2 Unix SMB/CIFS implementation.
3 SMB client generic functions
4 Copyright (C) Andrew Tridgell 1994-1998
5 Copyright (C) Jeremy Allison 2007.
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 /*******************************************************************
24 Setup the word count and byte count for a client smb message.
25 ********************************************************************/
27 int cli_set_message(char *buf,int num_words,int num_bytes,bool zero)
29 if (zero && (num_words || num_bytes)) {
30 memset(buf + smb_size,'\0',num_words*2 + num_bytes);
32 SCVAL(buf,smb_wct,num_words);
33 SSVAL(buf,smb_vwv + num_words*SIZEOFWORD,num_bytes);
34 smb_setlen(buf,smb_size + num_words*2 + num_bytes - 4);
35 return (smb_size + num_words*2 + num_bytes);
38 /****************************************************************************
39 Change the timeout (in milliseconds).
40 ****************************************************************************/
42 unsigned int cli_set_timeout(struct cli_state *cli, unsigned int timeout)
44 unsigned int old_timeout = cli->timeout;
45 cli->timeout = timeout;
49 /****************************************************************************
50 Change the port number used to call on.
51 ****************************************************************************/
53 void cli_set_port(struct cli_state *cli, int port)
58 /****************************************************************************
59 convenience routine to find if we negotiated ucs2
60 ****************************************************************************/
62 bool cli_ucs2(struct cli_state *cli)
64 return ((cli->capabilities & CAP_UNICODE) != 0);
68 /****************************************************************************
69 Read an smb from a fd ignoring all keepalive packets.
70 The timeout is in milliseconds
72 This is exactly the same as receive_smb except that it never returns
73 a session keepalive packet (just as receive_smb used to do).
74 receive_smb was changed to return keepalives as the oplock processing means this call
75 should never go into a blocking read.
76 ****************************************************************************/
78 static ssize_t client_receive_smb(struct cli_state *cli, size_t maxlen)
85 set_smb_read_error(&cli->smb_rw_error, SMB_READ_OK);
87 status = receive_smb_raw(cli->fd, cli->inbuf, cli->bufsize,
88 cli->timeout, maxlen, &len);
89 if (!NT_STATUS_IS_OK(status)) {
90 DEBUG(10,("client_receive_smb failed\n"));
93 if (NT_STATUS_EQUAL(status, NT_STATUS_END_OF_FILE)) {
94 set_smb_read_error(&cli->smb_rw_error,
99 if (NT_STATUS_EQUAL(status, NT_STATUS_IO_TIMEOUT)) {
100 set_smb_read_error(&cli->smb_rw_error,
105 set_smb_read_error(&cli->smb_rw_error, SMB_READ_ERROR);
110 * I don't believe len can be < 0 with NT_STATUS_OK
111 * returned above, but this check doesn't hurt. JRA.
114 if ((ssize_t)len < 0) {
118 /* Ignore session keepalive packets. */
119 if(CVAL(cli->inbuf,0) != SMBkeepalive) {
124 if (cli_encryption_on(cli)) {
125 NTSTATUS status = cli_decrypt_message(cli);
126 if (!NT_STATUS_IS_OK(status)) {
127 DEBUG(0, ("SMB decryption failed on incoming packet! Error %s\n",
129 cli->smb_rw_error = SMB_READ_BAD_DECRYPT;
134 show_msg(cli->inbuf);
138 static bool cli_state_set_seqnum(struct cli_state *cli, uint16_t mid, uint32_t seqnum)
140 struct cli_state_seqnum *c;
142 for (c = cli->seqnum; c; c = c->next) {
149 c = talloc_zero(cli, struct cli_state_seqnum);
156 c->persistent = false;
157 DLIST_ADD_END(cli->seqnum, c, struct cli_state_seqnum *);
162 bool cli_state_seqnum_persistent(struct cli_state *cli,
165 struct cli_state_seqnum *c;
167 for (c = cli->seqnum; c; c = c->next) {
169 c->persistent = true;
177 bool cli_state_seqnum_remove(struct cli_state *cli,
