b'dZddlmZddlmZmZmZddlmZddl m Z ddl m Z ddl mZddlmZdd lmZdd lmZmZifd ZGd d eZdZdZ ddZdS)z(Functions for setting up a Samba Schema.) b64encode)read_and_sub_filesubstitute_varcheck_all_substituted)security)read_ms_schema)ndr_pack)SamDB get_string)dsdb) SCOPE_SUBTREESCOPE_ONELEVELcdd}tj||}t|S)NaO:SAG:SAD:AI(OA;;CR;e12b56b6-0a95-11d1-adbb-00c04fd8d5cd;;SA)(OA;;CR;1131f6aa-9c07-11d1-f79f-00c04fc2dcd2;;ED)(OA;;CR;1131f6ab-9c07-11d1-f79f-00c04fc2dcd2;;ED)(OA;;CR;1131f6ac-9c07-11d1-f79f-00c04fc2dcd2;;ED)(OA;;CR;1131f6aa-9c07-11d1-f79f-00c04fc2dcd2;;BA)(OA;;CR;1131f6ab-9c07-11d1-f79f-00c04fc2dcd2;;BA)(OA;;CR;1131f6ac-9c07-11d1-f79f-00c04fc2dcd2;;BA)(A;CI;RPLCLORC;;;AU)(A;CI;RPWPCRCCLCLORCWOWDSW;;;SA)(A;CI;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(OA;;CR;1131f6ad-9c07-11d1-f79f-00c04fc2dcd2;;ED)(OA;;CR;89e95b76-444d-4c62-991a-0facbeda640c;;ED)(OA;;CR;1131f6ad-9c07-11d1-f79f-00c04fc2dcd2;;BA)(OA;;CR;89e95b76-444d-4c62-991a-0facbeda640c;;BA)(OA;;CR;1131f6aa-9c07-11d1-f79f-00c04fc2dcd2;;RO)(OA;;CR;1131f6ad-9c07-11d1-f79f-00c04fc2dcd2;;RO)(OA;;CR;89e95b76-444d-4c62-991a-0facbeda640c;;RO)S:(AU;SA;WPCCDCWOWDSDDTSW;;;WD)(AU;CISA;WP;;;WD)(AU;SA;CR;;;BA)(AU;SA;CR;;;DU)(OU;SA;CR;e12b56b6-0a95-11d1-adbb-00c04fd8d5cd;;WD)(OU;SA;CR;45ec5156-db7e-47bb-b53f-dbeb2d03c40f;;WD))r descriptor from_sddlr ) domain_sidname_mapsddlsecs ./usr/lib/python3/dist-packages/samba/schema.pyget_schema_descriptorr$s0 AD.   ' 'j 9 9C C==cteZdZdddddZ ddZedZed Zd Zd Z d Z d Z dZ dS)Schema)z"MS-AD_Schema_2K8_R2_Attributes.txtzMS-AD_Schema_2K8_R2_Classes.txt/)z0Attributes_for_AD_DS__Windows_Server_2008_R2.ldfz-Classes_for_AD_DS__Windows_Server_2008_R2.ldfr)z)AD_DS_Attributes__Windows_Server_2012.ldfz&AD_DS_Classes__Windows_Server_2012.ldf8)z,AD_DS_Attributes__Windows_Server_2012_R2.ldfz)AD_DS_Classes__Windows_Server_2012_R2.ldfE) 2008_R2_old2008_R220122012_R2Nc ddlm} |t}||_||_t dd|_||j|t|dtj |dz|dtj |dz|_ d |&d fd |D|_ t|j d |i|_ t|j tt|} t#|d || d |_t't)|d } t#|d|| d|_|||_n |d|_|-|xjd d|Dz c_t'|jd |_d|jd|jd} || |j |jdS)Nr) setup_pathF) global_schemaam_rodcz ad-schema/%sc~t|d5}|cdddS#1swxYwYdS)Nrb)openread)file data_files r read_filez"Schema.__init__..read_fileqsdD!! (Y ~~'' ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( (s 266c3HK|]}t|VdSNr ).0r,r.s r z"Schema.__init__..vsG':':+/(2))D//'B'B':':':':':':rSCHEMADNz#provision_schema_basedn_modify.ldif)r4 OBJVERSIONutf8zprovision_schema_basedn.ldif)r4 DESCRIPTORz prefixMap.txtc3 K|] }d|zV dS)z%s N)r2maps rr3z"Schema.__init__..s&*X*XC6C<*X*X*X*X*X*Xrzdn: z prefixMap:: z )samba.provisionr$rdefault_base_schema base_schemaschemadnr ldbset_invocation_idr base_schemas schema_datajoinrrstr get_versionrschema_dn_modifyrrdecode schema_dn_addprefixmap_data set_from_ldif) selfr invocationidr>filesoverride_prefixmapadditional_prefixmapr=r$schema_versiondescrprefixmap_ldifr.s @r__init__zSchema.