1998-08-17 13:11:34 +00:00
/*
2002-01-30 06:08:46 +00:00
Unix SMB / CIFS implementation .
1998-08-17 13:11:34 +00:00
process incoming packets - main loop
Copyright ( C ) Andrew Tridgell 1992 - 1998
2007-08-02 18:28:41 +00:00
Copyright ( C ) Volker Lendecke 2005 - 2007
2011-02-03 21:47:42 +01:00
1998-08-17 13:11:34 +00:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-09 19:25:36 +00:00
the Free Software Foundation ; either version 3 of the License , or
1998-08-17 13:11:34 +00:00
( at your option ) any later version .
2011-02-03 21:47:42 +01:00
1998-08-17 13:11:34 +00:00
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
2011-02-03 21:47:42 +01:00
1998-08-17 13:11:34 +00:00
You should have received a copy of the GNU General Public License
2007-07-10 00:52:41 +00:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
1998-08-17 13:11:34 +00:00
*/
# include "includes.h"
2011-04-28 17:26:40 +02:00
# include "../lib/tsocket/tsocket.h"
2011-02-25 23:20:06 +01:00
# include "system/filesys.h"
2011-03-22 16:57:01 +01:00
# include "smbd/smbd.h"
2009-01-08 12:03:45 +01:00
# include "smbd/globals.h"
2010-08-10 12:29:27 +02:00
# include "librpc/gen_ndr/netlogon.h"
2010-08-26 09:58:09 +02:00
# include "../lib/async_req/async_sock.h"
2010-08-26 10:14:07 +02:00
# include "ctdbd_conn.h"
2010-10-01 10:08:15 +02:00
# include "../lib/util/select.h"
2011-02-21 14:37:21 +01:00
# include "printing/pcap.h"
2011-02-03 21:55:02 +01:00
# include "system/select.h"
2011-03-22 16:50:02 +01:00
# include "passdb.h"
2011-03-24 13:46:20 +01:00
# include "auth.h"
2011-03-24 15:31:06 +01:00
# include "messages.h"
2011-04-14 00:36:23 +02:00
# include "smbprofile.h"
2011-04-29 23:47:25 +02:00
# include "rpc_server/spoolss/srv_spoolss_nt.h"
2011-05-06 11:47:43 +02:00
# include "libsmb/libsmb.h"
2011-07-26 15:07:22 +02:00
# include "../lib/util/tevent_ntstatus.h"
1998-08-17 13:11:34 +00:00
2007-10-18 17:40:25 -07:00
extern bool global_machine_password_needs_changing ;
1998-08-17 13:11:34 +00:00
2008-12-19 18:07:44 +01:00
static void construct_reply_common ( struct smb_request * req , const char * inbuf ,
char * outbuf ) ;
2010-04-12 21:40:28 -07:00
static struct pending_message_list * get_deferred_open_message_smb ( uint64_t mid ) ;
2008-11-07 21:02:11 +01:00
2010-03-31 17:40:30 -07:00
static bool smbd_lock_socket_internal ( struct smbd_server_connection * sconn )
2010-03-18 09:17:43 +01:00
{
2010-03-18 12:50:22 +01:00
bool ok ;
2010-06-12 11:06:24 +02:00
if ( sconn - > smb1 . echo_handler . socket_lock_fd = = - 1 ) {
2010-03-18 12:50:22 +01:00
return true ;
}
2010-06-12 11:06:24 +02:00
sconn - > smb1 . echo_handler . ref_count + + ;
2010-03-31 17:40:30 -07:00
2010-06-12 11:06:24 +02:00
if ( sconn - > smb1 . echo_handler . ref_count > 1 ) {
2010-03-31 17:40:30 -07:00
return true ;
}
2010-03-18 12:50:22 +01:00
DEBUG ( 10 , ( " pid[%d] wait for socket lock \n " , ( int ) sys_getpid ( ) ) ) ;
2010-10-19 08:53:21 +02:00
do {
ok = fcntl_lock (
sconn - > smb1 . echo_handler . socket_lock_fd ,
2010-03-18 12:50:22 +01:00
SMB_F_SETLKW , 0 , 0 , F_WRLCK ) ;
2010-10-19 08:53:21 +02:00
} while ( ! ok & & ( errno = = EINTR ) ) ;
2010-03-18 12:50:22 +01:00
if ( ! ok ) {
2010-10-19 08:59:14 +02:00
DEBUG ( 1 , ( " fcntl_lock failed: %s \n " , strerror ( errno ) ) ) ;
2010-03-18 12:50:22 +01:00
return false ;
}
DEBUG ( 10 , ( " pid[%d] got for socket lock \n " , ( int ) sys_getpid ( ) ) ) ;
2010-03-18 09:17:43 +01:00
return true ;
}
2010-03-31 17:40:30 -07:00
void smbd_lock_socket ( struct smbd_server_connection * sconn )
{
if ( ! smbd_lock_socket_internal ( sconn ) ) {
exit_server_cleanly ( " failed to lock socket " ) ;
}
}
static bool smbd_unlock_socket_internal ( struct smbd_server_connection * sconn )
2010-03-18 09:17:43 +01:00
{
2010-03-18 12:50:22 +01:00
bool ok ;
2010-06-12 11:06:24 +02:00
if ( sconn - > smb1 . echo_handler . socket_lock_fd = = - 1 ) {
2010-03-18 12:50:22 +01:00
return true ;
}
2010-06-12 11:06:24 +02:00
sconn - > smb1 . echo_handler . ref_count - - ;
2010-03-31 17:40:30 -07:00
2010-06-12 11:06:24 +02:00
if ( sconn - > smb1 . echo_handler . ref_count > 0 ) {
2010-03-31 17:40:30 -07:00
return true ;
}
2010-10-19 08:53:21 +02:00
do {
ok = fcntl_lock (
sconn - > smb1 . echo_handler . socket_lock_fd ,
2010-03-18 12:50:22 +01:00
SMB_F_SETLKW , 0 , 0 , F_UNLCK ) ;
2010-10-19 08:53:21 +02:00
} while ( ! ok & & ( errno = = EINTR ) ) ;
2010-03-18 12:50:22 +01:00
if ( ! ok ) {
2010-10-19 08:59:14 +02:00
DEBUG ( 1 , ( " fcntl_lock failed: %s \n " , strerror ( errno ) ) ) ;
2010-03-18 12:50:22 +01:00
return false ;
}
DEBUG ( 10 , ( " pid[%d] unlocked socket \n " , ( int ) sys_getpid ( ) ) ) ;
2010-03-18 09:17:43 +01:00
return true ;
}
2010-03-31 17:40:30 -07:00
void smbd_unlock_socket ( struct smbd_server_connection * sconn )
{
if ( ! smbd_unlock_socket_internal ( sconn ) ) {
exit_server_cleanly ( " failed to unlock socket " ) ;
}
}
2007-11-05 11:12:56 -08:00
/* Accessor function for smb_read_error for smbd functions. */
2008-01-04 12:56:23 -08:00
/****************************************************************************
Send an smb to a fd .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-08-24 20:10:20 +02:00
bool srv_send_smb ( struct smbd_server_connection * sconn , char * buffer ,
2009-03-09 09:47:59 +01:00
bool do_signing , uint32_t seqnum ,
bool do_encrypt ,
struct smb_perfcount_data * pcd )
2008-01-04 12:56:23 -08:00
{
2009-02-08 23:10:34 -08:00
size_t len = 0 ;
2008-01-04 12:56:23 -08:00
size_t nwritten = 0 ;
ssize_t ret ;
char * buf_out = buffer ;
2010-03-18 09:23:48 +01:00
2010-08-24 20:10:20 +02:00
smbd_lock_socket ( sconn ) ;
2008-01-04 12:56:23 -08:00
2009-03-09 09:47:59 +01:00
if ( do_signing ) {
/* Sign the outgoing packet if required. */
2010-08-24 20:10:20 +02:00
srv_calculate_sign_mac ( sconn , buf_out , seqnum ) ;
2009-03-09 09:47:59 +01:00
}
2008-01-04 12:56:23 -08:00
if ( do_encrypt ) {
NTSTATUS status = srv_encrypt_buffer ( buffer , & buf_out ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " send_smb: SMB encryption failed "
" on outgoing packet! Error %s \n " ,
nt_errstr ( status ) ) ) ;
2009-02-08 23:10:34 -08:00
goto out ;
2008-01-04 12:56:23 -08:00
}
}
len = smb_len ( buf_out ) + 4 ;
2010-08-24 20:10:20 +02:00
ret = write_data ( sconn - > sock , buf_out + nwritten , len - nwritten ) ;
2009-04-12 14:05:58 +02:00
if ( ret < = 0 ) {
2010-08-15 16:02:37 +02:00
char addr [ INET6_ADDRSTRLEN ] ;
/*
* Try and give an error message saying what
* client failed .
*/
2010-09-28 10:38:20 +02:00
DEBUG ( 1 , ( " pid[%d] Error writing %d bytes to client %s. %d. (%s) \n " ,
2010-08-15 16:02:37 +02:00
( int ) sys_getpid ( ) , ( int ) len ,
2010-08-24 20:10:20 +02:00
get_peer_addr ( sconn - > sock , addr , sizeof ( addr ) ) ,
2010-08-15 16:02:37 +02:00
( int ) ret , strerror ( errno ) ) ) ;
2009-04-12 14:05:58 +02:00
srv_free_enc_buffer ( buf_out ) ;
goto out ;
2008-01-04 12:56:23 -08:00
}
2009-02-08 23:10:34 -08:00
SMB_PERFCOUNT_SET_MSGLEN_OUT ( pcd , len ) ;
2008-01-04 12:56:23 -08:00
srv_free_enc_buffer ( buf_out ) ;
2009-02-08 23:10:34 -08:00
out :
SMB_PERFCOUNT_END ( pcd ) ;
2010-03-18 09:23:48 +01:00
2010-08-24 20:10:20 +02:00
smbd_unlock_socket ( sconn ) ;
2008-01-04 12:56:23 -08:00
return true ;
}
2007-12-26 17:12:36 -08:00
/*******************************************************************
Setup the word count and byte count for a smb message .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2008-01-04 12:56:23 -08:00
int srv_set_message ( char * buf ,
2007-12-26 17:12:36 -08:00
int num_words ,
int num_bytes ,
bool zero )
{
if ( zero & & ( num_words | | num_bytes ) ) {
memset ( buf + smb_size , ' \0 ' , num_words * 2 + num_bytes ) ;
}
SCVAL ( buf , smb_wct , num_words ) ;
SSVAL ( buf , smb_vwv + num_words * SIZEOFWORD , num_bytes ) ;
2008-01-04 12:56:23 -08:00
smb_setlen ( buf , ( smb_size + num_words * 2 + num_bytes - 4 ) ) ;
2007-12-26 17:12:36 -08:00
return ( smb_size + num_words * 2 + num_bytes ) ;
}
2008-01-04 12:56:23 -08:00
static bool valid_smb_header ( const uint8_t * inbuf )
2007-12-26 17:12:36 -08:00
{
2008-01-04 12:56:23 -08:00
if ( is_encrypted_packet ( inbuf ) ) {
return true ;
2007-12-26 17:12:36 -08:00
}
2008-10-19 14:50:55 +02:00
/*
* This used to be ( strncmp ( smb_base ( inbuf ) , " \377 SMB " , 4 ) = = 0 )
* but it just looks weird to call strncmp for this one .
*/
return ( IVAL ( smb_base ( inbuf ) , 0 ) = = 0x424D53FF ) ;
2007-12-26 17:12:36 -08:00
}
2007-10-31 14:24:52 -07:00
/* Socket functions for smbd packet processing. */
2007-11-04 17:15:35 -08:00
static bool valid_packet_size ( size_t len )
2007-10-31 14:24:52 -07:00
{
/*
* A WRITEX with CAP_LARGE_WRITEX can be 64 k worth of data plus 65 bytes
* of header . Don ' t print the error if this fits . . . . JRA .
*/
if ( len > ( BUFFER_SIZE + LARGE_WRITEX_HDR_SIZE ) ) {
DEBUG ( 0 , ( " Invalid packet length! (%lu bytes). \n " ,
( unsigned long ) len ) ) ;
2008-05-28 09:31:42 -07:00
return false ;
2007-10-31 14:24:52 -07:00
}
return true ;
}
2008-01-25 22:27:59 +01:00
static NTSTATUS read_packet_remainder ( int fd , char * buffer ,
unsigned int timeout , ssize_t len )
2007-10-31 14:24:52 -07:00
{
2010-08-15 15:23:47 +02:00
NTSTATUS status ;
2008-01-25 22:21:38 +01:00
if ( len < = 0 ) {
2008-01-25 22:27:59 +01:00
return NT_STATUS_OK ;
2008-01-25 22:21:38 +01:00
}
2007-10-31 14:24:52 -07:00
2010-08-15 15:23:47 +02:00
status = read_fd_with_timeout ( fd , buffer , len , len , timeout , NULL ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
char addr [ INET6_ADDRSTRLEN ] ;
DEBUG ( 0 , ( " read_fd_with_timeout failed for client %s read "
" error = %s. \n " ,
get_peer_addr ( fd , addr , sizeof ( addr ) ) ,
nt_errstr ( status ) ) ) ;
}
return status ;
2007-10-31 14:24:52 -07:00
}
/****************************************************************************
Attempt a zerocopy writeX read . We know here that len > smb_size - 4
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
/*
* Unfortunately , earlier versions of smbclient / libsmbclient
* don ' t send this " standard " writeX header . I ' ve fixed this
* for 3.2 but we ' ll use the old method with earlier versions .
* Windows and CIFSFS at least use this standard size . Not
* sure about MacOSX .
*/
# define STANDARD_WRITE_AND_X_HEADER_SIZE (smb_size - 4 + /* basic header */ \
( 2 * 14 ) + /* word count (including bcc) */ \
1 /* pad byte */ )
2008-01-25 23:12:04 +01:00
static NTSTATUS receive_smb_raw_talloc_partial_read ( TALLOC_CTX * mem_ctx ,
const char lenbuf [ 4 ] ,
2010-10-03 18:08:51 +02:00
struct smbd_server_connection * sconn ,
2011-04-14 14:05:43 +02:00
int sock ,
2010-10-03 18:08:51 +02:00
char * * buffer ,
2008-01-25 23:12:04 +01:00
unsigned int timeout ,
size_t * p_unread ,
size_t * len_ret )
2007-10-31 14:24:52 -07:00
{
/* Size of a WRITEX call (+4 byte len). */
char writeX_header [ 4 + STANDARD_WRITE_AND_X_HEADER_SIZE ] ;
ssize_t len = smb_len_large ( lenbuf ) ; /* Could be a UNIX large writeX. */
ssize_t toread ;
2008-01-25 23:12:04 +01:00
NTSTATUS status ;
2007-10-31 14:24:52 -07:00
2008-09-01 13:46:27 +02:00
memcpy ( writeX_header , lenbuf , 4 ) ;
2007-10-31 14:24:52 -07:00
2009-09-06 21:38:50 -07:00
status = read_fd_with_timeout (
2011-04-14 14:05:43 +02:00
sock , writeX_header + 4 ,
2008-01-25 23:12:04 +01:00
STANDARD_WRITE_AND_X_HEADER_SIZE ,
STANDARD_WRITE_AND_X_HEADER_SIZE ,
timeout , NULL ) ;
2007-10-31 14:24:52 -07:00
2008-01-25 23:12:04 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2010-08-15 15:23:47 +02:00
DEBUG ( 0 , ( " read_fd_with_timeout failed for client %s read "
2011-06-16 15:39:25 +02:00
" error = %s. \n " ,
tsocket_address_string ( sconn - > remote_address ,
talloc_tos ( ) ) ,
2010-08-15 15:23:47 +02:00
nt_errstr ( status ) ) ) ;
2008-01-25 23:12:04 +01:00
return status ;
2007-10-31 14:24:52 -07:00
}
/*
* Ok - now try and see if this is a possible
* valid writeX call .
*/
2010-10-03 18:08:51 +02:00
if ( is_valid_writeX_buffer ( sconn , ( uint8_t * ) writeX_header ) ) {
2007-10-31 14:24:52 -07:00
/*
* If the data offset is beyond what
* we ' ve read , drain the extra bytes .
*/
uint16_t doff = SVAL ( writeX_header , smb_vwv11 ) ;
ssize_t newlen ;
if ( doff > STANDARD_WRITE_AND_X_HEADER_SIZE ) {
size_t drain = doff - STANDARD_WRITE_AND_X_HEADER_SIZE ;
2011-04-14 14:05:43 +02:00
if ( drain_socket ( sock , drain ) ! = drain ) {
2007-10-31 14:24:52 -07:00
smb_panic ( " receive_smb_raw_talloc_partial_read: "
" failed to drain pending bytes " ) ;
}
} else {
doff = STANDARD_WRITE_AND_X_HEADER_SIZE ;
}
/* Spoof down the length and null out the bcc. */
set_message_bcc ( writeX_header , 0 ) ;
newlen = smb_len ( writeX_header ) ;
/* Copy the header we've written. */
2011-06-07 12:13:26 +10:00
* buffer = ( char * ) talloc_memdup ( mem_ctx ,
2007-10-31 14:24:52 -07:00
writeX_header ,
sizeof ( writeX_header ) ) ;
if ( * buffer = = NULL ) {
DEBUG ( 0 , ( " Could not allocate inbuf of length %d \n " ,
( int ) sizeof ( writeX_header ) ) ) ;
2008-01-25 23:12:04 +01:00
return NT_STATUS_NO_MEMORY ;
2007-10-31 14:24:52 -07:00
}
/* Work out the remaining bytes. */
* p_unread = len - STANDARD_WRITE_AND_X_HEADER_SIZE ;
2008-01-25 23:12:04 +01:00
* len_ret = newlen + 4 ;
return NT_STATUS_OK ;
2007-10-31 14:24:52 -07:00
}
if ( ! valid_packet_size ( len ) ) {
2008-01-25 23:12:04 +01:00
return NT_STATUS_INVALID_PARAMETER ;
2007-10-31 14:24:52 -07:00
}
/*
* Not a valid writeX call . Just do the standard
* talloc and return .
*/
2011-06-07 11:30:12 +10:00
* buffer = talloc_array ( mem_ctx , char , len + 4 ) ;
2007-10-31 14:24:52 -07:00
if ( * buffer = = NULL ) {
DEBUG ( 0 , ( " Could not allocate inbuf of length %d \n " ,
( int ) len + 4 ) ) ;
2008-01-25 23:12:04 +01:00
return NT_STATUS_NO_MEMORY ;
2007-10-31 14:24:52 -07:00
}
/* Copy in what we already read. */
memcpy ( * buffer ,
writeX_header ,
4 + STANDARD_WRITE_AND_X_HEADER_SIZE ) ;
toread = len - STANDARD_WRITE_AND_X_HEADER_SIZE ;
if ( toread > 0 ) {
2008-01-25 22:27:59 +01:00
status = read_packet_remainder (
2011-04-14 14:05:43 +02:00
sock ,
2010-10-03 18:08:51 +02:00
( * buffer ) + 4 + STANDARD_WRITE_AND_X_HEADER_SIZE ,
2008-01-25 22:27:59 +01:00
timeout , toread ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
2008-05-20 12:09:48 -07:00
DEBUG ( 10 , ( " receive_smb_raw_talloc_partial_read: %s \n " ,
nt_errstr ( status ) ) ) ;
2008-01-25 23:12:04 +01:00
return status ;
2007-10-31 14:24:52 -07:00
}
}
2008-01-25 23:12:04 +01:00
* len_ret = len + 4 ;
return NT_STATUS_OK ;
2007-10-31 14:24:52 -07:00
}
2010-10-03 18:11:37 +02:00
static NTSTATUS receive_smb_raw_talloc ( TALLOC_CTX * mem_ctx ,
struct smbd_server_connection * sconn ,
2011-04-14 14:05:43 +02:00
int sock ,
2008-01-25 23:18:56 +01:00
char * * buffer , unsigned int timeout ,
size_t * p_unread , size_t * plen )
2007-10-31 14:24:52 -07:00
{
char lenbuf [ 4 ] ;
2008-01-25 21:24:48 +01:00
size_t len ;
2007-10-31 14:24:52 -07:00
int min_recv_size = lp_min_receive_file_size ( ) ;
2008-01-25 21:24:48 +01:00
NTSTATUS status ;
2007-10-31 14:24:52 -07:00
* p_unread = 0 ;
2011-04-14 14:05:43 +02:00
status = read_smb_length_return_keepalive ( sock , lenbuf , timeout ,
2010-10-03 18:11:37 +02:00
& len ) ;
2008-01-25 21:24:48 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2008-01-25 23:18:56 +01:00
return status ;
2007-10-31 14:24:52 -07:00
}
2009-02-09 23:43:08 -08:00
if ( CVAL ( lenbuf , 0 ) = = 0 & & min_recv_size & &
( smb_len_large ( lenbuf ) > /* Could be a UNIX large writeX. */
( min_recv_size + STANDARD_WRITE_AND_X_HEADER_SIZE ) ) & &
2010-10-03 18:11:37 +02:00
! srv_is_signing_active ( sconn ) & &
sconn - > smb1 . echo_handler . trusted_fde = = NULL ) {
2007-10-31 14:24:52 -07:00
2008-05-20 12:09:48 -07:00
return receive_smb_raw_talloc_partial_read (
2011-04-14 14:05:43 +02:00
mem_ctx , lenbuf , sconn , sock , buffer , timeout ,
2010-10-03 18:08:51 +02:00
p_unread , plen ) ;
2007-10-31 14:24:52 -07:00
}
if ( ! valid_packet_size ( len ) ) {
2008-01-25 23:18:56 +01:00
return NT_STATUS_INVALID_PARAMETER ;
2007-10-31 14:24:52 -07:00
}
/*
* The + 4 here can ' t wrap , we ' ve checked the length above already .
