| blob | d5eac07b4857a57a0379f1bcb3daad60ccc211be |
1 /*
2 Unix SMB/CIFS implementation.
3 Infrastructure for async SMB client requests
4 Copyright (C) Volker Lendecke 2008
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
18 */
25 /**
26 * Fetch an error out of a NBT packet
27 * @param[in] buf The SMB packet
28 * @retval The error, converted to NTSTATUS
29 */
32 {
37 }
39 /* if the client uses dos errors, but there is no error,
40 we should return no error here, otherwise it looks
41 like an unknown bad NT_STATUS. jmcd */
46 }
48 /**
49 * Compatibility helper for the sync APIs: Fake NTSTATUS in cli->inbuf
50 * @param[in] cli The client connection that just received an error
51 * @param[in] status The error to set on "cli"
52 */
55 {
64 }
69 }
71 /**
72 * Allocate a new mid
73 * @param[in] cli The client connection
74 * @retval The new, unused mid
75 */
78 {
86 }
91 }
92 }
96 }
97 }
98 }
100 /**
101 * Print an async req that happens to be a cli_request
102 * @param[in] mem_ctx The TALLOC_CTX to put the result on
103 * @param[in] req The request to print
104 * @retval The string representation of "req"
105 */
108 {
115 }
119 }
121 /**
122 * Destroy a cli_request
123 * @param[in] req The cli_request to kill
124 * @retval Can't fail
125 */
128 {
131 }
135 }
137 }
139 /**
140 * Are there already requests waiting in the chain_accumulator?
141 * @param[in] cli The cli_state we want to check
142 * @retval reply :-)
143 */
146 {
149 }
152 }
154 /**
155 * Is the SMB command able to hold an AND_X successor
156 * @param[in] cmd The SMB command in question
157 * @retval Can we add a chained request after "cmd"?
158 */
161 {
175 }
178 }
180 /**
181 * @brief Find the smb_cmd offset of the last command pushed
182 * @param[in] buf The buffer we're building up
183 * @retval Where can we put our next andx cmd?
184 *
185 * While chaining requests, the "next" request we're looking at needs to put
186 * its SMB_Command before the data the previous request already built up added
187 * to the chain. Find the offset to the place where we have to put our cmd.
188 */
191 {
205 }
207 /*
208 * ofs is from start of smb header, so add the 4 length
209 * bytes. The next cmd is right after the wct field.
210 */
214 }
218 }
220 /**
221 * @brief Destroy an async_req that is the visible part of a cli_request
222 * @param[in] req The request to kill
223 * @retval Return 0 to make talloc happy
224 *
225 * This destructor is a bit tricky: Because a cli_request can host more than
226 * one async_req for chained requests, we need to make sure that the
227 * "cli_request" that we were part of is correctly destroyed at the right
228 * time. This is done by NULLing out ourself from the "async" member of our
229 * "cli_request". If there is none left, then also TALLOC_FREE() the
230 * cli_request, which was a talloc child of the client connection cli_state.
231 */
234 {
246 }
249 }
250 }
256 }
259 }
261 /**
262 * @brief Chain up a request
263 * @param[in] mem_ctx The TALLOC_CTX for the result
264 * @param[in] ev The event context that will call us back
265 * @param[in] cli The cli_state we queue the request up for
266 * @param[in] smb_command The command that we want to issue
267 * @param[in] additional_flags open_and_x wants to add oplock header flags
268 * @param[in] wct How many words?
269 * @param[in] vwv The words, already in network order
270 * @param[in] num_bytes How many bytes?
271 * @param[in] bytes The data the request ships
272 *
273 * cli_request_chain() is the core of the SMB request marshalling routine. It
274 * will create a new async_req structure in the cli->chain_accumulator->async
275 * array and marshall the smb_cmd, the vwv array and the bytes into
276 * cli->chain_accumulator->outbuf.
277 */
287 {
301 }
310 }
314 cli_async_req_destructor);
318 /*
319 * We need space for the wct field, the words, the byte count field
320 * and the bytes themselves.
321 */
328 }
334 }
344 }
347 }
364 fail:
368 }
370 /**
371 * @brief prepare a cli_state to accept a chain of requests
372 * @param[in] cli The cli_state we want to queue up in
373 * @param[in] ev The event_context that will call us back for the socket
374 * @param[in] size_hint How many bytes are expected, just an optimization
375 * @retval Did we have enough memory?
376 *
377 * cli_chain_cork() sets up a new cli_request in cli->chain_accumulator. If
378 * cli is used in an async fashion, i.e. if we have outstanding requests, then
379 * we do not have to create a fd event. If cli is used only with the sync
380 * helpers, we need to create the fd_event here.
381 *
382 * If you want to issue a chained request to the server, do a
383 * cli_chain_cork(), then do you cli_open_send(), cli_read_and_x_send(),
384 * cli_close_send() and so on. The async requests that come out of
385 * cli_xxx_send() are normal async requests with the difference that they
386 * won't be shipped individually. But the event_context will still trigger the
387 * req->async.fn to be called on every single request.
