Id)dZddlmZddlmZmZmZddlmZddl m Z ddl m Z ddl mZddlmZdd lmZdd lmZmZdd ZGd deZdZdZ ddZy )z(Functions for setting up a Samba Schema.) b64encode)read_and_sub_filesubstitute_varcheck_all_substituted)security)read_ms_schema)ndr_pack)SamDB get_string)dsdb) SCOPE_SUBTREESCOPE_ONELEVELNcd|i}d}tjj||}t|S)NaO:SAG:SAD:AI(OA;;CR;e12b56b6-0a95-11d1-adbb-00c04fd8d5cd;;SA)(OA;;CR;1131f6aa-9c07-11d1-f79f-00c04fc2dcd2;;ED)(OA;;CR;1131f6ab-9c07-11d1-f79f-00c04fc2dcd2;;ED)(OA;;CR;1131f6ac-9c07-11d1-f79f-00c04fc2dcd2;;ED)(OA;;CR;1131f6aa-9c07-11d1-f79f-00c04fc2dcd2;;BA)(OA;;CR;1131f6ab-9c07-11d1-f79f-00c04fc2dcd2;;BA)(OA;;CR;1131f6ac-9c07-11d1-f79f-00c04fc2dcd2;;BA)(A;CI;RPLCLORC;;;AU)(A;CI;RPWPCRCCLCLORCWOWDSW;;;SA)(A;CI;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(OA;;CR;1131f6ad-9c07-11d1-f79f-00c04fc2dcd2;;ED)(OA;;CR;89e95b76-444d-4c62-991a-0facbeda640c;;ED)(OA;;CR;1131f6ad-9c07-11d1-f79f-00c04fc2dcd2;;BA)(OA;;CR;89e95b76-444d-4c62-991a-0facbeda640c;;BA)(OA;;CR;1131f6aa-9c07-11d1-f79f-00c04fc2dcd2;;RO)(OA;;CR;1131f6ad-9c07-11d1-f79f-00c04fc2dcd2;;RO)(OA;;CR;89e95b76-444d-4c62-991a-0facbeda640c;;RO)S:(AU;SA;WPCCDCWOWDSDDTSW;;;WD)(AU;CISA;WP;;;WD)(AU;SA;CR;;;BA)(AU;SA;CR;;;DU)(OU;SA;CR;e12b56b6-0a95-11d1-adbb-00c04fd8d5cd;;WD)(OU;SA;CR;45ec5156-db7e-47bb-b53f-dbeb2d03c40f;;WD))r descriptor from_sddlr ) domain_sidname_mapsddlsecs ./usr/lib/python3/dist-packages/samba/schema.pyget_schema_descriptorr$s9 AD.    ' 'j 9C C=cjeZdZdddddddZ dd Zed Zed Zd Zd Z dZ dZ dZ y)Schema)z"MS-AD_Schema_2K8_R2_Attributes.txtzMS-AD_Schema_2K8_R2_Classes.txt/)z0Attributes_for_AD_DS__Windows_Server_2008_R2.ldfz-Classes_for_AD_DS__Windows_Server_2008_R2.ldfr)z-Attributes_for_AD_DS__Windows_Server_2012.ldfz*Classes_for_AD_DS__Windows_Server_2012.ldf8)z,AD_DS_Attributes__Windows_Server_2012_R2.ldfz)AD_DS_Classes__Windows_Server_2012_R2.ldfE)z*AD_DS_Attributes__Windows_Server_v1803.ldfz'AD_DS_Classes__Windows_Server_v1803.ldfW)z)AD_DS_Attributes_Windows_Server_v1903.ldfz&AD_DS_Classes_Windows_Server_v1903.ldfX) 2008_R2_old2008_R220122012_R220162019NcT ddlm} |tj}||_||_t dd|_||jj|t|dtj|dz|dtj|dz|_ d |dj fd |D|_ t|jd |i|_ t|jttj!|} t#|d || d |_t't)|j+d } t#|d|| d|_|||_n |d|_|+|xj.djd|Dz c_t'|j.j+d |_d|j d|j.d} |j1| |j|j y)Nr) setup_pathF) global_schemaam_rodcz ad-schema/%scft|d5}|jcdddS#1swYyxYw)Nrb)openread)file data_files r read_filez"Schema.__init__..read_filezs-dD! (Y ~~' ( ( (s'0c3@K|]}t|ywNr ).0r0r2s r z"Schema.__init__..s"':+/(2)D/'B':sSCHEMADNz#provision_schema_basedn_modify.ldif)r8 OBJVERSIONutf8zprovision_schema_basedn.ldif)r8 DESCRIPTORz prefixMap.txtc3&K|] }d|z yw)z%s N)r6maps rr7z"Schema.