2 Unix SMB/CIFS mplementation.
5 Copyright (C) Stefan Metzmacher <metze@samba.org> 2006
6 Copyright (C) Simo Sorce 2005
7 Copyright (C) Andrew Bartlett <abartlet@samba.org> 2008
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 3 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program. If not, see <http://www.gnu.org/licenses/>.
24 #include "dsdb/samdb/samdb.h"
25 #include "librpc/gen_ndr/ndr_drsuapi.h"
26 #include "librpc/gen_ndr/ndr_security.h"
27 #include "librpc/gen_ndr/ndr_misc.h"
28 #include "lib/ldb/include/ldb.h"
29 #include "lib/ldb/include/ldb_errors.h"
30 #include "system/time.h"
31 #include "../lib/util/charset/charset.h"
32 #include "librpc/ndr/libndr.h"
34 static WERROR dsdb_syntax_FOOBAR_drsuapi_to_ldb(struct ldb_context *ldb,
35 const struct dsdb_schema *schema,
36 const struct dsdb_attribute *attr,
37 const struct drsuapi_DsReplicaAttribute *in,
39 struct ldb_message_element *out)
44 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
45 W_ERROR_HAVE_NO_MEMORY(out->name);
47 out->num_values = in->value_ctr.num_values;
48 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
49 W_ERROR_HAVE_NO_MEMORY(out->values);
51 for (i=0; i < out->num_values; i++) {
54 if (in->value_ctr.values[i].blob == NULL) {
58 str = talloc_asprintf(out->values, "%s: not implemented",
60 W_ERROR_HAVE_NO_MEMORY(str);
62 out->values[i] = data_blob_string_const(str);
68 static WERROR dsdb_syntax_FOOBAR_ldb_to_drsuapi(struct ldb_context *ldb,
69 const struct dsdb_schema *schema,
70 const struct dsdb_attribute *attr,
71 const struct ldb_message_element *in,
73 struct drsuapi_DsReplicaAttribute *out)
78 static WERROR dsdb_syntax_BOOL_drsuapi_to_ldb(struct ldb_context *ldb,
79 const struct dsdb_schema *schema,
80 const struct dsdb_attribute *attr,
81 const struct drsuapi_DsReplicaAttribute *in,
83 struct ldb_message_element *out)
88 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
89 W_ERROR_HAVE_NO_MEMORY(out->name);
91 out->num_values = in->value_ctr.num_values;
92 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
93 W_ERROR_HAVE_NO_MEMORY(out->values);
95 for (i=0; i < out->num_values; i++) {
99 if (in->value_ctr.values[i].blob == NULL) {
103 if (in->value_ctr.values[i].blob->length != 4) {
107 v = IVAL(in->value_ctr.values[i].blob->data, 0);
110 str = talloc_strdup(out->values, "TRUE");
111 W_ERROR_HAVE_NO_MEMORY(str);
113 str = talloc_strdup(out->values, "FALSE");
114 W_ERROR_HAVE_NO_MEMORY(str);
117 out->values[i] = data_blob_string_const(str);
123 static WERROR dsdb_syntax_BOOL_ldb_to_drsuapi(struct ldb_context *ldb,
124 const struct dsdb_schema *schema,
125 const struct dsdb_attribute *attr,
126 const struct ldb_message_element *in,
128 struct drsuapi_DsReplicaAttribute *out)
133 if (attr->attributeID_id == 0xFFFFFFFF) {
137 out->attid = attr->attributeID_id;
138 out->value_ctr.num_values = in->num_values;
139 out->value_ctr.values = talloc_array(mem_ctx,
140 struct drsuapi_DsAttributeValue,
142 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
144 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
145 W_ERROR_HAVE_NO_MEMORY(blobs);
147 for (i=0; i < in->num_values; i++) {
148 out->value_ctr.values[i].blob = &blobs[i];
150 blobs[i] = data_blob_talloc(blobs, NULL, 4);
151 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
153 if (strcmp("TRUE", (const char *)in->values[i].data) == 0) {
154 SIVAL(blobs[i].data, 0, 0x00000001);
155 } else if (strcmp("FALSE", (const char *)in->values[i].data) == 0) {
156 SIVAL(blobs[i].data, 0, 0x00000000);
165 static WERROR dsdb_syntax_INT32_drsuapi_to_ldb(struct ldb_context *ldb,
166 const struct dsdb_schema *schema,
167 const struct dsdb_attribute *attr,
168 const struct drsuapi_DsReplicaAttribute *in,
170 struct ldb_message_element *out)
175 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
176 W_ERROR_HAVE_NO_MEMORY(out->name);
178 out->num_values = in->value_ctr.num_values;
179 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
180 W_ERROR_HAVE_NO_MEMORY(out->values);
182 for (i=0; i < out->num_values; i++) {
186 if (in->value_ctr.values[i].blob == NULL) {
190 if (in->value_ctr.values[i].blob->length != 4) {
194 v = IVALS(in->value_ctr.values[i].blob->data, 0);
196 str = talloc_asprintf(out->values, "%d", v);
197 W_ERROR_HAVE_NO_MEMORY(str);
199 out->values[i] = data_blob_string_const(str);
205 static WERROR dsdb_syntax_INT32_ldb_to_drsuapi(struct ldb_context *ldb,
206 const struct dsdb_schema *schema,
207 const struct dsdb_attribute *attr,
208 const struct ldb_message_element *in,
210 struct drsuapi_DsReplicaAttribute *out)
215 if (attr->attributeID_id == 0xFFFFFFFF) {
219 out->attid = attr->attributeID_id;
220 out->value_ctr.num_values = in->num_values;
221 out->value_ctr.values = talloc_array(mem_ctx,
222 struct drsuapi_DsAttributeValue,
224 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
226 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
227 W_ERROR_HAVE_NO_MEMORY(blobs);
229 for (i=0; i < in->num_values; i++) {
232 out->value_ctr.values[i].blob = &blobs[i];
234 blobs[i] = data_blob_talloc(blobs, NULL, 4);
235 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
237 /* We've to use "strtoll" here to have the intended overflows.
