2009-05-15 13:20:34 +04:00
/*
Unix SMB / CIFS implementation .
Core SMB2 server
Copyright ( C ) Stefan Metzmacher 2009
2010-05-18 00:05:22 +04:00
Copyright ( C ) Jeremy Allison 2010
2009-05-15 13:20:34 +04:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 3 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
# include "includes.h"
2011-03-22 18:57:01 +03:00
# include "smbd/smbd.h"
2009-05-15 13:20:34 +04:00
# include "smbd/globals.h"
2024-02-08 12:04:32 +03:00
# include "source3/smbd/smbXsrv_session.h"
2009-08-12 19:52:55 +04:00
# include "../libcli/smb/smb_common.h"
2011-07-26 09:11:47 +04:00
# include "../auth/gensec/gensec.h"
2011-03-24 15:46:20 +03:00
# include "auth.h"
2011-06-16 18:03:03 +04:00
# include "../lib/tsocket/tsocket.h"
2011-07-19 05:57:05 +04:00
# include "../libcli/security/security.h"
2012-05-12 12:16:41 +04:00
# include "../lib/util/tevent_ntstatus.h"
2021-11-10 22:18:07 +03:00
# include "source3/lib/substitute.h"
2009-05-15 13:20:34 +04:00
2019-06-26 07:41:05 +03:00
# include "lib/crypto/gnutls_helpers.h"
2018-10-22 18:48:43 +03:00
# include <gnutls/gnutls.h>
# include <gnutls/crypto.h>
2018-03-21 22:01:05 +03:00
# undef DBGC_CLASS
# define DBGC_CLASS DBGC_SMB2
2015-05-02 17:21:25 +03:00
static struct tevent_req * smbd_smb2_session_setup_wrap_send ( TALLOC_CTX * mem_ctx ,
2012-05-12 12:16:41 +04:00
struct tevent_context * ev ,
struct smbd_smb2_request * smb2req ,
uint64_t in_session_id ,
uint8_t in_flags ,
uint8_t in_security_mode ,
uint64_t in_previous_session_id ,
DATA_BLOB in_security_buffer ) ;
2015-05-02 17:21:25 +03:00
static NTSTATUS smbd_smb2_session_setup_wrap_recv ( struct tevent_req * req ,
2012-05-12 12:16:41 +04:00
uint16_t * out_session_flags ,
TALLOC_CTX * mem_ctx ,
DATA_BLOB * out_security_buffer ,
uint64_t * out_session_id ) ;
2012-05-12 12:20:55 +04:00
static void smbd_smb2_request_sesssetup_done ( struct tevent_req * subreq ) ;
2010-05-18 00:05:22 +04:00
NTSTATUS smbd_smb2_request_process_sesssetup ( struct smbd_smb2_request * smb2req )
2009-05-15 13:20:34 +04:00
{
const uint8_t * inhdr ;
const uint8_t * inbody ;
uint64_t in_session_id ;
2012-05-12 11:48:19 +04:00
uint8_t in_flags ;
2009-05-23 00:58:39 +04:00
uint8_t in_security_mode ;
2012-04-18 17:00:06 +04:00
uint64_t in_previous_session_id ;
2009-05-15 13:20:34 +04:00
uint16_t in_security_offset ;
uint16_t in_security_length ;
DATA_BLOB in_security_buffer ;
NTSTATUS status ;
2012-05-12 12:20:55 +04:00
struct tevent_req * subreq ;
2009-05-15 13:20:34 +04:00
2011-09-06 16:01:43 +04:00
status = smbd_smb2_request_verify_sizes ( smb2req , 0x19 ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return smbd_smb2_request_error ( smb2req , status ) ;
2009-05-15 13:20:34 +04:00
}
2012-08-05 17:00:23 +04:00
inhdr = SMBD_SMB2_IN_HDR_PTR ( smb2req ) ;
inbody = SMBD_SMB2_IN_BODY_PTR ( smb2req ) ;
2009-05-15 13:20:34 +04:00
2012-04-18 17:00:06 +04:00
in_session_id = BVAL ( inhdr , SMB2_HDR_SESSION_ID ) ;
2012-05-12 11:48:19 +04:00
in_flags = CVAL ( inbody , 0x02 ) ;
2012-04-18 17:00:06 +04:00
in_security_mode = CVAL ( inbody , 0x03 ) ;
/* Capabilities = IVAL(inbody, 0x04) */
/* Channel = IVAL(inbody, 0x08) */
2009-05-15 13:20:34 +04:00
in_security_offset = SVAL ( inbody , 0x0C ) ;
in_security_length = SVAL ( inbody , 0x0E ) ;
2012-04-18 17:00:06 +04:00
in_previous_session_id = BVAL ( inbody , 0x10 ) ;
2009-05-15 13:20:34 +04:00
2012-08-05 17:00:23 +04:00
if ( in_security_offset ! = ( SMB2_HDR_BODY + SMBD_SMB2_IN_BODY_LEN ( smb2req ) ) ) {
2010-05-18 00:05:22 +04:00
return smbd_smb2_request_error ( smb2req , NT_STATUS_INVALID_PARAMETER ) ;
2009-05-15 13:20:34 +04:00
}
2012-08-05 17:00:23 +04:00
if ( in_security_length > SMBD_SMB2_IN_DYN_LEN ( smb2req ) ) {
2010-05-18 00:05:22 +04:00
return smbd_smb2_request_error ( smb2req , NT_STATUS_INVALID_PARAMETER ) ;
2009-05-15 13:20:34 +04:00
}
2012-08-05 17:00:23 +04:00
in_security_buffer . data = SMBD_SMB2_IN_DYN_PTR ( smb2req ) ;
2009-05-15 13:20:34 +04:00
in_security_buffer . length = in_security_length ;
2015-05-02 17:21:25 +03:00
subreq = smbd_smb2_session_setup_wrap_send ( smb2req ,
2018-12-27 17:18:55 +03:00
smb2req - > sconn - > ev_ctx ,
2015-05-02 17:21:25 +03:00
smb2req ,
in_session_id ,
in_flags ,
in_security_mode ,
in_previous_session_id ,
in_security_buffer ) ;
2012-05-12 12:20:55 +04:00
if ( subreq = = NULL ) {
return smbd_smb2_request_error ( smb2req , NT_STATUS_NO_MEMORY ) ;
}
tevent_req_set_callback ( subreq , smbd_smb2_request_sesssetup_done , smb2req ) ;
2019-01-24 11:10:11 +03:00
/*
* Avoid sending a STATUS_PENDING message , which
* matches a Windows Server and avoids problems with
* MacOS clients .
*
* Even after 90 seconds a Windows Server doesn ' t return
* STATUS_PENDING if using NTLMSSP against a non reachable
* trusted domain .
*/
return smbd_smb2_request_pending_queue ( smb2req , subreq , 0 ) ;
2012-05-12 12:20:55 +04:00
}
static void smbd_smb2_request_sesssetup_done ( struct tevent_req * subreq )
{
struct smbd_smb2_request * smb2req =
tevent_req_callback_data ( subreq ,
struct smbd_smb2_request ) ;
uint8_t * outhdr ;
DATA_BLOB outbody ;
DATA_BLOB outdyn ;
2013-12-10 20:49:44 +04:00
uint16_t out_session_flags = 0 ;
uint64_t out_session_id = 0 ;
2012-05-12 12:20:55 +04:00
uint16_t out_security_offset ;
DATA_BLOB out_security_buffer = data_blob_null ;
NTSTATUS status ;
NTSTATUS error ; /* transport error */
2015-05-02 17:21:25 +03:00
status = smbd_smb2_session_setup_wrap_recv ( subreq ,
& out_session_flags ,
smb2req ,
& out_security_buffer ,
& out_session_id ) ;
2012-05-12 12:20:55 +04:00
TALLOC_FREE ( subreq ) ;
2009-05-15 13:20:34 +04:00
if ( ! NT_STATUS_IS_OK ( status ) & &
! NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED ) ) {
status = nt_status_squash ( status ) ;
2012-05-12 12:20:55 +04:00
error = smbd_smb2_request_error ( smb2req , status ) ;
if ( ! NT_STATUS_IS_OK ( error ) ) {
2014-06-11 14:15:48 +04:00
smbd_server_connection_terminate ( smb2req - > xconn ,
2012-05-12 12:20:55 +04:00
nt_errstr ( error ) ) ;
return ;
}
return ;
2009-05-15 13:20:34 +04:00
}
out_security_offset = SMB2_HDR_BODY + 0x08 ;
2012-08-05 17:00:23 +04:00
outhdr = SMBD_SMB2_OUT_HDR_PTR ( smb2req ) ;
2009-05-15 13:20:34 +04:00
2013-12-04 17:59:07 +04:00
outbody = smbd_smb2_generate_outbody ( smb2req , 0x08 ) ;
2009-05-15 13:20:34 +04:00
if ( outbody . data = = NULL ) {
2012-05-12 12:20:55 +04:00
error = smbd_smb2_request_error ( smb2req , NT_STATUS_NO_MEMORY ) ;
if ( ! NT_STATUS_IS_OK ( error ) ) {
2014-06-11 14:15:48 +04:00
smbd_server_connection_terminate ( smb2req - > xconn ,
2012-05-12 12:20:55 +04:00
nt_errstr ( error ) ) ;
return ;
}
return ;
2009-05-15 13:20:34 +04:00
}
SBVAL ( outhdr , SMB2_HDR_SESSION_ID , out_session_id ) ;
SSVAL ( outbody . data , 0x00 , 0x08 + 1 ) ; /* struct size */
2009-05-23 00:58:39 +04:00
SSVAL ( outbody . data , 0x02 ,
out_session_flags ) ; /* session flags */
2009-05-15 13:20:34 +04:00
SSVAL ( outbody . data , 0x04 ,
out_security_offset ) ; /* security buffer offset */
SSVAL ( outbody . data , 0x06 ,
out_security_buffer . length ) ; /* security buffer length */
outdyn = out_security_buffer ;
2012-05-12 12:20:55 +04:00
error = smbd_smb2_request_done_ex ( smb2req , status , outbody , & outdyn ,
__location__ ) ;
if ( ! NT_STATUS_IS_OK ( error ) ) {
2014-06-11 14:15:48 +04:00
smbd_server_connection_terminate ( smb2req - > xconn ,
2012-05-12 12:20:55 +04:00
nt_errstr ( error ) ) ;
return ;
}
2009-05-15 13:20:34 +04:00
}
2012-03-27 13:09:05 +04:00
static NTSTATUS smbd_smb2_auth_generic_return ( struct smbXsrv_session * session ,
2015-07-29 17:48:55 +03:00
struct smbXsrv_session_auth0 * * _auth ,
2010-05-18 00:05:22 +04:00
struct smbd_smb2_request * smb2req ,
uint8_t in_security_mode ,
2012-05-17 02:30:43 +04:00
struct auth_session_info * session_info ,
2010-05-18 05:22:19 +04:00
uint16_t * out_session_flags ,
uint64_t * out_session_id )
2010-05-18 00:05:22 +04:00
{
2012-03-16 18:01:27 +04:00
NTSTATUS status ;
2011-09-21 05:56:30 +04:00
bool guest = false ;
2012-03-27 13:09:05 +04:00
struct smbXsrv_session * x = session ;
2015-07-29 17:48:55 +03:00
struct smbXsrv_session_auth0 * auth = * _auth ;
2014-06-12 12:47:51 +04:00
struct smbXsrv_connection * xconn = smb2req - > xconn ;
2015-07-29 18:42:55 +03:00
size_t i ;
