2 Unix SMB/CIFS implementation.
3 Main SMB reply routines
4 Copyright (C) Andrew Tridgell 1992-2003
5 Copyright (C) James J Myers 2003 <myersjj@samba.org>
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 This file handles most of the reply_ calls that the server
23 makes to handle specific protocols
27 #include "smb_server/smb_server.h"
30 /* useful way of catching wct errors with file and line number */
31 #define REQ_CHECK_WCT(req, wcount) do { \
32 if ((req)->in.wct != (wcount)) { \
33 DEBUG(1,("Unexpected WCT %d at %s(%d) - expected %d\n", \
34 (req)->in.wct, __FILE__, __LINE__, wcount)); \
35 req_reply_dos_error(req, ERRSRV, ERRerror); \
39 /* check req->async_states->status and if not OK then send an error reply */
40 #define CHECK_ASYNC_STATUS do { \
41 if (!NT_STATUS_IS_OK(req->async_states->status)) { \
42 req_reply_error(req, req->async_states->status); \
46 /* useful wrapper for talloc with NO_MEMORY reply */
47 #define REQ_TALLOC(ptr, size) do { \
48 ptr = talloc(req, size); \
50 req_reply_error(req, NT_STATUS_NO_MEMORY); \
55 check if the backend wants to handle the request asynchronously.
56 if it wants it handled synchronously then call the send function
59 #define REQ_ASYNC_TAIL do { \
60 if (!(req->async_states->state & NTVFS_ASYNC_STATE_ASYNC)) { \
61 req->async_states->send_fn(req); \
64 /* zero out some reserved fields in a reply */
65 #define REQ_VWV_RESERVED(start, count) memset(req->out.vwv + VWV(start), 0, (count)*2)
67 /****************************************************************************
68 Reply to a simple request (async send)
69 ****************************************************************************/
70 static void reply_simple_send(struct smbsrv_request *req)
74 req_setup_reply(req, 0, 0);
79 /****************************************************************************
81 ****************************************************************************/
82 void reply_tcon(struct smbsrv_request *req)
89 REQ_CHECK_WCT(req, 0);
91 con.tcon.level = RAW_TCON_TCON;
94 p += req_pull_ascii4(req, &con.tcon.in.service, p, STR_TERMINATE);
95 p += req_pull_ascii4(req, &con.tcon.in.password, p, STR_TERMINATE);
96 p += req_pull_ascii4(req, &con.tcon.in.dev, p, STR_TERMINATE);
98 if (!con.tcon.in.service || !con.tcon.in.password || !con.tcon.in.dev) {
99 req_reply_error(req, NT_STATUS_INVALID_PARAMETER);
104 status = tcon_backend(req, &con);
106 if (!NT_STATUS_IS_OK(status)) {
107 req_reply_error(req, status);
111 /* construct reply */
112 req_setup_reply(req, 2, 0);
114 SSVAL(req->out.vwv, VWV(0), con.tcon.out.max_xmit);
115 SSVAL(req->out.vwv, VWV(1), con.tcon.out.cnum);
116 SSVAL(req->out.hdr, HDR_TID, req->tcon->cnum);
122 /****************************************************************************
123 Reply to a tcon and X.
124 ****************************************************************************/
125 void reply_tcon_and_X(struct smbsrv_request *req)
132 con.tconx.level = RAW_TCON_TCONX;
135 REQ_CHECK_WCT(req, 4);
137 con.tconx.in.flags = SVAL(req->in.vwv, VWV(2));
138 passlen = SVAL(req->in.vwv, VWV(3));
142 if (!req_pull_blob(req, p, passlen, &con.tconx.in.password)) {
143 req_reply_error(req, NT_STATUS_ILL_FORMED_PASSWORD);
148 p += req_pull_string(req, &con.tconx.in.path, p, -1, STR_TERMINATE);
149 p += req_pull_string(req, &con.tconx.in.device, p, -1, STR_ASCII);
151 if (!con.tconx.in.path || !con.tconx.in.device) {
152 req_reply_error(req, NT_STATUS_BAD_DEVICE_TYPE);
157 status = tcon_backend(req, &con);
159 if (!NT_STATUS_IS_OK(status)) {
160 req_reply_error(req, status);
164 /* construct reply - two variants */
165 if (req->smb_conn->negotiate.protocol < PROTOCOL_NT1) {
166 req_setup_reply(req, 2, 0);
168 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
169 SSVAL(req->out.vwv, VWV(1), 0);
171 req_push_str(req, NULL, con.tconx.out.dev_type, -1, STR_TERMINATE|STR_ASCII);
173 req_setup_reply(req, 3, 0);
175 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
176 SSVAL(req->out.vwv, VWV(1), 0);
177 SSVAL(req->out.vwv, VWV(2), con.tconx.out.options);
179 req_push_str(req, NULL, con.tconx.out.dev_type, -1, STR_TERMINATE|STR_ASCII);
180 req_push_str(req, NULL, con.tconx.out.fs_type, -1, STR_TERMINATE);
183 /* set the incoming and outgoing tid to the just created one */
184 SSVAL(req->in.hdr, HDR_TID, con.tconx.out.cnum);
185 SSVAL(req->out.hdr,HDR_TID, con.tconx.out.cnum);
191 /****************************************************************************
192 Reply to an unknown request
193 ****************************************************************************/
194 void reply_unknown(struct smbsrv_request *req)
198 type = CVAL(req->in.hdr, HDR_COM);
200 DEBUG(0,("unknown command type %d (0x%X)\n", type, type));
202 req_reply_dos_error(req, ERRSRV, ERRunknownsmb);
206 /****************************************************************************
207 Reply to an ioctl (async reply)
208 ****************************************************************************/
209 static void reply_ioctl_send(struct smbsrv_request *req)
211 union smb_ioctl *io = req->async_states->private_data;
215 /* the +1 is for nicer alignment */
216 req_setup_reply(req, 8, io->ioctl.out.blob.length+1);
217 SSVAL(req->out.vwv, VWV(1), io->ioctl.out.blob.length);
218 SSVAL(req->out.vwv, VWV(5), io->ioctl.out.blob.length);
219 SSVAL(req->out.vwv, VWV(6), PTR_DIFF(req->out.data, req->out.hdr) + 1);
221 memcpy(req->out.data+1, io->ioctl.out.blob.data, io->ioctl.out.blob.length);
226 /****************************************************************************
228 ****************************************************************************/
229 void reply_ioctl(struct smbsrv_request *req)
234 REQ_CHECK_WCT(req, 3);
235 REQ_TALLOC(io, sizeof(*io));
237 io->ioctl.level = RAW_IOCTL_IOCTL;
238 io->ioctl.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
239 io->ioctl.in.request = IVAL(req->in.vwv, VWV(1));
241 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
242 req->async_states->send_fn = reply_ioctl_send;
243 req->async_states->private_data = io;
246 req->async_states->status = ntvfs_ioctl(req, io);
252 /****************************************************************************
254 ****************************************************************************/
255 void reply_chkpth(struct smbsrv_request *req)
257 struct smb_chkpath *io;
259 REQ_TALLOC(io, sizeof(*io));
261 req_pull_ascii4(req, &io->in.path, req->in.data, STR_TERMINATE);
263 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
264 req->async_states->send_fn = reply_simple_send;
266 req->async_states->status = ntvfs_chkpath(req, io);
271 /****************************************************************************
272 Reply to a getatr (async reply)
273 ****************************************************************************/
274 static void reply_getatr_send(struct smbsrv_request *req)
276 union smb_fileinfo *st = req->async_states->private_data;
280 /* construct reply */
281 req_setup_reply(req, 10, 0);
283 SSVAL(req->out.vwv, VWV(0), st->getattr.out.attrib);
284 srv_push_dos_date3(req->smb_conn, req->out.vwv, VWV(1), st->getattr.out.write_time);
285 SIVAL(req->out.vwv, VWV(3), st->getattr.out.size);
287 REQ_VWV_RESERVED(5, 5);
293 /****************************************************************************
295 ****************************************************************************/
296 void reply_getatr(struct smbsrv_request *req)
298 union smb_fileinfo *st;
300 REQ_TALLOC(st, sizeof(*st));
302 st->getattr.level = RAW_FILEINFO_GETATTR;
305 req_pull_ascii4(req, &st->getattr.in.fname, req->in.data, STR_TERMINATE);
306 if (!st->getattr.in.fname) {
307 req_reply_error(req, NT_STATUS_OBJECT_NAME_NOT_FOUND);
311 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
312 req->async_states->send_fn = reply_getatr_send;
313 req->async_states->private_data = st;
316 req->async_states->status = ntvfs_qpathinfo(req, st);
322 /****************************************************************************
