2 Unix SMB/CIFS implementation.
4 Copyright (C) Stefan Metzmacher 2004
5 Copyright (C) Rafal Szczesniak 2005
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 #include "libnet/libnet.h"
23 #include "libcli/libcli.h"
24 #include "libcli/composite/composite.h"
25 #include "librpc/rpc/dcerpc.h"
26 #include "librpc/rpc/dcerpc_proto.h"
27 #include "librpc/gen_ndr/ndr_lsa_c.h"
28 #include "librpc/gen_ndr/ndr_samr.h"
31 struct rpc_connect_srv_state {
32 struct libnet_context *ctx;
33 struct libnet_RpcConnect r;
36 /* information about the progress */
37 void (*monitor_fn)(struct monitor_msg*);
41 static void continue_pipe_connect(struct composite_context *ctx);
45 * Initiates connection to rpc pipe on remote server
47 * @param ctx initialised libnet context
48 * @param mem_ctx memory context of this call
49 * @param r data structure containing necessary parameters and return values
50 * @return composite context of this call
53 static struct composite_context* libnet_RpcConnectSrv_send(struct libnet_context *ctx,
55 struct libnet_RpcConnect *r,
56 void (*monitor)(struct monitor_msg*))
58 struct composite_context *c;
59 struct rpc_connect_srv_state *s;
60 struct dcerpc_binding *b;
61 struct composite_context *pipe_connect_req;
63 /* composite context allocation and setup */
64 c = composite_create(ctx, ctx->event_ctx);
65 if (c == NULL) return c;
67 s = talloc_zero(c, struct rpc_connect_srv_state);
68 if (composite_nomem(s, c)) return c;
71 s->monitor_fn = monitor;
75 ZERO_STRUCT(s->r.out);
77 /* prepare binding string */
79 case LIBNET_RPC_CONNECT_SERVER:
80 s->binding = talloc_asprintf(s, "ncacn_np:%s", r->in.name);
82 case LIBNET_RPC_CONNECT_SERVER_ADDRESS:
83 s->binding = talloc_asprintf(s, "ncacn_np:%s", r->in.address);
86 case LIBNET_RPC_CONNECT_BINDING:
87 s->binding = talloc_strdup(s, r->in.binding);
90 case LIBNET_RPC_CONNECT_DC:
91 case LIBNET_RPC_CONNECT_PDC:
92 /* this should never happen - DC and PDC level has a separate
94 case LIBNET_RPC_CONNECT_DC_INFO:
95 /* this should never happen - DC_INFO level has a separate
97 composite_error(c, NT_STATUS_INVALID_LEVEL);
101 /* parse binding string to the structure */
102 c->status = dcerpc_parse_binding(c, s->binding, &b);
103 if (!NT_STATUS_IS_OK(c->status)) {
104 DEBUG(0, ("Failed to parse dcerpc binding '%s'\n", s->binding));
105 composite_error(c, c->status);
110 case LIBNET_RPC_CONNECT_SERVER:
111 case LIBNET_RPC_CONNECT_SERVER_ADDRESS:
112 b->flags = r->in.dcerpc_flags;
115 if (r->level == LIBNET_RPC_CONNECT_SERVER_ADDRESS) {
116 b->target_hostname = talloc_strdup(b, r->in.name);
117 if (composite_nomem(b->target_hostname, c)) {
122 /* connect to remote dcerpc pipe */
123 pipe_connect_req = dcerpc_pipe_connect_b_send(c, b, r->in.dcerpc_iface,
124 ctx->cred, c->event_ctx,
126 if (composite_nomem(pipe_connect_req, c)) return c;
128 composite_continue(c, pipe_connect_req, continue_pipe_connect, c);
134 Step 2 of RpcConnectSrv - get rpc connection
136 static void continue_pipe_connect(struct composite_context *ctx)
138 struct composite_context *c;
139 struct rpc_connect_srv_state *s;
141 c = talloc_get_type(ctx->async.private_data, struct composite_context);
142 s = talloc_get_type(c->private_data, struct rpc_connect_srv_state);
144 /* receive result of rpc pipe connection */
145 c->status = dcerpc_pipe_connect_b_recv(ctx, c, &s->r.out.dcerpc_pipe);
147 /* post monitor message */
149 struct monitor_msg msg;
150 struct msg_net_rpc_connect data;
151 struct dcerpc_binding *binding = s->r.out.dcerpc_pipe->binding;
