2 Unix SMB/CIFS implementation.
3 Infrastructure for async SMB client requests
4 Copyright (C) Volker Lendecke 2008
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
21 #include "libsmb/libsmb.h"
22 #include "../lib/async_req/async_sock.h"
23 #include "../lib/util/tevent_ntstatus.h"
24 #include "../lib/util/tevent_unix.h"
25 #include "async_smb.h"
26 #include "smb_crypt.h"
27 #include "libsmb/nmblib.h"
31 * Fetch an error out of a NBT packet
32 * @param[in] buf The SMB packet
33 * @retval The error, converted to NTSTATUS
36 NTSTATUS cli_pull_error(char *buf)
38 uint32_t flags2 = SVAL(buf, smb_flg2);
40 if (flags2 & FLAGS2_32_BIT_ERROR_CODES) {
41 return NT_STATUS(IVAL(buf, smb_rcls));
44 return dos_to_ntstatus(CVAL(buf, smb_rcls), SVAL(buf,smb_err));
48 * Compatibility helper for the sync APIs: Fake NTSTATUS in cli->inbuf
49 * @param[in] cli The client connection that just received an error
50 * @param[in] status The error to set on "cli"
53 void cli_set_error(struct cli_state *cli, NTSTATUS status)
55 uint32_t flags2 = SVAL(cli->inbuf, smb_flg2);
57 if (NT_STATUS_IS_DOS(status)) {
58 SSVAL(cli->inbuf, smb_flg2,
59 flags2 & ~FLAGS2_32_BIT_ERROR_CODES);
60 SCVAL(cli->inbuf, smb_rcls, NT_STATUS_DOS_CLASS(status));
61 SSVAL(cli->inbuf, smb_err, NT_STATUS_DOS_CODE(status));
65 SSVAL(cli->inbuf, smb_flg2, flags2 | FLAGS2_32_BIT_ERROR_CODES);
66 SIVAL(cli->inbuf, smb_rcls, NT_STATUS_V(status));
71 * Figure out if there is an andx command behind the current one
72 * @param[in] buf The smb buffer to look at
73 * @param[in] ofs The offset to the wct field that is followed by the cmd
74 * @retval Is there a command following?
77 static bool have_andx_command(const char *buf, uint16_t ofs)
80 size_t buflen = talloc_get_size(buf);
82 if ((ofs == buflen-1) || (ofs == buflen)) {
89 * Not enough space for the command and a following pointer
93 return (CVAL(buf, ofs+1) != 0xff);
98 struct cli_smb_state {
99 struct tevent_context *ev;
100 struct cli_state *cli;
101 uint8_t header[smb_wct+1]; /* Space for the header including the wct */
104 * For normal requests, cli_smb_req_send chooses a mid. Secondary
105 * trans requests need to use the mid of the primary request, so we
106 * need a place to store it. Assume it's set if != 0.
111 uint8_t bytecount_buf[2];
113 struct iovec iov[MAX_SMB_IOV+3];
120 struct tevent_req **chained_requests;
123 static uint16_t cli_alloc_mid(struct cli_state *cli)
125 int num_pending = talloc_array_length(cli->pending);
132 if ((result == 0) || (result == 0xffff)) {
136 for (i=0; i<num_pending; i++) {
137 if (result == cli_smb_req_mid(cli->pending[i])) {
142 if (i == num_pending) {
148 void cli_smb_req_unset_pending(struct tevent_req *req)
150 struct cli_smb_state *state = tevent_req_data(
151 req, struct cli_smb_state);
152 struct cli_state *cli = state->cli;
153 int num_pending = talloc_array_length(cli->pending);
156 if (state->mid != 0) {
158 * This is a [nt]trans[2] request which waits
159 * for more than one reply.
164 if (num_pending == 1) {
166 * The pending read_smb tevent_req is a child of
167 * cli->pending. So if nothing is pending anymore, we need to
168 * delete the socket read fde.
