb_mask = ACB_WSTRUST;
816 get_sampwd_entries(pass, q_u->start_idx,
817 &total_entries, &num_sam_entries,
818 MAX_SAM_ENTRIES, acb_mask);
824 enumdomgroups(&sam_grps, &num_sam_entries);
826 if (q_u->start_idx < num_sam_entries) {
827 grps = sam_grps + q_u->start_idx;
828 num_sam_entries -= q_u->start_idx;
838 num_entries = num_sam_entries;
840 if (num_entries > q_u->max_entries)
842 num_entries = q_u->max_entries;
845 if (num_entries > MAX_SAM_ENTRIES)
847 num_entries = MAX_SAM_ENTRIES;
848 DEBUG(5,("limiting number of entries to %d\n",
852 data_size = q_u->max_size;
854 /* Now create reply structure */
855 switch (q_u->switch_level)
859 ctr.sam.info1 = malloc(sizeof(SAM_DISPINFO_1));
860 make_sam_dispinfo_1(ctr.sam.info1,
861 &num_entries, &data_size,
862 q_u->start_idx, pass);
867 ctr.sam.info2 = malloc(sizeof(SAM_DISPINFO_2));
868 make_sam_dispinfo_2(ctr.sam.info2,
869 &num_entries, &data_size,
870 q_u->start_idx, pass);
875 ctr.sam.info3 = malloc(sizeof(SAM_DISPINFO_3));
876 make_sam_dispinfo_3(ctr.sam.info3,
877 &num_entries, &data_size,
878 q_u->start_idx, grps);
883 ctr.sam.info4 = malloc(sizeof(SAM_DISPINFO_4));
884 make_sam_dispinfo_4(ctr.sam.info4,
885 &num_entries, &data_size,
886 q_u->start_idx, pass);
891 ctr.sam.info5 = malloc(sizeof(SAM_DISPINFO_5));
892 make_sam_dispinfo_5(ctr.sam.info5,
893 &num_entries, &data_size,
894 q_u->start_idx, grps);
900 status = 0xC0000000 | NT_STATUS_INVALID_INFO_CLASS;
906 if ((status == 0) && (num_entries < num_sam_entries))
908 status = 0x105; /* STATUS_MORE_ENTRIES */
911 make_samr_r_query_dispinfo(&r_e, num_entries, data_size,
912 q_u->switch_level, &ctr, status);
914 /* store the response in the SMB stream */
915 samr_io_r_query_dispinfo("", &r_e, rdata, 0);
917 /* free malloc'd areas */
918 if (sam_grps != NULL)
923 if (ctr.sam.info != NULL)
928 DEBUG(5,("samr_reply_query_dispinfo: %d\n", __LINE__));
931 /*******************************************************************
932 api_samr_query_dispinfo
933 ********************************************************************/
934 static void api_samr_query_dispinfo( uint16 vuid, prs_struct *data, prs_struct *rdata)
936 SAMR_Q_QUERY_DISPINFO q_e;
938 samr_io_q_query_dispinfo("", &q_e, data, 0);
939 samr_reply_query_dispinfo(&q_e, rdata);
942 /*******************************************************************
943 samr_reply_delete_dom_group
944 ********************************************************************/
945 static void samr_reply_delete_dom_group(SAMR_Q_DELETE_DOM_GROUP *q_u,
952 fstring group_sid_str;
954 SAMR_R_DELETE_DOM_GROUP r_u;
956 DEBUG(5,("samr_delete_dom_group: %d\n", __LINE__));
958 /* find the policy handle. open a policy on it. */
959 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->group_pol, &group_sid))
961 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
965 sid_to_string(group_sid_str, &group_sid );
966 sid_split_rid(&group_sid, &group_rid);
971 DEBUG(10,("sid is %s\n", group_sid_str));
973 if (sid_equal(&group_sid, &global_sam_sid))
975 DEBUG(10,("lookup on Domain SID\n"));
978 status = del_group_entry(group_rid) ? 0x0 : (0xC0000000 | NT_STATUS_NO_SUCH_GROUP);
983 status = 0xC0000000 | NT_STATUS_NO_SUCH_GROUP;
987 make_samr_r_delete_dom_group(&r_u, status);
989 /* store the response in the SMB stream */
990 samr_io_r_delete_dom_group("", &r_u, rdata, 0);
993 /*******************************************************************
994 api_samr_delete_dom_group
995 ********************************************************************/
996 static void api_samr_delete_dom_group( uint16 vuid, prs_struct *data, prs_struct *rdata)
998 SAMR_Q_DELETE_DOM_GROUP q_u;
999 samr_io_q_delete_dom_group("", &q_u, data, 0);
1000 samr_reply_delete_dom_group(&q_u, rdata);
1004 /*******************************************************************
1005 samr_reply_query_groupmem
1006 ********************************************************************/
1007 static void samr_reply_query_groupmem(SAMR_Q_QUERY_GROUPMEM *q_u,
1012 DOMAIN_GRP_MEMBER *mem_grp = NULL;
1014 uint32 *attr = NULL;
1018 fstring group_sid_str;
1020 SAMR_R_QUERY_GROUPMEM r_u;
1022 DEBUG(5,("samr_query_groupmem: %d\n", __LINE__));
1024 /* find the policy handle. open a policy on it. */
1025 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->group_pol, &group_sid))
1027 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1031 sid_to_string(group_sid_str, &group_sid );
1032 sid_split_rid(&group_sid, &group_rid);
1037 DEBUG(10,("sid is %s\n", group_sid_str));
1039 if (sid_equal(&group_sid, &global_sam_sid))
1041 DEBUG(10,("lookup on Domain SID\n"));
1044 status = getgrouprid(group_rid, &mem_grp, &num_rids) != NULL ? 0x0 : (0xC0000000 | NT_STATUS_NO_SUCH_GROUP);
1045 unbecome_root(True);
1049 status = 0xC0000000 | NT_STATUS_NO_SUCH_GROUP;
1053 if (status == 0x0 && num_rids > 0)
1055 rid = malloc(num_rids * sizeof(uint32));
1056 attr = malloc(num_rids * sizeof(uint32));
1057 if (mem_grp != NULL && rid != NULL && attr != NULL)
1060 for (i = 0; i < num_rids; i++)
1062 rid [i] = mem_grp[i].rid;
1063 attr[i] = mem_grp[i].attr;
1069 make_samr_r_query_groupmem(&r_u, num_rids, rid, attr, status);
1071 /* store the response in the SMB stream */
1072 samr_io_r_query_groupmem("", &r_u, rdata, 0);
1084 DEBUG(5,("samr_query_groupmem: %d\n", __LINE__));
1088 /*******************************************************************
1089 api_samr_query_groupmem
1090 ********************************************************************/
1091 static void api_samr_query_groupmem( uint16 vuid, prs_struct *data, prs_struct *rdata)
1093 SAMR_Q_QUERY_GROUPMEM q_u;
1094 samr_io_q_query_groupmem("", &q_u, data, 0);
1095 samr_reply_query_groupmem(&q_u, rdata);
1099 /*******************************************************************
1100 samr_reply_query_groupinfo
1101 ********************************************************************/
1102 static void samr_reply_query_groupinfo(SAMR_Q_QUERY_GROUPINFO *q_u,
1105 SAMR_R_QUERY_GROUPINFO r_e;
1107 uint32 status = 0x0;
1111 /* find the policy handle. open a policy on it. */
1112 if (r_e.status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->pol)) == -1))
1114 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1117 DEBUG(5,("samr_reply_query_groupinfo: %d\n", __LINE__));
1121 if (q_u->switch_level == 1)