2021-03-05 20:24:27 +03:00
struct smb2_signing_derivations derivations = {
. signing = NULL ,
2014-10-10 16:04:25 +04:00
} ;
2021-03-05 20:24:27 +03:00
DATA_BLOB preauth_hash = data_blob_null ;
2014-10-10 16:04:25 +04:00
2015-07-29 17:48:55 +03:00
* _auth = NULL ;
2020-11-11 17:14:12 +03:00
if ( xconn - > protocol > = PROTOCOL_SMB3_11 ) {
2014-10-10 16:04:25 +04:00
struct smbXsrv_preauth * preauth ;
2018-10-22 18:48:43 +03:00
gnutls_hash_hd_t hash_hnd ;
int rc ;
2014-10-10 16:04:25 +04:00
2015-07-29 17:48:55 +03:00
preauth = talloc_move ( smb2req , & auth - > preauth ) ;
2014-10-10 16:04:25 +04:00
2018-10-22 18:48:43 +03:00
rc = gnutls_hash_init ( & hash_hnd , GNUTLS_DIG_SHA512 ) ;
if ( rc < 0 ) {
2019-06-11 15:44:10 +03:00
return gnutls_error_to_ntstatus ( rc , NT_STATUS_HASH_NOT_SUPPORTED ) ;
2018-10-22 18:48:43 +03:00
}
rc = gnutls_hash ( hash_hnd ,
preauth - > sha512_value ,
sizeof ( preauth - > sha512_value ) ) ;
if ( rc < 0 ) {
gnutls_hash_deinit ( hash_hnd , NULL ) ;
return NT_STATUS_ACCESS_DENIED ;
}
2014-10-10 16:04:25 +04:00
for ( i = 1 ; i < smb2req - > in . vector_count ; i + + ) {
2018-10-22 18:48:43 +03:00
rc = gnutls_hash ( hash_hnd ,
smb2req - > in . vector [ i ] . iov_base ,
smb2req - > in . vector [ i ] . iov_len ) ;
if ( rc < 0 ) {
gnutls_hash_deinit ( hash_hnd , NULL ) ;
return NT_STATUS_ACCESS_DENIED ;
}
2014-10-10 16:04:25 +04:00
}
2018-10-22 18:48:43 +03:00
gnutls_hash_deinit ( hash_hnd , preauth - > sha512_value ) ;
2014-10-10 16:04:25 +04:00
2021-03-05 20:24:27 +03:00
preauth_hash = data_blob_const ( preauth - > sha512_value ,
2014-10-10 16:04:25 +04:00
sizeof ( preauth - > sha512_value ) ) ;
}
2011-09-21 05:56:30 +04:00
2021-03-05 20:24:27 +03:00
smb2_signing_derivations_fill_const_stack ( & derivations ,
xconn - > protocol ,
preauth_hash ) ;
2009-05-23 00:58:39 +04:00
if ( ( in_security_mode & SMB2_NEGOTIATE_SIGNING_REQUIRED ) | |
2015-07-15 11:57:03 +03:00
( xconn - > smb2 . server . security_mode & SMB2_NEGOTIATE_SIGNING_REQUIRED ) )
{
2015-11-15 12:49:38 +03:00
x - > global - > signing_flags = SMBXSRV_SIGNING_REQUIRED ;
2009-05-23 00:58:39 +04:00
}
2020-05-26 10:34:54 +03:00
if ( ( lp_server_smb_encrypt ( - 1 ) > = SMB_ENCRYPTION_DESIRED ) & &
2015-02-25 18:59:26 +03:00
( xconn - > smb2 . client . capabilities & SMB2_CAP_ENCRYPTION ) ) {
2015-11-09 19:23:29 +03:00
x - > global - > encryption_flags = SMBXSRV_ENCRYPTION_DESIRED ;
2015-02-25 18:59:26 +03:00
}
2020-05-26 10:34:54 +03:00
if ( lp_server_smb_encrypt ( - 1 ) = = SMB_ENCRYPTION_REQUIRED ) {
2015-11-09 19:23:29 +03:00
x - > global - > encryption_flags = SMBXSRV_ENCRYPTION_REQUIRED |
SMBXSRV_ENCRYPTION_DESIRED ;
2012-08-08 08:25:10 +04:00
}
2012-03-27 13:09:05 +04:00
if ( security_session_user_level ( session_info , NULL ) < SECURITY_USER ) {
2016-04-20 17:34:28 +03:00
if ( security_session_user_level ( session_info , NULL ) = = SECURITY_GUEST ) {
* out_session_flags | = SMB2_SESSION_FLAG_IS_GUEST ;
}
2009-05-23 00:58:39 +04:00
/* force no signing */
2015-11-15 12:49:38 +03:00
x - > global - > signing_flags & = ~ SMBXSRV_SIGNING_REQUIRED ;
2016-04-20 17:34:28 +03:00
/* we map anonymous to guest internally */
2011-09-21 05:56:30 +04:00
guest = true ;
2023-06-30 19:05:51 +03:00
} else {
/*
* Remember we got one authenticated session on the connection
* in order to allow SMB3 decryption to happen
* ( sadly even for future anonymous connections ) .
*/
xconn - > smb2 . got_authenticated_session = true ;
2009-05-23 00:58:39 +04:00
}
2015-11-09 19:23:29 +03:00
if ( guest & & ( x - > global - > encryption_flags & SMBXSRV_ENCRYPTION_REQUIRED ) ) {
2012-08-08 08:25:10 +04:00
DEBUG ( 1 , ( " reject guest session as encryption is required \n " ) ) ;
return NT_STATUS_ACCESS_DENIED ;
}
2014-10-13 13:07:01 +04:00
if ( xconn - > smb2 . server . cipher = = 0 ) {
2015-11-09 19:23:29 +03:00
if ( x - > global - > encryption_flags & SMBXSRV_ENCRYPTION_REQUIRED ) {
2012-08-08 08:25:10 +04:00
DEBUG ( 1 , ( " reject session with dialect[0x%04X] "
" as encryption is required \n " ,
2014-06-12 12:47:51 +04:00
xconn - > smb2 . server . dialect ) ) ;
2012-08-08 08:25:10 +04:00
return NT_STATUS_ACCESS_DENIED ;
}
2021-03-06 00:40:43 +03:00
}
x - > global - > signing_algo = xconn - > smb2 . server . sign_algo ;
x - > global - > encryption_cipher = xconn - > smb2 . server . cipher ;
2023-06-30 19:05:51 +03:00
if ( * out_session_flags & SMB2_SESSION_FLAG_IS_GUEST ) {
/*
* A fallback to guest can ' t do any encryption
*/
2021-03-06 00:40:43 +03:00
x - > global - > encryption_cipher = SMB2_ENCRYPTION_NONE ;
2012-08-08 08:25:10 +04:00
}
2015-11-09 19:23:29 +03:00
if ( x - > global - > encryption_flags & SMBXSRV_ENCRYPTION_DESIRED ) {
2012-08-08 08:25:10 +04:00
* out_session_flags | = SMB2_SESSION_FLAG_ENCRYPT_DATA ;
}
2021-03-06 00:40:43 +03:00
status = smb2_signing_key_sign_create ( x - > global ,
x - > global - > signing_algo ,
& session_info - > session_key ,
derivations . signing ,
& x - > global - > signing_key ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
2012-03-16 18:01:27 +04:00
}
2021-03-06 00:40:43 +03:00
x - > global - > signing_key_blob = x - > global - > signing_key - > blob ;
2012-03-16 18:01:27 +04:00
2021-03-06 00:40:43 +03:00
if ( x - > global - > encryption_cipher ! = SMB2_ENCRYPTION_NONE ) {
size_t nonce_size ;
2012-08-08 11:32:22 +04:00
2021-03-06 00:40:43 +03:00
status = smb2_signing_key_cipher_create ( x - > global ,
x - > global - > encryption_cipher ,
& session_info - > session_key ,
derivations . cipher_s2c ,
& x - > global - > encryption_key ) ;
2019-06-11 13:03:33 +03:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
}
2021-03-06 00:40:43 +03:00
x - > global - > encryption_key_blob = x - > global - > encryption_key - > blob ;
2012-08-08 11:32:22 +04:00
2021-03-06 00:40:43 +03:00
status = smb2_signing_key_cipher_create ( x - > global ,
x - > global - > encryption_cipher ,
& session_info - > session_key ,
derivations . cipher_c2s ,
& x - > global - > decryption_key ) ;
2019-06-11 13:03:33 +03:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
}
2021-03-06 00:40:43 +03:00
x - > global - > decryption_key_blob = x - > global - > decryption_key - > blob ;
2012-08-22 12:30:52 +04:00
2015-05-20 15:01:44 +03:00
/*
* CCM and GCM algorithms must never have their
* nonce wrap , or the security of the whole
* communication and the keys is destroyed .
* We must drop the connection once we have
2023-07-18 12:30:18 +03:00
* transferred too much data .
2015-05-20 15:01:44 +03:00
*
* NOTE : We assume nonces greater than 8 bytes .
*/
2019-07-31 16:28:34 +03:00
generate_nonce_buffer ( ( uint8_t * ) & x - > nonce_high_random ,
sizeof ( x - > nonce_high_random ) ) ;
2015-05-20 15:01:44 +03:00
switch ( xconn - > smb2 . server . cipher ) {
case SMB2_ENCRYPTION_AES128_CCM :
2019-02-26 20:11:27 +03:00
nonce_size = SMB2_AES_128_CCM_NONCE_SIZE ;
2015-05-20 15:01:44 +03:00
break ;
case SMB2_ENCRYPTION_AES128_GCM :
2019-02-26 20:11:27 +03:00
nonce_size = gnutls_cipher_get_iv_size ( GNUTLS_CIPHER_AES_128_GCM ) ;
2015-05-20 15:01:44 +03:00
break ;
2021-07-15 14:20:22 +03:00
case SMB2_ENCRYPTION_AES256_CCM :
nonce_size = SMB2_AES_128_CCM_NONCE_SIZE ;
break ;
case SMB2_ENCRYPTION_AES256_GCM :
nonce_size = gnutls_cipher_get_iv_size ( GNUTLS_CIPHER_AES_256_GCM ) ;
break ;
2015-05-20 15:01:44 +03:00
default :
2015-06-17 01:50:30 +03:00
nonce_size = 0 ;
break ;
2015-05-20 15:01:44 +03:00
}
x - > nonce_high_max = SMB2_NONCE_HIGH_MAX ( nonce_size ) ;
x - > nonce_high = 0 ;
x - > nonce_low = 0 ;
2012-08-08 11:32:22 +04:00
}
2021-03-06 00:40:43 +03:00
status = smb2_signing_key_sign_create ( x - > global ,
x - > global - > signing_algo ,
& session_info - > session_key ,
derivations . application ,
& x - > global - > application_key ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
2012-03-16 18:01:27 +04:00
}
2021-03-06 00:40:43 +03:00
x - > global - > application_key_blob = x - > global - > application_key - > blob ;
libsmb,s3/smbd: dump SMB3+ session keys if debug parm is set
Use of previously added smb.conf global param.
Sample usage:
$ smbclient //localhost/scratch --option='debugencryption=yes' \
-e -mSMB3 -U aaptel%aaptel -c quit
debug encryption: dumping generated session keys
Session Id [0000] 26 48 BF FD 00 00 00 00 &H......