*/
2011-06-07 11:30:12 +10:00
* buffer = talloc_array ( mem_ctx , char , len + 4 ) ;
2007-10-31 14:24:52 -07:00
if ( * buffer = = NULL ) {
DEBUG ( 0 , ( " Could not allocate inbuf of length %d \n " ,
( int ) len + 4 ) ) ;
2008-01-25 23:18:56 +01:00
return NT_STATUS_NO_MEMORY ;
2007-10-31 14:24:52 -07:00
}
memcpy ( * buffer , lenbuf , sizeof ( lenbuf ) ) ;
2011-04-14 14:05:43 +02:00
status = read_packet_remainder ( sock , ( * buffer ) + 4 , timeout , len ) ;
2008-01-25 22:27:59 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2008-01-25 23:18:56 +01:00
return status ;
2007-10-31 14:24:52 -07:00
}
2008-01-25 23:18:56 +01:00
* plen = len + 4 ;
return NT_STATUS_OK ;
2007-10-31 14:24:52 -07:00
}
2010-10-03 18:13:39 +02:00
static NTSTATUS receive_smb_talloc ( TALLOC_CTX * mem_ctx ,
struct smbd_server_connection * sconn ,
2011-04-14 14:05:43 +02:00
int sock ,
2008-01-25 23:28:22 +01:00
char * * buffer , unsigned int timeout ,
size_t * p_unread , bool * p_encrypted ,
2009-03-09 09:47:59 +01:00
size_t * p_len ,
2010-03-18 15:36:19 +01:00
uint32_t * seqnum ,
bool trusted_channel )
2007-10-31 14:24:52 -07:00
{
2008-02-05 13:36:17 -08:00
size_t len = 0 ;
2008-01-25 23:18:56 +01:00
NTSTATUS status ;
2007-10-31 14:24:52 -07:00
2008-01-04 12:56:23 -08:00
* p_encrypted = false ;
2011-04-14 14:05:43 +02:00
status = receive_smb_raw_talloc ( mem_ctx , sconn , sock , buffer , timeout ,
2010-10-03 18:13:39 +02:00
p_unread , & len ) ;
2008-01-25 23:18:56 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2010-09-28 10:38:20 +02:00
DEBUG ( 1 , ( " read_smb_length_return_keepalive failed for "
2010-08-15 15:38:31 +02:00
" client %s read error = %s. \n " ,
2011-06-16 15:39:25 +02:00
tsocket_address_string ( sconn - > remote_address ,
talloc_tos ( ) ) ,
nt_errstr ( status ) ) ) ;
2008-01-25 23:28:22 +01:00
return status ;
2007-10-31 14:24:52 -07:00
}
2008-01-04 12:56:23 -08:00
if ( is_encrypted_packet ( ( uint8_t * ) * buffer ) ) {
2008-01-25 23:18:56 +01:00
status = srv_decrypt_buffer ( * buffer ) ;
2007-12-26 17:12:36 -08:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " receive_smb_talloc: SMB decryption failed on "
" incoming packet! Error %s \n " ,
nt_errstr ( status ) ) ) ;
2008-01-25 23:28:22 +01:00
return status ;
2007-12-26 17:12:36 -08:00
}
2008-01-04 12:56:23 -08:00
* p_encrypted = true ;
2007-12-26 17:12:36 -08:00
}
2007-10-31 14:24:52 -07:00
/* Check the incoming SMB signature. */
2010-10-03 18:13:39 +02:00
if ( ! srv_check_sign_mac ( sconn , * buffer , seqnum , trusted_channel ) ) {
2007-10-31 14:24:52 -07:00
DEBUG ( 0 , ( " receive_smb: SMB Signature verification failed on "
" incoming packet! \n " ) ) ;
2008-01-25 23:28:22 +01:00
return NT_STATUS_INVALID_NETWORK_RESPONSE ;
2007-10-31 14:24:52 -07:00
}
2008-01-25 23:28:22 +01:00
* p_len = len ;
return NT_STATUS_OK ;
2007-10-31 14:24:52 -07:00
}
2007-07-05 16:26:27 +00:00
/*
* Initialize a struct smb_request from an inbuf
*/
2010-06-12 11:01:27 +02:00
static bool init_smb_request ( struct smb_request * req ,
struct smbd_server_connection * sconn ,
const uint8 * inbuf ,
2010-01-21 14:05:04 +01:00
size_t unread_bytes , bool encrypted ,
uint32_t seqnum )
2007-07-05 16:26:27 +00:00
{
2007-08-15 19:43:26 +00:00
size_t req_size = smb_len ( inbuf ) + 4 ;
/* Ensure we have at least smb_size bytes. */
2007-08-15 19:25:38 +00:00
if ( req_size < smb_size ) {
DEBUG ( 0 , ( " init_smb_request: invalid request size %u \n " ,
( unsigned int ) req_size ) ) ;
2010-03-11 11:33:01 +01:00
return false ;
2007-08-15 19:25:38 +00:00
}
2008-11-02 22:33:20 +01:00
req - > cmd = CVAL ( inbuf , smb_com ) ;
2007-07-05 16:26:27 +00:00
req - > flags2 = SVAL ( inbuf , smb_flg2 ) ;
req - > smbpid = SVAL ( inbuf , smb_pid ) ;
2010-04-12 21:40:28 -07:00
req - > mid = ( uint64_t ) SVAL ( inbuf , smb_mid ) ;
2010-01-21 14:05:04 +01:00
req - > seqnum = seqnum ;
2007-07-05 16:26:27 +00:00
req - > vuid = SVAL ( inbuf , smb_uid ) ;
2007-07-23 09:36:09 +00:00
req - > tid = SVAL ( inbuf , smb_tid ) ;
req - > wct = CVAL ( inbuf , smb_wct ) ;
2011-05-05 10:41:59 -07:00
req - > vwv = discard_const_p ( uint16_t , ( inbuf + smb_vwv ) ) ;
2008-11-01 16:24:42 +01:00
req - > buflen = smb_buflen ( inbuf ) ;
2011-05-05 10:41:59 -07:00
req - > buf = ( const uint8_t * ) smb_buf_const ( inbuf ) ;
2007-10-30 16:22:24 -07:00
req - > unread_bytes = unread_bytes ;
2008-01-04 12:56:23 -08:00
req - > encrypted = encrypted ;
2010-06-12 11:01:10 +02:00
req - > sconn = sconn ;
2009-05-27 11:15:44 +02:00
req - > conn = conn_find ( sconn , req - > tid ) ;
2008-10-09 16:55:56 +02:00
req - > chain_fsp = NULL ;
2008-11-10 10:01:26 +01:00
req - > chain_outbuf = NULL ;
2009-07-27 14:47:41 +02:00
req - > done = false ;
2010-04-08 22:15:55 -07:00
req - > smb2req = NULL ;
2009-02-08 23:10:34 -08:00
smb_init_perfcount_data ( & req - > pcd ) ;
2007-10-30 16:22:24 -07:00
2007-08-16 23:53:51 +00:00
/* Ensure we have at least wct words and 2 bytes of bcc. */
2007-08-15 19:25:38 +00:00
if ( smb_size + req - > wct * 2 > req_size ) {
DEBUG ( 0 , ( " init_smb_request: invalid wct number %u (size %u) \n " ,
( unsigned int ) req - > wct ,
( unsigned int ) req_size ) ) ;
2010-03-11 11:33:01 +01:00
return false ;
2007-08-15 19:25:38 +00:00
}
2007-08-16 23:53:51 +00:00
/* Ensure bcc is correct. */
2011-05-05 10:41:59 -07:00
if ( ( ( const uint8_t * ) smb_buf_const ( inbuf ) ) + req - > buflen > inbuf + req_size ) {
2007-08-16 23:53:51 +00:00
DEBUG ( 0 , ( " init_smb_request: invalid bcc number %u "
" (wct = %u, size %u) \n " ,
2008-11-01 16:24:42 +01:00
( unsigned int ) req - > buflen ,
2007-08-16 23:53:51 +00:00
( unsigned int ) req - > wct ,
( unsigned int ) req_size ) ) ;
2010-03-11 11:33:01 +01:00
return false ;
2007-08-16 23:53:51 +00:00
}
2009-02-08 23:10:34 -08:00
2007-07-23 09:36:09 +00:00
req - > outbuf = NULL ;
2010-03-11 11:33:01 +01:00
return true ;
2007-07-05 16:26:27 +00:00
}
2009-01-08 15:38:47 +01:00
static void process_smb ( struct smbd_server_connection * conn ,
uint8_t * inbuf , size_t nread , size_t unread_bytes ,
2009-03-09 09:47:59 +01:00
uint32_t seqnum , bool encrypted ,
struct smb_perfcount_data * deferred_pcd ) ;
2009-01-08 15:38:47 +01:00
static void smbd_deferred_open_timer ( struct event_context * ev ,
struct timed_event * te ,
struct timeval _tval ,
void * private_data )
{
struct pending_message_list * msg = talloc_get_type ( private_data ,
struct pending_message_list ) ;
TALLOC_CTX * mem_ctx = talloc_tos ( ) ;
2010-04-12 21:40:28 -07:00
uint64_t mid = ( uint64_t ) SVAL ( msg - > buf . data , smb_mid ) ;
2009-01-08 15:38:47 +01:00
uint8_t * inbuf ;
2009-01-10 13:02:43 +01:00
inbuf = ( uint8_t * ) talloc_memdup ( mem_ctx , msg - > buf . data ,
msg - > buf . length ) ;
2009-01-08 15:38:47 +01:00
if ( inbuf = = NULL ) {
exit_server ( " smbd_deferred_open_timer: talloc failed \n " ) ;
return ;
}
/* We leave this message on the queue so the open code can
know this is a retry . */
2010-04-12 21:40:28 -07:00
DEBUG ( 5 , ( " smbd_deferred_open_timer: trigger mid %llu. \n " ,
( unsigned long long ) mid ) ) ;
2009-10-01 14:32:36 +02:00
/* Mark the message as processed so this is not
* re - processed in error . */
msg - > processed = true ;
2009-01-08 15:38:47 +01:00
process_smb ( smbd_server_conn , inbuf ,
msg - > buf . length , 0 ,
2009-03-09 09:47:59 +01:00
msg - > seqnum , msg - > encrypted , & msg - > pcd ) ;
2009-10-01 14:32:36 +02:00
/* If it's still there and was processed, remove it. */
2010-04-09 19:26:34 -07:00
msg = get_deferred_open_message_smb ( mid ) ;
2009-10-01 14:32:36 +02:00
if ( msg & & msg - > processed ) {
2010-04-09 19:26:34 -07:00
remove_deferred_open_message_smb ( mid ) ;
2009-10-01 14:32:36 +02:00
}
2009-01-08 15:38:47 +01:00
}
1998-09-23 01:48:45 +00:00
/****************************************************************************
2007-10-10 15:34:30 -05:00
Function to push a message onto the tail of a linked list of smb messages ready
for processing .
1998-09-23 01:48:45 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-10-18 17:40:25 -07:00
static bool push_queued_message ( struct smb_request * req ,
2005-09-30 17:13:37 +00:00
struct timeval request_time ,
struct timeval end_time ,
char * private_data , size_t private_len )
1998-09-23 01:48:45 +00:00
{
2007-08-27 12:04:09 +00:00
int msg_len = smb_len ( req - > inbuf ) + 4 ;
2005-09-30 17:13:37 +00:00
struct pending_message_list * msg ;
2011-06-07 11:44:43 +10:00
msg = talloc_zero ( NULL , struct pending_message_list ) ;
1998-09-23 01:48:45 +00:00
2003-07-16 18:06:27 +00:00
if ( msg = = NULL ) {
DEBUG ( 0 , ( " push_message: malloc fail (1) \n " ) ) ;
return False ;
}
1998-09-23 01:48:45 +00:00
2007-08-27 12:04:09 +00:00
msg - > buf = data_blob_talloc ( msg , req - > inbuf , msg_len ) ;
2004-06-08 16:14:31 +00:00
if ( msg - > buf . data = = NULL ) {
2003-07-16 18:06:27 +00:00
DEBUG ( 0 , ( " push_message: malloc fail (2) \n " ) ) ;
2006-02-20 17:59:58 +00:00
TALLOC_FREE ( msg ) ;
2003-07-16 18:06:27 +00:00
return False ;
}
1998-09-23 01:48:45 +00:00
2005-09-30 17:13:37 +00:00
msg - > request_time = request_time ;
2009-03-09 09:47:59 +01:00
msg - > seqnum = req - > seqnum ;
2008-01-04 12:56:23 -08:00
msg - > encrypted = req - > encrypted ;
2009-10-01 14:32:36 +02:00
msg - > processed = false ;
2009-02-08 23:10:34 -08:00
SMB_PERFCOUNT_DEFER_OP ( & req - > pcd , & msg - > pcd ) ;
2004-06-08 16:14:31 +00:00
2005-06-24 20:25:18 +00:00
if ( private_data ) {
2005-09-30 17:13:37 +00:00
msg - > private_data = data_blob_talloc ( msg , private_data ,
private_len ) ;
2004-06-08 16:14:31 +00:00
if ( msg - > private_data . data = = NULL ) {
DEBUG ( 0 , ( " push_message: malloc fail (3) \n " ) ) ;
2006-02-20 17:59:58 +00:00
TALLOC_FREE ( msg ) ;
2005-06-06 15:21:09 +00:00
return False ;
2004-06-08 16:14:31 +00:00
}
}
1998-09-23 01:48:45 +00:00
2011-05-25 18:51:56 +10:00
msg - > te = event_add_timed ( server_event_context ( ) ,
2009-01-08 15:38:47 +01:00
msg ,
end_time ,
smbd_deferred_open_timer ,
msg ) ;
if ( ! msg - > te ) {
DEBUG ( 0 , ( " push_message: event_add_timed failed \n " ) ) ;
TALLOC_FREE ( msg ) ;
return false ;
}
2006-09-18 07:52:16 +00:00
DLIST_ADD_END ( deferred_open_queue , msg , struct pending_message_list * ) ;
1998-09-23 01:48:45 +00:00
2005-09-30 17:13:37 +00:00
DEBUG ( 10 , ( " push_message: pushed message length %u on "
" deferred_open_queue \n " , ( unsigned int ) msg_len ) ) ;
2004-06-08 16:14:31 +00:00
2003-07-16 18:06:27 +00:00
return True ;
1998-09-23 01:48:45 +00:00
}
2004-06-08 16:14:31 +00:00
/****************************************************************************
Function to delete a sharing violation open message by mid .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-04-12 21:40:28 -07:00
void remove_deferred_open_message_smb ( uint64_t mid )
2004-06-08 16:14:31 +00:00
{
struct pending_message_list * pml ;
2010-06-09 19:12:02 -07:00
if ( smbd_server_conn - > using_smb2 ) {
2010-06-12 14:48:42 +02:00
remove_deferred_open_message_smb2 ( smbd_server_conn , mid ) ;
2010-04-09 19:26:34 -07:00
return ;
}
2005-09-30 17:13:37 +00:00
for ( pml = deferred_open_queue ; pml ; pml = pml - > next ) {
2010-04-12 21:40:28 -07:00
if ( mid = = ( uint64_t ) SVAL ( pml - > buf . data , smb_mid ) ) {
2010-04-09 19:26:34 -07:00
DEBUG ( 10 , ( " remove_deferred_open_message_smb: "
2010-04-12 21:40:28 -07:00
" deleting mid %llu len %u \n " ,
( unsigned long long ) mid ,
2005-09-30 17:13:37 +00:00
( unsigned int ) pml - > buf . length ) ) ;
DLIST_REMOVE ( deferred_open_queue , pml ) ;
2006-02-20 17:59:58 +00:00
TALLOC_FREE ( pml ) ;
2004-06-08 16:14:31 +00:00
return ;
}
}
}
/****************************************************************************
Move a sharing violation open retry message to the front of the list and
schedule it for immediate processing .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-04-12 21:40:28 -07:00
void schedule_deferred_open_message_smb ( uint64_t mid )
2004-06-08 16:14:31 +00:00
{
struct pending_message_list * pml ;
int i = 0 ;
2010-06-09 19:12:02 -07:00
if ( smbd_server_conn - > using_smb2 ) {
2010-06-12 14:48:42 +02:00
schedule_deferred_open_message_smb2 ( smbd_server_conn , mid ) ;
2010-04-07 19:00:44 -07:00
return ;
}
2005-09-30 17:13:37 +00:00
for ( pml = deferred_open_queue ; pml ; pml = pml - > next ) {
2010-04-12 21:40:28 -07:00
uint64_t msg_mid = ( uint64_t ) SVAL ( pml - > buf . data , smb_mid ) ;
2009-01-08 15:38:47 +01:00
2010-04-12 21:40:28 -07:00
DEBUG ( 10 , ( " schedule_deferred_open_message_smb: [%d] "
" msg_mid = %llu \n " ,
i + + ,
( unsigned long long ) msg_mid ) ) ;
2009-01-08 15:38:47 +01:00
2004-06-08 16:14:31 +00:00
if ( mid = = msg_mid ) {
2009-01-08 15:38:47 +01:00
struct timed_event * te ;
2009-10-01 14:32:36 +02:00
if ( pml - > processed ) {
/* A processed message should not be
* rescheduled . */
2010-04-09 19:26:34 -07:00
DEBUG ( 0 , ( " schedule_deferred_open_message_smb: LOGIC ERROR "
2010-04-12 21:40:28 -07:00
" message mid %llu was already processed \n " ,
( unsigned long long ) msg_mid ) ) ;
2009-10-01 14:32:36 +02:00
continue ;
}
2010-04-12 21:40:28 -07:00
DEBUG ( 10 , ( " schedule_deferred_open_message_smb: "
" scheduling mid %llu \n " ,
( unsigned long long ) mid ) ) ;
2009-01-08 15:38:47 +01:00
2011-05-25 18:51:56 +10:00
te = event_add_timed ( server_event_context ( ) ,
2009-01-08 15:38:47 +01:00
pml ,
timeval_zero ( ) ,
smbd_deferred_open_timer ,
pml ) ;
if ( ! te ) {
2010-04-09 19:26:34 -07:00
DEBUG ( 10 , ( " schedule_deferred_open_message_smb: "
2010-04-12 21:40:28 -07:00
" event_add_timed() failed, "
" skipping mid %llu \n " ,
( unsigned long long ) msg_mid ) ) ;
2009-01-08 15:38:47 +01:00
}
TALLOC_FREE ( pml - > te ) ;
pml - > te = te ;
2005-09-30 17:13:37 +00:00
DLIST_PROMOTE ( deferred_open_queue , pml ) ;
2004-06-08 16:14:31 +00:00
return ;
}
}
2010-04-12 21:40:28 -07:00
DEBUG ( 10 , ( " schedule_deferred_open_message_smb: failed to "
" find message mid %llu \n " ,
( unsigned long long ) mid ) ) ;
2004-06-08 16:14:31 +00:00
}
/****************************************************************************
2009-10-01 14:32:36 +02:00
Return true if this mid is on the deferred queue and was not yet processed .