1124 ctr.switch_value1 = 1;
1125 make_samr_group_info1(&ctr.group.info1, "account name", "account description");
1127 else if (q_u->switch_level == 4)
1130 ctr.switch_value1 = 4;
1131 make_samr_group_info4(&ctr.group.info4, "account description");
1135 status = 0xC0000000 | NT_STATUS_INVALID_INFO_CLASS;
1139 make_samr_r_query_groupinfo(&r_e, status == 0 ? &ctr : NULL, status);
1141 /* store the response in the SMB stream */
1142 samr_io_r_query_groupinfo("", &r_e, rdata, 0);
1144 DEBUG(5,("samr_query_groupinfo: %d\n", __LINE__));
1148 /*******************************************************************
1149 api_samr_query_groupinfo
1150 ********************************************************************/
1151 static void api_samr_query_groupinfo( uint16 vuid, prs_struct *data, prs_struct *rdata)
1153 SAMR_Q_QUERY_GROUPINFO q_e;
1154 samr_io_q_query_groupinfo("", &q_e, data, 0);
1155 samr_reply_query_groupinfo(&q_e, rdata);
1159 /*******************************************************************
1160 samr_reply_query_aliasinfo
1161 ********************************************************************/
1162 static void samr_reply_query_aliasinfo(SAMR_Q_QUERY_ALIASINFO *q_u,
1165 SAMR_R_QUERY_ALIASINFO r_e;
1167 uint32 status = 0x0;
1171 /* find the policy handle. open a policy on it. */
1172 if (r_e.status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->pol)) == -1))
1174 r_e.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1177 DEBUG(5,("samr_reply_query_aliasinfo: %d\n", __LINE__));
1181 if (q_u->switch_level == 3)
1184 ctr.switch_value1 = 3;
1185 make_samr_alias_info3(&ctr.alias.info3, "<account description>");
1189 status = 0xC0000000 | NT_STATUS_INVALID_INFO_CLASS;
1193 make_samr_r_query_aliasinfo(&r_e, status == 0 ? &ctr : NULL, status);
1195 /* store the response in the SMB stream */
1196 samr_io_r_query_aliasinfo("", &r_e, rdata, 0);
1198 DEBUG(5,("samr_query_aliasinfo: %d\n", __LINE__));
1202 /*******************************************************************
1203 api_samr_query_aliasinfo
1204 ********************************************************************/
1205 static void api_samr_query_aliasinfo( uint16 vuid, prs_struct *data, prs_struct *rdata)
1207 SAMR_Q_QUERY_ALIASINFO q_e;
1208 samr_io_q_query_aliasinfo("", &q_e, data, 0);
1209 samr_reply_query_aliasinfo(&q_e, rdata);
1213 /*******************************************************************
1214 samr_reply_query_useraliases
1215 ********************************************************************/
1216 static void samr_reply_query_useraliases(SAMR_Q_QUERY_USERALIASES *q_u,
1221 LOCAL_GRP *mem_grp = NULL;
1224 struct sam_passwd *sam_pass;
1228 fstring sam_sid_str;
1229 fstring dom_sid_str;
1230 fstring usr_sid_str;
1232 SAMR_R_QUERY_USERALIASES r_u;
1234 DEBUG(5,("samr_query_useraliases: %d\n", __LINE__));
1236 /* find the policy handle. open a policy on it. */
1237 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->pol, &dom_sid))
1239 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1243 sid_to_string(dom_sid_str, &dom_sid );
1244 sid_to_string(sam_sid_str, &global_sam_sid);
1249 usr_sid = q_u->sid[0].sid;
1250 sid_split_rid(&usr_sid, &user_rid);
1251 sid_to_string(usr_sid_str, &usr_sid);
1257 /* find the user account */
1259 sam_pass = getsam21pwrid(user_rid);
1260 unbecome_root(True);
1262 if (sam_pass == NULL)
1264 status = 0xC0000000 | NT_STATUS_NO_SUCH_USER;
1271 DEBUG(10,("sid is %s\n", dom_sid_str));
1273 if (sid_equal(&dom_sid, &global_sid_S_1_5_20))
1275 DEBUG(10,("lookup on S-1-5-20\n"));
1278 getuserbuiltinntnam(sam_pass->nt_name, &mem_grp, &num_rids);
1279 unbecome_root(True);
1281 else if (sid_equal(&dom_sid, &usr_sid))
1283 DEBUG(10,("lookup on Domain SID\n"));
1286 getuseraliasntnam(sam_pass->nt_name, &mem_grp, &num_rids);
1287 unbecome_root(True);
1291 status = 0xC0000000 | NT_STATUS_NO_SUCH_USER;
1295 if (status == 0x0 && num_rids > 0)
1297 rid = malloc(num_rids * sizeof(uint32));
1298 if (mem_grp != NULL && rid != NULL)
1301 for (i = 0; i < num_rids; i++)
1303 rid[i] = mem_grp[i].rid;
1309 make_samr_r_query_useraliases(&r_u, num_rids, rid, status);
1311 /* store the response in the SMB stream */
1312 samr_io_r_query_useraliases("", &r_u, rdata, 0);
1319 DEBUG(5,("samr_query_useraliases: %d\n", __LINE__));
1323 /*******************************************************************
1324 api_samr_query_useraliases
1325 ********************************************************************/
1326 static void api_samr_query_useraliases( uint16 vuid, prs_struct *data, prs_struct *rdata)
1328 SAMR_Q_QUERY_USERALIASES q_u;
1329 samr_io_q_query_useraliases("", &q_u, data, 0);
1330 samr_reply_query_useraliases(&q_u, rdata);
1333 /*******************************************************************
1334 samr_reply_delete_dom_alias
1335 ********************************************************************/
1336 static void samr_reply_delete_dom_alias(SAMR_Q_DELETE_DOM_ALIAS *q_u,
1343 fstring alias_sid_str;
1345 SAMR_R_DELETE_DOM_ALIAS r_u;
1347 DEBUG(5,("samr_delete_dom_alias: %d\n", __LINE__));
1349 /* find the policy handle. open a policy on it. */
1350 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->alias_pol, &alias_sid))
1352 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1356 sid_to_string(alias_sid_str, &alias_sid );
1357 sid_split_rid(&alias_sid, &alias_rid);
1362 DEBUG(10,("sid is %s\n", alias_sid_str));
1364 if (sid_equal(&alias_sid, &global_sam_sid))
1366 DEBUG(10,("lookup on Domain SID\n"));
1369 status = del_alias_entry(alias_rid) ? 0x0 : (0xC0000000 | NT_STATUS_NO_SUCH_ALIAS);
1370 unbecome_root(True);
1374 status = 0xC0000000 | NT_STATUS_NO_SUCH_ALIAS;
1378 make_samr_r_delete_dom_alias(&r_u, status);
1380 /* store the response in the SMB stream */
1381 samr_io_r_delete_dom_alias("", &r_u, rdata, 0);
1384 /*******************************************************************
1385 api_samr_delete_dom_alias
1386 ********************************************************************/
1387 static void api_samr_delete_dom_alias( uint16 vuid, prs_struct *data, prs_struct *rdata)
1389 SAMR_Q_DELETE_DOM_ALIAS q_u;
1390 samr_io_q_delete_dom_alias("", &q_u, data, 0);
1391 samr_reply_delete_dom_alias(&q_u, rdata);
1395 /*******************************************************************
1396 samr_reply_query_aliasmem
