2 * Unix SMB/CIFS implementation.
3 * RPC Pipe client / server routines
4 * Copyright (C) Marcin Krzysztof Porwit 2005,
5 * Copyright (C) Brian Moran 2005,
6 * Copyright (C) Gerald (Jerry) Carter 2005.
7 * Copyright (C) Guenther Deschner 2009.
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 3 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, see <http://www.gnu.org/licenses/>.
24 #include "../librpc/gen_ndr/srv_eventlog.h"
25 #include "lib/eventlog/eventlog.h"
27 #include "registry/reg_api.h"
28 #include "registry/reg_api_util.h"
29 #include "../libcli/security/security.h"
32 #define DBGC_CLASS DBGC_RPC_SRV
37 uint32 current_record;
41 uint32 access_granted;
44 /********************************************************************
45 ********************************************************************/
47 static int eventlog_info_destructor(EVENTLOG_INFO *elog)
50 elog_close_tdb(elog->etdb, false);
55 /********************************************************************
56 ********************************************************************/
58 static EVENTLOG_INFO *find_eventlog_info_by_hnd( struct pipes_struct * p,
59 struct policy_handle * handle )
63 if ( !find_policy_by_hnd( p, handle, (void **)(void *)&info ) ) {
65 ( "find_eventlog_info_by_hnd: eventlog not found.\n" ) );
72 /********************************************************************
73 ********************************************************************/
75 static bool elog_check_access( EVENTLOG_INFO *info, const struct security_token *token )
77 char *tdbname = elog_tdbname(talloc_tos(), info->logname );
78 struct security_descriptor *sec_desc;
79 struct security_ace *ace;
85 /* get the security descriptor for the file */
87 sec_desc = get_nt_acl_no_snum( info, tdbname );
88 TALLOC_FREE( tdbname );
91 DEBUG(5,("elog_check_access: Unable to get NT ACL for %s\n",
96 ace = talloc_zero(sec_desc, struct security_ace);
98 TALLOC_FREE(sec_desc);
102 ace->type = SEC_ACE_TYPE_ACCESS_ALLOWED;
104 ace->access_mask = REG_KEY_ALL;
105 ace->trustee = global_sid_System;
107 status = security_descriptor_dacl_add(sec_desc, ace);
108 if (!NT_STATUS_IS_OK(status)) {
109 TALLOC_FREE(sec_desc);
115 if ( geteuid() == sec_initial_uid() ) {
116 DEBUG(5,("elog_check_access: running as root, using system token\n"));
117 token = get_system_token();
120 /* run the check, try for the max allowed */
122 status = se_access_check( sec_desc, token, MAXIMUM_ALLOWED_ACCESS,
123 &info->access_granted);
125 TALLOC_FREE(sec_desc);
127 if (!NT_STATUS_IS_OK(status)) {
128 DEBUG(8,("elog_check_access: se_access_check() return %s\n",
133 /* we have to have READ permission for a successful open */
135 return ( info->access_granted & SEC_FILE_READ_DATA );
138 /********************************************************************
139 ********************************************************************/
141 static bool elog_validate_logname( const char *name )
144 const char **elogs = lp_eventlog_list();
150 for ( i=0; elogs[i]; i++ ) {
151 if ( strequal( name, elogs[i] ) )
158 /********************************************************************
159 ********************************************************************/
161 static bool get_num_records_hook( EVENTLOG_INFO * info )
167 DEBUG( 10, ( "No open tdb for %s\n", info->logname ) );
171 /* lock the tdb since we have to get 2 records */
173 tdb_lock_bystring_with_timeout( ELOG_TDB_CTX(info->etdb), EVT_NEXT_RECORD, 1 );
174 next_record = tdb_fetch_int32( ELOG_TDB_CTX(info->etdb), EVT_NEXT_RECORD);
175 oldest_record = tdb_fetch_int32( ELOG_TDB_CTX(info->etdb), EVT_OLDEST_ENTRY);
176 tdb_unlock_bystring( ELOG_TDB_CTX(info->etdb), EVT_NEXT_RECORD);
179 ( "Oldest Record %d; Next Record %d\n", oldest_record,
182 info->num_records = ( next_record - oldest_record );
183 info->oldest_entry = oldest_record;
188 /********************************************************************
189 ********************************************************************/
191 static bool get_oldest_entry_hook( EVENTLOG_INFO * info )
193 /* it's the same thing */
194 return get_num_records_hook( info );
197 /********************************************************************
198 ********************************************************************/
200 static NTSTATUS elog_open( struct pipes_struct * p, const char *logname, struct policy_handle *hnd )
204 /* first thing is to validate the eventlog name */
206 if ( !elog_validate_logname( logname ) )
207 return NT_STATUS_OBJECT_PATH_INVALID;
209 if ( !(elog = TALLOC_ZERO_P( NULL, EVENTLOG_INFO )) )
210 return NT_STATUS_NO_MEMORY;
211 talloc_set_destructor(elog, eventlog_info_destructor);
213 elog->logname = talloc_strdup( elog, logname );
215 /* Open the tdb first (so that we can create any new tdbs if necessary).