2004-06-08 16:14:31 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-04-12 21:40:28 -07:00
bool open_was_deferred ( uint64_t mid )
2004-06-08 16:14:31 +00:00
{
struct pending_message_list * pml ;
2004-06-26 01:04:02 +00:00
2010-06-09 19:12:02 -07:00
if ( smbd_server_conn - > using_smb2 ) {
2010-06-12 14:44:53 +02:00
return open_was_deferred_smb2 ( smbd_server_conn , mid ) ;
2010-04-09 19:26:34 -07:00
}
2005-09-30 17:13:37 +00:00
for ( pml = deferred_open_queue ; pml ; pml = pml - > next ) {
2010-04-12 21:40:28 -07:00
if ( ( ( uint64_t ) SVAL ( pml - > buf . data , smb_mid ) ) = = mid & & ! pml - > processed ) {
2004-06-08 16:14:31 +00:00
return True ;
}
}
return False ;
}
/****************************************************************************
Return the message queued by this mid .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-04-12 21:40:28 -07:00
static struct pending_message_list * get_deferred_open_message_smb ( uint64_t mid )
2004-06-08 16:14:31 +00:00
{
struct pending_message_list * pml ;
2004-06-26 01:04:02 +00:00
2005-09-30 17:13:37 +00:00
for ( pml = deferred_open_queue ; pml ; pml = pml - > next ) {
2010-04-12 21:40:28 -07:00
if ( ( ( uint64_t ) SVAL ( pml - > buf . data , smb_mid ) ) = = mid ) {
2004-06-08 16:14:31 +00:00
return pml ;
}
}
return NULL ;
}
2010-04-09 19:26:34 -07:00
/****************************************************************************
Get the state data queued by this mid .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-04-22 23:52:19 -07:00
bool get_deferred_open_message_state ( struct smb_request * smbreq ,
2010-04-09 19:26:34 -07:00
struct timeval * p_request_time ,
void * * pp_state )
{
struct pending_message_list * pml ;
2010-06-09 19:12:02 -07:00
if ( smbd_server_conn - > using_smb2 ) {
2010-04-22 23:52:19 -07:00
return get_deferred_open_message_state_smb2 ( smbreq - > smb2req ,
2010-04-09 19:26:34 -07:00
p_request_time ,
pp_state ) ;
}
2010-04-22 23:52:19 -07:00
pml = get_deferred_open_message_smb ( smbreq - > mid ) ;
2010-04-09 19:26:34 -07:00
if ( ! pml ) {
return false ;
}
if ( p_request_time ) {
* p_request_time = pml - > request_time ;
}
if ( pp_state ) {
* pp_state = ( void * ) pml - > private_data . data ;
}
return true ;
}
2004-06-08 16:14:31 +00:00
/****************************************************************************
2005-09-30 17:13:37 +00:00
Function to push a deferred open smb message onto a linked list of local smb
messages ready for processing .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-04-09 19:26:34 -07:00
bool push_deferred_open_message_smb ( struct smb_request * req ,
2005-09-30 17:13:37 +00:00
struct timeval request_time ,
struct timeval timeout ,
2010-04-23 13:10:15 -07:00
struct file_id id ,
2005-09-30 17:13:37 +00:00
char * private_data , size_t priv_len )
{
struct timeval end_time ;
2010-04-09 19:26:34 -07:00
if ( req - > smb2req ) {
2010-04-22 23:52:19 -07:00
return push_deferred_open_message_smb2 ( req - > smb2req ,
2010-04-09 19:26:34 -07:00
request_time ,
timeout ,
2010-04-23 13:10:15 -07:00
id ,
2010-04-09 19:26:34 -07:00
private_data ,
priv_len ) ;
}
2007-10-30 16:22:24 -07:00
if ( req - > unread_bytes ) {
2010-04-09 19:26:34 -07:00
DEBUG ( 0 , ( " push_deferred_open_message_smb: logic error ! "
2007-10-30 16:22:24 -07:00
" unread_bytes = %u \n " ,
( unsigned int ) req - > unread_bytes ) ) ;
2010-04-09 19:26:34 -07:00
smb_panic ( " push_deferred_open_message_smb: "
2007-10-30 16:22:24 -07:00
" logic error unread_bytes != 0 " ) ;
}
2005-09-30 17:13:37 +00:00
end_time = timeval_sum ( & request_time , & timeout ) ;
2010-04-12 21:40:28 -07:00
DEBUG ( 10 , ( " push_deferred_open_message_smb: pushing message "
" len %u mid %llu timeout time [%u.%06u] \n " ,
( unsigned int ) smb_len ( req - > inbuf ) + 4 ,
( unsigned long long ) req - > mid ,
( unsigned int ) end_time . tv_sec ,
( unsigned int ) end_time . tv_usec ) ) ;
2005-09-30 17:13:37 +00:00
2007-08-27 12:04:09 +00:00
return push_queued_message ( req , request_time , end_time ,
2005-09-30 17:13:37 +00:00
private_data , priv_len ) ;
}
2009-01-21 23:24:18 +01:00
static void smbd_sig_term_handler ( struct tevent_context * ev ,
struct tevent_signal * se ,
int signum ,
int count ,
void * siginfo ,
void * private_data )
{
exit_server_cleanly ( " termination signal " ) ;
}
void smbd_setup_sig_term_handler ( void )
{
struct tevent_signal * se ;
2011-05-25 18:51:56 +10:00
se = tevent_add_signal ( server_event_context ( ) ,
server_event_context ( ) ,
2009-01-21 23:24:18 +01:00
SIGTERM , 0 ,
smbd_sig_term_handler ,
NULL ) ;
if ( ! se ) {
exit_server ( " failed to setup SIGTERM handler " ) ;
}
}
static void smbd_sig_hup_handler ( struct tevent_context * ev ,
struct tevent_signal * se ,
int signum ,
int count ,
void * siginfo ,
void * private_data )
{
2010-08-08 15:15:01 +02:00
struct messaging_context * msg_ctx = talloc_get_type_abort (
private_data , struct messaging_context ) ;
2009-01-21 23:24:18 +01:00
change_to_root_user ( ) ;
DEBUG ( 1 , ( " Reloading services after SIGHUP \n " ) ) ;
2010-08-28 17:21:07 +02:00
reload_services ( msg_ctx , smbd_server_conn - > sock , False ) ;
2010-12-23 12:14:21 +01:00
if ( am_parent ) {
pcap_cache_reload ( ev , msg_ctx , & reload_pcap_change_notify ) ;
}
2009-01-21 23:24:18 +01:00
}
2010-08-08 15:18:12 +02:00
void smbd_setup_sig_hup_handler ( struct tevent_context * ev ,
struct messaging_context * msg_ctx )
2009-01-21 23:24:18 +01:00
{
struct tevent_signal * se ;
2010-08-08 15:18:12 +02:00
se = tevent_add_signal ( ev , ev , SIGHUP , 0 , smbd_sig_hup_handler ,
msg_ctx ) ;
2009-01-21 23:24:18 +01:00
if ( ! se ) {
exit_server ( " failed to setup SIGHUP handler " ) ;
}
}
2009-01-08 15:38:47 +01:00
static NTSTATUS smbd_server_connection_loop_once ( struct smbd_server_connection * conn )
1998-09-23 01:48:45 +00:00
{
2011-02-03 21:55:02 +01:00
int timeout ;
int num_pfds = 0 ;
int ret ;
bool retry ;
1998-09-23 01:48:45 +00:00
2011-02-03 21:55:02 +01:00
timeout = SMBD_SELECT_TIMEOUT * 1000 ;
2002-07-15 10:35:28 +00:00
2006-04-14 03:55:42 +00:00
/*
* Are there any timed events waiting ? If so , ensure we don ' t
* select for longer than it would take to wait for them .
*/
2011-05-25 18:51:56 +10:00
event_add_to_poll_args ( server_event_context ( ) , conn ,
2011-02-03 21:55:02 +01:00
& conn - > pfds , & num_pfds , & timeout ) ;
2007-01-17 12:59:14 +00:00
2009-01-20 04:14:20 +01:00
/* Process a signal and timed events now... */
2011-05-25 18:51:56 +10:00
if ( run_events_poll ( server_event_context ( ) , 0 , NULL , 0 ) ) {
2009-01-20 04:14:20 +01:00
return NT_STATUS_RETRY ;
2005-09-30 17:13:37 +00:00
}
2009-01-20 04:14:20 +01:00
2006-07-11 18:01:26 +00:00
{
int sav ;
START_PROFILE ( smbd_idle ) ;
2011-02-03 21:55:02 +01:00
ret = sys_poll ( conn - > pfds , num_pfds , timeout ) ;
2006-07-11 18:01:26 +00:00
sav = errno ;
END_PROFILE ( smbd_idle ) ;
errno = sav ;
}
2000-06-11 05:57:58 +00:00
2011-05-03 17:04:06 +02:00
if ( ret = = - 1 ) {
if ( errno = = EINTR ) {
return NT_STATUS_RETRY ;
}
2011-01-24 09:00:53 +01:00
return map_nt_error_from_unix ( errno ) ;
}
2011-05-25 18:51:56 +10:00
retry = run_events_poll ( server_event_context ( ) , ret , conn - > pfds ,
2011-02-03 21:55:02 +01:00
num_pfds ) ;
if ( retry ) {
2011-01-24 08:47:38 +01:00
return NT_STATUS_RETRY ;
}
2007-01-17 12:59:14 +00:00
2011-01-24 08:47:38 +01:00
/* Did we timeout ? */
2011-02-03 21:55:02 +01:00
if ( ret = = 0 ) {
2008-12-20 10:42:02 +01:00
return NT_STATUS_RETRY ;
2000-06-11 05:57:58 +00:00
}
totally rewrote the async signal, notification and oplock notification
handling in Samba. This was needed due to several limitations and
races in the previous code - as a side effect the new code is much
cleaner :)
in summary:
- changed sys_select() to avoid a signal/select race condition. It is a
rare race but once we have signals doing notification and oplocks it
is important.
- changed our main processing loop to take advantage of the new
sys_select semantics
- split the notify code into implementaion dependent and general
parts. Added the following structure that defines an implementation:
struct cnotify_fns {
void * (*register_notify)(connection_struct *conn, char *path, uint32 flags);
BOOL (*check_notify)(connection_struct *conn, uint16 vuid, char *path, uint32 flags, void *data, time_t t);
void (*remove_notify)(void *data);
};
then I wrote two implementations, one using hash/poll (like our old
code) and the other using the new Linux kernel change notify. It
should be easy to add other change notify implementations by creating
a sructure of the above type.
- fixed a bug in change notify where we were returning the wrong error
code.
- rewrote the core change notify code to be much simpler
- moved to real-time signals for leases and change notify
Amazingly, it all seems to work. I was very surprised!
(This used to be commit 44766c39e0027c762bee8b33b12c621c109a3267)
2000-06-12 15:53:31 +00:00
2009-01-21 07:33:19 +01:00
/* should not be reached */
return NT_STATUS_INTERNAL_ERROR ;
1998-09-23 01:48:45 +00:00
}
1998-08-17 13:11:34 +00:00
2006-04-10 15:33:04 +00:00
/*
* Only allow 5 outstanding trans requests . We ' re allocating memory , so
* prevent a DoS .
*/
1998-09-23 01:48:45 +00:00
2010-04-12 21:40:28 -07:00
NTSTATUS allow_new_trans ( struct trans_state * list , uint64_t mid )
1998-08-17 13:11:34 +00:00
{
2006-04-10 15:33:04 +00:00
int count = 0 ;
for ( ; list ! = NULL ; list = list - > next ) {
1998-08-17 13:11:34 +00:00
2006-04-10 15:33:04 +00:00
if ( list - > mid = = mid ) {
return NT_STATUS_INVALID_PARAMETER ;
}
count + = 1 ;
}
if ( count > 5 ) {
return NT_STATUS_INSUFFICIENT_RESOURCES ;
}
1998-08-17 13:11:34 +00:00
2006-04-10 15:33:04 +00:00
return NT_STATUS_OK ;
1998-08-17 13:11:34 +00:00
}
/*
These flags determine some of the permissions required to do an operation
Note that I don ' t set NEED_WRITE on some write operations because they
are used by some brain - dead clients when printing , and I don ' t want to
force write permissions on print services .
*/
# define AS_USER (1<<0)
2006-06-20 02:38:28 +00:00
# define NEED_WRITE (1<<1) /* Must be paired with AS_USER */
1998-08-17 13:11:34 +00:00
# define TIME_INIT (1<<2)
2006-06-20 02:38:28 +00:00
# define CAN_IPC (1<<3) /* Must be paired with AS_USER */
# define AS_GUEST (1<<5) /* Must *NOT* be paired with AS_USER */
2005-09-30 17:13:37 +00:00
# define DO_CHDIR (1<<6)
1998-08-17 13:11:34 +00:00
/*
define a list of possible SMB messages and their corresponding
functions . Any message that has a NULL function is unimplemented -
please feel free to contribute implementations !
*/
2003-07-16 18:06:27 +00:00
static const struct smb_message_struct {
const char * name ;
2008-10-19 15:17:12 +02:00
void ( * fn ) ( struct smb_request * req ) ;
2003-07-16 18:06:27 +00:00
int flags ;
} smb_messages [ 256 ] = {
2001-01-24 19:04:56 +00:00
2007-08-27 12:04:09 +00:00
/* 0x00 */ { " SMBmkdir " , reply_mkdir , AS_USER | NEED_WRITE } ,
/* 0x01 */ { " SMBrmdir " , reply_rmdir , AS_USER | NEED_WRITE } ,
/* 0x02 */ { " SMBopen " , reply_open , AS_USER } ,
/* 0x03 */ { " SMBcreate " , reply_mknew , AS_USER } ,
/* 0x04 */ { " SMBclose " , reply_close , AS_USER | CAN_IPC } ,
/* 0x05 */ { " SMBflush " , reply_flush , AS_USER } ,
/* 0x06 */ { " SMBunlink " , reply_unlink , AS_USER | NEED_WRITE } ,
/* 0x07 */ { " SMBmv " , reply_mv , AS_USER | NEED_WRITE } ,
/* 0x08 */ { " SMBgetatr " , reply_getatr , AS_USER } ,
/* 0x09 */ { " SMBsetatr " , reply_setatr , AS_USER | NEED_WRITE } ,
/* 0x0a */ { " SMBread " , reply_read , AS_USER } ,
/* 0x0b */ { " SMBwrite " , reply_write , AS_USER | CAN_IPC } ,
/* 0x0c */ { " SMBlock " , reply_lock , AS_USER } ,
/* 0x0d */ { " SMBunlock " , reply_unlock , AS_USER } ,
/* 0x0e */ { " SMBctemp " , reply_ctemp , AS_USER } ,
/* 0x0f */ { " SMBmknew " , reply_mknew , AS_USER } ,
/* 0x10 */ { " SMBcheckpath " , reply_checkpath , AS_USER } ,
/* 0x11 */ { " SMBexit " , reply_exit , DO_CHDIR } ,
/* 0x12 */ { " SMBlseek " , reply_lseek , AS_USER } ,
/* 0x13 */ { " SMBlockread " , reply_lockread , AS_USER } ,
/* 0x14 */ { " SMBwriteunlock " , reply_writeunlock , AS_USER } ,
/* 0x15 */ { NULL , NULL , 0 } ,
/* 0x16 */ { NULL , NULL , 0 } ,
/* 0x17 */ { NULL , NULL , 0 } ,
/* 0x18 */ { NULL , NULL , 0 } ,
/* 0x19 */ { NULL , NULL , 0 } ,
/* 0x1a */ { " SMBreadbraw " , reply_readbraw , AS_USER } ,
/* 0x1b */ { " SMBreadBmpx " , reply_readbmpx , AS_USER } ,
/* 0x1c */ { " SMBreadBs " , reply_readbs , AS_USER } ,
/* 0x1d */ { " SMBwritebraw " , reply_writebraw , AS_USER } ,
/* 0x1e */ { " SMBwriteBmpx " , reply_writebmpx , AS_USER } ,
/* 0x1f */ { " SMBwriteBs " , reply_writebs , AS_USER } ,
/* 0x20 */ { " SMBwritec " , NULL , 0 } ,
/* 0x21 */ { NULL , NULL , 0 } ,
/* 0x22 */ { " SMBsetattrE " , reply_setattrE , AS_USER | NEED_WRITE } ,
/* 0x23 */ { " SMBgetattrE " , reply_getattrE , AS_USER } ,
/* 0x24 */ { " SMBlockingX " , reply_lockingX , AS_USER } ,
/* 0x25 */ { " SMBtrans " , reply_trans , AS_USER | CAN_IPC } ,
/* 0x26 */ { " SMBtranss " , reply_transs , AS_USER | CAN_IPC } ,
/* 0x27 */ { " SMBioctl " , reply_ioctl , 0 } ,
/* 0x28 */ { " SMBioctls " , NULL , AS_USER } ,
/* 0x29 */ { " SMBcopy " , reply_copy , AS_USER | NEED_WRITE } ,
/* 0x2a */ { " SMBmove " , NULL , AS_USER | NEED_WRITE } ,
/* 0x2b */ { " SMBecho " , reply_echo , 0 } ,
/* 0x2c */ { " SMBwriteclose " , reply_writeclose , AS_USER } ,
/* 0x2d */ { " SMBopenX " , reply_open_and_X , AS_USER | CAN_IPC } ,
/* 0x2e */ { " SMBreadX " , reply_read_and_X , AS_USER | CAN_IPC } ,
/* 0x2f */ { " SMBwriteX " , reply_write_and_X , AS_USER | CAN_IPC } ,
/* 0x30 */ { NULL , NULL , 0 } ,
/* 0x31 */ { NULL , NULL , 0 } ,
/* 0x32 */ { " SMBtrans2 " , reply_trans2 , AS_USER | CAN_IPC } ,
2009-03-23 11:44:00 +01:00
/* 0x33 */ { " SMBtranss2 " , reply_transs2 , AS_USER | CAN_IPC } ,
2007-08-27 12:04:09 +00:00
/* 0x34 */ { " SMBfindclose " , reply_findclose , AS_USER } ,
/* 0x35 */ { " SMBfindnclose " , reply_findnclose , AS_USER } ,
/* 0x36 */ { NULL , NULL , 0 } ,
/* 0x37 */ { NULL , NULL , 0 } ,
/* 0x38 */ { NULL , NULL , 0 } ,
/* 0x39 */ { NULL , NULL , 0 } ,
/* 0x3a */ { NULL , NULL , 0 } ,
/* 0x3b */ { NULL , NULL , 0 } ,
/* 0x3c */ { NULL , NULL , 0 } ,
/* 0x3d */ { NULL , NULL , 0 } ,
/* 0x3e */ { NULL , NULL , 0 } ,
/* 0x3f */ { NULL , NULL , 0 } ,
/* 0x40 */ { NULL , NULL , 0 } ,
/* 0x41 */ { NULL , NULL , 0 } ,
/* 0x42 */ { NULL , NULL , 0 } ,
/* 0x43 */ { NULL , NULL , 0 } ,
/* 0x44 */ { NULL , NULL , 0 } ,
/* 0x45 */ { NULL , NULL , 0 } ,
/* 0x46 */ { NULL , NULL , 0 } ,
/* 0x47 */ { NULL , NULL , 0 } ,