153 /* prepare monitor message and post it */
154 data.host = binding->host;
155 data.endpoint = binding->endpoint;
156 data.transport = binding->transport;
157 data.domain_name = binding->target_hostname;
159 msg.type = mon_NetRpcConnect;
160 msg.data = (void*)&data;
161 msg.data_size = sizeof(data);
170 * Receives result of connection to rpc pipe on remote server
172 * @param c composite context
173 * @param ctx initialised libnet context
174 * @param mem_ctx memory context of this call
175 * @param r data structure containing necessary parameters and return values
176 * @return nt status of rpc connection
179 static NTSTATUS libnet_RpcConnectSrv_recv(struct composite_context *c,
180 struct libnet_context *ctx,
182 struct libnet_RpcConnect *r)
185 struct rpc_connect_srv_state *s = talloc_get_type(c->private_data,
186 struct rpc_connect_srv_state);
188 status = composite_wait(c);
189 if (NT_STATUS_IS_OK(status)) {
190 /* move the returned rpc pipe between memory contexts */
191 s = talloc_get_type(c->private_data, struct rpc_connect_srv_state);
192 r->out.dcerpc_pipe = talloc_steal(mem_ctx, s->r.out.dcerpc_pipe);
194 /* reference created pipe structure to long-term libnet_context
195 so that it can be used by other api functions even after short-term
197 if (r->in.dcerpc_iface == &ndr_table_samr) {
198 ctx->samr.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
200 } else if (r->in.dcerpc_iface == &ndr_table_lsarpc) {
201 ctx->lsa.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
204 r->out.error_string = talloc_strdup(mem_ctx, "Success");
207 r->out.error_string = talloc_asprintf(mem_ctx, "Error: %s", nt_errstr(status));
215 struct rpc_connect_dc_state {
216 struct libnet_context *ctx;
217 struct libnet_RpcConnect r;
218 struct libnet_RpcConnect r2;
219 struct libnet_LookupDCs f;
220 const char *connect_name;
222 /* information about the progress */
223 void (*monitor_fn)(struct monitor_msg *);
227 static void continue_lookup_dc(struct composite_context *ctx);
228 static void continue_rpc_connect(struct composite_context *ctx);
232 * Initiates connection to rpc pipe on domain pdc
234 * @param ctx initialised libnet context
235 * @param mem_ctx memory context of this call
236 * @param r data structure containing necessary parameters and return values
237 * @return composite context of this call
240 static struct composite_context* libnet_RpcConnectDC_send(struct libnet_context *ctx,
242 struct libnet_RpcConnect *r,
243 void (*monitor)(struct monitor_msg *msg))
245 struct composite_context *c;
246 struct rpc_connect_dc_state *s;
247 struct composite_context *lookup_dc_req;
249 /* composite context allocation and setup */
250 c = composite_create(ctx, ctx->event_ctx);
251 if (c == NULL) return c;
253 s = talloc_zero(c, struct rpc_connect_dc_state);
254 if (composite_nomem(s, c)) return c;
257 s->monitor_fn = monitor;
261 ZERO_STRUCT(s->r.out);
264 case LIBNET_RPC_CONNECT_PDC:
265 s->f.in.name_type = NBT_NAME_PDC;
268 case LIBNET_RPC_CONNECT_DC:
269 s->f.in.name_type = NBT_NAME_LOGON;
276 s->f.in.domain_name = r->in.name;
277 s->f.out.num_dcs = 0;
280 /* find the domain pdc first */
281 lookup_dc_req = libnet_LookupDCs_send(ctx, c, &s->f);
282 if (composite_nomem(lookup_dc_req, c)) return c;
284 composite_continue(c, lookup_dc_req, continue_lookup_dc, c);
290 Step 2 of RpcConnectDC: get domain controller name and
291 initiate RpcConnect to it
293 static void continue_lookup_dc(struct composite_context *ctx)
295 struct composite_context *c;