324 ****************************************************************************/
325 void reply_setatr(struct smbsrv_request *req)
327 union smb_setfileinfo *st;
330 REQ_CHECK_WCT(req, 8);
331 REQ_TALLOC(st, sizeof(*st));
333 st->setattr.level = RAW_SFILEINFO_SETATTR;
334 st->setattr.in.attrib = SVAL(req->in.vwv, VWV(0));
335 st->setattr.in.write_time = srv_pull_dos_date3(req->smb_conn, req->in.vwv + VWV(1));
337 req_pull_ascii4(req, &st->setattr.file.fname, req->in.data, STR_TERMINATE);
339 if (!st->setattr.file.fname) {
340 req_reply_error(req, NT_STATUS_OBJECT_NAME_NOT_FOUND);
344 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
345 req->async_states->send_fn = reply_simple_send;
348 req->async_states->status = ntvfs_setpathinfo(req, st);
354 /****************************************************************************
355 Reply to a dskattr (async reply)
356 ****************************************************************************/
357 static void reply_dskattr_send(struct smbsrv_request *req)
359 union smb_fsinfo *fs = req->async_states->private_data;
363 /* construct reply */
364 req_setup_reply(req, 5, 0);
366 SSVAL(req->out.vwv, VWV(0), fs->dskattr.out.units_total);
367 SSVAL(req->out.vwv, VWV(1), fs->dskattr.out.blocks_per_unit);
368 SSVAL(req->out.vwv, VWV(2), fs->dskattr.out.block_size);
369 SSVAL(req->out.vwv, VWV(3), fs->dskattr.out.units_free);
371 REQ_VWV_RESERVED(4, 1);
377 /****************************************************************************
379 ****************************************************************************/
380 void reply_dskattr(struct smbsrv_request *req)
382 union smb_fsinfo *fs;
384 REQ_TALLOC(fs, sizeof(*fs));
386 fs->dskattr.level = RAW_QFS_DSKATTR;
388 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
389 req->async_states->send_fn = reply_dskattr_send;
390 req->async_states->private_data = fs;
393 req->async_states->status = ntvfs_fsinfo(req, fs);
400 /****************************************************************************
401 Reply to an open (async reply)
402 ****************************************************************************/
403 static void reply_open_send(struct smbsrv_request *req)
405 union smb_open *oi = req->async_states->private_data;
409 /* construct reply */
410 req_setup_reply(req, 7, 0);
412 SSVAL(req->out.vwv, VWV(0), oi->openold.out.fnum);
413 SSVAL(req->out.vwv, VWV(1), oi->openold.out.attrib);
414 srv_push_dos_date3(req->smb_conn, req->out.vwv, VWV(2), oi->openold.out.write_time);
415 SIVAL(req->out.vwv, VWV(4), oi->openold.out.size);
416 SSVAL(req->out.vwv, VWV(6), oi->openold.out.rmode);
421 /****************************************************************************
423 ****************************************************************************/
424 void reply_open(struct smbsrv_request *req)
429 REQ_CHECK_WCT(req, 2);
430 REQ_TALLOC(oi, sizeof(*oi));
432 oi->openold.level = RAW_OPEN_OPEN;
433 oi->openold.in.flags = SVAL(req->in.vwv, VWV(0));
434 oi->openold.in.search_attrs = SVAL(req->in.vwv, VWV(1));
436 req_pull_ascii4(req, &oi->openold.in.fname, req->in.data, STR_TERMINATE);
438 if (!oi->openold.in.fname) {
439 req_reply_error(req, NT_STATUS_OBJECT_NAME_NOT_FOUND);
443 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
444 req->async_states->send_fn = reply_open_send;
445 req->async_states->private_data = oi;
448 req->async_states->status = ntvfs_openfile(req, oi);
454 /****************************************************************************
455 Reply to an open and X (async reply)
456 ****************************************************************************/
457 static void reply_open_and_X_send(struct smbsrv_request *req)
459 union smb_open *oi = req->async_states->private_data;
463 /* build the reply */
464 if (oi->openx.in.flags & OPENX_FLAGS_EXTENDED_RETURN) {
465 req_setup_reply(req, 19, 0);
467 req_setup_reply(req, 15, 0);
470 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
471 SSVAL(req->out.vwv, VWV(1), 0);
472 SSVAL(req->out.vwv, VWV(2), oi->openx.out.fnum);
473 SSVAL(req->out.vwv, VWV(3), oi->openx.out.attrib);
474 srv_push_dos_date3(req->smb_conn, req->out.vwv, VWV(4), oi->openx.out.write_time);
475 SIVAL(req->out.vwv, VWV(6), oi->openx.out.size);
476 SSVAL(req->out.vwv, VWV(8), oi->openx.out.access);
477 SSVAL(req->out.vwv, VWV(9), oi->openx.out.ftype);
478 SSVAL(req->out.vwv, VWV(10),oi->openx.out.devstate);
479 SSVAL(req->out.vwv, VWV(11),oi->openx.out.action);
480 SIVAL(req->out.vwv, VWV(12),oi->openx.out.unique_fid);
481 SSVAL(req->out.vwv, VWV(14),0); /* reserved */
482 if (oi->openx.in.flags & OPENX_FLAGS_EXTENDED_RETURN) {
483 SIVAL(req->out.vwv, VWV(15),oi->openx.out.access_mask);
484 REQ_VWV_RESERVED(17, 2);
491 /****************************************************************************
492 Reply to an open and X.
493 ****************************************************************************/
494 void reply_open_and_X(struct smbsrv_request *req)
498 /* parse the request */
499 REQ_CHECK_WCT(req, 15);
500 REQ_TALLOC(oi, sizeof(*oi));
502 oi->openx.level = RAW_OPEN_OPENX;
503 oi->openx.in.flags = SVAL(req->in.vwv, VWV(2));
504 oi->openx.in.open_mode = SVAL(req->in.vwv, VWV(3));
505 oi->openx.in.search_attrs = SVAL(req->in.vwv, VWV(4));
506 oi->openx.in.file_attrs = SVAL(req->in.vwv, VWV(5));
507 oi->openx.in.write_time = srv_pull_dos_date3(req->smb_conn, req->in.vwv + VWV(6));
508 oi->openx.in.open_func = SVAL(req->in.vwv, VWV(8));
509 oi->openx.in.size = IVAL(req->in.vwv, VWV(9));
510 oi->openx.in.timeout = IVAL(req->in.vwv, VWV(11));
512 req_pull_ascii4(req, &oi->openx.in.fname, req->in.data, STR_TERMINATE);
514 if (!oi->openx.in.fname) {
515 req_reply_error(req, NT_STATUS_OBJECT_NAME_NOT_FOUND);
519 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
520 req->async_states->send_fn = reply_open_and_X_send;
521 req->async_states->private_data = oi;
523 /* call the backend */
524 req->async_states->status = ntvfs_openfile(req, oi);
530 /****************************************************************************
531 Reply to a mknew or a create.
532 ****************************************************************************/
533 static void reply_mknew_send(struct smbsrv_request *req)
535 union smb_open *oi = req->async_states->private_data;
539 /* build the reply */
540 req_setup_reply(req, 1, 0);
542 SSVAL(req->out.vwv, VWV(0), oi->mknew.out.fnum);
548 /****************************************************************************
549 Reply to a mknew or a create.
550 ****************************************************************************/
551 void reply_mknew(struct smbsrv_request *req)
555 /* parse the request */
556 REQ_CHECK_WCT(req, 3);
557 REQ_TALLOC(oi, sizeof(*oi));
559 oi->mknew.level = RAW_OPEN_MKNEW;
560 oi->mknew.in.attrib = SVAL(req->in.vwv, VWV(0));
561 oi->mknew.in.write_time = srv_pull_dos_date3(req->smb_conn, req->in.vwv + VWV(1));
563 req_pull_ascii4(req, &oi->mknew.in.fname, req->in.data, STR_TERMINATE);
565 if (!oi->mknew.in.fname) {
566 req_reply_error(req, NT_STATUS_OBJECT_NAME_NOT_FOUND);
570 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
571 req->async_states->send_fn = reply_mknew_send;
572 req->async_states->private_data = oi;
574 /* call the backend */
575 req->async_states->status = ntvfs_openfile(req, oi);
580 /****************************************************************************
581 Reply to a create temporary file (async reply)
582 ****************************************************************************/
583 static void reply_ctemp_send(struct smbsrv_request *req)
585 union smb_open *oi = req->async_states->private_data;
589 /* build the reply */
590 req_setup_reply(req, 1, 0);
592 SSVAL(req->out.vwv, VWV(0), oi->ctemp.out.fnum);
594 /* the returned filename is relative to the directory */
595 req_push_str(req, NULL, oi->ctemp.out.name, -1, STR_TERMINATE);
600 /****************************************************************************
