diff options
| author | Luke Leighton <lkcl@samba.org> | 2000-01-27 18:50:38 +0000 |
|---|---|---|
| committer | Luke Leighton <lkcl@samba.org> | 2000-01-27 18:50:38 +0000 |
| commit | d650a2ba85a79f0586708cdfdb4d11d815284713 (patch) | |
| tree | 37c5cd818f0b2083d2ddccc3229c9cac5485e9da /source/lsarpcd | |
| parent | 1bb4d6e08af83c585b08f169f4abc221de8edf15 (diff) | |
| download | samba-d650a2ba85a79f0586708cdfdb4d11d815284713.tar.gz | |
started process for elrond to do lsarpc conversion. also included
patch to have lsarpc look up the domain SID from the SAM server.
this is part of the "redirection" that makes lsarpcd a completely
independent component from samba code, it should be implemented
PURELY in samr_ client-side calls.
Diffstat (limited to 'source/lsarpcd')
| -rw-r--r-- | source/lsarpcd/srv_lsa.c | 68 | ||||
| -rw-r--r-- | source/lsarpcd/srv_lsa_samdb.c | 705 |
2 files changed, 748 insertions, 25 deletions
diff --git a/source/lsarpcd/srv_lsa.c b/source/lsarpcd/srv_lsa.c index 4b4b9be8f16..76356e3123b 100644 --- a/source/lsarpcd/srv_lsa.c +++ b/source/lsarpcd/srv_lsa.c @@ -3,9 +3,9 @@ * Unix SMB/Netbios implementation. * Version 1.9. * RPC Pipe client / server routines - * Copyright (C) Andrew Tridgell 1992-1999, - * Copyright (C) Luke Kenneth Casson Leighton 1996-1999, - * Copyright (C) Jeremy Allison 1998-1999. + * Copyright (C) Andrew Tridgell 1992-2000, + * Copyright (C) Luke Kenneth Casson Leighton 1996-2000, + * Copyright (C) Jeremy Allison 1998-2000. * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by @@ -206,6 +206,38 @@ static int make_dom_ref(DOM_R_REF *ref, char *dom_name, DOM_SID *dom_sid) /*************************************************************************** make_lsa_rid2s ***************************************************************************/ +static uint32 get_remote_sid(const char *dom_name, char *find_name, + DOM_SID *sid, uint32 *rid, uint8 *sid_name_use) +{ + fstring srv_name; + fstring dummy; + uint32 status; + + DEBUG(10, ("lookup remote name: %s %s\n", + dom_name, find_name)); + + if (! get_any_dc_name(dom_name, srv_name)) + { + return 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + if (strequal(srv_name, "\\\\.")) + { + DEBUG(0, ("WARNING: infinite loop in lsarpcd !\n")); + return 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + + status = lookup_lsa_name(dom_name, find_name, + sid, sid_name_use); + + if (status == 0x0 && + (!sid_split_rid(sid, rid) || + !map_domain_sid_to_name(sid, dummy))) + { + status = 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + return status; +} + static void make_lsa_rid2s(DOM_R_REF *ref, DOM_RID2 *rid2, int num_entries, UNISTR2 name[MAX_LOOKUP_SIDS], @@ -246,16 +278,11 @@ static void make_lsa_rid2s(DOM_R_REF *ref, } else if (status == 0x0) { - if (strequal(dom_name, global_sam_name)) - { - sid_copy(&find_sid, &global_sam_sid); - } - if (strequal(dom_name, "BUILTIN")) - { - sid_copy(&find_sid, &global_sid_S_1_5_20); - } - if (strequal(dom_name, global_sam_name) || - strequal(dom_name, "BUILTIN")) + uint32 ret; + ret = lookup_sam_domainname("\\\\.", + dom_name, &find_sid); + + if (ret == 0x0) { pstring tmp; sid_to_string(tmp, &find_sid); @@ -269,18 +296,9 @@ static void make_lsa_rid2s(DOM_R_REF *ref, } else { - pstring tmp; - sid_to_string(tmp, &find_sid); - DEBUG(10,("lookup remote name: %s %s\n", - tmp, find_name)); - status = lookup_lsa_name(dom_name, find_name, - &sid, &sid_name_use); - if (status == 0x0 && - (!sid_split_rid(&sid, &rid) || - !map_domain_sid_to_name(&sid, find_name))) - { - status = 0xC0000000 | NT_STATUS_NONE_MAPPED; - } + status = get_remote_sid(dom_name, find_name, + &sid, &rid, + &sid_name_use); } } diff --git a/source/lsarpcd/srv_lsa_samdb.c b/source/lsarpcd/srv_lsa_samdb.c new