/* Unix SMB/CIFS implementation. smb2 lib Copyright (C) Volker Lendecke 2011 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see . */ #include "includes.h" #include "system/network.h" #include "../lib/util/tevent_ntstatus.h" #include "../libcli/smb/smb_common.h" #include "../libcli/smb/smbXcli_base.h" struct smb2cli_raw_tcon_state { struct smbXcli_session *session; struct smbXcli_tcon *tcon; uint8_t fixed[8]; uint8_t dyn_pad[1]; }; static void smb2cli_raw_tcon_done(struct tevent_req *subreq); struct tevent_req *smb2cli_raw_tcon_send(TALLOC_CTX *mem_ctx, struct tevent_context *ev, struct smbXcli_conn *conn, uint32_t additional_flags, uint32_t clear_flags, uint32_t timeout_msec, struct smbXcli_session *session, struct smbXcli_tcon *tcon, uint16_t tcon_flags, const char *unc) { struct tevent_req *req = NULL; struct smb2cli_raw_tcon_state *state = NULL; struct tevent_req *subreq = NULL; uint8_t *fixed = NULL; uint8_t *dyn = NULL; size_t dyn_len; req = tevent_req_create(mem_ctx, &state, struct smb2cli_raw_tcon_state); if (req == NULL) { return NULL; } state->session = session; state->tcon = tcon; if (!convert_string_talloc(state, CH_UNIX, CH_UTF16, unc, strlen(unc), &dyn, &dyn_len)) { tevent_req_oom(req); return tevent_req_post(req, ev); } if (strlen(unc) == 0) { TALLOC_FREE(dyn); dyn_len = 0; } fixed = state->fixed; SSVAL(fixed, 0, 9); if (smbXcli_conn_protocol(conn) >= PROTOCOL_SMB3_11) { SSVAL(fixed, 2, tcon_flags); } else { SSVAL(fixed, 2, 0); /* Reserved */ } SSVAL(fixed, 4, SMB2_HDR_BODY + 8); SSVAL(fixed, 6, dyn_len); if (dyn_len == 0) { dyn = state->dyn_pad; dyn_len = sizeof(state->dyn_pad); } subreq = smb2cli_req_send(state, ev, conn, SMB2_OP_TCON, additional_flags, clear_flags, timeout_msec, NULL, /* tcon */ session, state->fixed, sizeof(state->fixed), dyn, dyn_len, 0); /* max_dyn_len */ if (tevent_req_nomem(subreq, req)) { return tevent_req_post(req, ev); } tevent_req_set_callback(subreq, smb2cli_raw_tcon_done, req); return req; } static void smb2cli_raw_tcon_done(struct tevent_req *subreq) { struct tevent_req *req = tevent_req_callback_data( subreq, struct tevent_req); struct smb2cli_raw_tcon_state *state = tevent_req_data( req, struct smb2cli_raw_tcon_state); NTSTATUS status; struct iovec *iov; uint8_t *body; uint32_t tcon_id; uint8_t share_type; uint32_t share_flags; uint32_t share_capabilities; uint32_t maximal_access; static const struct smb2cli_req_expected_response expected[] = { { .status = NT_STATUS_OK, .body_size = 0x10 } }; status = smb2cli_req_recv(subreq, state, &iov, expected, ARRAY_SIZE(expected)); TALLOC_FREE(subreq); if (!NT_STATUS_IS_OK(status)) { tevent_req_nterror(req, status); return; } tcon_id = IVAL(iov[0].iov_base, SMB2_HDR_TID); body = (uint8_t *)iov[1].iov_base; share_type = CVAL(body, 0x02); share_flags = IVAL(body, 0x04); share_capabilities = IVAL(body, 0x08); maximal_access = IVAL(body, 0x0C); smb2cli_tcon_set_values(state->tcon, state->session, tcon_id, share_type, share_flags, share_capabilities, maximal_access); tevent_req_done(req); } NTSTATUS smb2cli_raw_tcon_recv(struct tevent_req *req) { return tevent_req_simple_recv_ntstatus(req); } NTSTATUS smb2cli_raw_tcon(struct smbXcli_conn *conn, uint32_t additional_flags, uint32_t clear_flags, uint32_t