1397 ********************************************************************/
1398 static void samr_reply_query_aliasmem(SAMR_Q_QUERY_ALIASMEM *q_u,
1403 LOCAL_GRP_MEMBER *mem_grp = NULL;
1404 DOM_SID2 *sid = NULL;
1408 fstring alias_sid_str;
1410 SAMR_R_QUERY_ALIASMEM r_u;
1412 DEBUG(5,("samr_query_aliasmem: %d\n", __LINE__));
1414 /* find the policy handle. open a policy on it. */
1415 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->alias_pol, &alias_sid))
1417 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1421 sid_to_string(alias_sid_str, &alias_sid );
1422 sid_split_rid(&alias_sid, &alias_rid);
1427 DEBUG(10,("sid is %s\n", alias_sid_str));
1429 if (sid_equal(&alias_sid, &global_sid_S_1_5_20))
1431 DEBUG(10,("lookup on S-1-5-20\n"));
1434 status = getbuiltinrid(alias_rid, &mem_grp, &num_sids) != NULL ? 0x0 : 0xC0000000 | NT_STATUS_NO_SUCH_ALIAS;
1435 unbecome_root(True);
1437 else if (sid_equal(&alias_sid, &global_sam_sid))
1439 DEBUG(10,("lookup on Domain SID\n"));
1442 status = getaliasrid(alias_rid, &mem_grp, &num_sids) != NULL ? 0x0 : 0xC0000000 | NT_STATUS_NO_SUCH_ALIAS;
1443 unbecome_root(True);
1447 status = 0xC0000000 | NT_STATUS_NO_SUCH_ALIAS;
1451 if (status == 0x0 && num_sids > 0)
1453 sid = malloc(num_sids * sizeof(DOM_SID));
1454 if (mem_grp != NULL && sid != NULL)
1457 for (i = 0; i < num_sids; i++)
1459 make_dom_sid2(&sid[i], &mem_grp[i].sid);
1465 make_samr_r_query_aliasmem(&r_u, num_sids, sid, status);
1467 /* store the response in the SMB stream */
1468 samr_io_r_query_aliasmem("", &r_u, rdata, 0);
1475 DEBUG(5,("samr_query_aliasmem: %d\n", __LINE__));
1479 /*******************************************************************
1480 api_samr_query_aliasmem
1481 ********************************************************************/
1482 static void api_samr_query_aliasmem( uint16 vuid, prs_struct *data, prs_struct *rdata)
1484 SAMR_Q_QUERY_ALIASMEM q_u;
1485 samr_io_q_query_aliasmem("", &q_u, data, 0);
1486 samr_reply_query_aliasmem(&q_u, rdata);
1489 /*******************************************************************
1490 samr_reply_lookup_names
1491 ********************************************************************/
1492 static void samr_reply_lookup_names(SAMR_Q_LOOKUP_NAMES *q_u,
1495 uint32 rid [MAX_SAM_ENTRIES];
1496 uint8 type[MAX_SAM_ENTRIES];
1499 int num_rids = q_u->num_names1;
1502 SAMR_R_LOOKUP_NAMES r_u;
1504 DEBUG(5,("samr_lookup_names: %d\n", __LINE__));
1506 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->pol, &pol_sid))
1508 status = 0xC0000000 | NT_STATUS_OBJECT_TYPE_MISMATCH;
1511 if (num_rids > MAX_SAM_ENTRIES)
1513 num_rids = MAX_SAM_ENTRIES;
1514 DEBUG(5,("samr_lookup_names: truncating entries to %d\n", num_rids));
1517 SMB_ASSERT_ARRAY(q_u->uni_name, num_rids);
1519 for (i = 0; i < num_rids && status == 0; i++)
1523 unistr2_to_ascii(name, &q_u->uni_name[i], sizeof(name)-1);
1525 status = lookup_name(name, &sid, &(type[i]));
1528 sid_split_rid(&sid, &rid[i]);
1532 type[i] = SID_NAME_UNKNOWN;
1533 rid [i] = 0xffffffff;
1535 if (!sid_equal(&pol_sid, &sid))
1537 rid [i] = 0xffffffff;
1538 type[i] = SID_NAME_UNKNOWN;
1542 make_samr_r_lookup_names(&r_u, num_rids, rid, type, status);
1544 /* store the response in the SMB stream */
1545 samr_io_r_lookup_names("", &r_u, rdata, 0);
1547 DEBUG(5,("samr_lookup_names: %d\n", __LINE__));
1551 /*******************************************************************
1552 api_samr_lookup_names
1553 ********************************************************************/
1554 static void api_samr_lookup_names( uint16 vuid, prs_struct *data, prs_struct *rdata)
1556 SAMR_Q_LOOKUP_NAMES q_u;
1557 samr_io_q_lookup_names("", &q_u, data, 0);
1558 samr_reply_lookup_names(&q_u, rdata);
1561 /*******************************************************************
1562 samr_reply_chgpasswd_user
1563 ********************************************************************/
1564 static void samr_reply_chgpasswd_user(SAMR_Q_CHGPASSWD_USER *q_u,
1567 SAMR_R_CHGPASSWD_USER r_u;
1568 uint32 status = 0x0;
1572 unistr2_to_ascii(user_name, &q_u->uni_user_name, sizeof(user_name)-1);
1573 unistr2_to_ascii(wks, &q_u->uni_dest_host, sizeof(wks)-1);
1575 DEBUG(5,("samr_chgpasswd_user: user: %s wks: %s\n", user_name, wks));
1577 if (!pass_oem_change(user_name,
1578 q_u->lm_newpass.pass, q_u->lm_oldhash.hash,
1579 q_u->nt_newpass.pass, q_u->nt_oldhash.hash))
1581 status = 0xC0000000 | NT_STATUS_WRONG_PASSWORD;
1584 make_samr_r_chgpasswd_user(&r_u, status);
1586 /* store the response in the SMB stream */
1587 samr_io_r_chgpasswd_user("", &r_u, rdata, 0);
1589 DEBUG(5,("samr_chgpasswd_user: %d\n", __LINE__));
1592 /*******************************************************************
1593 api_samr_chgpasswd_user
1594 ********************************************************************/
1595 static void api_samr_chgpasswd_user( uint16 vuid, prs_struct *data, prs_struct *rdata)
1597 SAMR_Q_CHGPASSWD_USER q_u;
1598 samr_io_q_chgpasswd_user("", &q_u, data, 0);
1599 samr_reply_chgpasswd_user(&q_u, rdata);
1603 /*******************************************************************
1604 samr_reply_unknown_38
1605 ********************************************************************/
1606 static void samr_reply_unknown_38(SAMR_Q_UNKNOWN_38 *q_u,
1609 SAMR_R_UNKNOWN_38 r_u;
1611 DEBUG(5,("samr_unknown_38: %d\n", __LINE__));
1613 make_samr_r_unknown_38(&r_u);
1615 /* store the response in the SMB stream */
1616 samr_io_r_unknown_38("", &r_u, rdata, 0);
1618 DEBUG(5,("samr_unknown_38: %d\n", __LINE__));
1621 /*******************************************************************
1623 ********************************************************************/
1624 static void api_samr_unknown_38( uint16 vuid, prs_struct *data, prs_struct *rdata)
1626 SAMR_Q_UNKNOWN_38 q_u;
1627 samr_io_q_unknown_38("", &q_u, data, 0);
1628 samr_reply_unknown_38(&q_u, rdata);
1632 /*******************************************************************
1633 samr_reply_lookup_rids
1634 ********************************************************************/
1635 static void samr_reply_lookup_rids(SAMR_Q_LOOKUP_RIDS *q_u,
1638 fstring group_names[MAX_SAM_ENTRIES];
1639 uint8 group_attrs[MAX_SAM_ENTRIES];
1641 int num_rids = q_u->num_rids1;
1644 SAMR_R_LOOKUP_RIDS r_u;
1646 DEBUG(5,("samr_lookup_rids: %d\n", __LINE__));
