2 * Unix SMB/CIFS implementation.
3 * RPC Pipe client / server routines
4 * Copyright (C) Andrew Tridgell 1992-1998,
5 * Largely re-written : 2005
6 * Copyright (C) Jeremy Allison 1998 - 2005
7 * Copyright (C) Simo Sorce 2010
8 * Copyright (C) Andrew Bartlett 2011
10 * This program is free software; you can redistribute it and/or modify
11 * it under the terms of the GNU General Public License as published by
12 * the Free Software Foundation; either version 3 of the License, or
13 * (at your option) any later version.
15 * This program is distributed in the hope that it will be useful,
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 * GNU General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, see <http://www.gnu.org/licenses/>.
25 #include "rpc_client/cli_pipe.h"
26 #include "rpc_server/srv_pipe_internal.h"
28 #include "../libcli/named_pipe_auth/npa_tstream.h"
29 #include "rpc_server/rpc_ncacn_np.h"
30 #include "librpc/gen_ndr/netlogon.h"
31 #include "librpc/gen_ndr/auth.h"
32 #include "../auth/auth_sam_reply.h"
34 #include "rpc_server/rpc_pipes.h"
35 #include "../lib/tsocket/tsocket.h"
36 #include "../lib/util/tevent_ntstatus.h"
37 #include "rpc_contexts.h"
38 #include "rpc_server/rpc_config.h"
41 #define DBGC_CLASS DBGC_RPC_SRV
43 /****************************************************************************
44 Make an internal namedpipes structure
45 ****************************************************************************/
47 struct pipes_struct *make_internal_rpc_pipe_p(TALLOC_CTX *mem_ctx,
48 const struct ndr_syntax_id *syntax,
49 const struct tsocket_address *remote_address,
50 const struct auth_session_info *session_info,
51 struct messaging_context *msg_ctx)
53 struct pipes_struct *p;
54 struct pipe_rpc_fns *context_fns;
55 const char *pipe_name;
58 pipe_name = get_pipe_name_from_syntax(talloc_tos(), syntax);
60 DEBUG(4,("Create pipe requested %s\n", pipe_name));
62 ret = make_base_pipes_struct(mem_ctx, msg_ctx, pipe_name,
63 NCALRPC, RPC_LITTLE_ENDIAN, false,
64 remote_address, NULL, &p);
66 DEBUG(0,("ERROR! no memory for pipes_struct!\n"));
70 if (!init_pipe_handles(p, syntax)) {
71 DEBUG(0,("open_rpc_pipe_p: init_pipe_handles failed.\n"));
76 p->session_info = copy_session_info(p, session_info);
77 if (p->session_info == NULL) {
78 DEBUG(0, ("open_rpc_pipe_p: copy_serverinfo failed\n"));
79 close_policy_by_pipe(p);
84 context_fns = talloc(p, struct pipe_rpc_fns);
85 if (context_fns == NULL) {
86 DEBUG(0,("talloc() failed!\n"));
91 context_fns->next = context_fns->prev = NULL;
92 context_fns->n_cmds = rpc_srv_get_pipe_num_cmds(syntax);
93 context_fns->cmds = rpc_srv_get_pipe_cmds(syntax);
94 context_fns->context_id = 0;
95 context_fns->syntax = *syntax;
97 /* add to the list of open contexts */
98 DLIST_ADD(p->contexts, context_fns);
100 DEBUG(4,("Created internal pipe %s\n", pipe_name));
105 static NTSTATUS rpcint_dispatch(struct pipes_struct *p,
108 const DATA_BLOB *in_data,
111 struct pipe_rpc_fns *fns = find_pipe_fns_by_context(p->contexts, 0);
112 uint32_t num_cmds = fns->n_cmds;
113 const struct api_struct *cmds = fns->cmds;
120 for (i = 0; i < num_cmds; i++) {
121 if (cmds[i].opnum == opnum && cmds[i].fn != NULL) {
127 return NT_STATUS_RPC_PROCNUM_OUT_OF_RANGE;
