search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
s3:smb2_server: allow logoff, close, unlock, cancel and echo on expired sessions
[Samba.git] / source4 / torture / smb2 / util.c
blob65090b0e8b75f9ab6c57c00e2c5d9aa7de8601ed
1 /*
2 Unix SMB/CIFS implementation.
3
4 helper functions for SMB2 test suite
5
6 Copyright (C) Andrew Tridgell 2005
7
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
12
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
17
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
20 */
21
22 #include "includes.h"
23 #include "libcli/security/security_descriptor.h"
24 #include "libcli/smb2/smb2.h"
25 #include "libcli/smb2/smb2_calls.h"
26 #include "../libcli/smb/smbXcli_base.h"
27 #include "lib/cmdline/popt_common.h"
28 #include "system/time.h"
29 #include "librpc/gen_ndr/ndr_security.h"
30 #include "param/param.h"
31 #include "libcli/resolve/resolve.h"
32 #include "lib/util/tevent_ntstatus.h"
33
34 #include "torture/torture.h"
35 #include "torture/smb2/proto.h"
36 #include "source4/torture/util.h"
37
38
39 /*
40 write to a file on SMB2
41 */
42 NTSTATUS smb2_util_write(struct smb2_tree *tree,
43 struct smb2_handle handle,
44 const void *buf, off_t offset, size_t size)
45 {
46 struct smb2_write w;
47
48 ZERO_STRUCT(w);
49 w.in.file.handle = handle;
50 w.in.offset = offset;
51 w.in.data = data_blob_const(buf, size);
52
53 return smb2_write(tree, &w);
54 }
55
56 /*
57 create a complex file/dir using the SMB2 protocol
58 */
59 static NTSTATUS smb2_create_complex(struct torture_context *tctx,
60 struct smb2_tree *tree,
61 const char *fname,
62 struct smb2_handle *handle,
63 bool dir)
64 {
65 TALLOC_CTX *tmp_ctx = talloc_new(tree);
66 char buf[7] = "abc";
67 struct smb2_create io;
68 union smb_setfileinfo setfile;
69 union smb_fileinfo fileinfo;
70 time_t t = (time(NULL) & ~1);
71 NTSTATUS status;
72
73 smb2_util_unlink(tree, fname);
74 ZERO_STRUCT(io);
75 io.in.desired_access = SEC_FLAG_MAXIMUM_ALLOWED;
76 io.in.file_attributes = FILE_ATTRIBUTE_NORMAL;
77 io.in.create_disposition = NTCREATEX_DISP_OVERWRITE_IF;
78 io.in.share_access =
79 NTCREATEX_SHARE_ACCESS_DELETE|
80 NTCREATEX_SHARE_ACCESS_READ|
81 NTCREATEX_SHARE_ACCESS_WRITE;
82 io.in.create_options = 0;
83 io.in.fname = fname;
84 if (dir) {
85 io.in.create_options = NTCREATEX_OPTIONS_DIRECTORY;
86 io.in.share_access &= ~NTCREATEX_SHARE_ACCESS_DELETE;
87 io.in.file_attributes = FILE_ATTRIBUTE_DIRECTORY;
88 io.in.create_disposition = NTCREATEX_DISP_CREATE;
89 }
90
91 /* it seems vista is now fussier about alignment? */
92 if (strchr(fname, ':') == NULL) {
93 /* setup some EAs */
94 io.in.eas.num_eas = 2;
95 io.in.eas.eas = talloc_array(tmp_ctx, struct ea_struct, 2);
96 io.in.eas.eas[0].flags = 0;
97 io.in.eas.eas[0].name.s = "EAONE";
98 io.in.eas.eas[0].value = data_blob_talloc(tmp_ctx, "VALUE1", 6);
99 io.in.eas.eas[1].flags = 0;
100 io.in.eas.eas[1].name.s = "SECONDEA";
101 io.in.eas.eas[1].value = data_blob_talloc(tmp_ctx, "ValueTwo", 8);
102 }
103
104 status = smb2_create(tree, tmp_ctx, &io);
105 talloc_free(tmp_ctx);
106 NT_STATUS_NOT_OK_RETURN(status);
107
108 *handle = io.out.file.handle;
109
110 if (!dir) {
111 status = smb2_util_write(tree, *handle, buf, 0, sizeof(buf));
112 NT_STATUS_NOT_OK_RETURN(status);
113 }
114
115 /* make sure all the timestamps aren't the same, and are also