__init__..s*XC6C<*Xszdn: z prefixMap:: z )samba.provisionr(rdefault_base_schema base_schemaschemadnr ldbset_invocation_idr base_schemas schema_datajoinrrstr get_versionrschema_dn_modifyrrdecode schema_dn_addprefixmap_data set_from_ldif) selfr invocationidrBfilesoverride_prefixmapadditional_prefixmaprAr(schema_versiondescrprefixmap_ldifr2s @r__init__zSchema.__init__[s /    446K&  ue<  # HH & &| 4) ~(;(;K(H(KK L ~(;(;K(H(KK LN (  !ww':38': :D *$*:*:+5x*@Bd../V// <= 1 < =! @!B/ ;<CCFK. 5 6! 79  )"4D "+J,G"HD   +   277*XCW*X#X X '(;(;<CCFK:>H[H[\ >4+;+;T]]Krcy)z&Returns the default base schema to user$r=r=rrr@zSchema.default_base_schemasrc.tj|dS)z=Returns the base schema's object version, e.g. 47 for 2008_R2)rrE)rAs rrIzSchema.get_versions"";/22rcHtj|j|||yr5)r _dsdb_set_schema_from_ldifrC)rOpfdfdns rrNzSchema.set_from_ldifs ''"b"=rc|jj||jj |jjd|jdz}|jj||jj |j |jj|j|jjy#|jjxYw)N)urlzpdn: @ATTRIBUTES linkID: INTEGER dn: @INDEXLIST @IDXATTR: linkID @IDXATTR: attributeSyntax @IDXGUID: objectGUID z1objectGUID: 24e2ca70-b093-4ae8-84c0-2d7ac652a1b8 ) rCconnecttransaction_startadd_ldifrL modify_ldifrJrFtransaction_committransaction_cancel)rO schemadb_pathrLs rwrite_to_tmp_ldbzSchema.write_to_tmp_ldbs ]+ ""$ * HH   !..FGM HH  m , HH !6!6 7 HH  d.. / HH ' ' )   HH ' ' ) s BC""C?cBt|j|jSr5)get_linked_attributesrBrCrOs rlinked_attributeszSchema.linked_attributess$T]]DHH==rcBt|j|jSr5)get_dnsyntax_attributesrBrCrls rdnsyntax_attributeszSchema.dnsyntax_attributess&t}}dhh??rcDtj|j||Sr5)r _dsdb_convert_schema_to_openldaprC)rOtargetmappings rconvert_to_openldapzSchema.convert_to_openldaps44TXXvwOOr)NNNNNN) __name__ __module__ __qualname__rErW staticmethodr@rIrNrirmrprur=rrrrCs!L*@DKO!ALF33>*<>@Prrc*ddg}|jd|t|}i}tdt|D][}dt ||dddzz}|j ||dt }|9|jd |t||d<]|S) NlinkIDlDAPDisplayNamezh(&(linkID=*)(!(linkID:1.2.840.113556.1.4.803:=1))(objectclass=attributeSchema)(attributeSyntax=2.5.5.1)) expressionbasescopeattrsrzD(&(objectclass=attributeSchema)(linkID=%d)(attributeSyntax=2.5.5.1))r+)basednr~ attributerzutf-8) searchrrangelenint searchonerrKrH)rB schemaldbrres attributesir~rss rrkrks ( )E   0^5  :C J 1c#h  P33q6(+A./!35 $$H0:/@+8%:  9?w9OJs3q6"345 6 P rc|jd|tddg}g}tdt|D]"}|j t ||d$|S)NzF(&(!(linkID=*))(objectclass=attributeSchema)(attributeSyntax=2.5.5.1))r{r|r}r)rrrrappendrH)rBrrrrs rrorosl   [ ^*+  -CJ 1c#h :#c!f%6789: rcv|tj}ntj|}t|||S)aOLoad schema for the SamDB from the AD schema files and samba4_schema.ldif :param schemadn: DN of the schema :param serverdn: DN of the server Returns the schema data loaded as an object, with .ldb being a new ldb with the schema loaded. This allows certain tests to operate without a remote or local schema. )rBrR)r random_siddom_sidr)rB domainsidrRs rldb_with_schemars<'') $$Y/ )h%7 99rr5)z,cn=schema,cn=configuration,dc=example,dc=comNN)__doc__base64rsambarrr samba.dcerpcrsamba.ms_schemar samba.ndrr samba.samdbr samba.commonr r rCrrrobjectrrkrorr=rrrsY./JJ!*#->MPVMPb.L"'+9r