130 p->in_data.data = *in_data;
131 p->out_data.rdata = data_blob_null;
134 p->in_data.data = data_blob_null;
136 data_blob_free(&p->out_data.rdata);
137 talloc_free_children(p->mem_ctx);
138 return NT_STATUS_RPC_CALL_FAILED;
141 if (p->fault_state) {
142 p->fault_state = false;
143 data_blob_free(&p->out_data.rdata);
144 talloc_free_children(p->mem_ctx);
145 return NT_STATUS_RPC_CALL_FAILED;
148 if (p->bad_handle_fault_state) {
149 p->bad_handle_fault_state = false;
150 data_blob_free(&p->out_data.rdata);
151 talloc_free_children(p->mem_ctx);
152 return NT_STATUS_RPC_SS_CONTEXT_MISMATCH;
155 if (p->rng_fault_state) {
156 p->rng_fault_state = false;
157 data_blob_free(&p->out_data.rdata);
158 talloc_free_children(p->mem_ctx);
159 return NT_STATUS_RPC_PROCNUM_OUT_OF_RANGE;
162 *out_data = p->out_data.rdata;
163 talloc_steal(mem_ctx, out_data->data);
164 p->out_data.rdata = data_blob_null;
166 talloc_free_children(p->mem_ctx);
170 struct rpcint_bh_state {
171 struct pipes_struct *p;
174 static bool rpcint_bh_is_connected(struct dcerpc_binding_handle *h)
176 struct rpcint_bh_state *hs = dcerpc_binding_handle_data(h,
177 struct rpcint_bh_state);
186 static uint32_t rpcint_bh_set_timeout(struct dcerpc_binding_handle *h,
189 /* TODO: implement timeouts */
193 struct rpcint_bh_raw_call_state {
199 static struct tevent_req *rpcint_bh_raw_call_send(TALLOC_CTX *mem_ctx,
200 struct tevent_context *ev,
201 struct dcerpc_binding_handle *h,
202 const struct GUID *object,
205 const uint8_t *in_data,
208 struct rpcint_bh_state *hs =
209 dcerpc_binding_handle_data(h,
210 struct rpcint_bh_state);
211 struct tevent_req *req;
212 struct rpcint_bh_raw_call_state *state;
216 req = tevent_req_create(mem_ctx, &state,
217 struct rpcint_bh_raw_call_state);
221 state->in_data.data = discard_const_p(uint8_t, in_data);
222 state->in_data.length = in_length;
224 ok = rpcint_bh_is_connected(h);
226 tevent_req_nterror(req, NT_STATUS_CONNECTION_DISCONNECTED);
227 return tevent_req_post(req, ev);
230 /* TODO: allow async */
231 status = rpcint_dispatch(hs->p, state, opnum,
234 if (!NT_STATUS_IS_OK(status)) {
235 tevent_req_nterror(req, status);
236 return tevent_req_post(req, ev);
239 tevent_req_done(req);
240 return tevent_req_post(req, ev);
243 static NTSTATUS rpcint_bh_raw_call_recv(struct tevent_req *req,
249 struct rpcint_bh_raw_call_state *state =
251 struct rpcint_bh_raw_call_state);
254 if (tevent_req_is_nterror(req, &status)) {
255 tevent_req_received(req);
259 *out_data = talloc_move(mem_ctx, &state->out_data.data);
260 *out_length = state->out_data.length;
262 tevent_req_received(req);
266 struct rpcint_bh_disconnect_state {
270 static struct tevent_req *rpcint_bh_disconnect_send(TALLOC_CTX *mem_ctx,
271 struct tevent_context *ev,
272 struct dcerpc_binding_handle *h)
274 struct rpcint_bh_state *hs = dcerpc_binding_handle_data(h,
275 struct rpcint_bh_state);
276 struct tevent_req *req;
277 struct rpcint_bh_disconnect_state *state;
280 req = tevent_req_create(mem_ctx, &state,
281 struct rpcint_bh_disconnect_state);
286 ok = rpcint_bh_is_connected(h);
288 tevent_req_nterror(req, NT_STATUS_CONNECTION_DISCONNECTED);
289 return tevent_req_post(req, ev);
293 * TODO: do a real async disconnect ...
