2 Unix SMB/CIFS implementation.
3 SMB client generic functions
4 Copyright (C) Andrew Tridgell 1994-1998
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 2 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program; if not, write to the Free Software
18 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
23 extern int smb_read_error
;
25 /****************************************************************************
26 Change the timeout (in milliseconds).
27 ****************************************************************************/
29 unsigned int cli_set_timeout(struct cli_state
*cli
, unsigned int timeout
)
31 unsigned int old_timeout
= cli
->timeout
;
32 cli
->timeout
= timeout
;
36 /****************************************************************************
37 Change the port number used to call on.
38 ****************************************************************************/
40 int cli_set_port(struct cli_state
*cli
, int port
)
46 /****************************************************************************
47 Read an smb from a fd ignoring all keepalive packets. Note that the buffer
48 *MUST* be of size BUFFER_SIZE+SAFETY_MARGIN.
49 The timeout is in milliseconds
51 This is exactly the same as receive_smb except that it can be set to never return
52 a session keepalive packet (just as receive_smb used to do).
53 receive_smb was changed to return keepalives as the oplock processing means this call
54 should never go into a blocking read.
55 ****************************************************************************/
57 static BOOL
client_receive_smb(struct cli_state
*cli
, BOOL eat_keepalives
)
61 char *buffer
= cli
->inbuf
;
62 unsigned int timeout
= cli
->timeout
;
65 ret
= receive_smb_raw(fd
, buffer
, timeout
);
68 DEBUG(10,("client_receive_smb failed\n"));
73 /* Ignore session keepalive packets. */
74 if (eat_keepalives
&& (CVAL(buffer
,0) == SMBkeepalive
)) {
80 if (cli_encryption_on(cli
)) {
81 NTSTATUS status
= cli_decrypt_message(cli
);
82 if (!NT_STATUS_IS_OK(status
)) {
83 DEBUG(0, ("SMB decryption failed on incoming packet! Error %s\n",
85 cli
->smb_rw_error
= READ_BAD_DECRYPT
;
95 /****************************************************************************
97 ****************************************************************************/
99 BOOL
cli_receive_smb_internal(struct cli_state
*cli
, BOOL eat_keepalives
)
103 /* fd == -1 causes segfaults -- Tom (tom@ninja.nl) */
108 ret
= client_receive_smb(cli
, eat_keepalives
);
111 /* it might be an oplock break request */
112 if (!(CVAL(cli
->inbuf
, smb_flg
) & FLAG_REPLY
) &&
113 CVAL(cli
->inbuf
,smb_com
) == SMBlockingX
&&
114 SVAL(cli
->inbuf
,smb_vwv6
) == 0 &&
115 SVAL(cli
->inbuf
,smb_vwv7
) == 0) {
116 if (cli
->oplock_handler
) {
117 int fnum
= SVAL(cli
->inbuf
,smb_vwv2
);
118 unsigned char level
= CVAL(cli
->inbuf
,smb_vwv3
+1);
119 if (!cli
->oplock_handler(cli
, fnum
, level
)) return False
;
121 /* try to prevent loops */
122 SCVAL(cli
->inbuf
,smb_com
,0xFF);
127 /* If the server is not responding, note that now */
129 DEBUG(0, ("Receiving SMB: Server stopped responding\n"));
130 cli
->smb_rw_error
= smb_read_error
;
136 if (!cli_check_sign_mac(cli
)) {
137 DEBUG(0, ("SMB Signature verification failed on incoming packet!\n"));
138 cli
->smb_rw_error
= READ_BAD_SIG
;
147 /****************************************************************************
148 Recv an smb - eat keepalives.
149 ****************************************************************************/
151 BOOL
cli_receive_smb(struct cli_state
*cli
)
153 return cli_receive_smb_internal(cli
, True
);
156 /****************************************************************************