238 * Otherwise we may get "LONG_MAX" and the conversion is wrong. */
239 v = (int32_t) strtoll((char *)in->values[i].data, NULL, 0);
241 SIVALS(blobs[i].data, 0, v);
247 static WERROR dsdb_syntax_INT64_drsuapi_to_ldb(struct ldb_context *ldb,
248 const struct dsdb_schema *schema,
249 const struct dsdb_attribute *attr,
250 const struct drsuapi_DsReplicaAttribute *in,
252 struct ldb_message_element *out)
257 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
258 W_ERROR_HAVE_NO_MEMORY(out->name);
260 out->num_values = in->value_ctr.num_values;
261 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
262 W_ERROR_HAVE_NO_MEMORY(out->values);
264 for (i=0; i < out->num_values; i++) {
268 if (in->value_ctr.values[i].blob == NULL) {
272 if (in->value_ctr.values[i].blob->length != 8) {
276 v = BVALS(in->value_ctr.values[i].blob->data, 0);
278 str = talloc_asprintf(out->values, "%lld", (long long int)v);
279 W_ERROR_HAVE_NO_MEMORY(str);
281 out->values[i] = data_blob_string_const(str);
287 static WERROR dsdb_syntax_INT64_ldb_to_drsuapi(struct ldb_context *ldb,
288 const struct dsdb_schema *schema,
289 const struct dsdb_attribute *attr,
290 const struct ldb_message_element *in,
292 struct drsuapi_DsReplicaAttribute *out)
297 if (attr->attributeID_id == 0xFFFFFFFF) {
301 out->attid = attr->attributeID_id;
302 out->value_ctr.num_values = in->num_values;
303 out->value_ctr.values = talloc_array(mem_ctx,
304 struct drsuapi_DsAttributeValue,
306 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
308 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
309 W_ERROR_HAVE_NO_MEMORY(blobs);
311 for (i=0; i < in->num_values; i++) {
314 out->value_ctr.values[i].blob = &blobs[i];
316 blobs[i] = data_blob_talloc(blobs, NULL, 8);
317 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
319 v = strtoll((const char *)in->values[i].data, NULL, 10);
321 SBVALS(blobs[i].data, 0, v);
327 static WERROR dsdb_syntax_NTTIME_UTC_drsuapi_to_ldb(struct ldb_context *ldb,
328 const struct dsdb_schema *schema,
329 const struct dsdb_attribute *attr,
330 const struct drsuapi_DsReplicaAttribute *in,
332 struct ldb_message_element *out)
337 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
338 W_ERROR_HAVE_NO_MEMORY(out->name);
340 out->num_values = in->value_ctr.num_values;
341 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
342 W_ERROR_HAVE_NO_MEMORY(out->values);
344 for (i=0; i < out->num_values; i++) {
349 if (in->value_ctr.values[i].blob == NULL) {
353 if (in->value_ctr.values[i].blob->length != 8) {
357 v = BVAL(in->value_ctr.values[i].blob->data, 0);
359 t = nt_time_to_unix(v);
362 * NOTE: On a w2k3 server you can set a GeneralizedTime string
363 * via LDAP, but you get back an UTCTime string,
364 * but via DRSUAPI you get back the NTTIME_1sec value
365 * that represents the GeneralizedTime value!
367 * So if we store the UTCTime string in our ldb
368 * we'll loose information!
370 str = ldb_timestring_utc(out->values, t);
371 W_ERROR_HAVE_NO_MEMORY(str);
372 out->values[i] = data_blob_string_const(str);
378 static WERROR dsdb_syntax_NTTIME_UTC_ldb_to_drsuapi(struct ldb_context *ldb,
379 const struct dsdb_schema *schema,
380 const struct dsdb_attribute *attr,
381 const struct ldb_message_element *in,
383 struct drsuapi_DsReplicaAttribute *out)
388 if (attr->attributeID_id == 0xFFFFFFFF) {
392 out->attid = attr->attributeID_id;
393 out->value_ctr.num_values = in->num_values;
394 out->value_ctr.values = talloc_array(mem_ctx,
395 struct drsuapi_DsAttributeValue,
397 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
399 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
400 W_ERROR_HAVE_NO_MEMORY(blobs);
402 for (i=0; i < in->num_values; i++) {
406 out->value_ctr.values[i].blob = &blobs[i];
408 blobs[i] = data_blob_talloc(blobs, NULL, 8);
409 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
411 t = ldb_string_utc_to_time((const char *)in->values[i].data);
412 unix_to_nt_time(&v, t);
415 SBVAL(blobs[i].data, 0, v);
421 static WERROR dsdb_syntax_NTTIME_drsuapi_to_ldb(struct ldb_context *ldb,
422 const struct dsdb_schema *schema,
423 const struct dsdb_attribute *attr,
424 const struct drsuapi_DsReplicaAttribute *in,
426 struct ldb_message_element *out)
431 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
432 W_ERROR_HAVE_NO_MEMORY(out->name);
434 out->num_values = in->value_ctr.num_values;
435 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
436 W_ERROR_HAVE_NO_MEMORY(out->values);
438 for (i=0; i < out->num_values; i++) {
443 if (in->value_ctr.values[i].blob == NULL) {
447 if (in->value_ctr.values[i].blob->length != 8) {
451 v = BVAL(in->value_ctr.values[i].blob->data, 0);
453 t = nt_time_to_unix(v);
455 str = ldb_timestring(out->values, t);
456 W_ERROR_HAVE_NO_MEMORY(str);
458 out->values[i] = data_blob_string_const(str);
464 static WERROR dsdb_syntax_NTTIME_ldb_to_drsuapi(struct ldb_context *ldb,
465 const struct dsdb_schema *schema,
466 const struct dsdb_attribute *attr,
467 const struct ldb_message_element *in,
469 struct drsuapi_DsReplicaAttribute *out)
474 if (attr->attributeID_id == 0xFFFFFFFF) {
478 out->attid = attr->attributeID_id;
479 out->value_ctr.num_values = in->num_values;
480 out->value_ctr.values = talloc_array(mem_ctx,
481 struct drsuapi_DsAttributeValue,
483 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
485 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
486 W_ERROR_HAVE_NO_MEMORY(blobs);
488 for (i=0; i < in->num_values; i++) {
493 out->value_ctr.values[i].blob = &blobs[i];
495 blobs[i] = data_blob_talloc(blobs, NULL, 8);
496 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
498 ret = ldb_val_to_time(&in->values[i], &t);
499 if (ret != LDB_SUCCESS) {
500 return WERR_DS_INVALID_ATTRIBUTE_SYNTAX;
502 unix_to_nt_time(&v, t);
505 SBVAL(blobs[i].data, 0, v);
511 static WERROR dsdb_syntax_DATA_BLOB_drsuapi_to_ldb(struct ldb_context *ldb,
512 const struct dsdb_schema *schema,
513 const struct dsdb_attribute *attr,
514 const struct drsuapi_DsReplicaAttribute *in,
516 struct ldb_message_element *out)
521 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
522 W_ERROR_HAVE_NO_MEMORY(out->name);
524 out->num_values = in->value_ctr.num_values;
