search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
r3444: Don't use random data as endpoint if no default endpoint is known and no
[Samba/gebeck_regimport.git] / source4 / librpc / rpc / dcerpc_util.c
blobdb30354609e9f2c57e3aac4a754c0ac17c29d9d3
1 /*
2 Unix SMB/CIFS implementation.
3
4 dcerpc utility functions
5
6 Copyright (C) Andrew Tridgell 2003
7 Copyright (C) Jelmer Vernooij 2004
8
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
13
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
18
19 You should have received a copy of the GNU General Public License
20 along with this program; if not, write to the Free Software
21 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 */
23
24 #include "includes.h"
25 #include "system/network.h"
26 #include "librpc/gen_ndr/ndr_epmapper.h"
27
28 /*
29 find the pipe name for a local IDL interface
30 */
31 const char *idl_pipe_name(const char *uuid, uint32_t if_version)
32 {
33 int i;
34 for (i=0;dcerpc_pipes[i];i++) {
35 if (strcasecmp(dcerpc_pipes[i]->uuid, uuid) == 0 &&
36 dcerpc_pipes[i]->if_version == if_version) {
37 return dcerpc_pipes[i]->name;
38 }
39 }
40 return "UNKNOWN";
41 }
42
43 /*
44 find the number of calls defined by local IDL
45 */
46 int idl_num_calls(const char *uuid, uint32_t if_version)
47 {
48 int i;
49 for (i=0;dcerpc_pipes[i];i++) {
50 if (strcasecmp(dcerpc_pipes[i]->uuid, uuid) == 0 &&
51 dcerpc_pipes[i]->if_version == if_version) {
52 return dcerpc_pipes[i]->num_calls;
53 }
54 }
55 return -1;
56 }
57
58
59 /*
60 find a dcerpc interface by name
61 */
62 const struct dcerpc_interface_table *idl_iface_by_name(const char *name)
63 {
64 int i;
65 for (i=0;dcerpc_pipes[i];i++) {
66 if (strcasecmp(dcerpc_pipes[i]->name, name) == 0) {
67 return dcerpc_pipes[i];
68 }
69 }
70 return NULL;
71 }
72
73 /*
74 find a dcerpc interface by uuid
75 */
76 const struct dcerpc_interface_table *idl_iface_by_uuid(const char *uuid)
77 {
78 int i;
79 for (i=0;dcerpc_pipes[i];i++) {
80 if (strcasecmp(dcerpc_pipes[i]->uuid, uuid) == 0) {
81 return dcerpc_pipes[i];
82 }
83 }
84 return NULL;
85 }
86
87
88
89 /*
90 push a dcerpc_packet into a blob, potentially with auth info
91 */
92 NTSTATUS dcerpc_push_auth(DATA_BLOB *blob, TALLOC_CTX *mem_ctx,
93 struct dcerpc_packet *pkt,
94 struct dcerpc_auth *auth_info)
95 {
96 NTSTATUS status;
97 struct ndr_push *ndr;
98
99 ndr = ndr_push_init_ctx(mem_ctx);
100 if (!ndr) {
101 return NT_STATUS_NO_MEMORY;
102 }
103
104 if (!(pkt->drep[0] & DCERPC_DREP_LE)) {
105 ndr->flags |= LIBNDR_FLAG_BIGENDIAN;
106 }
107
108 if (auth_info) {
109 pkt->auth_length = auth_info->credentials.length;
110 } else {
111 pkt->auth_length = 0;
112 }
113
114 status = ndr_push_dcerpc_packet(ndr, NDR_SCALARS|NDR_BUFFERS, pkt);
115 if (!NT_STATUS_IS_OK(status)) {
116 return status;
117 }
118
119 if (auth_info) {
120 status = ndr_push_dcerpc_auth(ndr, NDR_SCALARS|NDR_BUFFERS, auth_info);
121 }
122
123 *blob = ndr_push_blob(ndr);
124
125 /* fill in the frag length */
126 dcerpc_set_frag_length(blob, blob->length);
127
128 return NT_STATUS_OK;
129 }
130
131 #define MAX_PROTSEQ 10
132
133 static const struct {
134 const char *name;
135 enum dcerpc_transport_t transport;
136 int num_protocols;
137 enum epm_protocols protseq[MAX_PROTSEQ];
138 } transports[] = {
139 { "ncacn_np", NCACN_NP, 3,
140 { EPM_PROTOCOL_NCACN, EPM_PROTOCOL_SMB, EPM_PROTOCOL_NETBIOS }},
141 { "ncacn_ip_tcp", NCACN_IP_TCP, 3,
142 { EPM_PROTOCOL_NCACN, EPM_PROTOCOL_TCP, EPM_PROTOCOL_IP } },
143 { "ncacn_http", NCACN_HTTP, 3,
144 { EPM_PROTOCOL_NCACN, EPM_PROTOCOL_HTTP, EPM_PROTOCOL_IP } },
145 { "ncadg_ip_udp", NCACN_IP_UDP, 3,
146 { EPM_PROTOCOL_NCADG, EPM_PROTOCOL_UDP, EPM_PROTOCOL_IP } },
147 { "ncalrpc", NCALRPC, 2,
148 { EPM_PROTOCOL_NCALRPC, EPM_PROTOCOL_PIPE } },
149 { "ncacn_unix_stream", NCACN_UNIX_STREAM, 2,
150 { EPM_PROTOCOL_NCACN, EPM_PROTOCOL_UNIX_DS } },
151 { "ncadg_unix_dgram", NCADG_UNIX_DGRAM, 2,
152 { EPM_PROTOCOL_NCADG, EPM_PROTOCOL_UNIX_DS } },
153 { "ncacn_at_dsp", NCACN_AT_DSP, 3,
154 { EPM_PROTOCOL_NCACN, EPM_PROTOCOL_APPLETALK, EPM_PROTOCOL_DSP } },
155 { "ncadg_at_ddp", NCADG_AT_DDP, 3,
156 { EPM_PROTOCOL_NCADG, EPM_PROTOCOL_APPLETALK, EPM_PROTOCOL_DDP } },
157 { "ncacn_vns_ssp", NCACN_VNS_SPP, 3,