601 Reply to a create temporary file.
602 ****************************************************************************/
603 void reply_ctemp(struct smbsrv_request *req)
607 /* parse the request */
608 REQ_CHECK_WCT(req, 3);
609 REQ_TALLOC(oi, sizeof(*oi));
611 oi->ctemp.level = RAW_OPEN_CTEMP;
612 oi->ctemp.in.attrib = SVAL(req->in.vwv, VWV(0));
613 oi->ctemp.in.write_time = srv_pull_dos_date3(req->smb_conn, req->in.vwv + VWV(1));
615 /* the filename is actually a directory name, the server provides a filename
617 req_pull_ascii4(req, &oi->ctemp.in.directory, req->in.data, STR_TERMINATE);
619 if (!oi->ctemp.in.directory) {
620 req_reply_error(req, NT_STATUS_OBJECT_NAME_NOT_FOUND);
624 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
625 req->async_states->send_fn = reply_ctemp_send;
626 req->async_states->private_data = oi;
628 /* call the backend */
629 req->async_states->status = ntvfs_openfile(req, oi);
635 /****************************************************************************
637 ****************************************************************************/
638 void reply_unlink(struct smbsrv_request *req)
640 struct smb_unlink *unl;
642 /* parse the request */
643 REQ_CHECK_WCT(req, 1);
644 REQ_TALLOC(unl, sizeof(*unl));
646 unl->in.attrib = SVAL(req->in.vwv, VWV(0));
648 req_pull_ascii4(req, &unl->in.pattern, req->in.data, STR_TERMINATE);
650 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
651 req->async_states->send_fn = reply_simple_send;
654 req->async_states->status = ntvfs_unlink(req, unl);
660 /****************************************************************************
661 Reply to a readbraw (core+ protocol).
662 this is a strange packet because it doesn't use a standard SMB header in the reply,
663 only the 4 byte NBT header
664 This command must be replied to synchronously
665 ****************************************************************************/
666 void reply_readbraw(struct smbsrv_request *req)
671 io.readbraw.level = RAW_READ_READBRAW;
673 /* there are two variants, one with 10 and one with 8 command words */
674 if (req->in.wct < 8) {
678 io.readbraw.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
679 io.readbraw.in.offset = IVAL(req->in.vwv, VWV(1));
680 io.readbraw.in.maxcnt = SVAL(req->in.vwv, VWV(3));
681 io.readbraw.in.mincnt = SVAL(req->in.vwv, VWV(4));
682 io.readbraw.in.timeout = IVAL(req->in.vwv, VWV(5));
684 /* the 64 bit variant */
685 if (req->in.wct == 10) {
686 uint32_t offset_high = IVAL(req->in.vwv, VWV(8));
687 io.readbraw.in.offset |= (((off_t)offset_high) << 32);
690 /* before calling the backend we setup the raw buffer. This
691 * saves a copy later */
692 req->out.size = io.readbraw.in.maxcnt + NBT_HDR_SIZE;
693 req->out.buffer = talloc(req, req->out.size);
694 if (req->out.buffer == NULL) {
697 SIVAL(req->out.buffer, 0, 0); /* init NBT header */
699 /* tell the backend where to put the data */
700 io.readbraw.out.data = req->out.buffer + NBT_HDR_SIZE;
702 /* call the backend */
703 status = ntvfs_read(req, &io);
705 if (!NT_STATUS_IS_OK(status)) {
709 req->out.size = io.readbraw.out.nread + NBT_HDR_SIZE;
711 req_send_reply_nosign(req);
715 /* any failure in readbraw is equivalent to reading zero bytes */
717 req->out.buffer = talloc(req, req->out.size);
718 SIVAL(req->out.buffer, 0, 0); /* init NBT header */
720 req_send_reply_nosign(req);
724 /****************************************************************************
725 Reply to a lockread (async reply)
726 ****************************************************************************/
727 static void reply_lockread_send(struct smbsrv_request *req)
729 union smb_read *io = req->async_states->private_data;
734 io->lockread.out.nread = MIN(io->lockread.out.nread,
735 req_max_data(req) - 3);
736 req_grow_data(req, 3 + io->lockread.out.nread);
738 /* construct reply */
739 SSVAL(req->out.vwv, VWV(0), io->lockread.out.nread);
740 REQ_VWV_RESERVED(1, 4);
742 SCVAL(req->out.data, 0, SMB_DATA_BLOCK);
743 SSVAL(req->out.data, 1, io->lockread.out.nread);
749 /****************************************************************************
750 Reply to a lockread (core+ protocol).
751 note that the lock is a write lock, not a read lock!
752 ****************************************************************************/
753 void reply_lockread(struct smbsrv_request *req)
758 REQ_CHECK_WCT(req, 5);
759 REQ_TALLOC(io, sizeof(*io));
761 io->lockread.level = RAW_READ_LOCKREAD;
762 io->lockread.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
763 io->lockread.in.count = SVAL(req->in.vwv, VWV(1));
764 io->lockread.in.offset = IVAL(req->in.vwv, VWV(2));
765 io->lockread.in.remaining = SVAL(req->in.vwv, VWV(4));
767 /* setup the reply packet assuming the maximum possible read */
768 req_setup_reply(req, 5, 3 + io->lockread.in.count);
770 /* tell the backend where to put the data */
771 io->lockread.out.data = req->out.data + 3;
773 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
774 req->async_states->send_fn = reply_lockread_send;
775 req->async_states->private_data = io;
778 req->async_states->status = ntvfs_read(req, io);
785 /****************************************************************************
786 Reply to a read (async reply)
787 ****************************************************************************/
788 static void reply_read_send(struct smbsrv_request *req)
790 union smb_read *io = req->async_states->private_data;
795 io->read.out.nread = MIN(io->read.out.nread,
796 req_max_data(req) - 3);
797 req_grow_data(req, 3 + io->read.out.nread);
799 /* construct reply */
800 SSVAL(req->out.vwv, VWV(0), io->read.out.nread);
801 REQ_VWV_RESERVED(1, 4);
803 SCVAL(req->out.data, 0, SMB_DATA_BLOCK);
804 SSVAL(req->out.data, 1, io->read.out.nread);
809 /****************************************************************************
811 ****************************************************************************/
812 void reply_read(struct smbsrv_request *req)
817 REQ_CHECK_WCT(req, 5);
818 REQ_TALLOC(io, sizeof(*io));
820 io->read.level = RAW_READ_READ;
821 io->read.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
822 io->read.in.count = SVAL(req->in.vwv, VWV(1));
823 io->read.in.offset = IVAL(req->in.vwv, VWV(2));
824 io->read.in.remaining = SVAL(req->in.vwv, VWV(4));
826 /* setup the reply packet assuming the maximum possible read */
827 req_setup_reply(req, 5, 3 + io->read.in.count);
829 /* tell the backend where to put the data */
830 io->read.out.data = req->out.data + 3;
832 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
833 req->async_states->send_fn = reply_read_send;
834 req->async_states->private_data = io;
837 req->async_states->status = ntvfs_read(req, io);
844 /****************************************************************************
845 Reply to a read and X (async reply)
846 ****************************************************************************/
847 static void reply_read_and_X_send(struct smbsrv_request *req)
849 union smb_read *io = req->async_states->private_data;
853 /* readx reply packets can be over-sized */
854 req->control_flags |= REQ_CONTROL_LARGE;
855 if (io->readx.in.maxcnt != 0xFFFF &&
856 io->readx.in.mincnt != 0xFFFF) {
857 req_grow_data(req, 1 + io->readx.out.nread);
858 SCVAL(req->out.data, 0, 0); /* padding */
860 req_grow_data(req, io->readx.out.nread);
863 /* construct reply */
864 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
865 SSVAL(req->out.vwv, VWV(1), 0);
866 SSVAL(req->out.vwv, VWV(2), io->readx.out.remaining);
867 SSVAL(req->out.vwv, VWV(3), io->readx.out.compaction_mode);
868 REQ_VWV_RESERVED(4, 1);
869 SSVAL(req->out.vwv, VWV(5), io->readx.out.nread);
870 SSVAL(req->out.vwv, VWV(6), PTR_DIFF(io->readx.out.data, req->out.hdr));
871 REQ_VWV_RESERVED(7, 5);
876 /****************************************************************************
877 Reply to a read and X.
878 ****************************************************************************/
879 void reply_read_and_X(struct smbsrv_request *req)
884 if (req->in.wct != 12) {
885 REQ_CHECK_WCT(req, 10);
888 REQ_TALLOC(io, sizeof(*io));
890 io->readx.level = RAW_READ_READX;
891 io->readx.in.fnum = req_fnum(req, req->in.vwv, VWV(2));
892 io->readx.in.offset = IVAL(req->in.vwv, VWV(3));
893 io->readx.in.maxcnt = SVAL(req->in.vwv, VWV(5));
894 io->readx.in.mincnt = SVAL(req->in.vwv, VWV(6));
895 io->readx.in.remaining = SVAL(req->in.vwv, VWV(9));
897 if (req->smb_conn->negotiate.client_caps & CAP_LARGE_READX) {
898 uint32_t high_part = IVAL(req->in.vwv, VWV(7));
899 if (high_part == 1) {
900 io->readx.in.maxcnt |= high_part << 16;
904 /* the 64 bit variant */
905 if (req->in.wct == 12) {
906 uint32_t offset_high = IVAL(req->in.vwv, VWV(10));
907 io->readx.in.offset |= (((uint64_t)offset_high) << 32);
910 /* setup the reply packet assuming the maximum possible read */
911 req_setup_reply(req, 12, 1 + io->readx.in.maxcnt);
913 /* tell the backend where to put the data. Notice the pad byte. */
914 if (io->readx.in.maxcnt != 0xFFFF &&
915 io->readx.in.mincnt != 0xFFFF) {
916 io->readx.out.data = req->out.data + 1;
918 io->readx.out.data = req->out.data;
921 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
922 req->async_states->send_fn = reply_read_and_X_send;
923 req->async_states->private_data = io;
926 req->async_states->status = ntvfs_read(req, io);
932 /****************************************************************************