525 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
526 W_ERROR_HAVE_NO_MEMORY(out->values);
528 for (i=0; i < out->num_values; i++) {
529 if (in->value_ctr.values[i].blob == NULL) {
533 if (in->value_ctr.values[i].blob->length == 0) {
537 out->values[i] = data_blob_dup_talloc(out->values,
538 in->value_ctr.values[i].blob);
539 W_ERROR_HAVE_NO_MEMORY(out->values[i].data);
545 static WERROR dsdb_syntax_DATA_BLOB_ldb_to_drsuapi(struct ldb_context *ldb,
546 const struct dsdb_schema *schema,
547 const struct dsdb_attribute *attr,
548 const struct ldb_message_element *in,
550 struct drsuapi_DsReplicaAttribute *out)
555 if (attr->attributeID_id == 0xFFFFFFFF) {
559 out->attid = attr->attributeID_id;
560 out->value_ctr.num_values = in->num_values;
561 out->value_ctr.values = talloc_array(mem_ctx,
562 struct drsuapi_DsAttributeValue,
564 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
566 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
567 W_ERROR_HAVE_NO_MEMORY(blobs);
569 for (i=0; i < in->num_values; i++) {
570 out->value_ctr.values[i].blob = &blobs[i];
572 blobs[i] = data_blob_dup_talloc(blobs, &in->values[i]);
573 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
579 static WERROR _dsdb_syntax_OID_obj_drsuapi_to_ldb(struct ldb_context *ldb,
580 const struct dsdb_schema *schema,
581 const struct dsdb_attribute *attr,
582 const struct drsuapi_DsReplicaAttribute *in,
584 struct ldb_message_element *out)
589 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
590 W_ERROR_HAVE_NO_MEMORY(out->name);
592 out->num_values = in->value_ctr.num_values;
593 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
594 W_ERROR_HAVE_NO_MEMORY(out->values);
596 for (i=0; i < out->num_values; i++) {
598 const struct dsdb_class *c;
601 if (in->value_ctr.values[i].blob == NULL) {
605 if (in->value_ctr.values[i].blob->length != 4) {
609 v = IVAL(in->value_ctr.values[i].blob->data, 0);
611 c = dsdb_class_by_governsID_id(schema, v);
616 str = talloc_strdup(out->values, c->lDAPDisplayName);
617 W_ERROR_HAVE_NO_MEMORY(str);
619 /* the values need to be reversed */
620 out->values[out->num_values - (i + 1)] = data_blob_string_const(str);
626 static WERROR _dsdb_syntax_OID_attr_drsuapi_to_ldb(struct ldb_context *ldb,
627 const struct dsdb_schema *schema,
628 const struct dsdb_attribute *attr,
629 const struct drsuapi_DsReplicaAttribute *in,
631 struct ldb_message_element *out)
636 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
637 W_ERROR_HAVE_NO_MEMORY(out->name);
639 out->num_values = in->value_ctr.num_values;
640 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
641 W_ERROR_HAVE_NO_MEMORY(out->values);
643 for (i=0; i < out->num_values; i++) {
645 const struct dsdb_attribute *a;
648 if (in->value_ctr.values[i].blob == NULL) {
652 if (in->value_ctr.values[i].blob->length != 4) {
656 v = IVAL(in->value_ctr.values[i].blob->data, 0);
658 a = dsdb_attribute_by_attributeID_id(schema, v);
663 str = talloc_strdup(out->values, a->lDAPDisplayName);
664 W_ERROR_HAVE_NO_MEMORY(str);
666 /* the values need to be reversed */
667 out->values[out->num_values - (i + 1)] = data_blob_string_const(str);
673 static WERROR _dsdb_syntax_OID_oid_drsuapi_to_ldb(struct ldb_context *ldb,
674 const struct dsdb_schema *schema,
675 const struct dsdb_attribute *attr,
676 const struct drsuapi_DsReplicaAttribute *in,
678 struct ldb_message_element *out)
683 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
684 W_ERROR_HAVE_NO_MEMORY(out->name);
686 out->num_values = in->value_ctr.num_values;
687 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
688 W_ERROR_HAVE_NO_MEMORY(out->values);
690 for (i=0; i < out->num_values; i++) {
695 if (in->value_ctr.values[i].blob == NULL) {
699 if (in->value_ctr.values[i].blob->length != 4) {
703 attid = IVAL(in->value_ctr.values[i].blob->data, 0);
705 status = dsdb_schema_pfm_oid_from_attid(schema->prefixmap, attid, out->values, &oid);
706 W_ERROR_NOT_OK_RETURN(status);
708 out->values[i] = data_blob_string_const(oid);
714 static WERROR _dsdb_syntax_OID_obj_ldb_to_drsuapi(struct ldb_context *ldb,
715 const struct dsdb_schema *schema,
716 const struct dsdb_attribute *attr,
717 const struct ldb_message_element *in,
719 struct drsuapi_DsReplicaAttribute *out)
724 out->attid= attr->attributeID_id;
725 out->value_ctr.num_values= in->num_values;
726 out->value_ctr.values= talloc_array(mem_ctx,
727 struct drsuapi_DsAttributeValue,
729 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
731 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
732 W_ERROR_HAVE_NO_MEMORY(blobs);
734 for (i=0; i < in->num_values; i++) {
735 const struct dsdb_class *obj_class;
737 out->value_ctr.values[i].blob= &blobs[i];
739 blobs[i] = data_blob_talloc(blobs, NULL, 4);
740 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
742 /* in DRS windows puts the classes in the opposite
743 order to the order used in ldap */
744 obj_class = dsdb_class_by_lDAPDisplayName(schema,
745 (const char *)in->values[(in->num_values-1)-i].data);
749 SIVAL(blobs[i].data, 0, obj_class->governsID_id);
756 static WERROR _dsdb_syntax_OID_attr_ldb_to_drsuapi(struct ldb_context *ldb,
757 const struct dsdb_schema *schema,
758 const struct dsdb_attribute *attr,
759 const struct ldb_message_element *in,
761 struct drsuapi_DsReplicaAttribute *out)
766 out->attid= attr->attributeID_id;
767 out->value_ctr.num_values= in->num_values;
768 out->value_ctr.values= talloc_array(mem_ctx,
769 struct drsuapi_DsAttributeValue,
771 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
773 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
774 W_ERROR_HAVE_NO_MEMORY(blobs);
776 for (i=0; i < in->num_values; i++) {
777 const struct dsdb_attribute *obj_attr;
779 out->value_ctr.values[i].blob= &blobs[i];
781 blobs[i] = data_blob_talloc(blobs, NULL, 4);
782 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
784 obj_attr = dsdb_attribute_by_lDAPDisplayName(schema, (const char *)in->values[i].data);
788 SIVAL(blobs[i].data, 0, obj_attr->attributeID_id);
795 static WERROR _dsdb_syntax_OID_oid_ldb_to_drsuapi(struct ldb_context *ldb,
796 const struct dsdb_schema *schema,
797 const struct dsdb_attribute *attr,
798 const struct ldb_message_element *in,
