2 Unix SMB/CIFS mplementation.
4 helper layer for breaking up streams into discrete requests
6 Copyright (C) Andrew Tridgell 2005
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
24 #include "../lib/util/dlinklist.h"
25 #include "lib/events/events.h"
26 #include "lib/socket/socket.h"
27 #include "lib/stream/packet.h"
28 #include "libcli/raw/smb.h"
30 struct packet_context
{
31 packet_callback_fn_t callback
;
32 packet_full_request_fn_t full_request
;
33 packet_error_handler_fn_t error_handler
;
36 uint32_t initial_read
;
37 struct socket_context
*sock
;
38 struct tevent_context
*ev
;
41 struct tevent_fd
*fde
;
45 bool recv_need_enable
;
49 bool destructor_called
;
51 bool unreliable_select
;
54 struct send_element
*next
, *prev
;
57 packet_send_callback_fn_t send_callback
;
58 void *send_callback_private
;
63 a destructor used when we are processing packets to prevent freeing of this
64 context while it is being used
66 static int packet_destructor(struct packet_context
*pc
)
69 pc
->destructor_called
= true;
70 /* now we refuse the talloc_free() request. The free will
71 happen again in the packet_recv() code */
80 initialise a packet receiver
82 _PUBLIC_
struct packet_context
*packet_init(TALLOC_CTX
*mem_ctx
)
84 struct packet_context
*pc
= talloc_zero(mem_ctx
, struct packet_context
);
86 talloc_set_destructor(pc
, packet_destructor
);
93 set the request callback, called when a full request is ready
95 _PUBLIC_
void packet_set_callback(struct packet_context
*pc
, packet_callback_fn_t callback
)
97 pc
->callback
= callback
;
101 set the error handler
103 _PUBLIC_
void packet_set_error_handler(struct packet_context
*pc
, packet_error_handler_fn_t handler
)
105 pc
->error_handler
= handler
;
109 set the private pointer passed to the callback functions
111 _PUBLIC_
void packet_set_private(struct packet_context
*pc
, void *private_data
)
113 pc
->private_data
= private_data
;
117 set the full request callback. Should return as follows:
118 NT_STATUS_OK == blob is a full request.
119 STATUS_MORE_ENTRIES == blob is not complete yet
120 any error == blob is not a valid
122 _PUBLIC_
void packet_set_full_request(struct packet_context
*pc
, packet_full_request_fn_t callback
)
124 pc
->full_request
= callback
;
128 set a socket context to use. You must set a socket_context
130 _PUBLIC_
void packet_set_socket(struct packet_context
*pc
, struct socket_context
*sock
)
136 set an event context. If this is set then the code will ensure that
137 packets arrive with separate events, by creating a immediate event
138 for any secondary packets when more than one packet is read at one
139 time on a socket. This can matter for code that relies on not
140 getting more than one packet per event
142 _PUBLIC_
void packet_set_event_context(struct packet_context
*pc
, struct tevent_context
*ev
)
148 tell the packet layer the fde for the socket
150 _PUBLIC_
void packet_set_fde(struct packet_context
*pc
, struct tevent_fd
*fde
)
156 tell the packet layer to serialise requests, so we don't process two
157 requests at once on one connection. You must have set the
158 event_context and fde
160 _PUBLIC_
void packet_set_serialise(struct packet_context
*pc
)
162 pc
->serialise
= true;
166 tell the packet layer how much to read when starting a new packet
167 this ensures it doesn't overread
169 _PUBLIC_
void packet_set_initial_read(struct packet_context
*pc
, uint32_t initial_read
)
171 pc
->initial_read
= initial_read
;
175 tell the packet system not to steal/free blobs given to packet_send()
177 _PUBLIC_
void packet_set_nofree(struct packet_context
*pc
)
183 tell the packet system that select/poll/epoll on the underlying
184 socket may not be a reliable way to determine if data is available
185 for receive. This happens with underlying socket systems such as the
186 one implemented on top of GNUTLS, where there may be data in
187 encryption/compression buffers that could be received by
188 socket_recv(), while there is no data waiting at the real socket
189 level as seen by select/poll/epoll. The GNUTLS library is supposed
190 to cope with this by always leaving some data sitting in the socket
191 buffer, but it does not seem to be reliable.