116 in different DST zones*/
117 setfile.generic.level = RAW_SFILEINFO_BASIC_INFORMATION;
118 setfile.generic.in.file.handle = *handle;
119
120 unix_to_nt_time(&setfile.basic_info.in.create_time, t + 9*30*24*60*60);
121 unix_to_nt_time(&setfile.basic_info.in.access_time, t + 6*30*24*60*60);
122 unix_to_nt_time(&setfile.basic_info.in.write_time, t + 3*30*24*60*60);
123 unix_to_nt_time(&setfile.basic_info.in.change_time, t + 1*30*24*60*60);
124 setfile.basic_info.in.attrib = FILE_ATTRIBUTE_NORMAL;
125
126 status = smb2_setinfo_file(tree, &setfile);
127 if (!NT_STATUS_IS_OK(status)) {
128 torture_comment(tctx, "Failed to setup file times - %s\n", nt_errstr(status));
129 return status;
130 }
131
132 /* make sure all the timestamps aren't the same */
133 fileinfo.generic.level = RAW_FILEINFO_SMB2_ALL_INFORMATION;
134 fileinfo.generic.in.file.handle = *handle;
135
136 status = smb2_getinfo_file(tree, tree, &fileinfo);
137 if (!NT_STATUS_IS_OK(status)) {
138 torture_comment(tctx, "Failed to query file times - %s\n", nt_errstr(status));
139 return status;
140
141 }
142
143 #define CHECK_TIME(field) do {\
144 if (setfile.basic_info.in.field != fileinfo.all_info2.out.field) { \
145 torture_comment(tctx, "(%s) " #field " not setup correctly: %s(%llu) => %s(%llu)\n", \
146 __location__, \
147 nt_time_string(tree, setfile.basic_info.in.field), \
148 (unsigned long long)setfile.basic_info.in.field, \
149 nt_time_string(tree, fileinfo.basic_info.out.field), \
150 (unsigned long long)fileinfo.basic_info.out.field); \
151 status = NT_STATUS_INVALID_PARAMETER; \
152 } \
153 } while (0)
154
155 CHECK_TIME(create_time);
156 CHECK_TIME(access_time);
157 CHECK_TIME(write_time);
158 CHECK_TIME(change_time);
159
160 return status;
161 }
162
163 /*
164 create a complex file using the SMB2 protocol
165 */
166 NTSTATUS smb2_create_complex_file(struct torture_context *tctx,
167 struct smb2_tree *tree, const char *fname,
168 struct smb2_handle *handle)
169 {
170 return smb2_create_complex(tctx, tree, fname, handle, false);
171 }
172
173 /*
174 create a complex dir using the SMB2 protocol
175 */
176 NTSTATUS smb2_create_complex_dir(struct torture_context *tctx,
177 struct smb2_tree *tree, const char *fname,
178 struct smb2_handle *handle)
179 {
180 return smb2_create_complex(tctx, tree, fname, handle, true);
181 }
182
183 /*
184 show lots of information about a file
185 */
186 void torture_smb2_all_info(struct torture_context *tctx,
187 struct smb2_tree *tree, struct smb2_handle handle)
188 {
189 NTSTATUS status;
190 TALLOC_CTX *tmp_ctx = talloc_new(tree);
191 union smb_fileinfo io;
192
193 io.generic.level = RAW_FILEINFO_SMB2_ALL_INFORMATION;
194 io.generic.in.file.handle = handle;
195
196 status = smb2_getinfo_file(tree, tmp_ctx, &io);
197 if (!NT_STATUS_IS_OK(status)) {
198 DEBUG(0,("getinfo failed - %s\n", nt_errstr(status)));
199 talloc_free(tmp_ctx);
200 return;
201 }
202
203 torture_comment(tctx, "all_info for '%s'\n", io.all_info2.out.fname.s);
204 torture_comment(tctx, "\tcreate_time: %s\n", nt_time_string(tmp_ctx, io.all_info2.out.create_time));
205 torture_comment(tctx, "\taccess_time: %s\n", nt_time_string(tmp_ctx, io.all_info2.out.access_time));
206 torture_comment(tctx, "\twrite_time: %s\n", nt_time_string(tmp_ctx, io.all_info2.out.write_time));
