2 Unix SMB/CIFS implementation.
3 SMB filter/socket plugin
4 Copyright (C) Andrew Tridgell 1999
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
21 #include "../lib/util/select.h"
23 #define SECURITY_MASK 0
24 #define SECURITY_SET 0
26 /* this forces non-unicode */
27 #define CAPABILITY_MASK 0
28 #define CAPABILITY_SET 0
30 /* and non-unicode for the client too */
31 #define CLI_CAPABILITY_MASK 0
32 #define CLI_CAPABILITY_SET 0
34 static char *netbiosname;
35 static char packet[BUFFER_SIZE];
37 static void save_file(const char *fname, void *ppacket, size_t length)
40 fd = open(fname, O_WRONLY|O_CREAT|O_TRUNC, 0644);
45 if (write(fd, ppacket, length) != length) {
46 fprintf(stderr,"Failed to write %s\n", fname);
51 printf("Wrote %ld bytes to %s\n", (unsigned long)length, fname);
54 static void filter_reply(char *buf)
56 int msg_type = CVAL(buf,0);
57 int type = CVAL(buf,smb_com);
65 /* force the security bits */
66 x = CVAL(buf, smb_vwv1);
67 x = (x | SECURITY_SET) & ~SECURITY_MASK;
68 SCVAL(buf, smb_vwv1, x);
70 /* force the capabilities */
71 x = IVAL(buf,smb_vwv9+1);
72 x = (x | CAPABILITY_SET) & ~CAPABILITY_MASK;
73 SIVAL(buf, smb_vwv9+1, x);
79 static void filter_request(char *buf, size_t buf_len)
81 int msg_type = CVAL(buf,0);
82 int type = CVAL(buf,smb_com);
85 int name_len1, name_len2;
86 int name_type1, name_type2;
89 /* it's a netbios special */
93 /* inbuf_size is guaranteed to be at least 4. */
94 name_len1 = name_len((unsigned char *)(buf+4),
96 if (name_len1 <= 0 || name_len1 > buf_len - 4) {
97 DEBUG(0,("Invalid name length in session request\n"));
100 name_len2 = name_len((unsigned char *)(buf+4+name_len1),
101 buf_len - 4 - name_len1);
102 if (name_len2 <= 0 || name_len2 > buf_len - 4 - name_len1) {
103 DEBUG(0,("Invalid name length in session request\n"));
107 name_type1 = name_extract((unsigned char *)buf,
108 buf_len,(unsigned int)4,name1);
109 name_type2 = name_extract((unsigned char *)buf,
110 buf_len,(unsigned int)(4 + name_len1),name2);
112 if (name_type1 == -1 || name_type2 == -1) {
113 DEBUG(0,("Invalid name type in session request\n"));
117 d_printf("sesion_request: %s -> %s\n",
120 char *mangled = name_mangle(
121 talloc_tos(), netbiosname, 0x20);
122 if (mangled != NULL) {
123 /* replace the destination netbios
125 memcpy(buf+4, mangled,
126 name_len((unsigned char *)mangled,
127 talloc_get_size(mangled)));
128 TALLOC_FREE(mangled);
134 /* it's an ordinary SMB request */
137 /* force the client capabilities */
138 x = IVAL(buf,smb_vwv11);
139 d_printf("SMBsesssetupX cap=0x%08x\n", x);
140 d_printf("pwlen=%d/%d\n", SVAL(buf, smb_vwv7), SVAL(buf, smb_vwv8));
141 system("mv sessionsetup.dat sessionsetup1.dat");
142 save_file("sessionsetup.dat", smb_buf(buf), SVAL(buf, smb_vwv7));
143 x = (x | CLI_CAPABILITY_SET) & ~CLI_CAPABILITY_MASK;
144 SIVAL(buf, smb_vwv11, x);
149 /****************************************************************************
151 ****************************************************************************/
153 static bool send_smb(int fd, char *buffer)
159 len = smb_len(buffer) + 4;
161 while (nwritten < len) {
162 ret = write_data(fd,buffer+nwritten,len - nwritten);
164 DEBUG(0,("Error writing %d bytes to client. %d. (%s)\n",
165 (int)len,(int)ret, strerror(errno) ));
174 static void filter_child(int c, struct sockaddr_storage *dest_ss)
179 /* we have a connection from a new client, now connect to the server */
180 status = open_socket_out(dest_ss, 445, LONG_CONNECT_TIMEOUT, &s);
183 char addr[INET6_ADDRSTRLEN];
185 print_sockaddr(addr, sizeof(addr), dest_ss);
188 d_printf("Unable to connect to %s (%s)\n",
189 dest_ss?addr:"NULL",strerror(errno));
193 while (c != -1 || s != -1) {
198 if (s != -1) FD_SET(s, &fds);
199 if (c != -1) FD_SET(c, &fds);
201 num = sys_select_intr(MAX(s+1, c+1),&fds,NULL,NULL,NULL);
202 if (num <= 0) continue;
204 if (c != -1 && FD_ISSET(c, &fds)) {
206 if (!NT_STATUS_IS_OK(receive_smb_raw(
207 c, packet, sizeof(packet),
209 d_printf("client closed connection\n");
212 filter_request(packet, len);
213 if (!send_smb(s, packet)) {
214 d_printf("server is dead\n");
218 if (s != -1 && FD_ISSET(s, &fds)) {
220 if (!NT_STATUS_IS_OK(receive_smb_raw(
221 s, packet, sizeof(packet),
223 d_printf("server closed connection\n");
226 filter_reply(packet);
227 if (!send_smb(c, packet)) {
228 d_printf("client is dead\n");
233 d_printf("Connection closed\n");
238 static void start_filter(char *desthost)
241 struct sockaddr_storage dest_ss;
242 struct sockaddr_storage my_ss;
246 /* start listening on port 445 locally */
248 zero_sockaddr(&my_ss);
249 s = open_socket_in(SOCK_STREAM, 445, 0, &my_ss, True);
252 d_printf("bind failed\n");
256 if (listen(s, 5) == -1) {
257 d_printf("listen failed\n");
260 if (!resolve_name(desthost, &dest_ss, 0x20, false)) {
261 d_printf("Unable to resolve host %s\n", desthost);
268 struct sockaddr_storage ss;
269 socklen_t in_addrlen = sizeof(ss);
274 num = sys_select_intr(s+1,&fds,NULL,NULL,NULL);
276 c = accept(s, (struct sockaddr *)&ss, &in_addrlen);
280 filter_child(c, &dest_ss);
291 int main(int argc, char *argv[])
294 const char *configfile;
295 TALLOC_CTX *frame = talloc_stackframe();
299 setup_logging(argv[0], DEBUG_STDOUT);
301 configfile = get_dyn_CONFIGFILE();
304 fprintf(stderr,"smbfilter <desthost> <netbiosname>\n");
310 netbiosname = argv[2];
313 if (!lp_load(configfile,True,False,False,True)) {
314 d_printf("Unable to load config file\n");
317 start_filter(desthost);