2 Unix SMB/CIFS implementation.
4 Copyright (C) Stefan Metzmacher 2004
5 Copyright (C) Rafal Szczesniak 2005
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 #include "libnet/libnet.h"
23 #include "libcli/libcli.h"
24 #include "libcli/composite/composite.h"
25 #include "librpc/rpc/dcerpc_proto.h"
26 #include "librpc/gen_ndr/ndr_lsa_c.h"
27 #include "librpc/gen_ndr/ndr_samr.h"
30 struct rpc_connect_srv_state {
31 struct libnet_context *ctx;
32 struct libnet_RpcConnect r;
35 /* information about the progress */
36 void (*monitor_fn)(struct monitor_msg*);
40 static void continue_pipe_connect(struct composite_context *ctx);
44 * Initiates connection to rpc pipe on remote server
46 * @param ctx initialised libnet context
47 * @param mem_ctx memory context of this call
48 * @param r data structure containing necessary parameters and return values
49 * @return composite context of this call
52 static struct composite_context* libnet_RpcConnectSrv_send(struct libnet_context *ctx,
54 struct libnet_RpcConnect *r,
55 void (*monitor)(struct monitor_msg*))
57 struct composite_context *c;
58 struct rpc_connect_srv_state *s;
59 struct dcerpc_binding *b;
60 struct composite_context *pipe_connect_req;
62 /* composite context allocation and setup */
63 c = composite_create(ctx, ctx->event_ctx);
64 if (c == NULL) return c;
66 s = talloc_zero(c, struct rpc_connect_srv_state);
67 if (composite_nomem(s, c)) return c;
70 s->monitor_fn = monitor;
74 ZERO_STRUCT(s->r.out);
76 /* prepare binding string */
78 case LIBNET_RPC_CONNECT_SERVER:
79 s->binding = talloc_asprintf(s, "ncacn_np:%s", r->in.name);
81 case LIBNET_RPC_CONNECT_SERVER_ADDRESS:
82 s->binding = talloc_asprintf(s, "ncacn_np:%s", r->in.address);
85 case LIBNET_RPC_CONNECT_BINDING:
86 s->binding = talloc_strdup(s, r->in.binding);
89 case LIBNET_RPC_CONNECT_DC:
90 case LIBNET_RPC_CONNECT_PDC:
91 /* this should never happen - DC and PDC level has a separate
93 case LIBNET_RPC_CONNECT_DC_INFO:
94 /* this should never happen - DC_INFO level has a separate
96 composite_error(c, NT_STATUS_INVALID_LEVEL);
100 /* parse binding string to the structure */
101 c->status = dcerpc_parse_binding(c, s->binding, &b);
102 if (!NT_STATUS_IS_OK(c->status)) {
103 DEBUG(0, ("Failed to parse dcerpc binding '%s'\n", s->binding));
104 composite_error(c, c->status);
109 case LIBNET_RPC_CONNECT_SERVER:
110 case LIBNET_RPC_CONNECT_SERVER_ADDRESS:
111 b->flags = r->in.dcerpc_flags;
114 if (DEBUGLEVEL >= 10) {
115 b->flags |= DCERPC_DEBUG_PRINT_BOTH;
118 if (r->level == LIBNET_RPC_CONNECT_SERVER_ADDRESS) {
119 b->target_hostname = talloc_strdup(b, r->in.name);
120 if (composite_nomem(b->target_hostname, c)) {
125 /* connect to remote dcerpc pipe */
126 pipe_connect_req = dcerpc_pipe_connect_b_send(c, b, r->in.dcerpc_iface,
127 ctx->cred, c->event_ctx,
129 if (composite_nomem(pipe_connect_req, c)) return c;
131 composite_continue(c, pipe_connect_req, continue_pipe_connect, c);
137 Step 2 of RpcConnectSrv - get rpc connection
139 static void continue_pipe_connect(struct composite_context *ctx)
141 struct composite_context *c;
142 struct rpc_connect_srv_state *s;
144 c = talloc_get_type(ctx->async.private_data, struct composite_context);
145 s = talloc_get_type(c->private_data, struct rpc_connect_srv_state);
147 /* receive result of rpc pipe connection */
148 c->status = dcerpc_pipe_connect_b_recv(ctx, c, &s->r.out.dcerpc_pipe);
150 /* post monitor message */
152 struct monitor_msg msg;
153 struct msg_net_rpc_connect data;