207 torture_comment(tctx, "\tchange_time: %s\n", nt_time_string(tmp_ctx, io.all_info2.out.change_time));
208 torture_comment(tctx, "\tattrib: 0x%x\n", io.all_info2.out.attrib);
209 torture_comment(tctx, "\tunknown1: 0x%x\n", io.all_info2.out.unknown1);
210 torture_comment(tctx, "\talloc_size: %llu\n", (long long)io.all_info2.out.alloc_size);
211 torture_comment(tctx, "\tsize: %llu\n", (long long)io.all_info2.out.size);
212 torture_comment(tctx, "\tnlink: %u\n", io.all_info2.out.nlink);
213 torture_comment(tctx, "\tdelete_pending: %u\n", io.all_info2.out.delete_pending);
214 torture_comment(tctx, "\tdirectory: %u\n", io.all_info2.out.directory);
215 torture_comment(tctx, "\tfile_id: %llu\n", (long long)io.all_info2.out.file_id);
216 torture_comment(tctx, "\tea_size: %u\n", io.all_info2.out.ea_size);
217 torture_comment(tctx, "\taccess_mask: 0x%08x\n", io.all_info2.out.access_mask);
218 torture_comment(tctx, "\tposition: 0x%llx\n", (long long)io.all_info2.out.position);
219 torture_comment(tctx, "\tmode: 0x%llx\n", (long long)io.all_info2.out.mode);
220
221 /* short name, if any */
222 io.generic.level = RAW_FILEINFO_ALT_NAME_INFORMATION;
223 status = smb2_getinfo_file(tree, tmp_ctx, &io);
224 if (NT_STATUS_IS_OK(status)) {
225 torture_comment(tctx, "\tshort name: '%s'\n", io.alt_name_info.out.fname.s);
226 }
227
228 /* the EAs, if any */
229 io.generic.level = RAW_FILEINFO_SMB2_ALL_EAS;
230 status = smb2_getinfo_file(tree, tmp_ctx, &io);
231 if (NT_STATUS_IS_OK(status)) {
232 int i;
233 for (i=0;i<io.all_eas.out.num_eas;i++) {
234 torture_comment(tctx, "\tEA[%d] flags=%d len=%d '%s'\n", i,
235 io.all_eas.out.eas[i].flags,
236 (int)io.all_eas.out.eas[i].value.length,
237 io.all_eas.out.eas[i].name.s);
238 }
239 }
240
241 /* streams, if available */
242 io.generic.level = RAW_FILEINFO_STREAM_INFORMATION;
243 status = smb2_getinfo_file(tree, tmp_ctx, &io);
244 if (NT_STATUS_IS_OK(status)) {
245 int i;
246 for (i=0;i<io.stream_info.out.num_streams;i++) {
247 torture_comment(tctx, "\tstream %d:\n", i);
248 torture_comment(tctx, "\t\tsize %ld\n",
249 (long)io.stream_info.out.streams[i].size);
250 torture_comment(tctx, "\t\talloc size %ld\n",
251 (long)io.stream_info.out.streams[i].alloc_size);
252 torture_comment(tctx, "\t\tname %s\n", io.stream_info.out.streams[i].stream_name.s);
253 }
254 }
255
256 if (DEBUGLVL(1)) {
257 /* the security descriptor */
258 io.query_secdesc.level = RAW_FILEINFO_SEC_DESC;
259 io.query_secdesc.in.secinfo_flags =
260 SECINFO_OWNER|SECINFO_GROUP|
261 SECINFO_DACL;
262 status = smb2_getinfo_file(tree, tmp_ctx, &io);
263 if (NT_STATUS_IS_OK(status)) {
264 NDR_PRINT_DEBUG(security_descriptor, io.query_secdesc.out.sd);
265 }
266 }
267
268 talloc_free(tmp_ctx);
269 }
270
271 /*
272 get granted access of a file handle
273 */
274 NTSTATUS torture_smb2_get_allinfo_access(struct smb2_tree *tree,
275 struct smb2_handle handle,
276 uint32_t *granted_access)
277 {
278 NTSTATUS status;
279 TALLOC_CTX *tmp_ctx = talloc_new(tree);
280 union smb_fileinfo io;
281
282 io.generic.level = RAW_FILEINFO_SMB2_ALL_INFORMATION;
283 io.generic.in.file.handle = handle;
284
285 status = smb2_getinfo_file(tree, tmp_ctx, &io);
286 if (!NT_STATUS_IS_OK(status)) {
287 DEBUG(0, ("getinfo failed - %s\n", nt_errstr(status)));
288 goto out;
289 }
290
291 *granted_access = io.all_info2.out.access_mask;
