search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
r25068: Older samba3 DCs will return DCERPC_FAULT_OP_RNG_ERROR for every opcode on the
[Samba.git] / source / librpc / tools / ndrdump.c
blob81f6e958e5d6c45499fc1cf487f089b3470b47ba
1 /*
2 Unix SMB/CIFS implementation.
3 SMB torture tester
4 Copyright (C) Andrew Tridgell 2003
5 Copyright (C) Jelmer Vernooij 2006
6
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
11
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
16
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
20 */
21
22 #include "includes.h"
23 #if (_SAMBA_BUILD_ >= 4)
24 #include "lib/cmdline/popt_common.h"
25 #include "system/filesys.h"
26 #include "system/locale.h"
27 #include "librpc/rpc/dcerpc.h"
28 #include "librpc/rpc/dcerpc_table.h"
29 #endif
30
31 static const struct dcerpc_interface_call *find_function(
32 const struct dcerpc_interface_table *p,
33 const char *function)
34 {
35 int i;
36 if (isdigit(function[0])) {
37 i = strtol(function, NULL, 0);
38 return &p->calls[i];
39 }
40 for (i=0;i<p->num_calls;i++) {
41 if (strcmp(p->calls[i].name, function) == 0) {
42 break;
43 }
44 }
45 if (i == p->num_calls) {
46 printf("Function '%s' not found\n", function);
47 exit(1);
48 }
49 return &p->calls[i];
50 }
51
52 #if (_SAMBA_BUILD_ >= 4)
53
54 static void show_pipes(void)
55 {
56 const struct dcerpc_interface_list *l;
57 printf("\nYou must specify a pipe\n");
58 printf("known pipes are:\n");
59 for (l=librpc_dcerpc_pipes();l;l=l->next) {
60 if(l->table->helpstring) {
61 printf("\t%s - %s\n", l->table->name, l->table->helpstring);
62 } else {
63 printf("\t%s\n", l->table->name);
64 }
65 }
66 exit(1);
67 }
68
69 #endif
70
71 static void show_functions(const struct dcerpc_interface_table *p)
72 {
73 int i;
74 printf("\nYou must specify a function\n");
75 printf("known functions on '%s' are:\n", p->name);
76 for (i=0;i<p->num_calls;i++) {
77 printf("\t0x%02x (%2d) %s\n", i, i, p->calls[i].name);
78 }
79 exit(1);
80 }
81
82 static char *stdin_load(TALLOC_CTX *mem_ctx, size_t *size)
83 {
84 int num_read, total_len = 0;
85 char buf[255];
86 char *result = NULL;
87
88 while((num_read = read(STDIN_FILENO, buf, 255)) > 0) {
89
90 if (result) {
91 result = (char *) talloc_realloc(
92 mem_ctx, result, char *, total_len + num_read);
93 } else {
94 result = (char *) talloc_size(mem_ctx, num_read);
95 }
96
97 memcpy(result + total_len, buf, num_read);
98
99 total_len += num_read;
100 }
101
102 if (size)
103 *size = total_len;
104
105 return result;
106 }
107
108 static const struct dcerpc_interface_table *load_iface_from_plugin(const char *plugin, const char *pipe_name)
109 {
110 const struct dcerpc_interface_table *p;
111 void *handle;
112 char *symbol;
113
114 handle = dlopen(plugin, RTLD_NOW);
115 if (handle == NULL) {
116 printf("%s: Unable to open: %s\n", plugin, dlerror());
117 return NULL;
118 }
119
120 symbol = talloc_asprintf(NULL, "dcerpc_table_%s", pipe_name);
121 p = (const struct dcerpc_interface_table *)dlsym(handle, symbol);
122
123 if (!p) {
124 printf("%s: Unable to find DCE/RPC interface table for '%s': %s\n", plugin, pipe_name, dlerror());
125 talloc_free(symbol);
126 return NULL;
127 }
128
129 talloc_free(symbol);
130
131 return p;
132 }
133
134 int main(int argc, const char *argv[])
135 {
136 const struct dcerpc_interface_table *p = NULL;
137 const struct dcerpc_interface_call *f;
138 const char *pipe_name, *function, *inout, *filename;
139 uint8_t *data;
140 size_t size;
141 DATA_BLOB blob;
142 struct ndr_pull *ndr_pull;
143 struct ndr_print *ndr_print;
144 TALLOC_CTX *mem_ctx;
145 int flags;
146 poptContext pc;
147 NTSTATUS status;
148 void *st;
149 void *v_st;
150 const char *ctx_filename = NULL;
151 const char *plugin = NULL;
152 bool validate = false;