170 TALLOC_FREE(cli->pending);
174 for (i=0; i<num_pending; i++) {
175 if (req == cli->pending[i]) {
179 if (i == num_pending) {
181 * Something's seriously broken. Just returning here is the
182 * right thing nevertheless, the point of this routine is to
183 * remove ourselves from cli->pending.
189 * Remove ourselves from the cli->pending array
191 cli->pending[i] = cli->pending[num_pending-1];
194 * No NULL check here, we're shrinking by sizeof(void *), and
195 * talloc_realloc just adjusts the size for this.
197 cli->pending = talloc_realloc(NULL, cli->pending, struct tevent_req *,
202 static int cli_smb_req_destructor(struct tevent_req *req)
204 struct cli_smb_state *state = tevent_req_data(
205 req, struct cli_smb_state);
207 * Make sure we really remove it from
208 * the pending array on destruction.
211 cli_smb_req_unset_pending(req);
215 static void cli_smb_received(struct tevent_req *subreq);
217 bool cli_smb_req_set_pending(struct tevent_req *req)
219 struct cli_smb_state *state = tevent_req_data(
220 req, struct cli_smb_state);
221 struct cli_state *cli;
222 struct tevent_req **pending;
224 struct tevent_req *subreq;
227 num_pending = talloc_array_length(cli->pending);
229 pending = talloc_realloc(cli, cli->pending, struct tevent_req *,
231 if (pending == NULL) {
234 pending[num_pending] = req;
235 cli->pending = pending;
236 talloc_set_destructor(req, cli_smb_req_destructor);
238 if (num_pending > 0) {
243 * We're the first ones, add the read_smb request that waits for the
244 * answer from the server
246 subreq = read_smb_send(cli->pending, state->ev, cli->fd);
247 if (subreq == NULL) {
248 cli_smb_req_unset_pending(req);
251 tevent_req_set_callback(subreq, cli_smb_received, cli);
256 * Fetch a smb request's mid. Only valid after the request has been sent by
257 * cli_smb_req_send().
259 uint16_t cli_smb_req_mid(struct tevent_req *req)
261 struct cli_smb_state *state = tevent_req_data(
262 req, struct cli_smb_state);
263 return SVAL(state->header, smb_mid);
266 void cli_smb_req_set_mid(struct tevent_req *req, uint16_t mid)
268 struct cli_smb_state *state = tevent_req_data(
269 req, struct cli_smb_state);
273 static size_t iov_len(const struct iovec *iov, int count)
277 for (i=0; i<count; i++) {
278 result += iov[i].iov_len;
283 static uint8_t *iov_concat(TALLOC_CTX *mem_ctx, const struct iovec *iov,
286 size_t len = iov_len(iov, count);
291 buf = talloc_array(mem_ctx, uint8_t, len);
296 for (i=0; i<count; i++) {
297 memcpy(buf+copied, iov[i].iov_base, iov[i].iov_len);
298 copied += iov[i].iov_len;
303 struct tevent_req *cli_smb_req_create(TALLOC_CTX *mem_ctx,
304 struct event_context *ev,
305 struct cli_state *cli,
307 uint8_t additional_flags,
308 uint8_t wct, uint16_t *vwv,
310 struct iovec *bytes_iov)
312 struct tevent_req *result;
313 struct cli_smb_state *state;
314 struct timeval endtime;
316 if (iov_count > MAX_SMB_IOV) {
318 * Should not happen :-)
323 result = tevent_req_create(mem_ctx, &state, struct cli_smb_state);
324 if (result == NULL) {
329 state->mid = 0; /* Set to auto-choose in cli_smb_req_send */
330 state->chain_num = 0;
331 state->chained_requests = NULL;
333 cli_setup_packet_buf(cli, (char *)state->header);
334 SCVAL(state->header, smb_com, smb_command);
335 SSVAL(state->header, smb_tid, cli->cnum);
336 SCVAL(state->header, smb_wct, wct);
340 SSVAL(state->bytecount_buf, 0, iov_len(bytes_iov, iov_count));
342 state->iov[0].iov_base = (void *)state->header;
343 state->iov[0].iov_len = sizeof(state->header);
344 state->iov[1].iov_base = (void *)state->vwv;
345 state->iov[1].iov_len = wct * sizeof(uint16_t);
346 state->iov[2].iov_base = (void *)state->bytecount_buf;
347 state->iov[2].iov_len = sizeof(uint16_t);
349 if (iov_count != 0) {
350 memcpy(&state->iov[3], bytes_iov,
351 iov_count * sizeof(*bytes_iov));
353 state->iov_count = iov_count + 3;
356 endtime = timeval_current_ofs_msec(cli->timeout);
357 if (!tevent_req_set_endtime(result, ev, endtime)) {
358 tevent_req_nomem(NULL, result);
364 static NTSTATUS cli_signv(struct cli_state *cli, struct iovec *iov, int count,
370 * Obvious optimization: Make cli_calculate_sign_mac work with struct
371 * iovec directly. MD5Update would do that just fine.
