2 Unix SMB/CIFS implementation.
4 Copyright (C) Tim Potter 2000-2001,
5 Copyright (C) Andrew Tridgell 1992-1997,2000,
6 Copyright (C) Rafal Szczesniak 2002
7 Copyright (C) Jeremy Allison 2005.
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 3 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program. If not, see <http://www.gnu.org/licenses/>.
25 /** @defgroup lsa LSA - Local Security Architecture
34 * RPC client routines for the LSA RPC pipe. LSA means "local
35 * security authority", which is half of a password database.
38 /** Open a LSA policy handle
40 * @param cli Handle on an initialised SMB connection */
42 NTSTATUS rpccli_lsa_open_policy(struct rpc_pipe_client *cli,
44 BOOL sec_qos, uint32 des_access,
47 prs_struct qbuf, rbuf;
56 /* Initialise input parameters */
59 init_lsa_sec_qos(&qos, 2, 1, 0);
60 init_q_open_pol(&q, '\\', 0, des_access, &qos);
62 init_q_open_pol(&q, '\\', 0, des_access, NULL);
65 /* Marshall data and send request */
67 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_OPENPOLICY,
72 NT_STATUS_UNSUCCESSFUL );
74 /* Return output parameters */
78 if (NT_STATUS_IS_OK(result)) {
85 /** Open a LSA policy handle
87 * @param cli Handle on an initialised SMB connection
90 NTSTATUS rpccli_lsa_open_policy2(struct rpc_pipe_client *cli,
91 TALLOC_CTX *mem_ctx, BOOL sec_qos,
92 uint32 des_access, POLICY_HND *pol)
94 prs_struct qbuf, rbuf;
99 char *srv_name_slash = talloc_asprintf(mem_ctx, "\\\\%s", cli->cli->desthost);
105 init_lsa_sec_qos(&qos, 2, 1, 0);
106 init_q_open_pol2(&q, srv_name_slash, 0, des_access, &qos);
108 init_q_open_pol2(&q, srv_name_slash, 0, des_access, NULL);
111 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_OPENPOLICY2,
116 NT_STATUS_UNSUCCESSFUL );
118 /* Return output parameters */
122 if (NT_STATUS_IS_OK(result)) {
129 /* Lookup a list of sids
131 * internal version withOUT memory allocation of the target arrays.
132 * this assumes suffciently sized arrays to store domains, names and types. */
134 static NTSTATUS rpccli_lsa_lookup_sids_noalloc(struct rpc_pipe_client *cli,
141 enum lsa_SidType *types)
143 prs_struct qbuf, rbuf;
147 NTSTATUS result = NT_STATUS_OK;
148 TALLOC_CTX *tmp_ctx = NULL;
151 tmp_ctx = talloc_new(mem_ctx);
153 DEBUG(0, ("rpccli_lsa_lookup_sids_noalloc: out of memory!\n"));
154 result = NT_STATUS_UNSUCCESSFUL;
161 init_q_lookup_sids(tmp_ctx, &q, pol, num_sids, sids, 1);
167 CLI_DO_RPC( cli, tmp_ctx, PI_LSARPC, LSA_LOOKUPSIDS,
170 lsa_io_q_lookup_sids,
171 lsa_io_r_lookup_sids,
172 NT_STATUS_UNSUCCESSFUL );
174 if (!NT_STATUS_IS_OK(r.status) &&
175 !NT_STATUS_EQUAL(r.status, STATUS_SOME_UNMAPPED))
177 /* An actual error occured */
182 /* Return output parameters */
184 if (r.mapped_count == 0) {
185 result = NT_STATUS_NONE_MAPPED;
189 for (i = 0; i < num_sids; i++) {
190 fstring name, dom_name;
191 uint32 dom_idx = r.names.name[i].domain_idx;
193 /* Translate optimised name through domain index array */
195 if (dom_idx != 0xffffffff) {
197 rpcstr_pull_unistr2_fstring(
198 dom_name, &ref.ref_dom[dom_idx].uni_dom_name);
199 rpcstr_pull_unistr2_fstring(
200 name, &r.names.uni_name[i]);
202 (names)[i] = talloc_strdup(mem_ctx, name);
203 (domains)[i] = talloc_strdup(mem_ctx, dom_name);
204 (types)[i] = (enum lsa_SidType)r.names.name[i].sid_name_use;
206 if (((names)[i] == NULL) || ((domains)[i] == NULL)) {
207 DEBUG(0, ("cli_lsa_lookup_sids_noalloc(): out of memory\n"));
208 result = NT_STATUS_UNSUCCESSFUL;
215 (types)[i] = SID_NAME_UNKNOWN;
220 TALLOC_FREE(tmp_ctx);
224 /* Lookup a list of sids
226 * do it the right way: there is a limit (of 20480 for w2k3) entries
227 * returned by this call. when the sids list contains more entries,
228 * empty lists are returned. This version of lsa_lookup_sids passes
229 * the list of sids in hunks of LOOKUP_SIDS_HUNK_SIZE to the lsa call. */
