r4564: added a comment on lsa_EnumAccounts IDL

[samba.git] / source4 / librpc / idl / lsa.idl

diff --git a/source4/librpc/idl/lsa.idl b/source4/librpc/idl/lsa.idl
index f84addf150cf8dbb32ca2ba731ac1bac2462030a..cb3457de8909dfe016e25921d248a552b4dcdca4 100644 (file)
--- a/source4/librpc/idl/lsa.idl
+++ b/source4/librpc/idl/lsa.idl
@@ -8,7 +8,7 @@
   version(0.0),
   endpoint("ncacn_np:[\\pipe\\lsarpc]","ncacn_np:[\\pipe\\lsass]", "ncacn_ip_tcp:"),
   pointer_default(unique),
-  helpstring("Local Server Authentication(?)"),
+  helpstring("Local Security Authority"),
   depends(security)
 ] interface lsarpc
 {
@@ -30,15 +30,19 @@
        /* Function: 0x02 */
 
        typedef struct {
-               [value(2*strlen_m(r->name))] uint16 name_len;
-               [value(r->name_len)] uint16 name_size;
-               unistr_noterm *name;
-       } lsa_Name;
+               [value(2*strlen_m(r->string))] uint16 length;
+               [value(r->length)] uint16 size;
+               unistr_noterm *string;
+       } lsa_String;
 
        typedef struct {
-               lsa_Name name;
-               uint32 luid_low;
-               uint32 luid_high;
+               uint32 low;
+               uint32 high;
+       } lsa_LUID;
+       
+       typedef struct {
+               lsa_String name;
+               lsa_LUID luid;
        } lsa_PrivEntry;
 
        typedef struct {
@@ -122,12 +126,12 @@
        } lsa_AuditEventsInfo;
 
        typedef struct {
-               lsa_Name name;
+               lsa_String name;
                dom_sid2 *sid;
        } lsa_DomainInfo;
 
        typedef struct {
-               lsa_Name name;
+               lsa_String name;
        } lsa_PDAccountInfo;
 
        typedef struct {
@@ -136,8 +140,8 @@
        } lsa_ServerRole;
 
        typedef struct {
-               lsa_Name source;
-               lsa_Name account;
+               lsa_String source;
+               lsa_String account;
        } lsa_ReplicaSourceInfo;
 
        typedef struct {
@@ -165,9 +169,9 @@
        } lsa_AuditFullQueryInfo;
 
        typedef struct {
-               lsa_Name name;
-               lsa_Name dns_domain;
-               lsa_Name dns_forest;
+               lsa_String name;
+               lsa_String dns_domain;
+               lsa_String dns_forest;
                GUID domain_guid;
                dom_sid2 *sid;
        } lsa_DnsDomainInfo;
@@ -226,6 +230,9 @@
                );
 
        /******************/
+       /* NOTE: This only returns accounts that have at least
+          one privilege set 
+       */
        /* Function: 0x0b */
        typedef struct {
                dom_sid2 *sid;
@@ -239,7 +246,7 @@
        NTSTATUS lsa_EnumAccounts (
                [in,ref]     policy_handle *handle,
                [in,out,ref] uint32 *resume_handle,
-               [in,range(0,1000)] uint32 num_entries,
+               [in,range(0,8192)] uint32 num_entries,
                [out,ref]    lsa_SidArray *sids
                );
 
@@ -248,8 +255,8 @@
        /* Function: 0x0c                                */
 
        typedef struct {
-               lsa_Name name;
-               dom_sid2 *sid;
+               lsa_String name;
+               dom_sid2  *sid;
        } lsa_TrustInformation;
 
        NTSTATUS lsa_CreateTrustedDomain(
@@ -264,7 +271,7 @@
        /* Function: 0x0d */
 
        typedef struct {
-               lsa_Name name;
+               lsa_String name;
                dom_sid2 *sid;
        } lsa_DomainInformation;
 
@@ -304,7 +311,7 @@
        NTSTATUS lsa_LookupNames (
                [in,ref]     policy_handle *handle,
                [in,range(0,1000)] uint32 num_names,
-               [in,ref,size_is(num_names)]  lsa_Name *names,
+               [in,ref,size_is(num_names)]  lsa_String *names,
                [out]        lsa_RefDomainList *domains,
                [in,out,ref] lsa_TransSidArray *sids,
                [in]         uint16 level,
@@ -317,7 +324,7 @@
 
        typedef struct {
                uint16 sid_type;
-               lsa_Name name;
+               lsa_String name;
                uint32 sid_index;
        } lsa_TranslatedName;
 