374 if ((count <= 0) || (iov[0].iov_len < smb_wct)) {
375 return NT_STATUS_INVALID_PARAMETER;
378 buf = iov_concat(talloc_tos(), iov, count);
380 return NT_STATUS_NO_MEMORY;
383 cli_calculate_sign_mac(cli, (char *)buf, seqnum);
384 memcpy(iov[0].iov_base, buf, iov[0].iov_len);
390 static void cli_smb_sent(struct tevent_req *subreq);
392 static NTSTATUS cli_smb_req_iov_send(struct tevent_req *req,
393 struct cli_smb_state *state,
394 struct iovec *iov, int iov_count)
396 struct tevent_req *subreq;
399 if (state->cli->fd == -1) {
400 return NT_STATUS_CONNECTION_INVALID;
403 if (iov[0].iov_len < smb_wct) {
404 return NT_STATUS_INVALID_PARAMETER;
407 if (state->mid != 0) {
408 SSVAL(iov[0].iov_base, smb_mid, state->mid);
410 uint16_t mid = cli_alloc_mid(state->cli);
411 SSVAL(iov[0].iov_base, smb_mid, mid);
414 smb_setlen((char *)iov[0].iov_base, iov_len(iov, iov_count) - 4);
416 status = cli_signv(state->cli, iov, iov_count, &state->seqnum);
418 if (!NT_STATUS_IS_OK(status)) {
422 if (cli_encryption_on(state->cli)) {
425 buf = (char *)iov_concat(talloc_tos(), iov, iov_count);
427 return NT_STATUS_NO_MEMORY;
429 status = common_encrypt_buffer(state->cli->trans_enc_state,
430 (char *)buf, &enc_buf);
432 if (!NT_STATUS_IS_OK(status)) {
433 DEBUG(0, ("Error in encrypting client message: %s\n",
437 buf = (char *)talloc_memdup(state, enc_buf,
441 return NT_STATUS_NO_MEMORY;
443 iov[0].iov_base = (void *)buf;
444 iov[0].iov_len = talloc_get_size(buf);
447 subreq = writev_send(state, state->ev, state->cli->outgoing,
448 state->cli->fd, false, iov, iov_count);
449 if (subreq == NULL) {
450 return NT_STATUS_NO_MEMORY;
452 tevent_req_set_callback(subreq, cli_smb_sent, req);
456 NTSTATUS cli_smb_req_send(struct tevent_req *req)
458 struct cli_smb_state *state = tevent_req_data(
459 req, struct cli_smb_state);
461 return cli_smb_req_iov_send(req, state, state->iov, state->iov_count);
464 struct tevent_req *cli_smb_send(TALLOC_CTX *mem_ctx,
465 struct event_context *ev,
466 struct cli_state *cli,
468 uint8_t additional_flags,
469 uint8_t wct, uint16_t *vwv,
471 const uint8_t *bytes)
473 struct tevent_req *req;
477 iov.iov_base = discard_const_p(void, bytes);
478 iov.iov_len = num_bytes;
480 req = cli_smb_req_create(mem_ctx, ev, cli, smb_command,
