2011-03-11 10:31:25 +01:00
/*
Unix SMB / CIFS implementation .
Copyright ( C ) Stefan Metzmacher 2010 - 2011
Copyright ( C ) Andrew Tridgell 2010 - 2011
Copyright ( C ) Simo Sorce 2010
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 3 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
2011-02-24 11:55:45 +11:00
# ifndef __DEFAULT_LIBRPC_RPCCOMMON_H__
# define __DEFAULT_LIBRPC_RPCCOMMON_H__
2011-03-11 10:31:25 +01:00
struct dcerpc_binding_handle ;
struct GUID ;
struct ndr_interface_table ;
struct ndr_interface_call ;
struct ndr_push ;
struct ndr_pull ;
struct ncacn_packet ;
2011-03-13 14:05:19 +01:00
struct epm_floor ;
2011-03-23 23:59:11 +01:00
struct epm_tower ;
2011-03-11 10:31:25 +01:00
struct tevent_context ;
struct tstream_context ;
2011-03-13 14:05:19 +01:00
enum dcerpc_transport_t {
NCA_UNKNOWN , NCACN_NP , NCACN_IP_TCP , NCACN_IP_UDP , NCACN_VNS_IPC ,
NCACN_VNS_SPP , NCACN_AT_DSP , NCADG_AT_DDP , NCALRPC , NCACN_UNIX_STREAM ,
NCADG_UNIX_DGRAM , NCACN_HTTP , NCADG_IPX , NCACN_SPX , NCACN_INTERNAL } ;
2011-03-13 14:10:42 +01:00
/** this describes a binding to a particular transport/pipe */
struct dcerpc_binding {
enum dcerpc_transport_t transport ;
struct ndr_syntax_id object ;
2014-01-23 12:13:14 +01:00
const char * object_string ;
2011-03-13 14:10:42 +01:00
const char * host ;
const char * target_hostname ;
const char * target_principal ;
const char * endpoint ;
const char * * options ;
uint32_t flags ;
uint32_t assoc_group_id ;
} ;
2011-03-13 18:57:43 +01:00
/* dcerpc pipe flags */
# define DCERPC_DEBUG_PRINT_IN (1<<0)
# define DCERPC_DEBUG_PRINT_OUT (1<<1)
# define DCERPC_DEBUG_PRINT_BOTH (DCERPC_DEBUG_PRINT_IN | DCERPC_DEBUG_PRINT_OUT)
# define DCERPC_DEBUG_VALIDATE_IN (1<<2)
# define DCERPC_DEBUG_VALIDATE_OUT (1<<3)
# define DCERPC_DEBUG_VALIDATE_BOTH (DCERPC_DEBUG_VALIDATE_IN | DCERPC_DEBUG_VALIDATE_OUT)
# define DCERPC_CONNECT (1<<4)
# define DCERPC_SIGN (1<<5)
# define DCERPC_SEAL (1<<6)
# define DCERPC_PUSH_BIGENDIAN (1<<7)
# define DCERPC_PULL_BIGENDIAN (1<<8)
# define DCERPC_SCHANNEL (1<<9)
# define DCERPC_ANON_FALLBACK (1<<10)
/* use a 128 bit session key */
# define DCERPC_SCHANNEL_128 (1<<12)
/* check incoming pad bytes */
# define DCERPC_DEBUG_PAD_CHECK (1<<13)
/* set LIBNDR_FLAG_REF_ALLOC flag when decoding NDR */
# define DCERPC_NDR_REF_ALLOC (1<<14)
# define DCERPC_AUTH_OPTIONS (DCERPC_SEAL|DCERPC_SIGN|DCERPC_SCHANNEL|DCERPC_AUTH_SPNEGO|DCERPC_AUTH_KRB5|DCERPC_AUTH_NTLM)
/* select spnego auth */
# define DCERPC_AUTH_SPNEGO (1<<15)
/* select krb5 auth */
# define DCERPC_AUTH_KRB5 (1<<16)
# define DCERPC_SMB2 (1<<17)
/* select NTLM auth */
# define DCERPC_AUTH_NTLM (1<<18)
/* this triggers the DCERPC_PFC_FLAG_CONC_MPX flag in the bind request */
# define DCERPC_CONCURRENT_MULTIPLEX (1<<19)
2014-01-03 08:35:27 +01:00
/* this indicates DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN flag was negotiated */
2011-03-13 18:57:43 +01:00
# define DCERPC_HEADER_SIGNING (1<<20)
/* use NDR64 transport */
# define DCERPC_NDR64 (1<<21)
2011-12-12 19:28:49 +01:00
/* handle upgrades or downgrades automatically */
# define DCERPC_SCHANNEL_AUTO (1<<23)
2011-12-23 15:20:26 +01:00
/* use aes schannel with hmac-sh256 session key */
# define DCERPC_SCHANNEL_AES (1<<24)
2014-01-03 08:35:27 +01:00
