/*****************/
/* Function 0x10 */
- NTSTATUS DRSUAPI_DOMAIN_CONTROLLER_INFO();
+ typedef struct {
+ unistr *domain_name; /* netbios or dns */
+ int32 level; /* specifies the switch level for the request */
+ } drsuapi_DsGetDCInfoRequest1;
+
+ typedef union {
+ [case(1)] drsuapi_DsGetDCInfoRequest1 req1;
+ } drsuapi_DsGetDCInfoRequest;
+
+ typedef struct {
+ unistr *netbios_name;
+ unistr *dns_name;
+ unistr *site_name;
+ unistr *computer_dn;
+ unistr *server_dn;
+ uint32 is_pdc;
+ uint32 is_enabled;
+ } drsuapi_DsGetDCInfo1;
+
+ typedef struct {
+ [range(0,10000)] uint32 count;
+ [size_is(count)] drsuapi_DsGetDCInfo1 *array;
+ } drsuapi_DsGetDCInfoCtr1;
+
+ typedef struct {
+ unistr *netbios_name;
+ unistr *dns_name;
+ unistr *site_name;
+ unistr *site_dn;
+ unistr *computer_dn;
+ unistr *server_dn;
+ unistr *ntds_dn;
+ uint32 is_pdc;
+ uint32 is_enabled;
+ uint32 is_gc;
+ GUID site_guid;
+ GUID computer_guid;
+ GUID server_guid;
+ GUID ntds_guid;
+ } drsuapi_DsGetDCInfo2;
+
+ typedef struct {
+ [range(0,10000)] uint32 count;
+ [size_is(count)] drsuapi_DsGetDCInfo2 *array;
+ } drsuapi_DsGetDCInfoCtr2;
+
+ typedef struct {
+ uint32 unknown1;
+ uint32 unknown2;
+ uint32 unknown3;
+ uint32 unknown4;
+ uint32 unknown5;
+ uint32 unknown6;
+ unistr *server_nt4_account;
+ } drsuapi_DsGetDCInfo01;
+
+ typedef struct {
+ [range(0,10000)] uint32 count;
+ [size_is(count)] drsuapi_DsGetDCInfo01 *array;
+ } drsuapi_DsGetDCInfoCtr01;
+
+ typedef union {
+ [case(1)] drsuapi_DsGetDCInfoCtr1 ctr1;
+ [case(2)] drsuapi_DsGetDCInfoCtr2 ctr2;
+ [case(-1)] drsuapi_DsGetDCInfoCtr01 ctr01;
+ } drsuapi_DsGetDCInfoCtr;
+
+ /* maybe WERROR function */
+ NTSTATUS drsuapi_DsGetDomainControllerInfo(
+ [in,ref] policy_handle *bind_handle,
+ [in, out] int32 level,
+ [in,switch_is(level)] drsuapi_DsGetDCInfoRequest req,
+ [out,switch_is(level)] drsuapi_DsGetDCInfoCtr ctr
+ );
/*****************/
/* Function 0x11 */
#include "includes.h"
-#define TEST_MACHINE_NAME "torturetest"
-
static BOOL test_DsBind(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
struct policy_handle *bind_handle)
{
return ret;
}
+static BOOL test_DsGetDCInfo(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
+ struct policy_handle *bind_handle)
+{
+ NTSTATUS status;
+ struct drsuapi_DsGetDomainControllerInfo r;
+ BOOL ret = True;
+
+ r.in.bind_handle = bind_handle;
+ r.in.level = 1;
+ r.in.req.req1.domain_name = talloc_strdup(mem_ctx, lp_realm());
+ r.in.req.req1.level = 1;
+
+ status = dcerpc_drsuapi_DsGetDomainControllerInfo(p, mem_ctx, &r);
+ if (!NT_STATUS_IS_OK(status)) {
+ const char *errstr = nt_errstr(status);
+ if (NT_STATUS_EQUAL(status, NT_STATUS_NET_WRITE_FAULT)) {
+ errstr = dcerpc_errstr(mem_ctx, p->last_fault_code);
+ }
+ printf("drsuapi_DsGetDomainControllerInfo failed - %s\n", errstr);
+ ret = False;
+ }
+
+ r.in.req.req1.level = 2;
+
+ status = dcerpc_drsuapi_DsGetDomainControllerInfo(p, mem_ctx, &r);
+ if (!NT_STATUS_IS_OK(status)) {
+ const char *errstr = nt_errstr(status);
+ if (NT_STATUS_EQUAL(status, NT_STATUS_NET_WRITE_FAULT)) {
+ errstr = dcerpc_errstr(mem_ctx, p->last_fault_code);
+ }
+ printf("drsuapi_DsGetDomainControllerInfo failed - %s\n", errstr);
+ ret = False;
+ }
+
+ r.in.req.req1.level = -1;
+
+ status = dcerpc_drsuapi_DsGetDomainControllerInfo(p, mem_ctx, &r);
+ if (!NT_STATUS_IS_OK(status)) {
+ const char *errstr = nt_errstr(status);
+ if (NT_STATUS_EQUAL(status, NT_STATUS_NET_WRITE_FAULT)) {
+ errstr = dcerpc_errstr(mem_ctx, p->last_fault_code);
+ }
+ printf("drsuapi_DsGetDomainControllerInfo failed - %s\n", errstr);
+ ret = False;
+ }
+
+ r.in.req.req1.domain_name = talloc_strdup(mem_ctx, lp_workgroup());
+ r.in.req.req1.level = 2;
+
+ status = dcerpc_drsuapi_DsGetDomainControllerInfo(p, mem_ctx, &r);
+ if (!NT_STATUS_IS_OK(status)) {
+ const char *errstr = nt_errstr(status);
+ if (NT_STATUS_EQUAL(status, NT_STATUS_NET_WRITE_FAULT)) {
+ errstr = dcerpc_errstr(mem_ctx, p->last_fault_code);
+ }
+ printf("drsuapi_DsGetDomainControllerInfo failed - %s\n", errstr);
+ ret = False;
+ }
+
+ r.in.req.req1.domain_name = "__UNKNOWN_DOMAIN__";
+ r.in.req.req1.level = 2;
+
+ status = dcerpc_drsuapi_DsGetDomainControllerInfo(p, mem_ctx, &r);
+ if (!NT_STATUS_IS_OK(status)) {
+ const char *errstr = nt_errstr(status);
+ if (NT_STATUS_EQUAL(status, NT_STATUS_NET_WRITE_FAULT)) {
+ errstr = dcerpc_errstr(mem_ctx, p->last_fault_code);
+ }
+
+ if (!NT_STATUS_EQUAL(status, NT_STATUS(0x0000208d))) {
+ printf("drsuapi_DsGetDomainControllerInfo level %d with invalid domain name\n"
+ " - %s != NTSTATUS[0x0000208d]\n",
+ r.in.req.req1.level, errstr);
+ ret = False;
+ }
+ }
+
+ return ret;
+}
+
static BOOL test_DsUnbind(struct dcerpc_pipe *p, TALLOC_CTX *mem_ctx,
struct policy_handle *bind_handle)
{
ret = False;
}
+ if (!test_DsGetDCInfo(p, mem_ctx, &bind_handle)) {
+ ret = False;
+ }
+
if (!test_DsCrackNames(p, mem_ctx, &bind_handle)) {
ret = False;
}