1648 /* find the policy handle. open a policy on it. */
1649 if (status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->pol)) == -1))
1651 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1654 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->pol, &pol_sid))
1656 status = 0xC0000000 | NT_STATUS_OBJECT_TYPE_MISMATCH;
1662 if (num_rids > MAX_SAM_ENTRIES)
1664 num_rids = MAX_SAM_ENTRIES;
1665 DEBUG(5,("samr_lookup_rids: truncating entries to %d\n", num_rids));
1668 for (i = 0; i < num_rids && status == 0; i++)
1671 sid_copy(&sid, &pol_sid);
1672 sid_append_rid(&sid, q_u->rid[i]);
1673 lookup_sid(&sid, group_names[i], &group_attrs[i]);
1677 make_samr_r_lookup_rids(&r_u, num_rids, group_names, group_attrs, status);
1679 /* store the response in the SMB stream */
1680 samr_io_r_lookup_rids("", &r_u, rdata, 0);
1682 DEBUG(5,("samr_lookup_rids: %d\n", __LINE__));
1686 /*******************************************************************
1687 api_samr_lookup_rids
1688 ********************************************************************/
1689 static void api_samr_lookup_rids( uint16 vuid, prs_struct *data, prs_struct *rdata)
1691 SAMR_Q_LOOKUP_RIDS q_u;
1692 samr_io_q_lookup_rids("", &q_u, data, 0);
1693 samr_reply_lookup_rids(&q_u, rdata);
1697 /*******************************************************************
1698 samr_reply_open_user
1699 ********************************************************************/
1700 static void samr_reply_open_user(SAMR_Q_OPEN_USER *q_u,
1704 SAMR_R_OPEN_USER r_u;
1705 struct sam_passwd *sam_pass;
1706 BOOL pol_open = False;
1708 /* set up the SAMR open_user response */
1709 bzero(r_u.user_pol.data, POL_HND_SIZE);
1713 /* find the policy handle. open a policy on it. */
1714 if (r_u.status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->domain_pol)) == -1))
1716 r_u.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1719 /* get a (unique) handle. open a policy on it. */
1720 if (r_u.status == 0x0 && !(pol_open = open_lsa_policy_hnd(&(r_u.user_pol))))
1722 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
1726 sam_pass = getsam21pwrid(q_u->user_rid);
1727 unbecome_root(True);
1729 /* check that the RID exists in our domain. */
1730 if (r_u.status == 0x0 && sam_pass == NULL)
1732 r_u.status = 0xC0000000 | NT_STATUS_NO_SUCH_USER;
1735 /* associate the RID with the (unique) handle. */
1736 if (r_u.status == 0x0 && !set_lsa_policy_samr_rid(&(r_u.user_pol), q_u->user_rid))
1738 /* oh, whoops. don't know what error message to return, here */
1739 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
1742 if (r_u.status != 0 && pol_open)
1744 close_lsa_policy_hnd(&(r_u.user_pol));
1747 DEBUG(5,("samr_open_user: %d\n", __LINE__));
1749 /* store the response in the SMB stream */
1750 samr_io_r_open_user("", &r_u, rdata, 0);
1752 DEBUG(5,("samr_open_user: %d\n", __LINE__));
1756 /*******************************************************************
1758 ********************************************************************/
1759 static void api_samr_open_user( uint16 vuid, prs_struct *data, prs_struct *rdata)
1761 SAMR_Q_OPEN_USER q_u;
1762 samr_io_q_open_user("", &q_u, data, 0);
1763 samr_reply_open_user(&q_u, rdata, 0x0);
1767 /*************************************************************************
1769 *************************************************************************/
1770 static BOOL get_user_info_10(SAM_USER_INFO_10 *id10, uint32 user_rid)
1772 struct sam_passwd *sam_pass;
1775 sam_pass = getsam21pwrid(user_rid);
1776 unbecome_root(True);
1778 if (sam_pass == NULL)
1780 DEBUG(4,("User 0x%x not found\n", user_rid));
1784 DEBUG(3,("User:[%s]\n", sam_pass->nt_name));
1786 make_sam_user_info10(id10, sam_pass->acct_ctrl);
1791 /*************************************************************************
1793 *************************************************************************/
1794 static BOOL get_user_info_21(SAM_USER_INFO_21 *id21, uint32 user_rid)
1796 struct sam_passwd *sam_pass;
1801 sam_pass = getsam21pwrid(user_rid);
1802 unbecome_root(True);
1804 if (sam_pass == NULL)
1806 DEBUG(4,("User 0x%x not found\n", user_rid));
1810 DEBUG(3,("User:[%s]\n", sam_pass->nt_name));
1812 /* create a LOGON_HRS structure */
1813 hrs.len = sam_pass->hours_len;
1814 SMB_ASSERT_ARRAY(hrs.hours, hrs.len);
1815 for (i = 0; i < hrs.len; i++)
1817 hrs.hours[i] = sam_pass->hours[i];
1820 make_sam_user_info21(id21,
1822 &sam_pass->logon_time,
1823 &sam_pass->logoff_time,
1824 &sam_pass->kickoff_time,
1825 &sam_pass->pass_last_set_time,
1826 &sam_pass->pass_can_change_time,
1827 &sam_pass->pass_must_change_time,
1829 sam_pass->nt_name, /* user_name */
1830 sam_pass->full_name, /* full_name */
1831 sam_pass->home_dir, /* home_dir */
1832 sam_pass->dir_drive, /* dir_drive */
1833 sam_pass->logon_script, /* logon_script */
1834 sam_pass->profile_path, /* profile_path */
1835 sam_pass->acct_desc, /* description */
1836 sam_pass->workstations, /* workstations user can log in from */
1837 sam_pass->unknown_str, /* don't know, yet */
1838 sam_pass->munged_dial, /* dialin info. contains dialin path and tel no */
1840 sam_pass->user_rid, /* RID user_id */
1841 sam_pass->group_rid, /* RID group_id */
1842 sam_pass->acct_ctrl,
1844 sam_pass->unknown_3, /* unknown_3 */
1845 sam_pass->logon_divs, /* divisions per week */
1846 &hrs, /* logon hours */
1847 sam_pass->unknown_5,
1848 sam_pass->unknown_6);
1853 /*******************************************************************
1854 samr_reply_query_userinfo
1855 ********************************************************************/
1856 static void samr_reply_query_userinfo(SAMR_Q_QUERY_USERINFO *q_u,
1859 SAMR_R_QUERY_USERINFO r_u;
1861 SAM_USER_INFO_11 id11;
1863 SAM_USER_INFO_10 id10;
1864 SAM_USER_INFO_21 id21;
1867 uint32 status = 0x0;
1870 DEBUG(5,("samr_reply_query_userinfo: %d\n", __LINE__));
1872 /* search for the handle */
1873 if (status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->pol)) == -1))
1875 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1878 /* find the user's rid */
1879 if (status == 0x0 && (rid = get_lsa_policy_samr_rid(&(q_u->pol))) == 0xffffffff)
1881 status = 0xC0000000 | NT_STATUS_OBJECT_TYPE_MISMATCH;
1884 DEBUG(5,("samr_reply_query_userinfo: rid:0x%x\n", rid));
1886 /* ok! user info levels (there are lots: see MSDEV help), off we go... */