153 bool dumpdata = false;
154 int opt;
155 enum {OPT_CONTEXT_FILE=1000, OPT_VALIDATE, OPT_DUMP_DATA, OPT_LOAD_DSO};
156 struct poptOption long_options[] = {
157 POPT_AUTOHELP
158 {"context-file", 'c', POPT_ARG_STRING, NULL, OPT_CONTEXT_FILE, "In-filename to parse first", "CTX-FILE" },
159 {"validate", 0, POPT_ARG_NONE, NULL, OPT_VALIDATE, "try to validate the data", NULL },
160 {"dump-data", 0, POPT_ARG_NONE, NULL, OPT_DUMP_DATA, "dump the hex data", NULL },
161 {"load-dso", 'l', POPT_ARG_STRING, NULL, OPT_LOAD_DSO, "load from shared object file", NULL },
162 POPT_COMMON_SAMBA
163 POPT_COMMON_VERSION
164 { NULL }
165 };
166
167 #if (_SAMBA_BUILD_ >= 4)
168 dcerpc_table_init();
169 #else
170 /* Initialise samba stuff */
171 load_case_tables();
172
173 setlinebuf(stdout);
174
175 dbf = x_stderr;
176
177 setup_logging(argv[0],True);
178 #endif
179
180 pc = poptGetContext("ndrdump", argc, argv, long_options, 0);
181
182 poptSetOtherOptionHelp(
183 pc, "<pipe|uuid> <function> <inout> [<filename>]");
184
185 while ((opt = poptGetNextOpt(pc)) != -1) {
186 switch (opt) {
187 case OPT_CONTEXT_FILE:
188 ctx_filename = poptGetOptArg(pc);
189 break;
190 case OPT_VALIDATE:
191 validate = true;
192 break;
193 case OPT_DUMP_DATA:
194 dumpdata = true;
195 break;
196 case OPT_LOAD_DSO:
197 plugin = poptGetOptArg(pc);
198 break;
199 }
200 }
201
202 pipe_name = poptGetArg(pc);
203
204 if (!pipe_name) {
205 poptPrintUsage(pc, stderr, 0);
206 #if (_SAMBA_BUILD_ >= 4)
207 show_pipes();
208 #endif
209 exit(1);
210 }
211
212 if (plugin != NULL) {
213 p = load_iface_from_plugin(plugin, pipe_name);
214 }
215 #if (_SAMBA_BUILD_ <= 3)
216 else {
217 fprintf(stderr, "Only loading from DSO's supported in Samba 3\n");
218 exit(1);
219 }
220 #else
221 if (!p) {
222 p = idl_iface_by_name(pipe_name);
223 }
224
225 if (!p) {
226 struct GUID uuid;
227
228 status = GUID_from_string(pipe_name, &uuid);
229
230 if (NT_STATUS_IS_OK(status)) {
231 p = idl_iface_by_uuid(&uuid);
232 }
233 }
234 #endif
235
236 if (!p) {
237 printf("Unknown pipe or UUID '%s'\n", pipe_name);
238 exit(1);
239 }
240
241 function = poptGetArg(pc);
242 inout = poptGetArg(pc);
243 filename = poptGetArg(pc);
244
245 if (!function || !inout) {
246 poptPrintUsage(pc, stderr, 0);
247 show_functions(p);
248 exit(1);
249 }
250
251 if (strcmp(inout, "in") == 0 ||
252 strcmp(inout, "request") == 0) {
253 flags = NDR_IN;
254 } else if (strcmp(inout, "out") == 0 ||
255 strcmp(inout, "response") == 0) {
256 flags = NDR_OUT;
257 } else {
258 printf("Bad inout value '%s'\n", inout);
259 exit(1);
260 }
261
262 f = find_function(p, function);
263
264 mem_ctx = talloc_init("ndrdump");
265
266 st = talloc_zero_size(mem_ctx, f->struct_size);
267 if (!st) {
268 printf("Unable to allocate %d bytes\n", (int)f->struct_size);
269 exit(1);
270 }
271
272 v_st = talloc_zero_size(mem_ctx, f->struct_size);
273 if (!v_st) {
274 printf("Unable to allocate %d bytes\n", (int)f->struct_size);
275 exit(1);
276 }
277
278 if (ctx_filename) {
279 if (flags == NDR_IN) {
280 printf("Context file can only be used for \"out\" packages\n");
281 exit(1);
282 }
283
284 #if (_SAMBA_BUILD_ >= 4)
285 data = (uint8_t *)file_load(ctx_filename, &size, mem_ctx);
286 #else
287 data = (uint8_t *)file_load(ctx_filename, &size, 0);
288 #endif
289 if (!data) {
290 perror(ctx_filename);
291 exit(1);
292 }
293
294 blob.data = data;
295 blob.length = size;
296
297 ndr_pull = ndr_pull_init_blob(&blob, mem_ctx);
298 ndr_pull->flags |= LIBNDR_FLAG_REF_ALLOC;
299
300 status = f->ndr_pull(ndr_pull, NDR_IN, st);
301
302 if (ndr_pull->offset != ndr_pull->data_size) {
303 printf("WARNING! %d unread bytes while parsing context file\n", ndr_pull->data_size - ndr_pull->offset);
304 }
305
306 if (!NT_STATUS_IS_OK(status)) {