296 struct rpc_connect_dc_state *s;
297 struct composite_context *rpc_connect_req;
298 struct monitor_msg msg;
299 struct msg_net_lookup_dc data;
301 c = talloc_get_type(ctx->async.private_data, struct composite_context);
302 s = talloc_get_type(c->private_data, struct rpc_connect_dc_state);
304 /* receive result of domain controller lookup */
305 c->status = libnet_LookupDCs_recv(ctx, c, &s->f);
306 if (!composite_is_ok(c)) return;
308 /* decide on preferred address type depending on DC type */
309 s->connect_name = s->f.out.dcs[0].name;
311 /* post monitor message */
313 /* prepare a monitor message and post it */
314 data.domain_name = s->f.in.domain_name;
315 data.hostname = s->f.out.dcs[0].name;
316 data.address = s->f.out.dcs[0].address;
318 msg.type = mon_NetLookupDc;
320 msg.data_size = sizeof(data);
324 /* ok, pdc has been found so do attempt to rpc connect */
325 s->r2.level = LIBNET_RPC_CONNECT_SERVER_ADDRESS;
327 /* this will cause yet another name resolution, but at least
328 * we pass the right name down the stack now */
329 s->r2.in.name = talloc_strdup(s, s->connect_name);
330 s->r2.in.address = talloc_steal(s, s->f.out.dcs[0].address);
331 s->r2.in.dcerpc_iface = s->r.in.dcerpc_iface;
332 s->r2.in.dcerpc_flags = s->r.in.dcerpc_flags;
334 /* send rpc connect request to the server */
335 rpc_connect_req = libnet_RpcConnectSrv_send(s->ctx, c, &s->r2, s->monitor_fn);
336 if (composite_nomem(rpc_connect_req, c)) return;
338 composite_continue(c, rpc_connect_req, continue_rpc_connect, c);
343 Step 3 of RpcConnectDC: get rpc connection to the server
345 static void continue_rpc_connect(struct composite_context *ctx)
347 struct composite_context *c;
348 struct rpc_connect_dc_state *s;
350 c = talloc_get_type(ctx->async.private_data, struct composite_context);
351 s = talloc_get_type(c->private_data, struct rpc_connect_dc_state);
353 c->status = libnet_RpcConnectSrv_recv(ctx, s->ctx, c, &s->r2);
355 /* error string is to be passed anyway */
356 s->r.out.error_string = s->r2.out.error_string;
357 if (!composite_is_ok(c)) return;
359 s->r.out.dcerpc_pipe = s->r2.out.dcerpc_pipe;
361 /* post monitor message */
363 struct monitor_msg msg;
364 struct msg_net_rpc_connect data;
365 struct dcerpc_binding *binding = s->r.out.dcerpc_pipe->binding;
367 data.host = binding->host;
368 data.endpoint = binding->endpoint;
369 data.transport = binding->transport;
370 data.domain_name = binding->target_hostname;
372 msg.type = mon_NetRpcConnect;
373 msg.data = (void*)&data;
374 msg.data_size = sizeof(data);
383 * Receives result of connection to rpc pipe on domain pdc
385 * @param c composite context
386 * @param ctx initialised libnet context
387 * @param mem_ctx memory context of this call
388 * @param r data structure containing necessary parameters and return values
389 * @return nt status of rpc connection
392 static NTSTATUS libnet_RpcConnectDC_recv(struct composite_context *c,
393 struct libnet_context *ctx,
395 struct libnet_RpcConnect *r)
398 struct rpc_connect_dc_state *s = talloc_get_type(c->private_data,
399 struct rpc_connect_dc_state);
401 status = composite_wait(c);
402 if (NT_STATUS_IS_OK(status)) {
403 /* move connected rpc pipe between memory contexts
405 The use of talloc_reparent(talloc_parent(), ...) is
406 bizarre, but it is needed because of the absolutely
407 atrocious use of talloc in this code. We need to
408 force the original parent to change, but finding
409 the original parent is well nigh impossible at this
410 point in the code (yes, I tried).
