search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
param: replace P_OCTAL variable setting with s3 version which uses sscanf
[Samba.git] / source4 / librpc / rpc / dcerpc_util.c
blobf87d8da466b932aef21ec29a555d34028fa3b102
1 /*
2 Unix SMB/CIFS implementation.
3
4 dcerpc utility functions
5
6 Copyright (C) Andrew Tridgell 2003
7 Copyright (C) Jelmer Vernooij 2004
8 Copyright (C) Andrew Bartlett <abartlet@samba.org> 2005
9 Copyright (C) Rafal Szczesniak 2006
10
11 This program is free software; you can redistribute it and/or modify
12 it under the terms of the GNU General Public License as published by
13 the Free Software Foundation; either version 3 of the License, or
14 (at your option) any later version.
15
16 This program is distributed in the hope that it will be useful,
17 but WITHOUT ANY WARRANTY; without even the implied warranty of
18 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
19 GNU General Public License for more details.
20
21 You should have received a copy of the GNU General Public License
22 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 */
24
25 #include "includes.h"
26 #include "lib/events/events.h"
27 #include "libcli/composite/composite.h"
28 #include "librpc/gen_ndr/ndr_epmapper_c.h"
29 #include "librpc/gen_ndr/ndr_dcerpc.h"
30 #include "librpc/gen_ndr/ndr_misc.h"
31 #include "librpc/rpc/dcerpc_proto.h"
32 #include "auth/credentials/credentials.h"
33 #include "auth/gensec/gensec.h"
34 #include "param/param.h"
35 #include "librpc/rpc/rpc_common.h"
36
37 /*
38 find a dcerpc call on an interface by name
39 */
40 const struct ndr_interface_call *dcerpc_iface_find_call(const struct ndr_interface_table *iface,
41 const char *name)
42 {
43 int i;
44 for (i=0;i<iface->num_calls;i++) {
45 if (strcmp(iface->calls[i].name, name) == 0) {
46 return &iface->calls[i];
47 }
48 }
49 return NULL;
50 }
51
52 /*
53 push a ncacn_packet into a blob, potentially with auth info
54 */
55 NTSTATUS ncacn_push_auth(DATA_BLOB *blob, TALLOC_CTX *mem_ctx,
56 struct ncacn_packet *pkt,
57 struct dcerpc_auth *auth_info)
58 {
59 struct ndr_push *ndr;
60 enum ndr_err_code ndr_err;
61
62 ndr = ndr_push_init_ctx(mem_ctx);
63 if (!ndr) {
64 return NT_STATUS_NO_MEMORY;
65 }
66
67 if (!(pkt->drep[0] & DCERPC_DREP_LE)) {
68 ndr->flags |= LIBNDR_FLAG_BIGENDIAN;
69 }
70
71 if (pkt->pfc_flags & DCERPC_PFC_FLAG_OBJECT_UUID) {
72 ndr->flags |= LIBNDR_FLAG_OBJECT_PRESENT;
73 }
74
75 if (auth_info) {
76 pkt->auth_length = auth_info->credentials.length;
77 } else {
78 pkt->auth_length = 0;
79 }
80
81 ndr_err = ndr_push_ncacn_packet(ndr, NDR_SCALARS|NDR_BUFFERS, pkt);
82 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
83 return ndr_map_error2ntstatus(ndr_err);
84 }
85
86 if (auth_info) {
87 #if 0
88 /* the s3 rpc server doesn't handle auth padding in
89 bind requests. Use zero auth padding to keep us
90 working with old servers */
91 uint32_t offset = ndr->offset;
92 ndr_err = ndr_push_align(ndr, 16);
93 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
94 return ndr_map_error2ntstatus(ndr_err);
95 }
96 auth_info->auth_pad_length = ndr->offset - offset;
97 #else
98 auth_info->auth_pad_length = 0;
99 #endif
100 ndr_err = ndr_push_dcerpc_auth(ndr, NDR_SCALARS|NDR_BUFFERS, auth_info);
101 if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
102 return ndr_map_error2ntstatus(ndr_err);
103 }
104 }
105
106 *blob = ndr_push_blob(ndr);
107