180 struct cli_state_seqnum *c;
182 for (c = cli->seqnum; c; c = c->next) {
184 DLIST_REMOVE(cli->seqnum, c);
193 static uint32_t cli_state_get_seqnum(struct cli_state *cli, uint16_t mid)
195 struct cli_state_seqnum *c;
197 for (c = cli->seqnum; c; c = c->next) {
199 uint32_t seqnum = c->seqnum;
200 if (!c->persistent) {
201 DLIST_REMOVE(cli->seqnum, c);
211 /****************************************************************************
213 ****************************************************************************/
215 bool cli_receive_smb(struct cli_state *cli)
221 /* fd == -1 causes segfaults -- Tom (tom@ninja.nl) */
226 len = client_receive_smb(cli, 0);
229 /* it might be an oplock break request */
230 if (!(CVAL(cli->inbuf, smb_flg) & FLAG_REPLY) &&
231 CVAL(cli->inbuf,smb_com) == SMBlockingX &&
232 SVAL(cli->inbuf,smb_vwv6) == 0 &&
233 SVAL(cli->inbuf,smb_vwv7) == 0) {
234 if (cli->oplock_handler) {
235 int fnum = SVAL(cli->inbuf,smb_vwv2);
236 unsigned char level = CVAL(cli->inbuf,smb_vwv3+1);
237 if (!NT_STATUS_IS_OK(cli->oplock_handler(cli, fnum, level))) {
241 /* try to prevent loops */
242 SCVAL(cli->inbuf,smb_com,0xFF);
247 /* If the server is not responding, note that now */
249 DEBUG(0, ("Receiving SMB: Server stopped responding\n"));
255 mid = SVAL(cli->inbuf,smb_mid);
256 seqnum = cli_state_get_seqnum(cli, mid);
258 if (!cli_check_sign_mac(cli, cli->inbuf, seqnum+1)) {
260 * If we get a signature failure in sessionsetup, then
261 * the server sometimes just reflects the sent signature
262 * back to us. Detect this and allow the upper layer to
263 * retrieve the correct Windows error message.
265 if (CVAL(cli->outbuf,smb_com) == SMBsesssetupX &&
266 (smb_len(cli->inbuf) > (smb_ss_field + 8 - 4)) &&
267 (SVAL(cli->inbuf,smb_flg2) & FLAGS2_SMB_SECURITY_SIGNATURES) &&
268 memcmp(&cli->outbuf[smb_ss_field],&cli->inbuf[smb_ss_field],8) == 0 &&
272 * Reflected signature on login error.
273 * Set bad sig but don't close fd.
275 cli->smb_rw_error = SMB_READ_BAD_SIG;
279 DEBUG(0, ("SMB Signature verification failed on incoming packet!\n"));
280 cli->smb_rw_error = SMB_READ_BAD_SIG;
288 static ssize_t write_socket(int fd, const char *buf, size_t len)
292 DEBUG(6,("write_socket(%d,%d)\n",fd,(int)len));
293 ret = write_data(fd,buf,len);
295 DEBUG(6,("write_socket(%d,%d) wrote %d\n",fd,(int)len,(int)ret));
297 DEBUG(0,("write_socket: Error writing %d bytes to socket %d: ERRNO = %s\n",
298 (int)len, fd, strerror(errno) ));
303 /****************************************************************************
305 ****************************************************************************/
307 bool cli_send_smb(struct cli_state *cli)
312 char *buf_out = cli->outbuf;
313 bool enc_on = cli_encryption_on(cli);
316 /* fd == -1 causes segfaults -- Tom (tom@ninja.nl) */
320 cli_calculate_sign_mac(cli, cli->outbuf, &seqnum);
322 if (!cli_state_set_seqnum(cli, cli->mid, seqnum)) {
323 DEBUG(0,("Failed to store mid[%u]/seqnum[%u]\n",
324 (unsigned int)cli->mid,
325 (unsigned int)seqnum));
330 NTSTATUS status = cli_encrypt_message(cli, cli->outbuf,
332 if (!NT_STATUS_IS_OK(status)) {
335 cli->smb_rw_error = SMB_WRITE_ERROR;
336 DEBUG(0,("Error in encrypting client message. Error %s\n",
337 nt_errstr(status) ));
342 len = smb_len(buf_out) + 4;
344 while (nwritten < len) {
345 ret = write_socket(cli->fd,buf_out+nwritten,len - nwritten);
348 cli_free_enc_buffer(cli, buf_out);
352 cli->smb_rw_error = SMB_WRITE_ERROR;
353 DEBUG(0,("Error writing %d bytes to client. %d (%s)\n",
354 (int)len,(int)ret, strerror(errno) ));
361 cli_free_enc_buffer(cli, buf_out);
364 /* Increment the mid so we can tell between responses. */
371 /****************************************************************************