157 Recv an smb - return keepalives.
158 ****************************************************************************/
160 BOOL
cli_receive_smb_return_keepalive(struct cli_state
*cli
)
162 return cli_receive_smb_internal(cli
, False
);
165 static ssize_t
write_socket(int fd
, const char *buf
, size_t len
)
169 DEBUG(6,("write_socket(%d,%d)\n",fd
,(int)len
));
170 ret
= write_data(fd
,buf
,len
);
172 DEBUG(6,("write_socket(%d,%d) wrote %d\n",fd
,(int)len
,(int)ret
));
174 DEBUG(0,("write_socket: Error writing %d bytes to socket %d: ERRNO = %s\n",
175 (int)len
, fd
, strerror(errno
) ));
180 /****************************************************************************
182 ****************************************************************************/
184 BOOL
cli_send_smb(struct cli_state
*cli
)
189 char *buf_out
= cli
->outbuf
;
190 BOOL enc_on
= cli_encryption_on(cli
);
192 /* fd == -1 causes segfaults -- Tom (tom@ninja.nl) */
197 cli_calculate_sign_mac(cli
);
200 NTSTATUS status
= cli_encrypt_message(cli
, &buf_out
);
201 if (!NT_STATUS_IS_OK(status
)) {
204 cli
->smb_rw_error
= WRITE_ERROR
;
205 DEBUG(0,("Error in encrypting client message. Error %s\n",
206 nt_errstr(status
) ));
211 len
= smb_len(buf_out
) + 4;
213 while (nwritten
< len
) {
214 ret
= write_socket(cli
->fd
,buf_out
+nwritten
,len
- nwritten
);
217 cli_free_enc_buffer(cli
, buf_out
);
221 cli
->smb_rw_error
= WRITE_ERROR
;
222 DEBUG(0,("Error writing %d bytes to client. %d (%s)\n",
223 (int)len
,(int)ret
, strerror(errno
) ));
229 cli_free_enc_buffer(cli
, buf_out
);
231 /* Increment the mid so we can tell between responses. */
239 /****************************************************************************
240 Setup basics in a outgoing packet.
241 ****************************************************************************/
243 void cli_setup_packet(struct cli_state
*cli
)
246 SSVAL(cli
->outbuf
,smb_pid
,cli
->pid
);
247 SSVAL(cli
->outbuf
,smb_uid
,cli
->vuid
);
248 SSVAL(cli
->outbuf
,smb_mid
,cli
->mid
);
249 if (cli
->protocol
> PROTOCOL_CORE
) {
251 if (cli
->case_sensitive
) {
252 SCVAL(cli
->outbuf
,smb_flg
,0x0);
254 /* Default setting, case insensitive. */
255 SCVAL(cli
->outbuf
,smb_flg
,0x8);
257 flags2
= FLAGS2_LONG_PATH_COMPONENTS
;
258 if (cli
->capabilities
& CAP_UNICODE
)
259 flags2
|= FLAGS2_UNICODE_STRINGS
;
260 if ((cli
->capabilities
& CAP_DFS
) && cli
->dfsroot
)
261 flags2
|= FLAGS2_DFS_PATHNAMES
;
262 if (cli
->capabilities
& CAP_STATUS32
)
263 flags2
|= FLAGS2_32_BIT_ERROR_CODES
;
265 flags2
|= FLAGS2_EXTENDED_SECURITY
;
266 SSVAL(cli
->outbuf
,smb_flg2
, flags2
);
270 /****************************************************************************
271 Setup the bcc length of the packet from a pointer to the end of the data.
272 ****************************************************************************/
274 void cli_setup_bcc(struct cli_state
*cli
, void *p
)
276 set_message_bcc(cli
->outbuf
, PTR_DIFF(p
, smb_buf(cli
->outbuf
)));
279 /****************************************************************************
280 Initialise credentials of a client structure.
281 ****************************************************************************/
283 void cli_init_creds(struct cli_state
*cli
, const char *username
, const char *domain
, const char *password
)
285 fstrcpy(cli
->domain
, domain
);
286 fstrcpy(cli
->user_name
, username
);
287 pwd_set_cleartext(&cli
->pwd
, password
);
289 cli
->pwd
.null_pwd
= True
;
292 DEBUG(10,("cli_init_creds: user %s domain %s\n", cli
->user_name
, cli
->domain
));
295 /****************************************************************************