412 r->out.dcerpc_pipe = talloc_reparent(talloc_parent(s->r.out.dcerpc_pipe),
413 mem_ctx, s->r.out.dcerpc_pipe);
415 /* reference created pipe structure to long-term libnet_context
416 so that it can be used by other api functions even after short-term
418 if (r->in.dcerpc_iface == &ndr_table_samr) {
419 ctx->samr.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
421 } else if (r->in.dcerpc_iface == &ndr_table_lsarpc) {
422 ctx->lsa.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
426 r->out.error_string = talloc_asprintf(mem_ctx,
427 "Failed to rpc connect: %s",
437 struct rpc_connect_dci_state {
438 struct libnet_context *ctx;
439 struct libnet_RpcConnect r;
440 struct libnet_RpcConnect rpc_conn;
441 struct policy_handle lsa_handle;
442 struct lsa_QosInfo qos;
443 struct lsa_ObjectAttribute attr;
444 struct lsa_OpenPolicy2 lsa_open_policy;
445 struct dcerpc_pipe *lsa_pipe;
446 struct lsa_QueryInfoPolicy2 lsa_query_info2;
447 struct lsa_QueryInfoPolicy lsa_query_info;
448 struct dcerpc_binding *final_binding;
449 struct dcerpc_pipe *final_pipe;
451 /* information about the progress */
452 void (*monitor_fn)(struct monitor_msg*);
456 static void continue_dci_rpc_connect(struct composite_context *ctx);
457 static void continue_lsa_policy(struct rpc_request *req);
458 static void continue_lsa_query_info(struct rpc_request *req);
459 static void continue_lsa_query_info2(struct rpc_request *req);
460 static void continue_epm_map_binding(struct composite_context *ctx);
461 static void continue_secondary_conn(struct composite_context *ctx);
462 static void continue_epm_map_binding_send(struct composite_context *c);
466 * Initiates connection to rpc pipe on remote server or pdc. Received result
467 * contains info on the domain name, domain sid and realm.
469 * @param ctx initialised libnet context
470 * @param mem_ctx memory context of this call
471 * @param r data structure containing necessary parameters and return values. Must be a talloc context
472 * @return composite context of this call
475 static struct composite_context* libnet_RpcConnectDCInfo_send(struct libnet_context *ctx,
477 struct libnet_RpcConnect *r,
478 void (*monitor)(struct monitor_msg*))
480 struct composite_context *c, *conn_req;
481 struct rpc_connect_dci_state *s;
483 /* composite context allocation and setup */
484 c = composite_create(ctx, ctx->event_ctx);
485 if (c == NULL) return c;
487 s = talloc_zero(c, struct rpc_connect_dci_state);
488 if (composite_nomem(s, c)) return c;
491 s->monitor_fn = monitor;
495 ZERO_STRUCT(s->r.out);
498 /* proceed to pure rpc connection if the binding string is provided,
499 otherwise try to connect domain controller */
500 if (r->in.binding == NULL) {
501 /* Pass on any binding flags (such as anonymous fallback) that have been set */
502 s->rpc_conn.in.dcerpc_flags = r->in.dcerpc_flags;
504 s->rpc_conn.in.name = r->in.name;
505 s->rpc_conn.level = LIBNET_RPC_CONNECT_DC;
507 s->rpc_conn.in.binding = r->in.binding;
508 s->rpc_conn.level = LIBNET_RPC_CONNECT_BINDING;
511 /* we need to query information on lsarpc interface first */
512 s->rpc_conn.in.dcerpc_iface = &ndr_table_lsarpc;
514 /* request connection to the lsa pipe on the pdc */
515 conn_req = libnet_RpcConnect_send(ctx, c, &s->rpc_conn, s->monitor_fn);
516 if (composite_nomem(c, conn_req)) return c;
518 composite_continue(c, conn_req, continue_dci_rpc_connect, c);