file mode 100644 index 00000000000..76356e3123b --- /dev/null +++ b/source/lsarpcd/srv_lsa_samdb.c @@ -0,0 +1,705 @@ + +/* + * Unix SMB/Netbios implementation. + * Version 1.9. + * RPC Pipe client / server routines + * Copyright (C) Andrew Tridgell 1992-2000, + * Copyright (C) Luke Kenneth Casson Leighton 1996-2000, + * Copyright (C) Jeremy Allison 1998-2000. + * + * This program is free software; you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation; either version 2 of the License, or + * (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. + */ + + +#include "includes.h" +#include "nterr.h" + +extern int DEBUGLEVEL; +extern DOM_SID global_sam_sid; +extern fstring global_sam_name; +extern DOM_SID global_member_sid; +extern fstring global_myworkgroup; +extern DOM_SID global_sid_S_1_5_20; + +/*************************************************************************** +lsa_reply_open_policy2 + ***************************************************************************/ +static void lsa_reply_open_policy2(prs_struct *rdata) +{ + LSA_R_OPEN_POL2 r_o; + + ZERO_STRUCT(r_o); + + /* set up the LSA QUERY INFO response */ + + r_o.status = 0x0; + + /* get a (unique) handle. open a policy on it. */ + if (!open_policy_hnd(get_global_hnd_cache(), &r_o.pol)) + { + r_o.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND; + } + + /* store the response in the SMB stream */ + lsa_io_r_open_pol2("", &r_o, rdata, 0); +} + +/*************************************************************************** +lsa_reply_open_policy + ***************************************************************************/ +static void lsa_reply_open_policy(prs_struct *rdata) +{ + LSA_R_OPEN_POL r_o; + + ZERO_STRUCT(r_o); + + /* set up the LSA QUERY INFO response */ + + r_o.status = 0x0; + + /* get a (unique) handle. open a policy on it. */ + if (!open_policy_hnd(get_global_hnd_cache(), &r_o.pol)) + { + r_o.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND; + } + + /* store the response in the SMB stream */ + lsa_io_r_open_pol("", &r_o, rdata, 0); +} + +/*************************************************************************** +make_dom_query + ***************************************************************************/ +static void make_dom_query(DOM_QUERY *d_q, char *dom_name, DOM_SID *dom_sid) +{ + fstring sid_str; + int domlen = strlen(dom_name); + + d_q->uni_dom_str_len = (domlen+1) * 2; + d_q->uni_dom_max_len = domlen * 2; + + d_q->buffer_dom_name = domlen != 0 ? 1 : 0; /* domain buffer pointer */ + d_q->buffer_dom_sid = dom_sid != NULL ? 1 : 0; /* domain sid pointer */ + + /* this string is supposed to be character short */ + make_unistr2(&(d_q->uni_domain_name), dom_name, domlen); + d_q->uni_domain_name.uni_max_len++; + + sid_to_string(sid_str, dom_sid); + make_dom_sid2(&(d_q->dom_sid), dom_sid); +} + +/*************************************************************************** +lsa_reply_query_info + ***************************************************************************/ +static void lsa_reply_enum_trust_dom(LSA_Q_ENUM_TRUST_DOM *q_e, + prs_struct *rdata, + uint32 enum_context, char *dom_name, DOM_SID *dom_sid) +{ + LSA_R_ENUM_TRUST_DOM r_e; + + ZERO_STRUCT(r_e); + + /* set up the LSA QUERY INFO response */ + make_r_enum_trust_dom(&r_e, enum_context, dom_name, dom_sid, + dom_name != NULL ? 0x0 : 0x80000000 | NT_STATUS_UNABLE_TO_FREE_VM); + + /* store the response in the SMB stream */ + lsa_io_r_enum_trust_dom("", &r_e, rdata, 0); +} + +/*************************************************************************** +lsa_reply_query_info + ***************************************************************************/ +static void lsa_reply_query_info(LSA_Q_QUERY_INFO *q_q, prs_struct *rdata, + char *dom_name, DOM_SID *dom_sid, + uint32 status) +{ + LSA_R_QUERY_INFO r_q; + + ZERO_STRUCT(r_q); + + r_q.status = status; + + /* get a (unique) handle. open a policy on it. */ + if (r_q.status == 0x0 && !open_policy_hnd(get_global_hnd_cache(), &q_q->pol)) + { + r_q.