933 Reply to a writebraw (core+ or LANMAN1.0 protocol).
934 ****************************************************************************/
935 void reply_writebraw(struct smbsrv_request *req)
937 /* this one is damn complex - put it off for now */
938 req_reply_error(req, NT_STATUS_FOOBAR);
942 /****************************************************************************
943 Reply to a writeunlock (async reply)
944 ****************************************************************************/
945 static void reply_writeunlock_send(struct smbsrv_request *req)
947 union smb_write *io = req->async_states->private_data;
951 /* construct reply */
952 req_setup_reply(req, 1, 0);
954 SSVAL(req->out.vwv, VWV(0), io->writeunlock.out.nwritten);
959 /****************************************************************************
960 Reply to a writeunlock (core+).
961 ****************************************************************************/
962 void reply_writeunlock(struct smbsrv_request *req)
966 REQ_CHECK_WCT(req, 5);
967 REQ_TALLOC(io, sizeof(*io));
969 io->writeunlock.level = RAW_WRITE_WRITEUNLOCK;
970 io->writeunlock.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
971 io->writeunlock.in.count = SVAL(req->in.vwv, VWV(1));
972 io->writeunlock.in.offset = IVAL(req->in.vwv, VWV(2));
973 io->writeunlock.in.remaining = SVAL(req->in.vwv, VWV(4));
974 io->writeunlock.in.data = req->in.data + 3;
976 /* make sure they gave us the data they promised */
977 if (io->writeunlock.in.count+3 > req->in.data_size) {
978 req_reply_error(req, NT_STATUS_FOOBAR);
982 /* make sure the data block is big enough */
983 if (SVAL(req->in.data, 1) < io->writeunlock.in.count) {
984 req_reply_error(req, NT_STATUS_FOOBAR);
988 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
989 req->async_states->send_fn = reply_writeunlock_send;
990 req->async_states->private_data = io;
993 req->async_states->status = ntvfs_write(req, io);
1000 /****************************************************************************
1001 Reply to a write (async reply)
1002 ****************************************************************************/
1003 static void reply_write_send(struct smbsrv_request *req)
1005 union smb_write *io = req->async_states->private_data;
1009 /* construct reply */
1010 req_setup_reply(req, 1, 0);
1012 SSVAL(req->out.vwv, VWV(0), io->write.out.nwritten);
1014 req_send_reply(req);
1017 /****************************************************************************
1019 ****************************************************************************/
1020 void reply_write(struct smbsrv_request *req)
1022 union smb_write *io;
1024 REQ_CHECK_WCT(req, 5);
1025 REQ_TALLOC(io, sizeof(*io));
1027 io->write.level = RAW_WRITE_WRITE;
1028 io->write.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1029 io->write.in.count = SVAL(req->in.vwv, VWV(1));
1030 io->write.in.offset = IVAL(req->in.vwv, VWV(2));
1031 io->write.in.remaining = SVAL(req->in.vwv, VWV(4));
1032 io->write.in.data = req->in.data + 3;
1034 /* make sure they gave us the data they promised */
1035 if (req_data_oob(req, io->write.in.data, io->write.in.count)) {
1036 req_reply_error(req, NT_STATUS_FOOBAR);
1040 /* make sure the data block is big enough */
1041 if (SVAL(req->in.data, 1) < io->write.in.count) {
1042 req_reply_error(req, NT_STATUS_FOOBAR);
1046 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1047 req->async_states->send_fn = reply_write_send;
1048 req->async_states->private_data = io;
1051 req->async_states->status = ntvfs_write(req, io);
1057 /****************************************************************************
1058 Reply to a write and X (async reply)
1059 ****************************************************************************/
1060 static void reply_write_and_X_send(struct smbsrv_request *req)
1062 union smb_write *io = req->async_states->private_data;
1066 /* construct reply */
1067 req_setup_reply(req, 6, 0);
1069 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
1070 SSVAL(req->out.vwv, VWV(1), 0);
1071 SSVAL(req->out.vwv, VWV(2), io->writex.out.nwritten & 0xFFFF);
1072 SSVAL(req->out.vwv, VWV(3), io->writex.out.remaining);
1073 SSVAL(req->out.vwv, VWV(4), io->writex.out.nwritten >> 16);
1074 REQ_VWV_RESERVED(5, 1);
1079 /****************************************************************************
1080 Reply to a write and X.
1081 ****************************************************************************/
1082 void reply_write_and_X(struct smbsrv_request *req)
1084 union smb_write *io;
1086 if (req->in.wct != 14) {
1087 REQ_CHECK_WCT(req, 12);
1090 REQ_TALLOC(io, sizeof(*io));
1092 io->writex.level = RAW_WRITE_WRITEX;
1093 io->writex.in.fnum = req_fnum(req, req->in.vwv, VWV(2));
1094 io->writex.in.offset = IVAL(req->in.vwv, VWV(3));
1095 io->writex.in.wmode = SVAL(req->in.vwv, VWV(7));
1096 io->writex.in.remaining = SVAL(req->in.vwv, VWV(8));
1097 io->writex.in.count = SVAL(req->in.vwv, VWV(10));
1098 io->writex.in.data = req->in.hdr + SVAL(req->in.vwv, VWV(11));
1100 if (req->in.wct == 14) {
1101 uint32_t offset_high = IVAL(req->in.vwv, VWV(12));
1102 uint16_t count_high = SVAL(req->in.vwv, VWV(9));
1103 io->writex.in.offset |= (((uint64_t)offset_high) << 32);
1104 io->writex.in.count |= ((uint32_t)count_high) << 16;
1107 /* make sure the data is in bounds */
1108 if (req_data_oob(req, io->writex.in.data, io->writex.in.count)) {
1109 req_reply_error(req, NT_STATUS_FOOBAR);
1113 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1114 req->async_states->send_fn = reply_write_and_X_send;
1115 req->async_states->private_data = io;
1118 req->async_states->status = ntvfs_write(req, io);
1124 /****************************************************************************
1125 Reply to a lseek (async reply)
1126 ****************************************************************************/
1127 static void reply_lseek_send(struct smbsrv_request *req)
1129 struct smb_seek *io = req->async_states->private_data;
1133 /* construct reply */
1134 req_setup_reply(req, 2, 0);
1136 SIVALS(req->out.vwv, VWV(0), io->out.offset);
1138 req_send_reply(req);
1141 /****************************************************************************
1143 ****************************************************************************/
1144 void reply_lseek(struct smbsrv_request *req)
1146 struct smb_seek *io;
1148 REQ_CHECK_WCT(req, 4);
1149 REQ_TALLOC(io, sizeof(*io));
1151 io->in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1152 io->in.mode = SVAL(req->in.vwv, VWV(1));
1153 io->in.offset = IVALS(req->in.vwv, VWV(2));
1155 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1156 req->async_states->send_fn = reply_lseek_send;
1157 req->async_states->private_data = io;
1160 req->async_states->status = ntvfs_seek(req, io);
1165 /****************************************************************************
1167 ****************************************************************************/
1168 void reply_flush(struct smbsrv_request *req)
1170 struct smb_flush *io;
1173 REQ_CHECK_WCT(req, 1);
1174 REQ_TALLOC(io, sizeof(*io));
1176 io->in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1178 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1179 req->async_states->send_fn = reply_simple_send;
1182 req->async_states->status = ntvfs_flush(req, io);
1188 /****************************************************************************
1189 Reply to a exit. This closes all files open by a smbpid
1190 ****************************************************************************/
1191 void reply_exit(struct smbsrv_request *req)
1194 struct smbsrv_tcon *tcon;
1195 REQ_CHECK_WCT(req, 0);
1197 for (tcon=req->smb_conn->tree.tcons;tcon;tcon=tcon->next) {
1199 status = ntvfs_exit(req);
1201 if (!NT_STATUS_IS_OK(status)) {
1202 req_reply_error(req, status);
1207 req_setup_reply(req, 0, 0);
1208 req_send_reply(req);
1212 /****************************************************************************
1215 Note that this has to deal with closing a directory opened by NT SMB's.
1216 ****************************************************************************/
1217 void reply_close(struct smbsrv_request *req)
1219 union smb_close *io;
1222 REQ_CHECK_WCT(req, 3);
1223 REQ_TALLOC(io, sizeof(*io));
1225 io->close.level = RAW_CLOSE_CLOSE;
1226 io->close.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1227 io->close.in.write_time = srv_pull_dos_date3(req->smb_conn, req->in.vwv + VWV(1));
1229 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1230 req->async_states->send_fn = reply_simple_send;
1233 req->async_states->status = ntvfs_close(req, io);
1240 /****************************************************************************
1241 Reply to a writeclose (async reply)
1242 ****************************************************************************/
1243 static void reply_writeclose_send(struct smbsrv_request *req)
1245 union smb_write *io = req->async_states->private_data;
1249 /* construct reply */
1250 req_setup_reply(req, 1, 0);
1252 SSVAL(req->out.vwv, VWV(0), io->write.out.nwritten);
1254 req_send_reply(req);
1257 /****************************************************************************