231 /* This constant defines the limit of how many sids to look up
232 * in one call (maximum). the limit from the server side is
233 * at 20480 for win2k3, but we keep it at a save 1000 for now. */
234 #define LOOKUP_SIDS_HUNK_SIZE 1000
236 NTSTATUS rpccli_lsa_lookup_sids_all(struct rpc_pipe_client *cli,
243 enum lsa_SidType **types)
245 NTSTATUS result = NT_STATUS_OK;
247 int sids_processed = 0;
248 const DOM_SID *hunk_sids = sids;
249 char **hunk_domains = NULL;
250 char **hunk_names = NULL;
251 enum lsa_SidType *hunk_types = NULL;
254 if (!((*domains) = TALLOC_ARRAY(mem_ctx, char *, num_sids))) {
255 DEBUG(0, ("rpccli_lsa_lookup_sids_all(): out of memory\n"));
256 result = NT_STATUS_NO_MEMORY;
260 if (!((*names) = TALLOC_ARRAY(mem_ctx, char *, num_sids))) {
261 DEBUG(0, ("rpccli_lsa_lookup_sids_all(): out of memory\n"));
262 result = NT_STATUS_NO_MEMORY;
266 if (!((*types) = TALLOC_ARRAY(mem_ctx, enum lsa_SidType, num_sids))) {
267 DEBUG(0, ("rpccli_lsa_lookup_sids_all(): out of memory\n"));
268 result = NT_STATUS_NO_MEMORY;
277 sids_left = num_sids;
278 hunk_domains = *domains;
282 while (sids_left > 0) {
284 NTSTATUS hunk_result = NT_STATUS_OK;
286 hunk_num_sids = ((sids_left > LOOKUP_SIDS_HUNK_SIZE)
287 ? LOOKUP_SIDS_HUNK_SIZE
290 DEBUG(10, ("rpccli_lsa_lookup_sids_all: processing items "
293 sids_processed + hunk_num_sids - 1,
296 hunk_result = rpccli_lsa_lookup_sids_noalloc(cli,
305 if (!NT_STATUS_IS_OK(hunk_result) &&
306 !NT_STATUS_EQUAL(hunk_result, STATUS_SOME_UNMAPPED) &&
307 !NT_STATUS_EQUAL(hunk_result, NT_STATUS_NONE_MAPPED))
309 /* An actual error occured */
313 /* adapt overall result */
314 if (( NT_STATUS_IS_OK(result) &&
315 !NT_STATUS_IS_OK(hunk_result))
317 ( NT_STATUS_EQUAL(result, NT_STATUS_NONE_MAPPED) &&
318 !NT_STATUS_EQUAL(hunk_result, NT_STATUS_NONE_MAPPED)))
320 result = STATUS_SOME_UNMAPPED;
323 sids_left -= hunk_num_sids;
324 sids_processed += hunk_num_sids; /* only used in DEBUG */
325 hunk_sids += hunk_num_sids;
326 hunk_domains += hunk_num_sids;
327 hunk_names += hunk_num_sids;
328 hunk_types += hunk_num_sids;
335 /** Lookup a list of sids */
337 NTSTATUS rpccli_lsa_lookup_sids(struct rpc_pipe_client *cli,
339 POLICY_HND *pol, int num_sids,
343 enum lsa_SidType **types)
345 prs_struct qbuf, rbuf;
349 NTSTATUS result = NT_STATUS_OK;
355 init_q_lookup_sids(mem_ctx, &q, pol, num_sids, sids, 1);
361 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_LOOKUPSIDS,
364 lsa_io_q_lookup_sids,
365 lsa_io_r_lookup_sids,
366 NT_STATUS_UNSUCCESSFUL );
368 if (!NT_STATUS_IS_OK(r.status) &&
369 !NT_STATUS_EQUAL(r.status, STATUS_SOME_UNMAPPED)) {
371 /* An actual error occured */
377 /* Return output parameters */
379 if (r.mapped_count == 0) {
380 result = NT_STATUS_NONE_MAPPED;
385 if (!((*domains) = TALLOC_ARRAY(mem_ctx, char *, num_sids))) {
386 DEBUG(0, ("cli_lsa_lookup_sids(): out of memory\n"));
387 result = NT_STATUS_NO_MEMORY;
391 if (!((*names) = TALLOC_ARRAY(mem_ctx, char *, num_sids))) {
392 DEBUG(0, ("cli_lsa_lookup_sids(): out of memory\n"));
393 result = NT_STATUS_NO_MEMORY;
397 if (!((*types) = TALLOC_ARRAY(mem_ctx, enum lsa_SidType, num_sids))) {
398 DEBUG(0, ("cli_lsa_lookup_sids(): out of memory\n"));
399 result = NT_STATUS_NO_MEMORY;
408 for (i = 0; i < num_sids; i++) {
409 fstring name, dom_name;
410 uint32 dom_idx = r.names.name[i].domain_idx;
412 /* Translate optimised name through domain index array */
414 if (dom_idx != 0xffffffff) {
416 rpcstr_pull_unistr2_fstring(
417 dom_name, &ref.ref_dom[dom_idx].uni_dom_name);
418 rpcstr_pull_unistr2_fstring(
419 name, &r.names.uni_name[i]);
421 (*names)[i] = talloc_strdup(mem_ctx, name);
422 (*domains)[i] = talloc_strdup(mem_ctx, dom_name);
423 (*types)[i] = (enum lsa_SidType)r.names.name[i].sid_name_use;
425 if (((*names)[i] == NULL) || ((*domains)[i] == NULL)) {