372 Send a "direct" writeX smb to a fd.
373 ****************************************************************************/
375 bool cli_send_smb_direct_writeX(struct cli_state *cli,
379 /* First length to send is the offset to the data. */
380 size_t len = SVAL(cli->outbuf,smb_vwv11) + 4;
384 /* fd == -1 causes segfaults -- Tom (tom@ninja.nl) */
389 if (client_is_signing_on(cli)) {
390 DEBUG(0,("cli_send_smb_large: cannot send signed packet.\n"));
394 iov[0].iov_base = (void *)cli->outbuf;
395 iov[0].iov_len = len;
396 iov[1].iov_base = CONST_DISCARD(void *, p);
397 iov[1].iov_len = extradata;
399 nwritten = write_data_iov(cli->fd, iov, 2);
400 if (nwritten < (len + extradata)) {
403 cli->smb_rw_error = SMB_WRITE_ERROR;
404 DEBUG(0,("Error writing %d bytes to client. (%s)\n",
405 (int)(len+extradata), strerror(errno)));
409 /* Increment the mid so we can tell between responses. */
416 /****************************************************************************
417 Setup basics in a outgoing packet.
418 ****************************************************************************/
420 void cli_setup_packet_buf(struct cli_state *cli, char *buf)
424 SIVAL(buf,smb_rcls,0);
425 SSVAL(buf,smb_pid,cli->pid);
426 memset(buf+smb_pidhigh, 0, 12);
427 SSVAL(buf,smb_uid,cli->vuid);
428 SSVAL(buf,smb_mid,cli->mid);
430 if (cli->protocol <= PROTOCOL_CORE) {
434 if (cli->case_sensitive) {
435 SCVAL(buf,smb_flg,0x0);
437 /* Default setting, case insensitive. */
438 SCVAL(buf,smb_flg,0x8);
440 flags2 = FLAGS2_LONG_PATH_COMPONENTS;
441 if (cli->capabilities & CAP_UNICODE)
442 flags2 |= FLAGS2_UNICODE_STRINGS;
443 if ((cli->capabilities & CAP_DFS) && cli->dfsroot)
444 flags2 |= FLAGS2_DFS_PATHNAMES;
445 if (cli->capabilities & CAP_STATUS32)
446 flags2 |= FLAGS2_32_BIT_ERROR_CODES;
448 flags2 |= FLAGS2_EXTENDED_SECURITY;
449 SSVAL(buf,smb_flg2, flags2);
452 void cli_setup_packet(struct cli_state *cli)
454 cli_setup_packet_buf(cli, cli->outbuf);
457 /****************************************************************************
458 Setup the bcc length of the packet from a pointer to the end of the data.
459 ****************************************************************************/
461 void cli_setup_bcc(struct cli_state *cli, void *p)
463 set_message_bcc(cli->outbuf, PTR_DIFF(p, smb_buf(cli->outbuf)));
466 /****************************************************************************