158 { EPM_PROTOCOL_NCACN, EPM_PROTOCOL_STREETTALK, EPM_PROTOCOL_VINES_SPP } },
159 { "ncacn_vns_ipc", NCACN_VNS_IPC, 3,
160 { EPM_PROTOCOL_NCACN, EPM_PROTOCOL_STREETTALK, EPM_PROTOCOL_VINES_IPC }, },
161 { "ncadg_ipx", NCADG_IPX, 2,
162 { EPM_PROTOCOL_NCADG, EPM_PROTOCOL_IPX },
163 },
164 { "ncacn_spx", NCACN_SPX, 2,
165 { EPM_PROTOCOL_NCACN, EPM_PROTOCOL_SPX },
166 },
167 };
168
169 static const struct {
170 const char *name;
171 uint32_t flag;
172 } ncacn_options[] = {
173 {"sign", DCERPC_SIGN},
174 {"seal", DCERPC_SEAL},
175 {"connect", DCERPC_CONNECT},
176 {"validate", DCERPC_DEBUG_VALIDATE_BOTH},
177 {"print", DCERPC_DEBUG_PRINT_BOTH},
178 {"padcheck", DCERPC_DEBUG_PAD_CHECK},
179 {"bigendian", DCERPC_PUSH_BIGENDIAN}
180 };
181
182
183
184 /*
185 form a binding string from a binding structure
186 */
187 const char *dcerpc_binding_string(TALLOC_CTX *mem_ctx, const struct dcerpc_binding *b)
188 {
189 char *s = talloc_strdup(mem_ctx, "");
190 int i;
191 const char *t_name=NULL;
192
193 for (i=0;i<ARRAY_SIZE(transports);i++) {
194 if (transports[i].transport == b->transport) {
195 t_name = transports[i].name;
196 }
197 }
198 if (!t_name) {
199 return NULL;
200 }
201
202 if (!uuid_all_zero(&b->object)) {
203 s = talloc_asprintf(s, "%s@",
204 GUID_string(mem_ctx, &b->object));
205 }
206
207 s = talloc_asprintf_append(s, "%s:", t_name);
208 if (!s) return NULL;
209
210 if (b->host) {
211 s = talloc_asprintf_append(s, "%s", b->host);
212 }
213
214 if (!b->endpoint && !b->options && !b->flags) {
215 return s;
216 }
217
218 s = talloc_asprintf_append(s, "[");
219
220 if (b->endpoint) {
221 s = talloc_asprintf_append(s, "%s", b->endpoint);
222 }
223
224 /* this is a *really* inefficent way of dealing with strings,
225 but this is rarely called and the strings are always short,
226 so I don't care */
227 for (i=0;b->options && b->options[i];i++) {
228 s = talloc_asprintf_append(s, ",%s", b->options[i]);
229 if (!s) return NULL;
230 }
231
232 for (i=0;i<ARRAY_SIZE(ncacn_options);i++) {
233 if (b->flags & ncacn_options[i].flag) {
234 s = talloc_asprintf_append(s, ",%s", ncacn_options[i].name);
235 if (!s) return NULL;
236 }
237 }
238
239 s = talloc_asprintf_append(s, "]");
240
241 return s;
242 }
243
244 /*
245 parse a binding string into a dcerpc_binding structure
246 */
247 NTSTATUS dcerpc_parse_binding(TALLOC_CTX *mem_ctx, const char *s, struct dcerpc_binding *b)
248 {
249 char *options, *type;
250 char *p;
251 int i, j, comma_count;
252
253 p = strchr(s, '@');
254
255 if (p && PTR_DIFF(p, s) == 36) { /* 36 is the length of a UUID */
256 NTSTATUS status;
257
258 status = GUID_from_string(s, &b->object);
259
260 if (NT_STATUS_IS_ERR(status)) {
261 DEBUG(0, ("Failed parsing UUID\n"));
262 return status;
263 }
264
265 s = p + 1;
266 } else {
267 ZERO_STRUCT(b->object);
268 }
269
270 b->object_version = 0;
271
272 p = strchr(s, ':');
273 if (!p) {
274 return NT_STATUS_INVALID_PARAMETER;
275 }
276
277 type = talloc_strndup(mem_ctx, s, PTR_DIFF(p, s));
278 if (!type) {
279 return NT_STATUS_NO_MEMORY;
280 }
281
282 for (i=0;i<ARRAY_SIZE(transports);i++) {
283 if (strcasecmp(type, transports[i].name) == 0) {
284 b->transport = transports[i].transport;
285 break;
286 }
287 }
288 if (i==ARRAY_SIZE(transports)) {
289 DEBUG(0,("Unknown dcerpc transport '%s'\n", type));
290 return NT_STATUS_INVALID_PARAMETER;
291 }
292
293 s = p+1;
294
295 p = strchr(s, '[');
296 if (p) {
297 b->host = talloc_strndup(mem_ctx, s, PTR_DIFF(p, s));
298 options = talloc_strdup(mem_ctx, p+1);
299 if (options[strlen(options)-1] != ']') {
300 return NT_STATUS_INVALID_PARAMETER;
301 }
302 options[strlen(options)-1] = 0;
303 } else {
304 b->host = talloc_strdup(mem_ctx, s);
305 options = NULL;
306 }
307
308 if (!b->host) {
309 return NT_STATUS_NO_MEMORY;
310 }
311
312 b->options = NULL;
313 b->flags = 0;
314 b->endpoint = NULL;
315
316 if (!options) {
317 return NT_STATUS_OK;
318 }
319
320 comma_count = count_chars(options, ',');
321
322 b->options = talloc_array_p(mem_ctx, const char *, comma_count+2);
323 if (!b->options) {
324 return NT_STATUS_NO_MEMORY;
325 }
326
327 for (i=0; (p = strchr(options, ',')); i++) {
328 b->options[i] = talloc_strndup(mem_ctx, options, PTR_DIFF(p, options));
329 if (!b->options[i]) {
330 return NT_STATUS_NO_MEMORY;
331 }
332 options = p+1;