@@ -339,7 +346,7 @@
        /* Function:        0x10 */
        NTSTATUS lsa_CreateSecret(
                [in,ref]     policy_handle *handle,
-               [in]         lsa_Name       name,
+               [in]         lsa_String       name,
                [in]         uint32         access_mask,
                [out,ref]    policy_handle *sec_handle
                );
@@ -358,18 +365,13 @@
        /****************************************/
        /* Function:    0x12                    */
 
-       typedef struct {
-               uint32 low;
-               uint32 high;
-       } lsa_LUID;
-       
        typedef struct {
                lsa_LUID luid;
                uint32 attribute;
        } lsa_LUIDAttribute;
        
        typedef struct {
-               uint32 count;
+               [range(0,1000)] uint32 count;
                uint32 unknown;
                [size_is(count)] lsa_LUIDAttribute set[*];
        } lsa_PrivilegeSet;
@@ -380,11 +382,21 @@
                );
 
 
+       /****************************************/
        /* Function:            0x13 */
-       NTSTATUS lsa_AddPrivilegesToAccount();
+       NTSTATUS lsa_AddPrivilegesToAccount(
+               [in,ref]     policy_handle *handle,
+               [in,ref]     lsa_PrivilegeSet *privs
+               );
        
+
+       /****************************************/
        /* Function:         0x14 */
-       NTSTATUS lsa_RemovePrivilegesFromAccount();
+       NTSTATUS lsa_RemovePrivilegesFromAccount(
+               [in,ref]     policy_handle *handle,
+               [in]         uint8 remove_all,
+               [in]         lsa_PrivilegeSet *privs
+               );
 
        /* Function:           0x15 */
        NTSTATUS lsa_GetQuotasForAccount();
@@ -405,25 +417,120 @@
                [out,ref]    policy_handle *trustdom_handle
                );
 