108 /* fill in the frag length */
109 dcerpc_set_frag_length(blob, blob->length);
110
111 return NT_STATUS_OK;
112 }
113
114
115 struct epm_map_binding_state {
116 struct dcerpc_binding *binding;
117 const struct ndr_interface_table *table;
118 struct dcerpc_pipe *pipe;
119 struct policy_handle handle;
120 struct GUID object;
121 struct epm_twr_t twr;
122 struct epm_twr_t *twr_r;
123 uint32_t num_towers;
124 struct epm_Map r;
125 };
126
127
128 static void continue_epm_recv_binding(struct composite_context *ctx);
129 static void continue_epm_map(struct tevent_req *subreq);
130
131
132 /*
133 Stage 2 of epm_map_binding: Receive connected rpc pipe and send endpoint
134 mapping rpc request
135 */
136 static void continue_epm_recv_binding(struct composite_context *ctx)
137 {
138 struct composite_context *c = talloc_get_type(ctx->async.private_data,
139 struct composite_context);
140 struct epm_map_binding_state *s = talloc_get_type(c->private_data,
141 struct epm_map_binding_state);
142 struct tevent_req *subreq;
143
144 /* receive result of rpc pipe connect request */
145 c->status = dcerpc_pipe_connect_b_recv(ctx, c, &s->pipe);
146 if (!composite_is_ok(c)) return;
147
148 c->status = dcerpc_binding_build_tower(s->pipe, s->binding, &s->twr.tower);
149 if (!composite_is_ok(c)) return;
150
151 /* with some nice pretty paper around it of course */
152 s->r.in.object = &s->object;
153 s->r.in.map_tower = &s->twr;
154 s->r.in.entry_handle = &s->handle;
155 s->r.in.max_towers = 1;
156 s->r.out.entry_handle = &s->handle;
157 s->r.out.num_towers = &s->num_towers;
158
159 /* send request for an endpoint mapping - a rpc request on connected pipe */
160 subreq = dcerpc_epm_Map_r_send(s, c->event_ctx,
161 s->pipe->binding_handle,
162 &s->r);
163 if (composite_nomem(subreq, c)) return;
164
165 tevent_req_set_callback(subreq, continue_epm_map, c);
166 }
167
168
169 /*
170 Stage 3 of epm_map_binding: Receive endpoint mapping and provide binding details
171 */
172 static void continue_epm_map(struct tevent_req *subreq)
173 {
174 struct composite_context *c = tevent_req_callback_data(subreq,
175 struct composite_context);
176 struct epm_map_binding_state *s = talloc_get_type(c->private_data,
177 struct epm_map_binding_state);
178 const char *endpoint;
179
180 /* receive result of a rpc request */
181 c->status = dcerpc_epm_Map_r_recv(subreq, s);
182 TALLOC_FREE(subreq);
183 if (!composite_is_ok(c)) return;
184
185 /* check the details */
186 if (s->r.out.result != 0 || *s->r.out.num_towers != 1) {
187 composite_error(c, NT_STATUS_PORT_UNREACHABLE);
188 return;
189 }
190
191 s->twr_r = s->r.out.towers[0].twr;
192 if (s->twr_r == NULL) {
193 composite_error(c, NT_STATUS_PORT_UNREACHABLE);
194 return;
195 }
196
197 if (s->twr_r->tower.num_floors != s->twr.tower.num_floors ||
198 s->twr_r->tower.floors[3].lhs.protocol != s->twr.tower.floors[3].lhs.protocol) {
199 composite_error(c, NT_STATUS_PORT_UNREACHABLE);
200 return;
201 }
202
203 /* get received endpoint */
204 endpoint = dcerpc_floor_get_rhs_data(s, &s->twr_r->tower.floors[3]);
205 if (composite_nomem(endpoint, c)) return;
206
207 c->status = dcerpc_binding_set_string_option(s->binding,
208 "endpoint",
209 endpoint);
210 if (!composite_is_ok(c)) {
211 return;
212 }
213
214 composite_done(c);
215 }
216
217
218 /*
219 Request for endpoint mapping of dcerpc binding - try to request for endpoint
220 unless there is default one.