524 Step 2 of RpcConnectDCInfo: receive opened rpc pipe and open
527 static void continue_dci_rpc_connect(struct composite_context *ctx)
529 struct composite_context *c;
530 struct rpc_connect_dci_state *s;
531 struct rpc_request *open_pol_req;
533 c = talloc_get_type(ctx->async.private_data, struct composite_context);
534 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
536 c->status = libnet_RpcConnect_recv(ctx, s->ctx, c, &s->rpc_conn);
537 if (!NT_STATUS_IS_OK(c->status)) {
538 composite_error(c, c->status);
542 /* post monitor message */
544 struct monitor_msg msg;
545 struct msg_net_rpc_connect data;
546 struct dcerpc_binding *binding = s->r.out.dcerpc_pipe->binding;
548 data.host = binding->host;
549 data.endpoint = binding->endpoint;
550 data.transport = binding->transport;
551 data.domain_name = binding->target_hostname;
553 msg.type = mon_NetRpcConnect;
554 msg.data = (void*)&data;
555 msg.data_size = sizeof(data);
559 /* prepare to open a policy handle on lsa pipe */
560 s->lsa_pipe = s->ctx->lsa.pipe;
563 s->qos.impersonation_level = 2;
564 s->qos.context_mode = 1;
565 s->qos.effective_only = 0;
567 s->attr.sec_qos = &s->qos;
569 s->lsa_open_policy.in.attr = &s->attr;
570 s->lsa_open_policy.in.system_name = talloc_asprintf(c, "\\");
571 if (composite_nomem(s->lsa_open_policy.in.system_name, c)) return;
573 s->lsa_open_policy.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
574 s->lsa_open_policy.out.handle = &s->lsa_handle;
576 open_pol_req = dcerpc_lsa_OpenPolicy2_send(s->lsa_pipe, c, &s->lsa_open_policy);
577 if (composite_nomem(open_pol_req, c)) return;
579 composite_continue_rpc(c, open_pol_req, continue_lsa_policy, c);
584 Step 3 of RpcConnectDCInfo: Get policy handle and query lsa info
585 for kerberos realm (dns name) and guid. The query may fail.
587 static void continue_lsa_policy(struct rpc_request *req)
589 struct composite_context *c;
590 struct rpc_connect_dci_state *s;
591 struct rpc_request *query_info_req;
593 c = talloc_get_type(req->async.private_data, struct composite_context);
594 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
596 c->status = dcerpc_lsa_OpenPolicy2_recv(req);
597 if (!NT_STATUS_IS_OK(c->status)) {
598 composite_error(c, c->status);
602 if (NT_STATUS_EQUAL(s->lsa_open_policy.out.result, NT_STATUS_RPC_PROTSEQ_NOT_SUPPORTED)) {
603 s->r.out.realm = NULL;
604 s->r.out.guid = NULL;
605 s->r.out.domain_name = NULL;
606 s->r.out.domain_sid = NULL;
608 /* Skip to the creating the actual connection, no info available on this transport */
609 continue_epm_map_binding_send(c);
612 } else if (!NT_STATUS_IS_OK(s->lsa_open_policy.out.result)) {
613 composite_error(c, s->lsa_open_policy.out.result);
617 /* post monitor message */
619 struct monitor_msg msg;
621 msg.type = mon_LsaOpenPolicy;
627 /* query lsa info for dns domain name and guid */
628 s->lsa_query_info2.in.handle = &s->lsa_handle;
629 s->lsa_query_info2.in.level = LSA_POLICY_INFO_DNS;
630 s->lsa_query_info2.out.info = talloc_zero(c, union lsa_PolicyInformation *);
631 if (composite_nomem(s->lsa_query_info2.out.info, c)) return;
633 query_info_req = dcerpc_lsa_QueryInfoPolicy2_send(s->lsa_pipe, c, &s->lsa_query_info2);
634 if (composite_nomem(query_info_req, c)) return;
636 composite_continue_rpc(c, query_info_req, continue_lsa_query_info2, c);
641 Step 4 of RpcConnectDCInfo: Get realm and guid if provided (rpc call
642 may result in failure) and query lsa info for domain name and sid.
