2 Unix SMB/CIFS implementation.
3 Infrastructure for async SMB client requests
4 Copyright (C) Volker Lendecke 2008
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 * Read an smb packet asynchronously, discard keepalives
26 struct read_smb_state {
27 struct tevent_context *ev;
32 static ssize_t read_smb_more(uint8_t *buf, size_t buflen, void *private_data);
33 static void read_smb_done(struct tevent_req *subreq);
35 static struct tevent_req *read_smb_send(TALLOC_CTX *mem_ctx,
36 struct tevent_context *ev,
39 struct tevent_req *result, *subreq;
40 struct read_smb_state *state;
42 result = tevent_req_create(mem_ctx, &state, struct read_smb_state);
49 subreq = read_packet_send(state, ev, fd, 4, read_smb_more, NULL);
53 tevent_req_set_callback(subreq, read_smb_done, result);
60 static ssize_t read_smb_more(uint8_t *buf, size_t buflen, void *private_data)
63 return 0; /* We've been here, we're done */
65 return smb_len_large(buf);
68 static void read_smb_done(struct tevent_req *subreq)
70 struct tevent_req *req = tevent_req_callback_data(
71 subreq, struct tevent_req);
72 struct read_smb_state *state = tevent_req_data(
73 req, struct read_smb_state);
77 len = read_packet_recv(subreq, state, &state->buf, &err);
80 tevent_req_error(req, err);
84 if (CVAL(state->buf, 0) == SMBkeepalive) {
85 subreq = read_packet_send(state, state->ev, state->fd, 4,
87 if (tevent_req_nomem(subreq, req)) {
90 tevent_req_set_callback(subreq, read_smb_done, req);
96 static ssize_t read_smb_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx,
97 uint8_t **pbuf, int *perrno)
99 struct read_smb_state *state = tevent_req_data(
100 req, struct read_smb_state);
102 if (tevent_req_is_unix_error(req, perrno)) {
105 *pbuf = talloc_move(mem_ctx, &state->buf);
106 return talloc_get_size(*pbuf);
110 * Fetch an error out of a NBT packet
111 * @param[in] buf The SMB packet
112 * @retval The error, converted to NTSTATUS
115 NTSTATUS cli_pull_error(char *buf)
117 uint32_t flags2 = SVAL(buf, smb_flg2);
119 if (flags2 & FLAGS2_32_BIT_ERROR_CODES) {
120 return NT_STATUS(IVAL(buf, smb_rcls));
123 /* if the client uses dos errors, but there is no error,
124 we should return no error here, otherwise it looks
125 like an unknown bad NT_STATUS. jmcd */
126 if (CVAL(buf, smb_rcls) == 0)
129 return NT_STATUS_DOS(CVAL(buf, smb_rcls), SVAL(buf,smb_err));
133 * Compatibility helper for the sync APIs: Fake NTSTATUS in cli->inbuf
134 * @param[in] cli The client connection that just received an error
135 * @param[in] status The error to set on "cli"
138 void cli_set_error(struct cli_state *cli, NTSTATUS status)
140 uint32_t flags2 = SVAL(cli->inbuf, smb_flg2);
142 if (NT_STATUS_IS_DOS(status)) {
143 SSVAL(cli->inbuf, smb_flg2,
144 flags2 & ~FLAGS2_32_BIT_ERROR_CODES);
145 SCVAL(cli->inbuf, smb_rcls, NT_STATUS_DOS_CLASS(status));
146 SSVAL(cli->inbuf, smb_err, NT_STATUS_DOS_CODE(status));
150 SSVAL(cli->inbuf, smb_flg2, flags2 | FLAGS2_32_BIT_ERROR_CODES);
151 SIVAL(cli->inbuf, smb_rcls, NT_STATUS_V(status));
156 * Figure out if there is an andx command behind the current one
157 * @param[in] buf The smb buffer to look at
158 * @param[in] ofs The offset to the wct field that is followed by the cmd
159 * @retval Is there a command following?