154 struct dcerpc_binding *binding = s->r.out.dcerpc_pipe->binding;
156 /* prepare monitor message and post it */
157 data.host = binding->host;
158 data.endpoint = binding->endpoint;
159 data.transport = binding->transport;
160 data.domain_name = binding->target_hostname;
162 msg.type = mon_NetRpcConnect;
163 msg.data = (void*)&data;
164 msg.data_size = sizeof(data);
173 * Receives result of connection to rpc pipe on remote server
175 * @param c composite context
176 * @param ctx initialised libnet context
177 * @param mem_ctx memory context of this call
178 * @param r data structure containing necessary parameters and return values
179 * @return nt status of rpc connection
182 static NTSTATUS libnet_RpcConnectSrv_recv(struct composite_context *c,
183 struct libnet_context *ctx,
185 struct libnet_RpcConnect *r)
188 struct rpc_connect_srv_state *s = talloc_get_type(c->private_data,
189 struct rpc_connect_srv_state);
191 status = composite_wait(c);
192 if (NT_STATUS_IS_OK(status)) {
193 /* move the returned rpc pipe between memory contexts */
194 s = talloc_get_type(c->private_data, struct rpc_connect_srv_state);
195 r->out.dcerpc_pipe = talloc_steal(mem_ctx, s->r.out.dcerpc_pipe);
197 /* reference created pipe structure to long-term libnet_context
198 so that it can be used by other api functions even after short-term
200 if (r->in.dcerpc_iface == &ndr_table_samr) {
201 ctx->samr.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
203 } else if (r->in.dcerpc_iface == &ndr_table_lsarpc) {
204 ctx->lsa.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
207 r->out.error_string = talloc_strdup(mem_ctx, "Success");
210 r->out.error_string = talloc_asprintf(mem_ctx, "Error: %s", nt_errstr(status));
218 struct rpc_connect_dc_state {
219 struct libnet_context *ctx;
220 struct libnet_RpcConnect r;
221 struct libnet_RpcConnect r2;
222 struct libnet_LookupDCs f;
223 const char *connect_name;
225 /* information about the progress */
226 void (*monitor_fn)(struct monitor_msg *);
230 static void continue_lookup_dc(struct tevent_req *req);
231 static void continue_rpc_connect(struct composite_context *ctx);
235 * Initiates connection to rpc pipe on domain pdc
237 * @param ctx initialised libnet context
238 * @param mem_ctx memory context of this call
239 * @param r data structure containing necessary parameters and return values
240 * @return composite context of this call
243 static struct composite_context* libnet_RpcConnectDC_send(struct libnet_context *ctx,
245 struct libnet_RpcConnect *r,
246 void (*monitor)(struct monitor_msg *msg))
248 struct composite_context *c;
249 struct rpc_connect_dc_state *s;
250 struct tevent_req *lookup_dc_req;
252 /* composite context allocation and setup */
253 c = composite_create(ctx, ctx->event_ctx);
254 if (c == NULL) return c;
256 s = talloc_zero(c, struct rpc_connect_dc_state);
257 if (composite_nomem(s, c)) return c;
260 s->monitor_fn = monitor;
264 ZERO_STRUCT(s->r.out);
267 case LIBNET_RPC_CONNECT_PDC:
268 s->f.in.name_type = NBT_NAME_PDC;
271 case LIBNET_RPC_CONNECT_DC:
272 s->f.in.name_type = NBT_NAME_LOGON;
279 s->f.in.domain_name = r->in.name;
280 s->f.out.num_dcs = 0;
283 /* find the domain pdc first */
284 lookup_dc_req = libnet_LookupDCs_send(ctx, c, &s->f);
285 if (composite_nomem(lookup_dc_req, c)) return c;
287 tevent_req_set_callback(lookup_dc_req, continue_lookup_dc, c);
293 Step 2 of RpcConnectDC: get domain controller name and
294 initiate RpcConnect to it
296 static void continue_lookup_dc(struct tevent_req *req)
298 struct composite_context *c;
