From d607b4473feef6392364a1f2f7a564d790125899 Mon Sep 17 00:00:00 2001
From: Tim Potter <tpot@samba.org>
Date: Thu, 11 Aug 2005 03:31:35 +0000
Subject: r9237: Fix eventlog_Record typedef so it decodes records source and
 computer names.  Need to get working with SIDs and extra data. (This used to
 be commit 2543f78df61b76295acf6fe4837adefbe08ca5c4)

---
 source4/librpc/idl/eventlog.idl | 28 +++++++++++++---------------
 1 file changed, 13 insertions(+), 15 deletions(-)

(limited to 'source4/librpc')

diff --git a/source4/librpc/idl/eventlog.idl b/source4/librpc/idl/eventlog.idl
index 0d34579327..8277bcefb5 100644
--- a/source4/librpc/idl/eventlog.idl
+++ b/source4/librpc/idl/eventlog.idl
@@ -32,26 +32,25 @@
 		uint16 unknown1;
 	} eventlog_OpenUnknown0;
 	
-	typedef struct { 
+	typedef [public] struct { 
 		uint32 size;
 		uint32 reserved;
-		uint32 recordnumber;
-		uint32 creationtime;
-		uint32 writetime;
-		uint32 eventnumber;
-		uint16 eventtype;
+		uint32 record_number;
+		uint32 time_generated;
+		uint32 time_written;
+		uint32 event_id;
+		uint16 event_type;
 		uint16 num_of_strings;
-		uint16 category;
-		uint16 reserved_flag;
-		uint32 closingrecord;
+		uint16 event_category;
+		uint16 reserved_flags;
+		uint32 closing_record_number;
 		uint32 stringoffset;
-		[size_is(num_of_strings)] lsa_String bla[*];
 		uint32 sid_length;
-		[size_is(sid_length)] dom_sid *sids;
+		uint32 sid_offset;
 		uint32 data_length;
-		[size_is(data_length)] uint8 *data;
-		unistr *source_name;
-		unistr *machine_name;
+		uint32 data_offset;
+		nstring source_name;
+		nstring computer_name;
 	} eventlog_Record;
 
 	/******************/
@@ -71,7 +70,6 @@
 		[in,out,ref] policy_handle *handle
 	);
 
-
 	/******************/
 	/* Function: 0x03 */
 	NTSTATUS eventlog_DeregisterEventSource();
-- 
cgit