__init__Rs /.....    4466K&  ue<<<  # H & &| 4 4 4) J~(;K(H(KK L L J~(;K(H(KK L LNN ( ( (  !ww':':':':38':':': : :D *$*:+5x*@BBd.///V// <<== 1 J< = =! @ @!B!B/ ;;<<CCFKK. J5 6 6! 7 799  )"4D  "+)JJ,G,G"H"HD   +   277*X*XCW*X*X*X#X#X X  '(;<<CCFKK:>H[H[H[\ >4+;T]KKKKKrcdS)z&Returns the default base schema to user"r9r9rrr<zSchema.default_base_schemas yrc2tj|dS)z=Returns the base schema's object version, e.g. 47 for 2008_R2)rrA)r=s rrEzSchema.get_versions";/22rc>tj|j|||dSr1)r _dsdb_set_schema_from_ldifr?)rKpfdfdns rrJzSchema.set_from_ldifs! '"b"=====rc|j||j |jd|jdz}|j||j|j|j|j|jdS#|j xYw)N)urlzpdn: @ATTRIBUTES linkID: INTEGER dn: @INDEXLIST @IDXATTR: linkID @IDXATTR: attributeSyntax @IDXGUID: objectGUID z1objectGUID: 24e2ca70-b093-4ae8-84c0-2d7ac652a1b8 ) r?connecttransaction_startadd_ldifrH modify_ldifrFrBtransaction_committransaction_cancel)rK schemadb_pathrHs rwrite_to_tmp_ldbzSchema.write_to_tmp_ldbs ]+++ ""$$$ * H     !.FGM H  m , , , H !6 7 7 7 H  d. / / / H ' ' ) ) ) ) )   H ' ' ) ) ) s Ar?rKs rlinked_attributeszSchema.linked_attributess$T]DH===rc6t|j|jSr1)get_dnsyntax_attributesr>r?rhs rdnsyntax_attributeszSchema.dnsyntax_attributess&t}dh???rc8tj|j||Sr1)r _dsdb_convert_schema_to_openldapr?)rKtargetmappings rconvert_to_openldapzSchema.convert_to_openldaps4TXvwOOOr)NNNNNN) __name__ __module__ __qualname__rArS staticmethodr<rErJrerirlrqr9rrrr@s  L@DKO!ALALALALF\33\3>>>***<>>>@@@PPPPPrrcrddg}|d|t|}i}tdt|D]t}dt ||dddzz}|||dt }|+t||t||d<u|S) NlinkIDlDAPDisplayNamezh(&(linkID=*)(!(linkID:1.2.840.113556.1.4.803:=1))(objectclass=attributeSchema)(attributeSyntax=2.5.5.1)) expressionbasescopeattrsrzD(&(objectclass=attributeSchema)(linkID=%d)(attributeSyntax=2.5.5.1))r')basednrz attributer|)searchrrangelenint searchonerrD)r> schemaldbr}res attributesirzros rrgrgs ( )E   0^5  : :C J 1c#hh   E E33q6(+A.//!35 $$H0:/@+8%::  9rrrrs rrkrks   [ ^*+  - -CJ 1c#hh  ::#c!f%67889999 r,cn=schema,cn=configuration,dc=example,dc=comNcz|tj}ntj|}t|||S)aOLoad schema for the SamDB from the AD schema files and samba4_schema.ldif :param schemadn: DN of the schema :param serverdn: DN of the server Returns the schema data loaded as an object, with .ldb being a new ldb with the schema loaded. This allows certain tests to operate without a remote or local schema. N)r>rN)r random_siddom_sidr)r> domainsidrNs rldb_with_schemarsH')) $Y// )h%7 9 9 99r)rNN)__doc__base64rsambarrr samba.dcerpcrsamba.ms_schemar samba.ndrr samba.samdbr samba.commonr r r?rrrobjectrrgrkrr9rrrs]./.JJJJJJJJJJ!!!!!!******######--------028GPGPGPGPGPVGPGPGPV.L"'+999999r