467 Initialize Domain, user or password.
468 ****************************************************************************/
470 NTSTATUS cli_set_domain(struct cli_state *cli, const char *domain)
472 TALLOC_FREE(cli->domain);
473 cli->domain = talloc_strdup(cli, domain ? domain : "");
474 if (cli->domain == NULL) {
475 return NT_STATUS_NO_MEMORY;
480 NTSTATUS cli_set_username(struct cli_state *cli, const char *username)
482 TALLOC_FREE(cli->user_name);
483 cli->user_name = talloc_strdup(cli, username ? username : "");
484 if (cli->user_name == NULL) {
485 return NT_STATUS_NO_MEMORY;
490 NTSTATUS cli_set_password(struct cli_state *cli, const char *password)
492 TALLOC_FREE(cli->password);
494 /* Password can be NULL. */
496 cli->password = talloc_strdup(cli, password);
497 if (cli->password == NULL) {
498 return NT_STATUS_NO_MEMORY;
501 /* Use zero NTLMSSP hashes and session key. */
502 cli->password = NULL;
508 /****************************************************************************
509 Initialise credentials of a client structure.
510 ****************************************************************************/
512 NTSTATUS cli_init_creds(struct cli_state *cli, const char *username, const char *domain, const char *password)
514 NTSTATUS status = cli_set_username(cli, username);
515 if (!NT_STATUS_IS_OK(status)) {
518 status = cli_set_domain(cli, domain);
519 if (!NT_STATUS_IS_OK(status)) {
522 DEBUG(10,("cli_init_creds: user %s domain %s\n", cli->user_name, cli->domain));
524 return cli_set_password(cli, password);
527 /****************************************************************************
528 Initialise a client structure. Always returns a talloc'ed struct.
529 Set the signing state (used from the command line).
530 ****************************************************************************/
532 struct cli_state *cli_initialise_ex(int signing_state)
534 struct cli_state *cli = NULL;
535 bool allow_smb_signing = false;
536 bool mandatory_signing = false;
538 /* Check the effective uid - make sure we are not setuid */
539 if (is_setuid_root()) {
540 DEBUG(0,("libsmb based programs must *NOT* be setuid root.\n"));
544 cli = TALLOC_ZERO_P(NULL, struct cli_state);
549 cli->dfs_mountpoint = talloc_strdup(cli, "");
550 if (!cli->dfs_mountpoint) {
556 cli->pid = (uint16)sys_getpid();
558 cli->vuid = UID_FIELD_INVALID;
559 cli->protocol = PROTOCOL_NT1;
560 cli->timeout = 20000; /* Timeout is in milliseconds. */
561 cli->bufsize = CLI_BUFFER_SIZE+4;
562 cli->max_xmit = cli->bufsize;
563 cli->outbuf = (char *)SMB_MALLOC(cli->bufsize+SAFETY_MARGIN);
565 cli->inbuf = (char *)SMB_MALLOC(cli->bufsize+SAFETY_MARGIN);
566 cli->oplock_handler = cli_oplock_ack;
567 cli->case_sensitive = false;
568 cli->smb_rw_error = SMB_READ_OK;
570 cli->use_spnego = lp_client_use_spnego();
572 cli->capabilities = CAP_UNICODE | CAP_STATUS32 | CAP_DFS;
574 /* Set the CLI_FORCE_DOSERR environment variable to test
575 client routines using DOS errors instead of STATUS32
576 ones. This intended only as a temporary hack. */
577 if (getenv("CLI_FORCE_DOSERR"))
578 cli->force_dos_errors = true;
580 if (lp_client_signing()) {
581 allow_smb_signing = true;
584 if (lp_client_signing() == Required) {
585 mandatory_signing = true;
588 if (signing_state != Undefined) {
589 allow_smb_signing = true;
592 if (signing_state == false) {
593 allow_smb_signing = false;
594 mandatory_signing = false;
597 if (signing_state == Required) {
598 mandatory_signing = true;
601 if (!cli->outbuf || !cli->inbuf)
604 memset(cli->outbuf, 0, cli->bufsize);
605 memset(cli->inbuf, 0, cli->bufsize);
608 #if defined(DEVELOPER)
609 /* just because we over-allocate, doesn't mean it's right to use it */
610 clobber_region(FUNCTION_MACRO, __LINE__, cli->outbuf+cli->bufsize, SAFETY_MARGIN);
611 clobber_region(FUNCTION_MACRO, __LINE__, cli->inbuf+cli->bufsize, SAFETY_MARGIN);
614 /* initialise signing */
615 cli->signing_state = smb_signing_init(cli,
618 if (!cli->signing_state) {
622 cli->outgoing = tevent_queue_create(cli, "cli_outgoing");
623 if (cli->outgoing == NULL) {
628 cli->initialised = 1;
632 /* Clean up after malloc() error */
636 SAFE_FREE(cli->inbuf);
637 SAFE_FREE(cli->outbuf);
642 struct cli_state *cli_initialise(void)
644 return cli_initialise_ex(Undefined);
647 /****************************************************************************