800 struct drsuapi_DsReplicaAttribute *out)
805 out->attid= attr->attributeID_id;
806 out->value_ctr.num_values= in->num_values;
807 out->value_ctr.values= talloc_array(mem_ctx,
808 struct drsuapi_DsAttributeValue,
810 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
812 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
813 W_ERROR_HAVE_NO_MEMORY(blobs);
815 for (i=0; i < in->num_values; i++) {
819 out->value_ctr.values[i].blob= &blobs[i];
821 blobs[i] = data_blob_talloc(blobs, NULL, 4);
822 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
824 status = dsdb_schema_pfm_make_attid(schema->prefixmap,
825 (const char *)in->values[i].data,
827 W_ERROR_NOT_OK_RETURN(status);
829 SIVAL(blobs[i].data, 0, attid);
835 static WERROR dsdb_syntax_OID_drsuapi_to_ldb(struct ldb_context *ldb,
836 const struct dsdb_schema *schema,
837 const struct dsdb_attribute *attr,
838 const struct drsuapi_DsReplicaAttribute *in,
840 struct ldb_message_element *out)
844 switch (attr->attributeID_id) {
845 case DRSUAPI_ATTRIBUTE_objectClass:
846 case DRSUAPI_ATTRIBUTE_subClassOf:
847 case DRSUAPI_ATTRIBUTE_auxiliaryClass:
848 case DRSUAPI_ATTRIBUTE_systemPossSuperiors:
849 case DRSUAPI_ATTRIBUTE_possSuperiors:
850 return _dsdb_syntax_OID_obj_drsuapi_to_ldb(ldb, schema, attr, in, mem_ctx, out);
851 case DRSUAPI_ATTRIBUTE_systemMustContain:
852 case DRSUAPI_ATTRIBUTE_systemMayContain:
853 case DRSUAPI_ATTRIBUTE_mustContain:
854 case DRSUAPI_ATTRIBUTE_mayContain:
855 return _dsdb_syntax_OID_attr_drsuapi_to_ldb(ldb, schema, attr, in, mem_ctx, out);
856 case DRSUAPI_ATTRIBUTE_governsID:
857 case DRSUAPI_ATTRIBUTE_attributeID:
858 case DRSUAPI_ATTRIBUTE_attributeSyntax:
859 return _dsdb_syntax_OID_oid_drsuapi_to_ldb(ldb, schema, attr, in, mem_ctx, out);
863 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
864 W_ERROR_HAVE_NO_MEMORY(out->name);
866 out->num_values = in->value_ctr.num_values;
867 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
868 W_ERROR_HAVE_NO_MEMORY(out->values);
870 for (i=0; i < out->num_values; i++) {
875 if (in->value_ctr.values[i].blob == NULL) {
879 if (in->value_ctr.values[i].blob->length != 4) {
883 v = IVAL(in->value_ctr.values[i].blob->data, 0);
885 name = dsdb_lDAPDisplayName_by_id(schema, v);
890 str = talloc_strdup(out->values, name);
891 W_ERROR_HAVE_NO_MEMORY(str);
893 out->values[i] = data_blob_string_const(str);
899 static WERROR dsdb_syntax_OID_ldb_to_drsuapi(struct ldb_context *ldb,
900 const struct dsdb_schema *schema,
901 const struct dsdb_attribute *attr,
902 const struct ldb_message_element *in,
904 struct drsuapi_DsReplicaAttribute *out)
909 if (attr->attributeID_id == 0xFFFFFFFF) {
913 switch (attr->attributeID_id) {
914 case DRSUAPI_ATTRIBUTE_objectClass:
915 case DRSUAPI_ATTRIBUTE_subClassOf:
916 case DRSUAPI_ATTRIBUTE_auxiliaryClass:
917 case DRSUAPI_ATTRIBUTE_systemPossSuperiors:
918 case DRSUAPI_ATTRIBUTE_possSuperiors:
919 return _dsdb_syntax_OID_obj_ldb_to_drsuapi(ldb, schema, attr, in, mem_ctx, out);
920 case DRSUAPI_ATTRIBUTE_systemMustContain:
921 case DRSUAPI_ATTRIBUTE_systemMayContain:
922 case DRSUAPI_ATTRIBUTE_mustContain:
923 case DRSUAPI_ATTRIBUTE_mayContain:
924 return _dsdb_syntax_OID_attr_ldb_to_drsuapi(ldb, schema, attr, in, mem_ctx, out);
925 case DRSUAPI_ATTRIBUTE_governsID:
926 case DRSUAPI_ATTRIBUTE_attributeID:
927 case DRSUAPI_ATTRIBUTE_attributeSyntax:
928 return _dsdb_syntax_OID_oid_ldb_to_drsuapi(ldb, schema, attr, in, mem_ctx, out);
931 out->attid = attr->attributeID_id;
932 out->value_ctr.num_values = in->num_values;
933 out->value_ctr.values = talloc_array(mem_ctx,
934 struct drsuapi_DsAttributeValue,
936 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
938 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
939 W_ERROR_HAVE_NO_MEMORY(blobs);
941 for (i=0; i < in->num_values; i++) {
944 out->value_ctr.values[i].blob = &blobs[i];
946 blobs[i] = data_blob_talloc(blobs, NULL, 4);
947 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
949 v = strtol((const char *)in->values[i].data, NULL, 10);
951 SIVAL(blobs[i].data, 0, v);
957 static WERROR dsdb_syntax_UNICODE_drsuapi_to_ldb(struct ldb_context *ldb,
958 const struct dsdb_schema *schema,
959 const struct dsdb_attribute *attr,
960 const struct drsuapi_DsReplicaAttribute *in,
962 struct ldb_message_element *out)
967 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
968 W_ERROR_HAVE_NO_MEMORY(out->name);
970 out->num_values = in->value_ctr.num_values;
971 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
972 W_ERROR_HAVE_NO_MEMORY(out->values);
974 for (i=0; i < out->num_values; i++) {
977 if (in->value_ctr.values[i].blob == NULL) {
981 if (in->value_ctr.values[i].blob->length == 0) {
985 if (!convert_string_talloc_convenience(out->values,
986 schema->iconv_convenience,
988 in->value_ctr.values[i].blob->data,
989 in->value_ctr.values[i].blob->length,
990 (void **)&str, NULL, false)) {
994 out->values[i] = data_blob_string_const(str);
1000 static WERROR dsdb_syntax_UNICODE_ldb_to_drsuapi(struct ldb_context *ldb,
1001 const struct dsdb_schema *schema,
1002 const struct dsdb_attribute *attr,
1003 const struct ldb_message_element *in,
1004 TALLOC_CTX *mem_ctx,
1005 struct drsuapi_DsReplicaAttribute *out)
1010 if (attr->attributeID_id == 0xFFFFFFFF) {
1014 out->attid = attr->attributeID_id;
1015 out->value_ctr.num_values = in->num_values;
1016 out->value_ctr.values = talloc_array(mem_ctx,
1017 struct drsuapi_DsAttributeValue,
1019 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
1021 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
1022 W_ERROR_HAVE_NO_MEMORY(blobs);
1024 for (i=0; i < in->num_values; i++) {
1025 out->value_ctr.values[i].blob = &blobs[i];
1027 if (!convert_string_talloc_convenience(blobs,
1028 schema->iconv_convenience, CH_UNIX, CH_UTF16,
1029 in->values[i].data, in->values[i].length,
1030 (void **)&blobs[i].data, &blobs[i].length, false)) {
1039 WERROR dsdb_syntax_one_DN_drsuapi_to_ldb(TALLOC_CTX *mem_ctx, struct ldb_context *ldb,
1040 const struct dsdb_syntax *syntax,
1041 struct smb_iconv_convenience *iconv_convenience,
1042 const DATA_BLOB *in, DATA_BLOB *out)
1044 struct drsuapi_DsReplicaObjectIdentifier3 id3;