426 DEBUG(0, ("cli_lsa_lookup_sids(): out of memory\n"));
427 result = NT_STATUS_UNSUCCESSFUL;
433 (*domains)[i] = NULL;
434 (*types)[i] = SID_NAME_UNKNOWN;
443 /** Lookup a list of names */
445 NTSTATUS rpccli_lsa_lookup_names(struct rpc_pipe_client *cli,
447 POLICY_HND *pol, int num_names,
449 const char ***dom_names,
452 enum lsa_SidType **types)
454 prs_struct qbuf, rbuf;
455 LSA_Q_LOOKUP_NAMES q;
456 LSA_R_LOOKUP_NAMES r;
467 init_q_lookup_names(mem_ctx, &q, pol, num_names, names, level);
469 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_LOOKUPNAMES,
472 lsa_io_q_lookup_names,
473 lsa_io_r_lookup_names,
474 NT_STATUS_UNSUCCESSFUL);
478 if (!NT_STATUS_IS_OK(result) && NT_STATUS_V(result) !=
479 NT_STATUS_V(STATUS_SOME_UNMAPPED)) {
481 /* An actual error occured */
486 /* Return output parameters */
488 if (r.mapped_count == 0) {
489 result = NT_STATUS_NONE_MAPPED;
494 if (!((*sids = TALLOC_ARRAY(mem_ctx, DOM_SID, num_names)))) {
495 DEBUG(0, ("cli_lsa_lookup_sids(): out of memory\n"));
496 result = NT_STATUS_NO_MEMORY;
500 if (!((*types = TALLOC_ARRAY(mem_ctx, enum lsa_SidType, num_names)))) {
501 DEBUG(0, ("cli_lsa_lookup_sids(): out of memory\n"));
502 result = NT_STATUS_NO_MEMORY;
506 if (dom_names != NULL) {
507 *dom_names = TALLOC_ARRAY(mem_ctx, const char *, num_names);
508 if (*dom_names == NULL) {
509 DEBUG(0, ("cli_lsa_lookup_sids(): out of memory\n"));
510 result = NT_STATUS_NO_MEMORY;
517 if (dom_names != NULL) {
522 for (i = 0; i < num_names; i++) {
523 DOM_RID *t_rids = r.dom_rid;
524 uint32 dom_idx = t_rids[i].rid_idx;
525 uint32 dom_rid = t_rids[i].rid;
526 DOM_SID *sid = &(*sids)[i];
528 /* Translate optimised sid through domain index array */
530 if (dom_idx == 0xffffffff) {
531 /* Nothing to do, this is unknown */
533 (*types)[i] = SID_NAME_UNKNOWN;
537 sid_copy(sid, &ref.ref_dom[dom_idx].ref_dom.sid);
539 if (dom_rid != 0xffffffff) {
540 sid_append_rid(sid, dom_rid);
543 (*types)[i] = (enum lsa_SidType)t_rids[i].type;
545 if (dom_names == NULL) {
549 (*dom_names)[i] = rpcstr_pull_unistr2_talloc(
550 *dom_names, &ref.ref_dom[dom_idx].uni_dom_name);
558 NTSTATUS rpccli_lsa_query_info_policy_new(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
559 POLICY_HND *pol, uint16 info_class,
562 prs_struct qbuf, rbuf;
570 init_q_query(&q, pol, info_class);
572 CLI_DO_RPC(cli, mem_ctx, PI_LSARPC, LSA_QUERYINFOPOLICY,
577 NT_STATUS_UNSUCCESSFUL);
581 if (!NT_STATUS_IS_OK(result)) {
592 NTSTATUS rpccli_lsa_query_info_policy2_new(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
593 POLICY_HND *pol, uint16 info_class,
596 prs_struct qbuf, rbuf;
604 init_q_query2(&q, pol, info_class);
606 CLI_DO_RPC(cli, mem_ctx, PI_LSARPC, LSA_QUERYINFO2,
609 lsa_io_q_query_info2,
610 lsa_io_r_query_info2,
611 NT_STATUS_UNSUCCESSFUL);
615 if (!NT_STATUS_IS_OK(result)) {
628 /** Query info policy
630 * @param domain_sid - returned remote server's domain sid */
632 NTSTATUS rpccli_lsa_query_info_policy(struct rpc_pipe_client *cli,
634 POLICY_HND *pol, uint16 info_class,
635 char **domain_name, DOM_SID **domain_sid)
637 prs_struct qbuf, rbuf;
645 init_q_query(&q, pol, info_class);
647 CLI_DO_RPC(cli, mem_ctx, PI_LSARPC, LSA_QUERYINFOPOLICY,
652 NT_STATUS_UNSUCCESSFUL);
656 if (!NT_STATUS_IS_OK(result)) {
660 /* Return output parameters */
662 switch (info_class) {
665 if (domain_name && (r.ctr.info.id3.buffer_dom_name != 0)) {
666 *domain_name = unistr2_tdup(mem_ctx,
670 return NT_STATUS_NO_MEMORY;
674 if (domain_sid && (r.ctr.info.id3.buffer_dom_sid != 0)) {
675 *domain_sid = TALLOC_P(mem_ctx, DOM_SID);
677 return NT_STATUS_NO_MEMORY;
679 sid_copy(*domain_sid, &r.ctr.info.id3.dom_sid.sid);
686 if (domain_name && (r.ctr.info.id5.buffer_dom_name != 0)) {
687 *domain_name = unistr2_tdup(mem_ctx,
691 return NT_STATUS_NO_MEMORY;