/* 0x48 */ { NULL , NULL , 0 } ,
/* 0x49 */ { NULL , NULL , 0 } ,
/* 0x4a */ { NULL , NULL , 0 } ,
/* 0x4b */ { NULL , NULL , 0 } ,
/* 0x4c */ { NULL , NULL , 0 } ,
/* 0x4d */ { NULL , NULL , 0 } ,
/* 0x4e */ { NULL , NULL , 0 } ,
/* 0x4f */ { NULL , NULL , 0 } ,
/* 0x50 */ { NULL , NULL , 0 } ,
/* 0x51 */ { NULL , NULL , 0 } ,
/* 0x52 */ { NULL , NULL , 0 } ,
/* 0x53 */ { NULL , NULL , 0 } ,
/* 0x54 */ { NULL , NULL , 0 } ,
/* 0x55 */ { NULL , NULL , 0 } ,
/* 0x56 */ { NULL , NULL , 0 } ,
/* 0x57 */ { NULL , NULL , 0 } ,
/* 0x58 */ { NULL , NULL , 0 } ,
/* 0x59 */ { NULL , NULL , 0 } ,
/* 0x5a */ { NULL , NULL , 0 } ,
/* 0x5b */ { NULL , NULL , 0 } ,
/* 0x5c */ { NULL , NULL , 0 } ,
/* 0x5d */ { NULL , NULL , 0 } ,
/* 0x5e */ { NULL , NULL , 0 } ,
/* 0x5f */ { NULL , NULL , 0 } ,
/* 0x60 */ { NULL , NULL , 0 } ,
/* 0x61 */ { NULL , NULL , 0 } ,
/* 0x62 */ { NULL , NULL , 0 } ,
/* 0x63 */ { NULL , NULL , 0 } ,
/* 0x64 */ { NULL , NULL , 0 } ,
/* 0x65 */ { NULL , NULL , 0 } ,
/* 0x66 */ { NULL , NULL , 0 } ,
/* 0x67 */ { NULL , NULL , 0 } ,
/* 0x68 */ { NULL , NULL , 0 } ,
/* 0x69 */ { NULL , NULL , 0 } ,
/* 0x6a */ { NULL , NULL , 0 } ,
/* 0x6b */ { NULL , NULL , 0 } ,
/* 0x6c */ { NULL , NULL , 0 } ,
/* 0x6d */ { NULL , NULL , 0 } ,
/* 0x6e */ { NULL , NULL , 0 } ,
/* 0x6f */ { NULL , NULL , 0 } ,
/* 0x70 */ { " SMBtcon " , reply_tcon , 0 } ,
/* 0x71 */ { " SMBtdis " , reply_tdis , DO_CHDIR } ,
/* 0x72 */ { " SMBnegprot " , reply_negprot , 0 } ,
/* 0x73 */ { " SMBsesssetupX " , reply_sesssetup_and_X , 0 } ,
/* 0x74 */ { " SMBulogoffX " , reply_ulogoffX , 0 } , /* ulogoff doesn't give a valid TID */
/* 0x75 */ { " SMBtconX " , reply_tcon_and_X , 0 } ,
/* 0x76 */ { NULL , NULL , 0 } ,
/* 0x77 */ { NULL , NULL , 0 } ,
/* 0x78 */ { NULL , NULL , 0 } ,
/* 0x79 */ { NULL , NULL , 0 } ,
/* 0x7a */ { NULL , NULL , 0 } ,
/* 0x7b */ { NULL , NULL , 0 } ,
/* 0x7c */ { NULL , NULL , 0 } ,
/* 0x7d */ { NULL , NULL , 0 } ,
/* 0x7e */ { NULL , NULL , 0 } ,
/* 0x7f */ { NULL , NULL , 0 } ,
/* 0x80 */ { " SMBdskattr " , reply_dskattr , AS_USER } ,
/* 0x81 */ { " SMBsearch " , reply_search , AS_USER } ,
/* 0x82 */ { " SMBffirst " , reply_search , AS_USER } ,
/* 0x83 */ { " SMBfunique " , reply_search , AS_USER } ,
/* 0x84 */ { " SMBfclose " , reply_fclose , AS_USER } ,
/* 0x85 */ { NULL , NULL , 0 } ,
/* 0x86 */ { NULL , NULL , 0 } ,
/* 0x87 */ { NULL , NULL , 0 } ,
/* 0x88 */ { NULL , NULL , 0 } ,
/* 0x89 */ { NULL , NULL , 0 } ,
/* 0x8a */ { NULL , NULL , 0 } ,
/* 0x8b */ { NULL , NULL , 0 } ,
/* 0x8c */ { NULL , NULL , 0 } ,
/* 0x8d */ { NULL , NULL , 0 } ,
/* 0x8e */ { NULL , NULL , 0 } ,
/* 0x8f */ { NULL , NULL , 0 } ,
/* 0x90 */ { NULL , NULL , 0 } ,
/* 0x91 */ { NULL , NULL , 0 } ,
/* 0x92 */ { NULL , NULL , 0 } ,
/* 0x93 */ { NULL , NULL , 0 } ,
/* 0x94 */ { NULL , NULL , 0 } ,
/* 0x95 */ { NULL , NULL , 0 } ,
/* 0x96 */ { NULL , NULL , 0 } ,
/* 0x97 */ { NULL , NULL , 0 } ,
/* 0x98 */ { NULL , NULL , 0 } ,
/* 0x99 */ { NULL , NULL , 0 } ,
/* 0x9a */ { NULL , NULL , 0 } ,
/* 0x9b */ { NULL , NULL , 0 } ,
/* 0x9c */ { NULL , NULL , 0 } ,
/* 0x9d */ { NULL , NULL , 0 } ,
/* 0x9e */ { NULL , NULL , 0 } ,
/* 0x9f */ { NULL , NULL , 0 } ,
/* 0xa0 */ { " SMBnttrans " , reply_nttrans , AS_USER | CAN_IPC } ,
/* 0xa1 */ { " SMBnttranss " , reply_nttranss , AS_USER | CAN_IPC } ,
/* 0xa2 */ { " SMBntcreateX " , reply_ntcreate_and_X , AS_USER | CAN_IPC } ,
/* 0xa3 */ { NULL , NULL , 0 } ,
/* 0xa4 */ { " SMBntcancel " , reply_ntcancel , 0 } ,
/* 0xa5 */ { " SMBntrename " , reply_ntrename , AS_USER | NEED_WRITE } ,
/* 0xa6 */ { NULL , NULL , 0 } ,
/* 0xa7 */ { NULL , NULL , 0 } ,
/* 0xa8 */ { NULL , NULL , 0 } ,
/* 0xa9 */ { NULL , NULL , 0 } ,
/* 0xaa */ { NULL , NULL , 0 } ,
/* 0xab */ { NULL , NULL , 0 } ,
/* 0xac */ { NULL , NULL , 0 } ,
/* 0xad */ { NULL , NULL , 0 } ,
/* 0xae */ { NULL , NULL , 0 } ,
/* 0xaf */ { NULL , NULL , 0 } ,
/* 0xb0 */ { NULL , NULL , 0 } ,
/* 0xb1 */ { NULL , NULL , 0 } ,
/* 0xb2 */ { NULL , NULL , 0 } ,
/* 0xb3 */ { NULL , NULL , 0 } ,
/* 0xb4 */ { NULL , NULL , 0 } ,
/* 0xb5 */ { NULL , NULL , 0 } ,
/* 0xb6 */ { NULL , NULL , 0 } ,
/* 0xb7 */ { NULL , NULL , 0 } ,
/* 0xb8 */ { NULL , NULL , 0 } ,
/* 0xb9 */ { NULL , NULL , 0 } ,
/* 0xba */ { NULL , NULL , 0 } ,
/* 0xbb */ { NULL , NULL , 0 } ,
/* 0xbc */ { NULL , NULL , 0 } ,
/* 0xbd */ { NULL , NULL , 0 } ,
/* 0xbe */ { NULL , NULL , 0 } ,
/* 0xbf */ { NULL , NULL , 0 } ,
/* 0xc0 */ { " SMBsplopen " , reply_printopen , AS_USER } ,
/* 0xc1 */ { " SMBsplwr " , reply_printwrite , AS_USER } ,
/* 0xc2 */ { " SMBsplclose " , reply_printclose , AS_USER } ,
/* 0xc3 */ { " SMBsplretq " , reply_printqueue , AS_USER } ,
/* 0xc4 */ { NULL , NULL , 0 } ,
/* 0xc5 */ { NULL , NULL , 0 } ,
/* 0xc6 */ { NULL , NULL , 0 } ,
/* 0xc7 */ { NULL , NULL , 0 } ,
/* 0xc8 */ { NULL , NULL , 0 } ,
/* 0xc9 */ { NULL , NULL , 0 } ,
/* 0xca */ { NULL , NULL , 0 } ,
/* 0xcb */ { NULL , NULL , 0 } ,
/* 0xcc */ { NULL , NULL , 0 } ,
/* 0xcd */ { NULL , NULL , 0 } ,
/* 0xce */ { NULL , NULL , 0 } ,
/* 0xcf */ { NULL , NULL , 0 } ,
/* 0xd0 */ { " SMBsends " , reply_sends , AS_GUEST } ,
/* 0xd1 */ { " SMBsendb " , NULL , AS_GUEST } ,
/* 0xd2 */ { " SMBfwdname " , NULL , AS_GUEST } ,
/* 0xd3 */ { " SMBcancelf " , NULL , AS_GUEST } ,
/* 0xd4 */ { " SMBgetmac " , NULL , AS_GUEST } ,
/* 0xd5 */ { " SMBsendstrt " , reply_sendstrt , AS_GUEST } ,
/* 0xd6 */ { " SMBsendend " , reply_sendend , AS_GUEST } ,
/* 0xd7 */ { " SMBsendtxt " , reply_sendtxt , AS_GUEST } ,
/* 0xd8 */ { NULL , NULL , 0 } ,
/* 0xd9 */ { NULL , NULL , 0 } ,
/* 0xda */ { NULL , NULL , 0 } ,
/* 0xdb */ { NULL , NULL , 0 } ,
/* 0xdc */ { NULL , NULL , 0 } ,
/* 0xdd */ { NULL , NULL , 0 } ,
/* 0xde */ { NULL , NULL , 0 } ,
/* 0xdf */ { NULL , NULL , 0 } ,
/* 0xe0 */ { NULL , NULL , 0 } ,
/* 0xe1 */ { NULL , NULL , 0 } ,
/* 0xe2 */ { NULL , NULL , 0 } ,
/* 0xe3 */ { NULL , NULL , 0 } ,
/* 0xe4 */ { NULL , NULL , 0 } ,
/* 0xe5 */ { NULL , NULL , 0 } ,
/* 0xe6 */ { NULL , NULL , 0 } ,
/* 0xe7 */ { NULL , NULL , 0 } ,
/* 0xe8 */ { NULL , NULL , 0 } ,
/* 0xe9 */ { NULL , NULL , 0 } ,
/* 0xea */ { NULL , NULL , 0 } ,
/* 0xeb */ { NULL , NULL , 0 } ,
/* 0xec */ { NULL , NULL , 0 } ,
/* 0xed */ { NULL , NULL , 0 } ,
/* 0xee */ { NULL , NULL , 0 } ,
/* 0xef */ { NULL , NULL , 0 } ,
/* 0xf0 */ { NULL , NULL , 0 } ,
/* 0xf1 */ { NULL , NULL , 0 } ,
/* 0xf2 */ { NULL , NULL , 0 } ,
/* 0xf3 */ { NULL , NULL , 0 } ,
/* 0xf4 */ { NULL , NULL , 0 } ,
/* 0xf5 */ { NULL , NULL , 0 } ,
/* 0xf6 */ { NULL , NULL , 0 } ,
/* 0xf7 */ { NULL , NULL , 0 } ,
/* 0xf8 */ { NULL , NULL , 0 } ,
/* 0xf9 */ { NULL , NULL , 0 } ,
/* 0xfa */ { NULL , NULL , 0 } ,
/* 0xfb */ { NULL , NULL , 0 } ,
/* 0xfc */ { NULL , NULL , 0 } ,
/* 0xfd */ { NULL , NULL , 0 } ,
/* 0xfe */ { NULL , NULL , 0 } ,
/* 0xff */ { NULL , NULL , 0 }
2001-01-24 19:04:56 +00:00
} ;
1998-08-17 13:11:34 +00:00
2007-07-23 09:36:09 +00:00
/*******************************************************************
allocate and initialize a reply packet
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2008-12-19 18:07:44 +01:00
static bool create_outbuf ( TALLOC_CTX * mem_ctx , struct smb_request * req ,
const char * inbuf , char * * outbuf , uint8_t num_words ,
uint32_t num_bytes )
2007-07-23 09:36:09 +00:00
{
2007-08-12 12:15:32 +00:00
/*
* Protect against integer wrap
*/
if ( ( num_bytes > 0xffffff )
| | ( ( num_bytes + smb_size + num_words * 2 ) > 0xffffff ) ) {
char * msg ;
2008-04-02 15:54:49 +02:00
if ( asprintf ( & msg , " num_bytes too large: %u " ,
( unsigned ) num_bytes ) = = - 1 ) {
2011-05-05 10:41:59 -07:00
msg = discard_const_p ( char , " num_bytes too large " ) ;
2008-04-02 15:54:49 +02:00
}
2007-08-12 12:15:32 +00:00
smb_panic ( msg ) ;
}
2011-06-07 11:30:12 +10:00
* outbuf = talloc_array ( mem_ctx , char ,
2008-04-02 15:34:29 +02:00
smb_size + num_words * 2 + num_bytes ) ;
if ( * outbuf = = NULL ) {
return false ;
2007-07-23 09:36:09 +00:00
}
2008-12-19 18:07:44 +01:00
construct_reply_common ( req , inbuf , * outbuf ) ;
2008-04-02 15:34:29 +02:00
srv_set_message ( * outbuf , num_words , num_bytes , false ) ;
2007-07-23 09:36:09 +00:00
/*
* Zero out the word area , the caller has to take care of the bcc area
* himself
*/
if ( num_words ! = 0 ) {
2008-04-02 15:34:29 +02:00
memset ( * outbuf + smb_vwv0 , 0 , num_words * 2 ) ;
2007-07-23 09:36:09 +00:00
}
2008-04-02 15:34:29 +02:00
return true ;
}
void reply_outbuf ( struct smb_request * req , uint8 num_words , uint32 num_bytes )
{
char * outbuf ;
2011-05-05 10:41:59 -07:00
if ( ! create_outbuf ( req , req , ( const char * ) req - > inbuf , & outbuf , num_words ,
2008-04-02 15:34:29 +02:00
num_bytes ) ) {
smb_panic ( " could not allocate output buffer \n " ) ;
}
req - > outbuf = ( uint8_t * ) outbuf ;
2007-07-23 09:36:09 +00:00
}
2000-05-27 09:19:57 +00:00
/*******************************************************************
2002-09-25 15:19:00 +00:00
Dump a packet to a file .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2007-07-23 09:36:09 +00:00
static void smb_dump ( const char * name , int type , const char * data , ssize_t len )
2000-05-27 09:19:57 +00:00
{
int fd , i ;
2007-11-11 21:46:52 -08:00
char * fname = NULL ;
if ( DEBUGLEVEL < 50 ) {
return ;
}
2000-05-27 09:19:57 +00:00
2000-05-28 20:11:04 +00:00
if ( len < 4 ) len = smb_len ( data ) + 4 ;
2000-05-27 09:19:57 +00:00
for ( i = 1 ; i < 100 ; i + + ) {
2008-04-02 15:54:49 +02:00
if ( asprintf ( & fname , " /tmp/%s.%d.%s " , name , i ,
type ? " req " : " resp " ) = = - 1 ) {
2007-11-11 21:46:52 -08:00
return ;
}
2000-05-27 09:19:57 +00:00
fd = open ( fname , O_WRONLY | O_CREAT | O_EXCL , 0644 ) ;
if ( fd ! = - 1 | | errno ! = EEXIST ) break ;
}
if ( fd ! = - 1 ) {
2002-01-19 21:29:20 +00:00
ssize_t ret = write ( fd , data , len ) ;
if ( ret ! = len )
DEBUG ( 0 , ( " smb_dump: problem: write returned %d \n " , ( int ) ret ) ) ;
2000-05-27 09:19:57 +00:00
close ( fd ) ;
2003-11-05 00:16:01 +00:00
DEBUG ( 0 , ( " created %s len %lu \n " , fname , ( unsigned long ) len ) ) ;
2000-05-27 09:19:57 +00:00
}
2007-11-11 21:46:52 -08:00
SAFE_FREE ( fname ) ;
2000-05-27 09:19:57 +00:00
}
1998-08-17 13:11:34 +00:00
/****************************************************************************
2007-07-23 09:36:09 +00:00
Prepare everything for calling the actual request function , and potentially
call the request function via the " new " interface .
Return False if the " legacy " function needs to be called , everything is
prepared .
Return True if we ' re done .
I know this API sucks , but it is the one with the least code change I could
find .
1998-08-17 13:11:34 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2002-09-25 15:19:00 +00:00
2008-01-04 12:56:23 -08:00
static connection_struct * switch_message ( uint8 type , struct smb_request * req , int size )
1998-08-17 13:11:34 +00:00
{
2007-07-21 22:29:55 +00:00
int flags ;
uint16 session_tag ;
2008-01-04 12:56:23 -08:00
connection_struct * conn = NULL ;
2010-06-12 13:23:10 +02:00
struct smbd_server_connection * sconn = req - > sconn ;
2011-06-16 15:39:25 +02:00
char * raddr ;
2001-01-24 19:34:53 +00:00
2002-09-25 15:19:00 +00:00
errno = 0 ;
2005-04-01 23:11:28 +00:00
2007-07-23 09:36:09 +00:00
/* Make sure this is an SMB packet. smb_size contains NetBIOS header
* so subtract 4 from it . */
2008-01-04 12:56:23 -08:00
if ( ! valid_smb_header ( req - > inbuf )
2007-07-23 09:36:09 +00:00
| | ( size < ( smb_size - 4 ) ) ) {
DEBUG ( 2 , ( " Non-SMB packet of length %d. Terminating server \n " ,
smb_len ( req - > inbuf ) ) ) ;
2006-04-10 22:47:09 +00:00
exit_server_cleanly ( " Non-SMB packet " ) ;
2002-09-25 15:19:00 +00:00
}
1998-08-17 13:11:34 +00:00
2008-10-19 15:17:12 +02:00
if ( smb_messages [ type ] . fn = = NULL ) {
2002-09-25 15:19:00 +00:00
DEBUG ( 0 , ( " Unknown message type %d! \n " , type ) ) ;
2011-05-05 10:41:59 -07:00
smb_dump ( " Unknown " , 1 , ( const char * ) req - > inbuf , size ) ;
2007-07-23 09:36:09 +00:00
reply_unknown_new ( req , type ) ;
2008-01-04 12:56:23 -08:00
return NULL ;
2007-07-21 22:29:55 +00:00
}
2002-09-25 15:19:00 +00:00
2007-07-21 22:29:55 +00:00
flags = smb_messages [ type ] . flags ;
2002-09-25 15:19:00 +00:00
2007-07-21 22:29:55 +00:00
/* In share mode security we must ignore the vuid. */
session_tag = ( lp_security ( ) = = SEC_SHARE )
2007-07-23 09:36:09 +00:00
? UID_FIELD_INVALID : req - > vuid ;
2008-01-04 12:56:23 -08:00
conn = req - > conn ;
2001-01-24 19:04:56 +00:00
2007-07-22 11:38:11 +00:00
DEBUG ( 3 , ( " switch message %s (pid %d) conn 0x%lx \n " , smb_fn_name ( type ) ,
( int ) sys_getpid ( ) , ( unsigned long ) conn ) ) ;
2007-07-21 22:29:55 +00:00
2011-05-05 10:41:59 -07:00
smb_dump ( smb_fn_name ( type ) , 1 , ( const char * ) req - > inbuf , size ) ;
2001-01-24 19:04:56 +00:00
2007-07-21 22:29:55 +00:00
/* Ensure this value is replaced in the incoming packet. */
2011-05-05 10:41:59 -07:00
SSVAL ( discard_const_p ( uint8_t , req - > inbuf ) , smb_uid , session_tag ) ;
2001-01-24 19:04:56 +00:00
2007-07-21 22:29:55 +00:00
/*
* Ensure the correct username is in current_user_info . This is a
* really ugly bugfix for problems with multiple session_setup_and_X ' s
* being done and allowing % U and % G substitutions to work correctly .
* There is a reason this code is done here , don ' t move it unless you
2007-07-22 11:38:11 +00:00
* know what you ' re doing . . . : - ) .
* JRA .
2007-07-21 22:29:55 +00:00
*/
2009-05-26 15:21:16 +02:00
if ( session_tag ! = sconn - > smb1 . sessions . last_session_tag ) {
2007-07-21 22:29:55 +00:00
user_struct * vuser = NULL ;
2009-05-26 15:21:16 +02:00
sconn - > smb1 . sessions . last_session_tag = session_tag ;
2007-07-21 22:29:55 +00:00
if ( session_tag ! = UID_FIELD_INVALID ) {
2009-05-26 16:38:45 +02:00
vuser = get_valid_user_struct ( sconn , session_tag ) ;
2007-07-21 22:29:55 +00:00
if ( vuser ) {
2008-04-30 17:42:39 +02:00
set_current_user_info (
2011-07-15 15:55:31 +10:00
vuser - > session_info - > unix_info - > sanitized_username ,
vuser - > session_info - > unix_info - > unix_name ,
2011-07-18 12:58:25 +10:00
vuser - > session_info - > info - > domain_name ) ;
2005-06-13 20:42:21 +00:00
}
}
2007-07-21 22:29:55 +00:00
}
2009-07-14 11:25:45 -07:00
2007-07-21 22:29:55 +00:00
/* Does this call need to be run as the connected user? */
if ( flags & AS_USER ) {
2001-06-20 03:05:09 +00:00
2007-07-21 22:29:55 +00:00
/* Does this call need a valid tree connection? */
if ( ! conn ) {
2007-07-22 11:38:11 +00:00
/*
* Amazingly , the error code depends on the command
* ( from Samba4 ) .