292
293 out:
294 talloc_free(tmp_ctx);
295 return status;
296 }
297
298 /**
299 * open a smb2 tree connect
300 */
301 bool torture_smb2_tree_connect(struct torture_context *tctx,
302 struct smb2_session *session,
303 TALLOC_CTX *mem_ctx,
304 struct smb2_tree **_tree)
305 {
306 NTSTATUS status;
307 const char *host = torture_setting_string(tctx, "host", NULL);
308 const char *share = torture_setting_string(tctx, "share", NULL);
309 const char *unc;
310 struct smb2_tree *tree;
311 struct tevent_req *subreq;
312 uint32_t timeout_msec;
313
314 unc = talloc_asprintf(tctx, "\\\\%s\\%s", host, share);
315 torture_assert(tctx, unc != NULL, "talloc_asprintf");
316
317 tree = smb2_tree_init(session, mem_ctx, false);
318 torture_assert(tctx, tree != NULL, "smb2_tree_init");
319
320 timeout_msec = session->transport->options.request_timeout * 1000;
321
322 subreq = smb2cli_tcon_send(tree, tctx->ev,
323 session->transport->conn,
324 timeout_msec,
325 session->smbXcli,
326 tree->smbXcli,
327 0, /* flags */
328 unc);
329 torture_assert(tctx, subreq != NULL, "smb2cli_tcon_send");
330
331 torture_assert(tctx,
332 tevent_req_poll_ntstatus(subreq, tctx->ev, &status),
333 "tevent_req_poll_ntstatus");
334
335 status = smb2cli_tcon_recv(subreq);
336 TALLOC_FREE(subreq);
337 torture_assert_ntstatus_ok(tctx, status, "smb2cli_tcon_recv");
338
339 *_tree = tree;
340
341 return true;
342 }
343
344 /**
345 * do a smb2 session setup (without a tree connect)
346 */
347 bool torture_smb2_session_setup(struct torture_context *tctx,
348 struct smb2_transport *transport,
349 uint64_t previous_session_id,
350 TALLOC_CTX *mem_ctx,
351 struct smb2_session **_session)
352 {
353 NTSTATUS status;
354 struct smb2_session *session;
355
356 session = smb2_session_init(transport,
357 lpcfg_gensec_settings(tctx, tctx->lp_ctx),
358 mem_ctx);
359
360 if (session == NULL) {
361 return false;
362 }
363
364 status = smb2_session_setup_spnego(session,
365 popt_get_cmdline_credentials(),
366 previous_session_id);
367 if (!NT_STATUS_IS_OK(status)) {
368 torture_comment(tctx, "session setup failed: %s\n", nt_errstr(status));
369 talloc_free(session);
370 return false;
371 }
372
373 *_session = session;
374
375 return true;
376 }
377
378 /*
379 open a smb2 connection
380 */
381 bool torture_smb2_connection_ext(struct torture_context *tctx,
382 uint64_t previous_session_id,
383 const struct smbcli_options *options,
384 struct smb2_tree **tree)
385 {
386 NTSTATUS status;
387 const char *host = torture_setting_string(tctx, "host", NULL);
388 const char *share = torture_setting_string(tctx, "share", NULL);
389 const char *p = torture_setting_string(tctx, "unclist", NULL);
390 TALLOC_CTX *mem_ctx = NULL;
391 bool ok;
392
393 if (p != NULL) {
394 char *host2 = NULL;
395 char *share2 = NULL;
396
397 mem_ctx = talloc_new(tctx);
398 if (mem_ctx == NULL) {
399 return false;
400 }
401
402 ok = torture_get_conn_index(tctx->conn_index++, mem_ctx, tctx,
403 &host2, &share2);
404 if (!ok) {
405 TALLOC_FREE(mem_ctx);
406 return false;
407 }
408
409 host = host2;
410 share = share2;
411 }
412
413 status = smb2_connect_ext(tctx,
414 host,
415 lpcfg_smb_ports(tctx->lp_ctx),
416 share,
417 lpcfg_resolve_context(tctx->lp_ctx),
418 popt_get_cmdline_credentials(),
419 previous_session_id,
420 tree,
421 tctx->ev,
422 options,