333 }
334 b->options[i] = options;
335 b->options[i+1] = NULL;
336
337 /* some options are pre-parsed for convenience */
338 for (i=0;b->options[i];i++) {
339 for (j=0;j<ARRAY_SIZE(ncacn_options);j++) {
340 if (strcasecmp(ncacn_options[j].name, b->options[i]) == 0) {
341 int k;
342 b->flags |= ncacn_options[j].flag;
343 for (k=i;b->options[k];k++) {
344 b->options[k] = b->options[k+1];
345 }
346 i--;
347 break;
348 }
349 }
350 }
351
352 if (b->options[0]) {
353 /* Endpoint is first option */
354 b->endpoint = b->options[0];
355 if (strlen(b->endpoint) == 0) b->endpoint = NULL;
356
357 for (i=0;b->options[i];i++) {
358 b->options[i] = b->options[i+1];
359 }
360 }
361
362 if (b->options[0] == NULL)
363 b->options = NULL;
364
365 return NT_STATUS_OK;
366 }
367
368 const char *dcerpc_floor_get_rhs_data(TALLOC_CTX *mem_ctx, struct epm_floor *floor)
369 {
370 switch (floor->lhs.protocol) {
371 case EPM_PROTOCOL_TCP:
372 if (floor->rhs.tcp.port == 0) return NULL;
373 return talloc_asprintf(mem_ctx, "%d", floor->rhs.tcp.port);
374
375 case EPM_PROTOCOL_UDP:
376 if (floor->rhs.udp.port == 0) return NULL;
377 return talloc_asprintf(mem_ctx, "%d", floor->rhs.udp.port);
378
379 case EPM_PROTOCOL_HTTP:
380 if (floor->rhs.http.port == 0) return NULL;
381 return talloc_asprintf(mem_ctx, "%d", floor->rhs.http.port);
382
383 case EPM_PROTOCOL_IP:
384 if (floor->rhs.ip.address == 0) {
385 return NULL;
386 }
387
388 {
389 struct ipv4_addr in;
390 in.s_addr = htonl(floor->rhs.ip.address);
391 return talloc_strdup(mem_ctx, sys_inet_ntoa(in));
392 }
393
394 case EPM_PROTOCOL_NCACN:
395 return NULL;
396
397 case EPM_PROTOCOL_NCADG:
398 return NULL;
399
400 case EPM_PROTOCOL_SMB:
401 if (strlen(floor->rhs.smb.unc) == 0) return NULL;
402 return talloc_strdup(mem_ctx, floor->rhs.smb.unc);
403
404 case EPM_PROTOCOL_PIPE:
405 if (strlen(floor->rhs.pipe.path) == 0) return NULL;
406 return talloc_strdup(mem_ctx, floor->rhs.pipe.path);
407
408 case EPM_PROTOCOL_NETBIOS:
409 if (strlen(floor->rhs.netbios.name) == 0) return NULL;
410 return talloc_strdup(mem_ctx, floor->rhs.netbios.name);
411
412 case EPM_PROTOCOL_NCALRPC:
413 return NULL;
414
415 case EPM_PROTOCOL_VINES_SPP:
416 return talloc_asprintf(mem_ctx, "%d", floor->rhs.vines_spp.port);
417
418 case EPM_PROTOCOL_VINES_IPC:
419 return talloc_asprintf(mem_ctx, "%d", floor->rhs.vines_ipc.port);
420
421 case EPM_PROTOCOL_STREETTALK:
422 return talloc_strdup(mem_ctx, floor->rhs.streettalk.streettalk);
423
424 case EPM_PROTOCOL_UNIX_DS:
425 if (strlen(floor->rhs.unix_ds.path) == 0) return NULL;
426 return talloc_strdup(mem_ctx, floor->rhs.unix_ds.path);
427
428 case EPM_PROTOCOL_NULL:
429 return NULL;
430 }
431
432 return NULL;
433 }
434
435 static NTSTATUS dcerpc_floor_set_rhs_data(TALLOC_CTX *mem_ctx, struct epm_floor *floor, const char *data)
436 {
437 switch (floor->lhs.protocol) {
438 case EPM_PROTOCOL_TCP:
439 floor->rhs.tcp.port = atoi(data);
440 return NT_STATUS_OK;
441
442 case EPM_PROTOCOL_UDP:
443 floor->rhs.udp.port = atoi(data);
444 return NT_STATUS_OK;
445
446 case EPM_PROTOCOL_HTTP:
447 floor->rhs.http.port = atoi(data);
448 return NT_STATUS_OK;
449
450 case EPM_PROTOCOL_IP:
451 if (strlen(data) > 0) {
452 floor->rhs.ip.address = ntohl(interpret_addr(data));
453 } else {
454 floor->rhs.ip.address = 0;
455 }
456 return NT_STATUS_OK;
457
458 case EPM_PROTOCOL_NCACN:
459 floor->rhs.ncacn.minor_version = 0;
460 return NT_STATUS_OK;
461
462 case EPM_PROTOCOL_NCADG:
463 floor->rhs.ncadg.minor_version = 0;
464 return NT_STATUS_OK;
465
466 case EPM_PROTOCOL_SMB:
467 floor->rhs.smb.unc = talloc_strdup(mem_ctx, data);
468 if (!floor->rhs.smb.unc) {
469 return NT_STATUS_NO_MEMORY;
470 }
471 return NT_STATUS_OK;
472
473 case EPM_PROTOCOL_PIPE:
474 floor->rhs.pipe.path = talloc_strdup(mem_ctx, data);
475 if (!floor->rhs.pipe.path) {
476 return NT_STATUS_NO_MEMORY;
477 }
478 return NT_STATUS_OK;
479
480 case EPM_PROTOCOL_NETBIOS:
481 floor->rhs.netbios.name = talloc_strdup(mem_ctx, data);
482 if (!floor->rhs.netbios.name) {
483 return NT_STATUS_NO_MEMORY;
484 }
485 return NT_STATUS_OK;
486
487 case EPM_PROTOCOL_NCALRPC:
488 return NT_STATUS_OK;
489
490 case EPM_PROTOCOL_VINES_SPP:
491 floor->rhs.vines_spp.port = atoi(data);
492 return NT_STATUS_OK;
493
494 case EPM_PROTOCOL_VINES_IPC:
495 floor->rhs.vines_ipc.port = atoi(data);
496 return NT_STATUS_OK;
497
498 case EPM_PROTOCOL_STREETTALK:
499 floor->rhs.streettalk.streettalk = talloc_strdup(mem_ctx, data);
500 if (!floor->rhs.streettalk.streettalk) {
501 return NT_STATUS_NO_MEMORY;
502 }
503 return NT_STATUS_OK;
504
505 case EPM_PROTOCOL_UNIX_DS:
506 floor->rhs.unix_ds.path = talloc_strdup(mem_ctx, data);
507 if (!floor->rhs.unix_ds.path) {
508 return NT_STATUS_NO_MEMORY;
509 }
510 return NT_STATUS_OK;
511
512 case EPM_PROTOCOL_NULL:
513 return NT_STATUS_OK;
514 }
515
516 return NT_STATUS_NOT_SUPPORTED;
517 }
518
519 enum dcerpc_transport_t dcerpc_transport_by_tower(struct epm_tower *tower)
520 {
521 int i;
522
523 /* Find a transport that matches this tower */
524 for (i=0;i<ARRAY_SIZE(transports);i++) {
525 int j;
526 if (transports[i].num_protocols != tower->num_floors - 2) {
527 continue;
528 }
529
530 for (j = 0; j < transports[i].num_protocols; j++) {
531 if (transports[i].protseq[j] != tower->floors[j+2].lhs.protocol) {
532 break;
533 }
534 }
535
536 if (j == transports[i].num_protocols) {
537 return transports[i].transport;
538 }
539 }
540
541 /* Unknown transport */
542 return -1;
543 }
544
545 NTSTATUS dcerpc_binding_from_tower(TALLOC_CTX *mem_ctx, struct epm_tower *tower, struct dcerpc_binding *binding)
546 {
547 ZERO_STRUCT(binding->object);
548 binding->options = NULL;
549 binding->host = NULL;
550 binding->flags = 0;
551
552 binding->transport = dcerpc_transport_by_tower(tower);
553
554 if (binding->transport == -1) {
555 return NT_STATUS_NOT_SUPPORTED;
556 }
557
558 if (tower->num_floors < 1) {
559 return NT_STATUS_OK;
560 }
561
562 /* Set object uuid */
563 binding->object = tower->floors[0].lhs.info.uuid.uuid;
564 binding->object_version = tower->floors[0].lhs.info.uuid.version;
565
566 /* Ignore floor 1, it contains the NDR version info */
567
568 binding->options = NULL;
569
570 /* Set endpoint */
571 if (tower->num_floors >= 4) {
572 binding->endpoint = dcerpc_floor_get_rhs_data(mem_ctx, &tower->floors[3]);
573 } else {
574 binding->endpoint = NULL;
575 }
576
577 /* Set network address */
578 if (tower->num_floors >= 5) {
579 binding->host = dcerpc_floor_get_rhs_data(mem_ctx, &tower->floors[4]);
580 }
581 return NT_STATUS_OK;
582 }
583
584 NTSTATUS dcerpc_binding_build_tower(TALLOC_CTX *mem_ctx, struct dcerpc_binding *binding, struct epm_tower *tower)
585 {
586 const enum epm_protocols *protseq;
587 int num_protocols = -1, i;
588 NTSTATUS status;
589
590 /* Find transport */
591 for (i=0;i<ARRAY_SIZE(transports);i++) {
592 if (transports[i].transport == binding->transport) {
593 protseq = transports[i].protseq;
594 num_protocols = transports[i].num_protocols;
595 break;
596 }
597 }
598
599 if (num_protocols == -1) {
600 DEBUG(0, ("Unable to find transport with id '%d'\n", binding->transport));
601 return NT_STATUS_UNSUCCESSFUL;
602 }
603
604 tower->num_floors = 2 + num_protocols;
605 tower->floors = talloc_array_p(mem_ctx, struct epm_floor, tower->num_floors);
606
607 /* Floor 0 */
608 tower->floors[0].lhs.protocol = EPM_PROTOCOL_UUID;
609 tower->floors[0].lhs.info.uuid.uuid = binding->object;
610 tower->floors[0].lhs.info.uuid.version = binding->object_version;
611 tower->floors[0].rhs.uuid.unknown = 0;
612
613 /* Floor 1 */
614 tower->floors[1].lhs.protocol = EPM_PROTOCOL_UUID;
615 tower->floors[1].lhs.info.uuid.version = NDR_GUID_VERSION;
616 tower->floors[1].rhs.uuid.unknown = 0;
617 status = GUID_from_string(NDR_GUID, &tower->floors[1].lhs.info.uuid.uuid);
618 if (NT_STATUS_IS_ERR(status)) {
619 return status;
620 }
621
622 /* Floor 2 to num_protocols */
623 for (i = 0; i < num_protocols; i++) {
624 tower->floors[2 + i].lhs.protocol = protseq[i];
625 tower->floors[2 + i].lhs.info.lhs_data = data_blob_talloc(mem_ctx, NULL, 0);
626 ZERO_STRUCT(tower->floors[2 + i].rhs);
627 dcerpc_floor_set_rhs_data(mem_ctx, &tower->floors[2 + i], "");
628 }
629
630 /* The 4th floor contains the endpoint */
631 if (num_protocols >= 2 && binding->endpoint) {
632 status = dcerpc_floor_set_rhs_data(mem_ctx, &tower->floors[3], binding->endpoint);
633 if (NT_STATUS_IS_ERR(status)) {
634 return status;
635 }
636 }
637
638 /* The 5th contains the network address */
639 if (num_protocols >= 3 && binding->host) {