*/
2007-07-21 22:29:55 +00:00
if ( type = = SMBntcreateX ) {
2007-07-23 09:36:09 +00:00
reply_nterror ( req , NT_STATUS_INVALID_HANDLE ) ;
2007-07-21 22:29:55 +00:00
} else {
2009-12-21 11:05:25 -08:00
reply_nterror ( req , NT_STATUS_NETWORK_NAME_DELETED ) ;
2006-06-20 02:38:28 +00:00
}
2008-01-04 12:56:23 -08:00
return NULL ;
2007-07-21 22:29:55 +00:00
}
2009-07-14 11:25:45 -07:00
2007-07-21 22:29:55 +00:00
if ( ! change_to_user ( conn , session_tag ) ) {
2009-04-22 23:30:55 +00:00
DEBUG ( 0 , ( " Error: Could not change to user. Removing "
2010-04-12 21:40:28 -07:00
" deferred open, mid=%llu. \n " ,
( unsigned long long ) req - > mid ) ) ;
2009-12-21 11:16:38 -08:00
reply_force_doserror ( req , ERRSRV , ERRbaduid ) ;
2008-01-04 12:56:23 -08:00
return conn ;
2007-07-21 22:29:55 +00:00
}
1998-08-17 13:11:34 +00:00
2007-07-21 22:29:55 +00:00
/* All NEED_WRITE and CAN_IPC flags must also have AS_USER. */
2001-01-24 19:04:56 +00:00
2007-07-21 22:29:55 +00:00
/* Does it need write permission? */
if ( ( flags & NEED_WRITE ) & & ! CAN_WRITE ( conn ) ) {
2007-07-23 09:36:09 +00:00
reply_nterror ( req , NT_STATUS_MEDIA_WRITE_PROTECTED ) ;
2008-01-04 12:56:23 -08:00
return conn ;
2006-06-20 02:38:28 +00:00
}
2001-01-24 19:04:56 +00:00
2007-07-21 22:29:55 +00:00
/* IPC services are limited */
if ( IS_IPC ( conn ) & & ! ( flags & CAN_IPC ) ) {
2009-12-21 11:05:25 -08:00
reply_nterror ( req , NT_STATUS_ACCESS_DENIED ) ;
2008-01-04 12:56:23 -08:00
return conn ;
2005-04-14 23:32:56 +00:00
}
2007-07-21 22:29:55 +00:00
} else {
/* This call needs to be run as root */
change_to_root_user ( ) ;
}
2001-01-24 19:04:56 +00:00
2007-07-21 22:29:55 +00:00
/* load service specific parameters */
if ( conn ) {
2008-01-04 12:56:23 -08:00
if ( req - > encrypted ) {
conn - > encrypted_tid = true ;
/* encrypted required from now on. */
conn - > encrypt_level = Required ;
} else if ( ENCRYPTION_REQUIRED ( conn ) ) {
2008-11-02 22:33:20 +01:00
if ( req - > cmd ! = SMBtrans2 & & req - > cmd ! = SMBtranss2 ) {
2008-01-04 12:56:23 -08:00
exit_server_cleanly ( " encryption required "
" on connection " ) ;
return conn ;
}
}
2007-07-23 09:36:09 +00:00
if ( ! set_current_service ( conn , SVAL ( req - > inbuf , smb_flg ) ,
2007-07-22 11:38:11 +00:00
( flags & ( AS_USER | DO_CHDIR )
? True : False ) ) ) {
2009-12-21 11:05:25 -08:00
reply_nterror ( req , NT_STATUS_ACCESS_DENIED ) ;
2008-01-04 12:56:23 -08:00
return conn ;
2007-12-27 23:51:03 -08:00
}
2007-07-21 22:29:55 +00:00
conn - > num_smb_operations + + ;
}
2001-01-24 19:04:56 +00:00
2011-06-16 15:39:25 +02:00
raddr = tsocket_address_inet_addr_string ( sconn - > remote_address ,
talloc_tos ( ) ) ;
if ( raddr = = NULL ) {
reply_nterror ( req , NT_STATUS_NO_MEMORY ) ;
return conn ;
}
2007-07-21 22:29:55 +00:00
/* does this protocol need to be run as guest? */
if ( ( flags & AS_GUEST )
2007-07-22 11:38:11 +00:00
& & ( ! change_to_guest ( ) | |
2010-08-18 16:48:20 +02:00
! allow_access ( lp_hostsdeny ( - 1 ) , lp_hostsallow ( - 1 ) ,
2011-06-16 15:39:25 +02:00
sconn - > remote_hostname ,
raddr ) ) ) {
2009-12-21 11:05:25 -08:00
reply_nterror ( req , NT_STATUS_ACCESS_DENIED ) ;
2008-01-04 12:56:23 -08:00
return conn ;
2007-07-23 09:36:09 +00:00
}
2008-10-19 15:17:12 +02:00
smb_messages [ type ] . fn ( req ) ;
2008-01-04 12:56:23 -08:00
return req - > conn ;
1998-09-05 05:07:05 +00:00
}
/****************************************************************************
2002-09-25 15:19:00 +00:00
Construct a reply to the incoming packet .
1998-09-05 05:07:05 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2002-09-25 15:19:00 +00:00
2010-10-03 18:16:21 +02:00
static void construct_reply ( struct smbd_server_connection * sconn ,
char * inbuf , int size , size_t unread_bytes ,
2009-03-09 09:47:59 +01:00
uint32_t seqnum , bool encrypted ,
2009-02-08 23:10:34 -08:00
struct smb_perfcount_data * deferred_pcd )
1998-09-05 05:07:05 +00:00
{
2008-01-04 12:56:23 -08:00
connection_struct * conn ;
2007-07-23 09:36:09 +00:00
struct smb_request * req ;
1998-09-05 05:07:05 +00:00
2007-08-30 19:48:31 +00:00
if ( ! ( req = talloc ( talloc_tos ( ) , struct smb_request ) ) ) {
2007-07-23 09:36:09 +00:00
smb_panic ( " could not allocate smb_request " ) ;
}
2009-02-08 23:10:34 -08:00
2010-10-03 18:16:21 +02:00
if ( ! init_smb_request ( req , sconn , ( uint8 * ) inbuf , unread_bytes ,
encrypted , seqnum ) ) {
2010-03-11 11:33:01 +01:00
exit_server_cleanly ( " Invalid SMB request " ) ;
}
2008-11-03 21:55:05 +01:00
req - > inbuf = ( uint8_t * ) talloc_move ( req , & inbuf ) ;
1998-09-05 05:07:05 +00:00
2009-02-08 23:10:34 -08:00
/* we popped this message off the queue - keep original perf data */
if ( deferred_pcd )
req - > pcd = * deferred_pcd ;
else {
SMB_PERFCOUNT_START ( & req - > pcd ) ;
SMB_PERFCOUNT_SET_OP ( & req - > pcd , req - > cmd ) ;
SMB_PERFCOUNT_SET_MSGLEN_IN ( & req - > pcd , size ) ;
}
2008-11-02 22:33:20 +01:00
conn = switch_message ( req - > cmd , req , size ) ;
1998-09-05 05:07:05 +00:00
2007-10-30 16:22:24 -07:00
if ( req - > unread_bytes ) {
/* writeX failed. drain socket. */
2010-08-15 11:33:05 +02:00
if ( drain_socket ( req - > sconn - > sock , req - > unread_bytes ) ! =
2007-10-30 16:22:24 -07:00
req - > unread_bytes ) {
smb_panic ( " failed to drain pending bytes " ) ;
}
req - > unread_bytes = 0 ;
}
2009-07-27 14:47:41 +02:00
if ( req - > done ) {
TALLOC_FREE ( req ) ;
return ;
}
2007-08-27 12:04:09 +00:00
if ( req - > outbuf = = NULL ) {
return ;
2007-07-23 09:36:09 +00:00
}
1998-09-05 05:07:05 +00:00
2007-08-27 12:04:09 +00:00
if ( CVAL ( req - > outbuf , 0 ) = = 0 ) {
show_msg ( ( char * ) req - > outbuf ) ;
}
1998-09-05 05:07:05 +00:00
2010-08-24 20:10:20 +02:00
if ( ! srv_send_smb ( req - > sconn ,
2008-01-04 12:56:23 -08:00
( char * ) req - > outbuf ,
2009-03-09 09:47:59 +01:00
true , req - > seqnum + 1 ,
2009-02-08 23:10:34 -08:00
IS_CONN_ENCRYPTED ( conn ) | | req - > encrypted ,
& req - > pcd ) ) {
2008-01-04 12:56:23 -08:00
exit_server_cleanly ( " construct_reply: srv_send_smb failed. " ) ;
2007-04-19 20:50:49 +00:00
}
2007-07-23 09:36:09 +00:00
TALLOC_FREE ( req ) ;
return ;
1998-09-05 05:07:05 +00:00
}
/****************************************************************************
2006-03-19 11:11:37 +00:00
Process an smb from the client
1998-09-05 05:07:05 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-10-03 18:04:05 +02:00
static void process_smb ( struct smbd_server_connection * sconn ,
2009-01-08 15:38:47 +01:00
uint8_t * inbuf , size_t nread , size_t unread_bytes ,
2009-03-09 09:47:59 +01:00
uint32_t seqnum , bool encrypted ,
struct smb_perfcount_data * deferred_pcd )
1998-09-05 05:07:05 +00:00
{
2003-07-16 18:06:27 +00:00
int msg_type = CVAL ( inbuf , 0 ) ;
DO_PROFILE_INC ( smb_count ) ;
2007-07-23 09:36:09 +00:00
DEBUG ( 6 , ( " got message type 0x%x of len 0x%x \n " , msg_type ,
smb_len ( inbuf ) ) ) ;
2010-08-24 20:47:29 +02:00
DEBUG ( 3 , ( " Transaction %d of length %d (%u toread) \n " ,
2010-10-03 18:04:05 +02:00
sconn - > trans_num , ( int ) nread , ( unsigned int ) unread_bytes ) ) ;
2003-07-16 18:06:27 +00:00
2011-07-12 08:55:58 +02:00
if ( msg_type ! = NBSSmessage ) {
2007-07-23 09:36:09 +00:00
/*
* NetBIOS session request , keepalive , etc .
*/
2010-10-03 18:04:05 +02:00
reply_special ( sconn , ( char * ) inbuf , nread ) ;
2009-01-08 15:38:47 +01:00
goto done ;
2007-07-23 09:36:09 +00:00
}
2003-07-16 18:06:27 +00:00
2010-10-03 18:04:05 +02:00
if ( sconn - > using_smb2 ) {
2010-06-09 19:12:02 -07:00
/* At this point we're not really using smb2,
* we make the decision here . . */
2009-05-14 14:17:28 +02:00
if ( smbd_is_smb2_header ( inbuf , nread ) ) {
2010-10-03 18:05:17 +02:00
smbd_smb2_first_negprot ( sconn , inbuf , nread ) ;
2009-05-14 14:17:28 +02:00
return ;
2010-04-27 22:15:17 -07:00
} else if ( nread > = smb_size & & valid_smb_header ( inbuf )
& & CVAL ( inbuf , smb_com ) ! = 0x72 ) {
/* This is a non-negprot SMB1 packet.
Disable SMB2 from now on . */
2010-10-03 18:05:17 +02:00
sconn - > using_smb2 = false ;
2009-05-14 14:17:28 +02:00
}
}
2009-01-08 15:38:47 +01:00
show_msg ( ( char * ) inbuf ) ;
2007-07-23 09:36:09 +00:00
2010-10-03 18:16:21 +02:00
construct_reply ( sconn , ( char * ) inbuf , nread , unread_bytes , seqnum ,
encrypted , deferred_pcd ) ;
2010-10-03 18:04:05 +02:00
sconn - > trans_num + + ;
2009-01-08 15:38:47 +01:00
done :
2011-07-07 14:59:41 -07:00
sconn - > num_requests + + ;
2009-01-08 15:38:47 +01:00
/* The timeout_processing function isn't run nearly
often enough to implement ' max log size ' without
overrunning the size of the file by many megabytes .
This is especially true if we are running at debug
level 10. Checking every 50 SMBs is a nice
tradeoff of performance vs log file size overrun . */
2011-07-07 14:59:41 -07:00
if ( ( sconn - > num_requests % 50 ) = = 0 & &
2009-01-08 15:38:47 +01:00
need_to_check_log_size ( ) ) {
change_to_root_user ( ) ;
check_log_size ( ) ;
}
1998-09-05 05:07:05 +00:00
}
/****************************************************************************
2003-07-16 18:06:27 +00:00
Return a string containing the function name of a SMB command .
1998-09-05 05:07:05 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2003-07-16 18:06:27 +00:00
2002-08-17 15:27:10 +00:00
const char * smb_fn_name ( int type )
1998-09-05 05:07:05 +00:00
{
2003-01-03 08:28:12 +00:00
const char * unknown_name = " SMBunknown " ;
1998-09-05 05:07:05 +00:00
2001-01-24 19:04:56 +00:00
if ( smb_messages [ type ] . name = = NULL )
1998-09-05 05:07:05 +00:00
return ( unknown_name ) ;
2001-01-24 19:04:56 +00:00
return ( smb_messages [ type ] . name ) ;
1998-08-17 13:11:34 +00:00
}
1998-08-20 19:28:37 +00:00
/****************************************************************************
2003-12-01 02:25:56 +00:00
Helper functions for contruct_reply .
1998-08-20 19:28:37 +00:00
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2004-08-19 20:03:41 +00:00
void add_to_common_flags2 ( uint32 v )
{
common_flags2 | = v ;
}
2003-12-01 02:25:56 +00:00
2003-12-01 06:19:17 +00:00
void remove_from_common_flags2 ( uint32 v )
2003-12-01 02:25:56 +00:00
{
2003-12-01 06:19:17 +00:00
common_flags2 & = ~ v ;
2003-12-01 02:25:56 +00:00
}
2008-12-19 18:07:44 +01:00
static void construct_reply_common ( struct smb_request * req , const char * inbuf ,
char * outbuf )
1998-08-20 19:28:37 +00:00
{
2008-01-04 12:56:23 -08:00
srv_set_message ( outbuf , 0 , 0 , false ) ;
2010-01-23 13:33:10 +01:00
2008-12-19 18:07:44 +01:00
SCVAL ( outbuf , smb_com , req - > cmd ) ;
2006-04-11 01:43:13 +00:00
SIVAL ( outbuf , smb_rcls , 0 ) ;
2001-10-17 08:54:19 +00:00
SCVAL ( outbuf , smb_flg , FLAG_REPLY | ( CVAL ( inbuf , smb_flg ) & FLAG_CASELESS_PATHNAMES ) ) ;
SSVAL ( outbuf , smb_flg2 ,
2003-12-01 02:25:56 +00:00
( SVAL ( inbuf , smb_flg2 ) & FLAGS2_UNICODE_STRINGS ) |
common_flags2 ) ;
2006-04-11 01:43:13 +00:00
memset ( outbuf + smb_pidhigh , ' \0 ' , ( smb_tid - smb_pidhigh ) ) ;
2001-10-17 08:54:19 +00:00
SSVAL ( outbuf , smb_tid , SVAL ( inbuf , smb_tid ) ) ;
SSVAL ( outbuf , smb_pid , SVAL ( inbuf , smb_pid ) ) ;
SSVAL ( outbuf , smb_uid , SVAL ( inbuf , smb_uid ) ) ;
SSVAL ( outbuf , smb_mid , SVAL ( inbuf , smb_mid ) ) ;
1998-08-20 19:28:37 +00:00
}
1998-08-17 13:11:34 +00:00
2008-11-03 20:16:09 +01:00
void construct_reply_common_req ( struct smb_request * req , char * outbuf )
{
2011-05-05 10:41:59 -07:00
construct_reply_common ( req , ( const char * ) req - > inbuf , outbuf ) ;
2008-11-03 20:16:09 +01:00
}
2008-11-21 23:17:31 +01:00
/*
* How many bytes have we already accumulated up to the current wct field
* offset ?
*/
size_t req_wct_ofs ( struct smb_request * req )
{
size_t buf_size ;
if ( req - > chain_outbuf = = NULL ) {
return smb_wct - 4 ;
}
buf_size = talloc_get_size ( req - > chain_outbuf ) ;
if ( ( buf_size % 4 ) ! = 0 ) {
buf_size + = ( 4 - ( buf_size % 4 ) ) ;
}
return buf_size - 4 ;
}
2008-11-10 10:01:26 +01:00
/*
* Hack around reply_nterror & friends not being aware of chained requests ,
* generating illegal ( i . e . wct = = 0 ) chain replies .
*/
static void fixup_chain_error_packet ( struct smb_request * req )
{
uint8_t * outbuf = req - > outbuf ;
req - > outbuf = NULL ;
reply_outbuf ( req , 2 , 0 ) ;
memcpy ( req - > outbuf , outbuf , smb_wct ) ;
TALLOC_FREE ( outbuf ) ;
SCVAL ( req - > outbuf , smb_vwv0 , 0xff ) ;
}
2009-12-22 13:53:13 +01:00
/**
* @ brief Find the smb_cmd offset of the last command pushed
* @ param [ in ] buf The buffer we ' re building up
* @ retval Where can we put our next andx cmd ?
*
* While chaining requests , the " next " request we ' re looking at needs to put
* its SMB_Command before the data the previous request already built up added
* to the chain . Find the offset to the place where we have to put our cmd .
*/
static bool find_andx_cmd_ofs ( uint8_t * buf , size_t * pofs )
{
uint8_t cmd ;
size_t ofs ;
cmd = CVAL ( buf , smb_com ) ;
SMB_ASSERT ( is_andx_req ( cmd ) ) ;
ofs = smb_vwv0 ;
while ( CVAL ( buf , ofs ) ! = 0xff ) {
if ( ! is_andx_req ( CVAL ( buf , ofs ) ) ) {
return false ;
}
/*
* ofs is from start of smb header , so add the 4 length
* bytes . The next cmd is right after the wct field .
*/
ofs = SVAL ( buf , ofs + 2 ) + 4 + 1 ;
SMB_ASSERT ( ofs + 4 < talloc_get_size ( buf ) ) ;
}
* pofs = ofs ;
return true ;
}
/**
* @ brief Do the smb chaining at a buffer level
* @ param [ in ] poutbuf Pointer to the talloc ' ed buffer to be modified
* @ param [ in ] smb_command The command that we want to issue
* @ param [ in ] wct How many words ?
* @ param [ in ] vwv The words , already in network order
* @ param [ in ] bytes_alignment How shall we align " bytes " ?
* @ param [ in ] num_bytes How many bytes ?
* @ param [ in ] bytes The data the request ships
*
* smb_splice_chain ( ) adds the vwv and bytes to the request already present in
* * poutbuf .
*/
static bool smb_splice_chain ( uint8_t * * poutbuf , uint8_t smb_command ,
uint8_t wct , const uint16_t * vwv ,
size_t bytes_alignment ,
uint32_t num_bytes , const uint8_t * bytes )
{
uint8_t * outbuf ;
size_t old_size , new_size ;
size_t ofs ;
size_t chain_padding = 0 ;
size_t bytes_padding = 0 ;
bool first_request ;
old_size = talloc_get_size ( * poutbuf ) ;
/*
* old_size = = smb_wct means we ' re pushing the first request in for
* libsmb /
*/
first_request = ( old_size = = smb_wct ) ;
if ( ! first_request & & ( ( old_size % 4 ) ! = 0 ) ) {
/*
* Align the wct field of subsequent requests to a 4 - byte
* boundary
*/
chain_padding = 4 - ( old_size % 4 ) ;
}
/*
* After the old request comes the new wct field ( 1 byte ) , the vwv ' s
* and the num_bytes field . After at we might need to align the bytes
* given to us to " bytes_alignment " , increasing the num_bytes value .
*/
new_size = old_size + chain_padding + 1 + wct * sizeof ( uint16_t ) + 2 ;
if ( ( bytes_alignment ! = 0 ) & & ( ( new_size % bytes_alignment ) ! = 0 ) ) {
bytes_padding = bytes_alignment - ( new_size % bytes_alignment ) ;
}
new_size + = bytes_padding + num_bytes ;
if ( ( smb_command ! = SMBwriteX ) & & ( new_size > 0xffff ) ) {
DEBUG ( 1 , ( " splice_chain: %u bytes won't fit \n " ,
( unsigned ) new_size ) ) ;
return false ;
}
2011-06-07 11:10:15 +10:00
outbuf = talloc_realloc ( NULL , * poutbuf , uint8_t , new_size ) ;
2009-12-22 13:53:13 +01:00
if ( outbuf = = NULL ) {
DEBUG ( 0 , ( " talloc failed \n " ) ) ;
return false ;
}
* poutbuf = outbuf ;
if ( first_request ) {
SCVAL ( outbuf , smb_com , smb_command ) ;
} else {
size_t andx_cmd_ofs ;
if ( ! find_andx_cmd_ofs ( outbuf , & andx_cmd_ofs ) ) {
DEBUG ( 1 , ( " invalid command chain \n " ) ) ;
2011-06-07 11:10:15 +10:00
* poutbuf = talloc_realloc (
2009-12-22 13:53:13 +01:00
NULL , * poutbuf , uint8_t , old_size ) ;
return false ;
}
if ( chain_padding ! = 0 ) {
memset ( outbuf + old_size , 0 , chain_padding ) ;
old_size + = chain_padding ;
}
SCVAL ( outbuf , andx_cmd_ofs , smb_command ) ;
SSVAL ( outbuf , andx_cmd_ofs + 2 , old_size - 4 ) ;
}
ofs = old_size ;
/*
* Push the chained request :
*
* wct field
*/
SCVAL ( outbuf , ofs , wct ) ;
ofs + = 1 ;
/*
* vwv array
*/
memcpy ( outbuf + ofs , vwv , sizeof ( uint16_t ) * wct ) ;
ofs + = sizeof ( uint16_t ) * wct ;
/*
* bcc ( byte count )
*/
SSVAL ( outbuf , ofs , num_bytes + bytes_padding ) ;
ofs + = sizeof ( uint16_t ) ;
/*
* padding
*/
if ( bytes_padding ! = 0 ) {
memset ( outbuf + ofs , 0 , bytes_padding ) ;
ofs + = bytes_padding ;
}
/*
* The bytes field
*/
memcpy ( outbuf + ofs , bytes , num_bytes ) ;
return true ;
}
2009-01-16 11:26:05 +01:00
/****************************************************************************
Construct a chained reply and add it to the already made reply
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2008-11-10 10:01:26 +01:00
void chain_reply ( struct smb_request * req )
{
size_t smblen = smb_len ( req - > inbuf ) ;
size_t already_used , length_needed ;
uint8_t chain_cmd ;
uint32_t chain_offset ; /* uint32_t to avoid overflow */
uint8_t wct ;
2011-05-05 10:41:59 -07:00
const uint16_t * vwv ;
2008-11-10 10:01:26 +01:00
uint16_t buflen ;
2011-05-05 10:41:59 -07:00
const uint8_t * buf ;
2008-11-10 10:01:26 +01:00
if ( IVAL ( req - > outbuf , smb_rcls ) ! = 0 ) {
fixup_chain_error_packet ( req ) ;
}
/*
* Any of the AndX requests and replies have at least a wct of
* 2. vwv [ 0 ] is the next command , vwv [ 1 ] is the offset from the
* beginning of the SMB header to the next wct field .