1045 enum ndr_err_code ndr_err;
1046 DATA_BLOB guid_blob;
1048 TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
1053 W_ERROR_HAVE_NO_MEMORY(tmp_ctx);
1057 talloc_free(tmp_ctx);
1061 if (in->length == 0) {
1062 talloc_free(tmp_ctx);
1067 /* windows sometimes sends an extra two pad bytes here */
1068 ndr_err = ndr_pull_struct_blob(in,
1069 tmp_ctx, iconv_convenience, &id3,
1070 (ndr_pull_flags_fn_t)ndr_pull_drsuapi_DsReplicaObjectIdentifier3);
1071 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1072 status = ndr_map_error2ntstatus(ndr_err);
1073 talloc_free(tmp_ctx);
1074 return ntstatus_to_werror(status);
1077 dn = ldb_dn_new(tmp_ctx, ldb, id3.dn);
1079 talloc_free(tmp_ctx);
1080 /* If this fails, it must be out of memory, as it does not do much parsing */
1081 W_ERROR_HAVE_NO_MEMORY(dn);
1084 if (!GUID_all_zero(&id3.guid)) {
1085 status = GUID_to_ndr_blob(&id3.guid, tmp_ctx, &guid_blob);
1086 if (!NT_STATUS_IS_OK(status)) {
1087 talloc_free(tmp_ctx);
1088 return ntstatus_to_werror(status);
1091 ret = ldb_dn_set_extended_component(dn, "GUID", &guid_blob);
1092 if (ret != LDB_SUCCESS) {
1093 talloc_free(tmp_ctx);
1096 talloc_free(guid_blob.data);
1099 if (id3.__ndr_size_sid) {
1101 ndr_err = ndr_push_struct_blob(&sid_blob, tmp_ctx, iconv_convenience, &id3.sid,
1102 (ndr_push_flags_fn_t)ndr_push_dom_sid);
1103 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1104 status = ndr_map_error2ntstatus(ndr_err);
1105 talloc_free(tmp_ctx);
1106 return ntstatus_to_werror(status);
1109 ret = ldb_dn_set_extended_component(dn, "SID", &sid_blob);
1110 if (ret != LDB_SUCCESS) {
1111 talloc_free(tmp_ctx);
1116 *out = data_blob_string_const(ldb_dn_get_extended_linearized(mem_ctx, dn, 1));
1117 talloc_free(tmp_ctx);
1121 static WERROR dsdb_syntax_DN_drsuapi_to_ldb(struct ldb_context *ldb,
1122 const struct dsdb_schema *schema,
1123 const struct dsdb_attribute *attr,
1124 const struct drsuapi_DsReplicaAttribute *in,
1125 TALLOC_CTX *mem_ctx,
1126 struct ldb_message_element *out)
1131 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
1132 W_ERROR_HAVE_NO_MEMORY(out->name);
1134 out->num_values = in->value_ctr.num_values;
1135 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
1136 W_ERROR_HAVE_NO_MEMORY(out->values);
1138 for (i=0; i < out->num_values; i++) {
1139 WERROR status = dsdb_syntax_one_DN_drsuapi_to_ldb(out->values, ldb, attr->syntax,
1140 schema->iconv_convenience,
1141 in->value_ctr.values[i].blob,
1143 if (!W_ERROR_IS_OK(status)) {
1152 static WERROR dsdb_syntax_DN_ldb_to_drsuapi(struct ldb_context *ldb,
1153 const struct dsdb_schema *schema,
1154 const struct dsdb_attribute *attr,
1155 const struct ldb_message_element *in,
1156 TALLOC_CTX *mem_ctx,
1157 struct drsuapi_DsReplicaAttribute *out)
1162 if (attr->attributeID_id == 0xFFFFFFFF) {
1166 out->attid = attr->attributeID_id;
1167 out->value_ctr.num_values = in->num_values;
1168 out->value_ctr.values = talloc_array(mem_ctx,
1169 struct drsuapi_DsAttributeValue,
1171 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
1173 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
1174 W_ERROR_HAVE_NO_MEMORY(blobs);
1176 for (i=0; i < in->num_values; i++) {
1177 struct drsuapi_DsReplicaObjectIdentifier3 id3;
1178 enum ndr_err_code ndr_err;
1179 const DATA_BLOB *sid_blob;
1181 TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
1184 W_ERROR_HAVE_NO_MEMORY(tmp_ctx);
1186 out->value_ctr.values[i].blob = &blobs[i];
1188 dn = ldb_dn_from_ldb_val(tmp_ctx, ldb, &in->values[i]);
1190 W_ERROR_HAVE_NO_MEMORY(dn);
1194 status = dsdb_get_extended_dn_guid(dn, &id3.guid, "GUID");
1195 if (!NT_STATUS_IS_OK(status) &&
1196 !NT_STATUS_EQUAL(status, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
1197 talloc_free(tmp_ctx);
1198 return ntstatus_to_werror(status);
1201 sid_blob = ldb_dn_get_extended_component(dn, "SID");
1204 ndr_err = ndr_pull_struct_blob_all(sid_blob,
1205 tmp_ctx, schema->iconv_convenience, &id3.sid,
1206 (ndr_pull_flags_fn_t)ndr_pull_dom_sid);
1207 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1208 status = ndr_map_error2ntstatus(ndr_err);
1209 talloc_free(tmp_ctx);
1210 return ntstatus_to_werror(status);
1214 id3.dn = ldb_dn_get_linearized(dn);
1216 ndr_err = ndr_push_struct_blob(&blobs[i], blobs, schema->iconv_convenience, &id3, (ndr_push_flags_fn_t)ndr_push_drsuapi_DsReplicaObjectIdentifier3);
1217 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1218 status = ndr_map_error2ntstatus(ndr_err);
1219 talloc_free(tmp_ctx);
1220 return ntstatus_to_werror(status);
1222 talloc_free(tmp_ctx);
1230 static WERROR dsdb_syntax_DN_BINARY_drsuapi_to_ldb(struct ldb_context *ldb,
1231 const struct dsdb_schema *schema,
1232 const struct dsdb_attribute *attr,
1233 const struct drsuapi_DsReplicaAttribute *in,
1234 TALLOC_CTX *mem_ctx,
1235 struct ldb_message_element *out)
1241 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
1242 W_ERROR_HAVE_NO_MEMORY(out->name);
1244 out->num_values = in->value_ctr.num_values;
1245 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
1246 W_ERROR_HAVE_NO_MEMORY(out->values);
1248 for (i=0; i < out->num_values; i++) {
1249 struct drsuapi_DsReplicaObjectIdentifier3Binary id3;
1250 enum ndr_err_code ndr_err;
1251 DATA_BLOB guid_blob;
1253 struct dsdb_dn *dsdb_dn;
1255 TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
1257 W_ERROR_HAVE_NO_MEMORY(tmp_ctx);
1260 if (in->value_ctr.values[i].blob == NULL) {
1261 talloc_free(tmp_ctx);
1265 if (in->value_ctr.values[i].blob->length == 0) {
1266 talloc_free(tmp_ctx);
1271 /* windows sometimes sends an extra two pad bytes here */
1272 ndr_err = ndr_pull_struct_blob(in->value_ctr.values[i].blob,
1273 tmp_ctx, schema->iconv_convenience, &id3,
1274 (ndr_pull_flags_fn_t)ndr_pull_drsuapi_DsReplicaObjectIdentifier3Binary);
1275 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1276 status = ndr_map_error2ntstatus(ndr_err);
1277 talloc_free(tmp_ctx);
1278 return ntstatus_to_werror(status);
1281 dn = ldb_dn_new(tmp_ctx, ldb, id3.dn);
1283 talloc_free(tmp_ctx);
1284 /* If this fails, it must be out of memory, as it does not do much parsing */
1285 W_ERROR_HAVE_NO_MEMORY(dn);
1288 status = GUID_to_ndr_blob(&id3.guid, tmp_ctx, &guid_blob);