221 */
222 struct composite_context *dcerpc_epm_map_binding_send(TALLOC_CTX *mem_ctx,
223 struct dcerpc_binding *binding,
224 const struct ndr_interface_table *table,
225 struct tevent_context *ev,
226 struct loadparm_context *lp_ctx)
227 {
228 struct composite_context *c;
229 struct epm_map_binding_state *s;
230 struct composite_context *pipe_connect_req;
231 struct cli_credentials *anon_creds;
232 NTSTATUS status;
233 struct dcerpc_binding *epmapper_binding;
234 int i;
235
236 if (ev == NULL) {
237 return NULL;
238 }
239
240 /* composite context allocation and setup */
241 c = composite_create(mem_ctx, ev);
242 if (c == NULL) {
243 return NULL;
244 }
245
246 s = talloc_zero(c, struct epm_map_binding_state);
247 if (composite_nomem(s, c)) return c;
248 c->private_data = s;
249
250 s->binding = binding;
251 s->object = dcerpc_binding_get_object(binding);
252 s->table = table;
253
254 c->status = dcerpc_binding_set_abstract_syntax(binding,
255 &table->syntax_id);
256 if (!composite_is_ok(c)) {
257 return c;
258 }
259
260 /*
261 First, check if there is a default endpoint specified in the IDL
262 */
263 for (i = 0; i < table->endpoints->count; i++) {
264 struct dcerpc_binding *default_binding;
265 enum dcerpc_transport_t transport;
266 enum dcerpc_transport_t dtransport;
267 const char *dendpoint = NULL;
268
269 status = dcerpc_parse_binding(s,
270 table->endpoints->names[i],
271 &default_binding);
272 if (!NT_STATUS_IS_OK(status)) {
273 continue;
274 }
275
276 transport = dcerpc_binding_get_transport(binding);
277 dtransport = dcerpc_binding_get_transport(default_binding);
278 if (transport == NCA_UNKNOWN) {
279 c->status = dcerpc_binding_set_transport(binding,
280 dtransport);
281 if (!composite_is_ok(c)) {
282 return c;
283 }
284 transport = dtransport;
285 }
286
287 if (transport != dtransport) {
288 TALLOC_FREE(default_binding);
289 continue;
290 }
291
292 dendpoint = dcerpc_binding_get_string_option(default_binding,
293 "endpoint");
294 if (dendpoint == NULL) {
295 TALLOC_FREE(default_binding);
296 continue;
297 }
298
299 c->status = dcerpc_binding_set_string_option(binding,
300 "endpoint",
301 dendpoint);
302 if (!composite_is_ok(c)) {
303 return c;
304 }
305
306 TALLOC_FREE(default_binding);
307 composite_done(c);
308 return c;
309 }
310
311 /* anonymous credentials for rpc connection used to get endpoint mapping */
312 anon_creds = cli_credentials_init_anon(s);
313 if (composite_nomem(anon_creds, c)) return c;
314
315 epmapper_binding = dcerpc_binding_dup(s, binding);
316 if (composite_nomem(epmapper_binding, c)) return c;
317
318 /* basic endpoint mapping data */
319 c->status = dcerpc_binding_set_string_option(epmapper_binding,
320 "endpoint", NULL);
321 if (!composite_is_ok(c)) {
322 return c;
323 }
324 c->status = dcerpc_binding_set_flags(epmapper_binding, 0, UINT32_MAX);
325 if (!composite_is_ok(c)) {
326 return c;
327 }
328 c->status = dcerpc_binding_set_assoc_group_id(epmapper_binding, 0);
329 if (!composite_is_ok(c)) {
330 return c;
331 }
332 c->status = dcerpc_binding_set_object(epmapper_binding, GUID_zero());
333 if (!composite_is_ok(c)) {
334 return c;
335 }
336
337 /* initiate rpc pipe connection */
338 pipe_connect_req = dcerpc_pipe_connect_b_send(s, epmapper_binding,
339 &ndr_table_epmapper,
340 anon_creds, c->event_ctx,
341 lp_ctx);
342 if (composite_nomem(pipe_connect_req, c)) return c;
343
344 composite_continue(c, pipe_connect_req, continue_epm_recv_binding, c);