296 Set the signing state (used from the command line).
297 ****************************************************************************/
299 void cli_setup_signing_state(struct cli_state
*cli
, int signing_state
)
301 if (signing_state
== Undefined
)
304 if (signing_state
== False
) {
305 cli
->sign_info
.allow_smb_signing
= False
;
306 cli
->sign_info
.mandatory_signing
= False
;
310 cli
->sign_info
.allow_smb_signing
= True
;
312 if (signing_state
== Required
)
313 cli
->sign_info
.mandatory_signing
= True
;
316 /****************************************************************************
317 Initialise a client structure. Always returns a malloc'ed struct.
318 ****************************************************************************/
320 struct cli_state
*cli_initialise(void)
322 struct cli_state
*cli
= NULL
;
324 /* Check the effective uid - make sure we are not setuid */
325 if (is_setuid_root()) {
326 DEBUG(0,("libsmb based programs must *NOT* be setuid root.\n"));
330 cli
= SMB_MALLOC_P(struct cli_state
);
340 cli
->pid
= (uint16
)sys_getpid();
342 cli
->vuid
= UID_FIELD_INVALID
;
343 cli
->protocol
= PROTOCOL_NT1
;
344 cli
->timeout
= 20000; /* Timeout is in milliseconds. */
345 cli
->bufsize
= CLI_BUFFER_SIZE
+4;
346 cli
->max_xmit
= cli
->bufsize
;
347 cli
->outbuf
= (char *)SMB_MALLOC(cli
->bufsize
+SAFETY_MARGIN
);
348 cli
->inbuf
= (char *)SMB_MALLOC(cli
->bufsize
+SAFETY_MARGIN
);
349 cli
->oplock_handler
= cli_oplock_ack
;
350 cli
->case_sensitive
= False
;
351 cli
->smb_rw_error
= 0;
353 cli
->use_spnego
= lp_client_use_spnego();
355 cli
->capabilities
= CAP_UNICODE
| CAP_STATUS32
| CAP_DFS
;
357 /* Set the CLI_FORCE_DOSERR environment variable to test
358 client routines using DOS errors instead of STATUS32
359 ones. This intended only as a temporary hack. */
360 if (getenv("CLI_FORCE_DOSERR"))
361 cli
->force_dos_errors
= True
;
363 if (lp_client_signing())
364 cli
->sign_info
.allow_smb_signing
= True
;
366 if (lp_client_signing() == Required
)
367 cli
->sign_info
.mandatory_signing
= True
;
369 if (!cli
->outbuf
|| !cli
->inbuf
)
372 if ((cli
->mem_ctx
= talloc_init("cli based talloc")) == NULL
)
375 memset(cli
->outbuf
, 0, cli
->bufsize
);
376 memset(cli
->inbuf
, 0, cli
->bufsize
);
379 #if defined(DEVELOPER)
380 /* just because we over-allocate, doesn't mean it's right to use it */
381 clobber_region(FUNCTION_MACRO
, __LINE__
, cli
->outbuf
+cli
->bufsize
, SAFETY_MARGIN
);
382 clobber_region(FUNCTION_MACRO
, __LINE__
, cli
->inbuf
+cli
->bufsize
, SAFETY_MARGIN
);
385 /* initialise signing */
386 cli_null_set_signing(cli
);
388 cli
->initialised
= 1;
392 /* Clean up after malloc() error */
396 SAFE_FREE(cli
->inbuf
);
397 SAFE_FREE(cli
->outbuf
);
402 /****************************************************************************
404 Close an open named pipe over SMB. Free any authentication data.
405 Returns False if the cli_close call failed.
406 ****************************************************************************/
408 BOOL
cli_rpc_pipe_close(struct rpc_pipe_client
*cli
)
416 ret
= cli_close(cli
->cli
, cli
->fnum
);
419 DEBUG(1,("cli_rpc_pipe_close: cli_close failed on pipe %s, "
421 "to machine %s. Error was %s\n",
425 cli_errstr(cli
->cli
)));
428 if (cli
->auth
.cli_auth_data_free_func
) {
429 (*cli
->auth
.cli_auth_data_free_func
)(&cli
->auth
);
432 DEBUG(10,("cli_rpc_pipe_close: closed pipe %s to machine %s\n",
433 cli
->pipe_name
, cli
->cli
->desthost
));
435 DLIST_REMOVE(cli
->cli
->pipe_list
, cli
);
436 talloc_destroy(cli
->mem_ctx
);
440 /****************************************************************************