1289 if (!NT_STATUS_IS_OK(status)) {
1290 talloc_free(tmp_ctx);
1291 return ntstatus_to_werror(status);
1294 ret = ldb_dn_set_extended_component(dn, "GUID", &guid_blob);
1295 if (ret != LDB_SUCCESS) {
1296 talloc_free(tmp_ctx);
1300 talloc_free(guid_blob.data);
1302 if (id3.__ndr_size_sid) {
1304 ndr_err = ndr_push_struct_blob(&sid_blob, tmp_ctx, schema->iconv_convenience, &id3.sid,
1305 (ndr_push_flags_fn_t)ndr_push_dom_sid);
1306 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1307 status = ndr_map_error2ntstatus(ndr_err);
1308 talloc_free(tmp_ctx);
1309 return ntstatus_to_werror(status);
1312 ret = ldb_dn_set_extended_component(dn, "SID", &sid_blob);
1313 if (ret != LDB_SUCCESS) {
1314 talloc_free(tmp_ctx);
1319 /* set binary stuff */
1320 dsdb_dn = dsdb_dn_construct(tmp_ctx, dn, id3.binary, attr->syntax->ldap_oid);
1322 /* If this fails, it must be out of memory, we know the ldap_oid is valid */
1323 talloc_free(tmp_ctx);
1324 W_ERROR_HAVE_NO_MEMORY(dsdb_dn);
1326 out->values[i] = data_blob_string_const(dsdb_dn_get_extended_linearized(out->values, dsdb_dn, 1));
1327 talloc_free(tmp_ctx);
1333 static WERROR dsdb_syntax_DN_BINARY_ldb_to_drsuapi(struct ldb_context *ldb,
1334 const struct dsdb_schema *schema,
1335 const struct dsdb_attribute *attr,
1336 const struct ldb_message_element *in,
1337 TALLOC_CTX *mem_ctx,
1338 struct drsuapi_DsReplicaAttribute *out)
1343 if (attr->attributeID_id == 0xFFFFFFFF) {
1347 out->attid = attr->attributeID_id;
1348 out->value_ctr.num_values = in->num_values;
1349 out->value_ctr.values = talloc_array(mem_ctx,
1350 struct drsuapi_DsAttributeValue,
1352 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
1354 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
1355 W_ERROR_HAVE_NO_MEMORY(blobs);
1357 for (i=0; i < in->num_values; i++) {
1358 struct drsuapi_DsReplicaObjectIdentifier3Binary id3;
1359 enum ndr_err_code ndr_err;
1360 const DATA_BLOB *sid_blob;
1361 struct dsdb_dn *dsdb_dn;
1362 TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
1365 W_ERROR_HAVE_NO_MEMORY(tmp_ctx);
1367 out->value_ctr.values[i].blob = &blobs[i];
1369 dsdb_dn = dsdb_dn_parse(tmp_ctx, ldb, &in->values[i], attr->syntax->ldap_oid);
1372 talloc_free(tmp_ctx);
1373 return ntstatus_to_werror(NT_STATUS_INVALID_PARAMETER);
1378 status = dsdb_get_extended_dn_guid(dsdb_dn->dn, &id3.guid, "GUID");
1379 if (!NT_STATUS_IS_OK(status) &&
1380 !NT_STATUS_EQUAL(status, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
1381 talloc_free(tmp_ctx);
1382 return ntstatus_to_werror(status);
1385 sid_blob = ldb_dn_get_extended_component(dsdb_dn->dn, "SID");
1388 ndr_err = ndr_pull_struct_blob_all(sid_blob,
1389 tmp_ctx, schema->iconv_convenience, &id3.sid,
1390 (ndr_pull_flags_fn_t)ndr_pull_dom_sid);
1391 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1392 status = ndr_map_error2ntstatus(ndr_err);
1393 talloc_free(tmp_ctx);
1394 return ntstatus_to_werror(status);
1398 id3.dn = ldb_dn_get_linearized(dsdb_dn->dn);
1400 /* get binary stuff */
1401 id3.binary = dsdb_dn->extra_part;
1403 ndr_err = ndr_push_struct_blob(&blobs[i], blobs, schema->iconv_convenience, &id3, (ndr_push_flags_fn_t)ndr_push_drsuapi_DsReplicaObjectIdentifier3Binary);
1404 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1405 status = ndr_map_error2ntstatus(ndr_err);
1406 talloc_free(tmp_ctx);
1407 return ntstatus_to_werror(status);
1409 talloc_free(tmp_ctx);
1417 static WERROR dsdb_syntax_PRESENTATION_ADDRESS_drsuapi_to_ldb(struct ldb_context *ldb,
1418 const struct dsdb_schema *schema,
1419 const struct dsdb_attribute *attr,
1420 const struct drsuapi_DsReplicaAttribute *in,
1421 TALLOC_CTX *mem_ctx,
1422 struct ldb_message_element *out)
1427 out->name = talloc_strdup(mem_ctx, attr->lDAPDisplayName);
1428 W_ERROR_HAVE_NO_MEMORY(out->name);
1430 out->num_values = in->value_ctr.num_values;
1431 out->values = talloc_array(mem_ctx, struct ldb_val, out->num_values);
1432 W_ERROR_HAVE_NO_MEMORY(out->values);
1434 for (i=0; i < out->num_values; i++) {
1438 if (in->value_ctr.values[i].blob == NULL) {
1442 if (in->value_ctr.values[i].blob->length < 4) {
1446 len = IVAL(in->value_ctr.values[i].blob->data, 0);
1448 if (len != in->value_ctr.values[i].blob->length) {
1452 if (!convert_string_talloc_convenience(out->values, schema->iconv_convenience, CH_UTF16, CH_UNIX,
1453 in->value_ctr.values[i].blob->data+4,
1454 in->value_ctr.values[i].blob->length-4,
1455 (void **)&str, NULL, false)) {
1459 out->values[i] = data_blob_string_const(str);
1465 static WERROR dsdb_syntax_PRESENTATION_ADDRESS_ldb_to_drsuapi(struct ldb_context *ldb,
1466 const struct dsdb_schema *schema,
1467 const struct dsdb_attribute *attr,
1468 const struct ldb_message_element *in,
1469 TALLOC_CTX *mem_ctx,
1470 struct drsuapi_DsReplicaAttribute *out)
1475 if (attr->attributeID_id == 0xFFFFFFFF) {
1479 out->attid = attr->attributeID_id;
1480 out->value_ctr.num_values = in->num_values;
1481 out->value_ctr.values = talloc_array(mem_ctx,
1482 struct drsuapi_DsAttributeValue,
1484 W_ERROR_HAVE_NO_MEMORY(out->value_ctr.values);
1486 blobs = talloc_array(mem_ctx, DATA_BLOB, in->num_values);
1487 W_ERROR_HAVE_NO_MEMORY(blobs);
1489 for (i=0; i < in->num_values; i++) {
1493 out->value_ctr.values[i].blob = &blobs[i];
1495 if (!convert_string_talloc_convenience(blobs, schema->iconv_convenience, CH_UNIX, CH_UTF16,
1497 in->values[i].length,
1498 (void **)&data, &ret, false)) {
1502 blobs[i] = data_blob_talloc(blobs, NULL, 4 + ret);
1503 W_ERROR_HAVE_NO_MEMORY(blobs[i].data);
1505 SIVAL(blobs[i].data, 0, 4 + ret);
1508 memcpy(blobs[i].data + 4, data, ret);
1516 #define OMOBJECTCLASS(val) { .length = sizeof(val) - 1, .data = discard_const_p(uint8_t, val) }
1518 static const struct dsdb_syntax dsdb_syntaxes[] = {
1521 .ldap_oid = LDB_SYNTAX_BOOLEAN,
1523 .attributeSyntax_oid = "2.5.5.8",
1524 .drsuapi_to_ldb = dsdb_syntax_BOOL_drsuapi_to_ldb,
1525 .ldb_to_drsuapi = dsdb_syntax_BOOL_ldb_to_drsuapi,
1526 .equality = "booleanMatch",
1527 .comment = "Boolean"
1530 .ldap_oid = LDB_SYNTAX_INTEGER,
1532 .attributeSyntax_oid = "2.5.5.9",
1533 .drsuapi_to_ldb = dsdb_syntax_INT32_drsuapi_to_ldb,
1534 .ldb_to_drsuapi = dsdb_syntax_INT32_ldb_to_drsuapi,