*
* None of the AndX requests put anything valuable in vwv [ 0 ] and [ 1 ] ,
* so we can overwrite it here to form the chain .
*/
if ( ( req - > wct < 2 ) | | ( CVAL ( req - > outbuf , smb_wct ) < 2 ) ) {
2010-03-09 11:14:14 +01:00
if ( req - > chain_outbuf = = NULL ) {
2011-06-07 11:10:15 +10:00
req - > chain_outbuf = talloc_realloc (
2010-03-09 11:14:14 +01:00
req , req - > outbuf , uint8_t ,
smb_len ( req - > outbuf ) + 4 ) ;
if ( req - > chain_outbuf = = NULL ) {
smb_panic ( " talloc failed " ) ;
}
}
req - > outbuf = NULL ;
2008-11-10 10:01:26 +01:00
goto error ;
}
/*
* Here we assume that this is the end of the chain . For that we need
* to set " next command " to 0xff and the offset to 0. If we later find
* more commands in the chain , this will be overwritten again .
*/
SCVAL ( req - > outbuf , smb_vwv0 , 0xff ) ;
SCVAL ( req - > outbuf , smb_vwv0 + 1 , 0 ) ;
SSVAL ( req - > outbuf , smb_vwv1 , 0 ) ;
if ( req - > chain_outbuf = = NULL ) {
/*
* In req - > chain_outbuf we collect all the replies . Start the
* chain by copying in the first reply .
2009-01-25 12:22:20 +01:00
*
* We do the realloc because later on we depend on
* talloc_get_size to determine the length of
* chain_outbuf . The reply_xxx routines might have
* over - allocated ( reply_pipe_read_and_X used to be such an
* example ) .
2008-11-10 10:01:26 +01:00
*/
2011-06-07 11:10:15 +10:00
req - > chain_outbuf = talloc_realloc (
2009-01-25 12:22:20 +01:00
req , req - > outbuf , uint8_t , smb_len ( req - > outbuf ) + 4 ) ;
if ( req - > chain_outbuf = = NULL ) {
2010-03-09 11:14:14 +01:00
smb_panic ( " talloc failed " ) ;
2009-01-25 12:22:20 +01:00
}
2008-11-10 10:01:26 +01:00
req - > outbuf = NULL ;
} else {
2009-03-25 00:24:55 +00:00
/*
* Update smb headers where subsequent chained commands
* may have updated them .
*/
2011-01-14 16:43:00 +01:00
SSVAL ( req - > chain_outbuf , smb_tid , SVAL ( req - > outbuf , smb_tid ) ) ;
SSVAL ( req - > chain_outbuf , smb_uid , SVAL ( req - > outbuf , smb_uid ) ) ;
2009-03-25 00:24:55 +00:00
2008-11-10 10:01:26 +01:00
if ( ! smb_splice_chain ( & req - > chain_outbuf ,
CVAL ( req - > outbuf , smb_com ) ,
CVAL ( req - > outbuf , smb_wct ) ,
( uint16_t * ) ( req - > outbuf + smb_vwv ) ,
0 , smb_buflen ( req - > outbuf ) ,
( uint8_t * ) smb_buf ( req - > outbuf ) ) ) {
goto error ;
}
TALLOC_FREE ( req - > outbuf ) ;
}
/*
* We use the old request ' s vwv field to grab the next chained command
* and offset into the chained fields .
*/
chain_cmd = CVAL ( req - > vwv + 0 , 0 ) ;
chain_offset = SVAL ( req - > vwv + 1 , 0 ) ;
if ( chain_cmd = = 0xff ) {
/*
* End of chain , no more requests from the client . So ship the
* replies .
*/
smb_setlen ( ( char * ) ( req - > chain_outbuf ) ,
talloc_get_size ( req - > chain_outbuf ) - 4 ) ;
2009-02-08 23:10:34 -08:00
2010-08-24 20:10:20 +02:00
if ( ! srv_send_smb ( req - > sconn , ( char * ) req - > chain_outbuf ,
2009-03-09 09:47:59 +01:00
true , req - > seqnum + 1 ,
2008-11-10 10:01:26 +01:00
IS_CONN_ENCRYPTED ( req - > conn )
2009-02-08 23:10:34 -08:00
| | req - > encrypted ,
& req - > pcd ) ) {
2008-11-10 10:01:26 +01:00
exit_server_cleanly ( " chain_reply: srv_send_smb "
" failed. " ) ;
}
2009-07-27 14:47:41 +02:00
TALLOC_FREE ( req - > chain_outbuf ) ;
req - > done = true ;
2008-11-10 10:01:26 +01:00
return ;
}
2009-02-08 23:10:34 -08:00
/* add a new perfcounter for this element of chain */
SMB_PERFCOUNT_ADD ( & req - > pcd ) ;
SMB_PERFCOUNT_SET_OP ( & req - > pcd , chain_cmd ) ;
SMB_PERFCOUNT_SET_MSGLEN_IN ( & req - > pcd , smblen ) ;
2008-11-10 10:01:26 +01:00
/*
* Check if the client tries to fool us . The request so far uses the
* space to the end of the byte buffer in the request just
* processed . The chain_offset can ' t point into that area . If that was
* the case , we could end up with an endless processing of the chain ,
* we would always handle the same request .
*/
already_used = PTR_DIFF ( req - > buf + req - > buflen , smb_base ( req - > inbuf ) ) ;
if ( chain_offset < already_used ) {
goto error ;
}
/*
* Next check : Make sure the chain offset does not point beyond the
* overall smb request length .
*/
length_needed = chain_offset + 1 ; /* wct */
if ( length_needed > smblen ) {
goto error ;
}
/*
* Now comes the pointer magic . Goal here is to set up req - > vwv and
* req - > buf correctly again to be able to call the subsequent
* switch_message ( ) . The chain offset ( the former vwv [ 1 ] ) points at
* the new wct field .
*/
wct = CVAL ( smb_base ( req - > inbuf ) , chain_offset ) ;
/*
* Next consistency check : Make the new vwv array fits in the overall
* smb request .
*/
length_needed + = ( wct + 1 ) * sizeof ( uint16_t ) ; /* vwv+buflen */
if ( length_needed > smblen ) {
goto error ;
}
2011-05-05 10:41:59 -07:00
vwv = ( const uint16_t * ) ( smb_base ( req - > inbuf ) + chain_offset + 1 ) ;
2008-11-10 10:01:26 +01:00
/*
* Now grab the new byte buffer . . . .
*/
buflen = SVAL ( vwv + wct , 0 ) ;
/*
* . . and check that it fits .
*/
length_needed + = buflen ;
if ( length_needed > smblen ) {
goto error ;
}
2011-05-05 10:41:59 -07:00
buf = ( const uint8_t * ) ( vwv + wct + 1 ) ;
2008-11-10 10:01:26 +01:00
req - > cmd = chain_cmd ;
req - > wct = wct ;
2011-05-05 10:41:59 -07:00
req - > vwv = discard_const_p ( uint16_t , vwv ) ;
2008-11-10 10:01:26 +01:00
req - > buflen = buflen ;
req - > buf = buf ;
switch_message ( chain_cmd , req , smblen ) ;
if ( req - > outbuf = = NULL ) {
/*
* This happens if the chained command has suspended itself or
* if it has called srv_send_smb ( ) itself .
*/
return ;
}
/*
* We end up here if the chained command was not itself chained or
* suspended , but for example a close ( ) command . We now need to splice
* the chained commands ' outbuf into the already built up chain_outbuf
* and ship the result .
*/
goto done ;
error :
/*
* We end up here if there ' s any error in the chain syntax . Report a
* DOS error , just like Windows does .
*/
2009-12-21 11:16:38 -08:00
reply_force_doserror ( req , ERRSRV , ERRerror ) ;
2008-11-10 10:01:26 +01:00
fixup_chain_error_packet ( req ) ;
done :
2009-07-19 14:52:07 -04:00
/*
* This scary statement intends to set the
* FLAGS2_32_BIT_ERROR_CODES flg2 field in req - > chain_outbuf
* to the value req - > outbuf carries
*/
SSVAL ( req - > chain_outbuf , smb_flg2 ,
( SVAL ( req - > chain_outbuf , smb_flg2 ) & ~ FLAGS2_32_BIT_ERROR_CODES )
| ( SVAL ( req - > outbuf , smb_flg2 ) & FLAGS2_32_BIT_ERROR_CODES ) ) ;
/*
* Transfer the error codes from the subrequest to the main one
*/
SSVAL ( req - > chain_outbuf , smb_rcls , SVAL ( req - > outbuf , smb_rcls ) ) ;
SSVAL ( req - > chain_outbuf , smb_err , SVAL ( req - > outbuf , smb_err ) ) ;
2008-11-10 10:01:26 +01:00
if ( ! smb_splice_chain ( & req - > chain_outbuf ,
CVAL ( req - > outbuf , smb_com ) ,
CVAL ( req - > outbuf , smb_wct ) ,
( uint16_t * ) ( req - > outbuf + smb_vwv ) ,
0 , smb_buflen ( req - > outbuf ) ,
( uint8_t * ) smb_buf ( req - > outbuf ) ) ) {
exit_server_cleanly ( " chain_reply: smb_splice_chain failed \n " ) ;
}
TALLOC_FREE ( req - > outbuf ) ;
smb_setlen ( ( char * ) ( req - > chain_outbuf ) ,
talloc_get_size ( req - > chain_outbuf ) - 4 ) ;
show_msg ( ( char * ) ( req - > chain_outbuf ) ) ;
2010-08-24 20:10:20 +02:00
if ( ! srv_send_smb ( req - > sconn , ( char * ) req - > chain_outbuf ,
2009-03-09 09:47:59 +01:00
true , req - > seqnum + 1 ,
2009-02-08 23:10:34 -08:00
IS_CONN_ENCRYPTED ( req - > conn ) | | req - > encrypted ,
& req - > pcd ) ) {
2010-08-13 22:51:29 +02:00
exit_server_cleanly ( " chain_reply: srv_send_smb failed. " ) ;
2008-11-10 10:01:26 +01:00
}
2009-07-27 14:47:41 +02:00
TALLOC_FREE ( req - > chain_outbuf ) ;
req - > done = true ;
2008-11-10 10:01:26 +01:00
}
1999-12-13 13:27:58 +00:00
/****************************************************************************
Check if services need reloading .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-08-28 16:57:51 +02:00
static void check_reload ( struct smbd_server_connection * sconn , time_t t )
1999-12-13 13:27:58 +00:00
{
2010-12-23 12:14:21 +01:00
if ( last_smb_conf_reload_time = = 0 ) {
2003-07-16 18:06:27 +00:00
last_smb_conf_reload_time = t ;
2005-06-27 22:44:57 +00:00
}
2009-01-21 23:24:18 +01:00
if ( t > = last_smb_conf_reload_time + SMBD_RELOAD_CHECK ) {
2010-08-28 16:57:51 +02:00
reload_services ( sconn - > msg_ctx , sconn - > sock , True ) ;
2003-07-16 18:06:27 +00:00
last_smb_conf_reload_time = t ;
}
1999-12-13 13:27:58 +00:00
}
1998-08-17 13:11:34 +00:00
2010-03-18 12:50:22 +01:00
static bool fd_is_readable ( int fd )
{
2011-02-07 17:02:44 +01:00
int ret , revents ;
2010-03-18 12:50:22 +01:00
2011-02-07 17:02:44 +01:00
ret = poll_one_fd ( fd , POLLIN | POLLHUP , 0 , & revents ) ;
return ( ( ret > 0 ) & & ( ( revents & ( POLLIN | POLLHUP | POLLERR ) ) ! = 0 ) ) ;
2010-03-18 12:50:22 +01:00
}
2011-05-17 17:23:26 +02:00
static void smbd_server_connection_write_handler (
struct smbd_server_connection * sconn )
2009-01-08 15:38:47 +01:00
{
/* TODO: make write nonblocking */
}
2010-03-18 12:50:22 +01:00
static void smbd_server_connection_read_handler (
2011-05-17 17:23:26 +02:00
struct smbd_server_connection * sconn , int fd )
2009-01-08 15:38:47 +01:00
{
uint8_t * inbuf = NULL ;
size_t inbuf_len = 0 ;
size_t unread_bytes = 0 ;
bool encrypted = false ;
TALLOC_CTX * mem_ctx = talloc_tos ( ) ;
NTSTATUS status ;
2009-03-09 09:47:59 +01:00
uint32_t seqnum ;
2009-01-08 15:38:47 +01:00
2011-05-17 17:23:26 +02:00
bool from_client = ( sconn - > sock = = fd ) ;
2010-03-18 09:23:48 +01:00
2010-03-18 12:50:22 +01:00
if ( from_client ) {
2011-05-17 17:23:26 +02:00
smbd_lock_socket ( sconn ) ;
2010-03-18 12:50:22 +01:00
2011-07-28 14:24:40 +02:00
if ( lp_async_smb_echo_handler ( ) ) {
if ( fd_is_readable ( sconn - > smb1 . echo_handler . trusted_fd ) ) {
/*
* This is the super - ugly hack to
* prefer the packets forwarded by the
* echo handler over the ones by the
* client directly
*/
fd = sconn - > smb1 . echo_handler . trusted_fd ;
} else if ( ! fd_is_readable ( fd ) ) {
DEBUG ( 10 , ( " the echo listener was faster \n " ) ) ;
smbd_unlock_socket ( sconn ) ;
return ;
}
2010-03-18 12:50:22 +01:00
}
/* TODO: make this completely nonblocking */
2011-05-17 17:23:26 +02:00
status = receive_smb_talloc ( mem_ctx , sconn , fd ,
2010-03-18 12:50:22 +01:00
( char * * ) ( void * ) & inbuf ,
0 , /* timeout */
& unread_bytes ,
& encrypted ,
& inbuf_len , & seqnum ,
false /* trusted channel */ ) ;
2011-05-17 17:23:26 +02:00
smbd_unlock_socket ( sconn ) ;
2010-03-18 12:50:22 +01:00
} else {
/* TODO: make this completely nonblocking */
2011-05-17 17:23:26 +02:00
status = receive_smb_talloc ( mem_ctx , sconn , fd ,
2010-03-18 12:50:22 +01:00
( char * * ) ( void * ) & inbuf ,
0 , /* timeout */
& unread_bytes ,
& encrypted ,
& inbuf_len , & seqnum ,
true /* trusted channel */ ) ;
2010-03-18 09:23:48 +01:00
}
2009-01-08 15:38:47 +01:00
if ( NT_STATUS_EQUAL ( status , NT_STATUS_RETRY ) ) {
goto process ;
}
if ( NT_STATUS_IS_ERR ( status ) ) {
exit_server_cleanly ( " failed to receive smb request " ) ;
}
if ( ! NT_STATUS_IS_OK ( status ) ) {
return ;
}
process :
2011-05-17 17:23:26 +02:00
process_smb ( sconn , inbuf , inbuf_len , unread_bytes ,
2009-03-09 09:47:59 +01:00
seqnum , encrypted , NULL ) ;
2009-01-08 15:38:47 +01:00
}
static void smbd_server_connection_handler ( struct event_context * ev ,
struct fd_event * fde ,
uint16_t flags ,
void * private_data )
{
struct smbd_server_connection * conn = talloc_get_type ( private_data ,
struct smbd_server_connection ) ;
if ( flags & EVENT_FD_WRITE ) {
smbd_server_connection_write_handler ( conn ) ;
2010-08-12 12:48:30 +02:00
return ;
}
if ( flags & EVENT_FD_READ ) {
2010-08-15 11:35:23 +02:00
smbd_server_connection_read_handler ( conn , conn - > sock ) ;
2010-08-12 12:48:30 +02:00
return ;
2009-01-08 15:38:47 +01:00
}
}
2010-03-18 12:50:22 +01:00
static void smbd_server_echo_handler ( struct event_context * ev ,
struct fd_event * fde ,
uint16_t flags ,
void * private_data )
{
struct smbd_server_connection * conn = talloc_get_type ( private_data ,
struct smbd_server_connection ) ;
if ( flags & EVENT_FD_WRITE ) {
smbd_server_connection_write_handler ( conn ) ;
2010-08-12 12:48:43 +02:00
return ;
}
if ( flags & EVENT_FD_READ ) {
2010-03-18 12:50:22 +01:00
smbd_server_connection_read_handler (
conn , conn - > smb1 . echo_handler . trusted_fd ) ;
2010-08-12 12:48:43 +02:00
return ;
2010-03-18 12:50:22 +01:00
}
}
2009-01-22 12:36:42 +01:00
2011-06-01 14:49:43 -07:00
# ifdef CLUSTER_SUPPORT
2009-01-22 12:36:42 +01:00
/****************************************************************************
received when we should release a specific IP
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
static void release_ip ( const char * ip , void * priv )
{
2010-08-28 17:09:56 +02:00
const char * addr = ( const char * ) priv ;
const char * p = addr ;
2009-05-08 01:11:43 +02:00
if ( strncmp ( " ::ffff: " , addr , 7 ) = = 0 ) {
p = addr + 7 ;
}
2011-05-19 18:13:40 +02:00
DEBUG ( 10 , ( " Got release IP message for %s, "
" our address is %s \n " , ip , p ) ) ;
2009-05-08 15:13:21 +02:00
if ( ( strcmp ( p , ip ) = = 0 ) | | ( ( p ! = addr ) & & strcmp ( addr , ip ) = = 0 ) ) {
2009-01-22 12:36:42 +01:00
/* we can't afford to do a clean exit - that involves
database writes , which would potentially mean we
are still running after the failover has finished -
we have to get rid of this process ID straight
away */
DEBUG ( 0 , ( " Got release IP message for our IP %s - exiting immediately \n " ,
ip ) ) ;
/* note we must exit with non-zero status so the unclean handler gets
called in the parent , so that the brl database is tickled */
_exit ( 1 ) ;
}
}
2010-09-27 02:15:18 +02:00
static int client_get_tcp_info ( int sock , struct sockaddr_storage * server ,
2009-01-22 12:36:42 +01:00
struct sockaddr_storage * client )
{
socklen_t length ;
length = sizeof ( * server ) ;
2010-09-27 02:15:18 +02:00
if ( getsockname ( sock , ( struct sockaddr * ) server , & length ) ! = 0 ) {
2009-01-22 12:36:42 +01:00
return - 1 ;
}
length = sizeof ( * client ) ;
2010-09-27 02:15:18 +02:00
if ( getpeername ( sock , ( struct sockaddr * ) client , & length ) ! = 0 ) {
2009-01-22 12:36:42 +01:00
return - 1 ;
}
return 0 ;
}
# endif
/*
* Send keepalive packets to our client
*/
static bool keepalive_fn ( const struct timeval * now , void * private_data )
{
2010-06-09 17:08:41 -07:00
struct smbd_server_connection * sconn = smbd_server_conn ;
2010-03-19 12:02:27 +01:00
bool ret ;
2010-06-09 19:12:02 -07:00
if ( sconn - > using_smb2 ) {
2010-06-09 17:08:41 -07:00
/* Don't do keepalives on an SMB2 connection. */
return false ;
}
2010-03-31 17:40:30 -07:00
smbd_lock_socket ( smbd_server_conn ) ;
2010-08-15 11:36:27 +02:00
ret = send_keepalive ( sconn - > sock ) ;
2010-03-31 17:40:30 -07:00
smbd_unlock_socket ( smbd_server_conn ) ;
2010-03-19 12:02:27 +01:00
if ( ! ret ) {
2010-08-15 16:02:37 +02:00
char addr [ INET6_ADDRSTRLEN ] ;
/*
* Try and give an error message saying what
* client failed .