1889 switch (q_u->switch_value)
1893 info = (void*)&id10;
1894 status = get_user_info_10(&id10, rid) ? 0 : (0xC0000000 | NT_STATUS_NO_SUCH_USER);
1898 /* whoops - got this wrong. i think. or don't understand what's happening. */
1902 info = (void*)&id11;
1904 expire.low = 0xffffffff;
1905 expire.high = 0x7fffffff;
1907 make_sam_user_info11(&id11, &expire, "BROOKFIELDS$", 0x03ef, 0x201, 0x0080);
1914 info = (void*)&id21;
1915 status = get_user_info_21(&id21, rid) ? 0 : (0xC0000000 | NT_STATUS_NO_SUCH_USER);
1921 status = 0xC0000000 | NT_STATUS_INVALID_INFO_CLASS;
1928 make_samr_r_query_userinfo(&r_u, q_u->switch_value, info, status);
1930 /* store the response in the SMB stream */
1931 samr_io_r_query_userinfo("", &r_u, rdata, 0);
1933 DEBUG(5,("samr_reply_query_userinfo: %d\n", __LINE__));
1937 /*******************************************************************
1938 api_samr_query_userinfo
1939 ********************************************************************/
1940 static void api_samr_query_userinfo( uint16 vuid, prs_struct *data, prs_struct *rdata)
1942 SAMR_Q_QUERY_USERINFO q_u;
1943 samr_io_q_query_userinfo("", &q_u, data, 0);
1944 samr_reply_query_userinfo(&q_u, rdata);
1948 /*******************************************************************
1949 samr_reply_query_usergroups
1950 ********************************************************************/
1951 static void samr_reply_query_usergroups(SAMR_Q_QUERY_USERGROUPS *q_u,
1954 SAMR_R_QUERY_USERGROUPS r_u;
1955 uint32 status = 0x0;
1957 struct sam_passwd *sam_pass;
1958 DOM_GID *gids = NULL;
1962 DEBUG(5,("samr_query_usergroups: %d\n", __LINE__));
1964 /* find the policy handle. open a policy on it. */
1965 if (status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->pol)) == -1))
1967 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
1970 /* find the user's rid */
1971 if (status == 0x0 && (rid = get_lsa_policy_samr_rid(&(q_u->pol))) == 0xffffffff)
1973 status = 0xC0000000 | NT_STATUS_OBJECT_TYPE_MISMATCH;
1979 sam_pass = getsam21pwrid(rid);
1980 unbecome_root(True);
1982 if (sam_pass == NULL)
1984 status = 0xC0000000 | NT_STATUS_NO_SUCH_USER;
1990 DOMAIN_GRP *mem_grp = NULL;
1993 getusergroupsntnam(sam_pass->nt_name, &mem_grp, &num_groups);
1994 unbecome_root(True);
1997 num_groups = make_dom_gids(mem_grp, num_groups, &gids);
1999 if (mem_grp != NULL)
2005 /* construct the response. lkclXXXX: gids are not copied! */
2006 make_samr_r_query_usergroups(&r_u, num_groups, gids, status);
2008 /* store the response in the SMB stream */
2009 samr_io_r_query_usergroups("", &r_u, rdata, 0);
2016 DEBUG(5,("samr_query_usergroups: %d\n", __LINE__));
2020 /*******************************************************************
2021 api_samr_query_usergroups
2022 ********************************************************************/
2023 static void api_samr_query_usergroups( uint16 vuid, prs_struct *data, prs_struct *rdata)
2025 SAMR_Q_QUERY_USERGROUPS q_u;
2026 samr_io_q_query_usergroups("", &q_u, data, 0);
2027 samr_reply_query_usergroups(&q_u, rdata);
2031 /*******************************************************************
2032 opens a samr alias by rid, returns a policy handle.
2033 ********************************************************************/
2034 static uint32 open_samr_alias(DOM_SID *sid, POLICY_HND *alias_pol,
2037 BOOL pol_open = False;
2038 uint32 status = 0x0;
2040 /* get a (unique) handle. open a policy on it. */
2041 if (status == 0x0 && !(pol_open = open_lsa_policy_hnd(alias_pol)))
2043 status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2046 DEBUG(0,("TODO: verify that the alias rid exists\n"));
2048 /* associate a RID with the (unique) handle. */
2049 if (status == 0x0 && !set_lsa_policy_samr_rid(alias_pol, alias_rid))
2051 /* oh, whoops. don't know what error message to return, here */
2052 status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2055 sid_append_rid(sid, alias_rid);
2057 /* associate an alias SID with the (unique) handle. */
2058 if (status == 0x0 && !set_lsa_policy_samr_sid(alias_pol, sid))
2060 /* oh, whoops. don't know what error message to return, here */
2061 status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2064 if (status != 0 && pol_open)
2066 close_lsa_policy_hnd(alias_pol);
2072 /*******************************************************************
2073 samr_reply_create_dom_alias
2074 ********************************************************************/
2075 static void samr_reply_create_dom_alias(SAMR_Q_CREATE_DOM_ALIAS *q_u,
2078 SAMR_R_CREATE_DOM_ALIAS r_u;
2081 POLICY_HND alias_pol;
2082 uint32 status = 0x0;
2084 bzero(&alias_pol, sizeof(alias_pol));
2086 DEBUG(5,("samr_create_dom_alias: %d\n", __LINE__));
2088 /* find the policy handle. open a policy on it. */
2089 if (status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->dom_pol)) == -1))
2091 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
2094 /* find the domain sid */
2095 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->dom_pol, &dom_sid))
2097 status = 0xC0000000 | NT_STATUS_OBJECT_TYPE_MISMATCH;
2100 if (!sid_equal(&dom_sid, &global_sam_sid))
2102 status = 0xC0000000 | NT_STATUS_ACCESS_DENIED;
2107 unistr2_to_ascii(grp.name, &q_u->uni_acct_desc, sizeof(grp.name)-1);
2108 fstrcpy(grp.comment, "");
2109 grp.rid = 0xffffffff;
2112 status = add_alias_entry(&grp) ? 0 : (0xC0000000 | NT_STATUS_ACCESS_DENIED);
2113 unbecome_root(True);
2118 status = open_samr_alias(&dom_sid, &alias_pol, grp.rid);
2121 /* construct the response. */
2122 make_samr_r_create_dom_alias(&r_u, &alias_pol, grp.rid, status);
2124 /* store the response in the SMB stream */
2125 samr_io_r_create_dom_alias("", &r_u, rdata, 0);
2127 DEBUG(5,("samr_create_dom_alias: %d\n", __LINE__));
2131 /*******************************************************************
2132 api_samr_create_dom_alias
2133 ********************************************************************/
2134 static void api_samr_create_dom_alias( uint16 vuid, prs_struct *data, prs_struct *rdata)
2136 SAMR_Q_CREATE_DOM_ALIAS q_u;
2137 samr_io_q_create_dom_alias("", &q_u, data, 0);
2138 samr_reply_create_dom_alias(&q_u, rdata);
2142 /*******************************************************************
2143 opens a samr group by rid, returns a policy handle.