Session Key [0000] 63 D6 CA BC 08 C8 4A D2 45 F6 AE 35 AB 4A B3 3B c.....J. E..5.J.;
Signing Key [0000] 4E FE 35 92 AC 13 14 FC C9 17 62 B1 82 20 A4 12 N.5..... ..b.. ..
App Key [0000] A5 0F F4 8B 2F FB 0D FF F2 BF EE 39 E6 6D F5 0A ..../... ...9.m..
ServerIn Key [0000] 2A 02 7E E1 D3 58 D8 12 4C 63 76 AE 59 17 5A E4 *.~..X.. Lcv.Y.Z.
ServerOut Key [0000] 59 F2 5B 7F 66 8F 31 A0 A5 E4 A8 D8 2F BA 00 38 Y.[.f.1. ..../..8
We can now simply pass -ouat:smb2_seskey_list:<sesid>,<seskey> to
wireshark or tshark:
$ tshark -ouat:smb2_seskey_list:2648BFFD00000000,63D6CABC08C84AD245F6AE35AB4AB33B \
-Y smb2 -r capture.pcap -Tfields -e _ws.col.Info
Negotiate Protocol Response
Negotiate Protocol Request
Negotiate Protocol Response
Session Setup Request, NTLMSSP_NEGOTIATE
Session Setup Response, Error: STATUS_MORE_PROCESSING_REQUIRED, NTLMSSP_CHALLENGE
Session Setup Request, NTLMSSP_AUTH, User: WORKGROUP\aaptel
Session Setup Response
Tree Connect Request Tree: \\localhost\IPC$
Tree Connect Response
Decrypted SMB3;Ioctl Request FSCTL_DFS_GET_REFERRALS, File: \localhost\scratch
Decrypted SMB3;Ioctl Response, Error: STATUS_NOT_FOUND
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
Decrypted SMB3;Tree Connect Request Tree: \\localhost\scratch
Decrypted SMB3;Tree Connect Response
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
For more info on Wireshark decryption support see
https://wiki.samba.org/index.php/Wireshark_Decryption
Signed-off-by: Aurelien Aptel <aaptel@suse.com>
Reviewed-by: Noel Power <npower@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
Reviewed-by: David Disseldorp <ddiss@samba.org>
Autobuild-User(master): David Disseldorp <ddiss@samba.org>
Autobuild-Date(master): Sat Feb 9 21:43:25 CET 2019 on sn-devel-144
2019-02-08 14:13:25 +03:00
if ( xconn - > protocol > = PROTOCOL_SMB3_00 & & lp_debug_encryption ( ) ) {
DEBUG ( 0 , ( " debug encryption: dumping generated session keys \n " ) ) ;
DEBUGADD ( 0 , ( " Session Id " ) ) ;
dump_data ( 0 , ( uint8_t * ) & session - > global - > session_wire_id ,
sizeof ( session - > global - > session_wire_id ) ) ;
DEBUGADD ( 0 , ( " Session Key " ) ) ;
2021-03-06 00:40:43 +03:00
dump_data ( 0 , session_info - > session_key . data ,
session_info - > session_key . length ) ;
DEBUGADD ( 0 , ( " Signing Algo: %u \n " , x - > global - > signing_algo ) ) ;
libsmb,s3/smbd: dump SMB3+ session keys if debug parm is set
Use of previously added smb.conf global param.
Sample usage:
$ smbclient //localhost/scratch --option='debugencryption=yes' \
-e -mSMB3 -U aaptel%aaptel -c quit
debug encryption: dumping generated session keys
Session Id [0000] 26 48 BF FD 00 00 00 00 &H......
Session Key [0000] 63 D6 CA BC 08 C8 4A D2 45 F6 AE 35 AB 4A B3 3B c.....J. E..5.J.;
Signing Key [0000] 4E FE 35 92 AC 13 14 FC C9 17 62 B1 82 20 A4 12 N.5..... ..b.. ..
App Key [0000] A5 0F F4 8B 2F FB 0D FF F2 BF EE 39 E6 6D F5 0A ..../... ...9.m..
ServerIn Key [0000] 2A 02 7E E1 D3 58 D8 12 4C 63 76 AE 59 17 5A E4 *.~..X.. Lcv.Y.Z.
ServerOut Key [0000] 59 F2 5B 7F 66 8F 31 A0 A5 E4 A8 D8 2F BA 00 38 Y.[.f.1. ..../..8
We can now simply pass -ouat:smb2_seskey_list:<sesid>,<seskey> to
wireshark or tshark:
$ tshark -ouat:smb2_seskey_list:2648BFFD00000000,63D6CABC08C84AD245F6AE35AB4AB33B \
-Y smb2 -r capture.pcap -Tfields -e _ws.col.Info
Negotiate Protocol Response
Negotiate Protocol Request
Negotiate Protocol Response
Session Setup Request, NTLMSSP_NEGOTIATE
Session Setup Response, Error: STATUS_MORE_PROCESSING_REQUIRED, NTLMSSP_CHALLENGE
Session Setup Request, NTLMSSP_AUTH, User: WORKGROUP\aaptel
Session Setup Response
Tree Connect Request Tree: \\localhost\IPC$
Tree Connect Response
Decrypted SMB3;Ioctl Request FSCTL_DFS_GET_REFERRALS, File: \localhost\scratch
Decrypted SMB3;Ioctl Response, Error: STATUS_NOT_FOUND
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
Decrypted SMB3;Tree Connect Request Tree: \\localhost\scratch
Decrypted SMB3;Tree Connect Response
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
For more info on Wireshark decryption support see
https://wiki.samba.org/index.php/Wireshark_Decryption
Signed-off-by: Aurelien Aptel <aaptel@suse.com>
Reviewed-by: Noel Power <npower@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
Reviewed-by: David Disseldorp <ddiss@samba.org>
Autobuild-User(master): David Disseldorp <ddiss@samba.org>
Autobuild-Date(master): Sat Feb 9 21:43:25 CET 2019 on sn-devel-144
2019-02-08 14:13:25 +03:00
DEBUGADD ( 0 , ( " Signing Key " ) ) ;
2021-03-06 00:40:43 +03:00
dump_data ( 0 , x - > global - > signing_key_blob . data ,
x - > global - > signing_key_blob . length ) ;
libsmb,s3/smbd: dump SMB3+ session keys if debug parm is set
Use of previously added smb.conf global param.
Sample usage:
$ smbclient //localhost/scratch --option='debugencryption=yes' \
-e -mSMB3 -U aaptel%aaptel -c quit
debug encryption: dumping generated session keys
Session Id [0000] 26 48 BF FD 00 00 00 00 &H......
Session Key [0000] 63 D6 CA BC 08 C8 4A D2 45 F6 AE 35 AB 4A B3 3B c.....J. E..5.J.;
Signing Key [0000] 4E FE 35 92 AC 13 14 FC C9 17 62 B1 82 20 A4 12 N.5..... ..b.. ..
App Key [0000] A5 0F F4 8B 2F FB 0D FF F2 BF EE 39 E6 6D F5 0A ..../... ...9.m..
ServerIn Key [0000] 2A 02 7E E1 D3 58 D8 12 4C 63 76 AE 59 17 5A E4 *.~..X.. Lcv.Y.Z.
ServerOut Key [0000] 59 F2 5B 7F 66 8F 31 A0 A5 E4 A8 D8 2F BA 00 38 Y.[.f.1. ..../..8
We can now simply pass -ouat:smb2_seskey_list:<sesid>,<seskey> to
wireshark or tshark:
$ tshark -ouat:smb2_seskey_list:2648BFFD00000000,63D6CABC08C84AD245F6AE35AB4AB33B \
-Y smb2 -r capture.pcap -Tfields -e _ws.col.Info
Negotiate Protocol Response
Negotiate Protocol Request
Negotiate Protocol Response
Session Setup Request, NTLMSSP_NEGOTIATE
Session Setup Response, Error: STATUS_MORE_PROCESSING_REQUIRED, NTLMSSP_CHALLENGE
Session Setup Request, NTLMSSP_AUTH, User: WORKGROUP\aaptel
Session Setup Response
Tree Connect Request Tree: \\localhost\IPC$
Tree Connect Response
Decrypted SMB3;Ioctl Request FSCTL_DFS_GET_REFERRALS, File: \localhost\scratch
Decrypted SMB3;Ioctl Response, Error: STATUS_NOT_FOUND
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
Decrypted SMB3;Tree Connect Request Tree: \\localhost\scratch
Decrypted SMB3;Tree Connect Response
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
For more info on Wireshark decryption support see
https://wiki.samba.org/index.php/Wireshark_Decryption
Signed-off-by: Aurelien Aptel <aaptel@suse.com>
Reviewed-by: Noel Power <npower@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
Reviewed-by: David Disseldorp <ddiss@samba.org>
Autobuild-User(master): David Disseldorp <ddiss@samba.org>
Autobuild-Date(master): Sat Feb 9 21:43:25 CET 2019 on sn-devel-144
2019-02-08 14:13:25 +03:00
DEBUGADD ( 0 , ( " App Key " ) ) ;
2021-03-06 00:40:43 +03:00
dump_data ( 0 , x - > global - > application_key_blob . data ,
x - > global - > application_key_blob . length ) ;
libsmb,s3/smbd: dump SMB3+ session keys if debug parm is set
Use of previously added smb.conf global param.
Sample usage:
$ smbclient //localhost/scratch --option='debugencryption=yes' \
-e -mSMB3 -U aaptel%aaptel -c quit
debug encryption: dumping generated session keys
Session Id [0000] 26 48 BF FD 00 00 00 00 &H......
Session Key [0000] 63 D6 CA BC 08 C8 4A D2 45 F6 AE 35 AB 4A B3 3B c.....J. E..5.J.;
Signing Key [0000] 4E FE 35 92 AC 13 14 FC C9 17 62 B1 82 20 A4 12 N.5..... ..b.. ..
App Key [0000] A5 0F F4 8B 2F FB 0D FF F2 BF EE 39 E6 6D F5 0A ..../... ...9.m..
ServerIn Key [0000] 2A 02 7E E1 D3 58 D8 12 4C 63 76 AE 59 17 5A E4 *.~..X.. Lcv.Y.Z.
ServerOut Key [0000] 59 F2 5B 7F 66 8F 31 A0 A5 E4 A8 D8 2F BA 00 38 Y.[.f.1. ..../..8
We can now simply pass -ouat:smb2_seskey_list:<sesid>,<seskey> to
wireshark or tshark:
$ tshark -ouat:smb2_seskey_list:2648BFFD00000000,63D6CABC08C84AD245F6AE35AB4AB33B \
-Y smb2 -r capture.pcap -Tfields -e _ws.col.Info
Negotiate Protocol Response
Negotiate Protocol Request
Negotiate Protocol Response
Session Setup Request, NTLMSSP_NEGOTIATE
Session Setup Response, Error: STATUS_MORE_PROCESSING_REQUIRED, NTLMSSP_CHALLENGE
Session Setup Request, NTLMSSP_AUTH, User: WORKGROUP\aaptel
Session Setup Response
Tree Connect Request Tree: \\localhost\IPC$
Tree Connect Response
Decrypted SMB3;Ioctl Request FSCTL_DFS_GET_REFERRALS, File: \localhost\scratch
Decrypted SMB3;Ioctl Response, Error: STATUS_NOT_FOUND
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
Decrypted SMB3;Tree Connect Request Tree: \\localhost\scratch
Decrypted SMB3;Tree Connect Response
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
For more info on Wireshark decryption support see
https://wiki.samba.org/index.php/Wireshark_Decryption
Signed-off-by: Aurelien Aptel <aaptel@suse.com>
Reviewed-by: Noel Power <npower@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
Reviewed-by: David Disseldorp <ddiss@samba.org>
Autobuild-User(master): David Disseldorp <ddiss@samba.org>
Autobuild-Date(master): Sat Feb 9 21:43:25 CET 2019 on sn-devel-144
2019-02-08 14:13:25 +03:00
/* In server code, ServerIn is the decryption key */
2021-03-06 00:40:43 +03:00
DEBUGADD ( 0 , ( " Cipher Algo: %u \n " , x - > global - > encryption_cipher ) ) ;
libsmb,s3/smbd: dump SMB3+ session keys if debug parm is set
Use of previously added smb.conf global param.