*/
DEBUG ( 0 , ( " send_keepalive failed for client %s. "
" Error %s - exiting \n " ,
get_peer_addr ( sconn - > sock , addr , sizeof ( addr ) ) ,
strerror ( errno ) ) ) ;
2009-01-22 12:36:42 +01:00
return False ;
}
return True ;
}
/*
* Do the recurring check if we ' re idle
*/
static bool deadtime_fn ( const struct timeval * now , void * private_data )
{
2010-08-07 13:23:07 +02:00
struct smbd_server_connection * sconn =
( struct smbd_server_connection * ) private_data ;
2010-03-31 04:54:41 +02:00
2009-05-27 11:15:44 +02:00
if ( ( conn_num_open ( sconn ) = = 0 )
| | ( conn_idle_all ( sconn , now - > tv_sec ) ) ) {
2010-10-19 11:11:56 -07:00
DEBUG ( 2 , ( " Closing idle connection \n " ) ) ;
2010-08-31 23:16:50 +02:00
messaging_send ( sconn - > msg_ctx ,
messaging_server_id ( sconn - > msg_ctx ) ,
2009-01-22 12:36:42 +01:00
MSG_SHUTDOWN , & data_blob_null ) ;
return False ;
}
return True ;
}
/*
* Do the recurring log file and smb . conf reload checks .
*/
static bool housekeeping_fn ( const struct timeval * now , void * private_data )
{
2010-08-28 16:56:47 +02:00
struct smbd_server_connection * sconn = talloc_get_type_abort (
private_data , struct smbd_server_connection ) ;
2010-12-23 12:14:21 +01:00
DEBUG ( 5 , ( " housekeeping \n " ) ) ;
2009-01-22 12:36:42 +01:00
change_to_root_user ( ) ;
/* update printer queue caches if necessary */
2010-08-28 16:56:47 +02:00
update_monitored_printq_cache ( sconn - > msg_ctx ) ;
2009-01-22 12:36:42 +01:00
/* check if we need to reload services */
2010-12-23 12:14:21 +01:00
check_reload ( sconn , time_mono ( NULL ) ) ;
2009-01-22 12:36:42 +01:00
/* Change machine password if neccessary. */
attempt_machine_password_change ( ) ;
/*
* Force a log file check .
*/
force_check_log_size ( ) ;
check_log_size ( ) ;
return true ;
}
2010-03-18 12:50:22 +01:00
static int create_unlink_tmp ( const char * dir )
{
char * fname ;
int fd ;
fname = talloc_asprintf ( talloc_tos ( ) , " %s/listenerlock_XXXXXX " , dir ) ;
if ( fname = = NULL ) {
errno = ENOMEM ;
return - 1 ;
}
fd = mkstemp ( fname ) ;
if ( fd = = - 1 ) {
TALLOC_FREE ( fname ) ;
return - 1 ;
}
if ( unlink ( fname ) = = - 1 ) {
int sys_errno = errno ;
close ( fd ) ;
TALLOC_FREE ( fname ) ;
errno = sys_errno ;
return - 1 ;
}
TALLOC_FREE ( fname ) ;
return fd ;
}
2011-07-26 15:07:22 +02:00
/*
* Read an smb packet in the echo handler child , giving the parent
* smbd one second to react once the socket becomes readable .
*/
struct smbd_echo_read_state {
struct tevent_context * ev ;
struct smbd_server_connection * sconn ;
char * buf ;
size_t buflen ;
uint32_t seqnum ;
} ;
static void smbd_echo_read_readable ( struct tevent_req * subreq ) ;
static void smbd_echo_read_waited ( struct tevent_req * subreq ) ;
static struct tevent_req * smbd_echo_read_send (
TALLOC_CTX * mem_ctx , struct tevent_context * ev ,
struct smbd_server_connection * sconn )
{
struct tevent_req * req , * subreq ;
struct smbd_echo_read_state * state ;
req = tevent_req_create ( mem_ctx , & state ,
struct smbd_echo_read_state ) ;
if ( req = = NULL ) {
return NULL ;
}
state - > ev = ev ;
state - > sconn = sconn ;
subreq = wait_for_read_send ( state , ev , sconn - > sock ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return tevent_req_post ( req , ev ) ;
}
tevent_req_set_callback ( subreq , smbd_echo_read_readable , req ) ;
return req ;
}
static void smbd_echo_read_readable ( struct tevent_req * subreq )
{
struct tevent_req * req = tevent_req_callback_data (
subreq , struct tevent_req ) ;
struct smbd_echo_read_state * state = tevent_req_data (
req , struct smbd_echo_read_state ) ;
bool ok ;
int err ;
ok = wait_for_read_recv ( subreq , & err ) ;
TALLOC_FREE ( subreq ) ;
if ( ! ok ) {
tevent_req_nterror ( req , map_nt_error_from_unix ( err ) ) ;
return ;
}
/*
* Give the parent smbd one second to step in
*/
subreq = tevent_wakeup_send (
state , state - > ev , timeval_current_ofs ( 1 , 0 ) ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return ;
}
tevent_req_set_callback ( subreq , smbd_echo_read_waited , req ) ;
}
static void smbd_echo_read_waited ( struct tevent_req * subreq )
{
struct tevent_req * req = tevent_req_callback_data (
subreq , struct tevent_req ) ;
struct smbd_echo_read_state * state = tevent_req_data (
req , struct smbd_echo_read_state ) ;
struct smbd_server_connection * sconn = state - > sconn ;
bool ok ;
NTSTATUS status ;
size_t unread = 0 ;
bool encrypted ;
ok = tevent_wakeup_recv ( subreq ) ;
TALLOC_FREE ( subreq ) ;
if ( ! ok ) {
tevent_req_nterror ( req , NT_STATUS_INTERNAL_ERROR ) ;
return ;
}
ok = smbd_lock_socket_internal ( sconn ) ;
if ( ! ok ) {
tevent_req_nterror ( req , map_nt_error_from_unix ( errno ) ) ;
DEBUG ( 0 , ( " %s: failed to lock socket \n " , __location__ ) ) ;
return ;
}
if ( ! fd_is_readable ( sconn - > sock ) ) {
DEBUG ( 10 , ( " echo_handler[%d] the parent smbd was faster \n " ,
( int ) sys_getpid ( ) ) ) ;
ok = smbd_unlock_socket_internal ( sconn ) ;
if ( ! ok ) {
tevent_req_nterror ( req , map_nt_error_from_unix ( errno ) ) ;
DEBUG ( 1 , ( " %s: failed to unlock socket \n " ,
__location__ ) ) ;
return ;
}
subreq = wait_for_read_send ( state , state - > ev , sconn - > sock ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return ;
}
tevent_req_set_callback ( subreq , smbd_echo_read_readable , req ) ;
return ;
}
status = receive_smb_talloc ( state , sconn , sconn - > sock , & state - > buf ,
0 /* timeout */ ,
& unread ,
& encrypted ,
& state - > buflen ,
& state - > seqnum ,
false /* trusted_channel*/ ) ;
if ( tevent_req_nterror ( req , status ) ) {
tevent_req_nterror ( req , status ) ;
DEBUG ( 1 , ( " echo_handler[%d]: receive_smb_raw_talloc failed: %s \n " ,
( int ) sys_getpid ( ) , nt_errstr ( status ) ) ) ;
return ;
}
ok = smbd_unlock_socket_internal ( sconn ) ;
if ( ! ok ) {
tevent_req_nterror ( req , map_nt_error_from_unix ( errno ) ) ;
DEBUG ( 1 , ( " %s: failed to unlock socket \n " , __location__ ) ) ;
return ;
}
tevent_req_done ( req ) ;
}
static NTSTATUS smbd_echo_read_recv ( struct tevent_req * req , TALLOC_CTX * mem_ctx ,
char * * pbuf , size_t * pbuflen , uint32_t * pseqnum )
{
struct smbd_echo_read_state * state = tevent_req_data (
req , struct smbd_echo_read_state ) ;
NTSTATUS status ;
if ( tevent_req_is_nterror ( req , & status ) ) {
return status ;
}
* pbuf = talloc_move ( mem_ctx , & state - > buf ) ;
* pbuflen = state - > buflen ;
* pseqnum = state - > seqnum ;
return NT_STATUS_OK ;
}
2010-03-18 12:50:22 +01:00
struct smbd_echo_state {
struct tevent_context * ev ;
struct iovec * pending ;
struct smbd_server_connection * sconn ;
int parent_pipe ;
struct tevent_fd * parent_fde ;
struct tevent_req * write_req ;
} ;
static void smbd_echo_writer_done ( struct tevent_req * req ) ;
static void smbd_echo_activate_writer ( struct smbd_echo_state * state )
{
int num_pending ;
if ( state - > write_req ! = NULL ) {
return ;
}
num_pending = talloc_array_length ( state - > pending ) ;
if ( num_pending = = 0 ) {
return ;
}
state - > write_req = writev_send ( state , state - > ev , NULL ,
state - > parent_pipe , false ,
state - > pending , num_pending ) ;
if ( state - > write_req = = NULL ) {
DEBUG ( 1 , ( " writev_send failed \n " ) ) ;
exit ( 1 ) ;
}
talloc_steal ( state - > write_req , state - > pending ) ;
state - > pending = NULL ;
tevent_req_set_callback ( state - > write_req , smbd_echo_writer_done ,
state ) ;
}
static void smbd_echo_writer_done ( struct tevent_req * req )
{
struct smbd_echo_state * state = tevent_req_callback_data (
req , struct smbd_echo_state ) ;
ssize_t written ;
int err ;
written = writev_recv ( req , & err ) ;
TALLOC_FREE ( req ) ;
state - > write_req = NULL ;
if ( written = = - 1 ) {
DEBUG ( 1 , ( " writev to parent failed: %s \n " , strerror ( err ) ) ) ;
exit ( 1 ) ;
}
DEBUG ( 10 , ( " echo_handler[%d]: forwarded pdu to main \n " , ( int ) sys_getpid ( ) ) ) ;
smbd_echo_activate_writer ( state ) ;
}
2010-08-15 11:39:09 +02:00
static bool smbd_echo_reply ( uint8_t * inbuf , size_t inbuf_len ,
2010-03-18 12:50:22 +01:00
uint32_t seqnum )
{
struct smb_request req ;
uint16_t num_replies ;
size_t out_len ;
char * outbuf ;
bool ok ;
2011-07-12 08:55:58 +02:00
if ( ( inbuf_len = = 4 ) & & ( CVAL ( inbuf , 0 ) = = NBSSkeepalive ) ) {
2010-10-06 18:24:13 +02:00
DEBUG ( 10 , ( " Got netbios keepalive \n " ) ) ;
/*
* Just swallow it
*/
return true ;
}
2010-03-18 12:50:22 +01:00
if ( inbuf_len < smb_size ) {
DEBUG ( 10 , ( " Got short packet: %d bytes \n " , ( int ) inbuf_len ) ) ;
return false ;
}
if ( ! valid_smb_header ( inbuf ) ) {
DEBUG ( 10 , ( " Got invalid SMB header \n " ) ) ;
return false ;
}
2010-06-12 11:01:27 +02:00
if ( ! init_smb_request ( & req , smbd_server_conn , inbuf , 0 , false ,
seqnum ) ) {
2010-03-18 12:50:22 +01:00
return false ;
}
req . inbuf = inbuf ;
DEBUG ( 10 , ( " smbecho handler got cmd %d (%s) \n " , ( int ) req . cmd ,
smb_messages [ req . cmd ] . name
? smb_messages [ req . cmd ] . name : " unknown " ) ) ;
if ( req . cmd ! = SMBecho ) {
return false ;
}
if ( req . wct < 1 ) {
return false ;
}
num_replies = SVAL ( req . vwv + 0 , 0 ) ;
if ( num_replies ! = 1 ) {
/* Not a Windows "Hey, you're still there?" request */
return false ;
}
2011-05-05 10:41:59 -07:00
if ( ! create_outbuf ( talloc_tos ( ) , & req , ( const char * ) req . inbuf , & outbuf ,
2010-03-18 12:50:22 +01:00
1 , req . buflen ) ) {
DEBUG ( 10 , ( " create_outbuf failed \n " ) ) ;
return false ;
}
req . outbuf = ( uint8_t * ) outbuf ;
SSVAL ( req . outbuf , smb_vwv0 , num_replies ) ;
if ( req . buflen > 0 ) {
memcpy ( smb_buf ( req . outbuf ) , req . buf , req . buflen ) ;
}
out_len = smb_len ( req . outbuf ) + 4 ;
2010-08-24 20:10:20 +02:00
ok = srv_send_smb ( req . sconn ,
2010-03-18 12:50:22 +01:00
( char * ) outbuf ,
true , seqnum + 1 ,
false , & req . pcd ) ;
TALLOC_FREE ( outbuf ) ;
if ( ! ok ) {
exit ( 1 ) ;
}
return true ;
}
static void smbd_echo_exit ( struct tevent_context * ev ,
struct tevent_fd * fde , uint16_t flags ,
void * private_data )
{
DEBUG ( 2 , ( " smbd_echo_exit: lost connection to parent \n " ) ) ;
exit ( 0 ) ;
}
2011-07-26 15:39:29 +02:00
static void smbd_echo_got_packet ( struct tevent_req * req ) ;
2010-03-18 12:50:22 +01:00
static void smbd_echo_loop ( struct smbd_server_connection * sconn ,
int parent_pipe )
{
struct smbd_echo_state * state ;
2011-07-26 15:39:29 +02:00
struct tevent_req * read_req ;
2010-03-18 12:50:22 +01:00
state = talloc_zero ( sconn , struct smbd_echo_state ) ;
if ( state = = NULL ) {
DEBUG ( 1 , ( " talloc failed \n " ) ) ;
return ;
}
state - > sconn = sconn ;
state - > parent_pipe = parent_pipe ;
state - > ev = s3_tevent_context_init ( state ) ;
if ( state - > ev = = NULL ) {
DEBUG ( 1 , ( " tevent_context_init failed \n " ) ) ;
TALLOC_FREE ( state ) ;
return ;
}
state - > parent_fde = tevent_add_fd ( state - > ev , state , parent_pipe ,
TEVENT_FD_READ , smbd_echo_exit ,
state ) ;
if ( state - > parent_fde = = NULL ) {
DEBUG ( 1 , ( " tevent_add_fd failed \n " ) ) ;
TALLOC_FREE ( state ) ;
return ;
}
2011-07-26 15:39:29 +02:00
read_req = smbd_echo_read_send ( state , state - > ev , sconn ) ;
if ( read_req = = NULL ) {
DEBUG ( 1 , ( " smbd_echo_read_send failed \n " ) ) ;
2010-03-18 12:50:22 +01:00
TALLOC_FREE ( state ) ;
return ;
}
2011-07-26 15:39:29 +02:00
tevent_req_set_callback ( read_req , smbd_echo_got_packet , state ) ;
2010-03-18 12:50:22 +01:00
while ( true ) {
if ( tevent_loop_once ( state - > ev ) = = - 1 ) {
DEBUG ( 1 , ( " tevent_loop_once failed: %s \n " ,
strerror ( errno ) ) ) ;
break ;
}
}
TALLOC_FREE ( state ) ;
}
2011-07-26 15:39:29 +02:00
static void smbd_echo_got_packet ( struct tevent_req * req )
{
struct smbd_echo_state * state = tevent_req_callback_data (
req , struct smbd_echo_state ) ;
NTSTATUS status ;
char * buf = NULL ;
size_t buflen = 0 ;
uint32_t seqnum = 0 ;
bool reply ;
status = smbd_echo_read_recv ( req , state , & buf , & buflen , & seqnum ) ;
TALLOC_FREE ( req ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 1 , ( " smbd_echo_read_recv returned %s \n " ,
nt_errstr ( status ) ) ) ;
exit ( 1 ) ;
}
reply = smbd_echo_reply ( ( uint8_t * ) buf , buflen , seqnum ) ;
if ( ! reply ) {
size_t num_pending ;
struct iovec * tmp ;
struct iovec * iov ;
num_pending = talloc_array_length ( state - > pending ) ;
tmp = talloc_realloc ( state , state - > pending , struct iovec ,
num_pending + 1 ) ;
if ( tmp = = NULL ) {
DEBUG ( 1 , ( " talloc_realloc failed \n " ) ) ;
exit ( 1 ) ;
}
state - > pending = tmp ;
if ( buflen > = smb_size ) {
/*
* place the seqnum in the packet so that the main process
* can reply with signing
*/
SIVAL ( buf , smb_ss_field , seqnum ) ;
SIVAL ( buf , smb_ss_field + 4 , NT_STATUS_V ( NT_STATUS_OK ) ) ;
}
iov = & state - > pending [ num_pending ] ;
iov - > iov_base = buf ;
iov - > iov_len = buflen ;
DEBUG ( 10 , ( " echo_handler[%d]: forward to main \n " ,
( int ) sys_getpid ( ) ) ) ;
smbd_echo_activate_writer ( state ) ;
}
req = smbd_echo_read_send ( state , state - > ev , state - > sconn ) ;
if ( req = = NULL ) {
DEBUG ( 1 , ( " smbd_echo_read_send failed \n " ) ) ;
exit ( 1 ) ;
}
tevent_req_set_callback ( req , smbd_echo_got_packet , state ) ;
}
2010-03-18 12:50:22 +01:00
/*
* Handle SMBecho requests in a forked child process
*/
2011-05-20 13:07:17 +02:00
bool fork_echo_handler ( struct smbd_server_connection * sconn )
2010-03-18 12:50:22 +01:00
{
int listener_pipe [ 2 ] ;
int res ;
pid_t child ;
res = pipe ( listener_pipe ) ;
if ( res = = - 1 ) {
DEBUG ( 1 , ( " pipe() failed: %s \n " , strerror ( errno ) ) ) ;
return false ;
}
sconn - > smb1 . echo_handler . socket_lock_fd = create_unlink_tmp ( lp_lockdir ( ) ) ;
if ( sconn - > smb1 . echo_handler . socket_lock_fd = = - 1 ) {
DEBUG ( 1 , ( " Could not create lock fd: %s \n " , strerror ( errno ) ) ) ;
goto fail ;
}
child = sys_fork ( ) ;
if ( child = = 0 ) {
NTSTATUS status ;
close ( listener_pipe [ 0 ] ) ;
2010-10-06 15:05:59 +02:00
set_blocking ( listener_pipe [ 1 ] , false ) ;
2010-03-18 12:50:22 +01:00
2010-08-07 13:23:07 +02:00
status = reinit_after_fork ( sconn - > msg_ctx ,
2011-05-25 18:51:56 +10:00
server_event_context ( ) ,
2010-07-04 16:28:13 +02:00
procid_self ( ) , false ) ;
2010-03-18 12:50:22 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 1 , ( " reinit_after_fork failed: %s \n " ,
nt_errstr ( status ) ) ) ;
exit ( 1 ) ;
}
smbd_echo_loop ( sconn , listener_pipe [ 1 ] ) ;
exit ( 0 ) ;
}
close ( listener_pipe [ 1 ] ) ;
listener_pipe [ 1 ] = - 1 ;
sconn - > smb1 . echo_handler . trusted_fd = listener_pipe [ 0 ] ;
DEBUG ( 10 , ( " fork_echo_handler: main[%d] echo_child[%d] \n " , ( int ) sys_getpid ( ) , child ) ) ;
/*
* Without smb signing this is the same as the normal smbd
* listener . This needs to change once signing comes in .
*/
2011-05-25 18:51:56 +10:00
sconn - > smb1 . echo_handler . trusted_fde = event_add_fd ( server_event_context ( ) ,
2010-03-18 12:50:22 +01:00
sconn ,
sconn - > smb1 . echo_handler . trusted_fd ,
EVENT_FD_READ ,
smbd_server_echo_handler ,
sconn ) ;
if ( sconn - > smb1 . echo_handler . trusted_fde = = NULL ) {
DEBUG ( 1 , ( " event_add_fd failed \n " ) ) ;
goto fail ;
}
return true ;
fail :
if ( listener_pipe [ 0 ] ! = - 1 ) {
close ( listener_pipe [ 0 ] ) ;
}
if ( listener_pipe [ 1 ] ! = - 1 ) {
close ( listener_pipe [ 1 ] ) ;
}
sconn - > smb1 . echo_handler . trusted_fd = - 1 ;
if ( sconn - > smb1 . echo_handler . socket_lock_fd ! = - 1 ) {
close ( sconn - > smb1 . echo_handler . socket_lock_fd ) ;
}
sconn - > smb1 . echo_handler . trusted_fd = - 1 ;
sconn - > smb1 . echo_handler . socket_lock_fd = - 1 ;
return false ;
}
2010-08-29 23:13:34 +02:00
# if CLUSTER_SUPPORT
2010-08-28 17:16:08 +02:00
static NTSTATUS smbd_register_ips ( struct smbd_server_connection * sconn ,
struct sockaddr_storage * srv ,
2010-08-28 17:09:56 +02:00
struct sockaddr_storage * clnt )
{
struct ctdbd_connection * cconn ;
char tmp_addr [ INET6_ADDRSTRLEN ] ;
char * addr ;
2010-08-31 16:52:56 +02:00
cconn = messaging_ctdbd_connection ( ) ;
2010-08-28 17:09:56 +02:00
if ( cconn = = NULL ) {
return NT_STATUS_NO_MEMORY ;
}
2010-08-29 23:13:46 +02:00
client_socket_addr ( sconn - > sock , tmp_addr , sizeof ( tmp_addr ) ) ;
2010-08-28 17:09:56 +02:00
addr = talloc_strdup ( cconn , tmp_addr ) ;
if ( addr = = NULL ) {
return NT_STATUS_NO_MEMORY ;
}
return ctdbd_register_ips ( cconn , srv , clnt , release_ip , addr ) ;
}
2010-08-29 23:13:34 +02:00
# endif
2005-06-27 22:53:56 +00:00
/****************************************************************************
Process commands from the client
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2010-08-08 18:47:02 +02:00
void smbd_process ( struct smbd_server_connection * sconn )
2005-06-27 22:53:56 +00:00
{
2009-01-22 12:36:42 +01:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2010-04-27 13:36:21 +02:00
struct sockaddr_storage ss ;
struct sockaddr * sa = NULL ;
2010-08-28 08:27:08 +02:00
socklen_t sa_socklen ;
2010-04-27 13:36:21 +02:00
struct tsocket_address * local_address = NULL ;
struct tsocket_address * remote_address = NULL ;
const char * remaddr = NULL ;
2011-06-16 15:39:25 +02:00
char * rhost ;
2010-04-27 13:36:21 +02:00
int ret ;
2009-01-22 12:36:42 +01:00
2011-07-11 22:23:56 +02:00
if ( lp_maxprotocol ( ) > = PROTOCOL_SMB2_02 ) {
2010-06-09 19:12:02 -07:00
/*
2011-04-14 11:06:00 +02:00
* We ' re not making the decision here ,
2010-06-09 19:12:02 -07:00
* we ' re just allowing the client
* to decide between SMB1 and SMB2
* with the first negprot
* packet .
