search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Second part of fix for bug #7777 - When requesting lookups for BUILTIN sids, winbindd...
[Samba.git] / source4 / nbt_server / interfaces.c
blob0a9196a74753dc535456e35c0c4f56d8ef5de4dc
1 /*
2 Unix SMB/CIFS implementation.
3
4 NBT interface handling
5
6 Copyright (C) Andrew Tridgell 2005
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
20 */
21
22 #include "includes.h"
23 #include "../lib/util/dlinklist.h"
24 #include "nbt_server/nbt_server.h"
25 #include "smbd/service_task.h"
26 #include "lib/socket/socket.h"
27 #include "nbt_server/wins/winsserver.h"
28 #include "nbt_server/dgram/proto.h"
29 #include "system/network.h"
30 #include "lib/socket/netif.h"
31 #include "param/param.h"
32
33
34 /*
35 receive an incoming request and dispatch it to the right place
36 */
37 static void nbtd_request_handler(struct nbt_name_socket *nbtsock,
38 struct nbt_name_packet *packet,
39 struct socket_address *src)
40 {
41 struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
42 struct nbtd_interface);
43 struct nbtd_server *nbtsrv = iface->nbtsrv;
44
45 nbtsrv->stats.total_received++;
46
47 /* see if its from one of our own interfaces - if so, then ignore it */
48 if (nbtd_self_packet_and_bcast(nbtsock, packet, src)) {
49 DEBUG(10,("Ignoring bcast self packet from %s:%d\n", src->addr, src->port));
50 return;
51 }
52
53 switch (packet->operation & NBT_OPCODE) {
54 case NBT_OPCODE_QUERY:
55 nbtsrv->stats.query_count++;
56 nbtd_request_query(nbtsock, packet, src);
57 break;
58
59 case NBT_OPCODE_REGISTER:
60 case NBT_OPCODE_REFRESH:
61 case NBT_OPCODE_REFRESH2:
62 nbtsrv->stats.register_count++;
63 nbtd_request_defense(nbtsock, packet, src);
64 break;
65
66 case NBT_OPCODE_RELEASE:
67 case NBT_OPCODE_MULTI_HOME_REG:
68 nbtsrv->stats.release_count++;
69 nbtd_winsserver_request(nbtsock, packet, src);
70 break;
71
72 default:
73 nbtd_bad_packet(packet, src, "Unexpected opcode");
74 break;
75 }
76 }
77
78 static void nbtd_unexpected_handler(struct nbt_name_socket *nbtsock,
79 struct nbt_name_packet *packet,
80 struct socket_address *src)
81 {
82 struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
83 struct nbtd_interface);
84 struct nbtd_server *nbtsrv = iface->nbtsrv;
85 struct nbtd_interface *i;
86 struct nbt_name_request *req = NULL;
87
88 nbtsrv->stats.total_received++;
89
90 DEBUG(10,("unexpected from src[%s] on interface[%p] %s/%s\n",
91 src->addr, iface, iface->ip_address, iface->netmask));
92
93 /* try the broadcast interface */
94 if (nbtsrv->bcast_interface) {
95 i = nbtsrv->bcast_interface;
96 req = idr_find(i->nbtsock->idr, packet->name_trn_id);
97 }
98
99 /* try the wins server client interface */
100 if (!req && nbtsrv->wins_interface && nbtsrv->wins_interface->nbtsock) {
101 i = nbtsrv->wins_interface;
102 req = idr_find(i->nbtsock->idr, packet->name_trn_id);
103 }
104
105 /* try all other interfaces... */
106 if (!req) {
107 for (i = nbtsrv->interfaces; i; i = i->next) {
108 if (i == iface) {
109 continue;
110 }
111 req = idr_find(i->nbtsock->idr, packet->name_trn_id);
112 if (req) break;
113 }
114 }
115
116 if (!req) {
117 DEBUG(10,("unexpected from src[%s] unable to redirected\n", src->addr));
118 return;
119 }
120
121 DEBUG(10,("unexpected from src[%s] redirected to interface[%p] %s/%s\n",
122 src->addr, i, i->ip_address, i->netmask));
123
124 /*
125 * redirect the incoming response to the socket
126 * we sent the matching request
127 */
128 nbt_name_socket_handle_response_packet(req, packet, src);
129 }
130
131 /*
132 find a registered name on an interface
133 */
134 struct nbtd_iface_name *nbtd_find_iname(struct nbtd_interface *iface,
135 struct nbt_name *name,
136 uint16_t nb_flags)
137 {
138 struct nbtd_iface_name *iname;
139 for (iname=iface->names;iname;iname=iname->next) {
140 if (iname->name.type == name->type &&
141 strcmp(name->name, iname->name.name) == 0 &&
142 ((iname->nb_flags & nb_flags) == nb_flags)) {
143 return iname;
144 }
145 }
146 return NULL;
147 }
148
149 /*
150 start listening on the given address
151 */
152 static NTSTATUS nbtd_add_socket(struct nbtd_server *nbtsrv,
