source4/torture/rap/rap.c

   1 /*
   2    Unix SMB/CIFS implementation.
   3    test suite for various RAP operations
   4    Copyright (C) Volker Lendecke 2004
   5
   6    This program is free software; you can redistribute it and/or modify
   7    it under the terms of the GNU General Public License as published by
   8    the Free Software Foundation; either version 2 of the License, or
   9    (at your option) any later version.
  10
  11    This program is distributed in the hope that it will be useful,
  12    but WITHOUT ANY WARRANTY; without even the implied warranty of
  13    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14    GNU General Public License for more details.
  15
  16    You should have received a copy of the GNU General Public License
  17    along with this program; if not, write to the Free Software
  18    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
  19 */
  20
  21 #include "includes.h"
  22
  23 struct rap_call {
  24         TALLOC_CTX *mem_ctx;
  25         uint16 callno;
  26         char *paramdesc;
  27         const char *datadesc;
  28
  29         uint16 status;
  30         uint16 convert;
  31
  32         uint16 rcv_paramlen, rcv_datalen;
  33
  34         struct ndr_push *ndr_push_param;
  35         struct ndr_push *ndr_push_data;
  36         struct ndr_pull *ndr_pull_param;
  37         struct ndr_pull *ndr_pull_data;
  38 };
  39
  40 #define RAPNDR_FLAGS (LIBNDR_FLAG_NOALIGN|LIBNDR_FLAG_STR_ASCII|LIBNDR_FLAG_STR_NULLTERM);
  41
  42 static struct rap_call *new_rap_cli_call(uint16 callno)
  43 {
  44         struct rap_call *call;
  45         TALLOC_CTX *mem_ctx = talloc_init("rap_call");
  46
  47         if (mem_ctx == NULL)
  48                 return NULL;
  49
  50         call = talloc_p(mem_ctx, struct rap_call);
  51
  52         if (call == NULL)
  53                 return NULL;
  54
  55         ZERO_STRUCTP(call);
  56
  57         call->callno = callno;
  58         call->rcv_paramlen = 4;
  59         call->mem_ctx = mem_ctx;
  60
  61         call->ndr_push_param = ndr_push_init_ctx(mem_ctx);
  62         call->ndr_push_param->flags = RAPNDR_FLAGS;
  63
  64         call->ndr_push_data = ndr_push_init_ctx(mem_ctx);
  65         call->ndr_push_data->flags = RAPNDR_FLAGS;
  66
  67         return call;
  68 }
  69
  70 static void destroy_rap_call(struct rap_call *call)
  71 {
  72         talloc_destroy(call->mem_ctx);
  73 }
  74
  75 static void rap_cli_push_paramdesc(struct rap_call *call, char desc)
  76 {
  77         int len = 0;
  78
  79         if (call->paramdesc != NULL)
  80                 len = strlen(call->paramdesc);
  81
  82         call->paramdesc = talloc_realloc(call->paramdesc,
  83                                          len+2);
  84         call->paramdesc[len] = desc;
  85         call->paramdesc[len+1] = '\0';
  86 }
  87
  88 static void rap_cli_push_word(struct rap_call *call, uint16 val)
  89 {
  90         rap_cli_push_paramdesc(call, 'W');
  91         ndr_push_uint16(call->ndr_push_param, val);
  92 }
  93
  94 static void rap_cli_push_dword(struct rap_call *call, uint32 val)
  95 {
  96         rap_cli_push_paramdesc(call, 'D');
  97         ndr_push_uint32(call->ndr_push_param, val);
  98 }
  99
 100 static void rap_cli_push_rcvbuf(struct rap_call *call, int len)
 101 {
 102         rap_cli_push_paramdesc(call, 'r');
 103         rap_cli_push_paramdesc(call, 'L');
 104         ndr_push_uint16(call->ndr_push_param, len);
 105         call->rcv_datalen = len;
 106 }
 107
 108 static void rap_cli_expect_multiple_entries(struct rap_call *call)
 109 {
 110         rap_cli_push_paramdesc(call, 'e');
 111         rap_cli_push_paramdesc(call, 'h');
 112         call->rcv_paramlen += 4; /* uint16 entry count, uint16 total */
 113 }
 114
 115 static void rap_cli_push_string(struct rap_call *call, const char *str)
 116 {
 117         if (str == NULL) {
 118                 rap_cli_push_paramdesc(call, 'O');
 119                 return;