162 static bool have_andx_command(const char *buf, uint16_t ofs)
165 size_t buflen = talloc_get_size(buf);
167 if ((ofs == buflen-1) || (ofs == buflen)) {
171 wct = CVAL(buf, ofs);
174 * Not enough space for the command and a following pointer
178 return (CVAL(buf, ofs+1) != 0xff);
181 #define MAX_SMB_IOV 5
183 struct cli_smb_state {
184 struct tevent_context *ev;
185 struct cli_state *cli;
186 uint8_t header[smb_wct+1]; /* Space for the header including the wct */
189 * For normal requests, cli_smb_req_send chooses a mid. Secondary
190 * trans requests need to use the mid of the primary request, so we
191 * need a place to store it. Assume it's set if != 0.
196 uint8_t bytecount_buf[2];
198 struct iovec iov[MAX_SMB_IOV+3];
204 struct tevent_req **chained_requests;
207 static uint16_t cli_alloc_mid(struct cli_state *cli)
209 int num_pending = talloc_array_length(cli->pending);
216 if ((result == 0) || (result == 0xffff)) {
220 for (i=0; i<num_pending; i++) {
221 if (result == cli_smb_req_mid(cli->pending[i])) {
226 if (i == num_pending) {
232 void cli_smb_req_unset_pending(struct tevent_req *req)
234 struct cli_smb_state *state = tevent_req_data(
235 req, struct cli_smb_state);
236 struct cli_state *cli = state->cli;
237 int num_pending = talloc_array_length(cli->pending);
240 if (num_pending == 1) {
242 * The pending read_smb tevent_req is a child of
243 * cli->pending. So if nothing is pending anymore, we need to
244 * delete the socket read fde.
246 TALLOC_FREE(cli->pending);
250 for (i=0; i<num_pending; i++) {
251 if (req == cli->pending[i]) {
255 if (i == num_pending) {
257 * Something's seriously broken. Just returning here is the
258 * right thing nevertheless, the point of this routine is to
259 * remove ourselves from cli->pending.
265 * Remove ourselves from the cli->pending array
267 if (num_pending > 1) {
268 cli->pending[i] = cli->pending[num_pending-1];
272 * No NULL check here, we're shrinking by sizeof(void *), and
273 * talloc_realloc just adjusts the size for this.
275 cli->pending = talloc_realloc(NULL, cli->pending, struct tevent_req *,
280 static int cli_smb_req_destructor(struct tevent_req *req)
282 cli_smb_req_unset_pending(req);
286 static void cli_smb_received(struct tevent_req *subreq);
288 bool cli_smb_req_set_pending(struct tevent_req *req)
290 struct cli_smb_state *state = tevent_req_data(
291 req, struct cli_smb_state);
292 struct cli_state *cli;
293 struct tevent_req **pending;
295 struct tevent_req *subreq;
298 num_pending = talloc_array_length(cli->pending);
300 pending = talloc_realloc(cli, cli->pending, struct tevent_req *,
302 if (pending == NULL) {
305 pending[num_pending] = req;
306 cli->pending = pending;
307 talloc_set_destructor(req, cli_smb_req_destructor);
309 if (num_pending > 0) {
314 * We're the first ones, add the read_smb request that waits for the
315 * answer from the server
317 subreq = read_smb_send(cli->pending, state->ev, cli->fd);
318 if (subreq == NULL) {
319 cli_smb_req_unset_pending(req);
322 tevent_req_set_callback(subreq, cli_smb_received, cli);
327 * Fetch a smb request's mid. Only valid after the request has been sent by
328 * cli_smb_req_send().