648 Close all pipes open on this session.
649 ****************************************************************************/
651 void cli_nt_pipes_close(struct cli_state *cli)
653 while (cli->pipe_list != NULL) {
655 * No TALLOC_FREE here!
657 talloc_free(cli->pipe_list);
661 /****************************************************************************
662 Shutdown a client structure.
663 ****************************************************************************/
665 static void _cli_shutdown(struct cli_state *cli)
667 cli_nt_pipes_close(cli);
670 * tell our peer to free his resources. Wihtout this, when an
671 * application attempts to do a graceful shutdown and calls
672 * smbc_free_context() to clean up all connections, some connections
673 * can remain active on the peer end, until some (long) timeout period
674 * later. This tree disconnect forces the peer to clean up, since the
675 * connection will be going away.
677 * Also, do not do tree disconnect when cli->smb_rw_error is SMB_DO_NOT_DO_TDIS
678 * the only user for this so far is smbmount which passes opened connection
679 * down to kernel's smbfs module.
681 if ( (cli->cnum != (uint16)-1) && (cli->smb_rw_error != SMB_DO_NOT_DO_TDIS ) ) {
685 SAFE_FREE(cli->outbuf);
686 SAFE_FREE(cli->inbuf);
688 data_blob_free(&cli->secblob);
689 data_blob_free(&cli->user_session_key);
695 cli->smb_rw_error = SMB_READ_OK;
698 * Need to free pending first, they remove themselves
700 while (cli->pending) {
701 talloc_free(cli->pending[0]);
706 void cli_shutdown(struct cli_state *cli)
708 struct cli_state *cli_head;
712 DLIST_HEAD(cli, cli_head);
713 if (cli_head == cli) {
715 * head of a DFS list, shutdown all subsidiary DFS
718 struct cli_state *p, *next;
720 for (p = cli_head->next; p; p = next) {
722 DLIST_REMOVE(cli_head, p);
726 DLIST_REMOVE(cli_head, cli);
732 /****************************************************************************
733 Set socket options on a open connection.
734 ****************************************************************************/
736 void cli_sockopt(struct cli_state *cli, const char *options)
738 set_socket_options(cli->fd, options);
741 /****************************************************************************
742 Set the PID to use for smb messages. Return the old pid.
743 ****************************************************************************/
745 uint16 cli_setpid(struct cli_state *cli, uint16 pid)
747 uint16 ret = cli->pid;
752 /****************************************************************************