423 lpcfg_socket_options(tctx->lp_ctx),
424 lpcfg_gensec_settings(tctx, tctx->lp_ctx)
425 );
426 if (!NT_STATUS_IS_OK(status)) {
427 torture_comment(tctx, "Failed to connect to SMB2 share \\\\%s\\%s - %s\n",
428 host, share, nt_errstr(status));
429 TALLOC_FREE(mem_ctx);
430 return false;
431 }
432
433 TALLOC_FREE(mem_ctx);
434 return true;
435 }
436
437 bool torture_smb2_connection(struct torture_context *tctx, struct smb2_tree **tree)
438 {
439 bool ret;
440 struct smbcli_options options;
441
442 lpcfg_smbcli_options(tctx->lp_ctx, &options);
443
444 ret = torture_smb2_connection_ext(tctx, 0, &options, tree);
445
446 return ret;
447 }
448
449 /**
450 * SMB2 connect with share from soption
451 **/
452 bool torture_smb2_con_sopt(struct torture_context *tctx,
453 const char *soption,
454 struct smb2_tree **tree)
455 {
456 struct smbcli_options options;
457 NTSTATUS status;
458 const char *host = torture_setting_string(tctx, "host", NULL);
459 const char *share = torture_setting_string(tctx, soption, NULL);
460
461 lpcfg_smbcli_options(tctx->lp_ctx, &options);
462
463 if (share == NULL) {
464 torture_comment(tctx, "No share for option %s\n", soption);
465 return false;
466 }
467
468 status = smb2_connect_ext(tctx,
469 host,
470 lpcfg_smb_ports(tctx->lp_ctx),
471 share,
472 lpcfg_resolve_context(tctx->lp_ctx),
473 popt_get_cmdline_credentials(),
474 0,
475 tree,
476 tctx->ev,
477 &options,
478 lpcfg_socket_options(tctx->lp_ctx),
479 lpcfg_gensec_settings(tctx, tctx->lp_ctx)
480 );
481 if (!NT_STATUS_IS_OK(status)) {
482 torture_comment(tctx, "Failed to connect to SMB2 share \\\\%s\\%s - %s\n",
483 host, share, nt_errstr(status));
484 return false;
485 }
486 return true;
487 }
488
489 /*
490 create and return a handle to a test file
491 with a specific access mask
492 */
493 NTSTATUS torture_smb2_testfile_access(struct smb2_tree *tree, const char *fname,
494 struct smb2_handle *handle,
495 uint32_t desired_access)
496 {
497 struct smb2_create io;
498 NTSTATUS status;
499
500 ZERO_STRUCT(io);
501 io.in.oplock_level = 0;
502 io.in.desired_access = desired_access;
503 io.in.file_attributes = FILE_ATTRIBUTE_NORMAL;
504 io.in.create_disposition = NTCREATEX_DISP_OPEN_IF;
505 io.in.share_access =
506 NTCREATEX_SHARE_ACCESS_DELETE|
507 NTCREATEX_SHARE_ACCESS_READ|
508 NTCREATEX_SHARE_ACCESS_WRITE;
509 io.in.create_options = 0;
510 io.in.fname = fname;
511
512 status = smb2_create(tree, tree, &io);
513 NT_STATUS_NOT_OK_RETURN(status);
514
515 *handle = io.out.file.handle;
516
517 return NT_STATUS_OK;
518 }
519
520 /*
521 create and return a handle to a test file
522 */
523 NTSTATUS torture_smb2_testfile(struct smb2_tree *tree, const char *fname,
524 struct smb2_handle *handle)
525 {
526 return torture_smb2_testfile_access(tree, fname, handle,
527 SEC_RIGHTS_FILE_ALL);
528 }
529
530 /*
531 create and return a handle to a test directory
532 with specific desired access
533 */
534 NTSTATUS torture_smb2_testdir_access(struct smb2_tree *tree, const char *fname,
535 struct smb2_handle *handle,
536 uint32_t desired_access)
537 {
538 struct smb2_create io;
539 NTSTATUS status;
540
541 ZERO_STRUCT(io);
542 io.in.oplock_level = 0;
543 io.in.desired_access = desired_access;
544 io.in.file_attributes = FILE_ATTRIBUTE_DIRECTORY;
545 io.in.create_disposition = NTCREATEX_DISP_OPEN_IF;