330 uint16_t cli_smb_req_mid(struct tevent_req *req)
332 struct cli_smb_state *state = tevent_req_data(
333 req, struct cli_smb_state);
334 return SVAL(state->header, smb_mid);
337 void cli_smb_req_set_mid(struct tevent_req *req, uint16_t mid)
339 struct cli_smb_state *state = tevent_req_data(
340 req, struct cli_smb_state);
344 static size_t iov_len(const struct iovec *iov, int count)
348 for (i=0; i<count; i++) {
349 result += iov[i].iov_len;
354 static uint8_t *iov_concat(TALLOC_CTX *mem_ctx, const struct iovec *iov,
357 size_t len = iov_len(iov, count);
362 buf = talloc_array(mem_ctx, uint8_t, len);
367 for (i=0; i<count; i++) {
368 memcpy(buf+copied, iov[i].iov_base, iov[i].iov_len);
369 copied += iov[i].iov_len;
374 struct tevent_req *cli_smb_req_create(TALLOC_CTX *mem_ctx,
375 struct event_context *ev,
376 struct cli_state *cli,
378 uint8_t additional_flags,
379 uint8_t wct, uint16_t *vwv,
381 struct iovec *bytes_iov)
383 struct tevent_req *result;
384 struct cli_smb_state *state;
386 if (iov_count > MAX_SMB_IOV) {
388 * Should not happen :-)
393 result = tevent_req_create(mem_ctx, &state, struct cli_smb_state);
394 if (result == NULL) {
399 state->mid = 0; /* Set to auto-choose in cli_smb_req_send */
400 state->chain_num = 0;
401 state->chained_requests = NULL;
403 cli_setup_packet_buf(cli, (char *)state->header);
404 SCVAL(state->header, smb_com, smb_command);
405 SSVAL(state->header, smb_tid, cli->cnum);
406 SCVAL(state->header, smb_wct, wct);
410 SSVAL(state->bytecount_buf, 0, iov_len(bytes_iov, iov_count));
412 state->iov[0].iov_base = (void *)state->header;
413 state->iov[0].iov_len = sizeof(state->header);
414 state->iov[1].iov_base = (void *)state->vwv;
415 state->iov[1].iov_len = wct * sizeof(uint16_t);
416 state->iov[2].iov_base = (void *)state->bytecount_buf;
417 state->iov[2].iov_len = sizeof(uint16_t);
419 if (iov_count != 0) {
420 memcpy(&state->iov[3], bytes_iov,
421 iov_count * sizeof(*bytes_iov));
423 state->iov_count = iov_count + 3;
428 static NTSTATUS cli_signv(struct cli_state *cli, struct iovec *iov, int count,
434 * Obvious optimization: Make cli_calculate_sign_mac work with struct
435 * iovec directly. MD5Update would do that just fine.
438 if ((count <= 0) || (iov[0].iov_len < smb_wct)) {
439 return NT_STATUS_INVALID_PARAMETER;
442 buf = iov_concat(talloc_tos(), iov, count);
444 return NT_STATUS_NO_MEMORY;
447 cli_calculate_sign_mac(cli, (char *)buf, seqnum);
448 memcpy(iov[0].iov_base, buf, iov[0].iov_len);
454 static void cli_smb_sent(struct tevent_req *subreq);
456 static NTSTATUS cli_smb_req_iov_send(struct tevent_req *req,
457 struct cli_smb_state *state,
458 struct iovec *iov, int iov_count)
460 struct tevent_req *subreq;
463 if (state->cli->fd == -1) {
464 return NT_STATUS_CONNECTION_INVALID;
467 if (iov[0].iov_len < smb_wct) {
468 return NT_STATUS_INVALID_PARAMETER;
471 if (state->mid != 0) {
472 SSVAL(iov[0].iov_base, smb_mid, state->mid);
474 SSVAL(iov[0].iov_base, smb_mid, cli_alloc_mid(state->cli));
477 smb_setlen((char *)iov[0].iov_base, iov_len(iov, iov_count) - 4);
479 status = cli_signv(state->cli, iov, iov_count, &state->seqnum);
481 if (!NT_STATUS_IS_OK(status)) {
485 if (cli_encryption_on(state->cli)) {
488 buf = (char *)iov_concat(talloc_tos(), iov, iov_count);
490 return NT_STATUS_NO_MEMORY;
492 status = cli_encrypt_message(state->cli, (char *)buf,
495 if (!NT_STATUS_IS_OK(status)) {
496 DEBUG(0, ("Error in encrypting client message: %s\n",