 120         }
 121         rap_cli_push_paramdesc(call, 'z');
 122         ndr_push_string(call->ndr_push_param, NDR_SCALARS, str);
 123 }
 124
 125 static void rap_cli_expect_format(struct rap_call *call, const char *format)
 126 {
 127         call->datadesc = format;
 128 }
 129
 130 static NTSTATUS rap_pull_string(TALLOC_CTX *mem_ctx, struct ndr_pull *ndr,
 131                                 uint16 convert, char **dest)
 132 {
 133         uint16 string_offset;
 134         uint16 ignore;
 135         char *p;
 136         size_t len;
 137
 138         NDR_CHECK(ndr_pull_uint16(ndr, &string_offset));
 139         NDR_CHECK(ndr_pull_uint16(ndr, &ignore));
 140
 141         string_offset -= convert;
 142
 143         if (string_offset+1 > ndr->data_size)
 144                 return NT_STATUS_INVALID_PARAMETER;
 145
 146         p = ndr->data + string_offset;
 147         len = strnlen(p, ndr->data_size-string_offset);
 148
 149         if ( string_offset + len + 1 >  ndr->data_size )
 150                 return NT_STATUS_INVALID_PARAMETER;
 151
 152         *dest = talloc_zero(mem_ctx, len+1);
 153         pull_ascii(*dest, p, len+1, len, 0);
 154
 155         return NT_STATUS_OK;
 156 }
 157
 158 static NTSTATUS rap_cli_do_call(struct smbcli_state *cli, TALLOC_CTX *mem_ctx,
 159                                 struct rap_call *call)
 160 {
 161         NTSTATUS result;
 162         DATA_BLOB param_blob;
 163         struct ndr_push *params;
 164         struct smb_trans2 trans;
 165
 166         params = ndr_push_init_ctx(mem_ctx);
 167
 168         if (params == NULL)
 169                 return NT_STATUS_NO_MEMORY;
 170
 171         params->flags = RAPNDR_FLAGS;
 172
 173         trans.in.max_param = call->rcv_paramlen;
 174         trans.in.max_data = call->rcv_datalen;
 175         trans.in.max_setup = 0;
 176         trans.in.flags = 0;
 177         trans.in.timeout = 0;
 178         trans.in.setup_count = 0;
 179         trans.in.setup = NULL;
 180         trans.in.trans_name = "\\PIPE\\LANMAN";
 181
 182         NDR_CHECK(ndr_push_uint16(params, call->callno));
 183         NDR_CHECK(ndr_push_string(params, NDR_SCALARS, call->paramdesc));
 184         NDR_CHECK(ndr_push_string(params, NDR_SCALARS, call->datadesc));
 185
 186         param_blob = ndr_push_blob(call->ndr_push_param);
 187         NDR_CHECK(ndr_push_bytes(params, param_blob.data,
 188                                  param_blob.length));
 189
 190         trans.in.params = ndr_push_blob(params);
 191         trans.in.data = data_blob(NULL, 0);
 192
 193         result = smb_raw_trans(cli->tree, call->mem_ctx, &trans);
 194
 195         if (!NT_STATUS_IS_OK(result))
 196                 return result;
 197
 198         call->ndr_pull_param = ndr_pull_init_blob(&trans.out.params,
 199                                                   call->mem_ctx);
 200         call->ndr_pull_param->flags = RAPNDR_FLAGS;
 201
 202         call->ndr_pull_data = ndr_pull_init_blob(&trans.out.data,
 203                                                  call->mem_ctx);
 204         call->ndr_pull_data->flags = RAPNDR_FLAGS;
 205
 206         return result;
 207 }
 208
 209 #define NDR_OK(call) do { NTSTATUS _status; \
 210                              _status = call; \
 211                              if (!NT_STATUS_IS_OK(_status)) \
 212                                 goto done; \
 213                         } while (0)
 214
 215 static NTSTATUS smbcli_rap_netshareenum(struct smbcli_state *cli,
 216                                      TALLOC_CTX *mem_ctx,
 217                                      struct rap_NetShareEnum *r)
 218 {
 219         struct rap_call *call;
 220         NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
 221         int i;
 222
 223         call = new_rap_cli_call(0);
 224
 225         if (call == NULL)
 226                 return NT_STATUS_NO_MEMORY;
 227
 228         rap_cli_push_word(call, r->in.level); /* Level */