193 _PUBLIC_
void packet_set_unreliable_select(struct packet_context
*pc
)
195 pc
->unreliable_select
= true;
199 tell the caller we have an error
201 static void packet_error(struct packet_context
*pc
, NTSTATUS status
)
204 if (pc
->error_handler
) {
205 pc
->error_handler(pc
->private_data
, status
);
208 /* default error handler is to free the callers private pointer */
209 if (!NT_STATUS_EQUAL(status
, NT_STATUS_END_OF_FILE
)) {
210 DEBUG(0,("packet_error on %s - %s\n",
211 talloc_get_name(pc
->private_data
), nt_errstr(status
)));
213 talloc_free(pc
->private_data
);
219 tell the caller we have EOF
221 static void packet_eof(struct packet_context
*pc
)
223 packet_error(pc
, NT_STATUS_END_OF_FILE
);
228 used to put packets on event boundaries
230 static void packet_next_event(struct tevent_context
*ev
, struct tevent_timer
*te
,
231 struct timeval t
, void *private_data
)
233 struct packet_context
*pc
= talloc_get_type(private_data
, struct packet_context
);
234 if (pc
->num_read
!= 0 && pc
->packet_size
!= 0 &&
235 pc
->packet_size
<= pc
->num_read
) {
242 call this when the socket becomes readable to kick off the whole
243 stream parsing process
245 _PUBLIC_
void packet_recv(struct packet_context
*pc
)
251 bool recv_retry
= false;
253 if (pc
->processing
) {
254 TEVENT_FD_NOT_READABLE(pc
->fde
);
259 if (pc
->recv_disable
) {
260 pc
->recv_need_enable
= true;
261 TEVENT_FD_NOT_READABLE(pc
->fde
);
265 if (pc
->packet_size
!= 0 && pc
->num_read
>= pc
->packet_size
) {
269 if (pc
->packet_size
!= 0) {
270 /* we've already worked out how long this next packet is, so skip the
271 socket_pending() call */
272 npending
= pc
->packet_size
- pc
->num_read
;
273 } else if (pc
->initial_read
!= 0) {
274 npending
= pc
->initial_read
- pc
->num_read
;
277 status
= socket_pending(pc
->sock
, &npending
);
279 status
= NT_STATUS_CONNECTION_DISCONNECTED
;
281 if (!NT_STATUS_IS_OK(status
)) {
282 packet_error(pc
, status
);
294 if (npending
+ pc
->num_read
< npending
) {
295 packet_error(pc
, NT_STATUS_INVALID_PARAMETER
);
299 if (npending
+ pc
->num_read
< pc
->num_read
) {
300 packet_error(pc
, NT_STATUS_INVALID_PARAMETER
);
304 /* possibly expand the partial packet buffer */
305 if (npending
+ pc
->num_read
> pc
->partial
.length
) {
306 if (!data_blob_realloc(pc
, &pc
->partial
, npending
+pc
->num_read
)) {
307 packet_error(pc
, NT_STATUS_NO_MEMORY
);
312 if (pc
->partial
.length
< pc
->num_read
+ npending
) {
313 packet_error(pc
, NT_STATUS_INVALID_PARAMETER
);
317 if ((uint8_t *)pc
->partial
.data
+ pc
->num_read
< (uint8_t *)pc
->partial
.data
) {
318 packet_error(pc
, NT_STATUS_INVALID_PARAMETER
);
321 if ((uint8_t *)pc
->partial
.data
+ pc
->num_read
+ npending
< (uint8_t *)pc
->partial
.data
) {
322 packet_error(pc
, NT_STATUS_INVALID_PARAMETER
);
326 status
= socket_recv(pc
->sock
, pc
->partial
.data
+ pc
->num_read
,
329 if (NT_STATUS_IS_ERR(status
)) {
330 packet_error(pc
, status
);