644 static void continue_lsa_query_info2(struct rpc_request *req)
646 struct composite_context *c;
647 struct rpc_connect_dci_state *s;
648 struct rpc_request *query_info_req;
650 c = talloc_get_type(req->async.private_data, struct composite_context);
651 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
653 c->status = dcerpc_lsa_QueryInfoPolicy2_recv(req);
655 /* In case of error just null the realm and guid and proceed
656 to the next step. After all, it doesn't have to be AD domain
657 controller we talking to - NT-style PDC also counts */
659 if (NT_STATUS_EQUAL(c->status, NT_STATUS_NET_WRITE_FAULT)) {
660 s->r.out.realm = NULL;
661 s->r.out.guid = NULL;
664 if (!NT_STATUS_IS_OK(c->status)) {
665 s->r.out.error_string = talloc_asprintf(c,
666 "lsa_QueryInfoPolicy2 failed: %s",
667 nt_errstr(c->status));
668 composite_error(c, c->status);
672 if (!NT_STATUS_IS_OK(s->lsa_query_info2.out.result)) {
673 s->r.out.error_string = talloc_asprintf(c,
674 "lsa_QueryInfoPolicy2 failed: %s",
675 nt_errstr(s->lsa_query_info2.out.result));
676 composite_error(c, s->lsa_query_info2.out.result);
680 /* Copy the dns domain name and guid from the query result */
682 /* this should actually be a conversion from lsa_StringLarge */
683 s->r.out.realm = (*s->lsa_query_info2.out.info)->dns.dns_domain.string;
684 s->r.out.guid = talloc(c, struct GUID);
685 if (composite_nomem(s->r.out.guid, c)) {
686 s->r.out.error_string = NULL;
689 *s->r.out.guid = (*s->lsa_query_info2.out.info)->dns.domain_guid;
692 /* post monitor message */
694 struct monitor_msg msg;
696 msg.type = mon_LsaQueryPolicy;
702 /* query lsa info for domain name and sid */
703 s->lsa_query_info.in.handle = &s->lsa_handle;
704 s->lsa_query_info.in.level = LSA_POLICY_INFO_DOMAIN;
705 s->lsa_query_info.out.info = talloc_zero(c, union lsa_PolicyInformation *);
706 if (composite_nomem(s->lsa_query_info.out.info, c)) return;
708 query_info_req = dcerpc_lsa_QueryInfoPolicy_send(s->lsa_pipe, c, &s->lsa_query_info);
709 if (composite_nomem(query_info_req, c)) return;
711 composite_continue_rpc(c, query_info_req, continue_lsa_query_info, c);
716 Step 5 of RpcConnectDCInfo: Get domain name and sid
718 static void continue_lsa_query_info(struct rpc_request *req)
720 struct composite_context *c;
721 struct rpc_connect_dci_state *s;
723 c = talloc_get_type(req->async.private_data, struct composite_context);
724 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
726 c->status = dcerpc_lsa_QueryInfoPolicy_recv(req);
727 if (!NT_STATUS_IS_OK(c->status)) {
728 s->r.out.error_string = talloc_asprintf(c,
729 "lsa_QueryInfoPolicy failed: %s",
730 nt_errstr(c->status));
731 composite_error(c, c->status);
735 /* post monitor message */
737 struct monitor_msg msg;
739 msg.type = mon_LsaQueryPolicy;
745 /* Copy the domain name and sid from the query result */
746 s->r.out.domain_sid = (*s->lsa_query_info.out.info)->domain.sid;
747 s->r.out.domain_name = (*s->lsa_query_info.out.info)->domain.name.string;
749 continue_epm_map_binding_send(c);
753 Step 5 (continued) of RpcConnectDCInfo: request endpoint
756 We may short-cut to this step if we don't support LSA OpenPolicy on this transport
758 static void continue_epm_map_binding_send(struct composite_context *c)
760 struct rpc_connect_dci_state *s;
761 struct composite_context *epm_map_req;
762 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
764 /* prepare to get endpoint mapping for the requested interface */
765 s->final_binding = talloc(s, struct dcerpc_binding);