307 printf("pull for context file returned %s\n", nt_errstr(status));
308 exit(1);
309 }
310 memcpy(v_st, st, f->struct_size);
311 }
312
313 if (filename)
314 #if (_SAMBA_BUILD_ >= 4)
315 data = (uint8_t *)file_load(filename, &size, mem_ctx);
316 #else
317 data = (uint8_t *)file_load(filename, &size, 0);
318 #endif
319 else
320 data = (uint8_t *)stdin_load(mem_ctx, &size);
321
322 if (!data) {
323 if (filename)
324 perror(filename);
325 else
326 perror("stdin");
327 exit(1);
328 }
329
330 blob.data = data;
331 blob.length = size;
332
333 ndr_pull = ndr_pull_init_blob(&blob, mem_ctx);
334 ndr_pull->flags |= LIBNDR_FLAG_REF_ALLOC;
335
336 status = f->ndr_pull(ndr_pull, flags, st);
337
338 printf("pull returned %s\n", nt_errstr(status));
339
340 if (ndr_pull->offset != ndr_pull->data_size) {
341 printf("WARNING! %d unread bytes\n", ndr_pull->data_size - ndr_pull->offset);
342 dump_data(0, ndr_pull->data+ndr_pull->offset, ndr_pull->data_size - ndr_pull->offset);
343 }
344
345 if (dumpdata) {
346 printf("%d bytes consumed\n", ndr_pull->offset);
347 dump_data(0, blob.data, blob.length);
348 }
349
350 ndr_print = talloc_zero(mem_ctx, struct ndr_print);
351 ndr_print->print = ndr_print_debug_helper;
352 ndr_print->depth = 1;
353 f->ndr_print(ndr_print, function, flags, st);
354
355 if (!NT_STATUS_IS_OK(status)) {
356 printf("dump FAILED\n");
357 exit(1);
358 }
359
360 if (validate) {
361 DATA_BLOB v_blob;
362 struct ndr_push *ndr_v_push;
363 struct ndr_pull *ndr_v_pull;
364 struct ndr_print *ndr_v_print;
365 uint32_t i;
366 uint8_t byte_a, byte_b;
367 bool differ;
368
369 ndr_v_push = ndr_push_init_ctx(mem_ctx);
370
371 status = f->ndr_push(ndr_v_push, flags, st);
372 if (!NT_STATUS_IS_OK(status)) {
373 printf("validate push FAILED\n");
374 exit(1);
375 }
376
377 v_blob = ndr_push_blob(ndr_v_push);
378
379 if (dumpdata) {
380 printf("%ld bytes generated (validate)\n", (long)v_blob.length);
381 dump_data(0, v_blob.data, v_blob.length);
382 }
383
384 ndr_v_pull = ndr_pull_init_blob(&v_blob, mem_ctx);
385 ndr_v_pull->flags |= LIBNDR_FLAG_REF_ALLOC;
386
387 status = f->ndr_pull(ndr_v_pull, flags, v_st);
388 if (!NT_STATUS_IS_OK(status)) {
389 printf("validate pull FAILED\n");
390 exit(1);
391 }
392
393 printf("pull returned %s\n", nt_errstr(status));
394
395 if (ndr_v_pull->offset != ndr_v_pull->data_size) {
396 printf("WARNING! %d unread bytes in validation\n", ndr_v_pull->data_size - ndr_v_pull->offset);
397 dump_data(0, ndr_v_pull->data+ndr_v_pull->offset, ndr_v_pull->data_size - ndr_v_pull->offset);
398 }
399
400 ndr_v_print = talloc_zero(mem_ctx, struct ndr_print);
401 ndr_v_print->print = ndr_print_debug_helper;
402 ndr_v_print->depth = 1;
403 f->ndr_print(ndr_v_print, function, flags, v_st);
404
405 if (blob.length != v_blob.length) {
406 printf("WARNING! orig bytes:%u validated pushed "
407 "bytes:%u\n", (unsigned int)blob.length,
408 (unsigned int)v_blob.length);
409 }
410
411 if (ndr_pull->offset != ndr_v_pull->offset) {
412 printf("WARNING! orig pulled bytes:%u validated pulled bytes:%u\n", ndr_pull->offset, ndr_v_pull->offset);
413 }
414
415 differ = false;
416 byte_a = 0x00;
417 byte_b = 0x00;
418 for (i=0; i < blob.length; i++) {
419 byte_a = blob.data[i];
420
421 if (i == v_blob.length) {
422 byte_b = 0x00;
423 differ = true;
424 break;
425 }
426
427 byte_b = v_blob.data[i];
428
429 if (byte_a != byte_b) {
430 differ = true;
431 break;
432 }
433 }
434 if (differ) {
435 printf("WARNING! orig and validated differ at byte 0x%02X (%u)\n", i, i);
436 printf("WARNING! orig byte[0x%02X] = 0x%02X validated byte[0x%02X] = 0x%02X\n",
437 i, byte_a, i, byte_b);
438 }
439 }
440
441 printf("dump OK\n");
442
443 talloc_free(mem_ctx);
444
445 poptFreeContext(pc);
446
447 return 0;
448 }
Samba GIT mirror