timeout_msec, struct smbXcli_session *session, struct smbXcli_tcon *tcon, uint16_t tcon_flags, const char *unc) { TALLOC_CTX *frame = talloc_stackframe(); struct tevent_context *ev; struct tevent_req *req; NTSTATUS status = NT_STATUS_NO_MEMORY; if (smbXcli_conn_has_async_calls(conn)) { /* * Can't use sync call while an async call is in flight */ status = NT_STATUS_INVALID_PARAMETER; goto fail; } ev = samba_tevent_context_init(frame); if (ev == NULL) { goto fail; } req = smb2cli_raw_tcon_send(frame, ev, conn, additional_flags, clear_flags, timeout_msec, session, tcon, tcon_flags, unc); if (req == NULL) { goto fail; } if (!tevent_req_poll_ntstatus(req, ev, &status)) { goto fail; } status = smb2cli_raw_tcon_recv(req); fail: TALLOC_FREE(frame); return status; } struct smb2cli_tcon_state { struct tevent_context *ev; struct smbXcli_conn *conn; uint32_t timeout_msec; struct smbXcli_session *session; struct smbXcli_tcon *tcon; uint8_t fixed[8]; uint8_t dyn_pad[1]; }; static void smb2cli_tcon_done(struct tevent_req *subreq); struct tevent_req *smb2cli_tcon_send(TALLOC_CTX *mem_ctx, struct tevent_context *ev, struct smbXcli_conn *conn, uint32_t timeout_msec, struct smbXcli_session *session, struct smbXcli_tcon *tcon, uint16_t flags, const char *unc) { struct tevent_req *req, *subreq; struct smb2cli_tcon_state *state; uint32_t additional_flags = 0; uint32_t clear_flags = 0; req = tevent_req_create(mem_ctx, &state, struct smb2cli_tcon_state); if (req == NULL) { return NULL; } state->ev = ev; state->conn = conn; state->timeout_msec = timeout_msec; state->session = session; state->tcon = tcon; if (smbXcli_session_is_authenticated(state->session)) { additional_flags |= SMB2_HDR_FLAG_SIGNED; } subreq = smb2cli_raw_tcon_send(state, state->ev, state->conn, additional_flags, clear_flags, state->timeout_msec, state->session, state->tcon, flags, unc); if (tevent_req_nomem(subreq, req)) { return tevent_req_post(req, ev); } tevent_req_set_callback(subreq, smb2cli_tcon_done, req); return req; } static void smb2cli_tcon_validate(struct tevent_req *subreq); static void smb2cli_tcon_done(struct tevent_req *subreq) { struct tevent_req *req = tevent_req_callback_data( subreq, struct tevent_req); struct smb2cli_tcon_state *state = tevent_req_data( req, struct smb2cli_tcon_state); NTSTATUS status; status = smb2cli_raw_tcon_recv(subreq); TALLOC_FREE(subreq); if (tevent_req_nterror(req, status)) { return; } if (!smbXcli_session_is_authenticated(state->session)) { tevent_req_done(req); return; } if (smbXcli_conn_protocol(state->conn) >= PROTOCOL_SMB3_11) { tevent_req_done(req); return; } subreq = smb2cli_validate_negotiate_info_send(state, state->ev, state->conn, state->timeout_msec, state->session, state->tcon); if (tevent_req_nomem(subreq, req)) { return; } tevent_req_set_callback(subreq, smb2cli_tcon_validate, req); } static void smb2cli_tcon_validate(struct tevent_req *subreq) { struct tevent_req *req = tevent_req_callback_data( subreq, struct tevent_req); struct smb2cli_tcon_state *state = tevent_req_data( req, struct smb2cli_tcon_state); NTSTATUS status; status = smb2cli_validate_negotiate_info_recv(subreq); TALLOC_FREE(subreq); if (!NT_STATUS_IS_OK(status)) { smb2cli_tcon_set_values(state->tcon, NULL, UINT32_MAX, 0, 0, 