766 if (composite_nomem(s->final_binding, c)) return;
768 *s->final_binding = *s->lsa_pipe->binding;
769 /* Ensure we keep hold of the member elements */
770 if (composite_nomem(talloc_reference(s->final_binding, s->lsa_pipe->binding), c)) return;
772 epm_map_req = dcerpc_epm_map_binding_send(c, s->final_binding, s->r.in.dcerpc_iface,
773 s->lsa_pipe->conn->event_ctx, s->ctx->lp_ctx);
774 if (composite_nomem(epm_map_req, c)) return;
776 composite_continue(c, epm_map_req, continue_epm_map_binding, c);
780 Step 6 of RpcConnectDCInfo: Receive endpoint mapping and create secondary
781 rpc connection derived from already used pipe but connected to the requested
782 one (as specified in libnet_RpcConnect structure)
784 static void continue_epm_map_binding(struct composite_context *ctx)
786 struct composite_context *c, *sec_conn_req;
787 struct rpc_connect_dci_state *s;
789 c = talloc_get_type(ctx->async.private_data, struct composite_context);
790 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
792 c->status = dcerpc_epm_map_binding_recv(ctx);
793 if (!NT_STATUS_IS_OK(c->status)) {
794 s->r.out.error_string = talloc_asprintf(c,
795 "failed to map pipe with endpoint mapper - %s",
796 nt_errstr(c->status));
797 composite_error(c, c->status);
801 /* create secondary connection derived from lsa pipe */
802 sec_conn_req = dcerpc_secondary_connection_send(s->lsa_pipe, s->final_binding);
803 if (composite_nomem(sec_conn_req, c)) return;
805 composite_continue(c, sec_conn_req, continue_secondary_conn, c);
810 Step 7 of RpcConnectDCInfo: Get actual pipe to be returned
811 and complete this composite call
813 static void continue_secondary_conn(struct composite_context *ctx)
815 struct composite_context *c;
816 struct rpc_connect_dci_state *s;
818 c = talloc_get_type(ctx->async.private_data, struct composite_context);
819 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
821 c->status = dcerpc_secondary_connection_recv(ctx, &s->final_pipe);
822 if (!NT_STATUS_IS_OK(c->status)) {
823 s->r.out.error_string = talloc_asprintf(c,
824 "secondary connection failed: %s",
825 nt_errstr(c->status));
827 composite_error(c, c->status);
831 s->r.out.dcerpc_pipe = s->final_pipe;
833 /* post monitor message */
835 struct monitor_msg msg;
836 struct msg_net_rpc_connect data;
837 struct dcerpc_binding *binding = s->r.out.dcerpc_pipe->binding;
839 /* prepare monitor message and post it */
840 data.host = binding->host;
841 data.endpoint = binding->endpoint;
842 data.transport = binding->transport;
843 data.domain_name = binding->target_hostname;
845 msg.type = mon_NetRpcConnect;
846 msg.data = (void*)&data;
847 msg.data_size = sizeof(data);
856 * Receives result of connection to rpc pipe and gets basic
857 * domain info (name, sid, realm, guid)
859 * @param c composite context
860 * @param ctx initialised libnet context
861 * @param mem_ctx memory context of this call
862 * @param r data structure containing return values
863 * @return nt status of rpc connection
866 static NTSTATUS libnet_RpcConnectDCInfo_recv(struct composite_context *c, struct libnet_context *ctx,
867 TALLOC_CTX *mem_ctx, struct libnet_RpcConnect *r)
870 struct rpc_connect_dci_state *s = talloc_get_type(c->private_data,
871 struct rpc_connect_dci_state);
873 status = composite_wait(c);
874 if (NT_STATUS_IS_OK(status)) {
875 r->out.realm = talloc_steal(mem_ctx, s->r.out.realm);
876 r->out.guid = talloc_steal(mem_ctx, s->r.out.guid);