695 if (domain_sid && (r.ctr.info.id5.buffer_dom_sid != 0)) {
696 *domain_sid = TALLOC_P(mem_ctx, DOM_SID);
698 return NT_STATUS_NO_MEMORY;
700 sid_copy(*domain_sid, &r.ctr.info.id5.dom_sid.sid);
705 DEBUG(3, ("unknown info class %d\n", info_class));
714 /** Query info policy2
716 * @param domain_name - returned remote server's domain name
717 * @param dns_name - returned remote server's dns domain name
718 * @param forest_name - returned remote server's forest name
719 * @param domain_guid - returned remote server's domain guid
720 * @param domain_sid - returned remote server's domain sid */
722 NTSTATUS rpccli_lsa_query_info_policy2(struct rpc_pipe_client *cli,
724 POLICY_HND *pol, uint16 info_class,
725 char **domain_name, char **dns_name,
727 struct GUID **domain_guid,
728 DOM_SID **domain_sid)
730 prs_struct qbuf, rbuf;
733 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
735 if (info_class != 12)
741 init_q_query2(&q, pol, info_class);
743 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_QUERYINFO2,
746 lsa_io_q_query_info2,
747 lsa_io_r_query_info2,
748 NT_STATUS_UNSUCCESSFUL);
752 if (!NT_STATUS_IS_OK(result)) {
756 /* Return output parameters */
758 ZERO_STRUCTP(domain_guid);
760 if (domain_name && r.ctr.info.id12.hdr_nb_dom_name.buffer) {
761 *domain_name = unistr2_tdup(mem_ctx,
765 return NT_STATUS_NO_MEMORY;
768 if (dns_name && r.ctr.info.id12.hdr_dns_dom_name.buffer) {
769 *dns_name = unistr2_tdup(mem_ctx,
773 return NT_STATUS_NO_MEMORY;
776 if (forest_name && r.ctr.info.id12.hdr_forest_name.buffer) {
777 *forest_name = unistr2_tdup(mem_ctx,
781 return NT_STATUS_NO_MEMORY;
786 *domain_guid = TALLOC_P(mem_ctx, struct GUID);
788 return NT_STATUS_NO_MEMORY;
791 &r.ctr.info.id12.dom_guid,
792 sizeof(struct GUID));
795 if (domain_sid && r.ctr.info.id12.ptr_dom_sid != 0) {
796 *domain_sid = TALLOC_P(mem_ctx, DOM_SID);
798 return NT_STATUS_NO_MEMORY;
800 sid_copy(*domain_sid,
801 &r.ctr.info.id12.dom_sid.sid);
809 NTSTATUS rpccli_lsa_set_info_policy(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
810 POLICY_HND *pol, uint16 info_class,
813 prs_struct qbuf, rbuf;
821 init_q_set(&q, pol, info_class, ctr);
823 CLI_DO_RPC(cli, mem_ctx, PI_LSARPC, LSA_SETINFOPOLICY,
828 NT_STATUS_UNSUCCESSFUL);
832 if (!NT_STATUS_IS_OK(result)) {
836 /* Return output parameters */
845 * Enumerate list of trusted domains
847 * @param cli client state (cli_state) structure of the connection
848 * @param mem_ctx memory context
849 * @param pol opened lsa policy handle
850 * @param enum_ctx enumeration context ie. index of first returned domain entry
851 * @param pref_num_domains preferred max number of entries returned in one response
852 * @param num_domains total number of trusted domains returned by response
853 * @param domain_names returned trusted domain names
854 * @param domain_sids returned trusted domain sids
856 * @return nt status code of response
859 NTSTATUS rpccli_lsa_enum_trust_dom(struct rpc_pipe_client *cli,
861 POLICY_HND *pol, uint32 *enum_ctx,
863 char ***domain_names, DOM_SID **domain_sids)
865 prs_struct qbuf, rbuf;
866 LSA_Q_ENUM_TRUST_DOM in;
867 LSA_R_ENUM_TRUST_DOM out;
874 /* 64k is enough for about 2000 trusted domains */
876 init_q_enum_trust_dom(&in, pol, *enum_ctx, 0x10000);
878 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_ENUMTRUSTDOM,
881 lsa_io_q_enum_trust_dom,
882 lsa_io_r_enum_trust_dom,
883 NT_STATUS_UNSUCCESSFUL );
886 /* check for an actual error */
888 if ( !NT_STATUS_IS_OK(out.status)
889 && !NT_STATUS_EQUAL(out.status, NT_STATUS_NO_MORE_ENTRIES)
890 && !NT_STATUS_EQUAL(out.status, STATUS_MORE_ENTRIES) )
895 /* Return output parameters */
897 *num_domains = out.count;
898 *enum_ctx = out.enum_context;
902 /* Allocate memory for trusted domain names and sids */