1258 Reply to a writeclose (Core+ protocol).
1259 ****************************************************************************/
1260 void reply_writeclose(struct smbsrv_request *req)
1262 union smb_write *io;
1264 /* this one is pretty weird - the wct can be 6 or 12 */
1265 if (req->in.wct != 12) {
1266 REQ_CHECK_WCT(req, 6);
1269 REQ_TALLOC(io, sizeof(*io));
1271 io->writeclose.level = RAW_WRITE_WRITECLOSE;
1272 io->writeclose.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1273 io->writeclose.in.count = SVAL(req->in.vwv, VWV(1));
1274 io->writeclose.in.offset = IVAL(req->in.vwv, VWV(2));
1275 io->writeclose.in.mtime = srv_pull_dos_date3(req->smb_conn, req->in.vwv + VWV(4));
1276 io->writeclose.in.data = req->in.data + 1;
1278 /* make sure they gave us the data they promised */
1279 if (req_data_oob(req, io->writeclose.in.data, io->writeclose.in.count)) {
1280 req_reply_error(req, NT_STATUS_FOOBAR);
1284 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1285 req->async_states->send_fn = reply_writeclose_send;
1286 req->async_states->private_data = io;
1289 req->async_states->status = ntvfs_write(req, io);
1294 /****************************************************************************
1296 ****************************************************************************/
1297 void reply_lock(struct smbsrv_request *req)
1299 union smb_lock *lck;
1302 REQ_CHECK_WCT(req, 5);
1303 REQ_TALLOC(lck, sizeof(*lck));
1305 lck->lock.level = RAW_LOCK_LOCK;
1306 lck->lock.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1307 lck->lock.in.count = IVAL(req->in.vwv, VWV(1));
1308 lck->lock.in.offset = IVAL(req->in.vwv, VWV(3));
1310 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1311 req->async_states->send_fn = reply_simple_send;
1314 req->async_states->status = ntvfs_lock(req, lck);
1320 /****************************************************************************
1322 ****************************************************************************/
1323 void reply_unlock(struct smbsrv_request *req)
1325 union smb_lock *lck;
1328 REQ_CHECK_WCT(req, 5);
1329 REQ_TALLOC(lck, sizeof(*lck));
1331 lck->unlock.level = RAW_LOCK_UNLOCK;
1332 lck->unlock.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1333 lck->unlock.in.count = IVAL(req->in.vwv, VWV(1));
1334 lck->unlock.in.offset = IVAL(req->in.vwv, VWV(3));
1336 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1337 req->async_states->send_fn = reply_simple_send;
1340 req->async_states->status = ntvfs_lock(req, lck);
1346 /****************************************************************************
1348 ****************************************************************************/
1349 void reply_tdis(struct smbsrv_request *req)
1351 REQ_CHECK_WCT(req, 0);
1353 close_cnum(req->tcon);
1355 /* construct reply */
1356 req_setup_reply(req, 0, 0);
1358 req_send_reply(req);
1362 /****************************************************************************
1363 Reply to a echo. This is one of the few calls that is handled directly (the
1364 backends don't see it at all)
1365 ****************************************************************************/
1366 void reply_echo(struct smbsrv_request *req)
1371 REQ_CHECK_WCT(req, 0);
1373 count = SVAL(req->in.vwv, VWV(0));
1375 req_setup_reply(req, 1, req->in.data_size);
1377 memcpy(req->out.data, req->in.data, req->in.data_size);
1379 for (i=1; i <= count;i++) {
1380 struct smbsrv_request *this_req;
1383 this_req = req_setup_secondary(req);
1388 SSVAL(this_req->out.vwv, VWV(0), i);
1389 req_send_reply(this_req);
1395 /****************************************************************************
1396 Reply to a printopen (async reply)
1397 ****************************************************************************/
1398 static void reply_printopen_send(struct smbsrv_request *req)
1400 union smb_open *oi = req->async_states->private_data;
1404 /* construct reply */
1405 req_setup_reply(req, 1, 0);
1407 SSVAL(req->out.vwv, VWV(0), oi->openold.out.fnum);
1409 req_send_reply(req);
1412 /****************************************************************************
1413 Reply to a printopen.
1414 ****************************************************************************/
1415 void reply_printopen(struct smbsrv_request *req)
1420 REQ_CHECK_WCT(req, 2);
1421 REQ_TALLOC(oi, sizeof(*oi));
1423 oi->splopen.level = RAW_OPEN_SPLOPEN;
1424 oi->splopen.in.setup_length = SVAL(req->in.vwv, VWV(0));
1425 oi->splopen.in.mode = SVAL(req->in.vwv, VWV(1));
1427 req_pull_ascii4(req, &oi->splopen.in.ident, req->in.data, STR_TERMINATE);
1429 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1430 req->async_states->send_fn = reply_printopen_send;
1431 req->async_states->private_data = oi;
1434 req->async_states->status = ntvfs_openfile(req, oi);
1439 /****************************************************************************
1440 Reply to a printclose.
1441 ****************************************************************************/
1442 void reply_printclose(struct smbsrv_request *req)
1444 union smb_close *io;
1447 REQ_CHECK_WCT(req, 3);
1448 REQ_TALLOC(io, sizeof(*io));
1450 io->splclose.level = RAW_CLOSE_SPLCLOSE;
1451 io->splclose.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1453 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1454 req->async_states->send_fn = reply_simple_send;
1457 req->async_states->status = ntvfs_close(req, io);
1462 /****************************************************************************
1463 Reply to a printqueue.
1464 ****************************************************************************/
1465 void reply_printqueue_send(struct smbsrv_request *req)
1467 union smb_lpq *lpq = req->async_states->private_data;
1469 const uint_t el_size = 28;
1473 /* construct reply */
1474 req_setup_reply(req, 2, 0);
1476 /* truncate the returned list to fit in the negotiated buffer size */
1477 maxcount = (req_max_data(req) - 3) / el_size;
1478 if (maxcount < lpq->retq.out.count) {
1479 lpq->retq.out.count = maxcount;
1482 /* setup enough space in the reply */
1483 req_grow_data(req, 3 + el_size*lpq->retq.out.count);
1485 /* and fill it in */
1486 SSVAL(req->out.vwv, VWV(0), lpq->retq.out.count);
1487 SSVAL(req->out.vwv, VWV(1), lpq->retq.out.restart_idx);
1489 SCVAL(req->out.data, 0, SMB_DATA_BLOCK);
1490 SSVAL(req->out.data, 1, el_size*lpq->retq.out.count);
1492 req->out.ptr = req->out.data + 3;
1494 for (i=0;i<lpq->retq.out.count;i++) {
1495 srv_push_dos_date2(req->smb_conn, req->out.ptr, 0 , lpq->retq.out.queue[i].time);
1496 SCVAL(req->out.ptr, 4, lpq->retq.out.queue[i].status);
1497 SSVAL(req->out.ptr, 5, lpq->retq.out.queue[i].job);
1498 SIVAL(req->out.ptr, 7, lpq->retq.out.queue[i].size);
1499 SCVAL(req->out.ptr, 11, 0); /* reserved */
1500 req_push_str(req, req->out.ptr+12, lpq->retq.out.queue[i].user, 16, STR_ASCII);
1501 req->out.ptr += el_size;
1504 req_send_reply(req);
1507 /****************************************************************************
1508 Reply to a printqueue.
1509 ****************************************************************************/
1510 void reply_printqueue(struct smbsrv_request *req)
1515 REQ_CHECK_WCT(req, 2);
1516 REQ_TALLOC(lpq, sizeof(*lpq));
1518 lpq->retq.level = RAW_LPQ_RETQ;
1519 lpq->retq.in.maxcount = SVAL(req->in.vwv, VWV(0));
1520 lpq->retq.in.startidx = SVAL(req->in.vwv, VWV(1));
1522 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1523 req->async_states->send_fn = reply_printqueue_send;
1524 req->async_states->private_data = lpq;
1527 req->async_states->status = ntvfs_lpq(req, lpq);
1533 /****************************************************************************