877 r->out.domain_name = talloc_steal(mem_ctx, s->r.out.domain_name);
878 r->out.domain_sid = talloc_steal(mem_ctx, s->r.out.domain_sid);
880 r->out.dcerpc_pipe = talloc_steal(mem_ctx, s->r.out.dcerpc_pipe);
882 /* reference created pipe structure to long-term libnet_context
883 so that it can be used by other api functions even after short-term
885 if (r->in.dcerpc_iface == &ndr_table_samr) {
886 ctx->samr.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
887 ctx->samr.samr_handle = ctx->samr.pipe->binding_handle;
889 } else if (r->in.dcerpc_iface == &ndr_table_lsarpc) {
890 ctx->lsa.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
891 ctx->lsa.lsa_handle = ctx->lsa.pipe->binding_handle;
895 if (s->r.out.error_string) {
896 r->out.error_string = talloc_steal(mem_ctx, s->r.out.error_string);
897 } else if (r->in.binding == NULL) {
898 r->out.error_string = talloc_asprintf(mem_ctx, "Connection to DC failed: %s", nt_errstr(status));
900 r->out.error_string = talloc_asprintf(mem_ctx, "Connection to DC %s failed: %s",
901 r->in.binding, nt_errstr(status));
911 * Initiates connection to rpc pipe on remote server or pdc, optionally
912 * providing domain info
914 * @param ctx initialised libnet context
915 * @param mem_ctx memory context of this call
916 * @param r data structure containing necessary parameters and return values
917 * @return composite context of this call
920 struct composite_context* libnet_RpcConnect_send(struct libnet_context *ctx,
922 struct libnet_RpcConnect *r,
923 void (*monitor)(struct monitor_msg*))
925 struct composite_context *c;
928 case LIBNET_RPC_CONNECT_SERVER:
929 case LIBNET_RPC_CONNECT_SERVER_ADDRESS:
930 case LIBNET_RPC_CONNECT_BINDING:
931 c = libnet_RpcConnectSrv_send(ctx, mem_ctx, r, monitor);
934 case LIBNET_RPC_CONNECT_PDC:
935 case LIBNET_RPC_CONNECT_DC:
936 c = libnet_RpcConnectDC_send(ctx, mem_ctx, r, monitor);
939 case LIBNET_RPC_CONNECT_DC_INFO:
940 c = libnet_RpcConnectDCInfo_send(ctx, mem_ctx, r, monitor);
944 c = talloc_zero(mem_ctx, struct composite_context);
945 composite_error(c, NT_STATUS_INVALID_LEVEL);
953 * Receives result of connection to rpc pipe on remote server or pdc
955 * @param c composite context
956 * @param ctx initialised libnet context
957 * @param mem_ctx memory context of this call
958 * @param r data structure containing necessary parameters and return values
959 * @return nt status of rpc connection
962 NTSTATUS libnet_RpcConnect_recv(struct composite_context *c, struct libnet_context *ctx,
963 TALLOC_CTX *mem_ctx, struct libnet_RpcConnect *r)
966 case LIBNET_RPC_CONNECT_SERVER:
967 case LIBNET_RPC_CONNECT_BINDING:
968 return libnet_RpcConnectSrv_recv(c, ctx, mem_ctx, r);
970 case LIBNET_RPC_CONNECT_PDC:
971 case LIBNET_RPC_CONNECT_DC:
972 return libnet_RpcConnectDC_recv(c, ctx, mem_ctx, r);
974 case LIBNET_RPC_CONNECT_DC_INFO:
975 return libnet_RpcConnectDCInfo_recv(c, ctx, mem_ctx, r);
979 return NT_STATUS_INVALID_LEVEL;
985 * Connect to a rpc pipe on a remote server - sync version
987 * @param ctx initialised libnet context
988 * @param mem_ctx memory context of this call
989 * @param r data structure containing necessary parameters and return values
990 * @return nt status of rpc connection
993 NTSTATUS libnet_RpcConnect(struct libnet_context *ctx, TALLOC_CTX *mem_ctx,
994 struct libnet_RpcConnect *r)
996 struct composite_context *c;
998 c = libnet_RpcConnect_send(ctx, mem_ctx, r, NULL);
999 return libnet_RpcConnect_recv(c, ctx, mem_ctx, r);
git.samba.org / kai / samba.git / blob