904 if ( !(*domain_names = TALLOC_ARRAY(mem_ctx, char *, out.count)) ) {
905 DEBUG(0, ("cli_lsa_enum_trust_dom(): out of memory\n"));
906 return NT_STATUS_NO_MEMORY;
909 if ( !(*domain_sids = TALLOC_ARRAY(mem_ctx, DOM_SID, out.count)) ) {
910 DEBUG(0, ("cli_lsa_enum_trust_dom(): out of memory\n"));
911 return NT_STATUS_NO_MEMORY;
914 /* Copy across names and sids */
916 for (i = 0; i < out.count; i++) {
918 rpcstr_pull( tmp, out.domlist->domains[i].name.string->buffer,
919 sizeof(tmp), out.domlist->domains[i].name.length, 0);
920 (*domain_names)[i] = talloc_strdup(mem_ctx, tmp);
922 sid_copy(&(*domain_sids)[i], &out.domlist->domains[i].sid->sid );
929 /** Enumerate privileges*/
931 NTSTATUS rpccli_lsa_enum_privilege(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
932 POLICY_HND *pol, uint32 *enum_context, uint32 pref_max_length,
933 uint32 *count, char ***privs_name, uint32 **privs_high, uint32 **privs_low)
935 prs_struct qbuf, rbuf;
944 init_q_enum_privs(&q, pol, *enum_context, pref_max_length);
946 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_ENUM_PRIVS,
951 NT_STATUS_UNSUCCESSFUL);
955 if (!NT_STATUS_IS_OK(result)) {
959 /* Return output parameters */
961 *enum_context = r.enum_context;
965 if (!((*privs_name = TALLOC_ARRAY(mem_ctx, char *, r.count)))) {
966 DEBUG(0, ("(cli_lsa_enum_privilege): out of memory\n"));
967 result = NT_STATUS_UNSUCCESSFUL;
971 if (!((*privs_high = TALLOC_ARRAY(mem_ctx, uint32, r.count)))) {
972 DEBUG(0, ("(cli_lsa_enum_privilege): out of memory\n"));
973 result = NT_STATUS_UNSUCCESSFUL;
977 if (!((*privs_low = TALLOC_ARRAY(mem_ctx, uint32, r.count)))) {
978 DEBUG(0, ("(cli_lsa_enum_privilege): out of memory\n"));
979 result = NT_STATUS_UNSUCCESSFUL;
988 for (i = 0; i < r.count; i++) {
991 rpcstr_pull_unistr2_fstring( name, &r.privs[i].name);
993 (*privs_name)[i] = talloc_strdup(mem_ctx, name);
995 (*privs_high)[i] = r.privs[i].luid_high;
996 (*privs_low)[i] = r.privs[i].luid_low;
1004 /** Get privilege name */
1006 NTSTATUS rpccli_lsa_get_dispname(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1007 POLICY_HND *pol, const char *name,
1008 uint16 lang_id, uint16 lang_id_sys,
1009 fstring description, uint16 *lang_id_desc)
1011 prs_struct qbuf, rbuf;
1012 LSA_Q_PRIV_GET_DISPNAME q;
1013 LSA_R_PRIV_GET_DISPNAME r;
1019 init_lsa_priv_get_dispname(&q, pol, name, lang_id, lang_id_sys);
1021 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_PRIV_GET_DISPNAME,
1024 lsa_io_q_priv_get_dispname,
1025 lsa_io_r_priv_get_dispname,
1026 NT_STATUS_UNSUCCESSFUL);
1030 if (!NT_STATUS_IS_OK(result)) {
1034 /* Return output parameters */
1036 rpcstr_pull_unistr2_fstring(description , &r.desc);
1037 *lang_id_desc = r.lang_id;
1044 /** Enumerate list of SIDs */
1046 NTSTATUS rpccli_lsa_enum_sids(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1047 POLICY_HND *pol, uint32 *enum_ctx, uint32 pref_max_length,
1048 uint32 *num_sids, DOM_SID **sids)
1050 prs_struct qbuf, rbuf;
1051 LSA_Q_ENUM_ACCOUNTS q;
1052 LSA_R_ENUM_ACCOUNTS r;
1059 init_lsa_q_enum_accounts(&q, pol, *enum_ctx, pref_max_length);
1061 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_ENUM_ACCOUNTS,
1064 lsa_io_q_enum_accounts,
1065 lsa_io_r_enum_accounts,
1066 NT_STATUS_UNSUCCESSFUL);
1070 if (!NT_STATUS_IS_OK(result)) {
1074 if (r.sids.num_entries==0)
1077 /* Return output parameters */
1079 *sids = TALLOC_ARRAY(mem_ctx, DOM_SID, r.sids.num_entries);
1081 DEBUG(0, ("(cli_lsa_enum_sids): out of memory\n"));
1082 result = NT_STATUS_UNSUCCESSFUL;
1086 /* Copy across names and sids */
1088 for (i = 0; i < r.sids.num_entries; i++) {
1089 sid_copy(&(*sids)[i], &r.sids.sid[i].sid);
1092 *num_sids= r.sids.num_entries;
1093 *enum_ctx = r.enum_context;
1100 /** Create a LSA user handle
1102 * @param cli Handle on an initialised SMB connection