153 struct loadparm_context *lp_ctx,
154 const char *bind_address,
155 const char *address,
156 const char *bcast,
157 const char *netmask)
158 {
159 struct nbtd_interface *iface;
160 NTSTATUS status;
161 struct socket_address *bcast_address;
162 struct socket_address *unicast_address;
163
164 DEBUG(6,("nbtd_add_socket(%s, %s, %s, %s)\n", bind_address, address, bcast, netmask));
165
166 /*
167 we actually create two sockets. One listens on the broadcast address
168 for the interface, and the other listens on our specific address. This
169 allows us to run with "bind interfaces only" while still receiving
170 broadcast addresses, and also simplifies matching incoming requests
171 to interfaces
172 */
173
174 iface = talloc(nbtsrv, struct nbtd_interface);
175 NT_STATUS_HAVE_NO_MEMORY(iface);
176
177 iface->nbtsrv = nbtsrv;
178 iface->bcast_address = talloc_steal(iface, bcast);
179 iface->ip_address = talloc_steal(iface, address);
180 iface->netmask = talloc_steal(iface, netmask);
181 iface->names = NULL;
182 iface->wack_queue = NULL;
183
184 if (strcmp(netmask, "0.0.0.0") != 0) {
185 struct nbt_name_socket *bcast_nbtsock;
186
187 /* listen for broadcasts on port 137 */
188 bcast_nbtsock = nbt_name_socket_init(iface, nbtsrv->task->event_ctx, lp_iconv_convenience(nbtsrv->task->lp_ctx));
189 if (!bcast_nbtsock) {
190 talloc_free(iface);
191 return NT_STATUS_NO_MEMORY;
192 }
193
194 bcast_address = socket_address_from_strings(bcast_nbtsock, bcast_nbtsock->sock->backend_name,
195 bcast, lp_nbt_port(lp_ctx));
196 if (!bcast_address) {
197 talloc_free(iface);
198 return NT_STATUS_NO_MEMORY;
199 }
200
201 status = socket_listen(bcast_nbtsock->sock, bcast_address, 0, 0);
202 if (!NT_STATUS_IS_OK(status)) {
203 DEBUG(0,("Failed to bind to %s:%d - %s\n",
204 bcast, lp_nbt_port(lp_ctx), nt_errstr(status)));
205 talloc_free(iface);
206 return status;
207 }
208 talloc_free(bcast_address);
209
210 nbt_set_incoming_handler(bcast_nbtsock, nbtd_request_handler, iface);
211 }
212
213 /* listen for unicasts on port 137 */
214 iface->nbtsock = nbt_name_socket_init(iface, nbtsrv->task->event_ctx,
215 lp_iconv_convenience(nbtsrv->task->lp_ctx));
216 if (!iface->nbtsock) {
217 talloc_free(iface);
218 return NT_STATUS_NO_MEMORY;
219 }
220
221 unicast_address = socket_address_from_strings(iface->nbtsock,
222 iface->nbtsock->sock->backend_name,
223 bind_address, lp_nbt_port(lp_ctx));
224
225 status = socket_listen(iface->nbtsock->sock, unicast_address, 0, 0);
226 if (!NT_STATUS_IS_OK(status)) {
227 DEBUG(0,("Failed to bind to %s:%d - %s\n",
228 bind_address, lp_nbt_port(lp_ctx), nt_errstr(status)));
229 talloc_free(iface);
230 return status;
231 }
232 talloc_free(unicast_address);
233
234 nbt_set_incoming_handler(iface->nbtsock, nbtd_request_handler, iface);
235 nbt_set_unexpected_handler(iface->nbtsock, nbtd_unexpected_handler, iface);
236
237 /* also setup the datagram listeners */
238 status = nbtd_dgram_setup(iface, bind_address);
239 if (!NT_STATUS_IS_OK(status)) {
240 DEBUG(0,("Failed to setup dgram listen on %s - %s\n",
241 bind_address, nt_errstr(status)));
242 talloc_free(iface);
243 return status;
244 }
245
246 if (strcmp(netmask, "0.0.0.0") == 0) {
247 DLIST_ADD(nbtsrv->bcast_interface, iface);
248 } else {
249 DLIST_ADD(nbtsrv->interfaces, iface);
250 }
251
252 return NT_STATUS_OK;
253 }
254
255 /*
256 setup a socket for talking to our WINS servers
257 */
258 static NTSTATUS nbtd_add_wins_socket(struct nbtd_server *nbtsrv)
259 {
260 struct nbtd_interface *iface;
261
262 iface = talloc_zero(nbtsrv, struct nbtd_interface);
263 NT_STATUS_HAVE_NO_MEMORY(iface);
264
265 iface->nbtsrv = nbtsrv;
266
267 DLIST_ADD(nbtsrv->wins_interface, iface);
268
269 return NT_STATUS_OK;
270 }
271
272
273 /*
274 setup our listening sockets on the configured network interfaces
275 */
276 NTSTATUS nbtd_startup_interfaces(struct nbtd_server *nbtsrv, struct loadparm_context *lp_ctx,
277 struct interface *ifaces)
278 {
279 int num_interfaces = iface_count(ifaces);
280 int i;
281 TALLOC_CTX *tmp_ctx = talloc_new(nbtsrv);
282 NTSTATUS status;
283
