smb-dtyp 0.11.2

Common data types for `smb-rs`
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137

//! MS-DTYP 2.4.2.2

use std::str::FromStr;

use binrw::prelude::*;

use crate::binrw_util::prelude::*;

/// SID (Security identifier)
///
/// [MS-DTYP 2.4.2](<https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-dtyp/78eb9013-1c3a-4970-ad1f-2b1dad588a25>)
///
/// This SID implementation supports binary read/write, and from/to string operations.
/// ```
/// use smb_dtyp::SID;
/// use std::str::FromStr;
/// const SID_STRING: &str = "S-1-5-21-782712087-4182988437-2163400469-1002";
/// let sid = SID::from_str(SID_STRING).unwrap();
/// let sid_string = sid.to_string();
/// assert_eq!(sid_string, SID_STRING);
/// ```
#[binrw::binrw]
#[derive(Debug, PartialEq, Eq, Clone)]
#[brw(little)]
pub struct SID {
    #[bw(calc = 1)]
    #[br(assert(revision == 1))]
    revision: u8,
    #[bw(try_calc = sub_authority.len().try_into())]
    sub_authority_count: u8,
    #[brw(big)] // WE LOVE MICROSOFT!
    #[br(parse_with = read_u48)]
    #[bw(write_with = write_u48)]
    pub identifier_authority: u64,
    #[br(count = sub_authority_count)]
    pub sub_authority: Vec<u32>,
}
impl SID {
    /// Minimum size of this structure in bytes, when serialized.
    pub const MIN_SIZE: usize = std::mem::size_of::<u8>()  // Revision
        + std::mem::size_of::<u8>()  // SubAuthorityCount
        + 6; // IdentifierAuthority (48 bits)

    /// SID common string prefix
    const PREFIX: &'static str = "S-1-";

    /// Administrators group SID
    pub const S_ADMINISTRATORS: &'static str = "S-1-5-32-544";
    /// Local System user SID
    pub const S_LOCAL_SYSTEM: &'static str = "S-1-5-18";
    /// Everyone group SID
    pub const S_EVERYONE: &'static str = "S-1-1-0";
}

impl FromStr for SID {
    type Err = &'static str;

    fn from_str(s: &str) -> Result<Self, Self::Err> {
        // 1. starts with S-1-:
        if !s.starts_with(Self::PREFIX) {
            return Err("SID must start with S-1-");
        }
        let mut s = s[Self::PREFIX.len()..].split('-');
        // 2. authority is a number, possibly in hex.
        let identifier_authority = match s.next() {
            Some("0x") => {
                // hex is only for sub-authorities > 32 bits!
                let p = u64::from_str_radix(
                    s.next().ok_or("Identifier authority format is incorrect")?,
                    16,
                )
                .map_err(|_| "Identifier authority format is incorrect")?;
                if p >> 32 == 0 {
                    p
                } else {
                    return Err("Identifier authority format is incorrect");
                }
            }
            Some(x) => x
                .parse()
                .map_err(|_| "Identifier authority format is incorrect")?,
            None => return Err("SID format is incorrect - missing authority"),
        };
        // 3. sub-authorities are numbers.
        let sub_authority = s
            .map(|x| x.parse().map_err(|_| "Sub-authority format is incorrect"))
            .collect::<Result<_, _>>()?;
        Ok(SID {
            identifier_authority,
            sub_authority,
        })
    }
}

impl std::fmt::Display for SID {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        // MS-DTYP 2.4.2.1: SID String Format
        write!(f, "S-1-")?;
        if self.identifier_authority >> 32 == 0 {
            write!(f, "{}", self.identifier_authority)?;
        } else {
            write!(f, "0x{:x}", self.identifier_authority)?;
        }
        for sub_authority in &self.sub_authority {
            write!(f, "-{sub_authority}")?;
        }
        Ok(())
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use smb_tests::*;

    const SID_STRING: &str = "S-1-5-21-782712087-4182988437-2163400469-1002";

    #[test]
    fn test_sid_to_from_string() {
        let sid_value: SID = SID {
            identifier_authority: 5,
            sub_authority: vec![21, 782712087, 4182988437, 2163400469, 1002],
        };
        assert_eq!(SID_STRING.parse::<SID>().unwrap(), sid_value);
        assert_eq!(sid_value.to_string(), SID_STRING);

        let invalid_sids = ["", "S-1", "S-1-", "S-1-2-", "S-1-4f4"];
        for sid in invalid_sids {
            assert!(sid.parse::<SID>().is_err())
        }
    }

    test_binrw! {
        SID: SID_STRING.parse::<SID>().unwrap()
            => "010500000000000515000000173da72e955653f915dff280ea030000"
    }
}