216 We have to do this as root and then use an internal access check
217 on the file permissions since you can only have a tdb open once
218 in a single process */
221 elog->etdb = elog_open_tdb( elog->logname, False, False );
225 /* according to MSDN, if the logfile cannot be found, we should
226 default to the "Application" log */
228 if ( !strequal( logname, ELOG_APPL ) ) {
230 TALLOC_FREE( elog->logname );
232 elog->logname = talloc_strdup( elog, ELOG_APPL );
234 /* do the access check */
235 if ( !elog_check_access( elog, p->server_info->ptok ) ) {
237 return NT_STATUS_ACCESS_DENIED;
241 elog->etdb = elog_open_tdb( elog->logname, False, False );
247 return NT_STATUS_ACCESS_DENIED; /* ??? */
251 /* now do the access check. Close the tdb if we fail here */
253 if ( !elog_check_access( elog, p->server_info->ptok ) ) {
255 return NT_STATUS_ACCESS_DENIED;
258 /* create the policy handle */
260 if ( !create_policy_hnd( p, hnd, elog ) ) {
262 return NT_STATUS_NO_MEMORY;
265 /* set the initial current_record pointer */
267 if ( !get_oldest_entry_hook( elog ) ) {
268 DEBUG(3,("elog_open: Successfully opened eventlog but can't "
269 "get any information on internal records!\n"));
272 elog->current_record = elog->oldest_entry;
277 /********************************************************************
278 ********************************************************************/
280 static NTSTATUS elog_close( struct pipes_struct *p, struct policy_handle *hnd )
282 if ( !( close_policy_hnd( p, hnd ) ) ) {
283 return NT_STATUS_INVALID_HANDLE;
289 /*******************************************************************
290 *******************************************************************/
292 static int elog_size( EVENTLOG_INFO *info )
294 if ( !info || !info->etdb ) {
295 DEBUG(0,("elog_size: Invalid info* structure!\n"));
299 return elog_tdb_size( ELOG_TDB_CTX(info->etdb), NULL, NULL );
302 /********************************************************************
303 note that this can only be called AFTER the table is constructed,
304 since it uses the table to find the tdb handle
305 ********************************************************************/
307 static bool sync_eventlog_params( EVENTLOG_INFO *info )
310 uint32_t uiMaxSize = 0;
311 uint32_t uiRetention = 0;
312 struct registry_key *key;
313 struct registry_value *value;
315 char *elogname = info->logname;
316 TALLOC_CTX *ctx = talloc_stackframe();
319 DEBUG( 4, ( "sync_eventlog_params with %s\n", elogname ) );
322 DEBUG( 4, ( "No open tdb! (%s)\n", info->logname ) );
325 /* set resonable defaults. 512Kb on size and 1 week on time */
328 uiRetention = 604800;
330 /* the general idea is to internally open the registry
331 key and retrieve the values. That way we can continue
332 to use the same fetch/store api that we use in
335 path = talloc_asprintf(ctx, "%s\\%s", KEY_EVENTLOG, elogname);
340 wresult = reg_open_path(ctx, path, REG_KEY_READ, get_system_token(),
343 if ( !W_ERROR_IS_OK( wresult ) ) {
345 ( "sync_eventlog_params: Failed to open key [%s] (%s)\n",
346 path, win_errstr( wresult ) ) );
350 wresult = reg_queryvalue(key, key, "Retention", &value);
351 if (!W_ERROR_IS_OK(wresult)) {
352 DEBUG(4, ("Failed to query value \"Retention\": %s\n",
353 win_errstr(wresult)));
357 if (value->data.length >= 4) {
358 uiRetention = IVAL(value->data.data, 0);