Sample usage:
$ smbclient //localhost/scratch --option='debugencryption=yes' \
-e -mSMB3 -U aaptel%aaptel -c quit
debug encryption: dumping generated session keys
Session Id [0000] 26 48 BF FD 00 00 00 00 &H......
Session Key [0000] 63 D6 CA BC 08 C8 4A D2 45 F6 AE 35 AB 4A B3 3B c.....J. E..5.J.;
Signing Key [0000] 4E FE 35 92 AC 13 14 FC C9 17 62 B1 82 20 A4 12 N.5..... ..b.. ..
App Key [0000] A5 0F F4 8B 2F FB 0D FF F2 BF EE 39 E6 6D F5 0A ..../... ...9.m..
ServerIn Key [0000] 2A 02 7E E1 D3 58 D8 12 4C 63 76 AE 59 17 5A E4 *.~..X.. Lcv.Y.Z.
ServerOut Key [0000] 59 F2 5B 7F 66 8F 31 A0 A5 E4 A8 D8 2F BA 00 38 Y.[.f.1. ..../..8
We can now simply pass -ouat:smb2_seskey_list:<sesid>,<seskey> to
wireshark or tshark:
$ tshark -ouat:smb2_seskey_list:2648BFFD00000000,63D6CABC08C84AD245F6AE35AB4AB33B \
-Y smb2 -r capture.pcap -Tfields -e _ws.col.Info
Negotiate Protocol Response
Negotiate Protocol Request
Negotiate Protocol Response
Session Setup Request, NTLMSSP_NEGOTIATE
Session Setup Response, Error: STATUS_MORE_PROCESSING_REQUIRED, NTLMSSP_CHALLENGE
Session Setup Request, NTLMSSP_AUTH, User: WORKGROUP\aaptel
Session Setup Response
Tree Connect Request Tree: \\localhost\IPC$
Tree Connect Response
Decrypted SMB3;Ioctl Request FSCTL_DFS_GET_REFERRALS, File: \localhost\scratch
Decrypted SMB3;Ioctl Response, Error: STATUS_NOT_FOUND
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
Decrypted SMB3;Tree Connect Request Tree: \\localhost\scratch
Decrypted SMB3;Tree Connect Response
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
For more info on Wireshark decryption support see
https://wiki.samba.org/index.php/Wireshark_Decryption
Signed-off-by: Aurelien Aptel <aaptel@suse.com>
Reviewed-by: Noel Power <npower@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
Reviewed-by: David Disseldorp <ddiss@samba.org>
Autobuild-User(master): David Disseldorp <ddiss@samba.org>
Autobuild-Date(master): Sat Feb 9 21:43:25 CET 2019 on sn-devel-144
2019-02-08 14:13:25 +03:00
DEBUGADD ( 0 , ( " ServerIn Key " ) ) ;
2021-03-06 00:40:43 +03:00
dump_data ( 0 , x - > global - > decryption_key_blob . data ,
x - > global - > decryption_key_blob . length ) ;
libsmb,s3/smbd: dump SMB3+ session keys if debug parm is set
Use of previously added smb.conf global param.
Sample usage:
$ smbclient //localhost/scratch --option='debugencryption=yes' \
-e -mSMB3 -U aaptel%aaptel -c quit
debug encryption: dumping generated session keys
Session Id [0000] 26 48 BF FD 00 00 00 00 &H......
Session Key [0000] 63 D6 CA BC 08 C8 4A D2 45 F6 AE 35 AB 4A B3 3B c.....J. E..5.J.;
Signing Key [0000] 4E FE 35 92 AC 13 14 FC C9 17 62 B1 82 20 A4 12 N.5..... ..b.. ..
App Key [0000] A5 0F F4 8B 2F FB 0D FF F2 BF EE 39 E6 6D F5 0A ..../... ...9.m..
ServerIn Key [0000] 2A 02 7E E1 D3 58 D8 12 4C 63 76 AE 59 17 5A E4 *.~..X.. Lcv.Y.Z.
ServerOut Key [0000] 59 F2 5B 7F 66 8F 31 A0 A5 E4 A8 D8 2F BA 00 38 Y.[.f.1. ..../..8
We can now simply pass -ouat:smb2_seskey_list:<sesid>,<seskey> to
wireshark or tshark:
$ tshark -ouat:smb2_seskey_list:2648BFFD00000000,63D6CABC08C84AD245F6AE35AB4AB33B \
-Y smb2 -r capture.pcap -Tfields -e _ws.col.Info
Negotiate Protocol Response
Negotiate Protocol Request
Negotiate Protocol Response
Session Setup Request, NTLMSSP_NEGOTIATE
Session Setup Response, Error: STATUS_MORE_PROCESSING_REQUIRED, NTLMSSP_CHALLENGE
Session Setup Request, NTLMSSP_AUTH, User: WORKGROUP\aaptel
Session Setup Response
Tree Connect Request Tree: \\localhost\IPC$
Tree Connect Response
Decrypted SMB3;Ioctl Request FSCTL_DFS_GET_REFERRALS, File: \localhost\scratch
Decrypted SMB3;Ioctl Response, Error: STATUS_NOT_FOUND
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
Decrypted SMB3;Tree Connect Request Tree: \\localhost\scratch
Decrypted SMB3;Tree Connect Response
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
For more info on Wireshark decryption support see
https://wiki.samba.org/index.php/Wireshark_Decryption
Signed-off-by: Aurelien Aptel <aaptel@suse.com>
Reviewed-by: Noel Power <npower@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
Reviewed-by: David Disseldorp <ddiss@samba.org>
Autobuild-User(master): David Disseldorp <ddiss@samba.org>
Autobuild-Date(master): Sat Feb 9 21:43:25 CET 2019 on sn-devel-144
2019-02-08 14:13:25 +03:00
DEBUGADD ( 0 , ( " ServerOut Key " ) ) ;
2021-03-06 00:40:43 +03:00
dump_data ( 0 , x - > global - > encryption_key_blob . data ,
x - > global - > encryption_key_blob . length ) ;
libsmb,s3/smbd: dump SMB3+ session keys if debug parm is set
Use of previously added smb.conf global param.
Sample usage:
$ smbclient //localhost/scratch --option='debugencryption=yes' \
-e -mSMB3 -U aaptel%aaptel -c quit
debug encryption: dumping generated session keys
Session Id [0000] 26 48 BF FD 00 00 00 00 &H......
Session Key [0000] 63 D6 CA BC 08 C8 4A D2 45 F6 AE 35 AB 4A B3 3B c.....J. E..5.J.;
Signing Key [0000] 4E FE 35 92 AC 13 14 FC C9 17 62 B1 82 20 A4 12 N.5..... ..b.. ..
App Key [0000] A5 0F F4 8B 2F FB 0D FF F2 BF EE 39 E6 6D F5 0A ..../... ...9.m..
ServerIn Key [0000] 2A 02 7E E1 D3 58 D8 12 4C 63 76 AE 59 17 5A E4 *.~..X.. Lcv.Y.Z.
ServerOut Key [0000] 59 F2 5B 7F 66 8F 31 A0 A5 E4 A8 D8 2F BA 00 38 Y.[.f.1. ..../..8
We can now simply pass -ouat:smb2_seskey_list:<sesid>,<seskey> to
wireshark or tshark:
$ tshark -ouat:smb2_seskey_list:2648BFFD00000000,63D6CABC08C84AD245F6AE35AB4AB33B \
-Y smb2 -r capture.pcap -Tfields -e _ws.col.Info
Negotiate Protocol Response
Negotiate Protocol Request
Negotiate Protocol Response
Session Setup Request, NTLMSSP_NEGOTIATE
Session Setup Response, Error: STATUS_MORE_PROCESSING_REQUIRED, NTLMSSP_CHALLENGE
Session Setup Request, NTLMSSP_AUTH, User: WORKGROUP\aaptel
Session Setup Response
Tree Connect Request Tree: \\localhost\IPC$
Tree Connect Response
Decrypted SMB3;Ioctl Request FSCTL_DFS_GET_REFERRALS, File: \localhost\scratch
Decrypted SMB3;Ioctl Response, Error: STATUS_NOT_FOUND
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
Decrypted SMB3;Tree Connect Request Tree: \\localhost\scratch
Decrypted SMB3;Tree Connect Response
Decrypted SMB3;Tree Disconnect Request
Decrypted SMB3;Tree Disconnect Response
For more info on Wireshark decryption support see
https://wiki.samba.org/index.php/Wireshark_Decryption
Signed-off-by: Aurelien Aptel <aaptel@suse.com>
Reviewed-by: Noel Power <npower@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
Reviewed-by: David Disseldorp <ddiss@samba.org>
Autobuild-User(master): David Disseldorp <ddiss@samba.org>
Autobuild-Date(master): Sat Feb 9 21:43:25 CET 2019 on sn-devel-144
2019-02-08 14:13:25 +03:00
}
2021-03-06 00:40:43 +03:00
status = smb2_signing_key_copy ( x - > global - > channels ,
x - > global - > signing_key ,
& x - > global - > channels [ 0 ] . signing_key ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
2019-03-13 20:07:17 +03:00
}
2021-03-06 00:40:43 +03:00
x - > global - > channels [ 0 ] . signing_key_blob =
x - > global - > channels [ 0 ] . signing_key - > blob ;
x - > global - > channels [ 0 ] . signing_algo = x - > global - > signing_algo ;
x - > global - > channels [ 0 ] . encryption_cipher = x - > global - > encryption_cipher ;
2009-05-23 00:58:39 +04:00
2012-03-16 18:01:27 +04:00
data_blob_clear_free ( & session_info - > session_key ) ;
session_info - > session_key = data_blob_dup_talloc ( session_info ,
2021-03-06 00:40:43 +03:00
x - > global - > application_key_blob ) ;
2012-03-16 18:01:27 +04:00
if ( session_info - > session_key . data = = NULL ) {
return NT_STATUS_NO_MEMORY ;
}
2019-03-13 20:07:17 +03:00
talloc_keep_secret ( session_info - > session_key . data ) ;
2012-03-16 18:01:27 +04:00
2012-03-27 13:09:05 +04:00
smb2req - > sconn - > num_users + + ;
2009-05-27 20:33:45 +04:00
2012-03-27 13:09:05 +04:00
if ( security_session_user_level ( session_info , NULL ) > = SECURITY_USER ) {
2019-12-29 10:31:45 +03:00
session - > homes_snum =
2012-03-27 13:09:05 +04:00
register_homes_share ( session_info - > unix_info - > unix_name ) ;
2010-05-18 05:22:19 +04:00
}
2012-03-27 13:09:05 +04:00
set_current_user_info ( session_info - > unix_info - > sanitized_username ,
session_info - > unix_info - > unix_name ,