546 io.in.share_access = NTCREATEX_SHARE_ACCESS_READ|NTCREATEX_SHARE_ACCESS_WRITE|NTCREATEX_SHARE_ACCESS_DELETE;
547 io.in.create_options = NTCREATEX_OPTIONS_DIRECTORY;
548 io.in.fname = fname;
549
550 status = smb2_create(tree, tree, &io);
551 NT_STATUS_NOT_OK_RETURN(status);
552
553 *handle = io.out.file.handle;
554
555 return NT_STATUS_OK;
556 }
557
558 /*
559 create and return a handle to a test directory
560 */
561 NTSTATUS torture_smb2_testdir(struct smb2_tree *tree, const char *fname,
562 struct smb2_handle *handle)
563 {
564 return torture_smb2_testdir_access(tree, fname, handle,
565 SEC_RIGHTS_DIR_ALL);
566 }
567
568 /*
569 create a complex file using SMB2, to make it easier to
570 find fields in SMB2 getinfo levels
571 */
572 NTSTATUS torture_setup_complex_file(struct torture_context *tctx,
573 struct smb2_tree *tree, const char *fname)
574 {
575 struct smb2_handle handle;
576 NTSTATUS status = smb2_create_complex_file(tctx, tree, fname, &handle);
577 NT_STATUS_NOT_OK_RETURN(status);
578 return smb2_util_close(tree, handle);
579 }
580
581
582 /*
583 create a complex dir using SMB2, to make it easier to
584 find fields in SMB2 getinfo levels
585 */
586 NTSTATUS torture_setup_complex_dir(struct torture_context *tctx,
587 struct smb2_tree *tree, const char *fname)
588 {
589 struct smb2_handle handle;
590 NTSTATUS status = smb2_create_complex_dir(tctx, tree, fname, &handle);
591 NT_STATUS_NOT_OK_RETURN(status);
592 return smb2_util_close(tree, handle);
593 }
594
595
596 /*
597 return a handle to the root of the share
598 */
599 NTSTATUS smb2_util_roothandle(struct smb2_tree *tree, struct smb2_handle *handle)
600 {
601 struct smb2_create io;
602 NTSTATUS status;
603
604 ZERO_STRUCT(io);
605 io.in.oplock_level = 0;
606 io.in.desired_access = SEC_STD_SYNCHRONIZE | SEC_DIR_READ_ATTRIBUTE | SEC_DIR_LIST;
607 io.in.file_attributes = 0;
608 io.in.create_disposition = NTCREATEX_DISP_OPEN;
609 io.in.share_access = NTCREATEX_SHARE_ACCESS_READ|NTCREATEX_SHARE_ACCESS_DELETE;
610 io.in.create_options = NTCREATEX_OPTIONS_ASYNC_ALERT;
611 io.in.fname = "";
612
613 status = smb2_create(tree, tree, &io);
614 NT_STATUS_NOT_OK_RETURN(status);
615
616 *handle = io.out.file.handle;
617
618 return NT_STATUS_OK;
619 }
620
621 /* Comparable to torture_setup_dir, but for SMB2. */
622 bool smb2_util_setup_dir(struct torture_context *tctx, struct smb2_tree *tree,
623 const char *dname)
624 {
625 NTSTATUS status;
626
627 /* XXX: smb_raw_exit equivalent?
628 smb_raw_exit(cli->session); */
629 if (smb2_deltree(tree, dname) == -1) {
630 torture_result(tctx, TORTURE_ERROR, "Unable to deltree when setting up %s.\n", dname);
631 return false;
632 }
633
634 status = smb2_util_mkdir(tree, dname);
635 if (NT_STATUS_IS_ERR(status)) {
636 torture_result(tctx, TORTURE_ERROR, "Unable to mkdir when setting up %s - %s\n", dname,
637 nt_errstr(status));
638 return false;
639 }
640
641 return true;
642 }
643
644 #define CHECK_STATUS(status, correct) do { \
645 if (!NT_STATUS_EQUAL(status, correct)) { \
646 torture_result(tctx, TORTURE_FAIL, "(%s) Incorrect status %s - should be %s\n", \
647 __location__, nt_errstr(status), nt_errstr(correct)); \
648 ret = false; \
649 goto done; \
650 }} while (0)
651
652 /*
653 * Helper function to verify a security descriptor, by querying
654 * and comparing against the passed in sd.