+       typedef [flag(NDR_PAHEX)] struct {
+               uint32 length;
+               uint32 size;
+               [size_is(size),length_is(length)] uint8 *data;
+       } lsa_DATA_BUF;
+
+       typedef [flag(NDR_PAHEX)] struct {
+               uint32 size;
+               [size_is(size)] uint8 *data;
+       } lsa_DATA_BUF2;
+
+       typedef enum {
+               LSA_TRUSTED_DOMAIN_INFO_NAME=1,
+               LSA_TRUSTED_DOMAIN_INFO_2=2,
+               LSA_TRUSTED_DOMAIN_INFO_FLAGS=3,
+               LSA_TRUSTED_DOMAIN_INFO_PASSWORD=4,
+               LSA_TRUSTED_DOMAIN_INFO_5=5,
+               LSA_TRUSTED_DOMAIN_INFO_INFO_EX=6,
+               LSA_TRUSTED_DOMAIN_INFO_AUTH_INFO=7,
+               LSA_TRUSTED_DOMAIN_INFO_FULL_INFO=8,
+               LSA_TRUSTED_DOMAIN_INFO_INFO_ALL=12
+       } lsa_TrustDomInfoEnum;
+
+       typedef struct {
+               lsa_String     netbios_name;
+       } lsa_TrustDomainInfoName;
+
+       typedef struct {
+               uint32        flags;
+       } lsa_TrustDomainInfoFlags;
+
+       typedef struct {
+               lsa_DATA_BUF *password;
+               lsa_DATA_BUF *old_password;
+       } lsa_TrustDomainInfoPassword;
+
+       typedef struct {
+               lsa_String     netbios_name;
+               dom_sid2    *sid;
+       } lsa_TrustDomainInfo5;
+
+       typedef struct {
+               lsa_String     domain_name;
+               lsa_String     netbios_name;
+               dom_sid2    *sid;
+               uint32       unknown1;
+               uint32       unknown2;
+               uint32       unknown3;
+       } lsa_TrustDomainInfoInfoEx;
+
+       typedef struct {
+               HYPER_T      unknown1;
+               uint32       unknown2;
+               lsa_DATA_BUF2 data;
+       } lsa_TrustDomainInfoBuffer;
+
+       typedef struct {
+               uint32       unknown1;
+               lsa_TrustDomainInfoBuffer *buff1;
+               lsa_TrustDomainInfoBuffer *buff2;
+               uint32       unknown2;
+               lsa_TrustDomainInfoBuffer *buff3;
+               lsa_TrustDomainInfoBuffer *buff4;
+       } lsa_TrustDomainInfoAuthInfo;
+
+       typedef struct {
+               lsa_TrustDomainInfoInfoEx info_ex;
+               lsa_TrustDomainInfoFlags flags;
+               lsa_TrustDomainInfoAuthInfo  auth_info;
+       } lsa_TrustDomainInfoFullInfo;
+
+       typedef struct {
+               lsa_TrustDomainInfoInfoEx info_ex;
+               lsa_DATA_BUF2        data1;
+       } lsa_TrustDomainInfo11;
+
+       typedef struct {
+               lsa_TrustDomainInfoInfoEx info_ex;
+               lsa_DATA_BUF2        data1;
+               lsa_TrustDomainInfoFlags flags;
+               lsa_TrustDomainInfoAuthInfo  auth_info;
+       } lsa_TrustDomainInfoInfoAll;
+
+       typedef union {
+               [case(LSA_TRUSTED_DOMAIN_INFO_NAME)]      lsa_TrustDomainInfoName      name;
+               [case(LSA_TRUSTED_DOMAIN_INFO_FLAGS)]     lsa_TrustDomainInfoFlags     flags;
+               [case(LSA_TRUSTED_DOMAIN_INFO_PASSWORD)]  lsa_TrustDomainInfoPassword  password;
+               [case(LSA_TRUSTED_DOMAIN_INFO_5)]         lsa_TrustDomainInfo5         info5;
+               [case(LSA_TRUSTED_DOMAIN_INFO_INFO_EX)]   lsa_TrustDomainInfoInfoEx    info_ex;
+               [case(LSA_TRUSTED_DOMAIN_INFO_AUTH_INFO)] lsa_TrustDomainInfoAuthInfo  auth_info;
+               [case(LSA_TRUSTED_DOMAIN_INFO_FULL_INFO)] lsa_TrustDomainInfoFullInfo  full_info;
+               [case(11)]    lsa_TrustDomainInfo11 info11;
+               [case(LSA_TRUSTED_DOMAIN_INFO_INFO_ALL)]  lsa_TrustDomainInfoInfoAll   info_all;
+       } lsa_TrustedDomainInfo;
+
        /* Function:       0x1a */
-       NTSTATUS lsa_QueryInfoTrustedDomain();
+       NTSTATUS lsa_QueryTrustedDomainInfo(
+               [in,ref]     policy_handle *trustdom_handle,
+               [in]         uint16         level, 
+               [out,switch_is(level)] lsa_TrustedDomainInfo *info
+               );
+
        /* Function:     0x1b */
        NTSTATUS lsa_SetInformationTrustedDomain();
 
        /* Function:          0x1c */
        NTSTATUS lsa_OpenSecret(
                [in,ref]     policy_handle *handle,
-               [in]         lsa_Name       name,
+               [in]         lsa_String       name,
                [in]         uint32         access_mask,
                [out,ref]    policy_handle *sec_handle
                );
 
        /* Function:           0x1d */
-       typedef [flag(NDR_PAHEX)] struct {
-               uint32 length;
-               uint32 size;
-               [size_is(size),length_is(length)] uint8 *data;
-       } lsa_DATA_BUF;
 
        NTSTATUS lsa_SetSecret(
                [in,ref]     policy_handle *handle,
@@ -445,14 +552,18 @@
                );
 
        /* Function:     0x1f */
-       NTSTATUS lsa_LookupPrivValue();
+       NTSTATUS lsa_LookupPrivValue(
+               [in,ref]     policy_handle *handle,
+               [in,ref]     lsa_String *name,
+               [out,ref]    lsa_LUID *luid
+               );
 
 
        /* Function:      0x20 */
        NTSTATUS lsa_LookupPrivName (
                [in,ref]     policy_handle *handle,
                [in,ref]     lsa_LUID *luid,
-               [out]        lsa_Name *name
+               [out]        lsa_String *name
                );
 