500 buf = (char *)talloc_memdup(state, enc_buf,
504 return NT_STATUS_NO_MEMORY;
506 iov[0].iov_base = (void *)buf;
507 iov[0].iov_len = talloc_get_size(buf);
508 subreq = writev_send(state, state->ev, state->cli->outgoing,
509 state->cli->fd, false, iov, 1);
511 subreq = writev_send(state, state->ev, state->cli->outgoing,
512 state->cli->fd, false, iov, iov_count);
514 if (subreq == NULL) {
515 return NT_STATUS_NO_MEMORY;
517 tevent_req_set_callback(subreq, cli_smb_sent, req);
521 NTSTATUS cli_smb_req_send(struct tevent_req *req)
523 struct cli_smb_state *state = tevent_req_data(
524 req, struct cli_smb_state);
526 return cli_smb_req_iov_send(req, state, state->iov, state->iov_count);
529 struct tevent_req *cli_smb_send(TALLOC_CTX *mem_ctx,
530 struct event_context *ev,
531 struct cli_state *cli,
533 uint8_t additional_flags,
534 uint8_t wct, uint16_t *vwv,
536 const uint8_t *bytes)
538 struct tevent_req *req;
542 iov.iov_base = CONST_DISCARD(void *, bytes);
543 iov.iov_len = num_bytes;
545 req = cli_smb_req_create(mem_ctx, ev, cli, smb_command,
546 additional_flags, wct, vwv, 1, &iov);
551 status = cli_smb_req_send(req);
552 if (!NT_STATUS_IS_OK(status)) {
553 tevent_req_nterror(req, status);
554 return tevent_req_post(req, ev);
559 static void cli_smb_sent(struct tevent_req *subreq)
561 struct tevent_req *req = tevent_req_callback_data(
562 subreq, struct tevent_req);
563 struct cli_smb_state *state = tevent_req_data(
564 req, struct cli_smb_state);
568 nwritten = writev_recv(subreq, &err);
570 if (nwritten == -1) {
571 if (state->cli->fd != -1) {
572 close(state->cli->fd);
575 tevent_req_nterror(req, map_nt_error_from_unix(err));
579 switch (CVAL(state->header, smb_com)) {
585 tevent_req_done(req);
588 if ((CVAL(state->header, smb_wct) == 8) &&
589 (CVAL(state->vwv+3, 0) == LOCKING_ANDX_OPLOCK_RELEASE)) {
591 tevent_req_done(req);
596 if (!cli_smb_req_set_pending(req)) {
597 tevent_req_nterror(req, NT_STATUS_NO_MEMORY);
602 static void cli_smb_received(struct tevent_req *subreq)
604 struct cli_state *cli = tevent_req_callback_data(
605 subreq, struct cli_state);
606 struct tevent_req *req;
607 struct cli_smb_state *state;
608 struct tevent_context *ev;
617 received = read_smb_recv(subreq, talloc_tos(), &inbuf, &err);
619 if (received == -1) {
624 status = map_nt_error_from_unix(err);
628 if ((IVAL(inbuf, 4) != 0x424d53ff) /* 0xFF"SMB" */
629 && (SVAL(inbuf, 4) != 0x45ff)) /* 0xFF"E" */ {
630 DEBUG(10, ("Got non-SMB PDU\n"));
631 status = NT_STATUS_INVALID_NETWORK_RESPONSE;
635 if (cli_encryption_on(cli) && (CVAL(inbuf, 0) == 0)) {
636 uint16_t enc_ctx_num;
638 status = get_enc_ctx_num(inbuf, &enc_ctx_num);
639 if (!NT_STATUS_IS_OK(status)) {
640 DEBUG(10, ("get_enc_ctx_num returned %s\n",
645 if (enc_ctx_num != cli->trans_enc_state->enc_ctx_num) {
646 DEBUG(10, ("wrong enc_ctx %d, expected %d\n",
648 cli->trans_enc_state->enc_ctx_num));
649 status = NT_STATUS_INVALID_HANDLE;
653 status = common_decrypt_buffer(cli->trans_enc_state,
655 if (!NT_STATUS_IS_OK(status)) {
656 DEBUG(10, ("common_decrypt_buffer returned %s\n",
662 mid = SVAL(inbuf, smb_mid);
663 num_pending = talloc_array_length(cli->pending);
665 for (i=0; i<num_pending; i++) {
666 if (mid == cli_smb_req_mid(cli->pending[i])) {
670 if (i == num_pending) {
671 /* Dump unexpected reply */
676 oplock_break = false;
680 * Paranoia checks that this is really an oplock break request.