0, 0); tevent_req_nterror(req, status); return; } tevent_req_done(req); } NTSTATUS smb2cli_tcon_recv(struct tevent_req *req) { return tevent_req_simple_recv_ntstatus(req); } NTSTATUS smb2cli_tcon(struct smbXcli_conn *conn, uint32_t timeout_msec, struct smbXcli_session *session, struct smbXcli_tcon *tcon, uint16_t flags, const char *unc) { TALLOC_CTX *frame = talloc_stackframe(); struct tevent_context *ev; struct tevent_req *req; NTSTATUS status = NT_STATUS_NO_MEMORY; if (smbXcli_conn_has_async_calls(conn)) { /* * Can't use sync call while an async call is in flight */ status = NT_STATUS_INVALID_PARAMETER; goto fail; } ev = samba_tevent_context_init(frame); if (ev == NULL) { goto fail; } req = smb2cli_tcon_send(frame, ev, conn, timeout_msec, session, tcon, flags, unc); if (req == NULL) { goto fail; } if (!tevent_req_poll_ntstatus(req, ev, &status)) { goto fail; } status = smb2cli_tcon_recv(req); fail: TALLOC_FREE(frame); return status; } struct smb2cli_tdis_state { struct smbXcli_tcon *tcon; uint8_t fixed[4]; }; static void smb2cli_tdis_done(struct tevent_req *subreq); struct tevent_req *smb2cli_tdis_send(TALLOC_CTX *mem_ctx, struct tevent_context *ev, struct smbXcli_conn *conn, uint32_t timeout_msec, struct smbXcli_session *session, struct smbXcli_tcon *tcon) { struct tevent_req *req, *subreq; struct smb2cli_tdis_state *state; req = tevent_req_create(mem_ctx, &state, struct smb2cli_tdis_state); if (req == NULL) { return NULL; } state->tcon = tcon; SSVAL(state->fixed, 0, 4); subreq = smb2cli_req_send(state, ev, conn, SMB2_OP_TDIS, 0, 0, /* flags */ timeout_msec, tcon, session, state->fixed, sizeof(state->fixed), NULL, 0, /* dyn* */ 0); /* max_dyn_len */ if (tevent_req_nomem(subreq, req)) { return tevent_req_post(req, ev); } tevent_req_set_callback(subreq, smb2cli_tdis_done, req); return req; } static void smb2cli_tdis_done(struct tevent_req *subreq) { struct tevent_req *req = tevent_req_callback_data(subreq, struct tevent_req); struct smb2cli_tdis_state *state = tevent_req_data(req, struct smb2cli_tdis_state); NTSTATUS status; static const struct smb2cli_req_expected_response expected[] = { { .status = NT_STATUS_OK, .body_size = 0x04 } }; status = smb2cli_req_recv(subreq, NULL, NULL, expected, ARRAY_SIZE(expected)); TALLOC_FREE(subreq); if (tevent_req_nterror(req, status)) { return; } smb2cli_tcon_set_values(state->tcon, NULL, UINT32_MAX, 0, 0, 0, 0); tevent_req_done(req); } NTSTATUS smb2cli_tdis_recv(struct tevent_req *req) { return tevent_req_simple_recv_ntstatus(req); } NTSTATUS smb2cli_tdis(struct smbXcli_conn *conn, uint32_t timeout_msec, struct smbXcli_session *session, struct smbXcli_tcon *tcon) { TALLOC_CTX *frame = talloc_stackframe(); struct tevent_context *ev; struct tevent_req *req; NTSTATUS status = NT_STATUS_NO_MEMORY; if (smbXcli_conn_has_async_calls(conn)) { /* * Can't use sync call while an async call is in flight */ status = NT_STATUS_INVALID_PARAMETER; goto fail; } ev = samba_tevent_context_init(frame); if (ev == NULL) { goto fail; } req = smb2cli_tdis_send(frame, ev, conn, timeout_msec, session, tcon); if (req == NULL) { goto fail; } if (!tevent_req_poll_ntstatus(req, ev, &status)) { goto fail; } status = smb2cli_tdis_recv(req); fail: TALLOC_FREE(frame); return status; }