2144 ********************************************************************/
2145 static uint32 open_samr_group(DOM_SID *sid, POLICY_HND *group_pol,
2148 BOOL pol_open = False;
2149 uint32 status = 0x0;
2151 /* get a (unique) handle. open a policy on it. */
2152 if (status == 0x0 && !(pol_open = open_lsa_policy_hnd(group_pol)))
2154 status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2157 DEBUG(0,("TODO: verify that the group rid exists\n"));
2159 /* associate a RID with the (unique) handle. */
2160 if (status == 0x0 && !set_lsa_policy_samr_rid(group_pol, group_rid))
2162 /* oh, whoops. don't know what error message to return, here */
2163 status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2166 sid_append_rid(sid, group_rid);
2168 /* associate an group SID with the (unique) handle. */
2169 if (status == 0x0 && !set_lsa_policy_samr_sid(group_pol, sid))
2171 /* oh, whoops. don't know what error message to return, here */
2172 status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2175 if (status != 0 && pol_open)
2177 close_lsa_policy_hnd(group_pol);
2183 /*******************************************************************
2184 samr_reply_create_dom_group
2185 ********************************************************************/
2186 static void samr_reply_create_dom_group(SAMR_Q_CREATE_DOM_GROUP *q_u,
2189 SAMR_R_CREATE_DOM_GROUP r_u;
2192 POLICY_HND group_pol;
2193 uint32 status = 0x0;
2195 bzero(&group_pol, sizeof(group_pol));
2197 DEBUG(5,("samr_create_dom_group: %d\n", __LINE__));
2199 /* find the policy handle. open a policy on it. */
2200 if (status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->pol)) == -1))
2202 status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
2205 /* find the domain sid */
2206 if (status == 0x0 && !get_lsa_policy_samr_sid(&q_u->pol, &dom_sid))
2208 status = 0xC0000000 | NT_STATUS_OBJECT_TYPE_MISMATCH;
2211 if (!sid_equal(&dom_sid, &global_sam_sid))
2213 status = 0xC0000000 | NT_STATUS_ACCESS_DENIED;
2218 unistr2_to_ascii(grp.name, &q_u->uni_acct_desc, sizeof(grp.name)-1);
2219 fstrcpy(grp.comment, "");
2220 grp.rid = 0xffffffff;
2224 status = add_group_entry(&grp) ? 0x0 : (0xC0000000 | NT_STATUS_ACCESS_DENIED);
2225 unbecome_root(True);
2230 status = open_samr_group(&dom_sid, &group_pol, grp.rid);
2233 /* construct the response. */
2234 make_samr_r_create_dom_group(&r_u, &group_pol, grp.rid, status);
2236 /* store the response in the SMB stream */
2237 samr_io_r_create_dom_group("", &r_u, rdata, 0);
2239 DEBUG(5,("samr_create_dom_group: %d\n", __LINE__));
2243 /*******************************************************************
2244 api_samr_create_dom_group
2245 ********************************************************************/
2246 static void api_samr_create_dom_group( uint16 vuid, prs_struct *data, prs_struct *rdata)
2248 SAMR_Q_CREATE_DOM_GROUP q_u;
2249 samr_io_q_create_dom_group("", &q_u, data, 0);
2250 samr_reply_create_dom_group(&q_u, rdata);
2254 /*******************************************************************
2255 samr_reply_query_dom_info
2256 ********************************************************************/
2257 static void samr_reply_query_dom_info(SAMR_Q_QUERY_DOMAIN_INFO *q_u,
2260 SAMR_R_QUERY_DOMAIN_INFO r_u;
2262 uint16 switch_value = 0x0;
2263 uint32 status = 0x0;
2270 DEBUG(5,("samr_reply_query_dom_info: %d\n", __LINE__));
2272 /* find the policy handle. open a policy on it. */
2273 if (r_u.status == 0x0 && (find_lsa_policy_by_hnd(&(q_u->domain_pol)) == -1))
2275 r_u.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
2276 DEBUG(5,("samr_reply_query_dom_info: invalid handle\n"));
2281 switch (q_u->switch_value)
2286 make_unk_info6(&ctr.info.inf6);
2293 make_unk_info7(&ctr.info.inf7);
2300 make_unk_info2(&ctr.info.inf2, global_sam_name, global_myname);
2306 status = 0xC0000000 | NT_STATUS_INVALID_INFO_CLASS;
2312 make_samr_r_query_dom_info(&r_u, switch_value, &ctr, status);
2314 /* store the response in the SMB stream */
2315 samr_io_r_query_dom_info("", &r_u, rdata, 0);
2317 DEBUG(5,("samr_query_dom_info: %d\n", __LINE__));
2321 /*******************************************************************
2322 api_samr_query_dom_info
2323 ********************************************************************/
2324 static void api_samr_query_dom_info( uint16 vuid, prs_struct *data, prs_struct *rdata)
2326 SAMR_Q_QUERY_DOMAIN_INFO q_e;
2327 samr_io_q_query_dom_info("", &q_e, data, 0);
2328 samr_reply_query_dom_info(&q_e, rdata);
2333 /*******************************************************************
2334 samr_reply_unknown_32
2335 ********************************************************************/
2336 static void samr_reply_unknown_32(SAMR_Q_UNKNOWN_32 *q_u,
2341 SAMR_R_UNKNOWN_32 r_u;
2343 /* set up the SAMR unknown_32 response */
2344 bzero(r_u.pol.data, POL_HND_SIZE);
2347 for (i = 4; i < POL_HND_SIZE; i++)
2349 r_u.pol.data[i] = i+1;
2353 make_dom_rid4(&(r_u.rid4), 0x0030, 0, 0);
2354 r_u.status = status;
2356 DEBUG(5,("samr_unknown_32: %d\n", __LINE__));
2358 /* store the response in the SMB stream */
2359 samr_io_r_unknown_32("", &r_u, rdata, 0);
2361 DEBUG(5,("samr_unknown_32: %d\n", __LINE__));
2365 /*******************************************************************
2367 ********************************************************************/
2368 static void api_samr_unknown_32( uint16 vuid, prs_struct *data, prs_struct *rdata)
2371 struct sam_passwd *sam_pass;
2374 SAMR_Q_UNKNOWN_32 q_u;
2376 /* grab the samr unknown 32 */
2377 samr_io_q_unknown_32("", &q_u, data, 0);
2379 /* find the machine account: tell the caller if it exists.