655 */
656 bool smb2_util_verify_sd(TALLOC_CTX *tctx, struct smb2_tree *tree,
657 struct smb2_handle handle, struct security_descriptor *sd)
658 {
659 NTSTATUS status;
660 bool ret = true;
661 union smb_fileinfo q = {};
662
663 q.query_secdesc.level = RAW_FILEINFO_SEC_DESC;
664 q.query_secdesc.in.file.handle = handle;
665 q.query_secdesc.in.secinfo_flags =
666 SECINFO_OWNER |
667 SECINFO_GROUP |
668 SECINFO_DACL;
669 status = smb2_getinfo_file(tree, tctx, &q);
670 CHECK_STATUS(status, NT_STATUS_OK);
671
672 if (!security_acl_equal(
673 q.query_secdesc.out.sd->dacl, sd->dacl)) {
674 torture_warning(tctx, "%s: security descriptors don't match!\n",
675 __location__);
676 torture_warning(tctx, "got:\n");
677 NDR_PRINT_DEBUG(security_descriptor,
678 q.query_secdesc.out.sd);
679 torture_warning(tctx, "expected:\n");
680 NDR_PRINT_DEBUG(security_descriptor, sd);
681 ret = false;
682 }
683
684 done:
685 return ret;
686 }
687
688 /*
689 * Helper function to verify attributes, by querying
690 * and comparing against the passed in attrib.
691 */
692 bool smb2_util_verify_attrib(TALLOC_CTX *tctx, struct smb2_tree *tree,
693 struct smb2_handle handle, uint32_t attrib)
694 {
695 NTSTATUS status;
696 bool ret = true;
697 union smb_fileinfo q = {};
698
699 q.standard.level = RAW_FILEINFO_SMB2_ALL_INFORMATION;
700 q.standard.in.file.handle = handle;
701 status = smb2_getinfo_file(tree, tctx, &q);
702 CHECK_STATUS(status, NT_STATUS_OK);
703
704 q.all_info2.out.attrib &= ~(FILE_ATTRIBUTE_ARCHIVE | FILE_ATTRIBUTE_NONINDEXED);
705
706 if (q.all_info2.out.attrib != attrib) {
707 torture_warning(tctx, "%s: attributes don't match! "
708 "got %x, expected %x\n", __location__,
709 (uint32_t)q.standard.out.attrib,
710 (uint32_t)attrib);
711 ret = false;
712 }
713
714 done:
715 return ret;
716 }
717
718
719 uint32_t smb2_util_lease_state(const char *ls)
720 {
721 uint32_t val = 0;
722 int i;
723
724 for (i = 0; i < strlen(ls); i++) {
725 switch (ls[i]) {
726 case 'R':
727 val |= SMB2_LEASE_READ;
728 break;
729 case 'H':
730 val |= SMB2_LEASE_HANDLE;
731 break;
732 case 'W':
733 val |= SMB2_LEASE_WRITE;
734 break;
735 }
736 }
737
738 return val;
739 }
740
741
742 uint32_t smb2_util_share_access(const char *sharemode)
743 {
744 uint32_t val = NTCREATEX_SHARE_ACCESS_NONE; /* 0 */
745 int i;
746
747 for (i = 0; i < strlen(sharemode); i++) {
748 switch(sharemode[i]) {
749 case 'R':
750 val |= NTCREATEX_SHARE_ACCESS_READ;
751 break;
752 case 'W':
753 val |= NTCREATEX_SHARE_ACCESS_WRITE;
754 break;
755 case 'D':
756 val |= NTCREATEX_SHARE_ACCESS_DELETE;
757 break;
758 }
759 }
760
761 return val;
762 }
763
764 uint8_t smb2_util_oplock_level(const char *op)
765 {
766 uint8_t val = SMB2_OPLOCK_LEVEL_NONE;
767 int i;
768
769 for (i = 0; i < strlen(op); i++) {
770 switch (op[i]) {
771 case 's':
772 return SMB2_OPLOCK_LEVEL_II;
773 case 'x':
774 return SMB2_OPLOCK_LEVEL_EXCLUSIVE;
775 case 'b':
776 return SMB2_OPLOCK_LEVEL_BATCH;
777 default:
778 continue;
779 }
780 }
781
782 return val;
783 }
784
785 /**
786 * Helper functions to fill a smb2_create struct for several
787 * open scenarios.