session_info - > info - > domain_name ) ;
2012-01-25 08:22:38 +04:00
reload_services ( smb2req - > sconn , conn_snum_used , true ) ;
2010-05-18 05:22:19 +04:00
2012-03-27 13:09:05 +04:00
session - > status = NT_STATUS_OK ;
2015-07-29 18:07:29 +03:00
session - > global - > auth_session_info = talloc_move ( session - > global ,
& session_info ) ;
2012-03-27 13:09:05 +04:00
session - > global - > auth_session_info_seqnum + = 1 ;
2015-07-29 18:42:55 +03:00
for ( i = 0 ; i < session - > global - > num_channels ; i + + ) {
struct smbXsrv_channel_global0 * _c =
& session - > global - > channels [ i ] ;
_c - > auth_session_info_seqnum =
session - > global - > auth_session_info_seqnum ;
}
2014-06-12 11:49:28 +04:00
session - > global - > auth_time = timeval_to_nttime ( & smb2req - > request_time ) ;
2015-07-29 17:48:55 +03:00
session - > global - > expiration_time = gensec_expire_time ( auth - > gensec ) ;
2012-03-16 18:01:27 +04:00
2012-08-27 13:03:25 +04:00
if ( ! session_claim ( session ) ) {
DEBUG ( 1 , ( " smb2: Failed to claim session "
" for vuid=%llu \n " ,
2019-12-29 16:33:00 +03:00
( unsigned long long ) session - > global - > session_wire_id ) ) ;
2012-08-27 13:03:25 +04:00
return NT_STATUS_LOGON_FAILURE ;
}
2015-07-29 17:48:55 +03:00
TALLOC_FREE ( auth ) ;
2012-03-27 13:09:05 +04:00
status = smbXsrv_session_update ( session ) ;
2012-03-16 18:01:27 +04:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " smb2: Failed to update session for vuid=%llu - %s \n " ,
2019-12-29 16:33:00 +03:00
( unsigned long long ) session - > global - > session_wire_id ,
2012-03-16 18:01:27 +04:00
nt_errstr ( status ) ) ) ;
return NT_STATUS_LOGON_FAILURE ;
}
2009-05-23 00:58:39 +04:00
/*
* we attach the session to the request
* so that the response can be signed
*/
2011-09-21 05:56:30 +04:00
if ( ! guest ) {
2010-05-18 00:05:22 +04:00
smb2req - > do_signing = true ;
}
global_client_caps | = ( CAP_LEVEL_II_OPLOCKS | CAP_STATUS32 ) ;
2010-05-18 05:22:19 +04:00
2012-03-27 13:09:05 +04:00
* out_session_id = session - > global - > session_wire_id ;
2017-06-16 00:01:18 +03:00
smb2req - > last_session_id = session - > global - > session_wire_id ;
2010-05-18 05:22:19 +04:00
2010-05-18 00:05:22 +04:00
return NT_STATUS_OK ;
}
2012-05-14 16:24:08 +04:00
static NTSTATUS smbd_smb2_reauth_generic_return ( struct smbXsrv_session * session ,
2015-07-29 17:48:55 +03:00
struct smbXsrv_session_auth0 * * _auth ,
2012-05-14 16:24:08 +04:00
struct smbd_smb2_request * smb2req ,
2012-05-17 02:30:43 +04:00
struct auth_session_info * session_info ,
2012-05-14 16:24:08 +04:00
uint16_t * out_session_flags ,
uint64_t * out_session_id )
{
NTSTATUS status ;
struct smbXsrv_session * x = session ;
2015-07-29 17:48:55 +03:00
struct smbXsrv_session_auth0 * auth = * _auth ;
2015-09-09 16:08:56 +03:00
struct smbXsrv_connection * xconn = smb2req - > xconn ;
2015-07-29 18:44:37 +03:00
size_t i ;
2015-07-29 17:48:55 +03:00
* _auth = NULL ;
2012-05-14 16:24:08 +04:00
data_blob_clear_free ( & session_info - > session_key ) ;
session_info - > session_key = data_blob_dup_talloc ( session_info ,
2021-03-06 00:40:43 +03:00
x - > global - > application_key_blob ) ;
2012-05-14 16:24:08 +04:00
if ( session_info - > session_key . data = = NULL ) {
return NT_STATUS_NO_MEMORY ;
}
2019-03-13 20:07:17 +03:00
talloc_keep_secret ( session_info - > session_key . data ) ;
2012-05-14 16:24:08 +04:00
2019-12-29 10:31:45 +03:00
session - > homes_snum =
2012-05-14 16:24:08 +04:00
register_homes_share ( session_info - > unix_info - > unix_name ) ;
set_current_user_info ( session_info - > unix_info - > sanitized_username ,
session_info - > unix_info - > unix_name ,
session_info - > info - > domain_name ) ;
reload_services ( smb2req - > sconn , conn_snum_used , true ) ;
2018-11-08 19:31:41 +03:00
if ( security_session_user_level ( session_info , NULL ) > = SECURITY_USER ) {
smb2req - > do_signing = true ;
}
2012-05-14 16:24:08 +04:00
session - > status = NT_STATUS_OK ;
TALLOC_FREE ( session - > global - > auth_session_info ) ;
2015-07-29 18:07:29 +03:00
session - > global - > auth_session_info = talloc_move ( session - > global ,
& session_info ) ;
2012-05-14 16:24:08 +04:00
session - > global - > auth_session_info_seqnum + = 1 ;
2015-07-29 18:44:37 +03:00
for ( i = 0 ; i < session - > global - > num_channels ; i + + ) {
struct smbXsrv_channel_global0 * _c =
& session - > global - > channels [ i ] ;
_c - > auth_session_info_seqnum =
session - > global - > auth_session_info_seqnum ;
}
2014-06-12 11:49:28 +04:00
session - > global - > auth_time = timeval_to_nttime ( & smb2req - > request_time ) ;
2015-07-29 17:48:55 +03:00
session - > global - > expiration_time = gensec_expire_time ( auth - > gensec ) ;
2012-05-14 16:24:08 +04:00
2015-07-29 17:48:55 +03:00
TALLOC_FREE ( auth ) ;
2012-05-14 16:24:08 +04:00
status = smbXsrv_session_update ( session ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " smb2: Failed to update session for vuid=%llu - %s \n " ,
2019-12-29 16:33:00 +03:00
( unsigned long long ) session - > global - > session_wire_id ,
2012-05-14 16:24:08 +04:00
nt_errstr ( status ) ) ) ;
return NT_STATUS_LOGON_FAILURE ;
}
2019-12-29 16:33:00 +03:00
conn_clear_vuid_caches ( xconn - > client - > sconn ,
session - > global - > session_wire_id ) ;
2012-05-14 16:24:08 +04:00
* out_session_id = session - > global - > session_wire_id ;
return NT_STATUS_OK ;
}
2015-07-29 18:05:52 +03:00
static NTSTATUS smbd_smb2_bind_auth_return ( struct smbXsrv_session * session ,
struct smbXsrv_session_auth0 * * _auth ,
struct smbd_smb2_request * smb2req ,
struct auth_session_info * session_info ,
uint16_t * out_session_flags ,
uint64_t * out_session_id )
{
NTSTATUS status ;
struct smbXsrv_session * x = session ;
struct smbXsrv_session_auth0 * auth = * _auth ;
struct smbXsrv_connection * xconn = smb2req - > xconn ;
struct smbXsrv_channel_global0 * c = NULL ;
size_t i ;
2021-03-05 20:24:27 +03:00
struct smb2_signing_derivations derivations = {
. signing = NULL ,
2015-07-29 18:05:52 +03:00
} ;
2021-03-05 20:24:27 +03:00
DATA_BLOB preauth_hash = data_blob_null ;
2015-07-29 18:05:52 +03:00
bool ok ;
* _auth = NULL ;
2020-11-11 17:14:12 +03:00
if ( xconn - > protocol > = PROTOCOL_SMB3_11 ) {
2015-07-29 18:05:52 +03:00
struct smbXsrv_preauth * preauth ;
2018-10-22 18:48:43 +03:00
gnutls_hash_hd_t hash_hnd = NULL ;
int rc ;
2015-07-29 18:05:52 +03:00
preauth = talloc_move ( smb2req , & auth - > preauth ) ;
2018-10-22 18:48:43 +03:00
rc = gnutls_hash_init ( & hash_hnd , GNUTLS_DIG_SHA512 ) ;
if ( rc < 0 ) {
2019-06-11 15:44:10 +03:00
return gnutls_error_to_ntstatus ( rc , NT_STATUS_HASH_NOT_SUPPORTED ) ;
2018-10-22 18:48:43 +03:00
}
rc = gnutls_hash ( hash_hnd ,
preauth - > sha512_value ,
sizeof ( preauth - > sha512_value ) ) ;
if ( rc < 0 ) {
gnutls_hash_deinit ( hash_hnd , NULL ) ;
2019-06-11 15:44:10 +03:00
return gnutls_error_to_ntstatus ( rc , NT_STATUS_HASH_NOT_SUPPORTED ) ;
2018-10-22 18:48:43 +03:00
}
2015-07-29 18:05:52 +03:00
for ( i = 1 ; i < smb2req - > in . vector_count ; i + + ) {
2018-10-22 18:48:43 +03:00
rc = gnutls_hash ( hash_hnd ,
smb2req - > in . vector [ i ] . iov_base ,
smb2req - > in . vector [ i ] . iov_len ) ;
if ( rc < 0 ) {
gnutls_hash_deinit ( hash_hnd , NULL ) ;
2019-06-11 15:44:10 +03:00
return gnutls_error_to_ntstatus ( rc , NT_STATUS_HASH_NOT_SUPPORTED ) ;
2018-10-22 18:48:43 +03:00
}
2015-07-29 18:05:52 +03:00
}
2018-10-22 18:48:43 +03:00
gnutls_hash_deinit ( hash_hnd , preauth - > sha512_value ) ;
2015-07-29 18:05:52 +03:00
2021-03-05 20:24:27 +03:00
preauth_hash = data_blob_const ( preauth - > sha512_value ,
2015-07-29 18:05:52 +03:00
sizeof ( preauth - > sha512_value ) ) ;
}
2021-03-05 20:24:27 +03:00
smb2_signing_derivations_fill_const_stack ( & derivations ,
xconn - > protocol ,
preauth_hash ) ;
2015-07-29 18:05:52 +03:00
status = smbXsrv_session_find_channel ( session , xconn , & c ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
}
ok = security_token_is_sid ( session_info - > security_token ,
& x - > global - > auth_session_info - > security_token - > sids [ 0 ] ) ;
if ( ! ok ) {
2021-03-10 12:58:10 +03:00
return NT_STATUS_ACCESS_DENIED ;
2015-07-29 18:05:52 +03:00
}