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND; + } + if (r_q.status == 0x0) + { + /* set up the LSA QUERY INFO response */ + + r_q.undoc_buffer = 0x1; + r_q.info_class = q_q->info_class; + + make_dom_query(&r_q.dom.id5, dom_name, dom_sid); + + r_q.status = 0x0; + } + /* store the response in the SMB stream */ + lsa_io_r_query("", &r_q, rdata, 0); +} + + +/*************************************************************************** +make_dom_ref - adds a domain if it's not already in, returns the index + ***************************************************************************/ +static int make_dom_ref(DOM_R_REF *ref, char *dom_name, DOM_SID *dom_sid) + +{ + int num = 0; + int len; + + if (dom_name != NULL) + { + for (num = 0; num < ref->num_ref_doms_1; num++) + { + fstring domname; + unistr2_to_ascii(domname, &ref->ref_dom[num].uni_dom_name, sizeof(domname)-1); + if (strequal(domname, dom_name)) + { + return num; + } + } + + } + else + { + num = ref->num_ref_doms_1; + } + + if (num >= MAX_REF_DOMAINS) + { + /* index not found, already at maximum domain limit */ + return -1; + } + + ref->num_ref_doms_1 = num+1; + ref->ptr_ref_dom = 1; + ref->max_entries = MAX_REF_DOMAINS; + ref->num_ref_doms_2 = num+1; + + len = dom_name != NULL ? strlen(dom_name) : 0; + + make_uni_hdr(&(ref->hdr_ref_dom[num].hdr_dom_name), len); + ref->hdr_ref_dom[num].ptr_dom_sid = dom_sid != NULL ? 1 : 0; + + make_unistr2 (&(ref->ref_dom[num].uni_dom_name), dom_name, len); + make_dom_sid2(&(ref->ref_dom[num].ref_dom ), dom_sid ); + + return num; +} + +/*************************************************************************** +make_lsa_rid2s + ***************************************************************************/ +static uint32 get_remote_sid(const char *dom_name, char *find_name, + DOM_SID *sid, uint32 *rid, uint8 *sid_name_use) +{ + fstring srv_name; + fstring dummy; + uint32 status; + + DEBUG(10, ("lookup remote name: %s %s\n", + dom_name, find_name)); + + if (! get_any_dc_name(dom_name, srv_name)) + { + return 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + if (strequal(srv_name, "\\\\.")) + { + DEBUG(0, ("WARNING: infinite loop in lsarpcd !\n")); + return 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + + status = lookup_lsa_name(dom_name, find_name, + sid, sid_name_use); + + if (status == 0x0 && + (!sid_split_rid(sid, rid) || + !map_domain_sid_to_name(sid, dummy))) + { + status = 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + return status; +} + +static void make_lsa_rid2s(DOM_R_REF *ref, + DOM_RID2 *rid2, + int num_entries, UNISTR2 name[MAX_LOOKUP_SIDS], + uint32 *mapped_count) +{ + int i; + int total = 0; + (*mapped_count) = 0; + + SMB_ASSERT(num_entries <= MAX_LOOKUP_SIDS); + + for (i = 0; i < num_entries; i++) + { + uint32 status = 0x0; + DOM_SID find_sid; + DOM_SID sid; + uint32 rid = 0xffffffff; + int dom_idx = -1; + char *find_name = NULL; + fstring dom_name; + fstring full_name; + uint32 sid_name_use = SID_NAME_UNKNOWN; + + unistr2_to_ascii(full_name, &name[i], sizeof(full_name)-1); + find_name = strdup(full_name); + + if (!split_domain_name(full_name, dom_name, find_name)) + { + status = 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + if (status == 0x0 && map_domain_name_to_sid(&find_sid, + &find_name)) + { + sid_name_use = SID_NAME_DOMAIN; + dom_idx = make_dom_ref(ref, dom_name, &find_sid); + rid = 0xffffffff; + sid_copy(&sid, &find_sid); + } + else if (status == 0x0) + { + uint32 ret; + ret = lookup_sam_domainname("\\\\.", + dom_name, &find_sid); + + if (ret == 0x0) + { + pstring tmp; + sid_to_string(tmp, &find_sid); + DEBUG(10,("lookup sam name: %s %s\n", + tmp, find_name)); + status = lookup_sam_name(NULL, + &find_sid, + find_name, + &rid, &sid_name_use); + sid_copy(&sid, &find_sid); + } + else + { + status = get_remote_sid(dom_name, find_name, + &sid, &rid, + &sid_name_use); + } + } + + if (status == 0x0) + { + dom_idx = make_dom_ref(ref, find_name, &sid); + } + + if (status == 0x0) + { + (*mapped_count)++; + } + else + { + dom_idx = -1; + rid = 0xffffffff; + sid_name_use = SID_NAME_UNKNOWN; + } + + make_dom_rid2(&rid2[total], rid, sid_name_use, dom_idx); + total++; + + if (find_name != NULL) + { + free(find_name); + } + } +} + +/*************************************************************************** +make_reply_lookup_names + ***************************************************************************/ +static void make_reply_lookup_names(LSA_R_LOOKUP_NAMES *r_l, + DOM_R_REF *ref, uint32 num_entries, + DOM_RID2 *rid2, uint32 mapped_count) +{ + r_l->ptr_dom_ref = 1; + r_l->dom_ref = ref; + + r_l->num_entries = num_entries; + r_l->ptr_entries = 1; + r_l->num_entries2 = num_entries; + r_l->dom_rid = rid2; + + r_l->mapped_count = mapped_count; + + if (mapped_count == 0) + { + r_l->status = 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + else + { + r_l->status = 0x0; + } +} + +/*************************************************************************** +resolve_names + ***************************************************************************/ +static void make_lsa_trans_names(DOM_R_REF *ref, + LSA_TRANS_NAME_ENUM *trn, + int num_entries, DOM_SID2 sid[MAX_LOOKUP_SIDS], + uint32 *mapped_count) +{ + int i; + int total = 0; + (*mapped_count) = 0; + + SMB_ASSERT(num_entries <= MAX_LOOKUP_SIDS); + + for (i = 0; i < num_entries; i++) + { + uint32 status = 0x0; + DOM_SID find_sid = sid[i].sid; + DOM_SID tmp_sid = sid[i].sid; + uint32 rid = 0xffffffff; + int dom_idx = -1; + fstring name; + fstring dom_name; + uint32 sid_name_use = 0; + + memset(dom_name, 0, sizeof(dom_name)); + memset(name , 0, sizeof(name )); + + if (map_domain_sid_to_name(&find_sid, dom_name)) + { + sid_name_use = SID_NAME_DOMAIN; + dom_idx = make_dom_ref(ref, dom_name, &find_sid); + safe_strcpy(name, dom_name, sizeof(name)-1); + } + else if (sid_split_rid (&find_sid, &rid) && + map_domain_sid_to_name(&find_sid, dom_name)) + { + if (sid_equal(&find_sid, &global_sam_sid) || + sid_equal(&find_sid, &global_sid_S_1_5_20)) + { + status = lookup_sam_rid(dom_name, + &find_sid, rid, + name, &sid_name_use); + } + else + { + status = lookup_lsa_sid(dom_name, + &tmp_sid, + name, &sid_name_use); + } + } + else + { + status = 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + + dom_idx = make_dom_ref(ref, dom_name, &find_sid); + + if (status == 0x0) + { + (*mapped_count)++; + } + else + { + snprintf(name, sizeof(name), "%08x", rid); + sid_name_use = SID_NAME_UNKNOWN; + + } + make_lsa_trans_name(&(trn->name [total]), + &(trn->uni_name[total]), + sid_name_use, name, dom_idx); + total++; + } + + trn->num_entries = total; + trn->ptr_trans_names = 1; + trn->num_entries2 = total; +} + +/*************************************************************************** +make_reply_lookup_sids + ***************************************************************************/ +static void make_reply_lookup_sids(LSA_R_LOOKUP_SIDS *r_l, + DOM_R_REF *ref, LSA_TRANS_NAME_ENUM *names, + uint32 mapped_count) +{ + r_l->ptr_dom_ref = 1; + r_l->dom_ref = ref; + r_l->names = names; + r_l->mapped_count = mapped_count; + + if (mapped_count == 0) + { + r_l->status = 0xC0000000 | NT_STATUS_NONE_MAPPED; + } + else + { + r_l->status = 