388 *
389 * You have to take care yourself that you only issue chainable requests in
390 * the middle of the chain.
391 */
395 {
403 }
408 EVENT_FD_READ,
412 }
413 }
418 }
423 }
427 }
446 fail:
450 }
452 }
454 /**
455 * Ship a request queued up via cli_request_chain()
456 * @param[in] cl The connection
457 */
460 {
476 NTSTATUS status;
485 }
488 }
493 }
495 /**
496 * @brief Send a request to the server
497 * @param[in] mem_ctx The TALLOC_CTX for the result
498 * @param[in] ev The event context that will call us back
499 * @param[in] cli The cli_state we queue the request up for
500 * @param[in] smb_command The command that we want to issue
501 * @param[in] additional_flags open_and_x wants to add oplock header flags
502 * @param[in] wct How many words?
503 * @param[in] vwv The words, already in network order
504 * @param[in] num_bytes How many bytes?
505 * @param[in] bytes The data the request ships
506 *
507 * This is the generic routine to be used by the cli_xxx_send routines.
508 */
517 {
526 }
528 }
536 }
540 }
543 }
545 /**
546 * Figure out if there is an andx command behind the current one
547 * @param[in] buf The smb buffer to look at
548 * @param[in] ofs The offset to the wct field that is followed by the cmd
549 * @retval Is there a command following?
550 */
553 {
559 }
563 /*
564 * Not enough space for the command and a following pointer
565 */
567 }
569 }
571 /**
572 * @brief Pull reply data out of a request
573 * @param[in] req The request that we just received a reply for
574 * @param[out] pwct How many words did the server send?
575 * @param[out] pvwv The words themselves
576 * @param[out] pnum_bytes How many bytes did the server send?
577 * @param[out] pbytes The bytes themselves
578 * @retval Was the reply formally correct?
579 */
584 {
591 NTSTATUS status;
596 }
597 }
602 }
604 /**
605 * The status we pull here is only relevant for the last reply in the
606 * chain.
607 */
616 }
619 }
628 }
631 }
632 }
635 /*
636 * This request was not completed because a previous
637 * request in the chain had received an error.
638 */
640 }
644 /*
645 * Skip the all-present length field. No overflow, we've just
646 * put a 16-bit value into a size_t.
647 */
652 }
655 }
659 /*
660 * The last command takes the error code. All further commands
661 * down the requested chain will get a
662 * NT_STATUS_REQUEST_ABORTED.
663 */
665 }
667 done:
673 /*
674 * wct_ofs is a 16-bit value plus 4, wct is a 8-bit value, num_bytes
675 * is a 16-bit value. So bytes_offset being size_t should be far from
676 * wrapping.
677 */
682 }
690 }
692 /**
693 * Decrypt a PDU, check the signature
694 * @param[in] cli The cli_state that received something
695 * @param[in] pdu The incoming bytes
696 * @retval error code
697 */
701 {
702 NTSTATUS status;
708 }
718 }
722 enc_ctx_num,
725 }
732 }
733 }
738 }
741 }
743 /**
744 * A PDU has arrived on cli->evt_inbuf
745 * @param[in] cli The cli_state that received something
746 */
749 {
755 NTSTATUS status;
759 /*
760 * The encrypted PDU len might differ from the unencrypted one
761 */
767 /*
768 * Optimal case: Exactly one PDU was in the socket buffer
769 */
772 }
778 /*
779 * The PDU is shorter, talloc_memdup that one.
780 */
793 }
794 }
796 /*
797 * The PDU is larger than the rest, talloc_memdup the
798 * rest
799 */
808 }
809 }
810 }
815 }
824 }
825 }
834 }
838 /*
839 * Freeing the last async_req will free the req (see
840 * cli_async_req_destructor). So make a copy of req->num_async, we
841 * can't reference it in the last round.
842 */
847 /**
848 * A request might have been talloc_free()'ed before we arrive
849 * here. It will have removed itself from req->async via its
850 * destructor cli_async_req_destructor().
851 */
857 }
858 }
859 }
862 invalidate_requests:
869 }
871 }
873 /**
874 * fd event callback. This is the basic connection to the socket
875 * @param[in] event_ctx The event context that called us
876 * @param[in] event The event that fired
877 * @param[in] flags EVENT_FD_READ | EVENT_FD_WRITE
878 * @param[in] p private_data, in this case the cli_state
879 */
883 {
886 NTSTATUS status;
901 }
904 /* EOF */
907 }
913 /* wrap */
916 }
919 new_size);
921 /* nomem */
924 }
932 }
938 /* recv *might* have returned less than announced */
941 /* shrink, so I don't expect errors here */
947 /*
948 * we've got a complete NBT level PDU in evt_inbuf
949 */
952 }
953 }
957 ssize_t sent;
963 }
964 }
969 }
971 }
979 }
985 }
986 }
989 sock_error:
994 }
995 }
999 }