295 * For now the caller needs to free pipes_struct
299 tevent_req_done(req);
300 return tevent_req_post(req, ev);
303 static NTSTATUS rpcint_bh_disconnect_recv(struct tevent_req *req)
307 if (tevent_req_is_nterror(req, &status)) {
308 tevent_req_received(req);
312 tevent_req_received(req);
316 static bool rpcint_bh_ref_alloc(struct dcerpc_binding_handle *h)
321 static void rpcint_bh_do_ndr_print(struct dcerpc_binding_handle *h,
323 const void *_struct_ptr,
324 const struct ndr_interface_call *call)
326 void *struct_ptr = discard_const(_struct_ptr);
328 if (DEBUGLEVEL < 11) {
332 if (ndr_flags & NDR_IN) {
333 ndr_print_function_debug(call->ndr_print,
338 if (ndr_flags & NDR_OUT) {
339 ndr_print_function_debug(call->ndr_print,
346 static const struct dcerpc_binding_handle_ops rpcint_bh_ops = {
348 .is_connected = rpcint_bh_is_connected,
349 .set_timeout = rpcint_bh_set_timeout,
350 .raw_call_send = rpcint_bh_raw_call_send,
351 .raw_call_recv = rpcint_bh_raw_call_recv,
352 .disconnect_send = rpcint_bh_disconnect_send,
353 .disconnect_recv = rpcint_bh_disconnect_recv,
355 .ref_alloc = rpcint_bh_ref_alloc,
356 .do_ndr_print = rpcint_bh_do_ndr_print,
359 static NTSTATUS rpcint_binding_handle_ex(TALLOC_CTX *mem_ctx,
360 const struct ndr_syntax_id *abstract_syntax,
361 const struct ndr_interface_table *ndr_table,
362 const struct tsocket_address *remote_address,
363 const struct auth_session_info *session_info,
364 struct messaging_context *msg_ctx,
365 struct dcerpc_binding_handle **binding_handle)
367 struct dcerpc_binding_handle *h;
368 struct rpcint_bh_state *hs;
371 abstract_syntax = &ndr_table->syntax_id;
374 h = dcerpc_binding_handle_create(mem_ctx,
379 struct rpcint_bh_state,
382 return NT_STATUS_NO_MEMORY;
384 hs->p = make_internal_rpc_pipe_p(hs,
391 return NT_STATUS_NO_MEMORY;
398 * @brief Create a new DCERPC Binding Handle which uses a local dispatch function.
400 * @param[in] mem_ctx The memory context to use.
402 * @param[in] ndr_table Normally the ndr_table_<name>.
404 * @param[in] remote_address The info about the connected client.
406 * @param[in] serversupplied_info The server supplied authentication function.
408 * @param[in] msg_ctx The messaging context that can be used by the server
410 * @param[out] binding_handle A pointer to store the connected
411 * dcerpc_binding_handle
413 * @return NT_STATUS_OK on success, a corresponding NT status if an
417 * struct dcerpc_binding_handle *winreg_binding;
420 * status = rpcint_binding_handle(tmp_ctx,
428 NTSTATUS rpcint_binding_handle(TALLOC_CTX *mem_ctx,
429 const struct ndr_interface_table *ndr_table,
430 const struct tsocket_address *remote_address,
431 const struct auth_session_info *session_info,
432 struct messaging_context *msg_ctx,
433 struct dcerpc_binding_handle **binding_handle)
435 return rpcint_binding_handle_ex(mem_ctx, NULL, ndr_table, remote_address,
436 session_info, msg_ctx, binding_handle);
442 * @brief Create a new RPC client context which uses a local transport.
444 * This creates a local transport. It is a shortcut to directly call the server
445 * functions and avoid marshalling.
446 * NOTE: this function should be used only by rpc_pipe_open_interface()
448 * @param[in] mem_ctx The memory context to use.
450 * @param[in] abstract_syntax Normally the syntax_id of the autogenerated
453 * @param[in] serversupplied_info The server supplied authentication function.
455 * @param[in] remote_address The client address information.
457 * @param[in] msg_ctx The messaging context to use.
459 * @param[out] presult A pointer to store the connected rpc client pipe.