2380 lkclXXXX i have *no* idea if this is a problem or not
2381 or even if you are supposed to construct a different
2382 reply if the account already exists...
2385 unistr2_to_ascii(mach_acct, &q_u.uni_mach_acct, sizeof(mach_acct)-1);
2388 sam_pass = getsam21pwntnam(mach_acct);
2389 unbecome_root(True);
2391 if (sam_pass != NULL)
2393 /* machine account exists: say so */
2394 status = 0xC0000000 | NT_STATUS_USER_EXISTS;
2398 /* this could cause trouble... */
2399 DEBUG(0,("trouble!\n"));
2403 /* construct reply. */
2404 samr_reply_unknown_32(&q_u, rdata, status);
2408 /*******************************************************************
2409 samr_reply_connect_anon
2410 ********************************************************************/
2411 static void samr_reply_connect_anon(SAMR_Q_CONNECT_ANON *q_u,
2414 SAMR_R_CONNECT_ANON r_u;
2415 BOOL pol_open = False;
2417 /* set up the SAMR connect_anon response */
2420 /* get a (unique) handle. open a policy on it. */
2421 if (r_u.status == 0x0 && !(pol_open = open_lsa_policy_hnd(&(r_u.connect_pol))))
2423 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2426 /* associate the domain SID with the (unique) handle. */
2427 if (r_u.status == 0x0 && !set_lsa_policy_samr_pol_status(&(r_u.connect_pol), q_u->unknown_0))
2429 /* oh, whoops. don't know what error message to return, here */
2430 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2433 if (r_u.status != 0 && pol_open)
2435 close_lsa_policy_hnd(&(r_u.connect_pol));
2438 DEBUG(5,("samr_connect_anon: %d\n", __LINE__));
2440 /* store the response in the SMB stream */
2441 samr_io_r_connect_anon("", &r_u, rdata, 0);
2443 DEBUG(5,("samr_connect_anon: %d\n", __LINE__));
2447 /*******************************************************************
2448 api_samr_connect_anon
2449 ********************************************************************/
2450 static void api_samr_connect_anon( uint16 vuid, prs_struct *data, prs_struct *rdata)
2452 SAMR_Q_CONNECT_ANON q_u;
2453 samr_io_q_connect_anon("", &q_u, data, 0);
2454 samr_reply_connect_anon(&q_u, rdata);
2457 /*******************************************************************
2459 ********************************************************************/
2460 static void samr_reply_connect(SAMR_Q_CONNECT *q_u,
2464 BOOL pol_open = False;
2466 /* set up the SAMR connect response */
2469 /* get a (unique) handle. open a policy on it. */
2470 if (r_u.status == 0x0 && !(pol_open = open_lsa_policy_hnd(&(r_u.connect_pol))))
2472 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2475 /* associate the domain SID with the (unique) handle. */
2476 if (r_u.status == 0x0 && !set_lsa_policy_samr_pol_status(&(r_u.connect_pol), q_u->unknown_0))
2478 /* oh, whoops. don't know what error message to return, here */
2479 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2482 if (r_u.status != 0 && pol_open)
2484 close_lsa_policy_hnd(&(r_u.connect_pol));
2487 DEBUG(5,("samr_connect: %d\n", __LINE__));
2489 /* store the response in the SMB stream */
2490 samr_io_r_connect("", &r_u, rdata, 0);
2492 DEBUG(5,("samr_connect: %d\n", __LINE__));
2496 /*******************************************************************
2498 ********************************************************************/
2499 static void api_samr_connect( uint16 vuid, prs_struct *data, prs_struct *rdata)
2502 samr_io_q_connect("", &q_u, data, 0);
2503 samr_reply_connect(&q_u, rdata);
2506 /*******************************************************************
2507 samr_reply_open_alias
2508 ********************************************************************/
2509 static void samr_reply_open_alias(SAMR_Q_OPEN_ALIAS *q_u,
2512 SAMR_R_OPEN_ALIAS r_u;
2514 BOOL pol_open = False;
2516 /* set up the SAMR open_alias response */
2519 if (r_u.status == 0x0 && !get_lsa_policy_samr_sid(&q_u->dom_pol, &sid))
2521 r_u.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
2524 /* get a (unique) handle. open a policy on it. */
2525 if (r_u.status == 0x0 && !(pol_open = open_lsa_policy_hnd(&(r_u.pol))))
2527 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2530 DEBUG(0,("TODO: verify that the alias rid exists\n"));
2532 /* associate a RID with the (unique) handle. */
2533 if (r_u.status == 0x0 && !set_lsa_policy_samr_rid(&(r_u.pol), q_u->rid_alias))
2535 /* oh, whoops. don't know what error message to return, here */
2536 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2539 sid_append_rid(&sid, q_u->rid_alias);
2541 /* associate an alias SID with the (unique) handle. */
2542 if (r_u.status == 0x0 && !set_lsa_policy_samr_sid(&(r_u.pol), &sid))
2544 /* oh, whoops. don't know what error message to return, here */
2545 r_u.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND;
2548 if (r_u.status != 0 && pol_open)
2550 close_lsa_policy_hnd(&(r_u.pol));
2553 DEBUG(5,("samr_open_alias: %d\n", __LINE__));
2555 /* store the response in the SMB stream */
2556 samr_io_r_open_alias("", &r_u, rdata, 0);
2558 DEBUG(5,("samr_open_alias: %d\n", __LINE__));
2562 /*******************************************************************
2564 ********************************************************************/
2565 static void api_samr_open_alias( uint16 vuid, prs_struct *data, prs_struct *rdata)
2568 SAMR_Q_OPEN_ALIAS q_u;
2569 samr_io_q_open_alias("", &q_u, data, 0);
2570 samr_reply_open_alias(&q_u, rdata);
2573 /*******************************************************************
2574 samr_reply_open_group
2575 ********************************************************************/
2576 static void samr_reply_open_group(SAMR_Q_OPEN_GROUP *q_u,
2579 SAMR_R_OPEN_GROUP r_u;
2582 DEBUG(5,("samr_open_group: %d\n", __LINE__));
2586 /* find the domain sid associated with the policy handle */