753 Set the case sensitivity flag on the packets. Returns old state.
754 ****************************************************************************/
756 bool cli_set_case_sensitive(struct cli_state *cli, bool case_sensitive)
758 bool ret = cli->case_sensitive;
759 cli->case_sensitive = case_sensitive;
763 /****************************************************************************
764 Send a keepalive packet to the server
765 ****************************************************************************/
767 bool cli_send_keepalive(struct cli_state *cli)
770 DEBUG(3, ("cli_send_keepalive: fd == -1\n"));
773 if (!send_keepalive(cli->fd)) {
776 DEBUG(0,("Error sending keepalive packet to client.\n"));
782 struct cli_echo_state {
788 static void cli_echo_done(struct tevent_req *subreq);
790 struct tevent_req *cli_echo_send(TALLOC_CTX *mem_ctx, struct event_context *ev,
791 struct cli_state *cli, uint16_t num_echos,
794 struct tevent_req *req, *subreq;
795 struct cli_echo_state *state;
797 req = tevent_req_create(mem_ctx, &state, struct cli_echo_state);
801 SSVAL(state->vwv, 0, num_echos);
803 state->num_echos = num_echos;
805 subreq = cli_smb_send(state, ev, cli, SMBecho, 0, 1, state->vwv,
806 data.length, data.data);
807 if (subreq == NULL) {
810 tevent_req_set_callback(subreq, cli_echo_done, req);
817 static void cli_echo_done(struct tevent_req *subreq)
819 struct tevent_req *req = tevent_req_callback_data(
820 subreq, struct tevent_req);
821 struct cli_echo_state *state = tevent_req_data(
822 req, struct cli_echo_state);
828 status = cli_smb_recv(subreq, state, &inbuf, 0, NULL, NULL,
830 if (!NT_STATUS_IS_OK(status)) {
831 tevent_req_nterror(req, status);
834 if ((num_bytes != state->data.length)
835 || (memcmp(bytes, state->data.data, num_bytes) != 0)) {
836 tevent_req_nterror(req, NT_STATUS_INVALID_NETWORK_RESPONSE);
840 state->num_echos -=1;
841 if (state->num_echos == 0) {
842 tevent_req_done(req);
846 if (!cli_smb_req_set_pending(subreq)) {
847 tevent_req_nterror(req, NT_STATUS_NO_MEMORY);
853 * Get the result out from an echo request
854 * @param[in] req The async_req from cli_echo_send
855 * @retval Did the server reply correctly?
858 NTSTATUS cli_echo_recv(struct tevent_req *req)
860 return tevent_req_simple_recv_ntstatus(req);
864 * @brief Send/Receive SMBEcho requests
865 * @param[in] mem_ctx The memory context to put the async_req on
866 * @param[in] ev The event context that will call us back
867 * @param[in] cli The connection to send the echo to
868 * @param[in] num_echos How many times do we want to get the reply?
869 * @param[in] data The data we want to get back
870 * @retval Did the server reply correctly?
873 NTSTATUS cli_echo(struct cli_state *cli, uint16_t num_echos, DATA_BLOB data)
875 TALLOC_CTX *frame = talloc_stackframe();
876 struct event_context *ev;
877 struct tevent_req *req;
878 NTSTATUS status = NT_STATUS_OK;
880 if (cli_has_async_calls(cli)) {
882 * Can't use sync call while an async call is in flight
884 status = NT_STATUS_INVALID_PARAMETER;
888 ev = event_context_init(frame);
890 status = NT_STATUS_NO_MEMORY;
894 req = cli_echo_send(frame, ev, cli, num_echos, data);
896 status = NT_STATUS_NO_MEMORY;
900 if (!tevent_req_poll(req, ev)) {
901 status = map_nt_error_from_unix(errno);
905 status = cli_echo_recv(req);
908 if (!NT_STATUS_IS_OK(status)) {
909 cli_set_error(cli, status);
915 * Is the SMB command able to hold an AND_X successor
916 * @param[in] cmd The SMB command in question
917 * @retval Can we add a chained request after "cmd"?
919 bool is_andx_req(uint8_t cmd)
939 NTSTATUS cli_smb(TALLOC_CTX *mem_ctx, struct cli_state *cli,
940 uint8_t smb_command, uint8_t additional_flags,
941 uint8_t wct, uint16_t *vwv,
942 uint32_t num_bytes, const uint8_t *bytes,
943 struct tevent_req **result_parent,
944 uint8_t min_wct, uint8_t *pwct, uint16_t **pvwv,
945 uint32_t *pnum_bytes, uint8_t **pbytes)
947 struct tevent_context *ev;
948 struct tevent_req *req = NULL;
949 NTSTATUS status = NT_STATUS_NO_MEMORY;
951 if (cli_has_async_calls(cli)) {
952 return NT_STATUS_INVALID_PARAMETER;
954 ev = tevent_context_init(mem_ctx);
958 req = cli_smb_send(mem_ctx, ev, cli, smb_command, additional_flags,
959 wct, vwv, num_bytes, bytes);
963 if (!tevent_req_poll_ntstatus(req, ev, &status)) {
966 status = cli_smb_recv(req, NULL, NULL, min_wct, pwct, pvwv,
970 if (NT_STATUS_IS_OK(status)) {
971 *result_parent = req;
git.samba.org / garming / samba-autobuild / .git / blob