1104 * FIXME: The code is actually identical to open account
1105 * TODO: Check and code what the function should exactly do
1109 NTSTATUS rpccli_lsa_create_account(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1110 POLICY_HND *dom_pol, DOM_SID *sid, uint32 desired_access,
1111 POLICY_HND *user_pol)
1113 prs_struct qbuf, rbuf;
1114 LSA_Q_CREATEACCOUNT q;
1115 LSA_R_CREATEACCOUNT r;
1121 /* Initialise input parameters */
1123 init_lsa_q_create_account(&q, dom_pol, sid, desired_access);
1125 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_CREATEACCOUNT,
1128 lsa_io_q_create_account,
1129 lsa_io_r_create_account,
1130 NT_STATUS_UNSUCCESSFUL);
1132 /* Return output parameters */
1136 if (NT_STATUS_IS_OK(result)) {
1143 /** Open a LSA user handle
1145 * @param cli Handle on an initialised SMB connection */
1147 NTSTATUS rpccli_lsa_open_account(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1148 POLICY_HND *dom_pol, DOM_SID *sid, uint32 des_access,
1149 POLICY_HND *user_pol)
1151 prs_struct qbuf, rbuf;
1152 LSA_Q_OPENACCOUNT q;
1153 LSA_R_OPENACCOUNT r;
1159 /* Initialise input parameters */
1161 init_lsa_q_open_account(&q, dom_pol, sid, des_access);
1163 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_OPENACCOUNT,
1166 lsa_io_q_open_account,
1167 lsa_io_r_open_account,
1168 NT_STATUS_UNSUCCESSFUL);
1170 /* Return output parameters */
1174 if (NT_STATUS_IS_OK(result)) {
1181 /** Enumerate user privileges
1183 * @param cli Handle on an initialised SMB connection */
1185 NTSTATUS rpccli_lsa_enum_privsaccount(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1186 POLICY_HND *pol, uint32 *count, LUID_ATTR **set)
1188 prs_struct qbuf, rbuf;
1189 LSA_Q_ENUMPRIVSACCOUNT q;
1190 LSA_R_ENUMPRIVSACCOUNT r;
1197 /* Initialise input parameters */
1199 init_lsa_q_enum_privsaccount(&q, pol);
1201 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_ENUMPRIVSACCOUNT,
1204 lsa_io_q_enum_privsaccount,
1205 lsa_io_r_enum_privsaccount,
1206 NT_STATUS_UNSUCCESSFUL);
1208 /* Return output parameters */
1212 if (!NT_STATUS_IS_OK(result)) {
1219 if (!((*set = TALLOC_ARRAY(mem_ctx, LUID_ATTR, r.count)))) {
1220 DEBUG(0, ("(cli_lsa_enum_privsaccount): out of memory\n"));
1221 result = NT_STATUS_UNSUCCESSFUL;
1225 for (i=0; i<r.count; i++) {
1226 (*set)[i].luid.low = r.set.set[i].luid.low;
1227 (*set)[i].luid.high = r.set.set[i].luid.high;
1228 (*set)[i].attr = r.set.set[i].attr;
1237 /** Get a privilege value given its name */
1239 NTSTATUS rpccli_lsa_lookup_priv_value(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1240 POLICY_HND *pol, const char *name, LUID *luid)
1242 prs_struct qbuf, rbuf;
1243 LSA_Q_LOOKUP_PRIV_VALUE q;
1244 LSA_R_LOOKUP_PRIV_VALUE r;
1250 /* Marshall data and send request */
1252 init_lsa_q_lookup_priv_value(&q, pol, name);
1254 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_LOOKUPPRIVVALUE,
1257 lsa_io_q_lookup_priv_value,
1258 lsa_io_r_lookup_priv_value,
1259 NT_STATUS_UNSUCCESSFUL);
1263 if (!NT_STATUS_IS_OK(result)) {
1267 /* Return output parameters */
1269 (*luid).low=r.luid.low;
1270 (*luid).high=r.luid.high;
1277 /** Query LSA security object */
1279 NTSTATUS rpccli_lsa_query_secobj(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1280 POLICY_HND *pol, uint32 sec_info,
1281 SEC_DESC_BUF **psdb)
1283 prs_struct qbuf, rbuf;
1284 LSA_Q_QUERY_SEC_OBJ q;
1285 LSA_R_QUERY_SEC_OBJ r;
1291 /* Marshall data and send request */
1293 init_q_query_sec_obj(&q, pol, sec_info);
1295 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_QUERYSECOBJ,
1298 lsa_io_q_query_sec_obj,
1299 lsa_io_r_query_sec_obj,
1300 NT_STATUS_UNSUCCESSFUL);
1304 if (!NT_STATUS_IS_OK(result)) {
1308 /* Return output parameters */
1319 /* Enumerate account rights This is similar to enum_privileges but
1320 takes a SID directly, avoiding the open_account call.