2587 if (r_u.status == 0x0 && !get_lsa_policy_samr_sid(&q_u->domain_pol, &sid))
2589 r_u.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
2592 if (r_u.status == 0x0 && !sid_equal(&sid, &global_sam_sid))
2594 r_u.status = 0xC0000000 | NT_STATUS_ACCESS_DENIED;
2597 if (r_u.status == 0x0)
2599 r_u.status = open_samr_group(&sid, &r_u.pol, q_u->rid_group);
2602 /* store the response in the SMB stream */
2603 samr_io_r_open_group("", &r_u, rdata, 0);
2605 DEBUG(5,("samr_open_group: %d\n", __LINE__));
2609 /*******************************************************************
2611 ********************************************************************/
2612 static void api_samr_open_group( uint16 vuid, prs_struct *data, prs_struct *rdata)
2615 SAMR_Q_OPEN_GROUP q_u;
2616 samr_io_q_open_group("", &q_u, data, 0);
2617 samr_reply_open_group(&q_u, rdata);
2620 /*******************************************************************
2621 samr_reply_lookup_domain
2622 ********************************************************************/
2623 static void samr_reply_lookup_domain(SAMR_Q_LOOKUP_DOMAIN *q_u,
2626 SAMR_R_LOOKUP_DOMAIN r_u;
2629 DEBUG(5,("samr_lookup_domain: %d\n", __LINE__));
2634 /* find the connection policy handle */
2635 if (find_lsa_policy_by_hnd(&(q_u->connect_pol)) == -1)
2637 r_u.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE;
2640 if (r_u.status == 0x0)
2642 unistr2_to_ascii(domain, &(q_u->uni_domain), sizeof(domain));
2643 DEBUG(5, ("Lookup Domain: %s\n", domain));
2645 /* check it's one of ours */
2646 if (strequal(domain, global_sam_name))
2648 make_dom_sid2(&(r_u.dom_sid), &global_sam_sid);
2651 else if (strequal(domain, "BUILTIN"))
2653 make_dom_sid2(&(r_u.dom_sid), &global_sid_S_1_5_20);
2658 r_u.status = 0xC0000000 | NT_STATUS_NO_SUCH_DOMAIN;
2662 /* store the response in the SMB stream */
2663 samr_io_r_lookup_domain("", &r_u, rdata, 0);
2665 DEBUG(5,("samr_lookup_domain: %d\n", __LINE__));
2668 /*******************************************************************
2669 api_samr_lookup_domain
2670 ********************************************************************/
2671 static void api_samr_lookup_domain( uint16 vuid, prs_struct *data, prs_struct *rdata)
2673 SAMR_Q_LOOKUP_DOMAIN q_u;
2674 samr_io_q_lookup_domain("", &q_u, data, 0);
2675 samr_reply_lookup_domain(&q_u, rdata);
2678 /*******************************************************************
2679 array of \PIPE\samr operations
2680 ********************************************************************/
2681 static struct api_struct api_samr_cmds [] =
2683 { "SAMR_CLOSE_HND" , SAMR_CLOSE_HND , api_samr_close_hnd },
2684 { "SAMR_CONNECT" , SAMR_CONNECT , api_samr_connect },
2685 { "SAMR_CONNECT_ANON" , SAMR_CONNECT_ANON , api_samr_connect_anon },
2686 { "SAMR_ENUM_DOM_USERS" , SAMR_ENUM_DOM_USERS , api_samr_enum_dom_users },
2687 { "SAMR_ENUM_DOM_GROUPS" , SAMR_ENUM_DOM_GROUPS , api_samr_enum_dom_groups },
2688 { "SAMR_ENUM_DOM_ALIASES" , SAMR_ENUM_DOM_ALIASES , api_samr_enum_dom_aliases },
2689 { "SAMR_QUERY_USERALIASES", SAMR_QUERY_USERALIASES, api_samr_query_useraliases},
2690 { "SAMR_QUERY_ALIASMEM" , SAMR_QUERY_ALIASMEM , api_samr_query_aliasmem },
2691 { "SAMR_QUERY_GROUPMEM" , SAMR_QUERY_GROUPMEM , api_samr_query_groupmem },
2692 { "SAMR_ADD_ALIASMEM" , SAMR_ADD_ALIASMEM , api_samr_add_aliasmem },
2693 { "SAMR_DEL_ALIASMEM" , SAMR_DEL_ALIASMEM , api_samr_del_aliasmem },
2694 { "SAMR_ADD_GROUPMEM" , SAMR_ADD_GROUPMEM , api_samr_add_groupmem },
2695 { "SAMR_DEL_GROUPMEM" , SAMR_DEL_GROUPMEM , api_samr_del_groupmem },
2696 { "SAMR_DELETE_DOM_GROUP" , SAMR_DELETE_DOM_GROUP , api_samr_delete_dom_group },
2697 { "SAMR_DELETE_DOM_ALIAS" , SAMR_DELETE_DOM_ALIAS , api_samr_delete_dom_alias },
2698 { "SAMR_CREATE_DOM_GROUP" , SAMR_CREATE_DOM_GROUP , api_samr_create_dom_group },
2699 { "SAMR_CREATE_DOM_ALIAS" , SAMR_CREATE_DOM_ALIAS , api_samr_create_dom_alias },
2700 { "SAMR_LOOKUP_NAMES" , SAMR_LOOKUP_NAMES , api_samr_lookup_names },
2701 { "SAMR_OPEN_USER" , SAMR_OPEN_USER , api_samr_open_user },
2702 { "SAMR_QUERY_USERINFO" , SAMR_QUERY_USERINFO , api_samr_query_userinfo },
2703 { "SAMR_QUERY_DOMAIN_INFO", SAMR_QUERY_DOMAIN_INFO, api_samr_query_dom_info },
2704 { "SAMR_QUERY_USERGROUPS" , SAMR_QUERY_USERGROUPS , api_samr_query_usergroups },
2705 { "SAMR_QUERY_DISPINFO" , SAMR_QUERY_DISPINFO , api_samr_query_dispinfo },
2706 { "SAMR_QUERY_DISPINFO3" , SAMR_QUERY_DISPINFO3 , api_samr_query_dispinfo },
2707 { "SAMR_QUERY_DISPINFO4" , SAMR_QUERY_DISPINFO4 , api_samr_query_dispinfo },
2708 { "SAMR_QUERY_ALIASINFO" , SAMR_QUERY_ALIASINFO , api_samr_query_aliasinfo },
2709 { "SAMR_QUERY_GROUPINFO" , SAMR_QUERY_GROUPINFO , api_samr_query_groupinfo },
2710 { "SAMR_0x32" , SAMR_UNKNOWN_32 , api_samr_unknown_32 },
2711 { "SAMR_LOOKUP_RIDS" , SAMR_LOOKUP_RIDS , api_samr_lookup_rids },
2712 { "SAMR_UNKNOWN_38" , SAMR_UNKNOWN_38 , api_samr_unknown_38 },
2713 { "SAMR_CHGPASSWD_USER" , SAMR_CHGPASSWD_USER , api_samr_chgpasswd_user },
2714 { "SAMR_OPEN_ALIAS" , SAMR_OPEN_ALIAS , api_samr_open_alias },
2715 { "SAMR_OPEN_GROUP" , SAMR_OPEN_GROUP , api_samr_open_group },
2716 { "SAMR_OPEN_DOMAIN" , SAMR_OPEN_DOMAIN , api_samr_open_domain },
2717 { "SAMR_LOOKUP_DOMAIN" , SAMR_LOOKUP_DOMAIN , api_samr_lookup_domain },
2718 { "SAMR_UNKNOWN_3" , SAMR_UNKNOWN_3 , api_samr_unknown_3 },
2719 { "SAMR_UNKNOWN_2C" , SAMR_UNKNOWN_2C , api_samr_unknown_2c },
2723 /*******************************************************************
2724 receives a samr pipe and responds.
2725 ********************************************************************/
2726 BOOL api_samr_rpc(pipes_struct *p, prs_struct *data)
2728 return api_rpcTNP(p, "api_samr_rpc", api_samr_cmds, data);