481 additional_flags, wct, vwv, 1, &iov);
486 status = cli_smb_req_send(req);
487 if (!NT_STATUS_IS_OK(status)) {
488 tevent_req_nterror(req, status);
489 return tevent_req_post(req, ev);
494 static void cli_smb_sent(struct tevent_req *subreq)
496 struct tevent_req *req = tevent_req_callback_data(
497 subreq, struct tevent_req);
498 struct cli_smb_state *state = tevent_req_data(
499 req, struct cli_smb_state);
503 nwritten = writev_recv(subreq, &err);
505 if (nwritten == -1) {
506 if (state->cli->fd != -1) {
507 close(state->cli->fd);
510 tevent_req_nterror(req, map_nt_error_from_unix(err));
514 switch (CVAL(state->header, smb_com)) {
520 tevent_req_done(req);
523 if ((CVAL(state->header, smb_wct) == 8) &&
524 (CVAL(state->vwv+3, 0) == LOCKING_ANDX_OPLOCK_RELEASE)) {
526 tevent_req_done(req);
531 if (!cli_smb_req_set_pending(req)) {
532 tevent_req_nterror(req, NT_STATUS_NO_MEMORY);
537 static void cli_smb_received(struct tevent_req *subreq)
539 struct cli_state *cli = tevent_req_callback_data(
540 subreq, struct cli_state);
541 struct tevent_req *req;
542 struct cli_smb_state *state;
551 received = read_smb_recv(subreq, talloc_tos(), &inbuf, &err);
553 if (received == -1) {
558 status = map_nt_error_from_unix(err);
562 if ((IVAL(inbuf, 4) != 0x424d53ff) /* 0xFF"SMB" */
563 && (SVAL(inbuf, 4) != 0x45ff)) /* 0xFF"E" */ {
564 DEBUG(10, ("Got non-SMB PDU\n"));
565 status = NT_STATUS_INVALID_NETWORK_RESPONSE;
569 if (cli_encryption_on(cli) && (CVAL(inbuf, 0) == 0)) {
570 uint16_t enc_ctx_num;
572 status = get_enc_ctx_num(inbuf, &enc_ctx_num);
573 if (!NT_STATUS_IS_OK(status)) {
574 DEBUG(10, ("get_enc_ctx_num returned %s\n",
579 if (enc_ctx_num != cli->trans_enc_state->enc_ctx_num) {
580 DEBUG(10, ("wrong enc_ctx %d, expected %d\n",
582 cli->trans_enc_state->enc_ctx_num));
583 status = NT_STATUS_INVALID_HANDLE;
587 status = common_decrypt_buffer(cli->trans_enc_state,
589 if (!NT_STATUS_IS_OK(status)) {
590 DEBUG(10, ("common_decrypt_buffer returned %s\n",
596 mid = SVAL(inbuf, smb_mid);
597 num_pending = talloc_array_length(cli->pending);
599 for (i=0; i<num_pending; i++) {
600 if (mid == cli_smb_req_mid(cli->pending[i])) {
604 if (i == num_pending) {
605 /* Dump unexpected reply */
610 oplock_break = false;
614 * Paranoia checks that this is really an oplock break request.