if ( session_info - > session_key . length = = 0 ) {
/* See [MS-SMB2] 3.3.5.2.4 for the return code. */
return NT_STATUS_NOT_SUPPORTED ;
}
2021-03-06 00:40:43 +03:00
c - > signing_algo = xconn - > smb2 . server . sign_algo ;
c - > encryption_cipher = xconn - > smb2 . server . cipher ;
2015-07-29 18:05:52 +03:00
2021-03-06 00:40:43 +03:00
status = smb2_signing_key_sign_create ( x - > global - > channels ,
c - > signing_algo ,
& session_info - > session_key ,
derivations . signing ,
& c - > signing_key ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
2015-07-29 18:05:52 +03:00
}
2021-03-06 00:40:43 +03:00
c - > signing_key_blob = c - > signing_key - > blob ;
2015-07-29 18:05:52 +03:00
TALLOC_FREE ( auth ) ;
status = smbXsrv_session_update ( session ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " smb2: Failed to update session for vuid=%llu - %s \n " ,
2019-12-29 16:33:00 +03:00
( unsigned long long ) session - > global - > session_wire_id ,
2015-07-29 18:05:52 +03:00
nt_errstr ( status ) ) ) ;
return NT_STATUS_LOGON_FAILURE ;
}
2023-06-30 19:05:51 +03:00
/*
* Remember we got one authenticated session on the connection
* in order to allow SMB3 decryption to happen
*/
xconn - > smb2 . got_authenticated_session = true ;
2015-07-29 18:05:52 +03:00
* out_session_id = session - > global - > session_wire_id ;
return NT_STATUS_OK ;
}
2012-05-12 12:16:41 +04:00
struct smbd_smb2_session_setup_state {
struct tevent_context * ev ;
struct smbd_smb2_request * smb2req ;
uint64_t in_session_id ;
uint8_t in_flags ;
uint8_t in_security_mode ;
uint64_t in_previous_session_id ;
DATA_BLOB in_security_buffer ;
2012-05-16 17:56:15 +04:00
struct smbXsrv_session * session ;
2015-07-29 17:48:55 +03:00
struct smbXsrv_session_auth0 * auth ;
2012-05-17 02:30:43 +04:00
struct auth_session_info * session_info ;
2012-05-12 12:16:41 +04:00
uint16_t out_session_flags ;
DATA_BLOB out_security_buffer ;
uint64_t out_session_id ;
} ;
2012-05-17 02:30:43 +04:00
static void smbd_smb2_session_setup_gensec_done ( struct tevent_req * subreq ) ;
2012-05-17 02:32:40 +04:00
static void smbd_smb2_session_setup_previous_done ( struct tevent_req * subreq ) ;
2014-06-12 11:19:29 +04:00
static void smbd_smb2_session_setup_auth_return ( struct tevent_req * req ) ;
2012-05-16 18:05:48 +04:00
2012-05-12 12:16:41 +04:00
static struct tevent_req * smbd_smb2_session_setup_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct smbd_smb2_request * smb2req ,
uint64_t in_session_id ,
uint8_t in_flags ,
uint8_t in_security_mode ,
uint64_t in_previous_session_id ,
DATA_BLOB in_security_buffer )
{
struct tevent_req * req ;
struct smbd_smb2_session_setup_state * state ;
NTSTATUS status ;
2012-05-16 17:56:15 +04:00
NTTIME now = timeval_to_nttime ( & smb2req - > request_time ) ;
2012-05-16 18:05:48 +04:00
struct tevent_req * subreq ;
2015-07-29 12:19:55 +03:00
struct smbXsrv_channel_global0 * c = NULL ;
2016-01-21 20:59:34 +03:00
enum security_user_level seclvl ;
2012-05-12 12:16:41 +04:00
req = tevent_req_create ( mem_ctx , & state ,
struct smbd_smb2_session_setup_state ) ;
if ( req = = NULL ) {
return NULL ;
}
state - > ev = ev ;
state - > smb2req = smb2req ;
state - > in_session_id = in_session_id ;
state - > in_flags = in_flags ;
state - > in_security_mode = in_security_mode ;
state - > in_previous_session_id = in_previous_session_id ;
state - > in_security_buffer = in_security_buffer ;
2012-07-26 02:11:13 +04:00
if ( in_flags & SMB2_SESSION_FLAG_BINDING ) {
2021-03-08 04:05:55 +03:00
if ( in_session_id = = 0 ) {
tevent_req_nterror ( req , NT_STATUS_INVALID_PARAMETER ) ;
2012-07-26 02:11:13 +04:00
return tevent_req_post ( req , ev ) ;
}
2021-03-08 04:05:55 +03:00
if ( smb2req - > session = = NULL ) {
tevent_req_nterror ( req , NT_STATUS_USER_SESSION_DELETED ) ;
2016-01-21 20:59:34 +03:00
return tevent_req_post ( req , ev ) ;
}
2021-03-08 04:05:55 +03:00
if ( ( smb2req - > session - > global - > signing_algo > = SMB2_SIGNING_AES128_GMAC ) & &
( smb2req - > xconn - > smb2 . server . sign_algo ! = smb2req - > session - > global - > signing_algo ) )
{
tevent_req_nterror ( req , NT_STATUS_REQUEST_OUT_OF_SEQUENCE ) ;
return tevent_req_post ( req , ev ) ;
}
if ( ( smb2req - > xconn - > smb2 . server . sign_algo > = SMB2_SIGNING_AES128_GMAC ) & &
( smb2req - > session - > global - > signing_algo ! = smb2req - > xconn - > smb2 . server . sign_algo ) )
{
tevent_req_nterror ( req , NT_STATUS_NOT_SUPPORTED ) ;
2016-01-21 20:59:34 +03:00
return tevent_req_post ( req , ev ) ;
}
2021-03-08 04:05:55 +03:00
if ( smb2req - > xconn - > protocol < PROTOCOL_SMB3_00 ) {
tevent_req_nterror ( req , NT_STATUS_REQUEST_NOT_ACCEPTED ) ;
return tevent_req_post ( req , ev ) ;
}
if ( ! smb2req - > xconn - > client - > server_multi_channel_enabled ) {
tevent_req_nterror ( req , NT_STATUS_REQUEST_NOT_ACCEPTED ) ;
2016-01-21 20:59:34 +03:00
return tevent_req_post ( req , ev ) ;
}
if ( ! smb2req - > do_signing ) {
tevent_req_nterror ( req , NT_STATUS_INVALID_PARAMETER ) ;
return tevent_req_post ( req , ev ) ;
}
2021-03-09 19:03:27 +03:00
if ( smb2req - > session - > global - > connection_dialect
! = smb2req - > xconn - > smb2 . server . dialect )
{
tevent_req_nterror ( req , NT_STATUS_INVALID_PARAMETER ) ;
return tevent_req_post ( req , ev ) ;
}
2021-03-08 04:05:55 +03:00
if ( smb2req - > session - > global - > encryption_cipher
! = smb2req - > xconn - > smb2 . server . cipher )
2021-03-10 01:54:04 +03:00
{
tevent_req_nterror ( req , NT_STATUS_INVALID_PARAMETER ) ;
return tevent_req_post ( req , ev ) ;
}
2021-03-08 04:05:55 +03:00
status = smb2req - > session - > status ;
if ( NT_STATUS_EQUAL ( status , NT_STATUS_BAD_LOGON_SESSION_STATE ) ) {
/*
* This comes from smb2srv_session_lookup_global ( ) .
2023-12-22 23:50:57 +03:00
* And it ' s a cross node / cross smbd session bind ,
* which can ' t work in our architecture .
*
* Returning NT_STATUS_REQUEST_NOT_ACCEPTED is better
* than NT_STATUS_USER_SESSION_DELETED in order to
* avoid a completely new session .
2021-03-08 04:05:55 +03:00
*/
2023-12-22 23:50:57 +03:00
tevent_req_nterror ( req , NT_STATUS_REQUEST_NOT_ACCEPTED ) ;
2021-03-10 01:54:04 +03:00
return tevent_req_post ( req , ev ) ;
}
2016-01-21 20:59:34 +03:00
status = smbXsrv_session_find_channel ( smb2req - > session ,
smb2req - > xconn ,
& c ) ;
if ( NT_STATUS_IS_OK ( status ) ) {
2019-03-13 20:07:17 +03:00
if ( ! smb2_signing_key_valid ( c - > signing_key ) ) {
2016-01-21 20:59:34 +03:00
goto auth ;
}
tevent_req_nterror ( req , NT_STATUS_REQUEST_NOT_ACCEPTED ) ;
return tevent_req_post ( req , ev ) ;
}
seclvl = security_session_user_level (
smb2req - > session - > global - > auth_session_info ,
NULL ) ;
if ( seclvl < SECURITY_USER ) {
tevent_req_nterror ( req , NT_STATUS_NOT_SUPPORTED ) ;
return tevent_req_post ( req , ev ) ;
}
status = smbXsrv_session_add_channel ( smb2req - > session ,
smb2req - > xconn ,
2019-10-04 11:02:56 +03:00
now ,
2016-01-21 20:59:34 +03:00
& c ) ;
2022-09-01 13:30:57 +03:00
if ( tevent_req_nterror ( req , status ) ) {
2016-01-21 20:59:34 +03:00
return tevent_req_post ( req , ev ) ;
}
status = smbXsrv_session_update ( smb2req - > session ) ;
2022-09-01 13:30:57 +03:00
if ( tevent_req_nterror ( req , status ) ) {
2016-01-21 20:59:34 +03:00
return tevent_req_post ( req , ev ) ;
}
2012-07-26 02:11:13 +04:00
}
2016-01-21 20:59:34 +03:00
auth :
2012-05-16 17:56:15 +04:00
if ( state - > in_session_id = = 0 ) {
/* create a new session */
2014-06-12 10:38:48 +04:00
status = smbXsrv_session_create ( state - > smb2req - > xconn ,
2012-05-16 17:56:15 +04:00
now , & state - > session ) ;
if ( tevent_req_nterror ( req , status ) ) {
return tevent_req_post ( req , ev ) ;
}
2015-05-02 17:27:26 +03:00
smb2req - > session = state - > session ;
2012-05-16 17:56:15 +04:00
} else {
2014-09-15 02:10:11 +04:00
if ( smb2req - > session = = NULL ) {
tevent_req_nterror ( req , NT_STATUS_USER_SESSION_DELETED ) ;
return tevent_req_post ( req , ev ) ;
}
state - > session = smb2req - > session ;
status = state - > session - > status ;
2021-02-25 19:58:48 +03:00
if ( NT_STATUS_EQUAL ( status , NT_STATUS_BAD_LOGON_SESSION_STATE ) ) {
/*
* This comes from smb2srv_session_lookup_global ( ) .