345 return c;
346 }
347
348
349 /*
350 Receive result of endpoint mapping request
351 */
352 NTSTATUS dcerpc_epm_map_binding_recv(struct composite_context *c)
353 {
354 NTSTATUS status = composite_wait(c);
355
356 talloc_free(c);
357 return status;
358 }
359
360
361 /*
362 Get endpoint mapping for rpc connection
363 */
364 _PUBLIC_ NTSTATUS dcerpc_epm_map_binding(TALLOC_CTX *mem_ctx, struct dcerpc_binding *binding,
365 const struct ndr_interface_table *table, struct tevent_context *ev,
366 struct loadparm_context *lp_ctx)
367 {
368 struct composite_context *c;
369
370 c = dcerpc_epm_map_binding_send(mem_ctx, binding, table, ev, lp_ctx);
371 return dcerpc_epm_map_binding_recv(c);
372 }
373
374
375 struct pipe_auth_state {
376 struct dcerpc_pipe *pipe;
377 const struct dcerpc_binding *binding;
378 const struct ndr_interface_table *table;
379 struct loadparm_context *lp_ctx;
380 struct cli_credentials *credentials;
381 unsigned int logon_retries;
382 };
383
384
385 static void continue_auth_schannel(struct composite_context *ctx);
386 static void continue_auth(struct composite_context *ctx);
387 static void continue_auth_none(struct composite_context *ctx);
388 static void continue_ntlmssp_connection(struct composite_context *ctx);
389 static void continue_spnego_after_wrong_pass(struct composite_context *ctx);
390
391
392 /*
393 Stage 2 of pipe_auth: Receive result of schannel bind request
394 */
395 static void continue_auth_schannel(struct composite_context *ctx)
396 {
397 struct composite_context *c = talloc_get_type(ctx->async.private_data,
398 struct composite_context);
399
400 c->status = dcerpc_bind_auth_schannel_recv(ctx);
401 if (!composite_is_ok(c)) return;
402
403 composite_done(c);
404 }
405
406
407 /*
408 Stage 2 of pipe_auth: Receive result of authenticated bind request
409 */
410 static void continue_auth(struct composite_context *ctx)
411 {
412 struct composite_context *c = talloc_get_type(ctx->async.private_data,
413 struct composite_context);
414
415 c->status = dcerpc_bind_auth_recv(ctx);
416 if (!composite_is_ok(c)) return;
417
418 composite_done(c);
419 }
420 /*
421 Stage 2 of pipe_auth: Receive result of authenticated bind request, but handle fallbacks:
422 SPNEGO -> NTLMSSP
423 */
424 static void continue_auth_auto(struct composite_context *ctx)
425 {
426 struct composite_context *c = talloc_get_type(ctx->async.private_data,
427 struct composite_context);
428 struct pipe_auth_state *s = talloc_get_type(c->private_data, struct pipe_auth_state);
429 struct composite_context *sec_conn_req;
430
431 c->status = dcerpc_bind_auth_recv(ctx);
432 if (NT_STATUS_EQUAL(c->status, NT_STATUS_INVALID_PARAMETER)) {
433 /*
434 * Retry with NTLMSSP auth as fallback
435 * send a request for secondary rpc connection
436 */
437 sec_conn_req = dcerpc_secondary_connection_send(s->pipe,
438 s->binding);
439 composite_continue(c, sec_conn_req, continue_ntlmssp_connection, c);
440 return;
441 } else if (NT_STATUS_EQUAL(c->status, NT_STATUS_LOGON_FAILURE) ||
442 NT_STATUS_EQUAL(c->status, NT_STATUS_UNSUCCESSFUL)) {
443 /*
444 try a second time on any error. We don't just do it
445 on LOGON_FAILURE as some servers will give a
446 NT_STATUS_UNSUCCESSFUL on a authentication error on RPC
447 */
448 const char *principal;
449 const char *endpoint;
450
451 principal = gensec_get_target_principal(s->pipe->conn->security_state.generic_state);
452 if (principal == NULL) {