616 oplock_break = (smb_len(inbuf) == 51); /* hdr + 8 words */
617 oplock_break &= ((CVAL(inbuf, smb_flg) & FLAG_REPLY) == 0);
618 oplock_break &= (CVAL(inbuf, smb_com) == SMBlockingX);
619 oplock_break &= (SVAL(inbuf, smb_vwv6) == 0);
620 oplock_break &= (SVAL(inbuf, smb_vwv7) == 0);
623 /* Dump unexpected reply */
629 req = cli->pending[i];
630 state = tevent_req_data(req, struct cli_smb_state);
632 if (!oplock_break /* oplock breaks are not signed */
633 && !cli_check_sign_mac(cli, (char *)inbuf, state->seqnum+1)) {
634 DEBUG(10, ("cli_check_sign_mac failed\n"));
636 status = NT_STATUS_ACCESS_DENIED;
642 if (state->chained_requests == NULL) {
643 state->inbuf = talloc_move(state, &inbuf);
644 talloc_set_destructor(req, NULL);
645 cli_smb_req_unset_pending(req);
646 state->chain_num = 0;
647 state->chain_length = 1;
648 tevent_req_done(req);
650 struct tevent_req **chain = talloc_move(
651 talloc_tos(), &state->chained_requests);
652 int num_chained = talloc_array_length(chain);
654 for (i=0; i<num_chained; i++) {
655 state = tevent_req_data(chain[i], struct
657 state->inbuf = inbuf;
658 state->chain_num = i;
659 state->chain_length = num_chained;
660 tevent_req_done(chain[i]);
666 if (talloc_array_length(cli->pending) > 0) {
668 * Set up another read request for the other pending cli_smb
671 state = tevent_req_data(cli->pending[0], struct cli_smb_state);
672 subreq = read_smb_send(cli->pending, state->ev, cli->fd);
673 if (subreq == NULL) {
674 status = NT_STATUS_NO_MEMORY;
677 tevent_req_set_callback(subreq, cli_smb_received, cli);
682 * Cancel all pending requests. We don't do a for-loop walking
683 * cli->pending because that array changes in
684 * cli_smb_req_destructor().
686 while (talloc_array_length(cli->pending) > 0) {
687 req = cli->pending[0];
688 talloc_set_destructor(req, NULL);
689 cli_smb_req_unset_pending(req);
690 tevent_req_nterror(req, status);
694 NTSTATUS cli_smb_recv(struct tevent_req *req,
695 TALLOC_CTX *mem_ctx, uint8_t **pinbuf,
696 uint8_t min_wct, uint8_t *pwct, uint16_t **pvwv,
697 uint32_t *pnum_bytes, uint8_t **pbytes)
699 struct cli_smb_state *state = tevent_req_data(
700 req, struct cli_smb_state);
701 NTSTATUS status = NT_STATUS_OK;
704 size_t wct_ofs, bytes_offset;
707 if (tevent_req_is_nterror(req, &status)) {
711 if (state->inbuf == NULL) {
713 return NT_STATUS_INVALID_NETWORK_RESPONSE;
730 /* This was a request without a reply */
735 cmd = CVAL(state->inbuf, smb_com);
737 for (i=0; i<state->chain_num; i++) {
738 if (i < state->chain_num-1) {
740 return NT_STATUS_REQUEST_ABORTED;
742 if (!is_andx_req(cmd)) {
743 return NT_STATUS_INVALID_NETWORK_RESPONSE;
747 if (!have_andx_command((char *)state->inbuf, wct_ofs)) {
749 * This request was not completed because a previous
750 * request in the chain had received an error.
752 return NT_STATUS_REQUEST_ABORTED;
755 wct_ofs = SVAL(state->inbuf, wct_ofs + 3);
758 * Skip the all-present length field. No overflow, we've just
759 * put a 16-bit value into a size_t.
763 if (wct_ofs+2 > talloc_get_size(state->inbuf)) {
764 return NT_STATUS_INVALID_NETWORK_RESPONSE;
767 cmd = CVAL(state->inbuf, wct_ofs + 1);
770 status = cli_pull_error((char *)state->inbuf);
772 cli_set_error(state->cli, status);
774 if (!have_andx_command((char *)state->inbuf, wct_ofs)) {
776 if ((cmd == SMBsesssetupX)
778 status, NT_STATUS_MORE_PROCESSING_REQUIRED)) {
780 * NT_STATUS_MORE_PROCESSING_REQUIRED is a
781 * valid return code for session setup
786 if (NT_STATUS_IS_ERR(status)) {
788 * The last command takes the error code. All
789 * further commands down the requested chain
790 * will get a NT_STATUS_REQUEST_ABORTED.