788 */
789 void smb2_generic_create_share(struct smb2_create *io, struct smb2_lease *ls,
790 bool dir, const char *name, uint32_t disposition,
791 uint32_t share_access,
792 uint8_t oplock, uint64_t leasekey,
793 uint32_t leasestate)
794 {
795 ZERO_STRUCT(*io);
796 io->in.security_flags = 0x00;
797 io->in.oplock_level = oplock;
798 io->in.impersonation_level = NTCREATEX_IMPERSONATION_IMPERSONATION;
799 io->in.create_flags = 0x00000000;
800 io->in.reserved = 0x00000000;
801 io->in.desired_access = SEC_RIGHTS_FILE_ALL;
802 io->in.file_attributes = FILE_ATTRIBUTE_NORMAL;
803 io->in.share_access = share_access;
804 io->in.create_disposition = disposition;
805 io->in.create_options = NTCREATEX_OPTIONS_SEQUENTIAL_ONLY |
806 NTCREATEX_OPTIONS_ASYNC_ALERT |
807 NTCREATEX_OPTIONS_NON_DIRECTORY_FILE |
808 0x00200000;
809 io->in.fname = name;
810
811 if (dir) {
812 io->in.create_options = NTCREATEX_OPTIONS_DIRECTORY;
813 io->in.file_attributes = FILE_ATTRIBUTE_DIRECTORY;
814 io->in.create_disposition = NTCREATEX_DISP_CREATE;
815 }
816
817 if (ls) {
818 ZERO_STRUCTPN(ls);
819 ls->lease_key.data[0] = leasekey;
820 ls->lease_key.data[1] = ~leasekey;
821 ls->lease_state = leasestate;
822 io->in.lease_request = ls;
823 }
824 }
825
826 void smb2_generic_create(struct smb2_create *io, struct smb2_lease *ls,
827 bool dir, const char *name, uint32_t disposition,
828 uint8_t oplock, uint64_t leasekey,
829 uint32_t leasestate)
830 {
831 smb2_generic_create_share(io, ls, dir, name, disposition,
832 smb2_util_share_access("RWD"),
833 oplock,
834 leasekey, leasestate);
835 }
836
837 void smb2_lease_create_share(struct smb2_create *io, struct smb2_lease *ls,
838 bool dir, const char *name, uint32_t share_access,
839 uint64_t leasekey, uint32_t leasestate)
840 {
841 smb2_generic_create_share(io, ls, dir, name, NTCREATEX_DISP_OPEN_IF,
842 share_access, SMB2_OPLOCK_LEVEL_LEASE,
843 leasekey, leasestate);
844 }
845
846 void smb2_lease_create(struct smb2_create *io, struct smb2_lease *ls,
847 bool dir, const char *name, uint64_t leasekey,
848 uint32_t leasestate)
849 {
850 smb2_lease_create_share(io, ls, dir, name,
851 smb2_util_share_access("RWD"),
852 leasekey, leasestate);
853 }
854
855 void smb2_lease_v2_create_share(struct smb2_create *io,
856 struct smb2_lease *ls,
857 bool dir,
858 const char *name,
859 uint32_t share_access,
860 uint64_t leasekey,
861 const uint64_t *parentleasekey,
862 uint32_t leasestate,
863 uint16_t lease_epoch)
864 {
865 smb2_generic_create_share(io, NULL, dir, name, NTCREATEX_DISP_OPEN_IF,
866 share_access, SMB2_OPLOCK_LEVEL_LEASE, 0, 0);
867
868 if (ls) {
869 ZERO_STRUCT(*ls);
870 ls->lease_key.data[0] = leasekey;
871 ls->lease_key.data[1] = ~leasekey;
872 ls->lease_state = leasestate;
873 if (parentleasekey != NULL) {
874 ls->lease_flags |= SMB2_LEASE_FLAG_PARENT_LEASE_KEY_SET;
875 ls->parent_lease_key.data[0] = *parentleasekey;
876 ls->parent_lease_key.data[1] = ~(*parentleasekey);
877 }
878 ls->lease_epoch = lease_epoch;
879 io->in.lease_request_v2 = ls;
880 }
881 }
882
883 void smb2_lease_v2_create(struct smb2_create *io,
884 struct smb2_lease *ls,
885 bool dir,
886 const char *name,
887 uint64_t leasekey,
888 const uint64_t *parentleasekey,
889 uint32_t leasestate,
890 uint16_t lease_epoch)
891 {
892 smb2_lease_v2_create_share(io, ls, dir, name,
893 smb2_util_share_access("RWD"),
894 leasekey, parentleasekey,
895 leasestate, lease_epoch);
896 }
897
898
899 void smb2_oplock_create_share(struct smb2_create *io, const char *name,
900 uint32_t share_access, uint8_t oplock)
901 {
902 smb2_generic_create_share(io, NULL, false, name, NTCREATEX_DISP_OPEN_IF,
903 share_access, oplock, 0, 0);
904 }
905 void smb2_oplock_create(struct smb2_create *io, const char *name, uint8_t oplock)
906 {
907 smb2_oplock_create_share(io, name, smb2_util_share_access("RWD"),
908 oplock);
909 }
910
Samba GIT mirror