1323 NTSTATUS rpccli_lsa_enum_account_rights(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1324 POLICY_HND *pol, DOM_SID *sid,
1325 uint32 *count, char ***priv_names)
1327 prs_struct qbuf, rbuf;
1328 LSA_Q_ENUM_ACCT_RIGHTS q;
1329 LSA_R_ENUM_ACCT_RIGHTS r;
1332 fstring *privileges;
1338 /* Marshall data and send request */
1339 init_q_enum_acct_rights(&q, pol, 2, sid);
1341 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_ENUMACCTRIGHTS,
1344 lsa_io_q_enum_acct_rights,
1345 lsa_io_r_enum_acct_rights,
1346 NT_STATUS_UNSUCCESSFUL);
1350 if (!NT_STATUS_IS_OK(result)) {
1360 privileges = TALLOC_ARRAY( mem_ctx, fstring, *count );
1361 names = TALLOC_ARRAY( mem_ctx, char *, *count );
1363 if ((privileges == NULL) || (names == NULL)) {
1364 TALLOC_FREE(privileges);
1366 return NT_STATUS_NO_MEMORY;
1369 for ( i=0; i<*count; i++ ) {
1370 UNISTR4 *uni_string = &r.rights->strings[i];
1372 if ( !uni_string->string )
1375 rpcstr_pull( privileges[i], uni_string->string->buffer, sizeof(privileges[i]), -1, STR_TERMINATE );
1377 /* now copy to the return array */
1378 names[i] = talloc_strdup( mem_ctx, privileges[i] );
1381 *priv_names = names;
1390 /* add account rights to an account. */
1392 NTSTATUS rpccli_lsa_add_account_rights(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1393 POLICY_HND *pol, DOM_SID sid,
1394 uint32 count, const char **privs_name)
1396 prs_struct qbuf, rbuf;
1397 LSA_Q_ADD_ACCT_RIGHTS q;
1398 LSA_R_ADD_ACCT_RIGHTS r;
1404 /* Marshall data and send request */
1405 init_q_add_acct_rights(&q, pol, &sid, count, privs_name);
1407 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_ADDACCTRIGHTS,
1410 lsa_io_q_add_acct_rights,
1411 lsa_io_r_add_acct_rights,
1412 NT_STATUS_UNSUCCESSFUL);
1416 if (!NT_STATUS_IS_OK(result)) {
1425 /* remove account rights for an account. */
1427 NTSTATUS rpccli_lsa_remove_account_rights(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1428 POLICY_HND *pol, DOM_SID sid, BOOL removeall,
1429 uint32 count, const char **privs_name)
1431 prs_struct qbuf, rbuf;
1432 LSA_Q_REMOVE_ACCT_RIGHTS q;
1433 LSA_R_REMOVE_ACCT_RIGHTS r;
1439 /* Marshall data and send request */
1440 init_q_remove_acct_rights(&q, pol, &sid, removeall?1:0, count, privs_name);
1442 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_REMOVEACCTRIGHTS,
1445 lsa_io_q_remove_acct_rights,
1446 lsa_io_r_remove_acct_rights,
1447 NT_STATUS_UNSUCCESSFUL);
1451 if (!NT_STATUS_IS_OK(result)) {
1462 /** An example of how to use the routines in this file. Fetch a DOMAIN
1463 sid. Does complete cli setup / teardown anonymously. */
1465 BOOL fetch_domain_sid( char *domain, char *remote_machine, DOM_SID *psid)
1467 extern pstring global_myname;
1468 struct cli_state *cli;
1474 if((cli = cli_initialise()) == NULL) {
1475 DEBUG(0,("fetch_domain_sid: unable to initialize client connection.\n"));
1479 if(!resolve_name( remote_machine, &cli->dest_ip, 0x20)) {
1480 DEBUG(0,("fetch_domain_sid: Can't resolve address for %s\n", remote_machine));
1484 if (!cli_connect(cli, remote_machine, &cli->dest_ip)) {
1485 DEBUG(0,("fetch_domain_sid: unable to connect to SMB server on \
1486 machine %s. Error was : %s.\n", remote_machine, cli_errstr(cli) ));
1490 if (!attempt_netbios_session_request(cli, global_myname, remote_machine, &cli->dest_ip)) {
1491 DEBUG(0,("fetch_domain_sid: machine %s rejected the NetBIOS session request.\n",
1496 cli->protocol = PROTOCOL_NT1;
1498 if (!cli_negprot(cli)) {
1499 DEBUG(0,("fetch_domain_sid: machine %s rejected the negotiate protocol. \
1500 Error was : %s.\n", remote_machine, cli_errstr(cli) ));
1504 if (cli->protocol != PROTOCOL_NT1) {
1505 DEBUG(0,("fetch_domain_sid: machine %s didn't negotiate NT protocol.\n",
1511 * Do an anonymous session setup.
1514 if (!cli_session_setup(cli, "", "", 0, "", 0, "")) {
1515 DEBUG(0,("fetch_domain_sid: machine %s rejected the session setup. \
1516 Error was : %s.\n", remote_machine, cli_errstr(cli) ));
1520 if (!(cli->sec_mode & NEGOTIATE_SECURITY_USER_LEVEL)) {
1521 DEBUG(0,("fetch_domain_sid: machine %s isn't in user level security mode\n",
1526 if (!cli_send_tconX(cli, "IPC$", "IPC", "", 1)) {
1527 DEBUG(0,("fetch_domain_sid: machine %s rejected the tconX on the IPC$ share. \
1528 Error was : %s.\n", remote_machine, cli_errstr(cli) ));
1532 /* Fetch domain sid */
1534 if (!cli_nt_session_open(cli, PI_LSARPC)) {
1535 DEBUG(0, ("fetch_domain_sid: Error connecting to SAM pipe\n"));
1539 result = cli_lsa_open_policy(cli, cli->mem_ctx, True, SEC_RIGHTS_QUERY_VALUE, &lsa_pol);