798 wct = CVAL(state->inbuf, wct_ofs);
799 bytes_offset = wct_ofs + 1 + wct * sizeof(uint16_t);
800 num_bytes = SVAL(state->inbuf, bytes_offset);
803 return NT_STATUS_INVALID_NETWORK_RESPONSE;
807 * wct_ofs is a 16-bit value plus 4, wct is a 8-bit value, num_bytes
808 * is a 16-bit value. So bytes_offset being size_t should be far from
811 if ((bytes_offset + 2 > talloc_get_size(state->inbuf))
812 || (bytes_offset > 0xffff)) {
813 return NT_STATUS_INVALID_NETWORK_RESPONSE;
820 *pvwv = (uint16_t *)(state->inbuf + wct_ofs + 1);
822 if (pnum_bytes != NULL) {
823 *pnum_bytes = num_bytes;
825 if (pbytes != NULL) {
826 *pbytes = (uint8_t *)state->inbuf + bytes_offset + 2;
828 if ((mem_ctx != NULL) && (pinbuf != NULL)) {
829 if (state->chain_num == state->chain_length-1) {
830 *pinbuf = talloc_move(mem_ctx, &state->inbuf);
832 *pinbuf = state->inbuf;
839 size_t cli_smb_wct_ofs(struct tevent_req **reqs, int num_reqs)
844 wct_ofs = smb_wct - 4;
846 for (i=0; i<num_reqs; i++) {
847 struct cli_smb_state *state;
848 state = tevent_req_data(reqs[i], struct cli_smb_state);
849 wct_ofs += iov_len(state->iov+1, state->iov_count-1);
850 wct_ofs = (wct_ofs + 3) & ~3;
855 NTSTATUS cli_smb_chain_send(struct tevent_req **reqs, int num_reqs)
857 struct cli_smb_state *first_state = tevent_req_data(
858 reqs[0], struct cli_smb_state);
859 struct cli_smb_state *last_state = tevent_req_data(
860 reqs[num_reqs-1], struct cli_smb_state);
861 struct cli_smb_state *state;
863 size_t chain_padding = 0;
865 struct iovec *iov = NULL;
866 struct iovec *this_iov;
870 for (i=0; i<num_reqs; i++) {
871 state = tevent_req_data(reqs[i], struct cli_smb_state);
872 iovlen += state->iov_count;
875 iov = talloc_array(last_state, struct iovec, iovlen);
877 return NT_STATUS_NO_MEMORY;
880 first_state->chained_requests = (struct tevent_req **)talloc_memdup(
881 last_state, reqs, sizeof(*reqs) * num_reqs);
882 if (first_state->chained_requests == NULL) {
884 return NT_STATUS_NO_MEMORY;
887 wct_offset = smb_wct - 4;
890 for (i=0; i<num_reqs; i++) {
891 size_t next_padding = 0;
894 state = tevent_req_data(reqs[i], struct cli_smb_state);
896 if (i < num_reqs-1) {
897 if (!is_andx_req(CVAL(state->header, smb_com))
898 || CVAL(state->header, smb_wct) < 2) {
900 TALLOC_FREE(first_state->chained_requests);
901 return NT_STATUS_INVALID_PARAMETER;
905 wct_offset += iov_len(state->iov+1, state->iov_count-1) + 1;
906 if ((wct_offset % 4) != 0) {
907 next_padding = 4 - (wct_offset % 4);
909 wct_offset += next_padding;
912 if (i < num_reqs-1) {
913 struct cli_smb_state *next_state = tevent_req_data(
914 reqs[i+1], struct cli_smb_state);
915 SCVAL(vwv+0, 0, CVAL(next_state->header, smb_com));
917 SSVAL(vwv+1, 0, wct_offset);
918 } else if (is_andx_req(CVAL(state->header, smb_com))) {
919 /* properly end the chain */
920 SCVAL(vwv+0, 0, 0xff);
921 SCVAL(vwv+0, 1, 0xff);
926 this_iov[0] = state->iov[0];
929 * This one is a bit subtle. We have to add
930 * chain_padding bytes between the requests, and we
931 * have to also include the wct field of the