1534 Reply to a printwrite.
1535 ****************************************************************************/
1536 void reply_printwrite(struct smbsrv_request *req)
1538 union smb_write *io;
1541 REQ_CHECK_WCT(req, 1);
1542 REQ_TALLOC(io, sizeof(*io));
1544 io->splwrite.level = RAW_WRITE_SPLWRITE;
1546 if (req->in.data_size < 3) {
1547 req_reply_error(req, NT_STATUS_FOOBAR);
1551 io->splwrite.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1552 io->splwrite.in.count = SVAL(req->in.data, 1);
1553 io->splwrite.in.data = req->in.data + 3;
1555 /* make sure they gave us the data they promised */
1556 if (req_data_oob(req, io->splwrite.in.data, io->splwrite.in.count)) {
1557 req_reply_error(req, NT_STATUS_FOOBAR);
1561 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1562 req->async_states->send_fn = reply_simple_send;
1565 req->async_states->status = ntvfs_write(req, io);
1571 /****************************************************************************
1573 ****************************************************************************/
1574 void reply_mkdir(struct smbsrv_request *req)
1576 union smb_mkdir *io;
1578 /* parse the request */
1579 REQ_CHECK_WCT(req, 0);
1580 REQ_TALLOC(io, sizeof(*io));
1582 io->generic.level = RAW_MKDIR_MKDIR;
1583 req_pull_ascii4(req, &io->mkdir.in.path, req->in.data, STR_TERMINATE);
1585 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1586 req->async_states->send_fn = reply_simple_send;
1589 req->async_states->status = ntvfs_mkdir(req, io);
1595 /****************************************************************************
1597 ****************************************************************************/
1598 void reply_rmdir(struct smbsrv_request *req)
1600 struct smb_rmdir *io;
1602 /* parse the request */
1603 REQ_CHECK_WCT(req, 0);
1604 REQ_TALLOC(io, sizeof(*io));
1606 req_pull_ascii4(req, &io->in.path, req->in.data, STR_TERMINATE);
1608 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1609 req->async_states->send_fn = reply_simple_send;
1612 req->async_states->status = ntvfs_rmdir(req, io);
1618 /****************************************************************************
1620 ****************************************************************************/
1621 void reply_mv(struct smbsrv_request *req)
1623 union smb_rename *io;
1626 /* parse the request */
1627 REQ_CHECK_WCT(req, 1);
1628 REQ_TALLOC(io, sizeof(*io));
1630 io->generic.level = RAW_RENAME_RENAME;
1631 io->rename.in.attrib = SVAL(req->in.vwv, VWV(0));
1634 p += req_pull_ascii4(req, &io->rename.in.pattern1, p, STR_TERMINATE);
1635 p += req_pull_ascii4(req, &io->rename.in.pattern2, p, STR_TERMINATE);
1637 if (!io->rename.in.pattern1 || !io->rename.in.pattern2) {
1638 req_reply_error(req, NT_STATUS_FOOBAR);
1642 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1643 req->async_states->send_fn = reply_simple_send;
1646 req->async_states->status = ntvfs_rename(req, io);
1652 /****************************************************************************
1653 Reply to an NT rename.
1654 ****************************************************************************/
1655 void reply_ntrename(struct smbsrv_request *req)
1657 union smb_rename *io;
1660 /* parse the request */
1661 REQ_CHECK_WCT(req, 4);
1662 REQ_TALLOC(io, sizeof(*io));
1664 io->generic.level = RAW_RENAME_NTRENAME;
1665 io->ntrename.in.attrib = SVAL(req->in.vwv, VWV(0));
1666 io->ntrename.in.flags = SVAL(req->in.vwv, VWV(1));
1667 io->ntrename.in.cluster_size = IVAL(req->in.vwv, VWV(2));
1670 p += req_pull_ascii4(req, &io->ntrename.in.old_name, p, STR_TERMINATE);
1671 p += req_pull_ascii4(req, &io->ntrename.in.new_name, p, STR_TERMINATE);
1673 if (!io->ntrename.in.old_name || !io->ntrename.in.new_name) {
1674 req_reply_error(req, NT_STATUS_FOOBAR);
1678 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1679 req->async_states->send_fn = reply_simple_send;
1682 req->async_states->status = ntvfs_rename(req, io);
1687 /****************************************************************************
1688 Reply to a file copy (async reply)
1689 ****************************************************************************/
1690 static void reply_copy_send(struct smbsrv_request *req)
1692 struct smb_copy *cp = req->async_states->private_data;
1696 /* build the reply */
1697 req_setup_reply(req, 1, 0);
1699 SSVAL(req->out.vwv, VWV(0), cp->out.count);
1701 req_send_reply(req);
1704 /****************************************************************************
1705 Reply to a file copy.
1706 ****************************************************************************/
1707 void reply_copy(struct smbsrv_request *req)
1709 struct smb_copy *cp;
1713 REQ_CHECK_WCT(req, 3);
1714 REQ_TALLOC(cp, sizeof(*cp));
1716 cp->in.tid2 = SVAL(req->in.vwv, VWV(0));
1717 cp->in.ofun = SVAL(req->in.vwv, VWV(1));
1718 cp->in.flags = SVAL(req->in.vwv, VWV(2));
1721 p += req_pull_ascii4(req, &cp->in.path1, p, STR_TERMINATE);
1722 p += req_pull_ascii4(req, &cp->in.path2, p, STR_TERMINATE);
1724 if (!cp->in.path1 || !cp->in.path2) {
1725 req_reply_error(req, NT_STATUS_FOOBAR);
1729 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1730 req->async_states->send_fn = reply_copy_send;
1731 req->async_states->private_data = cp;
1734 req->async_states->status = ntvfs_copy(req, cp);
1739 /****************************************************************************
1740 Reply to a lockingX request (async send)
1741 ****************************************************************************/
1742 static void reply_lockingX_send(struct smbsrv_request *req)
1744 union smb_lock *lck = req->async_states->private_data;
1748 /* if it was an oplock break ack then we only send a reply if
1749 there was an error */
1750 if (lck->lockx.in.ulock_cnt + lck->lockx.in.lock_cnt == 0) {
1755 /* construct reply */
1756 req_setup_reply(req, 2, 0);
1758 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
1759 SSVAL(req->out.vwv, VWV(1), 0);
1765 /****************************************************************************
1766 Reply to a lockingX request.
1767 ****************************************************************************/
1768 void reply_lockingX(struct smbsrv_request *req)
1770 union smb_lock *lck;
1771 uint_t total_locks, i;
1776 REQ_CHECK_WCT(req, 8);
1777 REQ_TALLOC(lck, sizeof(*lck));
1779 lck->lockx.level = RAW_LOCK_LOCKX;
1780 lck->lockx.in.fnum = req_fnum(req, req->in.vwv, VWV(2));
1781 lck->lockx.in.mode = SVAL(req->in.vwv, VWV(3));
1782 lck->lockx.in.timeout = IVAL(req->in.vwv, VWV(4));
1783 lck->lockx.in.ulock_cnt = SVAL(req->in.vwv, VWV(6));
1784 lck->lockx.in.lock_cnt = SVAL(req->in.vwv, VWV(7));
1786 total_locks = lck->lockx.in.ulock_cnt + lck->lockx.in.lock_cnt;
1788 /* there are two variants, one with 64 bit offsets and counts */
1789 if (lck->lockx.in.mode & LOCKING_ANDX_LARGE_FILES) {
1795 /* make sure we got the promised data */
1796 if (req_data_oob(req, req->in.data, total_locks * lck_size)) {
1797 req_reply_error(req, NT_STATUS_FOOBAR);
1801 /* allocate the locks array */
1803 REQ_TALLOC(lck->lockx.in.locks, total_locks * sizeof(lck->lockx.in.locks[0]));
1808 /* construct the locks array */
1809 for (i=0;i<total_locks;i++) {
1810 uint32_t ofs_high=0, count_high=0;
1812 lck->lockx.in.locks[i].pid = SVAL(p, 0);
1814 if (lck->lockx.in.mode & LOCKING_ANDX_LARGE_FILES) {
1815 ofs_high = IVAL(p, 4);
1816 lck->lockx.in.locks[i].offset = IVAL(p, 8);
1817 count_high = IVAL(p, 12);
1818 lck->lockx.in.locks[i].count = IVAL(p, 16);
1820 lck->lockx.in.locks[i].offset = IVAL(p, 2);
1821 lck->lockx.in.locks[i].count = IVAL(p, 6);
1823 if (ofs_high != 0 || count_high != 0) {
1824 lck->lockx.in.locks[i].count |= ((uint64_t)count_high) << 32;
1825 lck->lockx.in.locks[i].offset |= ((uint64_t)ofs_high) << 32;
1830 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1831 req->async_states->send_fn = reply_lockingX_send;
1832 req->async_states->private_data = lck;
1835 req->async_states->status = ntvfs_lock(req, lck);
1840 /****************************************************************************
1841 Reply to a SMBreadbmpx (read block multiplex) request.
1842 ****************************************************************************/
1843 void reply_readbmpx(struct smbsrv_request *req)
1845 /* tell the client to not use a multiplexed read - its too broken to use */
1846 req_reply_dos_error(req, ERRSRV, ERRuseSTD);
1850 /****************************************************************************
1851 Reply to a SMBsetattrE.
1852 ****************************************************************************/
1853 void reply_setattrE(struct smbsrv_request *req)
1855 union smb_setfileinfo *info;
1858 REQ_CHECK_WCT(req, 7);
1859 REQ_TALLOC(info, sizeof(*info));
1861 info->setattre.level = RAW_SFILEINFO_SETATTRE;
1862 info->setattre.file.fnum = req_fnum(req, req->in.vwv, VWV(0));
1863 info->setattre.in.create_time = srv_pull_dos_date2(req->smb_conn, req->in.vwv + VWV(1));
1864 info->setattre.in.access_time = srv_pull_dos_date2(req->smb_conn, req->in.vwv + VWV(3));
1865 info->setattre.in.write_time = srv_pull_dos_date2(req->smb_conn, req->in.vwv + VWV(5));
1867 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1868 req->async_states->send_fn = reply_simple_send;
1871 req->async_states->status = ntvfs_setfileinfo(req, info);
1877 /****************************************************************************