682 oplock_break = (smb_len(inbuf) == 51); /* hdr + 8 words */
683 oplock_break &= ((CVAL(inbuf, smb_flg) & FLAG_REPLY) == 0);
684 oplock_break &= (CVAL(inbuf, smb_com) == SMBlockingX);
685 oplock_break &= (SVAL(inbuf, smb_vwv6) == 0);
686 oplock_break &= (SVAL(inbuf, smb_vwv7) == 0);
689 /* Dump unexpected reply */
695 req = cli->pending[i];
696 state = tevent_req_data(req, struct cli_smb_state);
699 if (!oplock_break /* oplock breaks are not signed */
700 && !cli_check_sign_mac(cli, (char *)inbuf, state->seqnum+1)) {
701 DEBUG(10, ("cli_check_sign_mac failed\n"));
703 status = NT_STATUS_ACCESS_DENIED;
707 if (state->chained_requests == NULL) {
708 state->inbuf = talloc_move(state, &inbuf);
709 talloc_set_destructor(req, NULL);
710 cli_smb_req_destructor(req);
711 tevent_req_done(req);
713 struct tevent_req **chain = talloc_move(
714 talloc_tos(), &state->chained_requests);
715 int num_chained = talloc_array_length(chain);
717 for (i=0; i<num_chained; i++) {
718 state = tevent_req_data(chain[i], struct
720 state->inbuf = inbuf;
721 state->chain_num = i;
722 tevent_req_done(chain[i]);
728 if (talloc_array_length(cli->pending) > 0) {
730 * Set up another read request for the other pending cli_smb
733 state = tevent_req_data(cli->pending[0], struct cli_smb_state);
734 subreq = read_smb_send(cli->pending, state->ev, cli->fd);
735 if (subreq == NULL) {
736 status = NT_STATUS_NO_MEMORY;
739 tevent_req_set_callback(subreq, cli_smb_received, cli);
744 * Cancel all pending requests. We don't do a for-loop walking
745 * cli->pending because that array changes in
746 * cli_smb_req_destructor().
748 while (talloc_array_length(cli->pending) > 0) {
749 req = cli->pending[0];
750 talloc_set_destructor(req, NULL);
751 cli_smb_req_destructor(req);
752 tevent_req_nterror(req, status);
756 NTSTATUS cli_smb_recv(struct tevent_req *req, uint8_t min_wct,
757 uint8_t *pwct, uint16_t **pvwv,
758 uint32_t *pnum_bytes, uint8_t **pbytes)
760 struct cli_smb_state *state = tevent_req_data(
761 req, struct cli_smb_state);
762 NTSTATUS status = NT_STATUS_OK;
765 size_t wct_ofs, bytes_offset;
768 if (tevent_req_is_nterror(req, &status)) {
772 if (state->inbuf == NULL) {
773 /* This was a request without a reply */
778 cmd = CVAL(state->inbuf, smb_com);
780 for (i=0; i<state->chain_num; i++) {
781 if (i < state->chain_num-1) {
783 return NT_STATUS_REQUEST_ABORTED;
785 if (!is_andx_req(cmd)) {
786 return NT_STATUS_INVALID_NETWORK_RESPONSE;
790 if (!have_andx_command((char *)state->inbuf, wct_ofs)) {
792 * This request was not completed because a previous
793 * request in the chain had received an error.
795 return NT_STATUS_REQUEST_ABORTED;
798 wct_ofs = SVAL(state->inbuf, wct_ofs + 3);
801 * Skip the all-present length field. No overflow, we've just
802 * put a 16-bit value into a size_t.