932 * subsequent requests. We use the subsequent header
933 * for the padding, it contains the wct field in its
936 this_iov[0].iov_len = chain_padding+1;
937 this_iov[0].iov_base = (void *)&state->header[
938 sizeof(state->header) - this_iov[0].iov_len];
939 memset(this_iov[0].iov_base, 0, this_iov[0].iov_len-1);
941 memcpy(this_iov+1, state->iov+1,
942 sizeof(struct iovec) * (state->iov_count-1));
943 this_iov += state->iov_count;
944 chain_padding = next_padding;
947 status = cli_smb_req_iov_send(reqs[0], last_state, iov, iovlen);
948 if (!NT_STATUS_IS_OK(status)) {
950 TALLOC_FREE(first_state->chained_requests);
957 uint8_t *cli_smb_inbuf(struct tevent_req *req)
959 struct cli_smb_state *state = tevent_req_data(
960 req, struct cli_smb_state);
964 bool cli_has_async_calls(struct cli_state *cli)
966 return ((tevent_queue_length(cli->outgoing) != 0)
967 || (talloc_array_length(cli->pending) != 0));
970 struct cli_smb_oplock_break_waiter_state {
975 static void cli_smb_oplock_break_waiter_done(struct tevent_req *subreq);
977 struct tevent_req *cli_smb_oplock_break_waiter_send(TALLOC_CTX *mem_ctx,
978 struct event_context *ev,
979 struct cli_state *cli)
981 struct tevent_req *req, *subreq;
982 struct cli_smb_oplock_break_waiter_state *state;
983 struct cli_smb_state *smb_state;
985 req = tevent_req_create(mem_ctx, &state,
986 struct cli_smb_oplock_break_waiter_state);
992 * Create a fake SMB request that we will never send out. This is only
993 * used to be set into the pending queue with the right mid.
995 subreq = cli_smb_req_create(mem_ctx, ev, cli, 0, 0, 0, NULL, 0, NULL);
996 if (tevent_req_nomem(subreq, req)) {
997 return tevent_req_post(req, ev);
999 smb_state = tevent_req_data(subreq, struct cli_smb_state);
1000 SSVAL(smb_state->header, smb_mid, 0xffff);
1002 if (!cli_smb_req_set_pending(subreq)) {
1003 tevent_req_nterror(req, NT_STATUS_NO_MEMORY);
1004 return tevent_req_post(req, ev);
1006 tevent_req_set_callback(subreq, cli_smb_oplock_break_waiter_done, req);
1010 static void cli_smb_oplock_break_waiter_done(struct tevent_req *subreq)
1012 struct tevent_req *req = tevent_req_callback_data(
1013 subreq, struct tevent_req);
1014 struct cli_smb_oplock_break_waiter_state *state = tevent_req_data(
1015 req, struct cli_smb_oplock_break_waiter_state);
1023 status = cli_smb_recv(subreq, state, &inbuf, 8, &wct, &vwv,
1024 &num_bytes, &bytes);
1025 TALLOC_FREE(subreq);
1026 if (!NT_STATUS_IS_OK(status)) {
1027 tevent_req_nterror(req, status);
1030 state->fnum = SVAL(vwv+2, 0);
1031 state->level = CVAL(vwv+3, 1);
1032 tevent_req_done(req);
1035 NTSTATUS cli_smb_oplock_break_waiter_recv(struct tevent_req *req,
1039 struct cli_smb_oplock_break_waiter_state *state = tevent_req_data(
1040 req, struct cli_smb_oplock_break_waiter_state);
1043 if (tevent_req_is_nterror(req, &status)) {
1046 *pfnum = state->fnum;
1047 *plevel = state->level;
1048 return NT_STATUS_OK;
1052 struct cli_session_request_state {
1053 struct tevent_context *ev;
1056 struct iovec iov[3];
1057 uint8_t nb_session_response;