299 struct rpc_connect_dc_state *s;
300 struct composite_context *rpc_connect_req;
301 struct monitor_msg msg;
302 struct msg_net_lookup_dc data;
304 c = tevent_req_callback_data(req, struct composite_context);
305 s = talloc_get_type_abort(c->private_data, struct rpc_connect_dc_state);
307 /* receive result of domain controller lookup */
308 c->status = libnet_LookupDCs_recv(req, c, &s->f);
309 if (!composite_is_ok(c)) return;
311 /* decide on preferred address type depending on DC type */
312 s->connect_name = s->f.out.dcs[0].name;
314 /* post monitor message */
316 /* prepare a monitor message and post it */
317 data.domain_name = s->f.in.domain_name;
318 data.hostname = s->f.out.dcs[0].name;
319 data.address = s->f.out.dcs[0].address;
321 msg.type = mon_NetLookupDc;
323 msg.data_size = sizeof(data);
327 /* ok, pdc has been found so do attempt to rpc connect */
328 s->r2.level = LIBNET_RPC_CONNECT_SERVER_ADDRESS;
330 /* this will cause yet another name resolution, but at least
331 * we pass the right name down the stack now */
332 s->r2.in.name = talloc_strdup(s, s->connect_name);
333 s->r2.in.address = talloc_steal(s, s->f.out.dcs[0].address);
334 s->r2.in.dcerpc_iface = s->r.in.dcerpc_iface;
335 s->r2.in.dcerpc_flags = s->r.in.dcerpc_flags;
337 /* send rpc connect request to the server */
338 rpc_connect_req = libnet_RpcConnectSrv_send(s->ctx, c, &s->r2, s->monitor_fn);
339 if (composite_nomem(rpc_connect_req, c)) return;
341 composite_continue(c, rpc_connect_req, continue_rpc_connect, c);
346 Step 3 of RpcConnectDC: get rpc connection to the server
348 static void continue_rpc_connect(struct composite_context *ctx)
350 struct composite_context *c;
351 struct rpc_connect_dc_state *s;
353 c = talloc_get_type(ctx->async.private_data, struct composite_context);
354 s = talloc_get_type(c->private_data, struct rpc_connect_dc_state);
356 c->status = libnet_RpcConnectSrv_recv(ctx, s->ctx, c, &s->r2);
358 /* error string is to be passed anyway */
359 s->r.out.error_string = s->r2.out.error_string;
360 if (!composite_is_ok(c)) return;
362 s->r.out.dcerpc_pipe = s->r2.out.dcerpc_pipe;
364 /* post monitor message */
366 struct monitor_msg msg;
367 struct msg_net_rpc_connect data;
368 struct dcerpc_binding *binding = s->r.out.dcerpc_pipe->binding;
370 data.host = binding->host;
371 data.endpoint = binding->endpoint;
372 data.transport = binding->transport;
373 data.domain_name = binding->target_hostname;
375 msg.type = mon_NetRpcConnect;
376 msg.data = (void*)&data;
377 msg.data_size = sizeof(data);
386 * Receives result of connection to rpc pipe on domain pdc
388 * @param c composite context
389 * @param ctx initialised libnet context
390 * @param mem_ctx memory context of this call
391 * @param r data structure containing necessary parameters and return values
392 * @return nt status of rpc connection
395 static NTSTATUS libnet_RpcConnectDC_recv(struct composite_context *c,
396 struct libnet_context *ctx,
398 struct libnet_RpcConnect *r)
401 struct rpc_connect_dc_state *s = talloc_get_type(c->private_data,
402 struct rpc_connect_dc_state);
404 status = composite_wait(c);
405 if (NT_STATUS_IS_OK(status)) {
406 /* move connected rpc pipe between memory contexts
408 The use of talloc_reparent(talloc_parent(), ...) is
409 bizarre, but it is needed because of the absolutely
410 atrocious use of talloc in this code. We need to
411 force the original parent to change, but finding
412 the original parent is well nigh impossible at this
413 point in the code (yes, I tried).