453 const char *hostname = gensec_get_target_hostname(s->pipe->conn->security_state.generic_state);
454 const char *service = gensec_get_target_service(s->pipe->conn->security_state.generic_state);
455 if (hostname != NULL && service != NULL) {
456 principal = talloc_asprintf(c, "%s/%s", service, hostname);
457 }
458 }
459
460 endpoint = dcerpc_binding_get_string_option(s->binding, "endpoint");
461
462 if ((cli_credentials_failed_kerberos_login(s->credentials, principal, &s->logon_retries) ||
463 cli_credentials_wrong_password(s->credentials)) &&
464 endpoint != NULL) {
465 /*
466 * Retry SPNEGO with a better password
467 * send a request for secondary rpc connection
468 */
469 sec_conn_req = dcerpc_secondary_connection_send(s->pipe,
470 s->binding);
471 composite_continue(c, sec_conn_req, continue_spnego_after_wrong_pass, c);
472 return;
473 }
474 }
475
476 if (!composite_is_ok(c)) return;
477
478 composite_done(c);
479 }
480
481 /*
482 Stage 3 of pipe_auth (fallback to NTLMSSP case): Receive secondary
483 rpc connection (the first one can't be used any more, due to the
484 bind nak) and perform authenticated bind request
485 */
486 static void continue_ntlmssp_connection(struct composite_context *ctx)
487 {
488 struct composite_context *c;
489 struct pipe_auth_state *s;
490 struct composite_context *auth_req;
491 struct dcerpc_pipe *p2;
492 void *pp;
493
494 c = talloc_get_type(ctx->async.private_data, struct composite_context);
495 s = talloc_get_type(c->private_data, struct pipe_auth_state);
496
497 /* receive secondary rpc connection */
498 c->status = dcerpc_secondary_connection_recv(ctx, &p2);
499 if (!composite_is_ok(c)) return;
500
501
502 /* this is a rather strange situation. When
503 we come into the routine, s is a child of s->pipe, and
504 when we created p2 above, it also became a child of
505 s->pipe.
506
507 Now we want p2 to be a parent of s->pipe, and we want s to
508 be a parent of both of them! If we don't do this very
509 carefully we end up creating a talloc loop
510 */
511
512 /* we need the new contexts to hang off the same context
513 that s->pipe is on, but the only way to get that is
514 via talloc_parent() */
515 pp = talloc_parent(s->pipe);
516
517 /* promote s to be at the top */
518 talloc_steal(pp, s);
519
520 /* and put p2 under s */
521 talloc_steal(s, p2);
522
523 /* now put s->pipe under p2 */
524 talloc_steal(p2, s->pipe);
525
526 s->pipe = p2;
527
528 /* initiate a authenticated bind */
529 auth_req = dcerpc_bind_auth_send(c, s->pipe, s->table,
530 s->credentials,
531 lpcfg_gensec_settings(c, s->lp_ctx),
532 DCERPC_AUTH_TYPE_NTLMSSP,
533 dcerpc_auth_level(s->pipe->conn),
534 s->table->authservices->names[0]);
535 composite_continue(c, auth_req, continue_auth, c);
536 }
537
538 /*
539 Stage 3 of pipe_auth (retry on wrong password): Receive secondary
540 rpc connection (the first one can't be used any more, due to the
541 bind nak) and perform authenticated bind request
542 */
543 static void continue_spnego_after_wrong_pass(struct composite_context *ctx)
544 {
545 struct composite_context *c;
546 struct pipe_auth_state *s;
547 struct composite_context *auth_req;
548 struct dcerpc_pipe *p2;
549
550 c = talloc_get_type(ctx->async.private_data, struct composite_context);
551 s = talloc_get_type(c->private_data, struct pipe_auth_state);
552
553 /* receive secondary rpc connection */
554 c->status = dcerpc_secondary_connection_recv(ctx, &p2);