 
@@ -460,8 +571,8 @@
        /* Function:  0x21 */
        NTSTATUS lsa_LookupPrivDisplayName (
                [in,ref]     policy_handle *handle,
-               [in,ref]     lsa_Name *name,
-               [out]        lsa_Name *disp_name,
+               [in,ref]     lsa_String *name,
+               [out]        lsa_String *disp_name,
                /* see http://www.microsoft.com/globaldev/nlsweb/ for
                   language definitions */
                [in,out,ref] uint16 *language_id,
@@ -476,7 +587,7 @@
        /* Function:      0x23 */
        NTSTATUS lsa_EnumAccountsWithUserRight (
                [in,ref]     policy_handle *handle,
-               [in]         lsa_Name *name,
+               [in]         lsa_String *name,
                [out,ref]    lsa_SidArray *sids
                );
 
@@ -487,7 +598,7 @@
        
        typedef struct {
                uint32 count;
-               [size_is(count)] lsa_Name *names;
+               [size_is(count)] lsa_String *names;
        } lsa_RightSet;
        
        NTSTATUS lsa_EnumAccountRights (
@@ -515,7 +626,13 @@
                );
 
        /* Function:   0x27 */
-       NTSTATUS lsa_QueryTrustDomainInfo();
+       NTSTATUS lsa_QueryTrustedDomainInfoBySid(
+               [in,ref]               policy_handle         *handle,
+               [in,ref]               dom_sid2              *dom_sid,
+               [in]                   uint16                 level, 
+               [out,switch_is(level)] lsa_TrustedDomainInfo *info
+        );
+
        /* Function:     0x28 */
        NTSTATUS lsa_SetTrustDomainInfo();
        /* Function:      0x29 */
@@ -535,9 +652,17 @@
                [out,ref] policy_handle *handle
                );
 
+       /**********************/
+       /* Function:     0x2d */
+       typedef struct {
+               lsa_String *string;
+       } lsa_StringPointer;
 
-       /* Function:    0x2d */
-       NTSTATUS lsa_GetUserName();
+       NTSTATUS lsa_GetUserName(
+               [in] unistr *system_name,
+               [in,out] lsa_String *account_name,
+               [in,out] lsa_StringPointer *authority_name
+               );
 
        /**********************/
        /* Function:          0x2e */
@@ -551,8 +676,14 @@
        /* Function 0x2f */
        NTSTATUS lsa_SetInfoPolicy2();
 
+       /**********************/
        /* Function 0x30 */
-       NTSTATUS lsa_QueryTrustedDomainInfoByName();
+       NTSTATUS lsa_QueryTrustedDomainInfoByName(
+               [in,ref]               policy_handle         *handle,
+               [in]                   lsa_String             trusted_domain,
+               [in]                   uint16                 level, 
+               [out,switch_is(level)] lsa_TrustedDomainInfo *info
+               );
 
        /* Function 0x31 */
        NTSTATUS lsa_SetTrustedDomainInfoByName();
@@ -572,10 +703,11 @@
        /* Function 0x36 */
        NTSTATUS lsa_SetDomInfoPolicy();
 
+       /**********************/
        /* Function 0x37 */
        NTSTATUS lsa_OpenTrustedDomainByName(
                [in,ref]     policy_handle *handle,
-               [in]         lsa_Name       name,
+               [in]         lsa_String     name,
                [in]         uint32         access_mask,
                [out,ref]    policy_handle *trustdom_handle
                );
@@ -583,12 +715,159 @@
        /* Function 0x38 */
        NTSTATUS lsa_TestCall();
 
+       /**********************/
        /* Function 0x39 */
-       NTSTATUS lsa_LookupSids2();
 
+       typedef struct {
+               uint16 sid_type;
+               lsa_String name;
+               uint32 sid_index;
+               uint32 unknown;
+       } lsa_TranslatedName2;
+
+       typedef struct {
+               [range(0,1000)] uint32 count;
+               [size_is(count)] lsa_TranslatedName2 *names;
+       } lsa_TransNameArray2;
+
+       NTSTATUS lsa_LookupSids2(
+               [in,ref]     policy_handle *handle,
+               [in,ref]     lsa_SidArray *sids,
+               [out]        lsa_RefDomainList *domains,
+               [in,out,ref] lsa_TransNameArray2 *names,
+               [in]         uint16 level,
+               [in,out,ref] uint32 *count,
+               [in]         uint32 unknown1,
+               [in]         uint32 unknown2
+               );
+
+       /**********************/
        /* Function 0x3a */
-       NTSTATUS lsa_LookupNames2();
+
+       typedef struct {
+               uint16 sid_type;
+               uint32 rid;
+               uint32 sid_index;
+               uint32 unknown;
+       } lsa_TranslatedSid2;
+
+       typedef struct {
+               [range(0,1000)] uint32 count;
+               [size_is(count)] lsa_TranslatedSid2 *sids;
+       } lsa_TransSidArray2;
+
+       NTSTATUS lsa_LookupNames2 (
+               [in,ref]     policy_handle *handle,
+               [in,range(0,1000)] uint32 num_names,
+               [in,ref,size_is(num_names)]  lsa_String *names,
+               [out]        lsa_RefDomainList *domains,
+               [in,out,ref] lsa_TransSidArray2 *sids,
+               [in]         uint16 level,
+               [in,out,ref] uint32 *count,
+               [in]         uint32 unknown1,
+               [in]         uint32 unknown2
+               );
 