361 wresult = reg_queryvalue(key, key, "MaxSize", &value);
362 if (!W_ERROR_IS_OK(wresult)) {
363 DEBUG(4, ("Failed to query value \"MaxSize\": %s\n",
364 win_errstr(wresult)));
367 if (value->data.length >= 4) {
368 uiMaxSize = IVAL(value->data.data, 0);
371 tdb_store_int32( ELOG_TDB_CTX(info->etdb), EVT_MAXSIZE, uiMaxSize );
372 tdb_store_int32( ELOG_TDB_CTX(info->etdb), EVT_RETENTION, uiRetention );
381 /********************************************************************
382 _eventlog_OpenEventLogW
383 ********************************************************************/
385 NTSTATUS _eventlog_OpenEventLogW(struct pipes_struct *p,
386 struct eventlog_OpenEventLogW *r)
391 DEBUG( 10,("_eventlog_OpenEventLogW: Server [%s], Log [%s]\n",
392 r->in.servername->string, r->in.logname->string ));
394 /* according to MSDN, if the logfile cannot be found, we should
395 default to the "Application" log */
397 if ( !NT_STATUS_IS_OK( result = elog_open( p, r->in.logname->string, r->out.handle )) )
400 if ( !(info = find_eventlog_info_by_hnd( p, r->out.handle )) ) {
401 DEBUG(0,("_eventlog_OpenEventLogW: eventlog (%s) opened but unable to find handle!\n",
402 r->in.logname->string ));
403 elog_close( p, r->out.handle );
404 return NT_STATUS_INVALID_HANDLE;
407 DEBUG(10,("_eventlog_OpenEventLogW: Size [%d]\n", elog_size( info )));
409 if (!sync_eventlog_params(info)) {
410 elog_close(p, r->out.handle);
411 return NT_STATUS_EVENTLOG_FILE_CORRUPT;
413 prune_eventlog( ELOG_TDB_CTX(info->etdb) );
418 /********************************************************************
419 _eventlog_ClearEventLogW
420 This call still needs some work
421 ********************************************************************/
422 /** The windows client seems to be doing something funny with the file name
424 ClearEventLog(handle, "backup_file")
425 on the client side will result in the backup file name looking like this on the
427 \??\${CWD of client}\backup_file
428 If an absolute path gets specified, such as
429 ClearEventLog(handle, "C:\\temp\\backup_file")
430 then it is still mangled by the client into this:
431 \??\C:\temp\backup_file
432 when it is on the wire.
433 I'm not sure where the \?? is coming from, or why the ${CWD} of the client process
434 would be added in given that the backup file gets written on the server side. */
436 NTSTATUS _eventlog_ClearEventLogW(struct pipes_struct *p,
437 struct eventlog_ClearEventLogW *r)
439 EVENTLOG_INFO *info = find_eventlog_info_by_hnd( p, r->in.handle );
442 return NT_STATUS_INVALID_HANDLE;
444 if (r->in.backupfile && r->in.backupfile->string) {
446 DEBUG(8,( "_eventlog_ClearEventLogW: Using [%s] as the backup "
447 "file name for log [%s].",
448 r->in.backupfile->string, info->logname ) );
451 /* check for WRITE access to the file */
453 if ( !(info->access_granted & SEC_FILE_WRITE_DATA) )
454 return NT_STATUS_ACCESS_DENIED;
456 /* Force a close and reopen */
458 elog_close_tdb( info->etdb, True );
460 info->etdb = elog_open_tdb( info->logname, True, False );
464 return NT_STATUS_ACCESS_DENIED;
469 /********************************************************************
470 _eventlog_CloseEventLog
471 ********************************************************************/
473 NTSTATUS _eventlog_CloseEventLog(struct pipes_struct * p,
474 struct eventlog_CloseEventLog *r)