 229         rap_cli_push_rcvbuf(call, r->in.bufsize);
 230         rap_cli_expect_multiple_entries(call);
 231
 232         switch(r->in.level) {
 233         case 0:
 234                 rap_cli_expect_format(call, "B13");
 235                 break;
 236         case 1:
 237                 rap_cli_expect_format(call, "B13BWz");
 238                 break;
 239         }
 240
 241         result = rap_cli_do_call(cli, mem_ctx, call);
 242
 243         if (!NT_STATUS_IS_OK(result))
 244                 goto done;
 245
 246         NDR_OK(ndr_pull_uint16(call->ndr_pull_param, &r->out.status));
 247         NDR_OK(ndr_pull_uint16(call->ndr_pull_param, &r->out.convert));
 248         NDR_OK(ndr_pull_uint16(call->ndr_pull_param, &r->out.count));
 249         NDR_OK(ndr_pull_uint16(call->ndr_pull_param, &r->out.available));
 250
 251         r->out.info = talloc_array_p(mem_ctx, union rap_shareenum_info,
 252                                      r->out.count);
 253
 254         if (r->out.info == NULL)
 255                 return NT_STATUS_NO_MEMORY;
 256
 257         for (i=0; i<r->out.count; i++) {
 258                 switch(r->in.level) {
 259                 case 0:
 260                         NDR_OK(ndr_pull_bytes(call->ndr_pull_data,
 261                                               r->out.info[i].info0.name, 13));
 262                         break;
 263                 case 1:
 264                         NDR_OK(ndr_pull_bytes(call->ndr_pull_data,
 265                                               r->out.info[i].info1.name, 13));
 266                         NDR_OK(ndr_pull_bytes(call->ndr_pull_data,
 267                                               &r->out.info[i].info1.pad, 1));
 268                         NDR_OK(ndr_pull_uint16(call->ndr_pull_data,
 269                                                &r->out.info[i].info1.type));
 270                         NDR_OK(rap_pull_string(mem_ctx, call->ndr_pull_data,
 271                                                r->out.convert,
 272                                                &r->out.info[i].info1.comment));
 273                         break;
 274                 }
 275         }
 276
 277         result = NT_STATUS_OK;
 278
 279  done:
 280         destroy_rap_call(call);
 281
 282         return result;
 283 }
 284
 285 static BOOL test_netshareenum(struct smbcli_state *cli, TALLOC_CTX *mem_ctx)
 286 {
 287         struct rap_NetShareEnum r;
 288         int i;
 289
 290         r.in.level = 1;
 291         r.in.bufsize = 8192;
 292
 293         if (!NT_STATUS_IS_OK(smbcli_rap_netshareenum(cli, mem_ctx, &r)))
 294                 return False;
 295
 296         for (i=0; i<r.out.count; i++) {
 297                 printf("%s %d %s\n", r.out.info[i].info1.name,
 298                        r.out.info[i].info1.type,
 299                        r.out.info[i].info1.comment);
 300         }
 301
 302         return True;
 303 }
 304
 305 static NTSTATUS smbcli_rap_netserverenum2(struct smbcli_state *cli,
 306                                        TALLOC_CTX *mem_ctx,
 307                                        struct rap_NetServerEnum2 *r)
 308 {
 309         struct rap_call *call;
 310         NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
 311         int i;
 312
 313         call = new_rap_cli_call(104);
 314
 315         if (call == NULL)
 316                 return NT_STATUS_NO_MEMORY;
 317
 318         rap_cli_push_word(call, r->in.level);
 319         rap_cli_push_rcvbuf(call, r->in.bufsize);
 320         rap_cli_expect_multiple_entries(call);
 321         rap_cli_push_dword(call, r->in.servertype);
 322         rap_cli_push_string(call, r->in.domain);
 323
 324         switch(r->in.level) {
 325         case 0:
 326                 rap_cli_expect_format(call, "B16");
 327                 break;
 328         case 1:
 329                 rap_cli_expect_format(call, "B16BBDz");
 330                 break;
 331         }
 332
 333         result = rap_cli_do_call(cli, mem_ctx, call);