/* this triggers the DCERPC_PFC_FLAG_SUPPORT_HEADER_SIGN flag in the bind request */
# define DCERPC_PROPOSE_HEADER_SIGNING (1<<25)
2011-02-24 11:55:45 +11:00
/* The following definitions come from ../librpc/rpc/dcerpc_error.c */
2011-03-11 10:31:25 +01:00
const char * dcerpc_errstr ( TALLOC_CTX * mem_ctx , uint32_t fault_code ) ;
NTSTATUS dcerpc_fault_to_nt_status ( uint32_t fault_code ) ;
2011-02-24 11:55:45 +11:00
/* The following definitions come from ../librpc/rpc/binding.c */
const char * epm_floor_string ( TALLOC_CTX * mem_ctx , struct epm_floor * epm_floor ) ;
2014-02-03 09:06:08 +01:00
char * dcerpc_floor_get_rhs_data ( TALLOC_CTX * mem_ctx , struct epm_floor * epm_floor ) ;
2011-02-24 11:55:45 +11:00
enum dcerpc_transport_t dcerpc_transport_by_endpoint_protocol ( int prot ) ;
2011-03-24 14:39:37 +01:00
struct dcerpc_binding * dcerpc_binding_dup ( TALLOC_CTX * mem_ctx ,
const struct dcerpc_binding * b ) ;
2011-03-23 23:59:11 +01:00
NTSTATUS dcerpc_binding_build_tower ( TALLOC_CTX * mem_ctx ,
const struct dcerpc_binding * binding ,
struct epm_tower * tower ) ;
NTSTATUS dcerpc_binding_from_tower ( TALLOC_CTX * mem_ctx ,
struct epm_tower * tower ,
struct dcerpc_binding * * b_out ) ;
NTSTATUS dcerpc_parse_binding ( TALLOC_CTX * mem_ctx , const char * s , struct dcerpc_binding * * b_out ) ;
char * dcerpc_binding_string ( TALLOC_CTX * mem_ctx , const struct dcerpc_binding * b ) ;
2014-01-15 15:15:35 +01:00
const char * dcerpc_binding_get_string_option ( const struct dcerpc_binding * b ,
const char * name ) ;
2014-01-23 14:59:48 +01:00
char * dcerpc_binding_copy_string_option ( TALLOC_CTX * mem_ctx ,
const struct dcerpc_binding * b ,
const char * name ) ;
2014-01-16 11:10:46 +01:00
NTSTATUS dcerpc_binding_set_string_option ( struct dcerpc_binding * b ,
const char * name ,
const char * value ) ;
2011-03-23 23:59:11 +01:00
NTSTATUS dcerpc_floor_get_lhs_data ( const struct epm_floor * epm_floor , struct ndr_syntax_id * syntax ) ;
const char * derpc_transport_string_by_transport ( enum dcerpc_transport_t t ) ;
2014-01-23 12:03:46 +01:00
enum dcerpc_transport_t dcerpc_transport_by_name ( const char * name ) ;
2011-03-23 23:59:11 +01:00
enum dcerpc_transport_t dcerpc_transport_by_tower ( const struct epm_tower * tower ) ;
2011-02-24 11:55:45 +11:00
/* The following definitions come from ../librpc/rpc/dcerpc_util.c */
void dcerpc_set_frag_length ( DATA_BLOB * blob , uint16_t v ) ;
uint16_t dcerpc_get_frag_length ( const DATA_BLOB * blob ) ;
void dcerpc_set_auth_length ( DATA_BLOB * blob , uint16_t v ) ;
uint8_t dcerpc_get_endian_flag ( DATA_BLOB * blob ) ;
2013-08-08 17:33:29 +02:00
const char * dcerpc_default_transport_endpoint ( TALLOC_CTX * mem_ctx ,
enum dcerpc_transport_t transport ,
const struct ndr_interface_table * table ) ;
2011-02-24 11:55:45 +11:00
/**
* @ brief Pull a dcerpc_auth structure , taking account of any auth
* padding in the blob . For request / response packets we pass
* the whole data blob , so auth_data_only must be set to false
* as the blob contains data + pad + auth and no just pad + auth .
*
* @ param pkt - The ncacn_packet strcuture
* @ param mem_ctx - The mem_ctx used to allocate dcerpc_auth elements
* @ param pkt_trailer - The packet trailer data , usually the trailing
* auth_info blob , but in the request / response case
* this is the stub_and_verifier blob .