0x0; + } +} + +/*************************************************************************** +lsa_reply_lookup_sids + ***************************************************************************/ +static void lsa_reply_lookup_sids(prs_struct *rdata, + DOM_SID2 *sid, int num_entries) +{ + LSA_R_LOOKUP_SIDS r_l; + DOM_R_REF ref; + LSA_TRANS_NAME_ENUM names; + uint32 mapped_count = 0; + + ZERO_STRUCT(r_l); + ZERO_STRUCT(ref); + ZERO_STRUCT(names); + + /* set up the LSA Lookup SIDs response */ + make_lsa_trans_names(&ref, &names, num_entries, sid, &mapped_count); + make_reply_lookup_sids(&r_l, &ref, &names, mapped_count); + + /* store the response in the SMB stream */ + lsa_io_r_lookup_sids("", &r_l, rdata, 0); +} + +/*************************************************************************** +lsa_reply_lookup_names + ***************************************************************************/ +static void lsa_reply_lookup_names(prs_struct *rdata, + UNISTR2 names[MAX_LOOKUP_SIDS], int num_entries) +{ + LSA_R_LOOKUP_NAMES r_l; + DOM_R_REF ref; + DOM_RID2 rids[MAX_LOOKUP_SIDS]; + uint32 mapped_count = 0; + + ZERO_STRUCT(r_l); + ZERO_STRUCT(ref); + ZERO_STRUCT(rids); + + /* set up the LSA Lookup RIDs response */ + make_lsa_rid2s(&ref, rids, num_entries, names, &mapped_count); + make_reply_lookup_names(&r_l, &ref, num_entries, rids, mapped_count); + + /* store the response in the SMB stream */ + lsa_io_r_lookup_names("", &r_l, rdata, 0); +} + +/*************************************************************************** +api_lsa_open_policy + ***************************************************************************/ +static void api_lsa_open_policy2( rpcsrv_struct *p, prs_struct *data, + prs_struct *rdata ) +{ + LSA_Q_OPEN_POL2 q_o; + + ZERO_STRUCT(q_o); + + /* grab the server, object attributes and desired access flag...*/ + lsa_io_q_open_pol2("", &q_o, data, 0); + + /* lkclXXXX having decoded it, ignore all fields in the open policy! */ + + /* return a 20 byte policy handle */ + lsa_reply_open_policy2(rdata); +} + +/*************************************************************************** +api_lsa_open_policy + ***************************************************************************/ +static void api_lsa_open_policy( rpcsrv_struct *p, prs_struct *data, + prs_struct *rdata ) +{ + LSA_Q_OPEN_POL q_o; + + ZERO_STRUCT(q_o); + + /* grab the server, object attributes and desired access flag...*/ + lsa_io_q_open_pol("", &q_o, data, 0); + + /* lkclXXXX having decoded it, ignore all fields in the open policy! */ + + /* return a 20 byte policy handle */ + lsa_reply_open_policy(rdata); +} + +/*************************************************************************** +api_lsa_enum_trust_dom + ***************************************************************************/ +static void api_lsa_enum_trust_dom( rpcsrv_struct *p, prs_struct *data, + prs_struct *rdata ) +{ + LSA_Q_ENUM_TRUST_DOM q_e; + + ZERO_STRUCT(q_e); + + /* grab the enum trust domain context etc. */ + lsa_io_q_enum_trust_dom("", &q_e, data, 0); + + /* construct reply. return status is always 0x0 */ + lsa_reply_enum_trust_dom(&q_e, rdata, 0, NULL, NULL); +} + +/*************************************************************************** +api_lsa_query_info + ***************************************************************************/ +static void api_lsa_query_info( rpcsrv_struct *p, prs_struct *data, + prs_struct *rdata ) +{ + LSA_Q_QUERY_INFO q_i; + fstring name; + uint32 status = 0x0; + DOM_SID *sid = NULL; + memset(name, 0, sizeof(name)); + + ZERO_STRUCT(q_i); + + /* grab the info class and policy handle */ + lsa_io_q_query("", &q_i, data, 0); + + switch (q_i.info_class) + { + case 0x03: + { + fstrcpy(name, global_myworkgroup); + sid = &global_member_sid; + break; + } + case 0x05: + { + fstrcpy(name, global_sam_name); + sid = &global_sam_sid; + break; + } + default: + { + DEBUG(5,("unknown info level in Lsa Query: %d\n", + q_i.info_class)); + status = 0xC000000 | NT_STATUS_INVALID_INFO_CLASS; + } + } + + /* construct reply. return status is always 0x0 */ + lsa_reply_query_info(&q_i, rdata, name, sid, status); +} + +/*************************************************************************** +api_lsa_lookup_sids + ***************************************************************************/ +static void api_lsa_lookup_sids( rpcsrv_struct *p, prs_struct *data, + prs_struct *rdata ) +{ + LSA_Q_LOOKUP_SIDS q_l; + ZERO_STRUCT(q_l); + + /* grab the info class and policy handle */ + lsa_io_q_lookup_sids("", &q_l, data, 0); + + /* construct reply. return status is always 0x0 */ + lsa_reply_lookup_sids(rdata, q_l.sids.sid, q_l.sids.num_entries); +} + +/*************************************************************************** +api_lsa_lookup_names + ***************************************************************************/ +static void api_lsa_lookup_names( rpcsrv_struct *p, prs_struct *data, + prs_struct *rdata ) +{ + LSA_Q_LOOKUP_NAMES q_l; + ZERO_STRUCT(q_l); + + /* grab the info class and policy handle */ + lsa_io_q_lookup_names("", &q_l, data, 0); + + SMB_ASSERT_ARRAY(q_l.uni_name, q_l.num_entries); + + lsa_reply_lookup_names(rdata, q_l.uni_name, q_l.num_entries); +} + +/*************************************************************************** + api_lsa_close + ***************************************************************************/ +static void api_lsa_close( rpcsrv_struct *p, prs_struct *data, + prs_struct *rdata) +{ + LSA_R_CLOSE r_c; + LSA_Q_CLOSE q_c; + + lsa_io_q_close("", &q_c, data, 0); + + ZERO_STRUCT(r_c); + + r_c.status = 0x0; + + /* find the connection policy handle. */ + if (r_c.status == 0x0 && (find_policy_by_hnd(get_global_hnd_cache(), &(q_c.pol)) == -1)) + { + r_c.status = 0xC0000000 | NT_STATUS_INVALID_HANDLE; + } + if (r_c.status == 0x0) + { + close_policy_hnd(get_global_hnd_cache(), &(q_c.pol)); + } + + /* store the response in the SMB stream */ + lsa_io_r_close("", &r_c, rdata, 0); +} + +/*************************************************************************** + api_lsa_open_secret + ***************************************************************************/ +static void api_lsa_open_secret( rpcsrv_struct *p, prs_struct *data, + prs_struct *rdata) +{ + LSA_R_OPEN_SECRET r_o; + LSA_Q_OPEN_SECRET q_o; + + lsa_io_q_open_secret("", &q_o, data, 0); + + ZERO_STRUCT(r_o); + r_o.status = 0xC0000000 | NT_STATUS_OBJECT_NAME_NOT_FOUND; + + /* store the response in the SMB stream */ + lsa_io_r_open_secret("", &r_o, rdata, 0); +} + +/*************************************************************************** + \PIPE\ntlsa commands + ***************************************************************************/ +static struct api_struct api_lsa_cmds[] = +{ + { "LSA_OPENPOLICY2" , LSA_OPENPOLICY2 , api_lsa_open_policy2 }, + { "LSA_OPENPOLICY" , LSA_OPENPOLICY , api_lsa_open_policy }, + { "LSA_QUERYINFOPOLICY" , LSA_QUERYINFOPOLICY , api_lsa_query_info }, + { "LSA_ENUMTRUSTDOM" , LSA_ENUMTRUSTDOM , api_lsa_enum_trust_dom }, + { "LSA_CLOSE" , LSA_CLOSE , api_lsa_close }, + { "LSA_OPENSECRET" , LSA_OPENSECRET , api_lsa_open_secret }, + { "LSA_LOOKUPSIDS" , LSA_LOOKUPSIDS , api_lsa_lookup_sids }, + { "LSA_LOOKUPNAMES" , LSA_LOOKUPNAMES , api_lsa_lookup_names }, + { NULL , 0 , NULL } +}; + +/*************************************************************************** + api_ntLsarpcTNP + ***************************************************************************/ +BOOL api_ntlsa_rpc(rpcsrv_struct *p) +{ + return api_rpcTNP(p, "api_ntlsa_rpc", api_lsa_cmds); +} |