 334
 335         if (!NT_STATUS_IS_OK(result))
 336                 goto done;
 337
 338         result = NT_STATUS_INVALID_PARAMETER;
 339
 340         NDR_OK(ndr_pull_uint16(call->ndr_pull_param, &r->out.status));
 341         NDR_OK(ndr_pull_uint16(call->ndr_pull_param, &r->out.convert));
 342         NDR_OK(ndr_pull_uint16(call->ndr_pull_param, &r->out.count));
 343         NDR_OK(ndr_pull_uint16(call->ndr_pull_param, &r->out.available));
 344
 345         r->out.info = talloc_array_p(mem_ctx, union rap_server_info,
 346                                      r->out.count);
 347
 348         if (r->out.info == NULL)
 349                 return NT_STATUS_NO_MEMORY;
 350
 351         for (i=0; i<r->out.count; i++) {
 352                 switch(r->in.level) {
 353                 case 0:
 354                         NDR_OK(ndr_pull_bytes(call->ndr_pull_data,
 355                                               r->out.info[i].info0.name, 16));
 356                         break;
 357                 case 1:
 358                         NDR_OK(ndr_pull_bytes(call->ndr_pull_data,
 359                                               r->out.info[i].info1.name, 16));
 360                         NDR_OK(ndr_pull_bytes(call->ndr_pull_data,
 361                                               &r->out.info[i].info1.version_major, 1));
 362                         NDR_OK(ndr_pull_bytes(call->ndr_pull_data,
 363                                               &r->out.info[i].info1.version_minor, 1));
 364                         NDR_OK(ndr_pull_uint32(call->ndr_pull_data,
 365                                                &r->out.info[i].info1.servertype));
 366                         NDR_OK(rap_pull_string(mem_ctx, call->ndr_pull_data,
 367                                                r->out.convert,
 368                                                &r->out.info[i].info1.comment));
 369                 }
 370         }
 371
 372         result = NT_STATUS_OK;
 373
 374  done:
 375         destroy_rap_call(call);
 376
 377         return result;
 378 }
 379
 380 static BOOL test_netserverenum(struct smbcli_state *cli, TALLOC_CTX *mem_ctx)
 381 {
 382         struct rap_NetServerEnum2 r;
 383         int i;
 384
 385         r.in.level = 0;
 386         r.in.bufsize = 8192;
 387         r.in.servertype = 0xffffffff;
 388         r.in.servertype = 0x80000000;
 389         r.in.domain = NULL;
 390
 391         if (!NT_STATUS_IS_OK(smbcli_rap_netserverenum2(cli, mem_ctx, &r)))
 392                 return False;
 393
 394         for (i=0; i<r.out.count; i++) {
 395                 switch (r.in.level) {
 396                 case 0:
 397                         printf("%s\n", r.out.info[i].info0.name);
 398                         break;
 399                 case 1:
 400                         printf("%s %x %s\n", r.out.info[i].info1.name,
 401                                r.out.info[i].info1.servertype,
 402                                r.out.info[i].info1.comment);
 403                         break;
 404                 }
 405         }
 406
 407         return True;
 408 }
 409
 410
 411
 412 static BOOL test_rap(struct smbcli_state *cli, TALLOC_CTX *mem_ctx)
 413 {
 414         BOOL res = True;
 415
 416         if (!test_netserverenum(cli, mem_ctx))
 417                 res = False;
 418
 419         if (!test_netshareenum(cli, mem_ctx))
 420                 res = False;
 421
 422         return res;
 423 }
 424
 425 BOOL torture_raw_rap(int dummy)
 426 {
 427         struct smbcli_state *cli;
 428         BOOL ret = True;
 429         TALLOC_CTX *mem_ctx;
 430
 431         if (!torture_open_connection(&cli)) {
 432                 return False;
 433         }
 434
 435         mem_ctx = talloc_init("torture_raw_rap");
 436
 437         if (!test_rap(cli, mem_ctx)) {
 438                 ret = False;
 439         }
 440
 441         torture_close_connection(cli);
 442         talloc_destroy(mem_ctx);
 443         return ret;
 444 }