* @ param auth - A preallocated dcerpc_auth * empty * structure
* @ param auth_length - The length of the auth trail , sum of auth header
* lenght and pkt - > auth_length
* @ param auth_data_only - Whether the pkt_trailer includes only the auth_blob
* ( + padding ) or also other data .
*
* @ return - A NTSTATUS error code .
*/
NTSTATUS dcerpc_pull_auth_trailer ( struct ncacn_packet * pkt ,
TALLOC_CTX * mem_ctx ,
DATA_BLOB * pkt_trailer ,
struct dcerpc_auth * auth ,
uint32_t * auth_length ,
bool auth_data_only ) ;
struct tevent_req * dcerpc_read_ncacn_packet_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct tstream_context * stream ) ;
NTSTATUS dcerpc_read_ncacn_packet_recv ( struct tevent_req * req ,
TALLOC_CTX * mem_ctx ,
struct ncacn_packet * * pkt ,
DATA_BLOB * buffer ) ;
/* The following definitions come from ../librpc/rpc/binding_handle.c */
2011-03-11 10:31:25 +01:00
struct dcerpc_binding_handle_ops {
const char * name ;
bool ( * is_connected ) ( struct dcerpc_binding_handle * h ) ;
uint32_t ( * set_timeout ) ( struct dcerpc_binding_handle * h ,
uint32_t timeout ) ;
2013-08-12 08:19:08 +02:00
void ( * auth_info ) ( struct dcerpc_binding_handle * h ,
enum dcerpc_AuthType * auth_type ,
enum dcerpc_AuthLevel * auth_level ) ;
2011-03-11 10:31:25 +01:00
struct tevent_req * ( * raw_call_send ) ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct dcerpc_binding_handle * h ,
const struct GUID * object ,
uint32_t opnum ,
uint32_t in_flags ,
const uint8_t * in_data ,
size_t in_length ) ;
NTSTATUS ( * raw_call_recv ) ( struct tevent_req * req ,
TALLOC_CTX * mem_ctx ,
uint8_t * * out_data ,
size_t * out_length ,
uint32_t * out_flags ) ;
struct tevent_req * ( * disconnect_send ) ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct dcerpc_binding_handle * h ) ;
NTSTATUS ( * disconnect_recv ) ( struct tevent_req * req ) ;
/* TODO: remove the following functions */
bool ( * push_bigendian ) ( struct dcerpc_binding_handle * h ) ;
bool ( * ref_alloc ) ( struct dcerpc_binding_handle * h ) ;
bool ( * use_ndr64 ) ( struct dcerpc_binding_handle * h ) ;
void ( * do_ndr_print ) ( struct dcerpc_binding_handle * h ,
int ndr_flags ,
const void * struct_ptr ,
const struct ndr_interface_call * call ) ;
void ( * ndr_push_failed ) ( struct dcerpc_binding_handle * h ,
NTSTATUS error ,
const void * struct_ptr ,
const struct ndr_interface_call * call ) ;
void ( * ndr_pull_failed ) ( struct dcerpc_binding_handle * h ,
NTSTATUS error ,
const DATA_BLOB * blob ,
const struct ndr_interface_call * call ) ;
NTSTATUS ( * ndr_validate_in ) ( struct dcerpc_binding_handle * h ,
TALLOC_CTX * mem_ctx ,
const DATA_BLOB * blob ,
const struct ndr_interface_call * call ) ;
NTSTATUS ( * ndr_validate_out ) ( struct dcerpc_binding_handle * h ,
struct ndr_pull * pull_in ,
const void * struct_ptr ,
const struct ndr_interface_call * call ) ;
} ;
2011-02-24 11:55:45 +11:00
struct dcerpc_binding_handle * _dcerpc_binding_handle_create ( TALLOC_CTX * mem_ctx ,
const struct dcerpc_binding_handle_ops * ops ,
const struct GUID * object ,
const struct ndr_interface_table * table ,
void * pstate ,
size_t psize ,
const char * type ,
const char * location ) ;
2011-03-11 10:31:25 +01:00
# define dcerpc_binding_handle_create(mem_ctx, ops, object, table, \
state , type , location ) \
_dcerpc_binding_handle_create ( mem_ctx , ops , object , table , \
state , sizeof ( type ) , # type , location )
2011-02-24 11:55:45 +11:00
void * _dcerpc_binding_handle_data ( struct dcerpc_binding_handle * h ) ;
2011-03-11 10:31:25 +01:00
# define dcerpc_binding_handle_data(_h, _type) \
talloc_get_type_abort ( _dcerpc_binding_handle_data ( _h ) , _type )
_DEPRECATED_ void dcerpc_binding_handle_set_sync_ev ( struct dcerpc_binding_handle * h ,