*/
tevent_req_nterror ( req , NT_STATUS_USER_SESSION_DELETED ) ;
return tevent_req_post ( req , ev ) ;
}
2012-05-16 17:56:15 +04:00
if ( NT_STATUS_EQUAL ( status , NT_STATUS_NETWORK_SESSION_EXPIRED ) ) {
status = NT_STATUS_OK ;
}
2015-07-29 17:48:55 +03:00
if ( NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED ) ) {
status = NT_STATUS_OK ;
2012-05-16 17:56:15 +04:00
}
2015-07-29 17:48:55 +03:00
if ( tevent_req_nterror ( req , status ) ) {
2012-05-16 17:56:15 +04:00
return tevent_req_post ( req , ev ) ;
}
}
2015-07-29 12:19:55 +03:00
status = smbXsrv_session_find_channel ( smb2req - > session ,
smb2req - > xconn , & c ) ;
2022-09-01 13:30:57 +03:00
if ( tevent_req_nterror ( req , status ) ) {
2015-07-29 12:19:55 +03:00
return tevent_req_post ( req , ev ) ;
}
2021-03-09 19:11:04 +03:00
if ( ! ( in_flags & SMB2_SESSION_FLAG_BINDING ) ) {
state - > session - > status = NT_STATUS_MORE_PROCESSING_REQUIRED ;
}
2015-07-29 17:48:55 +03:00
status = smbXsrv_session_find_auth ( state - > session , smb2req - > xconn ,
now , & state - > auth ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
status = smbXsrv_session_create_auth ( state - > session ,
smb2req - > xconn , now ,
in_flags , in_security_mode ,
& state - > auth ) ;
if ( tevent_req_nterror ( req , status ) ) {
return tevent_req_post ( req , ev ) ;
}
}
if ( state - > auth - > gensec = = NULL ) {
status = auth_generic_prepare ( state - > auth ,
2014-06-12 12:47:51 +04:00
state - > smb2req - > xconn - > remote_address ,
2017-02-23 04:31:52 +03:00
state - > smb2req - > xconn - > local_address ,
2017-02-20 04:17:34 +03:00
" SMB2 " ,
2015-07-29 17:48:55 +03:00
& state - > auth - > gensec ) ;
2012-05-16 17:56:15 +04:00
if ( tevent_req_nterror ( req , status ) ) {
return tevent_req_post ( req , ev ) ;
}
2015-07-29 17:48:55 +03:00
gensec_want_feature ( state - > auth - > gensec , GENSEC_FEATURE_SESSION_KEY ) ;
gensec_want_feature ( state - > auth - > gensec , GENSEC_FEATURE_UNIX_TOKEN ) ;
2017-03-06 04:10:17 +03:00
gensec_want_feature ( state - > auth - > gensec , GENSEC_FEATURE_SMB_TRANSPORT ) ;
2012-05-16 17:56:15 +04:00
2015-07-29 17:48:55 +03:00
status = gensec_start_mech_by_oid ( state - > auth - > gensec ,
2012-05-16 17:56:15 +04:00
GENSEC_OID_SPNEGO ) ;
if ( tevent_req_nterror ( req , status ) ) {
return tevent_req_post ( req , ev ) ;
}
}
2015-07-29 17:48:55 +03:00
status = smbXsrv_session_update ( state - > session ) ;
if ( tevent_req_nterror ( req , status ) ) {
return tevent_req_post ( req , ev ) ;
}
2012-05-16 17:56:15 +04:00
become_root ( ) ;
2012-05-16 18:05:48 +04:00
subreq = gensec_update_send ( state , state - > ev ,
2015-07-29 17:48:55 +03:00
state - > auth - > gensec ,
2012-05-16 18:05:48 +04:00
state - > in_security_buffer ) ;
2012-05-16 17:56:15 +04:00
unbecome_root ( ) ;
2012-05-16 18:05:48 +04:00
if ( tevent_req_nomem ( subreq , req ) ) {
return tevent_req_post ( req , ev ) ;
}
2012-05-17 02:30:43 +04:00
tevent_req_set_callback ( subreq , smbd_smb2_session_setup_gensec_done , req ) ;
2012-05-16 18:05:48 +04:00
return req ;
}
2012-05-17 02:30:43 +04:00
static void smbd_smb2_session_setup_gensec_done ( struct tevent_req * subreq )
2012-05-16 18:05:48 +04:00
{
struct tevent_req * req =
tevent_req_callback_data ( subreq ,
struct tevent_req ) ;
struct smbd_smb2_session_setup_state * state =
tevent_req_data ( req ,
struct smbd_smb2_session_setup_state ) ;
NTSTATUS status ;
become_root ( ) ;
status = gensec_update_recv ( subreq , state ,
& state - > out_security_buffer ) ;
unbecome_root ( ) ;
TALLOC_FREE ( subreq ) ;
2012-05-16 17:56:15 +04:00
if ( ! NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED ) & &
! NT_STATUS_IS_OK ( status ) ) {
tevent_req_nterror ( req , status ) ;
2012-05-16 18:05:48 +04:00
return ;
2012-05-16 17:56:15 +04:00
}
if ( NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED ) ) {
state - > out_session_id = state - > session - > global - > session_wire_id ;
2015-07-29 17:48:55 +03:00
state - > smb2req - > preauth = state - > auth - > preauth ;
2012-05-16 17:56:15 +04:00
tevent_req_nterror ( req , status ) ;
2012-05-16 18:05:48 +04:00
return ;
2012-05-16 17:56:15 +04:00
}
2015-07-29 17:48:55 +03:00
status = gensec_session_info ( state - > auth - > gensec ,
2015-07-29 18:07:29 +03:00
state ,
2012-05-17 02:30:43 +04:00
& state - > session_info ) ;
if ( tevent_req_nterror ( req , status ) ) {
return ;
}
2012-05-17 02:32:40 +04:00
if ( ( state - > in_previous_session_id ! = 0 ) & &
( state - > session - > global - > session_wire_id ! =
state - > in_previous_session_id ) )
{
subreq = smb2srv_session_close_previous_send ( state , state - > ev ,
2014-06-12 12:47:51 +04:00
state - > smb2req - > xconn ,
2012-05-17 02:32:40 +04:00
state - > session_info ,
state - > in_previous_session_id ,
state - > session - > global - > session_wire_id ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return ;
}
tevent_req_set_callback ( subreq ,
smbd_smb2_session_setup_previous_done ,
req ) ;
return ;
}
2014-06-12 11:19:29 +04:00
smbd_smb2_session_setup_auth_return ( req ) ;
2012-05-17 02:32:40 +04:00
}
static void smbd_smb2_session_setup_previous_done ( struct tevent_req * subreq )
{
struct tevent_req * req =
tevent_req_callback_data ( subreq ,
struct tevent_req ) ;
NTSTATUS status ;
status = smb2srv_session_close_previous_recv ( subreq ) ;
TALLOC_FREE ( subreq ) ;
if ( tevent_req_nterror ( req , status ) ) {
return ;
}
2014-06-12 11:19:29 +04:00
smbd_smb2_session_setup_auth_return ( req ) ;
}
static void smbd_smb2_session_setup_auth_return ( struct tevent_req * req )
{
struct smbd_smb2_session_setup_state * state =
tevent_req_data ( req ,
struct smbd_smb2_session_setup_state ) ;
NTSTATUS status ;
2015-07-29 18:05:52 +03:00
if ( state - > in_flags & SMB2_SESSION_FLAG_BINDING ) {
status = smbd_smb2_bind_auth_return ( state - > session ,
& state - > auth ,
state - > smb2req ,
state - > session_info ,
& state - > out_session_flags ,
& state - > out_session_id ) ;
if ( tevent_req_nterror ( req , status ) ) {
return ;
}
tevent_req_done ( req ) ;
return ;
}
2012-05-16 17:56:15 +04:00
if ( state - > session - > global - > auth_session_info ! = NULL ) {
status = smbd_smb2_reauth_generic_return ( state - > session ,
2015-07-29 17:48:55 +03:00
& state - > auth ,
2012-05-16 17:56:15 +04:00
state - > smb2req ,
2012-05-17 02:30:43 +04:00
state - > session_info ,
2012-05-16 17:56:15 +04:00
& state - > out_session_flags ,
& state - > out_session_id ) ;
if ( tevent_req_nterror ( req , status ) ) {
2012-05-16 18:05:48 +04:00
return ;
2012-05-16 17:56:15 +04:00
}
tevent_req_done ( req ) ;
2012-05-16 18:05:48 +04:00
return ;
2012-05-12 12:16:41 +04:00
}
2012-05-16 17:56:15 +04:00
status = smbd_smb2_auth_generic_return ( state - > session ,
2015-07-29 17:48:55 +03:00
& state - > auth ,
2012-05-16 17:56:15 +04:00
state - > smb2req ,
state - > in_security_mode ,
2012-05-17 02:30:43 +04:00
state - > session_info ,
2012-05-16 17:56:15 +04:00
& state - > out_session_flags ,
& state - > out_session_id ) ;
2012-05-12 12:16:41 +04:00
if ( tevent_req_nterror ( req , status ) ) {
2012-05-16 18:05:48 +04:00
return ;
2012-05-12 12:16:41 +04:00
}
tevent_req_done ( req ) ;
2012-05-16 18:05:48 +04:00
return ;
2012-05-12 12:16:41 +04:00
}
static NTSTATUS smbd_smb2_session_setup_recv ( struct tevent_req * req ,
uint16_t * out_session_flags ,
TALLOC_CTX * mem_ctx ,
DATA_BLOB * out_security_buffer ,
uint64_t * out_session_id )
{
struct smbd_smb2_session_setup_state * state =
tevent_req_data ( req ,
struct smbd_smb2_session_setup_state ) ;
NTSTATUS status ;
2015-05-02 17:21:25 +03:00
if ( tevent_req_is_nterror ( req , & status ) ) {
if ( ! NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED ) ) {
tevent_req_received ( req ) ;
return nt_status_squash ( status ) ;
}
} else {
status = NT_STATUS_OK ;
}
* out_session_flags = state - > out_session_flags ;
* out_security_buffer = state - > out_security_buffer ;
* out_session_id = state - > out_session_id ;
talloc_steal ( mem_ctx , out_security_buffer - > data ) ;
tevent_req_received ( req ) ;
return status ;
}
struct smbd_smb2_session_setup_wrap_state {
struct tevent_context * ev ;
struct smbd_smb2_request * smb2req ;
uint64_t in_session_id ;
uint8_t in_flags ;
uint8_t in_security_mode ;
uint64_t in_previous_session_id ;
DATA_BLOB in_security_buffer ;
uint16_t out_session_flags ;
DATA_BLOB out_security_buffer ;
uint64_t out_session_id ;
NTSTATUS error ;
} ;
static void smbd_smb2_session_setup_wrap_setup_done ( struct tevent_req * subreq ) ;
static void smbd_smb2_session_setup_wrap_shutdown_done ( struct tevent_req * subreq ) ;
static struct tevent_req * smbd_smb2_session_setup_wrap_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct smbd_smb2_request * smb2req ,
uint64_t in_session_id ,
uint8_t in_flags ,
uint8_t in_security_mode ,
uint64_t in_previous_session_id ,
DATA_BLOB in_security_buffer )
{
struct tevent_req * req ;
struct smbd_smb2_session_setup_wrap_state * state ;
struct tevent_req * subreq ;
req = tevent_req_create ( mem_ctx , & state ,
struct smbd_smb2_session_setup_wrap_state ) ;
if ( req = = NULL ) {
return NULL ;
}
state - > ev = ev ;
state - > smb2req = smb2req ;
state - > in_session_id = in_session_id ;
state - > in_flags = in_flags ;
state - > in_security_mode = in_security_mode ;
state - > in_previous_session_id = in_previous_session_id ;
state - > in_security_buffer = in_security_buffer ;
subreq = smbd_smb2_session_setup_send ( state , state - > ev ,
state - > smb2req ,
state - > in_session_id ,
state - > in_flags ,
state - > in_security_mode ,
state - > in_previous_session_id ,
state - > in_security_buffer ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return tevent_req_post ( req , ev ) ;
}
tevent_req_set_callback ( subreq ,
smbd_smb2_session_setup_wrap_setup_done , req ) ;
return req ;
}
static void smbd_smb2_session_setup_wrap_setup_done ( struct tevent_req * subreq )
{
struct tevent_req * req =
tevent_req_callback_data ( subreq ,
struct tevent_req ) ;
struct smbd_smb2_session_setup_wrap_state * state =
tevent_req_data ( req ,
struct smbd_smb2_session_setup_wrap_state ) ;
NTSTATUS status ;
status = smbd_smb2_session_setup_recv ( subreq ,
& state - > out_session_flags ,
state ,
& state - > out_security_buffer ,
& state - > out_session_id ) ;
TALLOC_FREE ( subreq ) ;
if ( NT_STATUS_IS_OK ( status ) ) {
tevent_req_done ( req ) ;
return ;
}
if ( NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED ) ) {
tevent_req_nterror ( req , status ) ;
return ;
}
if ( state - > smb2req - > session = = NULL ) {
tevent_req_nterror ( req , status ) ;
return ;
}
state - > error = status ;
2021-03-09 18:15:49 +03:00
if ( state - > in_flags & SMB2_SESSION_FLAG_BINDING ) {
status = smbXsrv_session_remove_channel ( state - > smb2req - > session ,
state - > smb2req - > xconn ) ;
if ( tevent_req_nterror ( req , status ) ) {
return ;
}
tevent_req_nterror ( req , state - > error ) ;
return ;
}
if ( NT_STATUS_EQUAL ( state - > error , NT_STATUS_USER_SESSION_DELETED ) ) {
tevent_req_nterror ( req , state - > error ) ;
return ;
}
2015-05-02 17:21:25 +03:00
subreq = smb2srv_session_shutdown_send ( state , state - > ev ,
state - > smb2req - > session ,
state - > smb2req ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return ;
}
tevent_req_set_callback ( subreq ,
smbd_smb2_session_setup_wrap_shutdown_done ,
req ) ;
}
static void smbd_smb2_session_setup_wrap_shutdown_done ( struct tevent_req * subreq )
{
struct tevent_req * req =
tevent_req_callback_data ( subreq ,
struct tevent_req ) ;
struct smbd_smb2_session_setup_wrap_state * state =
tevent_req_data ( req ,
struct smbd_smb2_session_setup_wrap_state ) ;
NTSTATUS status ;
status = smb2srv_session_shutdown_recv ( subreq ) ;
TALLOC_FREE ( subreq ) ;
if ( tevent_req_nterror ( req , status ) ) {
return ;
}
/*
* we may need to sign the response , so we need to keep
* the session until the response is sent to the wire .