415 r->out.dcerpc_pipe = talloc_reparent(talloc_parent(s->r.out.dcerpc_pipe),
416 mem_ctx, s->r.out.dcerpc_pipe);
418 /* reference created pipe structure to long-term libnet_context
419 so that it can be used by other api functions even after short-term
421 if (r->in.dcerpc_iface == &ndr_table_samr) {
422 ctx->samr.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
424 } else if (r->in.dcerpc_iface == &ndr_table_lsarpc) {
425 ctx->lsa.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
429 r->out.error_string = talloc_asprintf(mem_ctx,
430 "Failed to rpc connect: %s",
440 struct rpc_connect_dci_state {
441 struct libnet_context *ctx;
442 struct libnet_RpcConnect r;
443 struct libnet_RpcConnect rpc_conn;
444 struct policy_handle lsa_handle;
445 struct lsa_QosInfo qos;
446 struct lsa_ObjectAttribute attr;
447 struct lsa_OpenPolicy2 lsa_open_policy;
448 struct dcerpc_pipe *lsa_pipe;
449 struct lsa_QueryInfoPolicy2 lsa_query_info2;
450 struct lsa_QueryInfoPolicy lsa_query_info;
451 struct dcerpc_binding *final_binding;
452 struct dcerpc_pipe *final_pipe;
454 /* information about the progress */
455 void (*monitor_fn)(struct monitor_msg*);
459 static void continue_dci_rpc_connect(struct composite_context *ctx);
460 static void continue_lsa_policy(struct tevent_req *subreq);
461 static void continue_lsa_query_info(struct tevent_req *subreq);
462 static void continue_lsa_query_info2(struct tevent_req *subreq);
463 static void continue_epm_map_binding(struct composite_context *ctx);
464 static void continue_secondary_conn(struct composite_context *ctx);
465 static void continue_epm_map_binding_send(struct composite_context *c);
469 * Initiates connection to rpc pipe on remote server or pdc. Received result
470 * contains info on the domain name, domain sid and realm.
472 * @param ctx initialised libnet context
473 * @param mem_ctx memory context of this call
474 * @param r data structure containing necessary parameters and return values. Must be a talloc context
475 * @return composite context of this call
478 static struct composite_context* libnet_RpcConnectDCInfo_send(struct libnet_context *ctx,
480 struct libnet_RpcConnect *r,
481 void (*monitor)(struct monitor_msg*))
483 struct composite_context *c, *conn_req;
484 struct rpc_connect_dci_state *s;
486 /* composite context allocation and setup */
487 c = composite_create(ctx, ctx->event_ctx);
488 if (c == NULL) return c;
490 s = talloc_zero(c, struct rpc_connect_dci_state);
491 if (composite_nomem(s, c)) return c;
494 s->monitor_fn = monitor;
498 ZERO_STRUCT(s->r.out);
501 /* proceed to pure rpc connection if the binding string is provided,
502 otherwise try to connect domain controller */
503 if (r->in.binding == NULL) {
504 /* Pass on any binding flags (such as anonymous fallback) that have been set */
505 s->rpc_conn.in.dcerpc_flags = r->in.dcerpc_flags;
507 s->rpc_conn.in.name = r->in.name;
508 s->rpc_conn.level = LIBNET_RPC_CONNECT_DC;
510 s->rpc_conn.in.binding = r->in.binding;
511 s->rpc_conn.level = LIBNET_RPC_CONNECT_BINDING;
514 /* we need to query information on lsarpc interface first */
515 s->rpc_conn.in.dcerpc_iface = &ndr_table_lsarpc;
517 /* request connection to the lsa pipe on the pdc */
518 conn_req = libnet_RpcConnect_send(ctx, c, &s->rpc_conn, s->monitor_fn);
519 if (composite_nomem(c, conn_req)) return c;
521 composite_continue(c, conn_req, continue_dci_rpc_connect, c);