555 if (!composite_is_ok(c)) return;
556
557 talloc_steal(s, p2);
558 talloc_steal(p2, s->pipe);
559 s->pipe = p2;
560
561 /* initiate a authenticated bind */
562 auth_req = dcerpc_bind_auth_send(c, s->pipe, s->table,
563 s->credentials,
564 lpcfg_gensec_settings(c, s->lp_ctx),
565 DCERPC_AUTH_TYPE_SPNEGO,
566 dcerpc_auth_level(s->pipe->conn),
567 s->table->authservices->names[0]);
568 composite_continue(c, auth_req, continue_auth, c);
569 }
570
571
572 /*
573 Stage 2 of pipe_auth: Receive result of non-authenticated bind request
574 */
575 static void continue_auth_none(struct composite_context *ctx)
576 {
577 struct composite_context *c = talloc_get_type(ctx->async.private_data,
578 struct composite_context);
579
580 c->status = dcerpc_bind_auth_none_recv(ctx);
581 if (!composite_is_ok(c)) return;
582
583 composite_done(c);
584 }
585
586
587 /*
588 Request to perform an authenticated bind if required. Authentication
589 is determined using credentials passed and binding flags.
590 */
591 struct composite_context *dcerpc_pipe_auth_send(struct dcerpc_pipe *p,
592 const struct dcerpc_binding *binding,
593 const struct ndr_interface_table *table,
594 struct cli_credentials *credentials,
595 struct loadparm_context *lp_ctx)
596 {
597 struct composite_context *c;
598 struct pipe_auth_state *s;
599 struct composite_context *auth_schannel_req;
600 struct composite_context *auth_req;
601 struct composite_context *auth_none_req;
602 struct dcecli_connection *conn;
603 uint8_t auth_type;
604
605 /* composite context allocation and setup */
606 c = composite_create(p, p->conn->event_ctx);
607 if (c == NULL) return NULL;
608
609 s = talloc_zero(c, struct pipe_auth_state);
610 if (composite_nomem(s, c)) return c;
611 c->private_data = s;
612
613 /* store parameters in state structure */
614 s->binding = binding;
615 s->table = table;
616 s->credentials = credentials;
617 s->pipe = p;
618 s->lp_ctx = lp_ctx;
619
620 conn = s->pipe->conn;
621 conn->flags = dcerpc_binding_get_flags(binding);
622
623 if (DEBUGLVL(100)) {
624 conn->flags |= DCERPC_DEBUG_PRINT_BOTH;
625 }
626
627 if (cli_credentials_is_anonymous(s->credentials)) {
628 auth_none_req = dcerpc_bind_auth_none_send(c, s->pipe, s->table);
629 composite_continue(c, auth_none_req, continue_auth_none, c);
630 return c;
631 }
632
633 if ((conn->flags & DCERPC_SCHANNEL) &&
634 !cli_credentials_get_netlogon_creds(s->credentials)) {
635 /* If we don't already have netlogon credentials for
636 * the schannel bind, then we have to get these
637 * first */
638 auth_schannel_req = dcerpc_bind_auth_schannel_send(c, s->pipe, s->table,
639 s->credentials, s->lp_ctx,
640 dcerpc_auth_level(conn));
641 composite_continue(c, auth_schannel_req, continue_auth_schannel, c);
642 return c;
643 }
644
645 /*
646 * we rely on the already authenticated CIFS connection
647 * if not doing sign or seal
648 */
649 if (conn->transport.transport == NCACN_NP &&
650 !(conn->flags & (DCERPC_SIGN|DCERPC_SEAL))) {
651 auth_none_req = dcerpc_bind_auth_none_send(c, s->pipe, s->table);
652 composite_continue(c, auth_none_req, continue_auth_none, c);
653 return c;
654 }
655
656
657 /* Perform an authenticated DCE-RPC bind
658 */
659 if (!(conn->flags & (DCERPC_SIGN|DCERPC_SEAL))) {
660 /*
661 we are doing an authenticated connection,
662 but not using sign or seal. We must force
663 the CONNECT dcerpc auth type as a NONE auth
664 type doesn't allow authentication
665 information to be passed.