        /* Function 0x3b */
        NTSTATUS lsa_CreateTrustedDomainEx2();
+
+       /* Function 0x3c */
+       NTSTATUS lsa_CREDRWRITE();
+
+       /* Function 0x3d */
+       NTSTATUS lsa_CREDRREAD();
+
+       /* Function 0x3e */
+       NTSTATUS lsa_CREDRENUMERATE();
+
+       /* Function 0x3f */
+       NTSTATUS lsa_CREDRWRITEDOMAINCREDENTIALS();
+
+       /* Function 0x40 */
+       NTSTATUS lsa_CREDRREADDOMAINCREDENTIALS();
+
+       /* Function 0x41 */
+       NTSTATUS lsa_CREDRDELETE();
+
+       /* Function 0x42 */
+       NTSTATUS lsa_CREDRGETTARGETINFO();
+
+       /* Function 0x43 */
+       NTSTATUS lsa_CREDRPROFILELOADED();
+
+       /**********************/
+       /* Function 0x44 */
+       typedef struct {
+               uint16 sid_type;
+               dom_sid2 *sid;
+               uint32 sid_index;
+               uint32 unknown;
+       } lsa_TranslatedSid3;
+
+       typedef struct {
+               [range(0,1000)] uint32 count;
+               [size_is(count)] lsa_TranslatedSid3 *sids;
+       } lsa_TransSidArray3;
+
+       NTSTATUS lsa_LookupNames3 (
+               [in,ref]     policy_handle *handle,
+               [in,range(0,1000)] uint32 num_names,
+               [in,ref,size_is(num_names)]  lsa_String *names,
+               [out]        lsa_RefDomainList *domains,
+               [in,out,ref] lsa_TransSidArray3 *sids,
+               [in]         uint16 level,
+               [in,out,ref] uint32 *count,
+               [in]         uint32 unknown1,
+               [in]         uint32 unknown2
+               );
+
+       /* Function 0x45 */
+       NTSTATUS lsa_CREDRGETSESSIONTYPES();
+
+       /* Function 0x46 */
+       NTSTATUS lsa_LSARREGISTERAUDITEVENT();
+
+       /* Function 0x47 */
+       NTSTATUS lsa_LSARGENAUDITEVENT();
+
+       /* Function 0x48 */
+       NTSTATUS lsa_LSARUNREGISTERAUDITEVENT();
+
+       /* Function 0x49 */
+       NTSTATUS lsa_LSARQUERYFORESTTRUSTINFORMATION();
+
+       /* Function 0x4a */
+       NTSTATUS lsa_LSARSETFORESTTRUSTINFORMATION();
+
+       /* Function 0x4b */
+       NTSTATUS lsa_CREDRRENAME();
+
+       /*****************/
+       /* Function 0x4c */
+
+       NTSTATUS lsa_LookupSids3(
+               [in,ref]     lsa_SidArray *sids,
+               [out]        lsa_RefDomainList *domains,
+               [in,out,ref] lsa_TransNameArray2 *names,
+               [in]         uint16 level,
+               [in,out,ref] uint32 *count,
+               [in]         uint32 unknown1,
+               [in]         uint32 unknown2
+               );
+
+       /* Function 0x4d */
+       NTSTATUS lsa_LSARLOOKUPNAMES4();
+
+       /* Function 0x4e */
+       NTSTATUS lsa_LSAROPENPOLICYSCE();
+
+       /* Function 0x4f */
+       NTSTATUS lsa_LSARADTREGISTERSECURITYEVENTSOURCE();
+
+       /* Function 0x50 */
+       NTSTATUS lsa_LSARADTUNREGISTERSECURITYEVENTSOURCE();
+
+       /* Function 0x51 */
+       NTSTATUS lsa_LSARADTREPORTSECURITYEVENT();
+
 }