478 status = elog_close( p, r->in.handle );
479 if (!NT_STATUS_IS_OK(status)) {
483 ZERO_STRUCTP(r->out.handle);
488 /********************************************************************
489 _eventlog_ReadEventLogW
490 ********************************************************************/
492 NTSTATUS _eventlog_ReadEventLogW(struct pipes_struct *p,
493 struct eventlog_ReadEventLogW *r)
495 EVENTLOG_INFO *info = find_eventlog_info_by_hnd( p, r->in.handle );
496 uint32_t num_records_read = 0;
497 int bytes_left, record_number;
498 uint32_t elog_read_type, elog_read_dir;
501 return NT_STATUS_INVALID_HANDLE;
504 info->flags = r->in.flags;
505 bytes_left = r->in.number_of_bytes;
508 return NT_STATUS_ACCESS_DENIED;
511 /* check for valid flags. Can't use the sequential and seek flags together */
513 elog_read_type = r->in.flags & (EVENTLOG_SEQUENTIAL_READ|EVENTLOG_SEEK_READ);
514 elog_read_dir = r->in.flags & (EVENTLOG_FORWARDS_READ|EVENTLOG_BACKWARDS_READ);
516 if (r->in.flags == 0 ||
517 elog_read_type == (EVENTLOG_SEQUENTIAL_READ|EVENTLOG_SEEK_READ) ||
518 elog_read_dir == (EVENTLOG_FORWARDS_READ|EVENTLOG_BACKWARDS_READ))
520 DEBUG(3,("_eventlog_ReadEventLogW: "
521 "Invalid flags [0x%08x] for ReadEventLog\n",
523 return NT_STATUS_INVALID_PARAMETER;
526 /* a sequential read should ignore the offset */
528 if (elog_read_type & EVENTLOG_SEQUENTIAL_READ) {
529 record_number = info->current_record;
531 record_number = r->in.offset;
534 if (r->in.number_of_bytes == 0) {
535 struct EVENTLOGRECORD *e;
536 e = evlog_pull_record(p->mem_ctx, ELOG_TDB_CTX(info->etdb),
539 return NT_STATUS_END_OF_FILE;
541 *r->out.real_size = e->Length;
542 return NT_STATUS_BUFFER_TOO_SMALL;
545 while (bytes_left > 0) {
548 enum ndr_err_code ndr_err;
549 struct EVENTLOGRECORD *e;
551 e = evlog_pull_record(p->mem_ctx, ELOG_TDB_CTX(info->etdb),
557 ndr_err = ndr_push_struct_blob(&blob, p->mem_ctx, e,
558 (ndr_push_flags_fn_t)ndr_push_EVENTLOGRECORD);
559 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
560 return ndr_map_error2ntstatus(ndr_err);
563 if (DEBUGLEVEL >= 10) {
564 NDR_PRINT_DEBUG(EVENTLOGRECORD, e);
567 if (blob.length > r->in.number_of_bytes) {
568 *r->out.real_size = blob.length;
569 return NT_STATUS_BUFFER_TOO_SMALL;
572 if (*r->out.sent_size + blob.length > r->in.number_of_bytes) {
576 bytes_left -= blob.length;
578 if (info->flags & EVENTLOG_FORWARDS_READ) {
584 /* update the eventlog record pointer */
586 info->current_record = record_number;
588 memcpy(&r->out.data[*(r->out.sent_size)],
589 blob.data, blob.length);
590 *(r->out.sent_size) += blob.length;
595 if (r->in.offset == 0 && record_number == 0 && *r->out.sent_size == 0) {
596 return NT_STATUS_END_OF_FILE;
602 /********************************************************************
603 _eventlog_GetOldestRecord
604 ********************************************************************/
606 NTSTATUS _eventlog_GetOldestRecord(struct pipes_struct *p,
607 struct eventlog_GetOldestRecord *r)
609 EVENTLOG_INFO *info = find_eventlog_info_by_hnd( p, r->in.handle );
612 return NT_STATUS_INVALID_HANDLE;
615 if ( !( get_oldest_entry_hook( info ) ) )
616 return NT_STATUS_ACCESS_DENIED;
618 *r->out.oldest_entry = info->oldest_entry;
623 /********************************************************************
624 _eventlog_GetNumRecords