666 */
667 conn->flags |= DCERPC_CONNECT;
668 }
669
670 if (conn->flags & DCERPC_AUTH_SPNEGO) {
671 auth_type = DCERPC_AUTH_TYPE_SPNEGO;
672
673 } else if (conn->flags & DCERPC_AUTH_KRB5) {
674 auth_type = DCERPC_AUTH_TYPE_KRB5;
675
676 } else if (conn->flags & DCERPC_SCHANNEL) {
677 auth_type = DCERPC_AUTH_TYPE_SCHANNEL;
678
679 } else if (conn->flags & DCERPC_AUTH_NTLM) {
680 auth_type = DCERPC_AUTH_TYPE_NTLMSSP;
681
682 } else {
683 /* try SPNEGO with fallback to NTLMSSP */
684 auth_req = dcerpc_bind_auth_send(c, s->pipe, s->table,
685 s->credentials,
686 lpcfg_gensec_settings(c, s->lp_ctx),
687 DCERPC_AUTH_TYPE_SPNEGO,
688 dcerpc_auth_level(conn),
689 s->table->authservices->names[0]);
690 composite_continue(c, auth_req, continue_auth_auto, c);
691 return c;
692 }
693
694 auth_req = dcerpc_bind_auth_send(c, s->pipe, s->table,
695 s->credentials,
696 lpcfg_gensec_settings(c, s->lp_ctx),
697 auth_type,
698 dcerpc_auth_level(conn),
699 s->table->authservices->names[0]);
700 composite_continue(c, auth_req, continue_auth, c);
701 return c;
702 }
703
704
705 /*
706 Receive result of authenticated bind request on dcerpc pipe
707
708 This returns *p, which may be different to the one originally
709 supllied, as it rebinds to a new pipe due to authentication fallback
710
711 */
712 NTSTATUS dcerpc_pipe_auth_recv(struct composite_context *c, TALLOC_CTX *mem_ctx,
713 struct dcerpc_pipe **p)
714 {
715 NTSTATUS status;
716
717 struct pipe_auth_state *s = talloc_get_type(c->private_data,
718 struct pipe_auth_state);
719 status = composite_wait(c);
720 if (!NT_STATUS_IS_OK(status)) {
721 char *uuid_str = GUID_string(s->pipe, &s->table->syntax_id.uuid);
722 DEBUG(0, ("Failed to bind to uuid %s for %s %s\n", uuid_str,
723 dcerpc_binding_string(uuid_str, s->binding), nt_errstr(status)));
724 talloc_free(uuid_str);
725 } else {
726 talloc_steal(mem_ctx, s->pipe);
727 *p = s->pipe;
728 }
729
730 talloc_free(c);
731 return status;
732 }
733
734
735 /*
736 Perform an authenticated bind if needed - sync version
737
738 This may change *p, as it rebinds to a new pipe due to authentication fallback
739 */
740 _PUBLIC_ NTSTATUS dcerpc_pipe_auth(TALLOC_CTX *mem_ctx,
741 struct dcerpc_pipe **p,
742 const struct dcerpc_binding *binding,
743 const struct ndr_interface_table *table,
744 struct cli_credentials *credentials,
745 struct loadparm_context *lp_ctx)
746 {
747 struct composite_context *c;
748
749 c = dcerpc_pipe_auth_send(*p, binding, table, credentials, lp_ctx);
750 return dcerpc_pipe_auth_recv(c, mem_ctx, p);
751 }
752
753
754 NTSTATUS dcerpc_generic_session_key(struct dcecli_connection *c,
755 DATA_BLOB *session_key)
756 {
757 /* this took quite a few CPU cycles to find ... */