461 * @return NT_STATUS_OK on success, a corresponding NT status if an
464 NTSTATUS rpc_pipe_open_internal(TALLOC_CTX *mem_ctx,
465 const struct ndr_syntax_id *abstract_syntax,
466 const struct auth_session_info *session_info,
467 const struct tsocket_address *remote_address,
468 struct messaging_context *msg_ctx,
469 struct rpc_pipe_client **presult)
471 struct rpc_pipe_client *result;
474 result = talloc_zero(mem_ctx, struct rpc_pipe_client);
475 if (result == NULL) {
476 return NT_STATUS_NO_MEMORY;
479 result->abstract_syntax = *abstract_syntax;
480 result->transfer_syntax = ndr_transfer_syntax_ndr;
482 if (remote_address == NULL) {
483 struct tsocket_address *local;
486 rc = tsocket_address_inet_from_strings(mem_ctx,
493 return NT_STATUS_NO_MEMORY;
496 remote_address = local;
499 result->max_xmit_frag = -1;
500 result->max_recv_frag = -1;
502 status = rpcint_binding_handle_ex(result,
508 &result->binding_handle);
509 if (!NT_STATUS_IS_OK(status)) {
518 /****************************************************************************
519 * External pipes functions
520 ***************************************************************************/
523 struct np_proxy_state *make_external_rpc_pipe_p(TALLOC_CTX *mem_ctx,
524 const char *pipe_name,
525 const struct tsocket_address *local_address,
526 const struct tsocket_address *remote_address,
527 const struct auth_session_info *session_info)
529 struct np_proxy_state *result;
531 const char *socket_dir;
532 struct tevent_context *ev;
533 struct tevent_req *subreq;
534 struct auth_session_info_transport *session_info_t;
539 result = talloc(mem_ctx, struct np_proxy_state);
540 if (result == NULL) {
541 DEBUG(0, ("talloc failed\n"));
545 result->read_queue = tevent_queue_create(result, "np_read");
546 if (result->read_queue == NULL) {
547 DEBUG(0, ("tevent_queue_create failed\n"));
551 result->write_queue = tevent_queue_create(result, "np_write");
552 if (result->write_queue == NULL) {
553 DEBUG(0, ("tevent_queue_create failed\n"));
557 ev = s3_tevent_context_init(talloc_tos());
559 DEBUG(0, ("s3_tevent_context_init failed\n"));
563 socket_dir = lp_parm_const_string(
564 GLOBAL_SECTION_SNUM, "external_rpc_pipe", "socket_dir",
566 if (socket_dir == NULL) {
567 DEBUG(0, ("externan_rpc_pipe:socket_dir not set\n"));
570 socket_np_dir = talloc_asprintf(talloc_tos(), "%s/np", socket_dir);
571 if (socket_np_dir == NULL) {
572 DEBUG(0, ("talloc_asprintf failed\n"));
576 session_info_t = talloc_zero(talloc_tos(), struct auth_session_info_transport);
577 if (session_info_t == NULL) {
578 DEBUG(0, ("talloc failed\n"));
582 session_info_t->session_info = copy_session_info(session_info_t,
584 if (session_info_t->session_info == NULL) {
585 DEBUG(0, ("copy_session_info failed\n"));
590 subreq = tstream_npa_connect_send(talloc_tos(), ev,
593 remote_address, /* client_addr */
594 NULL, /* client_name */
595 local_address, /* server_addr */
596 NULL, /* server_name */
598 if (subreq == NULL) {
600 DEBUG(0, ("tstream_npa_connect_send to %s for pipe %s and "
601 "user %s\\%s failed\n",
602 socket_np_dir, pipe_name, session_info_t->session_info->info->domain_name,
603 session_info_t->session_info->info->account_name));
606 ok = tevent_req_poll(subreq, ev);
609 DEBUG(0, ("tevent_req_poll to %s for pipe %s and user %s\\%s "
610 "failed for tstream_npa_connect: %s\n",
611 socket_np_dir, pipe_name, session_info_t->session_info->info->domain_name,
612 session_info_t->session_info->info->account_name,
617 ret = tstream_npa_connect_recv(subreq, &sys_errno,
621 &result->device_state,
622 &result->allocation_size);
625 DEBUG(0, ("tstream_npa_connect_recv to %s for pipe %s and "
626 "user %s\\%s failed: %s\n",
627 socket_np_dir, pipe_name, session_info_t->session_info->info->domain_name,
628 session_info_t->session_info->info->account_name,
629 strerror(sys_errno)));
640 static NTSTATUS rpc_pipe_open_external(TALLOC_CTX *mem_ctx,
641 const char *pipe_name,
642 const struct ndr_syntax_id *abstract_syntax,
643 const struct auth_session_info *session_info,
644 struct rpc_pipe_client **_result)
646 struct tsocket_address *local, *remote;
647 struct rpc_pipe_client *result = NULL;