625 ********************************************************************/
627 NTSTATUS _eventlog_GetNumRecords(struct pipes_struct *p,
628 struct eventlog_GetNumRecords *r)
630 EVENTLOG_INFO *info = find_eventlog_info_by_hnd( p, r->in.handle );
633 return NT_STATUS_INVALID_HANDLE;
636 if ( !( get_num_records_hook( info ) ) )
637 return NT_STATUS_ACCESS_DENIED;
639 *r->out.number = info->num_records;
644 NTSTATUS _eventlog_BackupEventLogW(struct pipes_struct *p, struct eventlog_BackupEventLogW *r)
646 p->rng_fault_state = True;
647 return NT_STATUS_NOT_IMPLEMENTED;
650 /********************************************************************
651 _eventlog_GetLogInformation
652 ********************************************************************/
654 NTSTATUS _eventlog_GetLogInformation(struct pipes_struct *p,
655 struct eventlog_GetLogInformation *r)
657 EVENTLOG_INFO *info = find_eventlog_info_by_hnd(p, r->in.handle);
658 struct EVENTLOG_FULL_INFORMATION f;
659 enum ndr_err_code ndr_err;
663 return NT_STATUS_INVALID_HANDLE;
666 if (r->in.level != 0) {
667 return NT_STATUS_INVALID_LEVEL;
670 *r->out.bytes_needed = 4;
672 if (r->in.buf_size < 4) {
673 return NT_STATUS_BUFFER_TOO_SMALL;
676 /* FIXME: this should be retrieved from the handle */
679 ndr_err = ndr_push_struct_blob(&blob, p->mem_ctx, &f,
680 (ndr_push_flags_fn_t)ndr_push_EVENTLOG_FULL_INFORMATION);
681 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
682 return ndr_map_error2ntstatus(ndr_err);
685 if (DEBUGLEVEL >= 10) {
686 NDR_PRINT_DEBUG(EVENTLOG_FULL_INFORMATION, &f);
689 memcpy(r->out.buffer, blob.data, 4);
694 /********************************************************************
695 _eventlog_FlushEventLog
696 ********************************************************************/
698 NTSTATUS _eventlog_FlushEventLog(struct pipes_struct *p,
699 struct eventlog_FlushEventLog *r)
701 EVENTLOG_INFO *info = find_eventlog_info_by_hnd(p, r->in.handle);
703 return NT_STATUS_INVALID_HANDLE;
706 return NT_STATUS_ACCESS_DENIED;
709 /********************************************************************
710 ********************************************************************/
712 static NTSTATUS evlog_report_to_record(TALLOC_CTX *mem_ctx,
713 const struct eventlog_ReportEventW *r,
715 struct EVENTLOGRECORD *e)
720 e->TimeGenerated = r->in.timestamp;
721 e->TimeWritten = time(NULL);
722 e->EventID = r->in.event_id;
723 e->EventType = r->in.event_type;
724 e->NumStrings = r->in.num_of_strings;
725 e->EventCategory = r->in.event_category;
726 e->ReservedFlags = r->in.flags;
727 e->DataLength = r->in.data_size;
728 e->SourceName = talloc_strdup(mem_ctx, logname);
729 NT_STATUS_HAVE_NO_MEMORY(e->SourceName);
730 if (r->in.servername->string) {
731 e->Computername = r->in.servername->string;
733 e->Computername = talloc_strdup(mem_ctx, "");
734 NT_STATUS_HAVE_NO_MEMORY(e->Computername);
736 if (r->in.user_sid) {
737 e->UserSid = *r->in.user_sid;
739 e->Strings = talloc_array(mem_ctx, const char *, e->NumStrings);
740 NT_STATUS_HAVE_NO_MEMORY(e->Strings);
742 for (i=0; i < e->NumStrings; i++) {
743 e->Strings[i] = talloc_strdup(e->Strings,
744 r->in.strings[i]->string);
745 NT_STATUS_HAVE_NO_MEMORY(e->Strings[i]);
747 e->Data = r->in.data;
752 /********************************************************************
753 _eventlog_ReportEventW