806 if (wct_ofs+2 > talloc_get_size(state->inbuf)) {
807 return NT_STATUS_INVALID_NETWORK_RESPONSE;
810 cmd = CVAL(state->inbuf, wct_ofs + 1);
813 status = cli_pull_error((char *)state->inbuf);
815 if (!have_andx_command((char *)state->inbuf, wct_ofs)
816 && NT_STATUS_IS_ERR(status)) {
818 * The last command takes the error code. All further commands
819 * down the requested chain will get a
820 * NT_STATUS_REQUEST_ABORTED.
825 wct = CVAL(state->inbuf, wct_ofs);
826 bytes_offset = wct_ofs + 1 + wct * sizeof(uint16_t);
827 num_bytes = SVAL(state->inbuf, bytes_offset);
830 return NT_STATUS_INVALID_NETWORK_RESPONSE;
834 * wct_ofs is a 16-bit value plus 4, wct is a 8-bit value, num_bytes
835 * is a 16-bit value. So bytes_offset being size_t should be far from
838 if ((bytes_offset + 2 > talloc_get_size(state->inbuf))
839 || (bytes_offset > 0xffff)) {
840 return NT_STATUS_INVALID_NETWORK_RESPONSE;
847 *pvwv = (uint16_t *)(state->inbuf + wct_ofs + 1);
849 if (pnum_bytes != NULL) {
850 *pnum_bytes = num_bytes;
852 if (pbytes != NULL) {
853 *pbytes = (uint8_t *)state->inbuf + bytes_offset + 2;
859 size_t cli_smb_wct_ofs(struct tevent_req **reqs, int num_reqs)
864 wct_ofs = smb_wct - 4;
866 for (i=0; i<num_reqs; i++) {
867 struct cli_smb_state *state;
868 state = tevent_req_data(reqs[i], struct cli_smb_state);
869 wct_ofs += iov_len(state->iov+1, state->iov_count-1);
870 wct_ofs = (wct_ofs + 3) & ~3;
875 NTSTATUS cli_smb_chain_send(struct tevent_req **reqs, int num_reqs)
877 struct cli_smb_state *first_state = tevent_req_data(
878 reqs[0], struct cli_smb_state);
879 struct cli_smb_state *last_state = tevent_req_data(
880 reqs[num_reqs-1], struct cli_smb_state);
881 struct cli_smb_state *state;
883 size_t chain_padding = 0;
885 struct iovec *iov = NULL;
886 struct iovec *this_iov;
890 for (i=0; i<num_reqs; i++) {
891 state = tevent_req_data(reqs[i], struct cli_smb_state);
892 iovlen += state->iov_count;
895 iov = talloc_array(last_state, struct iovec, iovlen);
897 return NT_STATUS_NO_MEMORY;
900 first_state->chained_requests = (struct tevent_req **)talloc_memdup(
901 last_state, reqs, sizeof(*reqs) * num_reqs);
902 if (first_state->chained_requests == NULL) {
904 return NT_STATUS_NO_MEMORY;
907 wct_offset = smb_wct - 4;
910 for (i=0; i<num_reqs; i++) {
911 size_t next_padding = 0;
914 state = tevent_req_data(reqs[i], struct cli_smb_state);
916 if (i < num_reqs-1) {
917 if (!is_andx_req(CVAL(state->header, smb_com))
918 || CVAL(state->header, smb_wct) < 2) {
920 TALLOC_FREE(first_state->chained_requests);
921 return NT_STATUS_INVALID_PARAMETER;
925 wct_offset += iov_len(state->iov+1, state->iov_count-1) + 1;
926 if ((wct_offset % 4) != 0) {
927 next_padding = 4 - (wct_offset % 4);
929 wct_offset += next_padding;
932 if (i < num_reqs-1) {
933 struct cli_smb_state *next_state = tevent_req_data(
934 reqs[i+1], struct cli_smb_state);
935 SCVAL(vwv+0, 0, CVAL(next_state->header, smb_com));
937 SSVAL(vwv+1, 0, wct_offset);
938 } else if (is_andx_req(CVAL(state->header, smb_com))) {
939 /* properly end the chain */
940 SCVAL(vwv+0, 0, 0xff);
941 SCVAL(vwv+0, 1, 0xff);