284 /* if we are allowing incoming packets from any address, then
285 we also need to bind to the wildcard address */
286 if (!lp_bind_interfaces_only(lp_ctx)) {
287 const char *primary_address;
288
289 /* the primary address is the address we will return
290 for non-WINS queries not made on a specific
291 interface */
292 if (num_interfaces > 0) {
293 primary_address = iface_n_ip(ifaces, 0);
294 } else {
295 primary_address = inet_ntoa(interpret_addr2(
296 lp_netbios_name(lp_ctx)));
297 }
298 primary_address = talloc_strdup(tmp_ctx, primary_address);
299 NT_STATUS_HAVE_NO_MEMORY(primary_address);
300
301 status = nbtd_add_socket(nbtsrv,
302 lp_ctx,
303 "0.0.0.0",
304 primary_address,
305 talloc_strdup(tmp_ctx, "255.255.255.255"),
306 talloc_strdup(tmp_ctx, "0.0.0.0"));
307 NT_STATUS_NOT_OK_RETURN(status);
308 }
309
310 for (i=0; i<num_interfaces; i++) {
311 const char *bcast = iface_n_bcast(ifaces, i);
312 const char *address, *netmask;
313
314 /* we can't assume every interface is broadcast capable */
315 if (bcast == NULL) continue;
316
317 address = talloc_strdup(tmp_ctx, iface_n_ip(ifaces, i));
318 bcast = talloc_strdup(tmp_ctx, bcast);
319 netmask = talloc_strdup(tmp_ctx, iface_n_netmask(ifaces, i));
320
321 status = nbtd_add_socket(nbtsrv, lp_ctx,
322 address, address, bcast, netmask);
323 NT_STATUS_NOT_OK_RETURN(status);
324 }
325
326 if (lp_wins_server_list(lp_ctx)) {
327 status = nbtd_add_wins_socket(nbtsrv);
328 NT_STATUS_NOT_OK_RETURN(status);
329 }
330
331 talloc_free(tmp_ctx);
332
333 return NT_STATUS_OK;
334 }
335
336
337 /*
338 form a list of addresses that we should use in name query replies
339 we always place the IP in the given interface first
340 */
341 const char **nbtd_address_list(struct nbtd_interface *iface, TALLOC_CTX *mem_ctx)
342 {
343 struct nbtd_server *nbtsrv = iface->nbtsrv;
344 const char **ret = NULL;
345 struct nbtd_interface *iface2;
346 bool is_loopback = false;
347
348 if (iface->ip_address) {
349 is_loopback = iface_same_net(iface->ip_address, "127.0.0.1", "255.0.0.0");
350 ret = str_list_add(ret, iface->ip_address);
351 }
352
353 for (iface2=nbtsrv->interfaces;iface2;iface2=iface2->next) {
354 if (iface2 == iface) continue;
355
356 if (!iface2->ip_address) continue;
357
358 if (!is_loopback) {
359 if (iface_same_net(iface2->ip_address, "127.0.0.1", "255.0.0.0")) {
360 continue;
361 }
362 }
363
364 ret = str_list_add(ret, iface2->ip_address);
365 }
366
367 talloc_steal(mem_ctx, ret);
368
369 return ret;
370 }
371
372
373 /*
374 find the interface to use for sending a outgoing request
375 */
376 struct nbtd_interface *nbtd_find_request_iface(struct nbtd_server *nbtd_server,
377 const char *address, bool allow_bcast_iface)
378 {
379 struct nbtd_interface *cur;
380
381 /* try to find a exact match */
382 for (cur=nbtd_server->interfaces;cur;cur=cur->next) {
383 if (iface_same_net(address, cur->ip_address, cur->netmask)) {
384 DEBUG(10,("find interface for dst[%s] ip: %s/%s (iface[%p])\n",
385 address, cur->ip_address, cur->netmask, cur));
386 return cur;
387 }
388 }
389
390 /* no exact match, if we have the broadcast interface, use that */
391 if (allow_bcast_iface && nbtd_server->bcast_interface) {
392 cur = nbtd_server->bcast_interface;
393 DEBUG(10,("find interface for dst[%s] ip: %s/%s (bcast iface[%p])\n",
394 address, cur->ip_address, cur->netmask, cur));
395 return cur;
396 }
397
398 /* fallback to first interface */
399 cur = nbtd_server->interfaces;
400 DEBUG(10,("find interface for dst[%s] ip: %s/%s (default iface[%p])\n",
401 address, cur->ip_address, cur->netmask, cur));
402 return cur;
403 }
404
405 /*
406 * find the interface to use for sending a outgoing reply
407 */
408 struct nbtd_interface *nbtd_find_reply_iface(struct nbtd_interface *iface,
409 const char *address, bool allow_bcast_iface)
410 {
411 struct nbtd_server *nbtd_server = iface->nbtsrv;
412
413 /* first try to use the given interfacel when it's not the broadcast one */
414 if (iface != nbtd_server->bcast_interface) {
415 return iface;
416 }
417
418 return nbtd_find_request_iface(nbtd_server, address, allow_bcast_iface);
419 }
Samba GIT mirror