754 ********************************************************************/
756 NTSTATUS _eventlog_ReportEventW(struct pipes_struct *p,
757 struct eventlog_ReportEventW *r)
760 struct EVENTLOGRECORD record;
762 EVENTLOG_INFO *info = find_eventlog_info_by_hnd(p, r->in.handle);
764 return NT_STATUS_INVALID_HANDLE;
767 status = evlog_report_to_record(p->mem_ctx, r, info->logname, &record);
768 if (!NT_STATUS_IS_OK(status)) {
772 status = evlog_push_record(p->mem_ctx,
773 ELOG_TDB_CTX(info->etdb),
775 r->out.record_number);
776 if (!NT_STATUS_IS_OK(status)) {
783 /********************************************************************
784 ********************************************************************/
786 NTSTATUS _eventlog_DeregisterEventSource(struct pipes_struct *p,
787 struct eventlog_DeregisterEventSource *r)
789 p->rng_fault_state = True;
790 return NT_STATUS_NOT_IMPLEMENTED;
793 NTSTATUS _eventlog_ChangeNotify(struct pipes_struct *p,
794 struct eventlog_ChangeNotify *r)
796 p->rng_fault_state = True;
797 return NT_STATUS_NOT_IMPLEMENTED;
800 NTSTATUS _eventlog_RegisterEventSourceW(struct pipes_struct *p,
801 struct eventlog_RegisterEventSourceW *r)
803 p->rng_fault_state = True;
804 return NT_STATUS_NOT_IMPLEMENTED;
807 NTSTATUS _eventlog_OpenBackupEventLogW(struct pipes_struct *p,
808 struct eventlog_OpenBackupEventLogW *r)
810 p->rng_fault_state = True;
811 return NT_STATUS_NOT_IMPLEMENTED;
814 NTSTATUS _eventlog_ClearEventLogA(struct pipes_struct *p,
815 struct eventlog_ClearEventLogA *r)
817 p->rng_fault_state = True;
818 return NT_STATUS_NOT_IMPLEMENTED;
821 NTSTATUS _eventlog_BackupEventLogA(struct pipes_struct *p,
822 struct eventlog_BackupEventLogA *r)
824 p->rng_fault_state = True;
825 return NT_STATUS_NOT_IMPLEMENTED;
828 NTSTATUS _eventlog_OpenEventLogA(struct pipes_struct *p,
829 struct eventlog_OpenEventLogA *r)
831 p->rng_fault_state = True;
832 return NT_STATUS_NOT_IMPLEMENTED;
835 NTSTATUS _eventlog_RegisterEventSourceA(struct pipes_struct *p,
836 struct eventlog_RegisterEventSourceA *r)
838 p->rng_fault_state = True;
839 return NT_STATUS_NOT_IMPLEMENTED;
842 NTSTATUS _eventlog_OpenBackupEventLogA(struct pipes_struct *p,
843 struct eventlog_OpenBackupEventLogA *r)
845 p->rng_fault_state = True;
846 return NT_STATUS_NOT_IMPLEMENTED;
849 NTSTATUS _eventlog_ReadEventLogA(struct pipes_struct *p,
850 struct eventlog_ReadEventLogA *r)
852 p->rng_fault_state = True;
853 return NT_STATUS_NOT_IMPLEMENTED;
856 NTSTATUS _eventlog_ReportEventA(struct pipes_struct *p,
857 struct eventlog_ReportEventA *r)
859 p->rng_fault_state = True;
860 return NT_STATUS_NOT_IMPLEMENTED;
863 NTSTATUS _eventlog_RegisterClusterSvc(struct pipes_struct *p,
864 struct eventlog_RegisterClusterSvc *r)
866 p->rng_fault_state = True;
867 return NT_STATUS_NOT_IMPLEMENTED;
870 NTSTATUS _eventlog_DeregisterClusterSvc(struct pipes_struct *p,
871 struct eventlog_DeregisterClusterSvc *r)
873 p->rng_fault_state = True;
874 return NT_STATUS_NOT_IMPLEMENTED;
877 NTSTATUS _eventlog_WriteClusterEvents(struct pipes_struct *p,
878 struct eventlog_WriteClusterEvents *r)
880 p->rng_fault_state = True;
881 return NT_STATUS_NOT_IMPLEMENTED;
884 NTSTATUS _eventlog_ReportEventAndSourceW(struct pipes_struct *p,
885 struct eventlog_ReportEventAndSourceW *r)
887 p->rng_fault_state = True;
888 return NT_STATUS_NOT_IMPLEMENTED;
git.samba.org / kai / samba.git / blob