1878 Reply to a SMBwritebmpx (write block multiplex primary) request.
1879 ****************************************************************************/
1880 void reply_writebmpx(struct smbsrv_request *req)
1882 /* we will need to implement this one for OS/2, but right now I can't be bothered */
1883 req_reply_error(req, NT_STATUS_FOOBAR);
1887 /****************************************************************************
1888 Reply to a SMBwritebs (write block multiplex secondary) request.
1889 ****************************************************************************/
1890 void reply_writebs(struct smbsrv_request *req)
1892 /* see reply_writebmpx */
1893 req_reply_error(req, NT_STATUS_FOOBAR);
1898 /****************************************************************************
1899 Reply to a SMBgetattrE (async reply)
1900 ****************************************************************************/
1901 static void reply_getattrE_send(struct smbsrv_request *req)
1903 union smb_fileinfo *info = req->async_states->private_data;
1908 req_setup_reply(req, 11, 0);
1910 srv_push_dos_date2(req->smb_conn, req->out.vwv, VWV(0), info->getattre.out.create_time);
1911 srv_push_dos_date2(req->smb_conn, req->out.vwv, VWV(2), info->getattre.out.access_time);
1912 srv_push_dos_date2(req->smb_conn, req->out.vwv, VWV(4), info->getattre.out.write_time);
1913 SIVAL(req->out.vwv, VWV(6), info->getattre.out.size);
1914 SIVAL(req->out.vwv, VWV(8), info->getattre.out.alloc_size);
1915 SSVAL(req->out.vwv, VWV(10), info->getattre.out.attrib);
1917 req_send_reply(req);
1920 /****************************************************************************
1921 Reply to a SMBgetattrE.
1922 ****************************************************************************/
1923 void reply_getattrE(struct smbsrv_request *req)
1925 union smb_fileinfo *info;
1928 REQ_CHECK_WCT(req, 1);
1929 REQ_TALLOC(info, sizeof(*info));
1931 info->getattr.level = RAW_FILEINFO_GETATTRE;
1932 info->getattr.in.fnum = req_fnum(req, req->in.vwv, VWV(0));
1934 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
1935 req->async_states->send_fn = reply_getattrE_send;
1936 req->async_states->private_data = info;
1939 req->async_states->status = ntvfs_qfileinfo(req, info);
1945 /****************************************************************************
1946 reply to an old style session setup command
1947 ****************************************************************************/
1948 static void reply_sesssetup_old(struct smbsrv_request *req)
1951 union smb_sesssetup sess;
1955 sess.old.level = RAW_SESSSETUP_OLD;
1958 sess.old.in.bufsize = SVAL(req->in.vwv, VWV(2));
1959 sess.old.in.mpx_max = SVAL(req->in.vwv, VWV(3));
1960 sess.old.in.vc_num = SVAL(req->in.vwv, VWV(4));
1961 sess.old.in.sesskey = IVAL(req->in.vwv, VWV(5));
1962 passlen = SVAL(req->in.vwv, VWV(7));
1964 /* check the request isn't malformed */
1965 if (req_data_oob(req, req->in.data, passlen)) {
1966 req_reply_error(req, NT_STATUS_FOOBAR);
1971 if (!req_pull_blob(req, p, passlen, &sess.old.in.password)) {
1972 req_reply_error(req, NT_STATUS_FOOBAR);
1977 p += req_pull_string(req, &sess.old.in.user, p, -1, STR_TERMINATE);
1978 p += req_pull_string(req, &sess.old.in.domain, p, -1, STR_TERMINATE);
1979 p += req_pull_string(req, &sess.old.in.os, p, -1, STR_TERMINATE);
1980 p += req_pull_string(req, &sess.old.in.lanman, p, -1, STR_TERMINATE);
1982 /* call the generic handler */
1983 status = sesssetup_backend(req, &sess);
1985 if (!NT_STATUS_IS_OK(status)) {
1986 req_reply_error(req, status);
1990 /* construct reply */
1991 req_setup_reply(req, 3, 0);
1993 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
1994 SSVAL(req->out.vwv, VWV(1), 0);
1995 SSVAL(req->out.vwv, VWV(2), sess.old.out.action);
1997 SSVAL(req->out.hdr, HDR_UID, sess.old.out.vuid);
2003 /****************************************************************************
2004 reply to an NT1 style session setup command
2005 ****************************************************************************/
2006 static void reply_sesssetup_nt1(struct smbsrv_request *req)
2009 union smb_sesssetup sess;
2011 uint16_t passlen1, passlen2;
2013 sess.nt1.level = RAW_SESSSETUP_NT1;
2016 sess.nt1.in.bufsize = SVAL(req->in.vwv, VWV(2));
2017 sess.nt1.in.mpx_max = SVAL(req->in.vwv, VWV(3));
2018 sess.nt1.in.vc_num = SVAL(req->in.vwv, VWV(4));
2019 sess.nt1.in.sesskey = IVAL(req->in.vwv, VWV(5));
2020 passlen1 = SVAL(req->in.vwv, VWV(7));
2021 passlen2 = SVAL(req->in.vwv, VWV(8));
2022 sess.nt1.in.capabilities = IVAL(req->in.vwv, VWV(11));
2024 /* check the request isn't malformed */
2025 if (req_data_oob(req, req->in.data, passlen1) ||
2026 req_data_oob(req, req->in.data + passlen1, passlen2)) {
2027 req_reply_error(req, NT_STATUS_FOOBAR);
2032 if (!req_pull_blob(req, p, passlen1, &sess.nt1.in.password1)) {
2033 req_reply_error(req, NT_STATUS_FOOBAR);
2037 if (!req_pull_blob(req, p, passlen2, &sess.nt1.in.password2)) {
2038 req_reply_error(req, NT_STATUS_FOOBAR);
2043 p += req_pull_string(req, &sess.nt1.in.user, p, -1, STR_TERMINATE);
2044 p += req_pull_string(req, &sess.nt1.in.domain, p, -1, STR_TERMINATE);
2045 p += req_pull_string(req, &sess.nt1.in.os, p, -1, STR_TERMINATE);
2046 p += req_pull_string(req, &sess.nt1.in.lanman, p, -1, STR_TERMINATE);
2048 /* call the generic handler */
2049 status = sesssetup_backend(req, &sess);
2051 if (!NT_STATUS_IS_OK(status)) {
2052 req_reply_error(req, status);
2056 /* construct reply */
2057 req_setup_reply(req, 3, 0);
2059 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
2060 SSVAL(req->out.vwv, VWV(1), 0);
2061 SSVAL(req->out.vwv, VWV(2), sess.nt1.out.action);
2063 SSVAL(req->out.hdr, HDR_UID, sess.nt1.out.vuid);
2065 req_push_str(req, NULL, sess.nt1.out.os, -1, STR_TERMINATE);
2066 req_push_str(req, NULL, sess.nt1.out.lanman, -1, STR_TERMINATE);
2067 req_push_str(req, NULL, sess.nt1.out.domain, -1, STR_TERMINATE);
2073 /****************************************************************************
2074 reply to an SPNEGO style session setup command
2075 ****************************************************************************/
2076 static void reply_sesssetup_spnego(struct smbsrv_request *req)
2079 union smb_sesssetup sess;
2083 sess.spnego.level = RAW_SESSSETUP_SPNEGO;
2086 sess.spnego.in.bufsize = SVAL(req->in.vwv, VWV(2));
2087 sess.spnego.in.mpx_max = SVAL(req->in.vwv, VWV(3));
2088 sess.spnego.in.vc_num = SVAL(req->in.vwv, VWV(4));
2089 sess.spnego.in.sesskey = IVAL(req->in.vwv, VWV(5));
2090 blob_len = SVAL(req->in.vwv, VWV(7));
2091 sess.spnego.in.capabilities = IVAL(req->in.vwv, VWV(10));
2094 if (!req_pull_blob(req, p, blob_len, &sess.spnego.in.secblob)) {
2095 req_reply_error(req, NT_STATUS_FOOBAR);
2100 p += req_pull_string(req, &sess.spnego.in.os, p, -1, STR_TERMINATE);
2101 p += req_pull_string(req, &sess.spnego.in.lanman, p, -1, STR_TERMINATE);
2102 p += req_pull_string(req, &sess.spnego.in.domain, p, -1, STR_TERMINATE);
2104 /* call the generic handler */
2105 status = sesssetup_backend(req, &sess);
2107 if (!NT_STATUS_IS_OK(status) &&
2108 !NT_STATUS_EQUAL(status, NT_STATUS_MORE_PROCESSING_REQUIRED)) {
2109 req_reply_error(req, status);
2113 /* construct reply */
2114 req_setup_reply(req, 4, sess.spnego.out.secblob.length);
2116 if (NT_STATUS_EQUAL(status, NT_STATUS_MORE_PROCESSING_REQUIRED)) {
2117 req_setup_error(req, status);
2120 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
2121 SSVAL(req->out.vwv, VWV(1), 0);
2122 SSVAL(req->out.vwv, VWV(2), sess.spnego.out.action);
2123 SSVAL(req->out.vwv, VWV(3), sess.spnego.out.secblob.length);
2125 SSVAL(req->out.hdr, HDR_UID, sess.spnego.out.vuid);
2127 memcpy(req->out.data, sess.spnego.out.secblob.data, sess.spnego.out.secblob.length);
2128 req_push_str(req, NULL, sess.spnego.out.os, -1, STR_TERMINATE);
2129 req_push_str(req, NULL, sess.spnego.out.lanman, -1, STR_TERMINATE);
2130 req_push_str(req, NULL, sess.spnego.out.domain, -1, STR_TERMINATE);
2136 /****************************************************************************
2137 reply to a session setup command
2138 ****************************************************************************/
2139 void reply_sesssetup(struct smbsrv_request *req)
2141 switch (req->in.wct) {
2143 /* a pre-NT1 call */
2144 reply_sesssetup_old(req);
2148 reply_sesssetup_nt1(req);
2152 reply_sesssetup_spnego(req);
2156 /* unsupported variant */
2157 req_reply_error(req, NT_STATUS_FOOBAR);
2160 /****************************************************************************