441 Close all pipes open on this session.
442 ****************************************************************************/
444 void cli_nt_pipes_close(struct cli_state
*cli
)
446 struct rpc_pipe_client
*cp
, *next
;
448 for (cp
= cli
->pipe_list
; cp
; cp
= next
) {
450 cli_rpc_pipe_close(cp
);
454 /****************************************************************************
455 Shutdown a client structure.
456 ****************************************************************************/
458 void cli_shutdown(struct cli_state
*cli
)
460 cli_nt_pipes_close(cli
);
463 * tell our peer to free his resources. Wihtout this, when an
464 * application attempts to do a graceful shutdown and calls
465 * smbc_free_context() to clean up all connections, some connections
466 * can remain active on the peer end, until some (long) timeout period
467 * later. This tree disconnect forces the peer to clean up, since the
468 * connection will be going away.
470 * Also, do not do tree disconnect when cli->smb_rw_error is DO_NOT_DO_TDIS
471 * the only user for this so far is smbmount which passes opened connection
472 * down to kernel's smbfs module.
474 if ( (cli
->cnum
!= (uint16
)-1) && (cli
->smb_rw_error
!= DO_NOT_DO_TDIS
) ) {
478 SAFE_FREE(cli
->outbuf
);
479 SAFE_FREE(cli
->inbuf
);
481 cli_free_signing_context(cli
);
482 cli_free_encryption_context(cli
);
484 data_blob_free(&cli
->secblob
);
485 data_blob_free(&cli
->user_session_key
);
488 talloc_destroy(cli
->mem_ctx
);
496 cli
->smb_rw_error
= 0;
501 /****************************************************************************
502 Set socket options on a open connection.
503 ****************************************************************************/
505 void cli_sockopt(struct cli_state
*cli
, const char *options
)
507 set_socket_options(cli
->fd
, options
);
510 /****************************************************************************
511 Set the PID to use for smb messages. Return the old pid.
512 ****************************************************************************/
514 uint16
cli_setpid(struct cli_state
*cli
, uint16 pid
)
516 uint16 ret
= cli
->pid
;
521 /****************************************************************************
522 Set the case sensitivity flag on the packets. Returns old state.
523 ****************************************************************************/
525 BOOL
cli_set_case_sensitive(struct cli_state
*cli
, BOOL case_sensitive
)
527 BOOL ret
= cli
->case_sensitive
;
528 cli
->case_sensitive
= case_sensitive
;
532 /****************************************************************************
533 Send a keepalive packet to the server
534 ****************************************************************************/
536 BOOL
cli_send_keepalive(struct cli_state
*cli
)
539 DEBUG(3, ("cli_send_keepalive: fd == -1\n"));
542 if (!send_keepalive(cli
->fd
)) {
545 DEBUG(0,("Error sending keepalive packet to client.\n"));
551 /****************************************************************************
552 Send/receive a SMBecho command: ping the server
553 ****************************************************************************/
555 BOOL
cli_echo(struct cli_state
*cli
, unsigned char *data
, size_t length
)
559 SMB_ASSERT(length
< 1024);
561 memset(cli
->outbuf
,'\0',smb_size
);
562 set_message(cli
->outbuf
,1,length
,True
);
563 SCVAL(cli
->outbuf
,smb_com
,SMBecho
);
564 SSVAL(cli
->outbuf
,smb_tid
,65535);
565 SSVAL(cli
->outbuf
,smb_vwv0
,1);
566 cli_setup_packet(cli
);
567 p
= smb_buf(cli
->outbuf
);
568 memcpy(p
, data
, length
);
571 cli_setup_bcc(cli
, p
);
574 if (!cli_receive_smb(cli
)) {
578 if (cli_is_error(cli
)) {