333 if (recv_retry
&& NT_STATUS_EQUAL(status
, STATUS_MORE_ENTRIES
)) {
335 status
= NT_STATUS_OK
;
337 if (!NT_STATUS_IS_OK(status
)) {
341 if (nread
== 0 && !recv_retry
) {
346 pc
->num_read
+= nread
;
348 if (pc
->unreliable_select
&& nread
!= 0) {
350 status
= socket_pending(pc
->sock
, &npending
);
351 if (!NT_STATUS_IS_OK(status
)) {
352 packet_error(pc
, status
);
361 if (pc
->partial
.length
!= pc
->num_read
) {
362 if (!data_blob_realloc(pc
, &pc
->partial
, pc
->num_read
)) {
363 packet_error(pc
, NT_STATUS_NO_MEMORY
);
368 /* see if its a full request */
370 blob
.length
= pc
->num_read
;
371 status
= pc
->full_request(pc
->private_data
, blob
, &pc
->packet_size
);
372 if (NT_STATUS_IS_ERR(status
)) {
373 packet_error(pc
, status
);
376 if (!NT_STATUS_IS_OK(status
)) {
380 if (pc
->packet_size
> pc
->num_read
) {
381 /* the caller made an error */
382 DEBUG(0,("Invalid packet_size %lu greater than num_read %lu\n",
383 (long)pc
->packet_size
, (long)pc
->num_read
));
384 packet_error(pc
, NT_STATUS_INVALID_PARAMETER
);
388 /* it is a full request - give it to the caller */
390 blob
.length
= pc
->num_read
;
392 if (pc
->packet_size
< pc
->num_read
) {
393 pc
->partial
= data_blob_talloc(pc
, blob
.data
+ pc
->packet_size
,
394 pc
->num_read
- pc
->packet_size
);
395 if (pc
->partial
.data
== NULL
) {
396 packet_error(pc
, NT_STATUS_NO_MEMORY
);
399 /* Trunate the blob sent to the caller to only the packet length */
400 if (!data_blob_realloc(pc
, &blob
, pc
->packet_size
)) {
401 packet_error(pc
, NT_STATUS_NO_MEMORY
);
405 pc
->partial
= data_blob(NULL
, 0);
407 pc
->num_read
-= pc
->packet_size
;
416 status
= pc
->callback(pc
->private_data
, blob
);
420 if (pc
->destructor_called
) {
425 if (pc
->processing
) {
426 if (pc
->processing
> 1) {
427 TEVENT_FD_READABLE(pc
->fde
);
432 if (!NT_STATUS_IS_OK(status
)) {
433 packet_error(pc
, status
);
437 /* Have we consumed the whole buffer yet? */
438 if (pc
->partial
.length
== 0) {
442 /* we got multiple packets in one tcp read */
443 if (pc
->ev
== NULL
) {
448 blob
.length
= pc
->num_read
;
450 status
= pc
->full_request(pc
->private_data
, blob
, &pc
->packet_size
);
451 if (NT_STATUS_IS_ERR(status
)) {
452 packet_error(pc
, status
);
456 if (!NT_STATUS_IS_OK(status
)) {
460 tevent_add_timer(pc
->ev
, pc
, timeval_zero(), packet_next_event
, pc
);
465 temporarily disable receiving
467 _PUBLIC_
void packet_recv_disable(struct packet_context
*pc
)
469 pc
->recv_disable
= true;
475 _PUBLIC_
void packet_recv_enable(struct packet_context
*pc
)
477 if (pc
->recv_need_enable
) {
478 pc
->recv_need_enable
= false;
479 TEVENT_FD_READABLE(pc
->fde
);
481 pc
->recv_disable
= false;
482 if (pc
->num_read
!= 0 && pc
->packet_size
>= pc
->num_read
) {
483 tevent_add_timer(pc
->ev
, pc
, timeval_zero(), packet_next_event
, pc
);
488 trigger a run of the send queue
490 _PUBLIC_
void packet_queue_run(struct packet_context
*pc
)
492 while (pc
->send_queue