640 status = dcerpc_floor_set_rhs_data(mem_ctx, &tower->floors[4], binding->host);
641 if (NT_STATUS_IS_ERR(status)) {
642 return status;
643 }
644 }
645
646 return NT_STATUS_OK;
647 }
648
649 NTSTATUS dcerpc_epm_map_binding(TALLOC_CTX *mem_ctx, struct dcerpc_binding *binding,
650 const char *uuid, uint_t version)
651 {
652 struct dcerpc_pipe *p;
653 NTSTATUS status;
654 struct epm_Map r;
655 struct policy_handle handle;
656 struct GUID guid;
657 struct epm_twr_t twr, *twr_r;
658 struct dcerpc_binding epmapper_binding;
659
660
661 if (!strcmp(uuid, DCERPC_EPMAPPER_UUID)) {
662 switch(binding->transport) {
663 case NCACN_IP_TCP: binding->endpoint = talloc_asprintf(mem_ctx, "%d", EPMAPPER_PORT); return NT_STATUS_OK;
664 case NCALRPC: binding->endpoint = EPMAPPER_IDENTIFIER; return NT_STATUS_OK;
665 default: return NT_STATUS_NOT_SUPPORTED;
666 }
667 }
668
669
670 ZERO_STRUCT(epmapper_binding);
671 epmapper_binding.transport = binding->transport;
672 epmapper_binding.host = binding->host;
673 epmapper_binding.options = NULL;
674 epmapper_binding.flags = 0;
675 epmapper_binding.endpoint = NULL;
676
677 status = dcerpc_pipe_connect_b(&p,
678 &epmapper_binding,
679 DCERPC_EPMAPPER_UUID,
680 DCERPC_EPMAPPER_VERSION,
681 NULL, NULL, NULL);
682
683 if (!NT_STATUS_IS_OK(status)) {
684 return status;
685 }
686
687 ZERO_STRUCT(handle);
688 ZERO_STRUCT(guid);
689
690 status = GUID_from_string(uuid, &binding->object);
691 if (NT_STATUS_IS_ERR(status)) {
692 return status;
693 }
694
695 binding->object_version = version;
696
697 status = dcerpc_binding_build_tower(p, binding, &twr.tower);
698 if (NT_STATUS_IS_ERR(status)) {
699 return status;
700 }
701
702 /* with some nice pretty paper around it of course */
703 r.in.object = &guid;
704 r.in.map_tower = &twr;
705 r.in.entry_handle = &handle;
706 r.in.max_towers = 1;
707 r.out.entry_handle = &handle;
708
709 status = dcerpc_epm_Map(p, p, &r);
710 if (!NT_STATUS_IS_OK(status)) {
711 dcerpc_pipe_close(p);
712 return status;
713 }
714 if (r.out.result != 0 || r.out.num_towers != 1) {
715 dcerpc_pipe_close(p);
716 return NT_STATUS_PORT_UNREACHABLE;
717 }
718
719 twr_r = r.out.towers[0].twr;
720 if (!twr_r) {
721 dcerpc_pipe_close(p);
722 return NT_STATUS_PORT_UNREACHABLE;
723 }
724
725 if (twr_r->tower.num_floors != twr.tower.num_floors ||
726 twr_r->tower.floors[3].lhs.protocol != twr.tower.floors[3].lhs.protocol) {
727 dcerpc_pipe_close(p);
728 return NT_STATUS_PORT_UNREACHABLE;
729 }
730
731 binding->endpoint = dcerpc_floor_get_rhs_data(mem_ctx, &twr_r->tower.floors[3]);
732
733 dcerpc_pipe_close(p);
734
735 return NT_STATUS_OK;
736 }
737
738
739 /* open a rpc connection to a rpc pipe on SMB using the binding
740 structure to determine the endpoint and options */
741 static NTSTATUS dcerpc_pipe_connect_ncacn_np(struct dcerpc_pipe **p,
742 struct dcerpc_binding *binding,
743 const char *pipe_uuid,
744 uint32_t pipe_version,
745 const char *domain,
746 const char *username,
747 const char *password)
748 {
749 NTSTATUS status;
750 BOOL retry;
751 struct smbcli_state *cli;
752 const char *pipe_name = NULL;
753 TALLOC_CTX *mem_ctx = talloc_init("dcerpc_pipe_connect_ncacn_np");
754
755 if (!binding->endpoint) {
756 const struct dcerpc_interface_table *table = idl_iface_by_uuid(pipe_uuid);
757 struct dcerpc_binding default_binding;
758 int i;
759
760 if (!table) {
761 DEBUG(0,("Unknown interface endpoint '%s'\n", pipe_uuid));
762 talloc_destroy(mem_ctx);
763 return NT_STATUS_INVALID_PARAMETER;
764 }
765
766 /* Find one of the default pipes for this interface */
767 for (i = 0; i < table->endpoints->count; i++) {
768 status = dcerpc_parse_binding(mem_ctx, table->endpoints->names[i], &default_binding);
769
770 if (NT_STATUS_IS_OK(status) && default_binding.transport == NCACN_NP) {
771 pipe_name = default_binding.endpoint;
772 break;
773
774 }
775 }
776
777 if (pipe_name == NULL) {
778 DEBUG(0, ("No default named pipe specified for interface with UUID %s\n", pipe_uuid));
779 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
780 }
781 } else {
782 pipe_name = binding->endpoint;
783 }
784
785 if (!strncasecmp(pipe_name, "/pipe/", 6) ||
786 !strncasecmp(pipe_name, "\\pipe\\", 6)) {
787 pipe_name+=6;
788 }
789
790 if (pipe_name[0] != '\\') {