struct tevent_context * ev ) ;
2011-02-24 11:55:45 +11:00
bool dcerpc_binding_handle_is_connected ( struct dcerpc_binding_handle * h ) ;
2011-03-11 10:31:25 +01:00
2011-02-24 11:55:45 +11:00
uint32_t dcerpc_binding_handle_set_timeout ( struct dcerpc_binding_handle * h ,
uint32_t timeout ) ;
2011-03-11 10:31:25 +01:00
2013-08-12 08:19:08 +02:00
void dcerpc_binding_handle_auth_info ( struct dcerpc_binding_handle * h ,
enum dcerpc_AuthType * auth_type ,
enum dcerpc_AuthLevel * auth_level ) ;
2011-02-24 11:55:45 +11:00
struct tevent_req * dcerpc_binding_handle_raw_call_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct dcerpc_binding_handle * h ,
const struct GUID * object ,
uint32_t opnum ,
uint32_t in_flags ,
const uint8_t * in_data ,
size_t in_length ) ;
NTSTATUS dcerpc_binding_handle_raw_call_recv ( struct tevent_req * req ,
TALLOC_CTX * mem_ctx ,
uint8_t * * out_data ,
size_t * out_length ,
uint32_t * out_flags ) ;
2011-03-13 14:58:12 +01:00
NTSTATUS dcerpc_binding_handle_raw_call ( struct dcerpc_binding_handle * h ,
const struct GUID * object ,
uint32_t opnum ,
uint32_t in_flags ,
const uint8_t * in_data ,
size_t in_length ,
TALLOC_CTX * mem_ctx ,
uint8_t * * out_data ,
size_t * out_length ,
uint32_t * out_flags ) ;
2011-03-11 10:31:25 +01:00
2011-02-24 11:55:45 +11:00
struct tevent_req * dcerpc_binding_handle_disconnect_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct dcerpc_binding_handle * h ) ;
NTSTATUS dcerpc_binding_handle_disconnect_recv ( struct tevent_req * req ) ;
2011-03-11 10:31:25 +01:00
2011-02-24 11:55:45 +11:00
struct tevent_req * dcerpc_binding_handle_call_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct dcerpc_binding_handle * h ,
const struct GUID * object ,
const struct ndr_interface_table * table ,
uint32_t opnum ,
TALLOC_CTX * r_mem ,
void * r_ptr ) ;
NTSTATUS dcerpc_binding_handle_call_recv ( struct tevent_req * req ) ;
NTSTATUS dcerpc_binding_handle_call ( struct dcerpc_binding_handle * h ,
const struct GUID * object ,
const struct ndr_interface_table * table ,
uint32_t opnum ,
TALLOC_CTX * r_mem ,
void * r_ptr ) ;
2011-03-11 10:31:25 +01:00
2014-01-13 13:33:09 +01:00
/**
* Extract header information from a ncacn_packet
* as a dcerpc_sec_vt_header2 as used by the security verification trailer .
*
* @ param [ in ] pkt a packet
*
* @ return a dcerpc_sec_vt_header2
*/
struct dcerpc_sec_vt_header2 dcerpc_sec_vt_header2_from_ncacn_packet ( const struct ncacn_packet * pkt ) ;
/**
* Test if two dcerpc_sec_vt_header2 structures are equal
* without consideration of reserved fields .
*
* @ param v1 a pointer to a dcerpc_sec_vt_header2 structure
* @ param v2 a pointer to a dcerpc_sec_vt_header2 structure
*
* @ retval true if * v1 equals * v2
*/
bool dcerpc_sec_vt_header2_equal ( const struct dcerpc_sec_vt_header2 * v1 ,
const struct dcerpc_sec_vt_header2 * v2 ) ;
2014-01-08 09:50:33 +01:00
/**
* Check for consistency of the security verification trailer with the PDU header .
* See < a href = " http://msdn.microsoft.com/en-us/library/cc243559.aspx " > MS - RPCE 2.2 .2 .13 < / a > .
* A check with an empty trailer succeeds .
*
* @ param [ in ] vt a pointer to the security verification trailer .
* @ param [ in ] bitmask1 which flags were negotiated on the connection .
* @ param [ in ] pcontext the syntaxes negotiatied for the presentation context .
* @ param [ in ] header2 some fields from the PDU header .
*
* @ retval true on success .
*/
bool dcerpc_sec_verification_trailer_check (
const struct dcerpc_sec_verification_trailer * vt ,
const uint32_t * bitmask1 ,
const struct dcerpc_sec_vt_pcontext * pcontext ,
const struct dcerpc_sec_vt_header2 * header2 ) ;
2011-02-24 11:55:45 +11:00
# endif /* __DEFAULT_LIBRPC_RPCCOMMON_H__ */