*/
2010-08-08 18:47:02 +02:00
sconn - > using_smb2 = true ;
2009-05-14 14:17:28 +02:00
}
2009-01-22 12:36:42 +01:00
/* Ensure child is set to blocking mode */
2010-08-15 11:43:46 +02:00
set_blocking ( sconn - > sock , True ) ;
2009-01-22 12:36:42 +01:00
2010-08-15 11:43:46 +02:00
set_socket_options ( sconn - > sock , " SO_KEEPALIVE " ) ;
set_socket_options ( sconn - > sock , lp_socket_options ( ) ) ;
2009-01-22 12:36:42 +01:00
2010-04-27 13:36:21 +02:00
sa = ( struct sockaddr * ) ( void * ) & ss ;
2010-08-28 08:27:08 +02:00
sa_socklen = sizeof ( ss ) ;
ret = getpeername ( sconn - > sock , sa , & sa_socklen ) ;
2010-04-27 13:36:21 +02:00
if ( ret ! = 0 ) {
int level = ( errno = = ENOTCONN ) ? 2 : 0 ;
DEBUG ( level , ( " getpeername() failed - %s \n " , strerror ( errno ) ) ) ;
2010-06-28 13:39:28 -04:00
exit_server_cleanly ( " getpeername() failed. \n " ) ;
2010-04-27 13:36:21 +02:00
}
2010-08-08 18:47:02 +02:00
ret = tsocket_address_bsd_from_sockaddr ( sconn ,
2010-08-28 08:27:08 +02:00
sa , sa_socklen ,
2010-04-27 13:36:21 +02:00
& remote_address ) ;
if ( ret ! = 0 ) {
DEBUG ( 0 , ( " %s: tsocket_address_bsd_from_sockaddr remote failed - %s \n " ,
__location__ , strerror ( errno ) ) ) ;
2010-06-28 13:39:28 -04:00
exit_server_cleanly ( " tsocket_address_bsd_from_sockaddr remote failed. \n " ) ;
2010-04-27 13:36:21 +02:00
}
sa = ( struct sockaddr * ) ( void * ) & ss ;
2010-08-28 08:27:08 +02:00
sa_socklen = sizeof ( ss ) ;
ret = getsockname ( sconn - > sock , sa , & sa_socklen ) ;
2010-04-27 13:36:21 +02:00
if ( ret ! = 0 ) {
int level = ( errno = = ENOTCONN ) ? 2 : 0 ;
DEBUG ( level , ( " getsockname() failed - %s \n " , strerror ( errno ) ) ) ;
2010-06-28 13:39:28 -04:00
exit_server_cleanly ( " getsockname() failed. \n " ) ;
2010-04-27 13:36:21 +02:00
}
2010-08-08 18:47:02 +02:00
ret = tsocket_address_bsd_from_sockaddr ( sconn ,
2010-08-28 08:27:08 +02:00
sa , sa_socklen ,
2010-04-27 13:36:21 +02:00
& local_address ) ;
if ( ret ! = 0 ) {
DEBUG ( 0 , ( " %s: tsocket_address_bsd_from_sockaddr remote failed - %s \n " ,
__location__ , strerror ( errno ) ) ) ;
2010-06-28 13:39:28 -04:00
exit_server_cleanly ( " tsocket_address_bsd_from_sockaddr remote failed. \n " ) ;
2010-04-27 13:36:21 +02:00
}
2010-08-08 18:47:02 +02:00
sconn - > local_address = local_address ;
sconn - > remote_address = remote_address ;
2010-04-27 13:36:21 +02:00
if ( tsocket_address_is_inet ( remote_address , " ip " ) ) {
remaddr = tsocket_address_inet_addr_string (
2010-08-08 18:47:02 +02:00
sconn - > remote_address ,
2010-04-27 13:36:21 +02:00
talloc_tos ( ) ) ;
if ( remaddr = = NULL ) {
2011-06-16 15:32:00 +02:00
DEBUG ( 0 , ( " %s: tsocket_address_inet_addr_string remote failed - %s \n " ,
__location__ , strerror ( errno ) ) ) ;
exit_server_cleanly ( " tsocket_address_inet_addr_string remote failed. \n " ) ;
2010-04-27 13:36:21 +02:00
}
} else {
remaddr = " 0.0.0.0 " ;
}
2009-01-22 12:36:42 +01:00
/* this is needed so that we get decent entries
in smbstatus for port 445 connects */
2010-04-27 13:36:21 +02:00
set_remote_machine_name ( remaddr , false ) ;
2010-08-15 16:13:00 +02:00
reload_services ( sconn - > msg_ctx , sconn - > sock , true ) ;
2009-01-22 12:36:42 +01:00
2008-10-19 13:44:11 +02:00
/*
* Before the first packet , check the global hosts allow / hosts deny
* parameters before doing any parsing of packets passed to us by the
* client . This prevents attacks on our parsing code from hosts not in
* the hosts allow list .
*/
2011-06-16 15:39:25 +02:00
ret = get_remote_hostname ( remote_address ,
& rhost ,
talloc_tos ( ) ) ;
if ( ret < 0 ) {
DEBUG ( 0 , ( " %s: get_remote_hostname failed - %s \n " ,
__location__ , strerror ( errno ) ) ) ;
exit_server_cleanly ( " get_remote_hostname failed. \n " ) ;
}
if ( strequal ( rhost , " UNKNOWN " ) ) {
rhost = talloc_strdup ( talloc_tos ( ) , remaddr ) ;
}
sconn - > remote_hostname = talloc_move ( sconn , & rhost ) ;
2010-08-18 16:48:20 +02:00
if ( ! allow_access ( lp_hostsdeny ( - 1 ) , lp_hostsallow ( - 1 ) ,
2011-06-16 15:39:25 +02:00
sconn - > remote_hostname ,
remaddr ) ) {
2008-10-19 13:44:11 +02:00
/*
* send a negative session response " not listening on calling
* name "
*/
unsigned char buf [ 5 ] = { 0x83 , 0 , 0 , 1 , 0x81 } ;
2010-04-27 13:36:21 +02:00
DEBUG ( 1 , ( " Connection denied from %s to %s \n " ,
tsocket_address_string ( remote_address , talloc_tos ( ) ) ,
tsocket_address_string ( local_address , talloc_tos ( ) ) ) ) ;
2010-08-24 20:10:20 +02:00
( void ) srv_send_smb ( sconn , ( char * ) buf , false ,
2009-03-09 09:47:59 +01:00
0 , false , NULL ) ;
2008-10-19 13:44:11 +02:00
exit_server_cleanly ( " connection denied " ) ;
}
2010-04-27 13:36:21 +02:00
DEBUG ( 10 , ( " Connection allowed from %s to %s \n " ,
tsocket_address_string ( remote_address , talloc_tos ( ) ) ,
tsocket_address_string ( local_address , talloc_tos ( ) ) ) ) ;
2009-01-22 12:36:42 +01:00
init_modules ( ) ;
2009-02-08 23:10:34 -08:00
smb_perfcount_init ( ) ;
2009-01-22 12:36:42 +01:00
if ( ! init_account_policy ( ) ) {
exit_server ( " Could not open account policy tdb. \n " ) ;
}
if ( * lp_rootdir ( ) ) {
if ( chroot ( lp_rootdir ( ) ) ! = 0 ) {
2009-02-13 15:02:32 -08:00
DEBUG ( 0 , ( " Failed to change root to %s \n " , lp_rootdir ( ) ) ) ;
exit_server ( " Failed to chroot() " ) ;
}
if ( chdir ( " / " ) = = - 1 ) {
DEBUG ( 0 , ( " Failed to chdir to / on chroot to %s \n " , lp_rootdir ( ) ) ) ;
2009-01-22 12:36:42 +01:00
exit_server ( " Failed to chroot() " ) ;
}
DEBUG ( 0 , ( " Changed root to %s \n " , lp_rootdir ( ) ) ) ;
}
2010-08-08 18:47:02 +02:00
if ( ! srv_init_signing ( sconn ) ) {
2009-03-09 09:47:59 +01:00
exit_server ( " Failed to init smb_signing " ) ;
}
2009-01-22 12:36:42 +01:00
/* Setup oplocks */
2010-08-08 18:48:01 +02:00
if ( ! init_oplocks ( sconn - > msg_ctx ) )
2009-01-22 12:36:42 +01:00
exit_server ( " Failed to init oplocks " ) ;
/* register our message handlers */
2010-08-08 18:48:01 +02:00
messaging_register ( sconn - > msg_ctx , NULL ,
2009-01-22 12:36:42 +01:00
MSG_SMB_FORCE_TDIS , msg_force_tdis ) ;
2010-08-08 18:48:01 +02:00
messaging_register ( sconn - > msg_ctx , NULL ,
2009-01-22 12:36:42 +01:00
MSG_SMB_CLOSE_FILE , msg_close_file ) ;
2009-06-16 15:11:32 -07:00
/*
* Use the default MSG_DEBUG handler to avoid rebroadcasting
* MSGs to all child processes
*/
2010-08-08 18:48:01 +02:00
messaging_deregister ( sconn - > msg_ctx ,
2009-06-16 15:11:32 -07:00
MSG_DEBUG , NULL ) ;
2010-08-08 18:48:01 +02:00
messaging_register ( sconn - > msg_ctx , NULL ,
2009-06-16 15:11:32 -07:00
MSG_DEBUG , debug_message ) ;
2009-01-22 12:36:42 +01:00
if ( ( lp_keepalive ( ) ! = 0 )
2011-05-25 18:51:56 +10:00
& & ! ( event_add_idle ( server_event_context ( ) , NULL ,
2009-01-22 12:36:42 +01:00
timeval_set ( lp_keepalive ( ) , 0 ) ,
" keepalive " , keepalive_fn ,
NULL ) ) ) {
DEBUG ( 0 , ( " Could not add keepalive event \n " ) ) ;
exit ( 1 ) ;
}
2011-05-25 18:51:56 +10:00
if ( ! ( event_add_idle ( server_event_context ( ) , NULL ,
2009-01-22 12:36:42 +01:00
timeval_set ( IDLE_CLOSED_TIMEOUT , 0 ) ,
2010-08-08 18:47:02 +02:00
" deadtime " , deadtime_fn , sconn ) ) ) {
2009-01-22 12:36:42 +01:00
DEBUG ( 0 , ( " Could not add deadtime event \n " ) ) ;
exit ( 1 ) ;
2009-01-08 15:38:47 +01:00
}
2009-01-22 12:36:42 +01:00
2011-05-25 18:51:56 +10:00
if ( ! ( event_add_idle ( server_event_context ( ) , NULL ,
2010-12-23 12:14:21 +01:00
timeval_set ( SMBD_HOUSEKEEPING_INTERVAL , 0 ) ,
2010-08-28 16:56:47 +02:00
" housekeeping " , housekeeping_fn , sconn ) ) ) {
2009-01-22 12:36:42 +01:00
DEBUG ( 0 , ( " Could not add housekeeping event \n " ) ) ;
exit ( 1 ) ;
}
# ifdef CLUSTER_SUPPORT
if ( lp_clustering ( ) ) {
/*
* We need to tell ctdb about our client ' s TCP
* connection , so that for failover ctdbd can send
* tickle acks , triggering a reconnection by the
* client .
*/
struct sockaddr_storage srv , clnt ;
2010-09-27 02:15:18 +02:00
if ( client_get_tcp_info ( sconn - > sock , & srv , & clnt ) = = 0 ) {
2009-01-22 12:36:42 +01:00
NTSTATUS status ;
2010-08-28 17:16:08 +02:00
status = smbd_register_ips ( sconn , & srv , & clnt ) ;
2009-01-22 12:36:42 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " ctdbd_register_ips failed: %s \n " ,
nt_errstr ( status ) ) ) ;
}
} else
{
DEBUG ( 0 , ( " Unable to get tcp info for "
" CTDB_CONTROL_TCP_CLIENT: %s \n " ,
strerror ( errno ) ) ) ;
}
}
# endif
2010-08-08 18:47:02 +02:00
sconn - > nbt . got_session = false ;
2009-05-26 15:20:36 +02:00
2010-08-08 18:47:02 +02:00
sconn - > smb1 . negprot . max_recv = MIN ( lp_maxxmit ( ) , BUFFER_SIZE ) ;
2009-01-22 12:36:42 +01:00
2010-08-08 18:47:02 +02:00
sconn - > smb1 . sessions . done_sesssetup = false ;
sconn - > smb1 . sessions . max_send = BUFFER_SIZE ;
sconn - > smb1 . sessions . last_session_tag = UID_FIELD_INVALID ;
2009-05-26 16:38:45 +02:00
/* users from session setup */
2010-08-08 18:47:02 +02:00
sconn - > smb1 . sessions . session_userlist = NULL ;
2009-05-26 16:38:45 +02:00
/* workgroup from session setup. */
2010-08-08 18:47:02 +02:00
sconn - > smb1 . sessions . session_workgroup = NULL ;
2009-05-26 16:38:45 +02:00
/* this holds info on user ids that are already validated for this VC */
2010-08-08 18:47:02 +02:00
sconn - > smb1 . sessions . validated_users = NULL ;
sconn - > smb1 . sessions . next_vuid = VUID_OFFSET ;
sconn - > smb1 . sessions . num_validated_vuids = 0 ;
2009-05-26 15:21:16 +02:00
2010-08-08 18:47:02 +02:00
conn_init ( sconn ) ;
if ( ! init_dptrs ( sconn ) ) {
2009-08-06 12:15:51 +02:00
exit_server ( " init_dptrs() failed " ) ;
}
2009-05-27 11:15:44 +02:00
2011-05-25 18:51:56 +10:00
sconn - > smb1 . fde = event_add_fd ( server_event_context ( ) ,
2010-08-08 18:47:02 +02:00
sconn ,
2010-08-15 11:43:46 +02:00
sconn - > sock ,
2009-05-26 10:48:12 +02:00
EVENT_FD_READ ,
smbd_server_connection_handler ,
2010-08-08 18:47:02 +02:00
sconn ) ;
if ( ! sconn - > smb1 . fde ) {
2009-01-08 15:38:47 +01:00
exit_server ( " failed to create smbd_server_connection fde " ) ;
}
2009-01-22 12:36:42 +01:00
TALLOC_FREE ( frame ) ;
totally rewrote the async signal, notification and oplock notification
handling in Samba. This was needed due to several limitations and
races in the previous code - as a side effect the new code is much
cleaner :)
in summary:
- changed sys_select() to avoid a signal/select race condition. It is a
rare race but once we have signals doing notification and oplocks it
is important.
- changed our main processing loop to take advantage of the new
sys_select semantics
- split the notify code into implementaion dependent and general
parts. Added the following structure that defines an implementation:
struct cnotify_fns {
void * (*register_notify)(connection_struct *conn, char *path, uint32 flags);
BOOL (*check_notify)(connection_struct *conn, uint16 vuid, char *path, uint32 flags, void *data, time_t t);
void (*remove_notify)(void *data);
};
then I wrote two implementations, one using hash/poll (like our old
code) and the other using the new Linux kernel change notify. It
should be easy to add other change notify implementations by creating
a sructure of the above type.
- fixed a bug in change notify where we were returning the wrong error
code.
- rewrote the core change notify code to be much simpler
- moved to real-time signals for leases and change notify
Amazingly, it all seems to work. I was very surprised!
(This used to be commit 44766c39e0027c762bee8b33b12c621c109a3267)
2000-06-12 15:53:31 +00:00
while ( True ) {
2008-10-03 14:18:35 -07:00
NTSTATUS status ;
2009-01-22 12:36:42 +01:00
frame = talloc_stackframe_pool ( 8192 ) ;
1998-08-20 19:28:37 +00:00
2007-10-30 16:22:24 -07:00
errno = 0 ;
2010-08-08 18:47:02 +02:00
status = smbd_server_connection_loop_once ( sconn ) ;
2009-01-08 15:38:47 +01:00
if ( ! NT_STATUS_EQUAL ( status , NT_STATUS_RETRY ) & &
! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 3 , ( " smbd_server_connection_loop_once failed: %s, "
" exiting \n " , nt_errstr ( status ) ) ) ;
2009-01-22 12:36:42 +01:00
break ;
totally rewrote the async signal, notification and oplock notification
handling in Samba. This was needed due to several limitations and
races in the previous code - as a side effect the new code is much
cleaner :)
in summary:
- changed sys_select() to avoid a signal/select race condition. It is a
rare race but once we have signals doing notification and oplocks it
is important.
- changed our main processing loop to take advantage of the new
sys_select semantics
- split the notify code into implementaion dependent and general
parts. Added the following structure that defines an implementation:
struct cnotify_fns {
void * (*register_notify)(connection_struct *conn, char *path, uint32 flags);
BOOL (*check_notify)(connection_struct *conn, uint16 vuid, char *path, uint32 flags, void *data, time_t t);
void (*remove_notify)(void *data);
};
then I wrote two implementations, one using hash/poll (like our old
code) and the other using the new Linux kernel change notify. It
should be easy to add other change notify implementations by creating
a sructure of the above type.
- fixed a bug in change notify where we were returning the wrong error
code.
- rewrote the core change notify code to be much simpler
- moved to real-time signals for leases and change notify
Amazingly, it all seems to work. I was very surprised!
(This used to be commit 44766c39e0027c762bee8b33b12c621c109a3267)
2000-06-12 15:53:31 +00:00
}
2007-08-30 19:48:31 +00:00
TALLOC_FREE ( frame ) ;
totally rewrote the async signal, notification and oplock notification
handling in Samba. This was needed due to several limitations and
races in the previous code - as a side effect the new code is much
cleaner :)
in summary:
- changed sys_select() to avoid a signal/select race condition. It is a
rare race but once we have signals doing notification and oplocks it
is important.
- changed our main processing loop to take advantage of the new
sys_select semantics
- split the notify code into implementaion dependent and general
parts. Added the following structure that defines an implementation:
struct cnotify_fns {
void * (*register_notify)(connection_struct *conn, char *path, uint32 flags);
BOOL (*check_notify)(connection_struct *conn, uint16 vuid, char *path, uint32 flags, void *data, time_t t);
void (*remove_notify)(void *data);
};
then I wrote two implementations, one using hash/poll (like our old
code) and the other using the new Linux kernel change notify. It
should be easy to add other change notify implementations by creating
a sructure of the above type.
- fixed a bug in change notify where we were returning the wrong error
code.
- rewrote the core change notify code to be much simpler
- moved to real-time signals for leases and change notify
Amazingly, it all seems to work. I was very surprised!
(This used to be commit 44766c39e0027c762bee8b33b12c621c109a3267)
2000-06-12 15:53:31 +00:00
}
2009-01-22 12:36:42 +01:00
exit_server_cleanly ( NULL ) ;
1998-08-17 13:11:34 +00:00
}
2009-01-30 23:44:21 +01:00
bool req_is_in_chain ( struct smb_request * req )
{
2011-05-05 10:41:59 -07:00
if ( req - > vwv ! = ( const uint16_t * ) ( req - > inbuf + smb_vwv ) ) {
2009-01-30 23:44:21 +01:00
/*
* We ' re right now handling a subsequent request , so we must
* be in a chain
*/
return true ;
}
if ( ! is_andx_req ( req - > cmd ) ) {
return false ;
}
if ( req - > wct < 2 ) {
/*
* Okay , an illegal request , but definitely not chained : - )
*/
return false ;
}
return ( CVAL ( req - > vwv + 0 , 0 ) ! = 0xFF ) ;
}