791 pipe_name = talloc_asprintf(mem_ctx, "\\%s", pipe_name);
792 }
793
794 if (!username || !username[0] ||
795 (binding->flags & DCERPC_SCHANNEL_ANY)) {
796 status = smbcli_full_connection(NULL, &cli, lp_netbios_name(),
797 binding->host, NULL,
798 "ipc$", "?????",
799 "", "", NULL, 0, &retry);
800 } else {
801 status = smbcli_full_connection(NULL, &cli, lp_netbios_name(),
802 binding->host, NULL,
803 "ipc$", "?????",
804 username, domain,
805 password, 0, &retry);
806 }
807 if (!NT_STATUS_IS_OK(status)) {
808 DEBUG(0,("Failed to connect to %s - %s\n", binding->host, nt_errstr(status)));
809 talloc_destroy(mem_ctx);
810 return status;
811 }
812
813 status = dcerpc_pipe_open_smb(p, cli->tree, pipe_name);
814 if (!NT_STATUS_IS_OK(status)) {
815 DEBUG(0,("Failed to open pipe %s - %s\n", pipe_name, nt_errstr(status)));
816 smbcli_tdis(cli);
817 smbcli_shutdown(cli);
818 talloc_destroy(mem_ctx);
819 return status;
820 }
821
822 talloc_destroy(mem_ctx);
823
824 /* this ensures that the reference count is decremented so
825 a pipe close will really close the link */
826 talloc_steal(*p, cli);
827
828 (*p)->flags = binding->flags;
829
830 /* remember the binding string for possible secondary connections */
831 (*p)->binding_string = dcerpc_binding_string((*p), binding);
832
833 if (username && username[0] && (binding->flags & DCERPC_SCHANNEL_ANY)) {
834 status = dcerpc_bind_auth_schannel(*p, pipe_uuid, pipe_version,
835 domain, username, password);
836 } else if (username && username[0] &&
837 (binding->flags & (DCERPC_CONNECT|DCERPC_SIGN|DCERPC_SEAL))) {
838 status = dcerpc_bind_auth_ntlm(*p, pipe_uuid, pipe_version, domain, username, password);
839 } else {
840 status = dcerpc_bind_auth_none(*p, pipe_uuid, pipe_version);
841
842 }
843
844 if (!NT_STATUS_IS_OK(status)) {
845 DEBUG(0,("Failed to bind to uuid %s - %s\n", pipe_uuid, nt_errstr(status)));
846 dcerpc_pipe_close(*p);
847 *p = NULL;
848 return status;
849 }
850
851 return NT_STATUS_OK;
852 }
853
854 /* open a rpc connection to a rpc pipe on SMP using the binding
855 structure to determine the endpoint and options */
856 static NTSTATUS dcerpc_pipe_connect_ncalrpc(struct dcerpc_pipe **p,
857 struct dcerpc_binding *binding,
858 const char *pipe_uuid,
859 uint32_t pipe_version,
860 const char *domain,
861 const char *username,
862 const char *password)
863 {
864 NTSTATUS status;
865 TALLOC_CTX *mem_ctx = talloc_init("dcerpc_pipe_connect_ncalrpc");
866
867 /* Look up identifier using the epmapper */
868 if (!binding->endpoint) {
869 status = dcerpc_epm_map_binding(mem_ctx, binding, pipe_uuid, pipe_version);
870 if (!NT_STATUS_IS_OK(status)) {
871 DEBUG(0,("Failed to map DCERPC/TCP NCALRPC identifier for '%s' - %s\n",
872 pipe_uuid, nt_errstr(status)));
873 talloc_destroy(mem_ctx);
874 return status;
875 }
876 DEBUG(1,("Mapped to DCERPC/TCP identifier %s\n", binding->endpoint));
877 }
878
879 status = dcerpc_pipe_open_pipe(p, binding->endpoint);
880
881 if (!NT_STATUS_IS_OK(status)) {
882 DEBUG(0,("Failed to open ncalrpc pipe '%s' - %s\n", binding->endpoint, nt_errstr(status)));
883 talloc_destroy(mem_ctx);
884 return status;
885 }
886
887 (*p)->flags = binding->flags;
888
889 /* remember the binding string for possible secondary connections */
890 (*p)->binding_string = dcerpc_binding_string((*p), binding);
891
892 if (username && username[0] && (binding->flags & DCERPC_SCHANNEL_ANY)) {
893 status = dcerpc_bind_auth_schannel(*p, pipe_uuid, pipe_version,
894 domain, username, password);
895 } else if (username && username[0]) {
896 status = dcerpc_bind_auth_ntlm(*p, pipe_uuid, pipe_version, domain, username, password);
897 } else {
898 status = dcerpc_bind_auth_none(*p, pipe_uuid, pipe_version);
899 }
900
901 if (!NT_STATUS_IS_OK(status)) {
902 DEBUG(0,("Failed to bind to uuid %s - %s\n",
903 pipe_uuid, nt_errstr(status)));
904 dcerpc_pipe_close(*p);
905 *p = NULL;
906 talloc_destroy(mem_ctx);
907 return status;
908 }
909
910 talloc_destroy(mem_ctx);
911 return status;
912 }
913
914
915
916 /* open a rpc connection to a rpc pipe on SMP using the binding
917 structure to determine the endpoint and options */
918 static NTSTATUS dcerpc_pipe_connect_ncacn_unix_stream(struct dcerpc_pipe **p,
919 struct dcerpc_binding *binding,
920 const char *pipe_uuid,
921 uint32_t pipe_version,
