From bb99cf1f729b789290202e573ea3dcedf2f253a0 Mon Sep 17 00:00:00 2001
From: Andrew Bartlett <abartlet@samba.org>
Date: Wed, 10 Oct 2012 16:42:38 +1100
Subject: posixacls: Add IDL changes for vfs_acl_xattr using hash of the sys
 acl

This will isolate the hash of the ACL from any intermediate mapping that
the POSIX -> NT mapping subsystem might need to do, and which might
change if we need to correct that mapping.

Andrew Bartlett
---
 librpc/idl/xattr.idl | 13 +++++++++++++
 1 file changed, 13 insertions(+)

(limited to 'librpc/idl/xattr.idl')

diff --git a/librpc/idl/xattr.idl b/librpc/idl/xattr.idl
index bc8c20c9ea..f7e698429b 100644
--- a/librpc/idl/xattr.idl
+++ b/librpc/idl/xattr.idl
@@ -184,10 +184,23 @@ interface xattr
 		uint8 hash[64]; /* 64 bytes hash. */
 	} security_descriptor_hash_v3;
 
+	typedef [public] struct {
+		security_descriptor *sd;
+		uint16 hash_type;
+		uint8 hash[64]; /* 64 bytes hash. */
+		utf8string description; /* description of what created
+					 * this hash (to allow
+					 * foresnics later, if we have
+					 * a bug in one codepath */
+		NTTIME time;
+		uint8 sys_acl_hash[64]; /* 64 bytes hash. */
+	} security_descriptor_hash_v4;
+
 	typedef [switch_type(uint16)] union {
 		[case(1)] security_descriptor *sd;
 		[case(2)] security_descriptor_hash_v2 *sd_hs2;
 		[case(3)] security_descriptor_hash_v3 *sd_hs3;
+		[case(4)] security_descriptor_hash_v4 *sd_hs4;
 	} xattr_NTACL_Info;
 
 	typedef [public] struct {
-- 
cgit