1540 if (!NT_STATUS_IS_OK(result)) {
1541 DEBUG(0, ("fetch_domain_sid: Error opening lsa policy handle. %s\n",
1542 nt_errstr(result) ));
1546 result = cli_lsa_query_info_policy(cli, cli->mem_ctx, &lsa_pol, 5, domain, psid);
1547 if (!NT_STATUS_IS_OK(result)) {
1548 DEBUG(0, ("fetch_domain_sid: Error querying lsa policy handle. %s\n",
1549 nt_errstr(result) ));
1563 NTSTATUS rpccli_lsa_open_trusted_domain(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1564 POLICY_HND *pol, DOM_SID *dom_sid, uint32 access_mask,
1565 POLICY_HND *trustdom_pol)
1567 prs_struct qbuf, rbuf;
1568 LSA_Q_OPEN_TRUSTED_DOMAIN q;
1569 LSA_R_OPEN_TRUSTED_DOMAIN r;
1575 /* Initialise input parameters */
1577 init_lsa_q_open_trusted_domain(&q, pol, dom_sid, access_mask);
1579 /* Marshall data and send request */
1581 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_OPENTRUSTDOM,
1584 lsa_io_q_open_trusted_domain,
1585 lsa_io_r_open_trusted_domain,
1586 NT_STATUS_UNSUCCESSFUL);
1588 /* Return output parameters */
1592 if (NT_STATUS_IS_OK(result)) {
1593 *trustdom_pol = r.handle;
1599 NTSTATUS rpccli_lsa_query_trusted_domain_info(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1602 LSA_TRUSTED_DOMAIN_INFO **info)
1604 prs_struct qbuf, rbuf;
1605 LSA_Q_QUERY_TRUSTED_DOMAIN_INFO q;
1606 LSA_R_QUERY_TRUSTED_DOMAIN_INFO r;
1607 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
1612 /* Marshall data and send request */
1614 init_q_query_trusted_domain_info(&q, pol, info_class);
1616 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_QUERYTRUSTDOMINFO,
1619 lsa_io_q_query_trusted_domain_info,
1620 lsa_io_r_query_trusted_domain_info,
1621 NT_STATUS_UNSUCCESSFUL);
1625 if (!NT_STATUS_IS_OK(result)) {
1635 NTSTATUS rpccli_lsa_open_trusted_domain_by_name(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1636 POLICY_HND *pol, const char *name, uint32 access_mask,
1637 POLICY_HND *trustdom_pol)
1639 prs_struct qbuf, rbuf;
1640 LSA_Q_OPEN_TRUSTED_DOMAIN_BY_NAME q;
1641 LSA_R_OPEN_TRUSTED_DOMAIN_BY_NAME r;
1647 /* Initialise input parameters */
1649 init_lsa_q_open_trusted_domain_by_name(&q, pol, name, access_mask);
1651 /* Marshall data and send request */
1653 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_OPENTRUSTDOMBYNAME,
1656 lsa_io_q_open_trusted_domain_by_name,
1657 lsa_io_r_open_trusted_domain_by_name,
1658 NT_STATUS_UNSUCCESSFUL);
1660 /* Return output parameters */
1664 if (NT_STATUS_IS_OK(result)) {
1665 *trustdom_pol = r.handle;
1672 NTSTATUS rpccli_lsa_query_trusted_domain_info_by_sid(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1674 uint16 info_class, DOM_SID *dom_sid,
1675 LSA_TRUSTED_DOMAIN_INFO **info)
1677 prs_struct qbuf, rbuf;
1678 LSA_Q_QUERY_TRUSTED_DOMAIN_INFO_BY_SID q;
1679 LSA_R_QUERY_TRUSTED_DOMAIN_INFO r;
1680 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
1685 /* Marshall data and send request */
1687 init_q_query_trusted_domain_info_by_sid(&q, pol, info_class, dom_sid);
1689 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_QUERYTRUSTDOMINFOBYSID,
1692 lsa_io_q_query_trusted_domain_info_by_sid,
1693 lsa_io_r_query_trusted_domain_info,
1694 NT_STATUS_UNSUCCESSFUL);
1698 if (!NT_STATUS_IS_OK(result)) {
1709 NTSTATUS rpccli_lsa_query_trusted_domain_info_by_name(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1711 uint16 info_class, const char *domain_name,
1712 LSA_TRUSTED_DOMAIN_INFO **info)
1714 prs_struct qbuf, rbuf;
1715 LSA_Q_QUERY_TRUSTED_DOMAIN_INFO_BY_NAME q;
1716 LSA_R_QUERY_TRUSTED_DOMAIN_INFO r;
1717 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
1722 /* Marshall data and send request */
1724 init_q_query_trusted_domain_info_by_name(&q, pol, info_class, domain_name);
1726 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_QUERYTRUSTDOMINFOBYNAME,
1729 lsa_io_q_query_trusted_domain_info_by_name,
1730 lsa_io_r_query_trusted_domain_info,
1731 NT_STATUS_UNSUCCESSFUL);
1735 if (!NT_STATUS_IS_OK(result)) {
1746 NTSTATUS cli_lsa_query_domain_info_policy(struct rpc_pipe_client *cli, TALLOC_CTX *mem_ctx,
1748 uint16 info_class, LSA_DOM_INFO_UNION **info)
1750 prs_struct qbuf, rbuf;
1751 LSA_Q_QUERY_DOM_INFO_POLICY q;
1752 LSA_R_QUERY_DOM_INFO_POLICY r;
1753 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
1758 /* Marshall data and send request */
1760 init_q_query_dom_info(&q, pol, info_class);
1762 CLI_DO_RPC( cli, mem_ctx, PI_LSARPC, LSA_QUERYDOMINFOPOL,
1765 lsa_io_q_query_dom_info,
1766 lsa_io_r_query_dom_info,
1767 NT_STATUS_UNSUCCESSFUL);
1771 if (!NT_STATUS_IS_OK(result)) {