648 struct np_proxy_state *proxy_state = NULL;
649 struct pipe_auth_data *auth;
653 /* this is an internal connection, fake up ip addresses */
654 ret = tsocket_address_inet_from_strings(talloc_tos(), "ip",
657 return NT_STATUS_NO_MEMORY;
659 ret = tsocket_address_inet_from_strings(talloc_tos(), "ip",
662 return NT_STATUS_NO_MEMORY;
665 proxy_state = make_external_rpc_pipe_p(mem_ctx, pipe_name,
666 local, remote, session_info);
668 return NT_STATUS_UNSUCCESSFUL;
671 result = talloc_zero(mem_ctx, struct rpc_pipe_client);
672 if (result == NULL) {
673 status = NT_STATUS_NO_MEMORY;
677 result->abstract_syntax = *abstract_syntax;
678 result->transfer_syntax = ndr_transfer_syntax_ndr;
680 result->desthost = get_myname(result);
681 result->srv_name_slash = talloc_asprintf_strupper_m(
682 result, "\\\\%s", result->desthost);
683 if ((result->desthost == NULL) || (result->srv_name_slash == NULL)) {
684 status = NT_STATUS_NO_MEMORY;
688 result->max_xmit_frag = RPC_MAX_PDU_FRAG_LEN;
689 result->max_recv_frag = RPC_MAX_PDU_FRAG_LEN;
691 status = rpc_transport_tstream_init(result,
694 if (!NT_STATUS_IS_OK(status)) {
698 result->binding_handle = rpccli_bh_create(result);
699 if (result->binding_handle == NULL) {
700 status = NT_STATUS_NO_MEMORY;
701 DEBUG(0, ("Failed to create binding handle.\n"));
705 result->auth = talloc_zero(result, struct pipe_auth_data);
707 status = NT_STATUS_NO_MEMORY;
710 result->auth->auth_type = DCERPC_AUTH_TYPE_NONE;
711 result->auth->auth_level = DCERPC_AUTH_LEVEL_NONE;
713 status = rpccli_anon_bind_data(result, &auth);
714 if (!NT_STATUS_IS_OK(status)) {
715 DEBUG(0, ("Failed to initialize anonymous bind.\n"));
719 status = rpc_pipe_bind(result, auth);
720 if (!NT_STATUS_IS_OK(status)) {
721 DEBUG(0, ("Failed to bind external pipe.\n"));
726 if (!NT_STATUS_IS_OK(status)) {
729 TALLOC_FREE(proxy_state);
735 * @brief Create a new RPC client context which uses a local dispatch function
736 * or a remote transport, depending on rpc_server configuration for the
739 * @param[in] mem_ctx The memory context to use.
741 * @param[in] abstract_syntax Normally the syntax_id of the autogenerated
744 * @param[in] serversupplied_info The server supplied authentication function.
746 * @param[in] remote_address The client address information.
748 * @param[in] msg_ctx The messaging context to use.
750 * @param[out] presult A pointer to store the connected rpc client pipe.
752 * @return NT_STATUS_OK on success, a corresponding NT status if an
756 * struct rpc_pipe_client *winreg_pipe;
759 * status = rpc_pipe_open_interface(tmp_ctx,
760 * &ndr_table_winreg.syntax_id,
767 NTSTATUS rpc_pipe_open_interface(TALLOC_CTX *mem_ctx,
768 const struct ndr_syntax_id *syntax,
769 const struct auth_session_info *session_info,
770 const struct tsocket_address *remote_address,
771 struct messaging_context *msg_ctx,
772 struct rpc_pipe_client **cli_pipe)
774 struct rpc_pipe_client *cli = NULL;
775 enum rpc_service_mode_e pipe_mode;
776 const char *pipe_name;
780 if (cli_pipe && rpccli_is_connected(*cli_pipe)) {
783 TALLOC_FREE(*cli_pipe);
786 tmp_ctx = talloc_stackframe();
787 if (tmp_ctx == NULL) {
788 return NT_STATUS_NO_MEMORY;
791 pipe_name = get_pipe_name_from_syntax(tmp_ctx, syntax);
792 if (pipe_name == NULL) {
793 status = NT_STATUS_INVALID_PARAMETER;
797 while (pipe_name[0] == '\\') {
801 DEBUG(5, ("Connecting to %s pipe.\n", pipe_name));
803 pipe_mode = rpc_service_mode(pipe_name);
806 case RPC_SERVICE_MODE_EMBEDDED:
807 status = rpc_pipe_open_internal(tmp_ctx,
808 syntax, session_info,
809 remote_address, msg_ctx,
811 if (!NT_STATUS_IS_OK(status)) {
815 case RPC_SERVICE_MODE_EXTERNAL:
816 /* It would be nice to just use rpc_pipe_open_ncalrpc() but
817 * for now we need to use the special proxy setup to connect
820 status = rpc_pipe_open_external(tmp_ctx,
824 if (!NT_STATUS_IS_OK(status)) {
828 case RPC_SERVICE_MODE_DISABLED:
829 status = NT_STATUS_NOT_IMPLEMENTED;
830 DEBUG(0, ("Service pipe %s is disabled in config file: %s",
831 pipe_name, nt_errstr(status)));
835 status = NT_STATUS_OK;
837 if (NT_STATUS_IS_OK(status)) {
838 *cli_pipe = talloc_move(mem_ctx, &cli);
840 TALLOC_FREE(tmp_ctx);
git.samba.org / metze / samba / wip.git / blob