1535 .equality = "integerMatch",
1536 .comment = "Integer",
1537 .ldb_syntax = LDB_SYNTAX_SAMBA_INT32
1539 .name = "String(Octet)",
1540 .ldap_oid = LDB_SYNTAX_OCTET_STRING,
1542 .attributeSyntax_oid = "2.5.5.10",
1543 .drsuapi_to_ldb = dsdb_syntax_DATA_BLOB_drsuapi_to_ldb,
1544 .ldb_to_drsuapi = dsdb_syntax_DATA_BLOB_ldb_to_drsuapi,
1545 .equality = "octetStringMatch",
1546 .comment = "Octet String",
1548 .name = "String(Sid)",
1549 .ldap_oid = LDB_SYNTAX_OCTET_STRING,
1551 .attributeSyntax_oid = "2.5.5.17",
1552 .drsuapi_to_ldb = dsdb_syntax_DATA_BLOB_drsuapi_to_ldb,
1553 .ldb_to_drsuapi = dsdb_syntax_DATA_BLOB_ldb_to_drsuapi,
1554 .equality = "octetStringMatch",
1555 .comment = "Octet String - Security Identifier (SID)",
1556 .ldb_syntax = LDB_SYNTAX_SAMBA_SID
1558 .name = "String(Object-Identifier)",
1559 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.38",
1561 .attributeSyntax_oid = "2.5.5.2",
1562 .drsuapi_to_ldb = dsdb_syntax_OID_drsuapi_to_ldb,
1563 .ldb_to_drsuapi = dsdb_syntax_OID_ldb_to_drsuapi,
1564 .equality = "caseIgnoreMatch", /* Would use "objectIdentifierMatch" but most are ldap attribute/class names */
1565 .comment = "OID String",
1566 .ldb_syntax = LDB_SYNTAX_DIRECTORY_STRING
1568 .name = "Enumeration",
1569 .ldap_oid = LDB_SYNTAX_INTEGER,
1571 .attributeSyntax_oid = "2.5.5.9",
1572 .drsuapi_to_ldb = dsdb_syntax_INT32_drsuapi_to_ldb,
1573 .ldb_to_drsuapi = dsdb_syntax_INT32_ldb_to_drsuapi,
1574 .ldb_syntax = LDB_SYNTAX_SAMBA_INT32
1576 /* not used in w2k3 forest */
1577 .name = "String(Numeric)",
1578 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.36",
1580 .attributeSyntax_oid = "2.5.5.6",
1581 .drsuapi_to_ldb = dsdb_syntax_DATA_BLOB_drsuapi_to_ldb,
1582 .ldb_to_drsuapi = dsdb_syntax_DATA_BLOB_ldb_to_drsuapi,
1583 .equality = "numericStringMatch",
1584 .substring = "numericStringSubstringsMatch",
1585 .comment = "Numeric String",
1586 .ldb_syntax = LDB_SYNTAX_DIRECTORY_STRING,
1588 .name = "String(Printable)",
1589 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.44",
1591 .attributeSyntax_oid = "2.5.5.5",
1592 .drsuapi_to_ldb = dsdb_syntax_DATA_BLOB_drsuapi_to_ldb,
1593 .ldb_to_drsuapi = dsdb_syntax_DATA_BLOB_ldb_to_drsuapi,
1594 .ldb_syntax = LDB_SYNTAX_OCTET_STRING,
1596 .name = "String(Teletex)",
1597 .ldap_oid = "1.2.840.113556.1.4.905",
1599 .attributeSyntax_oid = "2.5.5.4",
1600 .drsuapi_to_ldb = dsdb_syntax_DATA_BLOB_drsuapi_to_ldb,
1601 .ldb_to_drsuapi = dsdb_syntax_DATA_BLOB_ldb_to_drsuapi,
1602 .equality = "caseIgnoreMatch",
1603 .substring = "caseIgnoreSubstringsMatch",
1604 .comment = "Case Insensitive String",
1605 .ldb_syntax = LDB_SYNTAX_DIRECTORY_STRING,
1607 .name = "String(IA5)",
1608 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.26",
1610 .attributeSyntax_oid = "2.5.5.5",
1611 .drsuapi_to_ldb = dsdb_syntax_DATA_BLOB_drsuapi_to_ldb,
1612 .ldb_to_drsuapi = dsdb_syntax_DATA_BLOB_ldb_to_drsuapi,
1613 .equality = "caseExactIA5Match",
1614 .comment = "Printable String",
1615 .ldb_syntax = LDB_SYNTAX_OCTET_STRING,
1617 .name = "String(UTC-Time)",
1618 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.53",
1620 .attributeSyntax_oid = "2.5.5.11",
1621 .drsuapi_to_ldb = dsdb_syntax_NTTIME_UTC_drsuapi_to_ldb,
1622 .ldb_to_drsuapi = dsdb_syntax_NTTIME_UTC_ldb_to_drsuapi,
1623 .equality = "generalizedTimeMatch",
1624 .comment = "UTC Time",
1626 .name = "String(Generalized-Time)",
1627 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.24",
1629 .attributeSyntax_oid = "2.5.5.11",
1630 .drsuapi_to_ldb = dsdb_syntax_NTTIME_drsuapi_to_ldb,
1631 .ldb_to_drsuapi = dsdb_syntax_NTTIME_ldb_to_drsuapi,
1632 .equality = "generalizedTimeMatch",
1633 .comment = "Generalized Time",
1634 .ldb_syntax = LDB_SYNTAX_UTC_TIME,
1636 /* not used in w2k3 schema */
1637 .name = "String(Case Sensitive)",
1638 .ldap_oid = "1.2.840.113556.1.4.1362",
1640 .attributeSyntax_oid = "2.5.5.3",
1641 .drsuapi_to_ldb = dsdb_syntax_FOOBAR_drsuapi_to_ldb,
1642 .ldb_to_drsuapi = dsdb_syntax_FOOBAR_ldb_to_drsuapi,
1644 .name = "String(Unicode)",
1645 .ldap_oid = LDB_SYNTAX_DIRECTORY_STRING,
1647 .attributeSyntax_oid = "2.5.5.12",
1648 .drsuapi_to_ldb = dsdb_syntax_UNICODE_drsuapi_to_ldb,
1649 .ldb_to_drsuapi = dsdb_syntax_UNICODE_ldb_to_drsuapi,
1650 .equality = "caseIgnoreMatch",
1651 .substring = "caseIgnoreSubstringsMatch",
1652 .comment = "Directory String",
1654 .name = "Interval/LargeInteger",
1655 .ldap_oid = "1.2.840.113556.1.4.906",
1657 .attributeSyntax_oid = "2.5.5.16",
1658 .drsuapi_to_ldb = dsdb_syntax_INT64_drsuapi_to_ldb,
1659 .ldb_to_drsuapi = dsdb_syntax_INT64_ldb_to_drsuapi,
1660 .equality = "integerMatch",
1661 .comment = "Large Integer",
1662 .ldb_syntax = LDB_SYNTAX_INTEGER,
1664 .name = "String(NT-Sec-Desc)",
1665 .ldap_oid = LDB_SYNTAX_SAMBA_SECURITY_DESCRIPTOR,
1667 .attributeSyntax_oid = "2.5.5.15",
1668 .drsuapi_to_ldb = dsdb_syntax_DATA_BLOB_drsuapi_to_ldb,
1669 .ldb_to_drsuapi = dsdb_syntax_DATA_BLOB_ldb_to_drsuapi,
1671 .name = "Object(DS-DN)",
1672 .ldap_oid = LDB_SYNTAX_DN,
1674 .oMObjectClass = OMOBJECTCLASS("\x2b\x0c\x02\x87\x73\x1c\x00\x85\x4a"),
1675 .attributeSyntax_oid = "2.5.5.1",
1676 .drsuapi_to_ldb = dsdb_syntax_DN_drsuapi_to_ldb,
1677 .ldb_to_drsuapi = dsdb_syntax_DN_ldb_to_drsuapi,
1678 .equality = "distinguishedNameMatch",
1679 .comment = "Object(DS-DN) == a DN",
1681 .name = "Object(DN-Binary)",
1682 .ldap_oid = DSDB_SYNTAX_BINARY_DN,
1684 .oMObjectClass = OMOBJECTCLASS("\x2a\x86\x48\x86\xf7\x14\x01\x01\x01\x0b"),
1685 .attributeSyntax_oid = "2.5.5.7",
1686 .drsuapi_to_ldb = dsdb_syntax_DN_BINARY_drsuapi_to_ldb,
1687 .ldb_to_drsuapi = dsdb_syntax_DN_BINARY_ldb_to_drsuapi,
1688 .equality = "octetStringMatch",
1689 .comment = "OctetString: Binary+DN",
1691 /* not used in w2k3 schema, but used in Exchange schema*/
1692 .name = "Object(OR-Name)",
1693 .ldap_oid = DSDB_SYNTAX_OR_NAME,
1695 .oMObjectClass = OMOBJECTCLASS("\x56\x06\x01\x02\x05\x0b\x1D"),
1696 .attributeSyntax_oid = "2.5.5.7",
1697 .drsuapi_to_ldb = dsdb_syntax_DN_BINARY_drsuapi_to_ldb,
1698 .ldb_to_drsuapi = dsdb_syntax_DN_BINARY_ldb_to_drsuapi,
1699 .equality = "caseIgnoreMatch",
1700 .ldb_syntax = LDB_SYNTAX_DN,
1703 * TODO: verify if DATA_BLOB is correct here...!
