dissect group attributes for the pac structure and other places in netlogon

git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@10563 f5534014-38df-0310-8fa8-9805f1628bb7
author: sahlberg <sahlberg@f5534014-38df-0310-8fa8-9805f1628bb7> 2004-04-08 09:17:16 +0000
committer: sahlberg <sahlberg@f5534014-38df-0310-8fa8-9805f1628bb7> 2004-04-08 09:17:16 +0000
commit: c864c41db3c8b620e3f134effac82f28c4c8e859 (patch)
tree: 6ae4fb71ecb1c38859bb05f3a82223aeceeb7705 /packet-dcerpc-netlogon.c
parent: 156b03b4e883969c4065f1aad3d5e338af02c4b1 (diff)
1 files changed, 71 insertions, 4 deletions
diff --git a/packet-dcerpc-netlogon.c b/packet-dcerpc-netlogon.c
index 78ed0a32fa..d91eaec85f 100644
--- a/packet-dcerpc-netlogon.c
+++ b/packet-dcerpc-netlogon.c
@@ -3,7 +3,7 @@
  * Copyright 2001,2003 Tim Potter <tpot@samba.org>
  *  2002 structure and command dissectors by Ronnie Sahlberg
  *
- * $Id: packet-dcerpc-netlogon.c,v 1.97 2004/03/05 23:12:09 sahlberg Exp $
+ * $Id: packet-dcerpc-netlogon.c,v 1.98 2004/04/08 09:17:16 sahlberg Exp $
  *
  * Ethereal - Network traffic analyzer
  * By Gerald Combs <gerald@ethereal.com>
@@ -38,6 +38,9 @@
 #include "packet-dcerpc-lsa.h"
 
 static int proto_dcerpc_netlogon = -1;
+static int hf_netlogon_group_attrs_mandatory = -1;
+static int hf_netlogon_group_attrs_enabled_by_default = -1;
+static int hf_netlogon_group_attrs_enabled = -1;
 static int hf_netlogon_opnum = -1;
 static int hf_netlogon_guid = -1;
 static int hf_netlogon_rc = -1;
@@ -227,6 +230,7 @@ static int hf_netlogon_dc_flags_dns_domain_flag = -1;
 static int hf_netlogon_dc_flags_dns_forest_flag = -1;
 
 static gint ett_dcerpc_netlogon = -1;
+static gint ett_group_attrs = -1;
 static gint ett_QUOTA_LIMITS = -1;
 static gint ett_IDENTITY_INFO = -1;
 static gint ett_DELTA_ENUM = -1;
@@ -820,6 +824,52 @@ netlogon_dissect_AUTHENTICATOR(tvbuff_t *tvb, int offset,
 }
 
 
+static const true_false_string group_attrs_mandatory = {
+	"The MANDATORY bit is SET",
+	"The mandatory bit is NOT set",
+};
+static const true_false_string group_attrs_enabled_by_default = {
+	"The ENABLED_BY_DEFAULT bit is SET",
+	"The enabled_by_default bit is NOT set",
+};
+static const true_false_string group_attrs_enabled = {
+	"The enabled bit is SET",
+	"The enabled bit is NOT set",
+};
+static int
+netlogon_dissect_GROUP_MEMBERSHIP_ATTRIBUTES(tvbuff_t *tvb, int offset,
+	packet_info *pinfo, proto_tree *parent_tree, guint8 *drep)
+{
+	guint32 mask;
+	proto_item *item = NULL;
+	proto_tree *tree = NULL;
+	dcerpc_info *di;
+
+	di=pinfo->private_data;
+	if(di->conformant_run){
+		/*just a run to handle conformant arrays, nothing to dissect */
+		return offset;
+	}
+
+	offset=dissect_ndr_uint32(tvb, offset, pinfo, NULL, drep,
+			hf_netlogon_attrs, &mask);
+
+	if(parent_tree){
+		item = proto_tree_add_uint(parent_tree, hf_netlogon_attrs,
+			tvb, offset-4, 4, mask);
+		tree = proto_item_add_subtree(item, ett_group_attrs);
+	}
+
+	proto_tree_add_boolean(tree, hf_netlogon_group_attrs_enabled,
+		tvb, offset-4, 4, mask);
+	proto_tree_add_boolean(tree, hf_netlogon_group_attrs_enabled_by_default,
+		tvb, offset-4, 4, mask);
+	proto_tree_add_boolean(tree, hf_netlogon_group_attrs_mandatory,
+		tvb, offset-4, 4, mask);
+
+	return offset;
+}
+
 /*
  * IDL typedef struct {
  * IDL   long user_id;
@@ -843,8 +893,8 @@ netlogon_dissect_GROUP_MEMBERSHIP(tvbuff_t *tvb, int offset,
 	offset = dissect_ndr_uint32(tvb, offset, pinfo, tree, drep,
 		hf_netlogon_group_rid, NULL);
 
-	offset = dissect_ndr_uint32(tvb, offset, pinfo, tree, drep,
-		hf_netlogon_attrs, NULL);
+	offset = netlogon_dissect_GROUP_MEMBERSHIP_ATTRIBUTES(tvb, offset,
+		pinfo, tree, drep);
 
 	return offset;
 }
@@ -7200,6 +7250,22 @@ static hf_register_info hf[] = {
         { &hf_netlogon_secchan_verf_nonce,
           { "Nonce", "netlogon.secchan.nonce", FT_BYTES, BASE_HEX, NULL, 
           0x0, "Nonce", HFILL }}, 
+
+	{ &hf_netlogon_group_attrs_mandatory,
+	        { "Mandatory", "netlogon.groups.attrs.mandatory",
+		  FT_BOOLEAN, 32, TFS(&group_attrs_mandatory), 0x00000001,
+		  "The group attributes MANDATORY flag", HFILL }},
+
+	{ &hf_netlogon_group_attrs_enabled_by_default,
+	        { "Enabled By Default", "netlogon.groups.attrs.enabled_by_default",
+		  FT_BOOLEAN, 32, TFS(&group_attrs_enabled_by_default), 0x00000002,
+		  "The group attributes ENABLED_BY_DEFAULT flag", HFILL }},
+
+	{ &hf_netlogon_group_attrs_enabled,
+	        { "Enabled", "netlogon.groups.attrs.enabled",
+		  FT_BOOLEAN, 32, TFS(&group_attrs_enabled), 0x00000004,
+		  "The group attributes ENABLED flag", HFILL }},
+
 	};
 
         static gint *ett[] = {
@@ -7227,7 +7293,8 @@ static hf_register_info hf[] = {
 		&ett_dc_flags,
 		&ett_secchan_bind_creds,
 		&ett_secchan_bind_ack_creds,
-		&ett_secchan_verf
+		&ett_secchan_verf,
+		&ett_group_attrs
         };
 
         proto_dcerpc_netlogon = proto_register_protocol(
author	sahlberg <sahlberg@f5534014-38df-0310-8fa8-9805f1628bb7>	2004-04-08 09:17:16 +0000
committer	sahlberg <sahlberg@f5534014-38df-0310-8fa8-9805f1628bb7>	2004-04-08 09:17:16 +0000
commit	c864c41db3c8b620e3f134effac82f28c4c8e859 (patch)
tree	6ae4fb71ecb1c38859bb05f3a82223aeceeb7705 /packet-dcerpc-netlogon.c
parent	156b03b4e883969c4065f1aad3d5e338af02c4b1 (diff)