2161 Reply to a SMBulogoffX.
2162 ****************************************************************************/
2163 void reply_ulogoffX(struct smbsrv_request *req)
2165 struct smbsrv_tcon *tcon;
2169 vuid = SVAL(req->in.hdr, HDR_UID);
2171 /* in user level security we are supposed to close any files
2172 open by this user on all open tree connects */
2173 if ((vuid != 0) && (lp_security() != SEC_SHARE)) {
2174 for (tcon=req->smb_conn->tree.tcons;tcon;tcon=tcon->next) {
2176 status = ntvfs_logoff(req);
2178 if (!NT_STATUS_IS_OK(status)) {
2179 req_reply_error(req, status);
2185 smbsrv_invalidate_vuid(req->smb_conn, vuid);
2187 req_setup_reply(req, 2, 0);
2189 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
2190 SSVAL(req->out.vwv, VWV(1), 0);
2196 /****************************************************************************
2197 Reply to an SMBfindclose request
2198 ****************************************************************************/
2199 void reply_findclose(struct smbsrv_request *req)
2202 union smb_search_close io;
2204 io.findclose.level = RAW_FINDCLOSE_FINDCLOSE;
2207 REQ_CHECK_WCT(req, 1);
2209 io.findclose.in.handle = SVAL(req->in.vwv, VWV(0));
2212 status = ntvfs_search_close(req, &io);
2214 if (!NT_STATUS_IS_OK(status)) {
2215 req_reply_error(req, status);
2219 /* construct reply */
2220 req_setup_reply(req, 0, 0);
2222 req_send_reply(req);
2225 /****************************************************************************
2226 Reply to an SMBfindnclose request
2227 ****************************************************************************/
2228 void reply_findnclose(struct smbsrv_request *req)
2230 req_reply_error(req, NT_STATUS_FOOBAR);
2234 /****************************************************************************
2235 Reply to an SMBntcreateX request (async send)
2236 ****************************************************************************/
2237 static void reply_ntcreate_and_X_send(struct smbsrv_request *req)
2239 union smb_open *io = req->async_states->private_data;
2243 /* construct reply */
2244 req_setup_reply(req, 34, 0);
2246 SSVAL(req->out.vwv, VWV(0), SMB_CHAIN_NONE);
2247 SSVAL(req->out.vwv, VWV(1), 0);
2248 SCVAL(req->out.vwv, VWV(2), io->ntcreatex.out.oplock_level);
2250 /* the rest of the parameters are not aligned! */
2251 SSVAL(req->out.vwv, 5, io->ntcreatex.out.fnum);
2252 SIVAL(req->out.vwv, 7, io->ntcreatex.out.create_action);
2253 push_nttime(req->out.vwv, 11, io->ntcreatex.out.create_time);
2254 push_nttime(req->out.vwv, 19, io->ntcreatex.out.access_time);
2255 push_nttime(req->out.vwv, 27, io->ntcreatex.out.write_time);
2256 push_nttime(req->out.vwv, 35, io->ntcreatex.out.change_time);
2257 SIVAL(req->out.vwv, 43, io->ntcreatex.out.attrib);
2258 SBVAL(req->out.vwv, 47, io->ntcreatex.out.alloc_size);
2259 SBVAL(req->out.vwv, 55, io->ntcreatex.out.size);
2260 SSVAL(req->out.vwv, 63, io->ntcreatex.out.file_type);
2261 SSVAL(req->out.vwv, 65, io->ntcreatex.out.ipc_state);
2262 SCVAL(req->out.vwv, 67, io->ntcreatex.out.is_directory);
2267 /****************************************************************************
2268 Reply to an SMBntcreateX request
2269 ****************************************************************************/
2270 void reply_ntcreate_and_X(struct smbsrv_request *req)
2275 /* parse the request */
2276 REQ_CHECK_WCT(req, 24);
2277 REQ_TALLOC(io, sizeof(*io));
2279 io->ntcreatex.level = RAW_OPEN_NTCREATEX;
2281 /* notice that the word parameters are not word aligned, so we don't use VWV() */
2282 fname_len = SVAL(req->in.vwv, 5);
2283 io->ntcreatex.in.flags = IVAL(req->in.vwv, 7);
2284 io->ntcreatex.in.root_fid = IVAL(req->in.vwv, 11);
2285 io->ntcreatex.in.access_mask = IVAL(req->in.vwv, 15);
2286 io->ntcreatex.in.alloc_size = BVAL(req->in.vwv, 19);
2287 io->ntcreatex.in.file_attr = IVAL(req->in.vwv, 27);
2288 io->ntcreatex.in.share_access = IVAL(req->in.vwv, 31);
2289 io->ntcreatex.in.open_disposition = IVAL(req->in.vwv, 35);
2290 io->ntcreatex.in.create_options = IVAL(req->in.vwv, 39);
2291 io->ntcreatex.in.impersonation = IVAL(req->in.vwv, 43);
2292 io->ntcreatex.in.security_flags = CVAL(req->in.vwv, 47);
2294 /* we need a neater way to handle this alignment */
2295 if ((req->flags2 & FLAGS2_UNICODE_STRINGS) &&
2296 ucs2_align(req->in.buffer, req->in.data, STR_TERMINATE|STR_UNICODE)) {
2300 req_pull_string(req, &io->ntcreatex.in.fname, req->in.data, fname_len, STR_TERMINATE);
2301 if (!io->ntcreatex.in.fname) {
2302 req_reply_error(req, NT_STATUS_FOOBAR);
2306 req->async_states->state |= NTVFS_ASYNC_STATE_MAY_ASYNC;
2307 req->async_states->send_fn = reply_ntcreate_and_X_send;
2308 req->async_states->private_data = io;
2310 /* call the backend */
2311 req->async_states->status = ntvfs_openfile(req, io);
2317 /****************************************************************************
2318 Reply to an SMBntcancel request
2319 ****************************************************************************/
2320 void reply_ntcancel(struct smbsrv_request *req)
2322 /* NOTE: this request does not generate a reply */
2323 req_signing_no_reply(req);
2328 /****************************************************************************
2329 Reply to an SMBsends request
2330 ****************************************************************************/
2331 void reply_sends(struct smbsrv_request *req)
2333 req_reply_error(req, NT_STATUS_FOOBAR);
2336 /****************************************************************************
2337 Reply to an SMBsendstrt request
2338 ****************************************************************************/
2339 void reply_sendstrt(struct smbsrv_request *req)
2341 req_reply_error(req, NT_STATUS_FOOBAR);
2344 /****************************************************************************
2345 Reply to an SMBsendend request
2346 ****************************************************************************/
2347 void reply_sendend(struct smbsrv_request *req)
2349 req_reply_error(req, NT_STATUS_FOOBAR);
2352 /****************************************************************************
2353 Reply to an SMBsendtxt request
2354 ****************************************************************************/
2355 void reply_sendtxt(struct smbsrv_request *req)
2357 req_reply_error(req, NT_STATUS_FOOBAR);
2362 /****************************************************************************
2363 Reply to a special message - a SMB packet with non zero NBT message type
2364 ****************************************************************************/
2365 void reply_special(struct smbsrv_request *req)
2370 msg_type = CVAL(req->in.buffer,0);
2375 case 0x81: /* session request */
2376 if (req->smb_conn->negotiate.done_nbt_session) {
2377 smbsrv_terminate_connection(req->smb_conn, "multiple session request not permitted");
2383 DEBUG(0,("REWRITE: not parsing netbios names in NBT session request!\n"));
2384 /* TODO: store the name for the session setup 'remote machine' code, as well as smbstatus */
2386 req->smb_conn->negotiate.done_nbt_session = True;
2388 req->out.buffer = buf;
2390 req_send_reply_nosign(req);
2393 case 0x89: /* session keepalive request
2394 (some old clients produce this?) */
2395 SCVAL(buf, 0, SMBkeepalive);
2397 req->out.buffer = buf;
2399 req_send_reply_nosign(req);
2403 /* session keepalive - swallow it */
2408 DEBUG(0,("Unexpected NBT session packet (%d)\n", msg_type));