527 Step 2 of RpcConnectDCInfo: receive opened rpc pipe and open
530 static void continue_dci_rpc_connect(struct composite_context *ctx)
532 struct composite_context *c;
533 struct rpc_connect_dci_state *s;
534 struct tevent_req *subreq;
536 c = talloc_get_type(ctx->async.private_data, struct composite_context);
537 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
539 c->status = libnet_RpcConnect_recv(ctx, s->ctx, c, &s->rpc_conn);
540 if (!NT_STATUS_IS_OK(c->status)) {
541 composite_error(c, c->status);
545 /* post monitor message */
547 struct monitor_msg msg;
548 struct msg_net_rpc_connect data;
549 struct dcerpc_binding *binding = s->r.out.dcerpc_pipe->binding;
551 data.host = binding->host;
552 data.endpoint = binding->endpoint;
553 data.transport = binding->transport;
554 data.domain_name = binding->target_hostname;
556 msg.type = mon_NetRpcConnect;
557 msg.data = (void*)&data;
558 msg.data_size = sizeof(data);
562 /* prepare to open a policy handle on lsa pipe */
563 s->lsa_pipe = s->ctx->lsa.pipe;
566 s->qos.impersonation_level = 2;
567 s->qos.context_mode = 1;
568 s->qos.effective_only = 0;
570 s->attr.sec_qos = &s->qos;
572 s->lsa_open_policy.in.attr = &s->attr;
573 s->lsa_open_policy.in.system_name = talloc_asprintf(c, "\\");
574 if (composite_nomem(s->lsa_open_policy.in.system_name, c)) return;
576 s->lsa_open_policy.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
577 s->lsa_open_policy.out.handle = &s->lsa_handle;
579 subreq = dcerpc_lsa_OpenPolicy2_r_send(s, c->event_ctx,
580 s->lsa_pipe->binding_handle,
581 &s->lsa_open_policy);
582 if (composite_nomem(subreq, c)) return;
584 tevent_req_set_callback(subreq, continue_lsa_policy, c);
589 Step 3 of RpcConnectDCInfo: Get policy handle and query lsa info
590 for kerberos realm (dns name) and guid. The query may fail.
592 static void continue_lsa_policy(struct tevent_req *subreq)
594 struct composite_context *c;
595 struct rpc_connect_dci_state *s;
597 c = tevent_req_callback_data(subreq, struct composite_context);
598 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
600 c->status = dcerpc_lsa_OpenPolicy2_r_recv(subreq, s);
602 if (!NT_STATUS_IS_OK(c->status)) {
603 composite_error(c, c->status);
607 if (NT_STATUS_EQUAL(s->lsa_open_policy.out.result, NT_STATUS_RPC_PROTSEQ_NOT_SUPPORTED)) {
608 s->r.out.realm = NULL;
609 s->r.out.guid = NULL;
610 s->r.out.domain_name = NULL;
611 s->r.out.domain_sid = NULL;
613 /* Skip to the creating the actual connection, no info available on this transport */
614 continue_epm_map_binding_send(c);
617 } else if (!NT_STATUS_IS_OK(s->lsa_open_policy.out.result)) {
618 composite_error(c, s->lsa_open_policy.out.result);
622 /* post monitor message */
624 struct monitor_msg msg;
626 msg.type = mon_LsaOpenPolicy;
632 /* query lsa info for dns domain name and guid */
633 s->lsa_query_info2.in.handle = &s->lsa_handle;
634 s->lsa_query_info2.in.level = LSA_POLICY_INFO_DNS;
635 s->lsa_query_info2.out.info = talloc_zero(c, union lsa_PolicyInformation *);
636 if (composite_nomem(s->lsa_query_info2.out.info, c)) return;
638 subreq = dcerpc_lsa_QueryInfoPolicy2_r_send(s, c->event_ctx,
639 s->lsa_pipe->binding_handle,
640 &s->lsa_query_info2);
641 if (composite_nomem(subreq, c)) return;
643 tevent_req_set_callback(subreq, continue_lsa_query_info2, c);
648 Step 4 of RpcConnectDCInfo: Get realm and guid if provided (rpc call
649 may result in failure) and query lsa info for domain name and sid.