1705 * repsFrom and repsTo are the only attributes using
1706 * this attribute syntax, but they're not replicated...
1708 .name = "Object(Replica-Link)",
1709 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.40",
1711 .oMObjectClass = OMOBJECTCLASS("\x2a\x86\x48\x86\xf7\x14\x01\x01\x01\x06"),
1712 .attributeSyntax_oid = "2.5.5.10",
1713 .drsuapi_to_ldb = dsdb_syntax_DATA_BLOB_drsuapi_to_ldb,
1714 .ldb_to_drsuapi = dsdb_syntax_DATA_BLOB_ldb_to_drsuapi,
1716 .name = "Object(Presentation-Address)",
1717 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.43",
1719 .oMObjectClass = OMOBJECTCLASS("\x2b\x0c\x02\x87\x73\x1c\x00\x85\x5c"),
1720 .attributeSyntax_oid = "2.5.5.13",
1721 .drsuapi_to_ldb = dsdb_syntax_PRESENTATION_ADDRESS_drsuapi_to_ldb,
1722 .ldb_to_drsuapi = dsdb_syntax_PRESENTATION_ADDRESS_ldb_to_drsuapi,
1723 .comment = "Presentation Address",
1724 .ldb_syntax = LDB_SYNTAX_DIRECTORY_STRING,
1726 /* not used in w2k3 schema */
1727 .name = "Object(Access-Point)",
1728 .ldap_oid = "1.3.6.1.4.1.1466.115.121.1.2",
1730 .oMObjectClass = OMOBJECTCLASS("\x2b\x0c\x02\x87\x73\x1c\x00\x85\x3e"),
1731 .attributeSyntax_oid = "2.5.5.14",
1732 .drsuapi_to_ldb = dsdb_syntax_FOOBAR_drsuapi_to_ldb,
1733 .ldb_to_drsuapi = dsdb_syntax_FOOBAR_ldb_to_drsuapi,
1734 .ldb_syntax = LDB_SYNTAX_DIRECTORY_STRING,
1736 /* not used in w2k3 schema */
1737 .name = "Object(DN-String)",
1738 .ldap_oid = DSDB_SYNTAX_STRING_DN,
1740 .oMObjectClass = OMOBJECTCLASS("\x2a\x86\x48\x86\xf7\x14\x01\x01\x01\x0c"),
1741 .attributeSyntax_oid = "2.5.5.14",
1742 .drsuapi_to_ldb = dsdb_syntax_DN_BINARY_drsuapi_to_ldb,
1743 .ldb_to_drsuapi = dsdb_syntax_DN_BINARY_ldb_to_drsuapi,
1744 .equality = "octetStringMatch",
1745 .comment = "OctetString: String+DN",
1749 const struct dsdb_syntax *find_syntax_map_by_ad_oid(const char *ad_oid)
1752 for (i=0; dsdb_syntaxes[i].ldap_oid; i++) {
1753 if (strcasecmp(ad_oid, dsdb_syntaxes[i].attributeSyntax_oid) == 0) {
1754 return &dsdb_syntaxes[i];
1760 const struct dsdb_syntax *find_syntax_map_by_ad_syntax(int oMSyntax)
1763 for (i=0; dsdb_syntaxes[i].ldap_oid; i++) {
1764 if (oMSyntax == dsdb_syntaxes[i].oMSyntax) {
1765 return &dsdb_syntaxes[i];
1771 const struct dsdb_syntax *find_syntax_map_by_standard_oid(const char *standard_oid)
1774 for (i=0; dsdb_syntaxes[i].ldap_oid; i++) {
1775 if (strcasecmp(standard_oid, dsdb_syntaxes[i].ldap_oid) == 0) {
1776 return &dsdb_syntaxes[i];
1781 const struct dsdb_syntax *dsdb_syntax_for_attribute(const struct dsdb_attribute *attr)
1785 for (i=0; i < ARRAY_SIZE(dsdb_syntaxes); i++) {
1786 if (attr->oMSyntax != dsdb_syntaxes[i].oMSyntax) continue;
1788 if (attr->oMObjectClass.length != dsdb_syntaxes[i].oMObjectClass.length) continue;
1790 if (attr->oMObjectClass.length) {
1792 ret = memcmp(attr->oMObjectClass.data,
1793 dsdb_syntaxes[i].oMObjectClass.data,
1794 attr->oMObjectClass.length);
1795 if (ret != 0) continue;
1798 if (strcmp(attr->attributeSyntax_oid, dsdb_syntaxes[i].attributeSyntax_oid) != 0) continue;
1800 return &dsdb_syntaxes[i];
1806 WERROR dsdb_attribute_drsuapi_to_ldb(struct ldb_context *ldb,
1807 const struct dsdb_schema *schema,
1808 const struct drsuapi_DsReplicaAttribute *in,
1809 TALLOC_CTX *mem_ctx,
1810 struct ldb_message_element *out)
1812 const struct dsdb_attribute *sa;
1814 sa = dsdb_attribute_by_attributeID_id(schema, in->attid);
1819 return sa->syntax->drsuapi_to_ldb(ldb, schema, sa, in, mem_ctx, out);
1822 WERROR dsdb_attribute_ldb_to_drsuapi(struct ldb_context *ldb,
1823 const struct dsdb_schema *schema,
1824 const struct ldb_message_element *in,
1825 TALLOC_CTX *mem_ctx,
1826 struct drsuapi_DsReplicaAttribute *out)
1828 const struct dsdb_attribute *sa;
1830 sa = dsdb_attribute_by_lDAPDisplayName(schema, in->name);
1835 return sa->syntax->ldb_to_drsuapi(ldb, schema, sa, in, mem_ctx, out);