1060 static void cli_session_request_sent(struct tevent_req *subreq);
1061 static void cli_session_request_recvd(struct tevent_req *subreq);
1063 struct tevent_req *cli_session_request_send(TALLOC_CTX *mem_ctx,
1064 struct tevent_context *ev,
1066 const struct nmb_name *called,
1067 const struct nmb_name *calling)
1069 struct tevent_req *req, *subreq;
1070 struct cli_session_request_state *state;
1072 req = tevent_req_create(mem_ctx, &state,
1073 struct cli_session_request_state);
1080 state->iov[1].iov_base = name_mangle(
1081 state, called->name, called->name_type);
1082 if (tevent_req_nomem(state->iov[1].iov_base, req)) {
1083 return tevent_req_post(req, ev);
1085 state->iov[1].iov_len = name_len(
1086 (unsigned char *)state->iov[1].iov_base,
1087 talloc_get_size(state->iov[1].iov_base));
1089 state->iov[2].iov_base = name_mangle(
1090 state, calling->name, calling->name_type);
1091 if (tevent_req_nomem(state->iov[2].iov_base, req)) {
1092 return tevent_req_post(req, ev);
1094 state->iov[2].iov_len = name_len(
1095 (unsigned char *)state->iov[2].iov_base,
1096 talloc_get_size(state->iov[2].iov_base));
1098 _smb_setlen(((char *)&state->len_hdr),
1099 state->iov[1].iov_len + state->iov[2].iov_len);
1100 SCVAL((char *)&state->len_hdr, 0, 0x81);
1102 state->iov[0].iov_base = &state->len_hdr;
1103 state->iov[0].iov_len = sizeof(state->len_hdr);
1105 subreq = writev_send(state, ev, NULL, sock, true, state->iov, 3);
1106 if (tevent_req_nomem(subreq, req)) {
1107 return tevent_req_post(req, ev);
1109 tevent_req_set_callback(subreq, cli_session_request_sent, req);
1113 static void cli_session_request_sent(struct tevent_req *subreq)
1115 struct tevent_req *req = tevent_req_callback_data(
1116 subreq, struct tevent_req);
1117 struct cli_session_request_state *state = tevent_req_data(
1118 req, struct cli_session_request_state);
1122 ret = writev_recv(subreq, &err);
1123 TALLOC_FREE(subreq);
1125 tevent_req_error(req, err);
1128 subreq = read_smb_send(state, state->ev, state->sock);
1129 if (tevent_req_nomem(subreq, req)) {
1132 tevent_req_set_callback(subreq, cli_session_request_recvd, req);
1135 static void cli_session_request_recvd(struct tevent_req *subreq)
1137 struct tevent_req *req = tevent_req_callback_data(
1138 subreq, struct tevent_req);
1139 struct cli_session_request_state *state = tevent_req_data(
1140 req, struct cli_session_request_state);
1145 ret = read_smb_recv(subreq, talloc_tos(), &buf, &err);
1146 TALLOC_FREE(subreq);
1153 tevent_req_error(req, err);
1157 * In case of an error there is more information in the data
1158 * portion according to RFC1002. We're not subtle enough to
1159 * respond to the different error conditions, so drop the
1162 state->nb_session_response = CVAL(buf, 0);
1163 tevent_req_done(req);
1166 bool cli_session_request_recv(struct tevent_req *req, int *err, uint8_t *resp)
1168 struct cli_session_request_state *state = tevent_req_data(
1169 req, struct cli_session_request_state);
1171 if (tevent_req_is_unix_error(req, err)) {
1174 *resp = state->nb_session_response;