651 static void continue_lsa_query_info2(struct tevent_req *subreq)
653 struct composite_context *c;
654 struct rpc_connect_dci_state *s;
656 c = tevent_req_callback_data(subreq, struct composite_context);
657 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
659 c->status = dcerpc_lsa_QueryInfoPolicy2_r_recv(subreq, s);
662 /* In case of error just null the realm and guid and proceed
663 to the next step. After all, it doesn't have to be AD domain
664 controller we talking to - NT-style PDC also counts */
666 if (NT_STATUS_EQUAL(c->status, NT_STATUS_RPC_PROCNUM_OUT_OF_RANGE)) {
667 s->r.out.realm = NULL;
668 s->r.out.guid = NULL;
671 if (!NT_STATUS_IS_OK(c->status)) {
672 s->r.out.error_string = talloc_asprintf(c,
673 "lsa_QueryInfoPolicy2 failed: %s",
674 nt_errstr(c->status));
675 composite_error(c, c->status);
679 if (!NT_STATUS_IS_OK(s->lsa_query_info2.out.result)) {
680 s->r.out.error_string = talloc_asprintf(c,
681 "lsa_QueryInfoPolicy2 failed: %s",
682 nt_errstr(s->lsa_query_info2.out.result));
683 composite_error(c, s->lsa_query_info2.out.result);
687 /* Copy the dns domain name and guid from the query result */
689 /* this should actually be a conversion from lsa_StringLarge */
690 s->r.out.realm = (*s->lsa_query_info2.out.info)->dns.dns_domain.string;
691 s->r.out.guid = talloc(c, struct GUID);
692 if (composite_nomem(s->r.out.guid, c)) {
693 s->r.out.error_string = NULL;
696 *s->r.out.guid = (*s->lsa_query_info2.out.info)->dns.domain_guid;
699 /* post monitor message */
701 struct monitor_msg msg;
703 msg.type = mon_LsaQueryPolicy;
709 /* query lsa info for domain name and sid */
710 s->lsa_query_info.in.handle = &s->lsa_handle;
711 s->lsa_query_info.in.level = LSA_POLICY_INFO_DOMAIN;
712 s->lsa_query_info.out.info = talloc_zero(c, union lsa_PolicyInformation *);
713 if (composite_nomem(s->lsa_query_info.out.info, c)) return;
715 subreq = dcerpc_lsa_QueryInfoPolicy_r_send(s, c->event_ctx,
716 s->lsa_pipe->binding_handle,
718 if (composite_nomem(subreq, c)) return;
720 tevent_req_set_callback(subreq, continue_lsa_query_info, c);
725 Step 5 of RpcConnectDCInfo: Get domain name and sid
727 static void continue_lsa_query_info(struct tevent_req *subreq)
729 struct composite_context *c;
730 struct rpc_connect_dci_state *s;
732 c = tevent_req_callback_data(subreq, struct composite_context);
733 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
735 c->status = dcerpc_lsa_QueryInfoPolicy_r_recv(subreq, s);
737 if (!NT_STATUS_IS_OK(c->status)) {
738 s->r.out.error_string = talloc_asprintf(c,
739 "lsa_QueryInfoPolicy failed: %s",
740 nt_errstr(c->status));
741 composite_error(c, c->status);
745 /* post monitor message */
747 struct monitor_msg msg;
749 msg.type = mon_LsaQueryPolicy;
755 /* Copy the domain name and sid from the query result */
756 s->r.out.domain_sid = (*s->lsa_query_info.out.info)->domain.sid;
757 s->r.out.domain_name = (*s->lsa_query_info.out.info)->domain.name.string;
759 continue_epm_map_binding_send(c);
763 Step 5 (continued) of RpcConnectDCInfo: request endpoint
766 We may short-cut to this step if we don't support LSA OpenPolicy on this transport
768 static void continue_epm_map_binding_send(struct composite_context *c)
770 struct rpc_connect_dci_state *s;
771 struct composite_context *epm_map_req;
772 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
774 /* prepare to get endpoint mapping for the requested interface */
775 s->final_binding = talloc_zero(s, struct dcerpc_binding);