) {
493 struct send_element
*el
= pc
->send_queue
;
496 DATA_BLOB blob
= data_blob_const(el
->blob
.data
+ el
->nsent
,
497 el
->blob
.length
- el
->nsent
);
499 status
= socket_send(pc
->sock
, &blob
, &nwritten
);
501 if (NT_STATUS_IS_ERR(status
)) {
502 packet_error(pc
, status
);
505 if (!NT_STATUS_IS_OK(status
)) {
508 el
->nsent
+= nwritten
;
509 if (el
->nsent
== el
->blob
.length
) {
510 DLIST_REMOVE(pc
->send_queue
, el
);
511 if (el
->send_callback
) {
513 el
->send_callback(el
->send_callback_private
);
515 if (pc
->destructor_called
) {
524 /* we're out of requests to send, so don't wait for write
526 TEVENT_FD_NOT_WRITEABLE(pc
->fde
);
530 put a packet in the send queue. When the packet is actually sent,
533 Useful for operations that must occur after sending a message, such
534 as the switch to SASL encryption after as sucessful LDAP bind relpy.
536 _PUBLIC_ NTSTATUS
packet_send_callback(struct packet_context
*pc
, DATA_BLOB blob
,
537 packet_send_callback_fn_t send_callback
,
540 struct send_element
*el
;
541 el
= talloc(pc
, struct send_element
);
542 NT_STATUS_HAVE_NO_MEMORY(el
);
544 DLIST_ADD_END(pc
->send_queue
, el
, struct send_element
*);
547 el
->send_callback
= send_callback
;
548 el
->send_callback_private
= private_data
;
550 /* if we aren't going to free the packet then we must reference it
551 to ensure it doesn't disappear before going out */
553 if (!talloc_reference(el
, blob
.data
)) {
554 return NT_STATUS_NO_MEMORY
;
557 talloc_steal(el
, blob
.data
);
560 if (private_data
&& !talloc_reference(el
, private_data
)) {
561 return NT_STATUS_NO_MEMORY
;
564 TEVENT_FD_WRITEABLE(pc
->fde
);
570 put a packet in the send queue
572 _PUBLIC_ NTSTATUS
packet_send(struct packet_context
*pc
, DATA_BLOB blob
)
574 return packet_send_callback(pc
, blob
, NULL
, NULL
);
579 a full request checker for NBT formatted packets (first 3 bytes are length)
581 _PUBLIC_ NTSTATUS
packet_full_request_nbt(void *private_data
, DATA_BLOB blob
, size_t *size
)
583 if (blob
.length
< 4) {
584 return STATUS_MORE_ENTRIES
;
587 * Note: that we use smb_len_tcp() instead
588 * of smb_len_nbt() as this function is not
589 * used for nbt and the source4 copy
590 * of smb_len() was smb_len_tcp()
592 *size
= 4 + smb_len_tcp(blob
.data
);
593 if (*size
> blob
.length
) {
594 return STATUS_MORE_ENTRIES
;
601 work out if a packet is complete for protocols that use a 32 bit network byte
604 _PUBLIC_ NTSTATUS
packet_full_request_u32(void *private_data
, DATA_BLOB blob
, size_t *size
)
606 if (blob
.length
< 4) {
607 return STATUS_MORE_ENTRIES
;
609 *size
= 4 + RIVAL(blob
.data
, 0);
610 if (*size
> blob
.length
) {
611 return STATUS_MORE_ENTRIES
;
616 _PUBLIC_ NTSTATUS
packet_full_request_u16(void *private_data
, DATA_BLOB blob
, size_t *size
)
618 if (blob
.length
< 2) {
619 return STATUS_MORE_ENTRIES
;
621 *size
= 2 + RSVAL(blob
.data
, 0);
622 if (*size
> blob
.length
) {
623 return STATUS_MORE_ENTRIES
;