922 const char *domain,
923 const char *username,
924 const char *password)
925 {
926 NTSTATUS status;
927
928 if (!binding->endpoint) {
929 DEBUG(0, ("Path to unix socket not specified\n"));
930 return NT_STATUS_INVALID_PARAMETER;
931 }
932
933 status = dcerpc_pipe_open_unix_stream(p, binding->endpoint);
934 if (!NT_STATUS_IS_OK(status)) {
935 DEBUG(0,("Failed to open unix socket %s - %s\n",
936 binding->endpoint, nt_errstr(status)));
937 return status;
938 }
939
940 (*p)->flags = binding->flags;
941
942 /* remember the binding string for possible secondary connections */
943 (*p)->binding_string = dcerpc_binding_string((*p), binding);
944
945 if (username && username[0] && (binding->flags & DCERPC_SCHANNEL_ANY)) {
946 status = dcerpc_bind_auth_schannel(*p, pipe_uuid, pipe_version,
947 domain, username, password);
948 } else if (username && username[0]) {
949 status = dcerpc_bind_auth_ntlm(*p, pipe_uuid, pipe_version, domain, username, password);
950 } else {
951 status = dcerpc_bind_auth_none(*p, pipe_uuid, pipe_version);
952 }
953
954 if (!NT_STATUS_IS_OK(status)) {
955 DEBUG(0,("Failed to bind to uuid %s - %s\n",
956 pipe_uuid, nt_errstr(status)));
957 dcerpc_pipe_close(*p);
958 *p = NULL;
959 return status;
960 }
961
962 return status;
963 }
964
965 /* open a rpc connection to a rpc pipe on SMP using the binding
966 structure to determine the endpoint and options */
967 static NTSTATUS dcerpc_pipe_connect_ncacn_ip_tcp(struct dcerpc_pipe **p,
968 struct dcerpc_binding *binding,
969 const char *pipe_uuid,
970 uint32_t pipe_version,
971 const char *domain,
972 const char *username,
973 const char *password)
974 {
975 NTSTATUS status;
976 uint32_t port = 0;
977 TALLOC_CTX *mem_ctx = talloc_init("connect_ncacn_ip_tcp");
978
979 if (!binding->endpoint) {
980 status = dcerpc_epm_map_binding(mem_ctx, binding,
981 pipe_uuid, pipe_version);
982 if (!NT_STATUS_IS_OK(status)) {
983 DEBUG(0,("Failed to map DCERPC/TCP port for '%s' - %s\n",
984 pipe_uuid, nt_errstr(status)));
985 return status;
986 }
987 DEBUG(1,("Mapped to DCERPC/TCP port %s\n", binding->endpoint));
988 }
989
990 port = atoi(binding->endpoint);
991
992 status = dcerpc_pipe_open_tcp(p, binding->host, port);
993 if (!NT_STATUS_IS_OK(status)) {
994 DEBUG(0,("Failed to connect to %s:%d\n", binding->host, port));
995 return status;
996 }
997
998 (*p)->flags = binding->flags;
999
1000 /* remember the binding string for possible secondary connections */
1001 (*p)->binding_string = dcerpc_binding_string((*p), binding);
1002
1003 if (username && username[0] && (binding->flags & DCERPC_SCHANNEL_ANY)) {
1004 status = dcerpc_bind_auth_schannel(*p, pipe_uuid, pipe_version,
1005 domain, username, password);
1006 } else if (username && username[0]) {
1007 status = dcerpc_bind_auth_ntlm(*p, pipe_uuid, pipe_version, domain, username, password);
1008 } else {
1009 status = dcerpc_bind_auth_none(*p, pipe_uuid, pipe_version);
1010 }
1011
1012 if (!NT_STATUS_IS_OK(status)) {
1013 DEBUG(0,("Failed to bind to uuid %s - %s\n",
1014 pipe_uuid, nt_errstr(status)));
1015 dcerpc_pipe_close(*p);
1016 *p = NULL;
1017 return status;
1018 }
1019
1020 return status;
1021 }
1022
1023
1024 /* open a rpc connection to a rpc pipe, using the specified
1025 binding structure to determine the endpoint and options */
1026 NTSTATUS dcerpc_pipe_connect_b(struct dcerpc_pipe **p,
1027 struct dcerpc_binding *binding,
1028 const char *pipe_uuid,
1029 uint32_t pipe_version,
1030 const char *domain,
1031 const char *username,
1032 const char *password)
1033 {
1034 NTSTATUS status = NT_STATUS_INVALID_PARAMETER;
1035
1036 switch (binding->transport) {
1037 case NCACN_NP:
1038 status = dcerpc_pipe_connect_ncacn_np(p, binding, pipe_uuid, pipe_version,
1039 domain, username, password);
1040 break;
1041 case NCACN_IP_TCP:
1042 status = dcerpc_pipe_connect_ncacn_ip_tcp(p, binding, pipe_uuid, pipe_version,
1043 domain, username, password);
1044 break;
1045 case NCACN_UNIX_STREAM:
1046 status = dcerpc_pipe_connect_ncacn_unix_stream(p, binding, pipe_uuid, pipe_version, domain, username, password);
1047 break;
1048 case NCALRPC:
1049 status = dcerpc_pipe_connect_ncalrpc(p, binding, pipe_uuid, pipe_version, domain, username, password);
1050 break;
1051 default:
1052 return NT_STATUS_NOT_SUPPORTED;