776 if (composite_nomem(s->final_binding, c)) return;
778 *s->final_binding = *s->lsa_pipe->binding;
779 /* Ensure we keep hold of the member elements */
780 if (composite_nomem(talloc_reference(s->final_binding, s->lsa_pipe->binding), c)) return;
782 epm_map_req = dcerpc_epm_map_binding_send(c, s->final_binding, s->r.in.dcerpc_iface,
783 s->lsa_pipe->conn->event_ctx, s->ctx->lp_ctx);
784 if (composite_nomem(epm_map_req, c)) return;
786 composite_continue(c, epm_map_req, continue_epm_map_binding, c);
790 Step 6 of RpcConnectDCInfo: Receive endpoint mapping and create secondary
791 rpc connection derived from already used pipe but connected to the requested
792 one (as specified in libnet_RpcConnect structure)
794 static void continue_epm_map_binding(struct composite_context *ctx)
796 struct composite_context *c, *sec_conn_req;
797 struct rpc_connect_dci_state *s;
799 c = talloc_get_type(ctx->async.private_data, struct composite_context);
800 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
802 c->status = dcerpc_epm_map_binding_recv(ctx);
803 if (!NT_STATUS_IS_OK(c->status)) {
804 s->r.out.error_string = talloc_asprintf(c,
805 "failed to map pipe with endpoint mapper - %s",
806 nt_errstr(c->status));
807 composite_error(c, c->status);
811 /* create secondary connection derived from lsa pipe */
812 sec_conn_req = dcerpc_secondary_connection_send(s->lsa_pipe, s->final_binding);
813 if (composite_nomem(sec_conn_req, c)) return;
815 composite_continue(c, sec_conn_req, continue_secondary_conn, c);
820 Step 7 of RpcConnectDCInfo: Get actual pipe to be returned
821 and complete this composite call
823 static void continue_secondary_conn(struct composite_context *ctx)
825 struct composite_context *c;
826 struct rpc_connect_dci_state *s;
828 c = talloc_get_type(ctx->async.private_data, struct composite_context);
829 s = talloc_get_type(c->private_data, struct rpc_connect_dci_state);
831 c->status = dcerpc_secondary_connection_recv(ctx, &s->final_pipe);
832 if (!NT_STATUS_IS_OK(c->status)) {
833 s->r.out.error_string = talloc_asprintf(c,
834 "secondary connection failed: %s",
835 nt_errstr(c->status));
837 composite_error(c, c->status);
841 s->r.out.dcerpc_pipe = s->final_pipe;
843 /* post monitor message */
845 struct monitor_msg msg;
846 struct msg_net_rpc_connect data;
847 struct dcerpc_binding *binding = s->r.out.dcerpc_pipe->binding;
849 /* prepare monitor message and post it */
850 data.host = binding->host;
851 data.endpoint = binding->endpoint;
852 data.transport = binding->transport;
853 data.domain_name = binding->target_hostname;
855 msg.type = mon_NetRpcConnect;
856 msg.data = (void*)&data;
857 msg.data_size = sizeof(data);
866 * Receives result of connection to rpc pipe and gets basic
867 * domain info (name, sid, realm, guid)
869 * @param c composite context
870 * @param ctx initialised libnet context
871 * @param mem_ctx memory context of this call
872 * @param r data structure containing return values
873 * @return nt status of rpc connection
876 static NTSTATUS libnet_RpcConnectDCInfo_recv(struct composite_context *c, struct libnet_context *ctx,
877 TALLOC_CTX *mem_ctx, struct libnet_RpcConnect *r)
880 struct rpc_connect_dci_state *s = talloc_get_type(c->private_data,
881 struct rpc_connect_dci_state);
883 status = composite_wait(c);
884 if (NT_STATUS_IS_OK(status)) {
885 r->out.realm = talloc_steal(mem_ctx, s->r.out.realm);
886 r->out.guid = talloc_steal(mem_ctx, s->r.out.guid);
887 r->out.domain_name = talloc_steal(mem_ctx, s->r.out.domain_name);