*/
talloc_steal ( state - > smb2req , state - > smb2req - > session ) ;
tevent_req_nterror ( req , state - > error ) ;
}
static NTSTATUS smbd_smb2_session_setup_wrap_recv ( struct tevent_req * req ,
uint16_t * out_session_flags ,
TALLOC_CTX * mem_ctx ,
DATA_BLOB * out_security_buffer ,
uint64_t * out_session_id )
{
struct smbd_smb2_session_setup_wrap_state * state =
tevent_req_data ( req ,
struct smbd_smb2_session_setup_wrap_state ) ;
NTSTATUS status ;
2012-05-12 12:16:41 +04:00
if ( tevent_req_is_nterror ( req , & status ) ) {
if ( ! NT_STATUS_EQUAL ( status , NT_STATUS_MORE_PROCESSING_REQUIRED ) ) {
tevent_req_received ( req ) ;
2012-05-16 17:32:08 +04:00
return nt_status_squash ( status ) ;
2012-05-12 12:16:41 +04:00
}
} else {
status = NT_STATUS_OK ;
}
* out_session_flags = state - > out_session_flags ;
* out_security_buffer = state - > out_security_buffer ;
* out_session_id = state - > out_session_id ;
talloc_steal ( mem_ctx , out_security_buffer - > data ) ;
tevent_req_received ( req ) ;
return status ;
}
2014-03-10 12:53:18 +04:00
static struct tevent_req * smbd_smb2_logoff_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct smbd_smb2_request * smb2req ) ;
static NTSTATUS smbd_smb2_logoff_recv ( struct tevent_req * req ) ;
static void smbd_smb2_request_logoff_done ( struct tevent_req * subreq ) ;
2009-05-15 13:40:19 +04:00
NTSTATUS smbd_smb2_request_process_logoff ( struct smbd_smb2_request * req )
{
2011-09-06 16:01:43 +04:00
NTSTATUS status ;
2014-03-10 12:53:18 +04:00
struct tevent_req * subreq = NULL ;
2009-05-15 13:40:19 +04:00
2011-09-06 16:01:43 +04:00
status = smbd_smb2_request_verify_sizes ( req , 0x04 ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return smbd_smb2_request_error ( req , status ) ;
2009-05-15 13:40:19 +04:00
}
2018-12-27 17:18:55 +03:00
subreq = smbd_smb2_logoff_send ( req , req - > sconn - > ev_ctx , req ) ;
2014-03-10 12:53:18 +04:00
if ( subreq = = NULL ) {
return smbd_smb2_request_error ( req , NT_STATUS_NO_MEMORY ) ;
}
tevent_req_set_callback ( subreq , smbd_smb2_request_logoff_done , req ) ;
2009-05-15 13:40:19 +04:00
/*
2019-02-12 10:27:43 +03:00
* Avoid sending a STATUS_PENDING message , it ' s very likely
* the client won ' t expect that .
2009-05-15 13:40:19 +04:00
*/
2019-02-12 10:27:43 +03:00
return smbd_smb2_request_pending_queue ( req , subreq , 0 ) ;
2014-03-10 12:53:18 +04:00
}
static void smbd_smb2_request_logoff_done ( struct tevent_req * subreq )
{
struct smbd_smb2_request * smb2req =
tevent_req_callback_data ( subreq ,
struct smbd_smb2_request ) ;
DATA_BLOB outbody ;
NTSTATUS status ;
NTSTATUS error ;
status = smbd_smb2_logoff_recv ( subreq ) ;
TALLOC_FREE ( subreq ) ;
2012-03-27 13:09:05 +04:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2014-03-10 12:53:18 +04:00
error = smbd_smb2_request_error ( smb2req , status ) ;
if ( ! NT_STATUS_IS_OK ( error ) ) {
2014-06-11 14:15:48 +04:00
smbd_server_connection_terminate ( smb2req - > xconn ,
2014-03-10 12:53:18 +04:00
nt_errstr ( error ) ) ;
return ;
}
return ;
}
outbody = smbd_smb2_generate_outbody ( smb2req , 0x04 ) ;
if ( outbody . data = = NULL ) {
error = smbd_smb2_request_error ( smb2req , NT_STATUS_NO_MEMORY ) ;
if ( ! NT_STATUS_IS_OK ( error ) ) {
2014-06-11 14:15:48 +04:00
smbd_server_connection_terminate ( smb2req - > xconn ,
2014-03-10 12:53:18 +04:00
nt_errstr ( error ) ) ;
return ;
}
return ;
}
SSVAL ( outbody . data , 0x00 , 0x04 ) ; /* struct size */
SSVAL ( outbody . data , 0x02 , 0 ) ; /* reserved */
error = smbd_smb2_request_done ( smb2req , outbody , NULL ) ;
if ( ! NT_STATUS_IS_OK ( error ) ) {
2014-06-11 14:15:48 +04:00
smbd_server_connection_terminate ( smb2req - > xconn ,
2014-03-10 12:53:18 +04:00
nt_errstr ( error ) ) ;
return ;
}
}
2015-05-02 17:20:06 +03:00
struct smbd_smb2_logoff_state {
2014-03-10 12:53:18 +04:00
struct smbd_smb2_request * smb2req ;
} ;
2015-05-02 17:20:06 +03:00
static void smbd_smb2_logoff_shutdown_done ( struct tevent_req * subreq ) ;
2014-03-10 12:53:18 +04:00
2014-03-10 12:53:18 +04:00
static struct tevent_req * smbd_smb2_logoff_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct smbd_smb2_request * smb2req )
{
struct tevent_req * req ;
2015-05-02 17:20:06 +03:00
struct smbd_smb2_logoff_state * state ;
2014-03-10 12:53:18 +04:00
struct tevent_req * subreq ;
2014-03-10 12:53:18 +04:00
req = tevent_req_create ( mem_ctx , & state ,
2015-05-02 17:20:06 +03:00
struct smbd_smb2_logoff_state ) ;
2014-03-10 12:53:18 +04:00
if ( req = = NULL ) {
return NULL ;
}
state - > smb2req = smb2req ;
2015-05-02 17:20:06 +03:00
subreq = smb2srv_session_shutdown_send ( state , ev ,
smb2req - > session ,
smb2req ) ;
2014-03-10 12:53:18 +04:00
if ( tevent_req_nomem ( subreq , req ) ) {
return tevent_req_post ( req , ev ) ;
}
2015-05-02 17:20:06 +03:00
tevent_req_set_callback ( subreq , smbd_smb2_logoff_shutdown_done , req ) ;
2014-03-10 12:53:18 +04:00
return req ;
}
2015-05-02 17:20:06 +03:00
static void smbd_smb2_logoff_shutdown_done ( struct tevent_req * subreq )
2014-03-10 12:53:18 +04:00
{
struct tevent_req * req = tevent_req_callback_data (
subreq , struct tevent_req ) ;
2015-05-02 17:20:06 +03:00
struct smbd_smb2_logoff_state * state = tevent_req_data (
req , struct smbd_smb2_logoff_state ) ;
2014-03-10 12:53:18 +04:00
NTSTATUS status ;
2016-04-13 18:44:26 +03:00
bool ok ;
const struct GUID * client_guid =
2020-07-08 11:15:56 +03:00
& state - > smb2req - > session - > client - > global - > client_guid ;
2014-03-10 12:53:18 +04:00
2015-05-02 17:20:06 +03:00
status = smb2srv_session_shutdown_recv ( subreq ) ;
if ( tevent_req_nterror ( req , status ) ) {
return ;
}
2014-03-10 12:53:18 +04:00
TALLOC_FREE ( subreq ) ;
2016-04-13 18:44:26 +03:00
if ( ! GUID_all_zero ( client_guid ) ) {
ok = remote_arch_cache_delete ( client_guid ) ;
if ( ! ok ) {
/* Most likely not an error, but not in cache */
DBG_DEBUG ( " Deletion from remote arch cache failed \n " ) ;
}
}
2014-03-10 12:53:18 +04:00
/*
* As we ' ve been awoken , we may have changed
* uid in the meantime . Ensure we ' re still
* root ( SMB2_OP_LOGOFF has . as_root = true ) .
*/
change_to_root_user ( ) ;
2014-03-10 12:53:18 +04:00
status = smbXsrv_session_logoff ( state - > smb2req - > session ) ;
if ( tevent_req_nterror ( req , status ) ) {
2014-03-10 12:53:18 +04:00
return ;
2012-03-27 13:09:05 +04:00
}
2009-05-15 13:40:19 +04:00
/*
* we may need to sign the response , so we need to keep
* the session until the response is sent to the wire .
*/
2014-03-10 12:53:18 +04:00
talloc_steal ( state - > smb2req , state - > smb2req - > session ) ;
2009-05-15 13:40:19 +04:00
2014-03-10 12:53:18 +04:00
tevent_req_done ( req ) ;
}
2009-05-15 13:40:19 +04:00
2014-03-10 12:53:18 +04:00
static NTSTATUS smbd_smb2_logoff_recv ( struct tevent_req * req )
{
return tevent_req_simple_recv_ntstatus ( req ) ;
2009-05-15 13:40:19 +04:00
}