946 this_iov[0] = state->iov[0];
949 * This one is a bit subtle. We have to add
950 * chain_padding bytes between the requests, and we
951 * have to also include the wct field of the
952 * subsequent requests. We use the subsequent header
953 * for the padding, it contains the wct field in its
956 this_iov[0].iov_len = chain_padding+1;
957 this_iov[0].iov_base = (void *)&state->header[
958 sizeof(state->header) - this_iov[0].iov_len];
959 memset(this_iov[0].iov_base, 0, this_iov[0].iov_len-1);
961 memcpy(this_iov+1, state->iov+1,
962 sizeof(struct iovec) * (state->iov_count-1));
963 this_iov += state->iov_count;
964 chain_padding = next_padding;
967 status = cli_smb_req_iov_send(reqs[0], last_state, iov, iovlen);
968 if (!NT_STATUS_IS_OK(status)) {
970 TALLOC_FREE(first_state->chained_requests);
977 uint8_t *cli_smb_inbuf(struct tevent_req *req)
979 struct cli_smb_state *state = tevent_req_data(
980 req, struct cli_smb_state);
984 bool cli_has_async_calls(struct cli_state *cli)
986 return ((tevent_queue_length(cli->outgoing) != 0)
987 || (talloc_array_length(cli->pending) != 0));
990 struct cli_smb_oplock_break_waiter_state {
995 static void cli_smb_oplock_break_waiter_done(struct tevent_req *subreq);
997 struct tevent_req *cli_smb_oplock_break_waiter_send(TALLOC_CTX *mem_ctx,
998 struct event_context *ev,
999 struct cli_state *cli)
1001 struct tevent_req *req, *subreq;
1002 struct cli_smb_oplock_break_waiter_state *state;
1003 struct cli_smb_state *smb_state;
1005 req = tevent_req_create(mem_ctx, &state,
1006 struct cli_smb_oplock_break_waiter_state);
1012 * Create a fake SMB request that we will never send out. This is only
1013 * used to be set into the pending queue with the right mid.
1015 subreq = cli_smb_req_create(mem_ctx, ev, cli, 0, 0, 0, NULL, 0, NULL);
1016 if (tevent_req_nomem(subreq, req)) {
1017 return tevent_req_post(req, ev);
1019 smb_state = tevent_req_data(subreq, struct cli_smb_state);
1020 SSVAL(smb_state->header, smb_mid, 0xffff);
1022 if (!cli_smb_req_set_pending(subreq)) {
1023 tevent_req_nterror(req, NT_STATUS_NO_MEMORY);
1024 return tevent_req_post(req, ev);
1026 tevent_req_set_callback(subreq, cli_smb_oplock_break_waiter_done, req);
1030 static void cli_smb_oplock_break_waiter_done(struct tevent_req *subreq)
1032 struct tevent_req *req = tevent_req_callback_data(
1033 subreq, struct tevent_req);
1034 struct cli_smb_oplock_break_waiter_state *state = tevent_req_data(
1035 req, struct cli_smb_oplock_break_waiter_state);
1042 status = cli_smb_recv(subreq, 8, &wct, &vwv, &num_bytes, &bytes);
1043 if (!NT_STATUS_IS_OK(status)) {
1044 TALLOC_FREE(subreq);
1045 tevent_req_nterror(req, status);
1048 state->fnum = SVAL(vwv+2, 0);
1049 state->level = CVAL(vwv+3, 1);
1050 tevent_req_done(req);
1053 NTSTATUS cli_smb_oplock_break_waiter_recv(struct tevent_req *req,
1057 struct cli_smb_oplock_break_waiter_state *state = tevent_req_data(
1058 req, struct cli_smb_oplock_break_waiter_state);
1061 if (tevent_req_is_nterror(req, &status)) {
1064 *pfnum = state->fnum;
1065 *plevel = state->level;
1066 return NT_STATUS_OK;