1053 }
1054
1055 return status;
1056 }
1057
1058
1059 /* open a rpc connection to a rpc pipe, using the specified string
1060 binding to determine the endpoint and options */
1061 NTSTATUS dcerpc_pipe_connect(struct dcerpc_pipe **p,
1062 const char *binding,
1063 const char *pipe_uuid,
1064 uint32_t pipe_version,
1065 const char *domain,
1066 const char *username,
1067 const char *password)
1068 {
1069 struct dcerpc_binding b;
1070 NTSTATUS status;
1071 TALLOC_CTX *mem_ctx;
1072
1073 mem_ctx = talloc_init("dcerpc_pipe_connect");
1074 if (!mem_ctx) return NT_STATUS_NO_MEMORY;
1075
1076 status = dcerpc_parse_binding(mem_ctx, binding, &b);
1077 if (!NT_STATUS_IS_OK(status)) {
1078 DEBUG(0,("Failed to parse dcerpc binding '%s'\n", binding));
1079 talloc_destroy(mem_ctx);
1080 return status;
1081 }
1082
1083 DEBUG(3,("Using binding %s\n", dcerpc_binding_string(mem_ctx, &b)));
1084
1085 status = dcerpc_pipe_connect_b(p, &b, pipe_uuid, pipe_version, domain, username, password);
1086
1087 talloc_destroy(mem_ctx);
1088 return status;
1089 }
1090
1091
1092 /*
1093 create a secondary dcerpc connection from a primary connection
1094
1095 if the primary is a SMB connection then the secondary connection
1096 will be on the same SMB connection, but use a new fnum
1097 */
1098 NTSTATUS dcerpc_secondary_connection(struct dcerpc_pipe *p, struct dcerpc_pipe **p2,
1099 const char *pipe_name,
1100 const char *pipe_uuid,
1101 uint32_t pipe_version)
1102 {
1103 struct smbcli_tree *tree;
1104 NTSTATUS status = NT_STATUS_INVALID_PARAMETER;
1105 struct dcerpc_binding b;
1106
1107 switch (p->transport.transport) {
1108 case NCACN_NP:
1109 tree = dcerpc_smb_tree(p);
1110 if (!tree) {
1111 return NT_STATUS_INVALID_PARAMETER;
1112 }
1113
1114 status = dcerpc_pipe_open_smb(p2, tree, pipe_name);
1115 break;
1116
1117 case NCACN_IP_TCP:
1118 status = dcerpc_parse_binding(p, p->binding_string, &b);
1119 if (!NT_STATUS_IS_OK(status)) {
1120 return status;
1121 }
1122 b.flags &= ~DCERPC_AUTH_OPTIONS;
1123 status = dcerpc_pipe_connect_ncacn_ip_tcp(p2, &b, pipe_uuid,
1124 pipe_version, NULL,
1125 NULL, NULL);
1126 break;
1127
1128 case NCALRPC:
1129 status = dcerpc_parse_binding(p, p->binding_string, &b);
1130 if (!NT_STATUS_IS_OK(status)) {
1131 return status;
1132 }
1133 b.flags &= ~DCERPC_AUTH_OPTIONS;
1134 status = dcerpc_pipe_connect_ncalrpc(p2, &b, pipe_uuid, pipe_version, NULL, NULL, NULL);
1135 break;
1136
1137 default:
1138 return NT_STATUS_NOT_SUPPORTED;
1139 }
1140
1141 if (!NT_STATUS_IS_OK(status)) {
1142 return status;
1143 }
1144
1145 talloc_steal(p, *p2);
1146
1147 (*p2)->flags = p->flags;
1148
1149 status = dcerpc_bind_auth_none(*p2, pipe_uuid, pipe_version);
1150 if (!NT_STATUS_IS_OK(status)) {
1151 return status;
1152 }
1153
1154 return NT_STATUS_OK;
1155 }
1156
1157 NTSTATUS dcerpc_generic_session_key(struct dcerpc_pipe *p,
1158 DATA_BLOB *session_key)
1159 {
1160 /* this took quite a few CPU cycles to find ... */
1161 session_key->data = discard_const_p(unsigned char, "SystemLibraryDTC");
1162 session_key->length = 16;
1163 return NT_STATUS_OK;
1164 }
1165
1166 /*
1167 fetch the user session key - may be default (above) or the SMB session key
1168 */
1169 NTSTATUS dcerpc_fetch_session_key(struct dcerpc_pipe *p,
1170 DATA_BLOB *session_key)
1171 {
1172 return p->security_state.session_key(p, session_key);
1173 }
1174
1175
1176 /*
1177 log a rpc packet in a format suitable for ndrdump. This is especially useful
1178 for sealed packets, where ethereal cannot easily see the contents
1179
1180 this triggers on a debug level of >= 10
1181 */
1182 void dcerpc_log_packet(const struct dcerpc_interface_table *ndr,
1183 uint32_t opnum, uint32_t flags, DATA_BLOB *pkt)
1184 {
1185 const int num_examples = 20;
1186 int i;
1187
1188 if (DEBUGLEVEL < 10) return;
1189
1190 for (i=0;i<num_examples;i++) {
1191 char *name=NULL;
1192 asprintf(&name, "%s/rpclog/%s-%u.%d.%s",
1193 lp_lockdir(), ndr->name, opnum, i,
1194 (flags&NDR_IN)?"in":"out");
1195 if (name == NULL) {
1196 return;
1197 }
1198 if (!file_exist(name, NULL)) {
1199 if (file_save(name, pkt->data, pkt->length)) {
1200 DEBUG(10,("Logged rpc packet to %s\n", name));
1201 }
1202 free(name);
1203 break;
1204 }
1205 free(name);
1206 }
1207 }
1208
reg import