758 session_key->data = discard_const_p(unsigned char, "SystemLibraryDTC");
759 session_key->length = 16;
760 return NT_STATUS_OK;
761 }
762
763 /*
764 fetch the user session key - may be default (above) or the SMB session key
765
766 The key is always truncated to 16 bytes
767 */
768 _PUBLIC_ NTSTATUS dcerpc_fetch_session_key(struct dcerpc_pipe *p,
769 DATA_BLOB *session_key)
770 {
771 NTSTATUS status;
772 status = p->conn->security_state.session_key(p->conn, session_key);
773 if (!NT_STATUS_IS_OK(status)) {
774 return status;
775 }
776
777 session_key->length = MIN(session_key->length, 16);
778
779 return NT_STATUS_OK;
780 }
781
782
783 /*
784 log a rpc packet in a format suitable for ndrdump. This is especially useful
785 for sealed packets, where ethereal cannot easily see the contents
786
787 this triggers on a debug level of >= 10
788 */
789 _PUBLIC_ void dcerpc_log_packet(const char *lockdir,
790 const struct ndr_interface_table *ndr,
791 uint32_t opnum, uint32_t flags,
792 const DATA_BLOB *pkt)
793 {
794 const int num_examples = 20;
795 int i;
796
797 if (lockdir == NULL) return;
798
799 for (i=0;i<num_examples;i++) {
800 char *name=NULL;
801 asprintf(&name, "%s/rpclog/%s-%u.%d.%s",
802 lockdir, ndr->name, opnum, i,
803 (flags&NDR_IN)?"in":"out");
804 if (name == NULL) {
805 return;
806 }
807 if (!file_exist(name)) {
808 if (file_save(name, pkt->data, pkt->length)) {
809 DEBUG(10,("Logged rpc packet to %s\n", name));
810 }
811 free(name);
812 break;
813 }
814 free(name);
815 }
816 }
817
818
819
820 /*
821 create a secondary context from a primary connection
822
823 this uses dcerpc_alter_context() to create a new dcerpc context_id
824 */
825 _PUBLIC_ NTSTATUS dcerpc_secondary_context(struct dcerpc_pipe *p,
826 struct dcerpc_pipe **pp2,
827 const struct ndr_interface_table *table)
828 {
829 NTSTATUS status;
830 struct dcerpc_pipe *p2;
831
832 p2 = talloc_zero(p, struct dcerpc_pipe);
833 if (p2 == NULL) {
834 return NT_STATUS_NO_MEMORY;
835 }
836 p2->conn = talloc_reference(p2, p->conn);
837 p2->request_timeout = p->request_timeout;
838
839 p2->context_id = ++p->conn->next_context_id;
840
841 p2->syntax = table->syntax_id;
842
843 p2->transfer_syntax = p->transfer_syntax;
844
845 p2->binding = dcerpc_binding_dup(p2, p->binding);
846 if (p2->binding == NULL) {
847 talloc_free(p2);
848 return NT_STATUS_NO_MEMORY;
849 }
850
851 p2->binding_handle = dcerpc_pipe_binding_handle(p2);
852 if (p2->binding_handle == NULL) {
853 talloc_free(p2);
854 return NT_STATUS_NO_MEMORY;
855 }
856
857 status = dcerpc_alter_context(p2, p2, &p2->syntax, &p2->transfer_syntax);
858 if (!NT_STATUS_IS_OK(status)) {
859 talloc_free(p2);
860 return status;
861 }
862
863 *pp2 = p2;
864
865 return NT_STATUS_OK;
866 }
Samba GIT mirror