888 r->out.domain_sid = talloc_steal(mem_ctx, s->r.out.domain_sid);
890 r->out.dcerpc_pipe = talloc_steal(mem_ctx, s->r.out.dcerpc_pipe);
892 /* reference created pipe structure to long-term libnet_context
893 so that it can be used by other api functions even after short-term
895 if (r->in.dcerpc_iface == &ndr_table_samr) {
896 ctx->samr.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
897 ctx->samr.samr_handle = ctx->samr.pipe->binding_handle;
899 } else if (r->in.dcerpc_iface == &ndr_table_lsarpc) {
900 ctx->lsa.pipe = talloc_reference(ctx, r->out.dcerpc_pipe);
901 ctx->lsa.lsa_handle = ctx->lsa.pipe->binding_handle;
905 if (s->r.out.error_string) {
906 r->out.error_string = talloc_steal(mem_ctx, s->r.out.error_string);
907 } else if (r->in.binding == NULL) {
908 r->out.error_string = talloc_asprintf(mem_ctx, "Connection to DC failed: %s", nt_errstr(status));
910 r->out.error_string = talloc_asprintf(mem_ctx, "Connection to DC %s failed: %s",
911 r->in.binding, nt_errstr(status));
921 * Initiates connection to rpc pipe on remote server or pdc, optionally
922 * providing domain info
924 * @param ctx initialised libnet context
925 * @param mem_ctx memory context of this call
926 * @param r data structure containing necessary parameters and return values
927 * @return composite context of this call
930 struct composite_context* libnet_RpcConnect_send(struct libnet_context *ctx,
932 struct libnet_RpcConnect *r,
933 void (*monitor)(struct monitor_msg*))
935 struct composite_context *c;
938 case LIBNET_RPC_CONNECT_SERVER:
939 case LIBNET_RPC_CONNECT_SERVER_ADDRESS:
940 case LIBNET_RPC_CONNECT_BINDING:
941 c = libnet_RpcConnectSrv_send(ctx, mem_ctx, r, monitor);
944 case LIBNET_RPC_CONNECT_PDC:
945 case LIBNET_RPC_CONNECT_DC:
946 c = libnet_RpcConnectDC_send(ctx, mem_ctx, r, monitor);
949 case LIBNET_RPC_CONNECT_DC_INFO:
950 c = libnet_RpcConnectDCInfo_send(ctx, mem_ctx, r, monitor);
954 c = talloc_zero(mem_ctx, struct composite_context);
955 composite_error(c, NT_STATUS_INVALID_LEVEL);
963 * Receives result of connection to rpc pipe on remote server or pdc
965 * @param c composite context
966 * @param ctx initialised libnet context
967 * @param mem_ctx memory context of this call
968 * @param r data structure containing necessary parameters and return values
969 * @return nt status of rpc connection
972 NTSTATUS libnet_RpcConnect_recv(struct composite_context *c, struct libnet_context *ctx,
973 TALLOC_CTX *mem_ctx, struct libnet_RpcConnect *r)
976 case LIBNET_RPC_CONNECT_SERVER:
977 case LIBNET_RPC_CONNECT_BINDING:
978 return libnet_RpcConnectSrv_recv(c, ctx, mem_ctx, r);
980 case LIBNET_RPC_CONNECT_PDC:
981 case LIBNET_RPC_CONNECT_DC:
982 return libnet_RpcConnectDC_recv(c, ctx, mem_ctx, r);
984 case LIBNET_RPC_CONNECT_DC_INFO:
985 return libnet_RpcConnectDCInfo_recv(c, ctx, mem_ctx, r);
989 return NT_STATUS_INVALID_LEVEL;
995 * Connect to a rpc pipe on a remote server - sync version
997 * @param ctx initialised libnet context
998 * @param mem_ctx memory context of this call
999 * @param r data structure containing necessary parameters and return values
1000 * @return nt status of rpc connection
1003 NTSTATUS libnet_RpcConnect(struct libnet_context *ctx, TALLOC_CTX *mem_ctx,
1004 struct libnet_RpcConnect *r)
1006 struct composite_context *c;
1008 c = libnet_RpcConnect_send(ctx, mem_ctx, r, NULL);
1009 return libnet_RpcConnect_recv(c, ctx, mem_ctx, r);
git.samba.org / nivanova / samba-autobuild / .git / blob